last executing test programs: 28.604662594s ago: executing program 4 (id=697): syz_mount_image$hfsplus(&(0x7f0000000000), &(0x7f0000000100)='./bus\x00', 0x180000c, &(0x7f0000000900)=ANY=[@ANYBLOB='nls=ascii,gid=', @ANYRESHEX=0x0, @ANYBLOB="2c706172743d3078303030303030303030303030303062622c6e6f626172726965722c6e6f626172726965722c63726561746f723d7fcfb5b72c706172743d3078303030303030303030303030303130312c6769643d", @ANYRESHEX=0x0, @ANYBLOB="2c756d61736b3d30303030303030303030303030303030303030303030302c6465636f6d706f73652c666f7263652c6e6f6465636f6d706f73652c626172726965722c6e6f6465636f6d706f73652c747970653db029e1c02c7569643d", @ANYRES16, @ANYBLOB="2c747970653dd2100d1b2c7529643dd4f81c66210bbcbf82440a104ab956f2ba5e36e41ccb1b040fa8b829b0b87078de654c66ac22aebaa2c653ef127e38e0aa2229f9cf6a8503e4ead3bb30eb04e1952322fcbe932bfaf6000000008ad90e1e3045b07a4b35981d644efce3f33db92804d526790022b70ab551796c99c39c941054f805de463f77b9513ae9ce349ab417837085febc63572b4e5564a40f8f31f0207916cb53fbb8b06bbcd0808356bcc1a966a78f8da71b0ea82044f24a3f536c6d7e79bd634191a801ca30ce4894fa19537b3f94f4a6e44032f7fb91", @ANYRESDEC=0x0, @ANYBLOB="060000bd00", @ANYRES32=0x0, @ANYRES8=0x0], 0x1, 0x6ed, &(0x7f0000000dc0)="$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") setxattr$security_capability(0x0, 0x0, 0x0, 0x0, 0x0) socket$inet_tcp(0x2, 0x1, 0x0) r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r1 = getpid() sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e) sched_setscheduler(r1, 0x2, &(0x7f0000000300)=0x5) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) socketpair(0xa, 0x1, 0x0, &(0x7f0000000000)) bind$bt_hci(r0, &(0x7f0000000100), 0x6) ioctl$sock_bt_hci(r0, 0x800448d5, &(0x7f0000000000)) 27.261183657s ago: executing program 4 (id=705): socket$nl_route(0x10, 0x3, 0x0) r0 = socket$netlink(0x10, 0x3, 0xf) bind$netlink(r0, &(0x7f0000001140)={0x10, 0x0, 0x25dfdbfd, 0x100000}, 0xc) r1 = socket$netlink(0x10, 0x3, 0xf) bind$netlink(r1, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc) setsockopt$sock_int(r1, 0x1, 0x8, &(0x7f0000000000), 0x4) setsockopt$netlink_NETLINK_BROADCAST_ERROR(r1, 0x10e, 0x4, &(0x7f00000003c0)=0x6, 0xdc) r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xe, 0x4, 0x4, 0x4, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) r3 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x14, &(0x7f0000000200)=ANY=[@ANYBLOB="1802000001000000000000000000000018010000786c6c2500000000070000007b1af8ff00000000bfa100000000000007010000f8ffffffb700000000000000b70300000000ffff850000000400000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r3}, 0x10) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000900)={0xffffffffffffffff, 0x18000000000002a0, 0xe40, 0x0, &(0x7f0000000040)="76389e147583ddd0569ba56a655855", 0x0, 0x0, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x48) r4 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8933, &(0x7f00000000c0)={'wlan1\x00'}) sendmsg$NL80211_CMD_CONNECT(r4, 0x0, 0x0) syz_80211_inject_frame(&(0x7f00000002c0)=@device_b, &(0x7f0000000580)=@mgmt_frame=@probe_response={{{}, {}, @device_b, @device_a, @from_mac}, 0x0, @default, 0x1, @val={0x0, 0x6, @default_ap_ssid}, @val, @void, @val={0x4, 0x6, {0x9, 0x10, 0xffff, 0xa}}, @void, @void, @void, @void}, 0x36) syz_80211_inject_frame(&(0x7f00000003c0)=@device_b, &(0x7f0000000400)=@mgmt_frame=@auth={{{}, {}, @device_b, @device_a, @from_mac, {0x0, 0x1}}, 0x0, 0x2, 0x0, @void}, 0x1e) syz_80211_inject_frame(&(0x7f00000004c0)=@device_b, &(0x7f0000000500)=@mgmt_frame=@assoc_resp={{{}, {}, @device_b, @device_a, @from_mac, {0x0, 0x2}}, 0x1, 0x0, @default, @val={0x1, 0x2, [{0x2, 0x1}, {0xc}]}, @void}, 0x22) sendmsg$NFT_MSG_GETCHAIN(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000000c0)={0x14, 0x4, 0xa, 0x201}, 0x14}}, 0x0) sendmmsg(r0, 0x0, 0x0, 0x4000000) bpf$PROG_LOAD(0x5, &(0x7f00002a0fb8)={0x16, 0x4, &(0x7f0000000080)=ANY=[], &(0x7f0000000140)='GPL\x00', 0x2, 0x95, &(0x7f0000000180)=""/149, 0x0, 0x0, '\x00', 0x0, @flow_dissector, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) 25.263433087s ago: executing program 4 (id=714): syz_mount_image$hfsplus(&(0x7f0000000000), &(0x7f0000000040)='./bus\x00', 0x4810, &(0x7f0000000140)=ANY=[], 0x11, 0x693, &(0x7f0000000f40)="$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") llistxattr(&(0x7f00000000c0)='./file1\x00', &(0x7f0000000100)=""/164, 0xa4) 25.2318646s ago: executing program 4 (id=716): bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000000)='./file0\x00', 0x804810, &(0x7f00000002c0), 0x4, 0x76b, &(0x7f0000001400)="$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") chdir(&(0x7f0000000140)='./file0\x00') r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x24, 0x100008b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) sched_setaffinity(0x0, 0x0, 0x0) r1 = getpid() sched_setscheduler(r1, 0x1, 0x0) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r2}, 0x10) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000001480)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r4, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0) ioctl$FS_IOC_ENABLE_VERITY(r0, 0x40806685, &(0x7f0000000140)={0x1, 0x2, 0x1000, 0x0, &(0x7f0000000040), 0x0, 0x0, 0x0}) 5.283647452s ago: executing program 3 (id=765): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x88, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, 0x0) bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000400)=@bpf_lsm={0x10, 0x0, 0x0, &(0x7f0000000100)='GPL\x00', 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) ptrace(0x10, r0) ptrace$setregs(0xd, r0, 0x0, &(0x7f00000003c0)) ptrace$getregset(0x4205, r0, 0x1, &(0x7f0000000080)={&(0x7f00000000c0)=""/120, 0x78}) 5.108196166s ago: executing program 3 (id=766): r0 = openat$uhid(0xffffffffffffff9c, &(0x7f0000002800), 0x802, 0x0) write$UHID_INPUT2(r0, &(0x7f0000002840), 0x6) 5.096410497s ago: executing program 3 (id=767): r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) r1 = socket$unix(0x1, 0x2, 0x0) getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0}, 0x0) setresuid(0xee01, r2, 0xffffffffffffffff) ioctl$KDGKBDIACR(r0, 0x4b4a, &(0x7f0000004100)=""/42) 5.004845576s ago: executing program 3 (id=768): r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000280)=ANY=[@ANYBLOB="3c00000010001fff00"/20, @ANYRES32=0x0, @ANYBLOB="0000000000000000140012800b00010062726964676500000400028008000a00", @ANYRES32], 0x3c}}, 0x0) 4.914763653s ago: executing program 2 (id=769): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000100), r0) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000000)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_REGISTER_BEACONS(r0, &(0x7f0000003900)={0x0, 0x0, &(0x7f00000038c0)={&(0x7f0000003880)={0x28, r1, 0x1, 0x0, 0x0, {{}, {@void, @val={0x8, 0x3, r2}, @val={0xc}}}}, 0x28}}, 0x0) 4.827956831s ago: executing program 0 (id=770): syz_mount_image$hfsplus(&(0x7f0000000000), &(0x7f0000000100)='./bus\x00', 0x180000c, &(0x7f0000000900)=ANY=[@ANYBLOB='nls=ascii,gid=', @ANYRESHEX=0x0, @ANYBLOB="2c706172743d3078303030303030303030303030303062622c6e6f626172726965722c6e6f626172726965722c63726561746f723d7fcfb5b72c706172743d3078303030303030303030303030303130312c6769643d", @ANYRESHEX=0x0, @ANYBLOB="2c756d61736b3d30303030303030303030303030303030303030303030302c6465636f6d706f73652c666f7263652c6e6f6465636f6d706f73652c626172726965722c6e6f6465636f6d706f73652c747970653db029e1c02c7569643d", @ANYRES16, @ANYBLOB="2c747970653dd2100d1b2c7529643dd4f81c66210bbcbf82440a104ab956f2ba5e36e41ccb1b040fa8b829b0b87078de654c66ac22aebaa2c653ef127e38e0aa2229f9cf6a8503e4ead3bb30eb04e1952322fcbe932bfaf6000000008ad90e1e3045b07a4b35981d644efce3f33db92804d526790022b70ab551796c99c39c941054f805de463f77b9513ae9ce349ab417837085febc63572b4e5564a40f8f31f0207916cb53fbb8b06bbcd0808356bcc1a966a78f8da71b0ea82044f24a3f536c6d7e79bd634191a801ca30ce4894fa19537b3f94f4a6e44032f7fb91", @ANYRESDEC=0x0, @ANYBLOB="060000bd00", @ANYRES32=0x0, @ANYRES8=0x0], 0x1, 0x6ed, &(0x7f0000000dc0)="$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") setxattr$security_capability(0x0, &(0x7f0000000280), 0x0, 0x0, 0x0) socket$inet_tcp(0x2, 0x1, 0x0) r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) prlimit64(0x0, 0xe, 0x0, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r1 = getpid() sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e) sched_setscheduler(r1, 0x2, &(0x7f0000000300)=0x5) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) socketpair(0xa, 0x1, 0x0, &(0x7f0000000000)) bind$bt_hci(r0, &(0x7f0000000100), 0x6) ioctl$sock_bt_hci(r0, 0x800448d5, &(0x7f0000000000)) 3.977767163s ago: executing program 1 (id=771): mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680)) r0 = socket$alg(0x26, 0x5, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100008b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7) r1 = getpid() sched_setscheduler(r1, 0x1, &(0x7f0000000100)=0x5) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000001480)={0xffffffffffffffff, 0xffffffffffffffff}) faccessat2(0xffffffffffffffff, 0x0, 0x0, 0x0) connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0) setsockopt$sock_linger(r0, 0x1, 0xd, &(0x7f0000000740)={0x1, 0x7}, 0x8) bind$alg(r0, &(0x7f0000000000)={0x26, 'aead\x00', 0x0, 0x0, 'aegis128-generic\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="ab553fec94248c32e27d04000000288a", 0x10) r4 = accept$alg(r0, 0x0, 0x0) write$binfmt_script(r4, &(0x7f0000000600), 0xfec8) recvmmsg(r4, &(0x7f00000008c0)=[{{&(0x7f00000000c0)=@pptp={0x18, 0x2, {0x0, @initdev}}, 0x80, &(0x7f00000005c0)=[{&(0x7f00000001c0)=""/200, 0x6}, {&(0x7f0000000140)=""/9, 0xa}, {&(0x7f0000000300)=""/225, 0x2}, {&(0x7f0000000400)=""/41, 0xfeb2}, {&(0x7f0000000440)=""/123, 0x7b}, {&(0x7f00000004c0)=""/203, 0xcb}], 0x6, &(0x7f0000000640)=""/123, 0x7b, 0x2000000}}, {{&(0x7f00000006c0), 0x80, &(0x7f0000000840), 0x0, &(0x7f0000000880)=""/24, 0xffffffffffffffe0}}], 0x2, 0xcb, &(0x7f0000008000)={0x0, 0x989680}) 3.956154654s ago: executing program 2 (id=772): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000", @ANYRES32], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000500)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={0x0, r3}, 0x18) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz0\x00', 0x1ff) r4 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) r5 = openat$cgroup_freezer_state(r4, &(0x7f0000000140), 0x2, 0x0) sendfile(r5, r5, 0x0, 0x9) 3.76405016s ago: executing program 3 (id=773): openat$binderfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000280)=@framed, &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r0}, 0x10) syz_usb_connect(0x0, 0x52, &(0x7f0000000000)=ANY=[@ANYBLOB="1201000042ebf04021046c022f1f0000000109024000010000000009040000000202ff"], 0x0) 3.760754141s ago: executing program 0 (id=774): syz_mount_image$hfsplus(&(0x7f0000000000), &(0x7f0000000040)='./bus\x00', 0x4810, &(0x7f0000000140)=ANY=[], 0x11, 0x693, &(0x7f0000000f40)="$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") setxattr$trusted_overlay_upper(0x0, &(0x7f00000001c0), &(0x7f0000000300)=ANY=[], 0x841, 0x0) llistxattr(&(0x7f00000000c0)='./file1\x00', &(0x7f0000000100)=""/164, 0xa4) 3.466995636s ago: executing program 0 (id=775): r0 = socket$packet(0x11, 0x2, 0x300) setsockopt$packet_int(r0, 0x107, 0xa, &(0x7f0000000080)=0x2, 0x4) setsockopt$packet_rx_ring(r0, 0x107, 0x5, &(0x7f0000000040)=@req3={0x1000, 0x3a, 0x1000, 0xff}, 0x1c) 3.30134287s ago: executing program 0 (id=776): keyctl$KEYCTL_CAPABILITIES(0x1f, &(0x7f0000000000)=""/147, 0x93) 3.30102741s ago: executing program 0 (id=777): r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e20, 0x0, @remote, 0xc6}, 0x1c) sendmmsg$inet6(r0, &(0x7f0000003ac0)=[{{&(0x7f0000000000)={0xa, 0x0, 0x0, @dev}, 0x18, 0x0}}], 0x1, 0x24000081) 3.236916755s ago: executing program 0 (id=778): bind$inet6(0xffffffffffffffff, &(0x7f0000000080)={0xa, 0x4e23, 0x0, @private0={0xfc, 0x0, '\x00', 0x1}}, 0x1c) syz_open_dev$sndctrl(0x0, 0x1ff, 0x0) ioctl$SNDRV_SEQ_IOCTL_DELETE_PORT(0xffffffffffffffff, 0xc0a85320, 0x0) r0 = socket$nl_audit(0x10, 0x3, 0x9) connect$bt_sco(0xffffffffffffffff, 0x0, 0x0) prlimit64(0x0, 0xe, 0x0, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f00000001c0)=0x7) r1 = getpid() sched_setscheduler(r1, 0x1, &(0x7f0000000100)=0x5) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000001480)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) setsockopt$netlink_NETLINK_ADD_MEMBERSHIP(r0, 0x10e, 0x1, 0x0, 0x0) bind$netlink(r0, &(0x7f00000000c0)={0x10, 0x0, 0x25dfdbfd, 0x400}, 0xc) 3.235952555s ago: executing program 3 (id=779): bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000000)='./file0\x00', 0x804810, &(0x7f00000002c0), 0x4, 0x76b, &(0x7f0000001400)="$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") chdir(&(0x7f0000000140)='./file0\x00') r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x24, 0x100008b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) sched_setaffinity(0x0, 0x0, 0x0) r1 = getpid() sched_setscheduler(r1, 0x1, 0x0) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r2}, 0x10) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000001480)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r4, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0) ioctl$FS_IOC_ENABLE_VERITY(r0, 0x40806685, &(0x7f0000000140)={0x1, 0x2, 0x1000, 0x0, &(0x7f0000000040), 0x0, 0x0, 0x0}) 3.234755176s ago: executing program 4 (id=740): prlimit64(0x0, 0xe, &(0x7f0000000040)={0x8, 0x420000008b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4) r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={0x0, r3}, 0x18) bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000031c0)=ANY=[], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) pipe2$9p(0x0, 0x800) write$P9_RVERSION(0xffffffffffffffff, &(0x7f0000000700)=ANY=[], 0x15) r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xb, 0x7, 0x8, 0x8, 0x5, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)={0x4c, 0x2, 0x6, 0x101, 0x0, 0x0, {0x0, 0x0, 0x7}, [@IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0x2}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_TYPENAME={0x12, 0x3, 'hash:net,port\x00'}]}, 0x4c}}, 0x0) sendmsg$IPSET_CMD_LIST(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)={0x1c, 0x7, 0x6, 0x301, 0x0, 0x0, {}, [@IPSET_ATTR_PROTOCOL={0x5}]}, 0x1c}}, 0x0) 2.69981198s ago: executing program 1 (id=780): r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) r1 = socket$unix(0x1, 0x2, 0x0) getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0}, 0x0) setresuid(0xee01, r2, 0xffffffffffffffff) ioctl$KDGKBDIACR(r0, 0x4b4a, &(0x7f0000004100)=""/42) 2.334587362s ago: executing program 4 (id=781): chdir(0x0) openat(0xffffffffffffff9c, 0x0, 0x40, 0x0) prlimit64(0x0, 0xe, 0x0, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7) r0 = socket(0x840000000002, 0x3, 0xff) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000340)={0x0, 0x0, 0x0}, &(0x7f0000000140)=0xc) syz_mount_image$exfat(&(0x7f0000000400), &(0x7f0000000240)='./file0\x00', 0x2000084c, &(0x7f0000000540)=ANY=[@ANYBLOB='iocharset=ascii,discard,dmask=00000000000000000000007,uid=', @ANYRESHEX=r1, @ANYBLOB=',dmask=00000000000000000000152,fmask=00000000000000000000006,gid=', @ANYRESHEX=r2, @ANYBLOB=',uid=', @ANYRESHEX=0xee00, @ANYBLOB="2c646973636172642c00fb278330ab3b4884d36adf6908d11f57832035e96a1513231140da182ca77aeedc492bbc501d94f854a7e26909bde6e698d72a15ec808a86c25d"], 0x81, 0x14f5, &(0x7f0000001580)="$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") r3 = getpid() sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4) r6 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) bind$bt_l2cap(r6, &(0x7f0000000040)={0x1f, 0x0, @any, 0xfffa}, 0xe) syz_open_procfs(0x0, 0x0) bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x9, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b405000091c30000711047000000000027000000000000009500200000000000"], &(0x7f0000003ff6)='GPL\x00', 0x5, 0xfd96, &(0x7f0000000080)=""/201, 0x0, 0x0, '\x00', 0x0, @cgroup_sock, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xfffffffffffffd56, 0x10, &(0x7f0000000000), 0x1dd, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48) 2.259499328s ago: executing program 1 (id=782): socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000005e00)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$F2FS_IOC_MOVE_RANGE(r0, 0x541b, &(0x7f0000000000)) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0xf, &(0x7f0000000180)=0x800001, 0x4) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r1 = getpid() sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) r4 = syz_io_uring_setup(0x110, &(0x7f0000000140), &(0x7f0000000240)=0x0, &(0x7f0000000040)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r5, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000280)={0xffffffffffffffff, 0xffffffffffffffff}) syz_io_uring_submit(r5, r6, &(0x7f00000004c0)=@IORING_OP_RECV=@pass_buffer={0x1b, 0x0, 0x0, r7, 0x0, 0x0}) io_uring_enter(r4, 0x8aa, 0x0, 0x0, 0x0, 0x0) bind$inet6(0xffffffffffffffff, 0x0, 0x0) r8 = socket(0x2a, 0x2, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000400)={&(0x7f00000005c0)=@newqdisc={0x24}, 0x24}}, 0x0) getsockname$packet(r8, &(0x7f0000000240)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000040)=0x14) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000380)=@newqdisc={0x2c, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r9, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_drr={0x8}]}, 0x2c}}, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000600)=@newtfilter={0x44, 0x2c, 0xd27, 0x2, 0x0, {0x0, 0x0, 0x0, r9, {0xb, 0x9}, {}, {0x1c, 0xfff1}}, [@filter_kind_options=@f_flower={{0xb}, {0x14, 0x2, [@TCA_FLOWER_KEY_ETH_TYPE={0x6, 0x8, 0x806}, @TCA_FLOWER_KEY_IPV4_SRC={0x8, 0xa, @loopback}]}}]}, 0x44}}, 0x0) r10 = socket$netlink(0x10, 0x3, 0x0) sendmmsg(r10, &(0x7f00000002c0), 0x40000000000009f, 0x0) 1.224252516s ago: executing program 1 (id=783): syz_mount_image$hfsplus(&(0x7f0000000000), &(0x7f0000000100)='./bus\x00', 0x180000c, &(0x7f0000000900)=ANY=[@ANYBLOB='nls=ascii,gid=', @ANYRESHEX=0x0, @ANYBLOB="2c706172743d3078303030303030303030303030303062622c6e6f626172726965722c6e6f626172726965722c63726561746f723d7fcfb5b72c706172743d3078303030303030303030303030303130312c6769643d", @ANYRESHEX=0x0, @ANYBLOB="2c756d61736b3d30303030303030303030303030303030303030303030302c6465636f6d706f73652c666f7263652c6e6f6465636f6d706f73652c626172726965722c6e6f6465636f6d706f73652c747970653db029e1c02c7569643d", @ANYRES16, @ANYBLOB="2c747970653dd2100d1b2c7529643dd4f81c66210bbcbf82440a104ab956f2ba5e36e41ccb1b040fa8b829b0b87078de654c66ac22aebaa2c653ef127e38e0aa2229f9cf6a8503e4ead3bb30eb04e1952322fcbe932bfaf6000000008ad90e1e3045b07a4b35981d644efce3f33db92804d526790022b70ab551796c99c39c941054f805de463f77b9513ae9ce349ab417837085febc63572b4e5564a40f8f31f0207916cb53fbb8b06bbcd0808356bcc1a966a78f8da71b0ea82044f24a3f536c6d7e79bd634191a801ca30ce4894fa19537b3f94f4a6e44032f7fb91", @ANYRESDEC=0x0, @ANYBLOB="060000bd00", @ANYRES32=0x0, @ANYRES8=0x0], 0x1, 0x6ed, &(0x7f0000000dc0)="$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") setxattr$security_capability(0x0, &(0x7f0000000280), 0x0, 0x0, 0x0) socket$inet_tcp(0x2, 0x1, 0x0) r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, 0x0) r1 = getpid() sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e) sched_setscheduler(r1, 0x2, &(0x7f0000000300)=0x5) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) socketpair(0xa, 0x1, 0x0, &(0x7f0000000000)) bind$bt_hci(r0, &(0x7f0000000100), 0x6) ioctl$sock_bt_hci(r0, 0x800448d5, &(0x7f0000000000)) 440.279943ms ago: executing program 2 (id=784): syz_mount_image$hfsplus(&(0x7f0000000000), &(0x7f0000000040)='./bus\x00', 0x4810, &(0x7f0000000140)=ANY=[], 0x11, 0x693, &(0x7f0000000f40)="$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") setxattr$trusted_overlay_upper(0x0, &(0x7f00000001c0), &(0x7f0000000300)=ANY=[], 0x841, 0x0) llistxattr(&(0x7f00000000c0)='./file1\x00', &(0x7f0000000100)=""/164, 0xa4) 273.530576ms ago: executing program 2 (id=785): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0xb, 0x8, 0xc, 0x3, 0x1, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000300)={r0, 0x58, &(0x7f0000000a00)={0x0, 0x0}}, 0x10) bpf$BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f0000000a80)={r1}, 0xc) 138.048128ms ago: executing program 1 (id=786): r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000d00)={0x0, 0x0, &(0x7f0000000ac0)={&(0x7f0000000540)=@delpolicy={0x68, 0x14, 0x1, 0x0, 0x0, {{@in6=@local, @in6=@mcast2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xee00}}, [@sec_ctx={0xc, 0x8, {0x8}}, @mark={0xc}]}, 0x68}}, 0x0) 86.969953ms ago: executing program 2 (id=787): socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000003c0)) bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000038c0)=ANY=[@ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) ioctl$sock_inet_SIOCSIFFLAGS(r0, 0x8924, &(0x7f00000000c0)={'wlan0\x00', 0x1}) 7.981839ms ago: executing program 2 (id=788): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x5) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) r3 = getpid() sched_setscheduler(r3, 0x0, &(0x7f0000001700)=0x7fff) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r4, 0x6, 0x14, &(0x7f0000000100)=0x2, 0x4) recvmmsg(r4, &(0x7f0000000080), 0x21e, 0x40010002, 0x0) r5 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='net/wireless\x00') ioctl$ASHMEM_GET_PIN_STATUS(r5, 0x7709, 0x0) add_key$fscrypt_v1(&(0x7f0000000040), &(0x7f00000008c0)={'fscrypt:', @desc3}, &(0x7f0000000a00)={0x0, "65965cb771ea737cb5d6dd03edf5f4d24c4b8b98674ebe821104a2b2e96cb892c9865e0992fd5ba5a5201ad7b8df09f4e17928a80a332ddd1b10fd9212b4743e", 0x10}, 0x48, 0xfffffffffffffffc) preadv(r5, &(0x7f0000000080)=[{&(0x7f0000000900)=""/212, 0xd4}, {0x0}], 0x2, 0xa2, 0x0) 0s ago: executing program 1 (id=789): syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x21081e, &(0x7f00000001c0)={[{@grpquota}, {@nouid32}, {@minixdf}]}, 0x1, 0x504, &(0x7f0000001480)="$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") r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0) pwrite64(r0, &(0x7f0000000140)='2', 0x1, 0x8000c61) ioctl$EXT4_IOC_MOVE_EXT(r0, 0x40305829, &(0x7f00000000c0)={0x17c04, 0xffffffffffffffff, 0x4, 0x7a92}) kernel console output (not intermixed with test programs): 7 [ 69.454714][ T4284] F2FS-fs (loop0): Invalid Fs Meta Ino: node(1) meta(2) root(0) [ 69.456862][ T4284] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock [ 69.461143][ T4284] F2FS-fs (loop0): invalid crc value [ 69.535489][ T4284] F2FS-fs (loop0): Found nat_bits in checkpoint [ 69.578165][ T4284] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0 [ 69.580204][ T4284] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5 [ 69.617734][ T13] cfg80211: failed to load regulatory.db [ 69.624968][ T2053] ieee802154 phy0 wpan0: encryption failed: -22 [ 69.626827][ T2053] ieee802154 phy1 wpan1: encryption failed: -22 [ 70.484742][ T4036] attempt to access beyond end of device [ 70.484742][ T4036] loop0: rw=2049, want=45104, limit=40427 [ 71.068019][ T4261] netdevsim netdevsim3 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0 [ 71.070994][ T4261] netdevsim netdevsim3 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0 [ 71.074989][ T4261] netdevsim netdevsim3 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0 [ 71.082232][ T4261] netdevsim netdevsim3 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0 [ 71.469000][ T4309] loop0: detected capacity change from 0 to 2048 [ 71.637321][ T4262] device bridge_slave_0 left promiscuous mode [ 71.639383][ T4262] bridge0: port 1(bridge_slave_0) entered disabled state [ 71.660287][ T4309] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 71.919566][ T4262] device bridge_slave_1 left promiscuous mode [ 71.920888][ T4312] EXT4-fs error (device loop0): ext4_validate_block_bitmap:438: comm ext4lazyinit: bg 0: block 288: padding at end of block bitmap is not set [ 71.921437][ T4262] bridge0: port 2(bridge_slave_1) entered disabled state [ 75.369610][ T4139] Bluetooth: hci1: command 0x0409 tx timeout [ 75.449209][ T4262] bond0: (slave bond_slave_0): Releasing backup interface [ 75.544050][ T4262] bond0: (slave bond_slave_1): Releasing backup interface [ 75.608654][ T4262] team0: Port device team_slave_0 removed [ 75.624944][ T4262] team0: Port device team_slave_1 removed [ 75.651942][ T4262] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 75.652192][ T4317] loop0: detected capacity change from 0 to 1024 [ 75.661452][ T4262] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 75.878207][ T4323] loop4: detected capacity change from 0 to 256 [ 75.984575][ T4323] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0x205ad3fc, utbl_chksum : 0xe619d30d) [ 76.860384][ T315] hfsplus: b-tree write err: -5, ino 4 [ 77.049825][ T4299] chnl_net:caif_netlink_parms(): no params data found [ 77.383629][ T4139] Bluetooth: hci1: command 0x041b tx timeout [ 77.387998][ T4299] bridge0: port 1(bridge_slave_0) entered blocking state [ 77.389857][ T4299] bridge0: port 1(bridge_slave_0) entered disabled state [ 77.392565][ T4299] device bridge_slave_0 entered promiscuous mode [ 77.400432][ T4299] bridge0: port 2(bridge_slave_1) entered blocking state [ 77.404457][ T4299] bridge0: port 2(bridge_slave_1) entered disabled state [ 77.409345][ T4299] device bridge_slave_1 entered promiscuous mode [ 77.607987][ T4299] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 77.612417][ T4299] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 77.631187][ T4325] loop3: detected capacity change from 0 to 40427 [ 77.687730][ T4325] F2FS-fs (loop3): Invalid Fs Meta Ino: node(1) meta(2) root(0) [ 77.689629][ T4325] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock [ 77.705186][ T4185] device hsr_slave_0 left promiscuous mode [ 77.728803][ T4325] F2FS-fs (loop3): invalid crc value [ 77.754400][ T4185] device hsr_slave_1 left promiscuous mode [ 77.775097][ T4325] F2FS-fs (loop3): Found nat_bits in checkpoint [ 77.865635][ T4185] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 77.867614][ T4185] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 77.869511][ T4325] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0 [ 77.871394][ T4325] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5 [ 77.891291][ T4185] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 77.893302][ T4185] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 77.930422][ T4185] device bridge_slave_1 left promiscuous mode [ 77.932821][ T4185] bridge0: port 2(bridge_slave_1) entered disabled state [ 78.129117][ T4353] loop0: detected capacity change from 0 to 2048 [ 78.144120][ T4185] device bridge_slave_0 left promiscuous mode [ 78.145913][ T4185] bridge0: port 1(bridge_slave_0) entered disabled state [ 79.059941][ T4208] attempt to access beyond end of device [ 79.059941][ T4208] loop3: rw=2049, want=45104, limit=40427 [ 79.244691][ T4185] device veth1_macvtap left promiscuous mode [ 79.246690][ T4185] device veth0_macvtap left promiscuous mode [ 79.251383][ T4185] device veth1_vlan left promiscuous mode [ 79.253201][ T4185] device veth0_vlan left promiscuous mode [ 79.274726][ T4353] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 79.491037][ T7] Bluetooth: hci1: command 0x040f tx timeout [ 82.264853][ T7] Bluetooth: hci1: command 0x0419 tx timeout [ 82.999943][ T4376] loop0: detected capacity change from 0 to 128 [ 83.029126][ T4378] loop1: detected capacity change from 0 to 256 [ 83.922965][ T4376] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 83.973860][ T4383] loop4: detected capacity change from 0 to 1024 [ 83.980569][ T4378] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x205ad3fc, utbl_chksum : 0xe619d30d) [ 85.119803][ T4084] hfsplus: b-tree write err: -5, ino 4 [ 85.200884][ T4185] team0 (unregistering): Port device team_slave_1 removed [ 85.229849][ T4185] team0 (unregistering): Port device team_slave_0 removed [ 85.253386][ T4185] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 85.263424][ T4397] loop1: detected capacity change from 0 to 2048 [ 85.334537][ T4185] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 85.362164][ T4397] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 85.557247][ T4185] bond0 (unregistering): Released all slaves [ 86.420213][ T4399] loop4: detected capacity change from 0 to 40427 [ 86.427400][ T4299] team0: Port device team_slave_0 added [ 86.431371][ T4299] team0: Port device team_slave_1 added [ 86.526618][ T4299] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 86.528596][ T4299] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 86.539542][ T4399] F2FS-fs (loop4): Invalid Fs Meta Ino: node(1) meta(2) root(0) [ 86.541718][ T4399] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock [ 86.550275][ T4399] F2FS-fs (loop4): invalid crc value [ 86.554333][ T4299] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 86.569254][ T4299] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 86.573699][ T4299] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 86.620096][ T4299] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 86.664613][ T4399] F2FS-fs (loop4): Found nat_bits in checkpoint [ 86.853738][ T4399] F2FS-fs (loop4): Try to recover 1th superblock, ret: 0 [ 86.856189][ T4399] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5 [ 87.637660][ T4299] device hsr_slave_0 entered promiscuous mode [ 89.887383][ T4421] loop0: detected capacity change from 0 to 256 [ 89.894884][ T4041] attempt to access beyond end of device [ 89.894884][ T4041] loop4: rw=2049, want=45104, limit=40427 [ 89.919153][ T4299] device hsr_slave_1 entered promiscuous mode [ 89.927756][ T4421] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0x205ad3fc, utbl_chksum : 0xe619d30d) [ 90.204973][ T4299] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 90.329578][ T4433] loop0: detected capacity change from 0 to 2048 [ 90.462505][ T4299] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 90.487840][ T4433] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 90.504227][ T4435] loop1: detected capacity change from 0 to 128 [ 90.667749][ T4299] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 90.704547][ T4435] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 92.241928][ T4443] EXT4-fs error (device loop0): ext4_validate_block_bitmap:438: comm ext4lazyinit: bg 0: block 288: padding at end of block bitmap is not set [ 92.265225][ T4299] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 92.565356][ T4462] loop4: detected capacity change from 0 to 256 [ 92.629979][ T4462] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0x205ad3fc, utbl_chksum : 0xe619d30d) [ 92.879225][ T4299] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 92.947151][ T4299] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 92.998594][ T4299] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 93.038105][ T4299] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 93.771651][ T4299] 8021q: adding VLAN 0 to HW filter on device bond0 [ 93.819490][ T4315] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 93.832403][ T4315] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 93.837265][ T4299] 8021q: adding VLAN 0 to HW filter on device team0 [ 93.859978][ T294] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 93.862904][ T294] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 93.883505][ T294] bridge0: port 1(bridge_slave_0) entered blocking state [ 93.885624][ T294] bridge0: port 1(bridge_slave_0) entered forwarding state [ 93.907647][ T294] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 93.910478][ T294] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 93.930647][ T294] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 93.933123][ T294] bridge0: port 2(bridge_slave_1) entered blocking state [ 93.935029][ T294] bridge0: port 2(bridge_slave_1) entered forwarding state [ 93.952528][ T294] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 94.006100][ T294] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 94.029227][ T294] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 94.200763][ T294] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 94.586879][ T294] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 94.779493][ T294] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 94.782110][ T294] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 94.809689][ T294] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 94.819651][ T294] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 94.896115][ T294] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 94.898964][ T294] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 94.903777][ T4299] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 95.054738][ T4457] loop0: detected capacity change from 0 to 40427 [ 95.219956][ T4457] F2FS-fs (loop0): Invalid Fs Meta Ino: node(1) meta(2) root(0) [ 95.223438][ T4457] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock [ 95.228809][ T4457] F2FS-fs (loop0): invalid crc value [ 95.974278][ T4299] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 95.977220][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 95.979283][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 96.004926][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 96.007531][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 96.029264][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 96.031951][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 96.036349][ T4457] F2FS-fs (loop0): Failed to initialize F2FS segment manager (-4) [ 96.051965][ T4299] device veth0_vlan entered promiscuous mode [ 96.058923][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 96.061625][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 96.138682][ T4299] device veth1_vlan entered promiscuous mode [ 96.208580][ T294] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 96.211315][ T294] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 96.214494][ T294] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 96.240240][ T294] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 96.246260][ T4299] device veth0_macvtap entered promiscuous mode [ 96.251289][ T4299] device veth1_macvtap entered promiscuous mode [ 96.335212][ T4299] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 96.338004][ T4299] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 96.340363][ T4299] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 96.403694][ T4299] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 96.414052][ T4299] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 96.423820][ T4299] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 96.446753][ T4299] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 96.454000][ T4299] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 96.474988][ T4299] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 96.478707][ T4084] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 96.481439][ T4084] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 96.485677][ T4084] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 96.499190][ T4084] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 96.515240][ T4492] loop0: detected capacity change from 0 to 128 [ 96.515682][ T4299] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 96.523994][ T4299] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 96.526588][ T4299] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 96.529177][ T4299] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 96.560087][ T4299] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 96.573209][ T4299] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 96.595477][ T4299] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 96.598196][ T4299] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 96.601927][ T4299] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 96.626328][ T1655] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 96.629236][ T1655] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 96.655598][ T4492] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 96.778471][ T4299] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 96.781054][ T4299] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 96.785445][ T4299] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 96.788941][ T4299] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 96.928760][ T1655] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 96.930967][ T1655] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 96.942160][ T4084] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 97.006481][ T294] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 97.008442][ T294] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 97.011792][ T4084] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 98.169762][ T4506] udc-core: couldn't find an available UDC or it's busy [ 98.172894][ T4506] misc raw-gadget: fail, usb_gadget_probe_driver returned -19 [ 98.975658][ T4520] usb usb8: usbfs: process 4520 (syz.2.108) did not claim interface 0 before use [ 103.193695][ T4537] loop3: detected capacity change from 0 to 128 [ 103.351131][ T4537] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 104.430952][ T4551] udc-core: couldn't find an available UDC or it's busy [ 104.432829][ T4551] misc raw-gadget: fail, usb_gadget_probe_driver returned -19 [ 105.623360][ T1533] Bluetooth: hci2: command 0x0409 tx timeout [ 106.407257][ T4563] loop3: detected capacity change from 0 to 256 [ 106.471908][ T4563] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0x205ad3fc, utbl_chksum : 0xe619d30d) [ 107.571386][ T4531] chnl_net:caif_netlink_parms(): no params data found [ 107.702259][ T4073] Bluetooth: hci2: command 0x041b tx timeout [ 107.751352][ T4531] bridge0: port 1(bridge_slave_0) entered blocking state [ 107.763983][ T4531] bridge0: port 1(bridge_slave_0) entered disabled state [ 107.781348][ T4531] device bridge_slave_0 entered promiscuous mode [ 107.838962][ T4531] bridge0: port 2(bridge_slave_1) entered blocking state [ 107.840983][ T4531] bridge0: port 2(bridge_slave_1) entered disabled state [ 107.877395][ T4531] device bridge_slave_1 entered promiscuous mode [ 108.407791][ T4583] loop3: detected capacity change from 0 to 40427 [ 108.491209][ T4583] F2FS-fs (loop3): invalid crc value [ 108.562152][ T4531] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 108.605070][ T4531] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 108.613017][ T4583] F2FS-fs (loop3): Found nat_bits in checkpoint [ 108.646313][ T4583] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5 [ 110.348065][ T4016] Bluetooth: hci2: command 0x040f tx timeout [ 110.897100][ T4588] loop1: detected capacity change from 0 to 128 [ 110.936153][ T4531] team0: Port device team_slave_0 added [ 110.941734][ T4208] attempt to access beyond end of device [ 110.941734][ T4208] loop3: rw=2049, want=45104, limit=40427 [ 110.954740][ T4531] team0: Port device team_slave_1 added [ 111.001532][ T4588] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 111.066117][ T4531] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 111.077710][ T4531] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 111.161901][ T4531] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 111.167063][ T4531] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 111.168987][ T4531] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 111.175730][ T4531] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 112.225716][ T4531] device hsr_slave_0 entered promiscuous mode [ 112.264760][ T4531] device hsr_slave_1 entered promiscuous mode [ 112.271838][ T4608] loop1: detected capacity change from 0 to 512 [ 112.304122][ T4531] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 112.306284][ T4531] Cannot create hsr debugfs directory [ 112.354398][ T4608] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended [ 112.365541][ T4608] EXT4-fs (loop1): orphan cleanup on readonly fs [ 112.369678][ T4608] EXT4-fs error (device loop1): ext4_mb_mark_diskspace_used:3879: comm syz.1.132: Allocating blocks 41-42 which overlap fs metadata [ 112.393345][ T4610] loop2: detected capacity change from 0 to 2048 [ 112.430760][ T4608] EXT4-fs (loop1): Remounting filesystem read-only [ 112.455073][ T4608] Quota error (device loop1): write_blk: dquota write failed [ 112.457206][ T4608] Quota error (device loop1): qtree_write_dquot: Error -117 occurred while creating quota [ 112.460233][ T4608] EXT4-fs error (device loop1): ext4_acquire_dquot:6196: comm syz.1.132: Failed to acquire dquot type 0 [ 112.470081][ T4608] EXT4-fs (loop1): 1 truncate cleaned up [ 112.513005][ T4608] EXT4-fs (loop1): pa 000000004546917b: logic 1, phys. 41, len 23 [ 112.515589][ T4608] EXT4-fs error (device loop1): ext4_mb_release_inode_pa:4896: group 0, free 22, pa_free 23 [ 112.535882][ T4608] EXT4-fs (loop1): mounted filesystem without journal. Opts: max_dir_size_kb=0x0000000000000005,noblock_validity,usrquota,resgid=0x0000000000000000,nogrpid,errors=remount-ro,noinit_itable,inode_readahead_blks=0x0000000000000001,resuid=0x00000000000000002. Quota mode: writeback. [ 112.556433][ T4185] device hsr_slave_0 left promiscuous mode [ 112.567868][ T4608] udc-core: couldn't find an available UDC or it's busy [ 112.569578][ T4608] misc raw-gadget: fail, usb_gadget_probe_driver returned -19 [ 112.583888][ T4185] device hsr_slave_1 left promiscuous mode [ 112.588667][ T4610] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 112.784462][ T4185] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 112.786325][ T4185] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 112.789063][ T4185] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 112.790962][ T4185] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 112.846751][ T4185] device bridge_slave_1 left promiscuous mode [ 112.864070][ T4618] fs-verity: sha512 using implementation "sha512-arm64" [ 112.897341][ T4185] bridge0: port 2(bridge_slave_1) entered disabled state [ 112.973873][ T4594] Bluetooth: hci2: command 0x0419 tx timeout [ 113.094954][ T4618] EXT4-fs error (device loop2): ext4_validate_block_bitmap:438: comm syz.2.133: bg 0: block 288: padding at end of block bitmap is not set [ 113.128267][ T4618] fs-verity (loop2, inode 13): ext4_end_enable_verity() failed with err -117 [ 113.238740][ T4185] device bridge_slave_0 left promiscuous mode [ 113.240313][ T4185] bridge0: port 1(bridge_slave_0) entered disabled state [ 113.408252][ T4612] loop3: detected capacity change from 0 to 40427 [ 113.442513][ T4620] loop0: detected capacity change from 0 to 256 [ 113.523904][ T4185] device veth1_macvtap left promiscuous mode [ 113.525485][ T4185] device veth0_macvtap left promiscuous mode [ 113.527082][ T4185] device veth1_vlan left promiscuous mode [ 113.527368][ T4612] F2FS-fs (loop3): Invalid Fs Meta Ino: node(1) meta(2) root(0) [ 113.528610][ T4185] device veth0_vlan left promiscuous mode [ 113.530473][ T4612] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock [ 113.532035][ T4612] F2FS-fs (loop3): invalid crc value [ 113.552600][ T4620] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0x205ad3fc, utbl_chksum : 0xe619d30d) [ 113.710318][ T4612] F2FS-fs (loop3): Found nat_bits in checkpoint [ 113.754801][ T4612] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0 [ 113.756707][ T4612] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5 [ 113.959799][ T4631] loop1: detected capacity change from 0 to 2048 [ 114.606314][ T4637] Zero length message leads to an empty skb [ 114.741887][ T4208] attempt to access beyond end of device [ 114.741887][ T4208] loop3: rw=2049, want=45104, limit=40427 [ 115.137346][ T4185] team0 (unregistering): Port device team_slave_1 removed [ 115.153788][ T4185] team0 (unregistering): Port device team_slave_0 removed [ 115.162086][ T4185] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 115.221633][ T4185] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 115.827549][ T4651] openvswitch: netlink: Message has 8 unknown bytes. [ 116.532729][ T4652] loop3: detected capacity change from 0 to 128 [ 117.392944][ T4185] bond0 (unregistering): Released all slaves [ 117.459992][ T4652] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 117.485633][ T13] libceph: connect (1)[c::]:6789 error -101 [ 117.487735][ T13] libceph: mon0 (1)[c::]:6789 connect error [ 117.491370][ T13] libceph: connect (1)[c::]:6789 error -101 [ 117.492894][ T13] libceph: mon0 (1)[c::]:6789 connect error [ 117.530296][ T4660] ceph: No mds server is up or the cluster is laggy [ 117.771862][ T4667] loop1: detected capacity change from 0 to 512 [ 117.826982][ T4667] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended [ 117.852892][ T4667] EXT4-fs (loop1): orphan cleanup on readonly fs [ 117.853956][ T4531] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 118.715742][ T4531] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 118.744226][ T4667] EXT4-fs error (device loop1): ext4_mb_mark_diskspace_used:3879: comm syz.1.145: Allocating blocks 41-42 which overlap fs metadata [ 118.764636][ T4667] EXT4-fs (loop1): Remounting filesystem read-only [ 118.766472][ T4667] Quota error (device loop1): write_blk: dquota write failed [ 118.768348][ T4667] Quota error (device loop1): qtree_write_dquot: Error -117 occurred while creating quota [ 118.771005][ T4667] EXT4-fs error (device loop1): ext4_acquire_dquot:6196: comm syz.1.145: Failed to acquire dquot type 0 [ 118.784223][ T4667] EXT4-fs (loop1): 1 truncate cleaned up [ 118.786859][ T4667] EXT4-fs (loop1): pa 000000002c9a2954: logic 1, phys. 41, len 23 [ 118.788714][ T4667] EXT4-fs error (device loop1): ext4_mb_release_inode_pa:4896: group 0, free 22, pa_free 23 [ 118.823838][ T4667] EXT4-fs (loop1): mounted filesystem without journal. Opts: max_dir_size_kb=0x0000000000000005,noblock_validity,usrquota,resgid=0x0000000000000000,nogrpid,errors=remount-ro,noinit_itable,inode_readahead_blks=0x0000000000000001,resuid=0x00000000000000002. Quota mode: writeback. [ 118.828925][ T4676] loop0: detected capacity change from 0 to 256 [ 118.830956][ T4675] openvswitch: netlink: Key 0 has unexpected len 2 expected 0 [ 118.837943][ T4531] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 118.864604][ T4676] FAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 118.865790][ T4667] udc-core: couldn't find an available UDC or it's busy [ 118.869167][ T4667] misc raw-gadget: fail, usb_gadget_probe_driver returned -19 [ 118.932779][ T4531] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 119.870742][ T4531] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 119.968577][ T4673] loop2: detected capacity change from 0 to 40427 [ 119.978071][ T4531] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 120.007944][ T4673] F2FS-fs (loop2): Invalid Fs Meta Ino: node(1) meta(2) root(0) [ 120.009996][ T4673] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock [ 120.014913][ T4673] F2FS-fs (loop2): invalid crc value [ 120.030395][ T4685] iwpm_register_pid: Unable to send a nlmsg (client = 2) [ 120.033653][ T4531] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 120.051547][ T4685] infiniband syz0: RDMA CMA: cma_listen_on_dev, error -98 [ 120.062015][ T4673] F2FS-fs (loop2): Found nat_bits in checkpoint [ 120.076659][ T4531] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 120.088829][ T4673] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0 [ 120.090789][ T4673] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5 [ 121.889784][ T4299] attempt to access beyond end of device [ 121.889784][ T4299] loop2: rw=2049, want=45104, limit=40427 [ 121.945444][ T4707] loop3: detected capacity change from 0 to 128 [ 122.163753][ T4531] 8021q: adding VLAN 0 to HW filter on device bond0 [ 122.444342][ T315] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 122.446880][ T315] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 122.455083][ T4531] 8021q: adding VLAN 0 to HW filter on device team0 [ 122.489988][ T4380] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 122.492716][ T4380] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 122.496341][ T4380] bridge0: port 1(bridge_slave_0) entered blocking state [ 122.498028][ T4380] bridge0: port 1(bridge_slave_0) entered forwarding state [ 122.543748][ T4380] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 122.546254][ T4380] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 122.551534][ T4380] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 122.619186][ T4380] bridge0: port 2(bridge_slave_1) entered blocking state [ 122.621009][ T4380] bridge0: port 2(bridge_slave_1) entered forwarding state [ 122.623434][ T4380] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 122.654086][ T4380] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 122.657226][ T4380] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 122.668337][ T4380] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 122.677427][ T4380] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 122.687626][ T4380] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 122.702585][ T4531] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 122.716380][ T4531] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 122.733210][ T4380] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 122.737332][ T4380] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 122.740039][ T4380] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 122.743476][ T4380] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 122.763321][ T4380] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 122.766206][ T13] usb 1-1: new high-speed USB device number 4 using dummy_hcd [ 122.780286][ T4380] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 122.875941][ T4707] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 124.004309][ T13] usb 1-1: Using ep0 maxpacket: 16 [ 124.161423][ T4727] loop3: detected capacity change from 0 to 512 [ 124.167873][ T4380] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 124.180213][ T4380] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 124.194750][ T4531] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 124.197707][ T4727] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended [ 124.203853][ T13] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 124.206555][ T13] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7 [ 124.209293][ T13] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x2 has invalid wMaxPacketSize 0 [ 124.211469][ T13] usb 1-1: config 0 interface 0 altsetting 0 bulk endpoint 0x2 has invalid maxpacket 0 [ 124.231197][ T13] usb 1-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 124.251973][ T4727] EXT4-fs (loop3): orphan cleanup on readonly fs [ 124.257801][ T4727] EXT4-fs error (device loop3): ext4_mb_mark_diskspace_used:3879: comm syz.3.161: Allocating blocks 41-42 which overlap fs metadata [ 124.277776][ T4727] EXT4-fs (loop3): Remounting filesystem read-only [ 124.279530][ T4727] Quota error (device loop3): write_blk: dquota write failed [ 124.281312][ T4727] Quota error (device loop3): qtree_write_dquot: Error -117 occurred while creating quota [ 124.310461][ T4727] EXT4-fs error (device loop3): ext4_acquire_dquot:6196: comm syz.3.161: Failed to acquire dquot type 0 [ 124.317482][ T4727] EXT4-fs (loop3): 1 truncate cleaned up [ 124.319318][ T4727] EXT4-fs (loop3): pa 000000005d306cb7: logic 1, phys. 41, len 23 [ 124.321288][ T4727] EXT4-fs error (device loop3): ext4_mb_release_inode_pa:4896: group 0, free 22, pa_free 23 [ 124.334492][ T4727] EXT4-fs (loop3): mounted filesystem without journal. Opts: max_dir_size_kb=0x0000000000000005,noblock_validity,usrquota,resgid=0x0000000000000000,nogrpid,errors=remount-ro,noinit_itable,inode_readahead_blks=0x0000000000000001,resuid=0x00000000000000002. Quota mode: writeback. [ 124.343829][ T13] usb 1-1: New USB device found, idVendor=2040, idProduct=b138, bcdDevice= 1.42 [ 124.346121][ T13] usb 1-1: New USB device strings: Mfr=4, Product=0, SerialNumber=0 [ 124.348144][ T13] usb 1-1: Manufacturer: syz [ 124.351313][ T4727] udc-core: couldn't find an available UDC or it's busy [ 124.353125][ T4727] misc raw-gadget: fail, usb_gadget_probe_driver returned -19 [ 124.356676][ T13] usb 1-1: config 0 descriptor?? [ 124.359991][ T4737] loop1: detected capacity change from 0 to 512 [ 124.438463][ T4737] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support! [ 124.442526][ T4737] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 124.474886][ T4737] EXT4-fs warning (device loop1): ext4_expand_extra_isize_ea:2815: Unable to expand inode 15. Delete some EAs or run e2fsck. [ 124.482039][ T4737] EXT4-fs (loop1): 1 truncate cleaned up [ 124.493946][ T4737] EXT4-fs (loop1): mounted filesystem without journal. Opts: i_version,max_batch_time=0x0000000000000fff,debug_want_extra_isize=0x0000000000000068,lazytime,block_validity,quota,,errors=continue. Quota mode: writeback. [ 124.593395][ T4745] overlayfs: workdir and upperdir must be separate subtrees [ 124.599883][ T1655] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 124.602747][ T1655] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 124.624170][ T294] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 124.626753][ T294] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 124.642814][ T294] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 124.672647][ T294] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 124.692341][ T4531] device veth0_vlan entered promiscuous mode [ 124.707372][ T4531] device veth1_vlan entered promiscuous mode [ 124.755753][ T4380] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 124.758315][ T4380] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 124.760789][ T4380] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 124.766344][ T4380] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 124.771658][ T4531] device veth0_macvtap entered promiscuous mode [ 124.776999][ T4531] device veth1_macvtap entered promiscuous mode [ 124.801664][ T4531] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 124.804835][ T4531] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 124.807229][ T4531] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 124.809690][ T4531] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 124.812217][ T4531] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 124.835941][ T4531] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 124.838452][ T4531] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 124.840873][ T4531] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 124.860996][ T4531] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 124.863207][ T4315] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 124.873265][ T4315] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 124.876889][ T4315] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 124.915240][ T4315] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 125.029485][ T4531] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 125.042493][ T4531] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 125.054767][ T4531] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 125.069751][ T13] Registered IR keymap rc-hauppauge [ 125.074954][ T4531] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 125.077407][ T4531] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 125.098280][ T4531] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 125.134339][ T13] rc_core: Loaded IR protocol module ir-rc5-decoder, but protocol rc-5 still not available [ 125.137011][ T13] mceusb 1-1:0.0: Error: mce write submit urb error = -90 [ 125.163678][ T13] mceusb 1-1:0.0: Error: mce write submit urb error = -90 [ 125.174503][ T4531] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 125.177032][ T4531] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 125.181330][ T4531] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 125.195152][ T13] rc rc0: Conexant Hybrid TV (cx231xx) MCE IR no TX (2040:b138) as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/rc/rc0 [ 125.199194][ T13] input: Conexant Hybrid TV (cx231xx) MCE IR no TX (2040:b138) as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/rc/rc0/input2 [ 125.223423][ T4531] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 125.240002][ T4531] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 125.250664][ T4531] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 125.264154][ T4531] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 125.266953][ T13] mceusb 1-1:0.0: Error: mce write submit urb error = -90 [ 125.340780][ T4081] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 125.445250][ T4081] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 126.137508][ T13] mceusb 1-1:0.0: Error: mce write submit urb error = -90 [ 126.170746][ T4315] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 126.173320][ T4315] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 126.173709][ T13] mceusb 1-1:0.0: Error: mce write submit urb error = -90 [ 126.178873][ T4380] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 126.192204][ T4081] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 126.197976][ T4081] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 126.204173][ T13] mceusb 1-1:0.0: Error: mce write submit urb error = -90 [ 126.211673][ T4081] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 126.244859][ T13] mceusb 1-1:0.0: Error: mce write submit urb error = -90 [ 126.273649][ T13] mceusb 1-1:0.0: Error: mce write submit urb error = -90 [ 126.278796][ T4768] loop3: detected capacity change from 0 to 2048 [ 126.304290][ T13] mceusb 1-1:0.0: Error: mce write submit urb error = -90 [ 126.457688][ T4768] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 126.483692][ T13] mceusb 1-1:0.0: Error: mce write submit urb error = -90 [ 126.496677][ T4787] capability: warning: `syz.1.176' uses deprecated v2 capabilities in a way that may be insecure [ 126.523697][ T13] mceusb 1-1:0.0: Error: mce write submit urb error = -90 [ 126.555577][ T13] mceusb 1-1:0.0: Error: mce write submit urb error = -90 [ 126.861457][ T4789] loop4: detected capacity change from 0 to 512 [ 126.990120][ T13] mceusb 1-1:0.0: Registered 424242424242 with mce emulator interface version 1 [ 126.992561][ T13] mceusb 1-1:0.0: 2 tx ports (0x0 cabled) and 2 rx sensors (0x0 active) [ 126.998922][ T13] usb 1-1: USB disconnect, device number 4 [ 127.097909][ T4789] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended [ 127.111836][ T4789] EXT4-fs (loop4): orphan cleanup on readonly fs [ 127.114885][ T4789] EXT4-fs error (device loop4): ext4_mb_mark_diskspace_used:3879: comm syz.4.178: Allocating blocks 41-42 which overlap fs metadata [ 127.147821][ T4789] EXT4-fs (loop4): Remounting filesystem read-only [ 127.149626][ T4789] Quota error (device loop4): write_blk: dquota write failed [ 127.151492][ T4789] Quota error (device loop4): qtree_write_dquot: Error -117 occurred while creating quota [ 127.156480][ T4789] EXT4-fs error (device loop4): ext4_acquire_dquot:6196: comm syz.4.178: Failed to acquire dquot type 0 [ 127.160301][ T4789] EXT4-fs (loop4): 1 truncate cleaned up [ 127.162087][ T4789] EXT4-fs (loop4): pa 00000000296798a6: logic 1, phys. 41, len 23 [ 127.164223][ T4789] EXT4-fs error (device loop4): ext4_mb_release_inode_pa:4896: group 0, free 22, pa_free 23 [ 127.186950][ T4789] EXT4-fs (loop4): mounted filesystem without journal. Opts: max_dir_size_kb=0x0000000000000005,noblock_validity,usrquota,resgid=0x0000000000000000,nogrpid,errors=remount-ro,noinit_itable,inode_readahead_blks=0x0000000000000001,resuid=0x00000000000000002. Quota mode: writeback. [ 127.252953][ T4789] udc-core: couldn't find an available UDC or it's busy [ 127.254864][ T4789] misc raw-gadget: fail, usb_gadget_probe_driver returned -19 [ 127.273917][ T4806] loop3: detected capacity change from 0 to 256 [ 127.311801][ T4806] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0x205ad3fc, utbl_chksum : 0xe619d30d) [ 128.250573][ T4824] loop0: detected capacity change from 0 to 64 [ 128.742433][ T26] audit: type=1326 audit(128.710:2): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4826 comm="syz.4.189" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffa2c0f9a8 code=0x7ffc0000 [ 128.765581][ T26] audit: type=1326 audit(128.740:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4826 comm="syz.4.189" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffa2c0f9a8 code=0x7ffc0000 [ 128.770728][ T26] audit: type=1326 audit(128.740:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4826 comm="syz.4.189" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=40 compat=0 ip=0xffffa2c0f9a8 code=0x7ffc0000 [ 128.782273][ T4824] MINIX-fs: mounting unchecked file system, running fsck is recommended [ 128.822967][ T26] audit: type=1326 audit(128.740:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4826 comm="syz.4.189" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffa2c0f9a8 code=0x7ffc0000 [ 128.856217][ T26] audit: type=1326 audit(128.740:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4826 comm="syz.4.189" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffa2c0f9a8 code=0x7ffc0000 [ 128.882694][ T26] audit: type=1326 audit(128.740:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4826 comm="syz.4.189" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=26 compat=0 ip=0xffffa2c0f9a8 code=0x7ffc0000 [ 128.994032][ T4829] loop1: detected capacity change from 0 to 40427 [ 129.073344][ T4829] F2FS-fs (loop1): invalid crc value [ 129.279639][ T4829] F2FS-fs (loop1): Found nat_bits in checkpoint [ 129.421476][ T4843] netlink: 28 bytes leftover after parsing attributes in process `syz.0.194'. [ 130.257049][ T4829] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5 [ 131.870235][ T2053] ieee802154 phy0 wpan0: encryption failed: -22 [ 131.871974][ T2053] ieee802154 phy1 wpan1: encryption failed: -22 [ 132.032660][ T4850] loop0: detected capacity change from 0 to 512 [ 132.147445][ T4850] EXT4-fs (loop0): unable to read superblock [ 132.150138][ T4026] attempt to access beyond end of device [ 132.150138][ T4026] loop1: rw=2049, want=45104, limit=40427 [ 132.379804][ T4855] loop4: detected capacity change from 0 to 512 [ 132.454531][ T4855] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended [ 132.497551][ T4855] EXT4-fs (loop4): orphan cleanup on readonly fs [ 132.501244][ T4855] EXT4-fs error (device loop4): ext4_mb_mark_diskspace_used:3879: comm syz.4.199: Allocating blocks 41-42 which overlap fs metadata [ 132.514161][ T4855] EXT4-fs (loop4): Remounting filesystem read-only [ 132.515750][ T4855] __quota_error: 22 callbacks suppressed [ 132.515761][ T4855] Quota error (device loop4): write_blk: dquota write failed [ 132.519015][ T4855] Quota error (device loop4): qtree_write_dquot: Error -117 occurred while creating quota [ 132.521507][ T4855] EXT4-fs error (device loop4): ext4_acquire_dquot:6196: comm syz.4.199: Failed to acquire dquot type 0 [ 132.533901][ T4855] EXT4-fs (loop4): 1 truncate cleaned up [ 132.543788][ T4855] EXT4-fs (loop4): pa 000000006756cccc: logic 1, phys. 41, len 23 [ 132.545718][ T4855] EXT4-fs error (device loop4): ext4_mb_release_inode_pa:4896: group 0, free 22, pa_free 23 [ 132.548832][ T4855] EXT4-fs (loop4): mounted filesystem without journal. Opts: max_dir_size_kb=0x0000000000000005,noblock_validity,usrquota,resgid=0x0000000000000000,nogrpid,errors=remount-ro,noinit_itable,inode_readahead_blks=0x0000000000000001,resuid=0x00000000000000002. Quota mode: writeback. [ 132.559142][ T4855] udc-core: couldn't find an available UDC or it's busy [ 132.560806][ T4855] misc raw-gadget: fail, usb_gadget_probe_driver returned -19 [ 132.592930][ T4861] loop1: detected capacity change from 0 to 64 [ 133.884377][ T4867] loop1: detected capacity change from 0 to 512 [ 133.915537][ T4867] EXT4-fs (loop1): unable to read superblock [ 133.995239][ T4875] netlink: 492 bytes leftover after parsing attributes in process `syz.0.203'. [ 134.640639][ T4874] loop4: detected capacity change from 0 to 1024 [ 134.827599][ T26] audit: type=1326 audit(134.800:30): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4882 comm="syz.2.208" exe="/root/syz-executor" sig=31 arch=c00000b7 syscall=98 compat=0 ip=0xffffbb5dc9a8 code=0x0 [ 134.950608][ T4874] EXT4-fs (loop4): Test dummy encryption mode enabled [ 134.952553][ T4874] EXT4-fs (loop4): Ignoring removed orlov option [ 135.006002][ T4874] EXT4-fs (loop4): mounted filesystem without journal. Opts: test_dummy_encryption,debug_want_extra_isize=0x0000000000000084,stripe=0x0000000000000007,commit=0x0000000000000005,orlov,barrier=0x0000000000000005,max_batch_time=0x0000000000000000,data_err=abort,,errors=continue. Quota mode: writeback. [ 136.252021][ T4867] loop1: detected capacity change from 0 to 32768 [ 136.256923][ T4893] fscrypt: AES-256-CTS-CBC using implementation "cts-cbc-aes-ce" [ 136.361692][ T4185] device hsr_slave_0 left promiscuous mode [ 136.475415][ T4185] device hsr_slave_1 left promiscuous mode [ 136.494386][ T4867] XFS (loop1): Mounting V5 Filesystem [ 136.570542][ T4915] udc-core: couldn't find an available UDC or it's busy [ 136.572365][ T4915] misc raw-gadget: fail, usb_gadget_probe_driver returned -19 [ 136.593844][ T4185] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 136.595890][ T4185] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 136.600276][ T4185] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 136.603785][ T4185] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 136.610501][ T4185] device bridge_slave_1 left promiscuous mode [ 136.618840][ T4185] bridge0: port 2(bridge_slave_1) entered disabled state [ 136.637358][ T4867] XFS (loop1): Ending clean mount [ 136.682351][ T4867] XFS (loop1): Quotacheck needed: Please wait. [ 136.704070][ T4185] device bridge_slave_0 left promiscuous mode [ 136.706149][ T4185] bridge0: port 1(bridge_slave_0) entered disabled state [ 136.749990][ T4867] XFS (loop1): Quotacheck: Done. [ 136.780872][ T4915] udc-core: couldn't find an available UDC or it's busy [ 136.782792][ T4915] misc raw-gadget: fail, usb_gadget_probe_driver returned -19 [ 136.792960][ T4026] XFS (loop1): Unmounting Filesystem [ 136.873904][ T4185] device veth1_macvtap left promiscuous mode [ 136.875530][ T4185] device veth0_macvtap left promiscuous mode [ 136.877246][ T4185] device veth1_vlan left promiscuous mode [ 136.878776][ T4185] device veth0_vlan left promiscuous mode [ 136.922739][ T4896] loop2: detected capacity change from 0 to 32768 [ 140.051995][ T4185] team0 (unregistering): Port device team_slave_1 removed [ 140.140263][ T4185] team0 (unregistering): Port device team_slave_0 removed [ 140.166960][ T4185] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 140.461480][ T4185] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 140.736874][ T4948] loop1: detected capacity change from 0 to 1764 [ 141.024919][ T4948] iso9660: Corrupted directory entry in block 2 of inode 1920 [ 141.561375][ T4185] bond0 (unregistering): Released all slaves [ 141.651925][ T4951] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 141.666362][ T4905] netlink: 'syz.0.211': attribute type 10 has an invalid length. [ 141.686817][ T4905] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 141.703921][ T4905] team0: Port device batadv0 added [ 141.707528][ T4932] netlink: 4 bytes leftover after parsing attributes in process `syz.2.216'. [ 142.771956][ T4979] loop1: detected capacity change from 0 to 1024 [ 142.835886][ T4979] EXT4-fs (loop1): Test dummy encryption mode enabled [ 142.838952][ T4979] EXT4-fs (loop1): Ignoring removed orlov option [ 142.865438][ T4979] EXT4-fs (loop1): mounted filesystem without journal. Opts: test_dummy_encryption,debug_want_extra_isize=0x0000000000000084,stripe=0x0000000000000007,commit=0x0000000000000005,orlov,barrier=0x0000000000000005,max_batch_time=0x0000000000000000,data_err=abort,,errors=continue. Quota mode: writeback. [ 142.902340][ T4986] netlink: 16 bytes leftover after parsing attributes in process `syz.4.235'. [ 143.075434][ T4964] loop2: detected capacity change from 0 to 32768 [ 144.196564][ T4987] kernel profiling enabled (shift: 17) [ 144.594076][ T4964] BTRFS: device fsid 92aec1fe-fee8-4e05-92dc-790b47b871d9 devid 1 transid 8 /dev/loop2 scanned by syz.2.228 (4964) [ 144.759627][ T4994] loop3: detected capacity change from 0 to 4096 [ 144.932200][ T4998] loop4: detected capacity change from 0 to 512 [ 144.959483][ T4964] BTRFS info (device loop2): using xxhash64 (xxhash64-generic) checksum algorithm [ 144.973728][ T4964] BTRFS info (device loop2): using free space tree [ 144.975596][ T4964] BTRFS info (device loop2): has skinny extents [ 144.999660][ T4994] loop3: detected capacity change from 0 to 128 [ 145.001586][ T4998] EXT4-fs (loop4): revision level too high, forcing read-only mode [ 145.004482][ T4998] EXT4-fs (loop4): orphan cleanup on readonly fs [ 145.037420][ T4998] EXT4-fs error (device loop4): ext4_orphan_get:1397: inode #16: comm syz.4.239: casefold flag without casefold feature [ 145.065723][ T4998] EXT4-fs error (device loop4): ext4_orphan_get:1402: comm syz.4.239: couldn't read orphan inode 16 (err -117) [ 145.081663][ T4998] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback. [ 145.133986][ T4964] BTRFS error (device loop2): open_ctree failed [ 148.227156][ T5070] loop0: detected capacity change from 0 to 4096 [ 148.464880][ T5070] NILFS (loop0): invalid segment: Checksum error in segment payload [ 148.467092][ T5070] NILFS (loop0): trying rollback from an earlier position [ 148.569926][ T5070] NILFS (loop0): recovery complete [ 148.781972][ T5075] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 150.963601][ T5087] loop2: detected capacity change from 0 to 256 [ 150.996520][ T5087] exfat: Bad value for 'uid' [ 152.273583][ T5022] usb 1-1: new high-speed USB device number 5 using dummy_hcd [ 152.342450][ T5099] loop2: detected capacity change from 0 to 4096 [ 152.395839][ T5104] loop3: detected capacity change from 0 to 512 [ 152.403750][ T5099] ntfs3: loop2: Different NTFS' sector size (4096) and media sector size (512) [ 152.490198][ T5099] ntfs3: loop2: failed to convert "c46c" to iso8859-13 [ 152.630967][ T5104] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback. [ 152.663627][ T5022] usb 1-1: Using ep0 maxpacket: 32 [ 153.581872][ T5115] ieee802154 phy0 wpan0: encryption failed: -22 [ 153.706503][ T5116] loop1: detected capacity change from 0 to 2048 [ 153.846766][ T5116] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 154.287793][ T5128] EXT4-fs error (device loop1): ext4_validate_block_bitmap:438: comm syz.1.268: bg 0: block 288: padding at end of block bitmap is not set [ 154.302139][ T5128] fs-verity (loop1, inode 13): ext4_end_enable_verity() failed with err -117 [ 154.803684][ T5022] usb 1-1: New USB device found, idVendor=174f, idProduct=6a31, bcdDevice=26.3f [ 154.806148][ T5022] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 154.815838][ T5022] usb 1-1: config 0 descriptor?? [ 154.849393][ T5022] usb 1-1: can't set config #0, error -71 [ 154.867025][ T5022] usb 1-1: USB disconnect, device number 5 [ 154.997497][ T5138] loop3: detected capacity change from 0 to 256 [ 155.024274][ T5138] exfat: Bad value for 'uid' [ 157.349090][ T5170] netlink: 16 bytes leftover after parsing attributes in process `syz.1.282'. [ 159.812384][ T5167] loop3: detected capacity change from 0 to 32768 [ 159.916676][ T5183] loop4: detected capacity change from 0 to 256 [ 159.954325][ T5183] exfat: Bad value for 'uid' [ 159.972218][ T5167] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop3 scanned by syz.3.280 (5167) [ 160.181932][ T5184] loop1: detected capacity change from 0 to 40427 [ 160.287907][ T5173] loop0: detected capacity change from 0 to 32768 [ 160.292562][ T5184] F2FS-fs (loop1): invalid crc value [ 160.312528][ T5167] BTRFS info (device loop3): using sha256 (sha256-ce) checksum algorithm [ 160.319606][ T5167] BTRFS info (device loop3): using free space tree [ 160.499650][ T5184] F2FS-fs (loop1): Found nat_bits in checkpoint [ 160.764245][ T5184] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5 [ 160.767258][ T5167] BTRFS info (device loop3): has skinny extents [ 161.903348][ T5203] attempt to access beyond end of device [ 161.903348][ T5203] loop1: rw=2049, want=53504, limit=40427 [ 161.975130][ T5167] BTRFS error (device loop3): open_ctree failed [ 163.938638][ T5237] loop4: detected capacity change from 0 to 16 [ 164.752299][ T5237] erofs: (device loop4): mounted with root inode @ nid 36. [ 164.763266][ T5235] loop0: detected capacity change from 0 to 2048 [ 164.789932][ T5235] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 165.998575][ T5244] EXT4-fs error (device loop0): ext4_validate_block_bitmap:438: comm syz.0.295: bg 0: block 288: padding at end of block bitmap is not set [ 166.025444][ T5244] fs-verity (loop0, inode 13): ext4_end_enable_verity() failed with err -117 [ 167.585537][ T5257] loop4: detected capacity change from 0 to 512 [ 167.650403][ T5257] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback. [ 167.668011][ T5262] loop2: detected capacity change from 0 to 64 [ 167.708414][ T5259] xt_policy: neither incoming nor outgoing policy selected [ 168.942695][ T5277] loop4: detected capacity change from 0 to 2048 [ 169.116029][ T4077] Bluetooth: hci0: command 0x0406 tx timeout [ 169.118296][ T4077] Bluetooth: hci3: command 0x0406 tx timeout [ 169.632114][ T5285] loop3: detected capacity change from 0 to 512 [ 169.785456][ T5285] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended [ 169.811906][ T5291] loop1: detected capacity change from 0 to 512 [ 169.828793][ T5285] EXT4-fs (loop3): orphan cleanup on readonly fs [ 169.871585][ T5292] loop0: detected capacity change from 0 to 1024 [ 169.874247][ T5277] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 170.044180][ T5297] EXT4-fs error (device loop4): ext4_validate_block_bitmap:438: comm ext4lazyinit: bg 0: block 288: padding at end of block bitmap is not set [ 170.467835][ T5299] fs-verity (loop4, inode 13): ext4_end_enable_verity() failed with err -28 [ 170.799341][ T5301] netlink: 20 bytes leftover after parsing attributes in process `syz.2.312'. [ 171.309688][ T5285] EXT4-fs error (device loop3): ext4_mb_mark_diskspace_used:3879: comm syz.3.308: Allocating blocks 41-42 which overlap fs metadata [ 171.334295][ T5285] EXT4-fs (loop3): Remounting filesystem read-only [ 171.337438][ T5291] EXT4-fs (loop1): mounted filesystem without journal. Opts: journal_ioprio=0x0000000000000002,nombcache,stripe=0x0000000000000002,usrquota,,errors=continue. Quota mode: writeback. [ 171.344869][ T5285] Quota error (device loop3): write_blk: dquota write failed [ 171.346924][ T5285] Quota error (device loop3): qtree_write_dquot: Error -117 occurred while creating quota [ 171.350239][ T5285] EXT4-fs error (device loop3): ext4_acquire_dquot:6196: comm syz.3.308: Failed to acquire dquot type 0 [ 171.353715][ T5285] EXT4-fs (loop3): 1 truncate cleaned up [ 171.356166][ T5285] EXT4-fs (loop3): pa 00000000073b9061: logic 1, phys. 41, len 23 [ 171.358273][ T5285] EXT4-fs error (device loop3): ext4_mb_release_inode_pa:4896: group 0, free 22, pa_free 23 [ 171.361301][ T5285] EXT4-fs (loop3): mounted filesystem without journal. Opts: max_dir_size_kb=0x0000000000000005,noblock_validity,usrquota,resgid=0x0000000000000000,nogrpid,errors=remount-ro,noinit_itable,inode_readahead_blks=0x0000000000000001,resuid=0x00000000000000002. Quota mode: writeback. [ 171.574274][ T5285] udc-core: couldn't find an available UDC or it's busy [ 171.576220][ T5285] misc raw-gadget: fail, usb_gadget_probe_driver returned -19 [ 172.308331][ T5308] loop2: detected capacity change from 0 to 32768 [ 172.368088][ T5308] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz" [ 172.380844][ T5308] gfs2: fsid=syz:syz: Now mounting FS (format 1801)... [ 172.547922][ T5314] loop1: detected capacity change from 0 to 32768 [ 172.562146][ T5308] gfs2: fsid=syz:syz.0: journal 0 mapped with 1 extents in 0ms [ 172.592497][ T4077] gfs2: fsid=syz:syz.0: jid=0, already locked for use [ 172.594704][ T4077] gfs2: fsid=syz:syz.0: jid=0: Looking at journal... [ 172.632364][ T5314] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop1 scanned by syz.1.315 (5314) [ 173.543688][ T5314] BTRFS info (device loop1): using sha256 (sha256-ce) checksum algorithm [ 173.549107][ T5314] BTRFS info (device loop1): enabling auto defrag [ 173.550752][ T5314] BTRFS info (device loop1): doing ref verification [ 173.555514][ T5314] BTRFS info (device loop1): use no compression [ 173.557148][ T5314] BTRFS info (device loop1): force clearing of disk cache [ 173.558816][ T5314] BTRFS info (device loop1): disabling free space tree [ 173.623663][ T5314] BTRFS info (device loop1): has skinny extents [ 173.657615][ T4077] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 1062ms [ 173.661571][ T4077] gfs2: fsid=syz:syz.0: jid=0: Done [ 173.664202][ T5308] gfs2: fsid=syz:syz.0: first mount done, others may mount [ 174.499645][ T5337] loop4: detected capacity change from 0 to 128 [ 174.643964][ T5337] UDF-fs: error (device loop4): udf_read_tagged: read failed, block=256, location=256 [ 174.650606][ T5337] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 174.713743][ T5314] BTRFS info (device loop1): enabling ssd optimizations [ 174.721109][ T5314] BTRFS info (device loop1): clearing free space tree [ 174.723367][ T5314] BTRFS info (device loop1): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1) [ 174.727933][ T5314] BTRFS info (device loop1): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2) [ 174.956242][ T5355] loop3: detected capacity change from 0 to 1024 [ 174.967193][ T5357] tipc: Started in network mode [ 175.022480][ T5357] tipc: Node identity ac14142f, cluster identity 4711 [ 175.070232][ T5357] tipc: New replicast peer: 0.0.0.0 [ 175.073137][ T5357] tipc: Enabled bearer , priority 10 [ 175.252532][ T5360] loop4: detected capacity change from 0 to 512 [ 175.385764][ T5360] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended [ 175.391220][ T5360] EXT4-fs (loop4): orphan cleanup on readonly fs [ 175.400797][ T5360] EXT4-fs error (device loop4): ext4_mb_mark_diskspace_used:3879: comm syz.4.326: Allocating blocks 41-42 which overlap fs metadata [ 175.422767][ T5362] loop1: detected capacity change from 0 to 2048 [ 175.434559][ T5360] EXT4-fs (loop4): Remounting filesystem read-only [ 175.436473][ T5360] Quota error (device loop4): write_blk: dquota write failed [ 175.438463][ T5360] Quota error (device loop4): qtree_write_dquot: Error -117 occurred while creating quota [ 175.441059][ T5360] EXT4-fs error (device loop4): ext4_acquire_dquot:6196: comm syz.4.326: Failed to acquire dquot type 0 [ 175.464209][ T5360] EXT4-fs (loop4): 1 truncate cleaned up [ 175.486652][ T5360] EXT4-fs (loop4): pa 00000000a6bc334e: logic 1, phys. 41, len 23 [ 175.488774][ T5360] EXT4-fs error (device loop4): ext4_mb_release_inode_pa:4896: group 0, free 22, pa_free 23 [ 175.501661][ T5360] EXT4-fs (loop4): mounted filesystem without journal. Opts: max_dir_size_kb=0x0000000000000005,noblock_validity,usrquota,resgid=0x0000000000000000,nogrpid,errors=remount-ro,noinit_itable,inode_readahead_blks=0x0000000000000001,resuid=0x00000000000000002. Quota mode: writeback. [ 175.529643][ T5367] netlink: 94 bytes leftover after parsing attributes in process `syz.2.327'. [ 175.553773][ T5360] udc-core: couldn't find an available UDC or it's busy [ 175.555779][ T5360] misc raw-gadget: fail, usb_gadget_probe_driver returned -19 [ 175.587239][ T5362] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 175.904700][ T5376] EXT4-fs error (device loop1): ext4_validate_block_bitmap:438: comm syz.1.323: bg 0: block 288: padding at end of block bitmap is not set [ 175.918861][ T5376] fs-verity (loop1, inode 13): ext4_end_enable_verity() failed with err -117 [ 176.186989][ T4072] tipc: Node number set to 2886997039 [ 176.343343][ T4185] hfsplus: b-tree write err: -5, ino 4 [ 176.852156][ T5384] udc-core: couldn't find an available UDC or it's busy [ 176.869620][ T5384] misc raw-gadget: fail, usb_gadget_probe_driver returned -19 [ 177.218140][ T5389] udc-core: couldn't find an available UDC or it's busy [ 177.220180][ T5389] misc raw-gadget: fail, usb_gadget_probe_driver returned -19 [ 177.429118][ T5386] loop0: detected capacity change from 0 to 32768 [ 178.545144][ T5386] XFS (loop0): Mounting V5 Filesystem [ 178.648110][ T5413] Cannot find set identified by id 0 to match [ 178.690704][ T5413] ptrace attach of "./syz-executor exec"[4299] was attempted by "./syz-executor exec"[5413] [ 179.069151][ T5413] loop2: detected capacity change from 0 to 2048 [ 179.689193][ T5417] loop3: detected capacity change from 0 to 512 [ 179.736130][ T5419] loop4: detected capacity change from 0 to 2048 [ 179.737594][ T5413] EXT4-fs (loop2): mounted filesystem without journal. Opts: dioread_lock,mb_optimize_scan=0x0000000000000001,debug_want_extra_isize=0x0000000000000080,,errors=continue. Quota mode: none. [ 179.745515][ T5415] loop1: detected capacity change from 0 to 1024 [ 179.757516][ T5386] XFS (loop0): Ending clean mount [ 179.778697][ T5417] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended [ 179.797514][ T5417] EXT4-fs (loop3): orphan cleanup on readonly fs [ 179.800431][ T5417] EXT4-fs error (device loop3): ext4_mb_mark_diskspace_used:3879: comm syz.3.341: Allocating blocks 41-42 which overlap fs metadata [ 179.845749][ T5419] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 179.854577][ T5417] EXT4-fs (loop3): Remounting filesystem read-only [ 179.856011][ T5417] Quota error (device loop3): write_blk: dquota write failed [ 179.857930][ T5417] Quota error (device loop3): qtree_write_dquot: Error -117 occurred while creating quota [ 179.882492][ T5417] EXT4-fs error (device loop3): ext4_acquire_dquot:6196: comm syz.3.341: Failed to acquire dquot type 0 [ 180.025376][ T5417] EXT4-fs (loop3): 1 truncate cleaned up [ 180.035797][ T5417] EXT4-fs (loop3): pa 00000000c1cf7861: logic 1, phys. 41, len 23 [ 180.038009][ T5417] EXT4-fs error (device loop3): ext4_mb_release_inode_pa:4896: group 0, free 22, pa_free 23 [ 180.067908][ T5417] EXT4-fs (loop3): mounted filesystem without journal. Opts: max_dir_size_kb=0x0000000000000005,noblock_validity,usrquota,resgid=0x0000000000000000,nogrpid,errors=remount-ro,noinit_itable,inode_readahead_blks=0x0000000000000001,resuid=0x00000000000000002. Quota mode: writeback. [ 180.087870][ T5417] udc-core: couldn't find an available UDC or it's busy [ 180.089794][ T5417] misc raw-gadget: fail, usb_gadget_probe_driver returned -19 [ 180.626334][ T5430] EXT4-fs error (device loop4): ext4_validate_block_bitmap:438: comm syz.4.342: bg 0: block 288: padding at end of block bitmap is not set [ 180.646641][ T5430] fs-verity (loop4, inode 13): ext4_end_enable_verity() failed with err -117 [ 180.694775][ T4036] XFS (loop0): Unmounting Filesystem [ 180.950074][ T4084] hfsplus: b-tree write err: -5, ino 4 [ 182.211790][ T5441] loop3: detected capacity change from 0 to 128 [ 182.532900][ T5437] loop1: detected capacity change from 0 to 32768 [ 182.567152][ T5448] loop4: detected capacity change from 0 to 1024 [ 182.569375][ T5450] loop2: detected capacity change from 0 to 256 [ 183.668655][ T5437] XFS (loop1): Mounting V5 Filesystem [ 183.686931][ T5468] loop3: detected capacity change from 0 to 2048 [ 184.361540][ T5437] XFS (loop1): Ending clean mount [ 184.373848][ T5437] XFS (loop1): Quotacheck needed: Please wait. [ 184.417719][ T5437] XFS (loop1): Quotacheck: Done. [ 184.443512][ T4026] XFS (loop1): Unmounting Filesystem [ 184.496285][ T4077] Bluetooth: hci6: command 0x0406 tx timeout [ 184.518852][ T5476] loop0: detected capacity change from 0 to 512 [ 184.537592][ T5468] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 184.554803][ T5476] EXT4-fs (loop0): feature flags set on rev 0 fs, running e2fsck is recommended [ 184.580786][ T5480] loop2: detected capacity change from 0 to 1024 [ 184.619449][ T5476] EXT4-fs (loop0): orphan cleanup on readonly fs [ 184.622435][ T5476] EXT4-fs error (device loop0): ext4_mb_mark_diskspace_used:3879: comm syz.0.357: Allocating blocks 41-42 which overlap fs metadata [ 184.631517][ T5476] EXT4-fs (loop0): Remounting filesystem read-only [ 184.633422][ T5476] Quota error (device loop0): write_blk: dquota write failed [ 184.638440][ T5476] Quota error (device loop0): qtree_write_dquot: Error -117 occurred while creating quota [ 184.641172][ T5476] EXT4-fs error (device loop0): ext4_acquire_dquot:6196: comm syz.0.357: Failed to acquire dquot type 0 [ 184.713166][ T5476] EXT4-fs (loop0): 1 truncate cleaned up [ 184.746098][ T5476] EXT4-fs (loop0): pa 000000004546917b: logic 1, phys. 41, len 23 [ 184.748257][ T5476] EXT4-fs error (device loop0): ext4_mb_release_inode_pa:4896: group 0, free 22, pa_free 23 [ 184.773469][ T5476] EXT4-fs (loop0): mounted filesystem without journal. Opts: max_dir_size_kb=0x0000000000000005,noblock_validity,usrquota,resgid=0x0000000000000000,nogrpid,errors=remount-ro,noinit_itable,inode_readahead_blks=0x0000000000000001,resuid=0x00000000000000002. Quota mode: writeback. [ 184.847600][ T5485] EXT4-fs error (device loop3): ext4_validate_block_bitmap:438: comm syz.3.355: bg 0: block 288: padding at end of block bitmap is not set [ 184.899980][ T5485] fs-verity (loop3, inode 13): ext4_end_enable_verity() failed with err -117 [ 185.423945][ T4072] usb 1-1: new high-speed USB device number 6 using dummy_hcd [ 185.713071][ T4330] hfsplus: b-tree write err: -5, ino 4 [ 186.622109][ T5497] loop2: detected capacity change from 0 to 64 [ 186.643694][ T4072] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 186.646656][ T4072] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 186.649101][ T4072] usb 1-1: New USB device found, idVendor=06cb, idProduct=81a7, bcdDevice= 0.00 [ 186.651483][ T4072] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 186.666506][ T4072] usb 1-1: config 0 descriptor?? [ 186.686630][ T5492] loop1: detected capacity change from 0 to 32768 [ 186.727292][ T5492] BTRFS: device fsid 3d39d0ba-bdae-447e-827b-b091e1a68885 devid 1 transid 8 /dev/loop1 scanned by syz.1.358 (5492) [ 186.788998][ T5492] BTRFS info (device loop1): using crc32c (crc32c-generic) checksum algorithm [ 186.791325][ T5492] BTRFS info (device loop1): using free space tree [ 186.793033][ T5492] BTRFS info (device loop1): has skinny extents [ 187.932207][ T5492] BTRFS info (device loop1): enabling ssd optimizations [ 187.974388][ T4072] usbhid 1-1:0.0: can't add hid device: -71 [ 187.976293][ T4072] usbhid: probe of 1-1:0.0 failed with error -71 [ 188.154520][ T4072] usb 1-1: USB disconnect, device number 6 [ 188.219816][ T5524] loop2: detected capacity change from 0 to 32768 [ 189.085498][ T5524] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop2 scanned by syz.2.365 (5524) [ 189.128247][ T5524] BTRFS info (device loop2): using sha256 (sha256-ce) checksum algorithm [ 189.130552][ T5524] BTRFS info (device loop2): enabling auto defrag [ 189.132231][ T5524] BTRFS info (device loop2): doing ref verification [ 189.144470][ T5524] BTRFS info (device loop2): use no compression [ 189.146177][ T5524] BTRFS info (device loop2): force clearing of disk cache [ 189.158274][ T5524] BTRFS info (device loop2): disabling free space tree [ 189.163913][ T5524] BTRFS info (device loop2): has skinny extents [ 189.174434][ T5538] loop3: detected capacity change from 0 to 256 [ 189.215277][ T5545] loop4: detected capacity change from 0 to 2048 [ 189.458087][ T5545] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 191.879187][ T5576] loop0: detected capacity change from 0 to 2048 [ 191.891760][ T5570] EXT4-fs error (device loop4): ext4_validate_block_bitmap:438: comm ext4lazyinit: bg 0: block 288: padding at end of block bitmap is not set [ 191.906581][ T5577] fs-verity (loop4, inode 13): ext4_end_enable_verity() failed with err -117 [ 192.118008][ T5565] loop0: p1 < > p4 [ 192.122466][ T5565] loop0: p4 size 8388608 extends beyond EOD, truncated [ 192.144302][ T5524] BTRFS error (device loop2): open_ctree failed [ 192.183971][ T5576] loop0: p1 < > p4 [ 192.188237][ T5576] loop0: p4 size 8388608 extends beyond EOD, truncated [ 192.635198][ T2053] ieee802154 phy0 wpan0: encryption failed: -22 [ 192.640807][ T2053] ieee802154 phy1 wpan1: encryption failed: -22 [ 193.336470][ T5595] netlink: 'syz.3.383': attribute type 3 has an invalid length. [ 193.382018][ T5597] loop4: detected capacity change from 0 to 512 [ 193.435653][ T4028] Bluetooth: Wrong link type (-71) [ 194.318404][ T5597] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended [ 194.402148][ T5565] udevd[5565]: inotify_add_watch(7, /dev/loop0p1, 10) failed: No such file or directory [ 194.416667][ T5597] EXT4-fs (loop4): orphan cleanup on readonly fs [ 194.425414][ T5597] EXT4-fs error (device loop4): ext4_mb_mark_diskspace_used:3879: comm syz.4.384: Allocating blocks 41-42 which overlap fs metadata [ 194.441370][ T5597] EXT4-fs (loop4): Remounting filesystem read-only [ 194.443130][ T5597] Quota error (device loop4): write_blk: dquota write failed [ 194.962487][ T4020] udevd[4020]: inotify_add_watch(7, /dev/loop0p4, 10) failed: No such file or directory [ 194.983197][ T5612] udc-core: couldn't find an available UDC or it's busy [ 194.985345][ T5597] Quota error (device loop4): qtree_write_dquot: Error -117 occurred while creating quota [ 194.987925][ T5597] EXT4-fs error (device loop4): ext4_acquire_dquot:6196: comm syz.4.384: Failed to acquire dquot type 0 [ 194.994201][ T5612] misc raw-gadget: fail, usb_gadget_probe_driver returned -19 [ 195.001908][ T5597] EXT4-fs (loop4): 1 truncate cleaned up [ 195.012036][ T5597] EXT4-fs (loop4): pa 000000002c9a2954: logic 1, phys. 41, len 23 [ 195.014233][ T5597] EXT4-fs error (device loop4): ext4_mb_release_inode_pa:4896: group 0, free 22, pa_free 23 [ 195.035936][ T5609] loop0: detected capacity change from 0 to 2048 [ 195.038362][ T5597] EXT4-fs (loop4): mounted filesystem without journal. Opts: max_dir_size_kb=0x0000000000000005,noblock_validity,usrquota,resgid=0x0000000000000000,nogrpid,errors=remount-ro,noinit_itable,inode_readahead_blks=0x0000000000000001,resuid=0x00000000000000002. Quota mode: writeback. [ 195.057780][ T5597] udc-core: couldn't find an available UDC or it's busy [ 195.059955][ T5597] misc raw-gadget: fail, usb_gadget_probe_driver returned -19 [ 195.206454][ T5019] Bluetooth: hci1: command 0x0406 tx timeout [ 195.324156][ T4020] udevd[4020]: inotify_add_watch(7, /dev/loop0p4, 10) failed: No such file or directory [ 195.328952][ T5565] udevd[5565]: inotify_add_watch(7, /dev/loop0p1, 10) failed: No such file or directory [ 195.362731][ T4020] udevd[4020]: inotify_add_watch(7, /dev/loop0p4, 10) failed: No such file or directory [ 195.371229][ T5565] udevd[5565]: inotify_add_watch(7, /dev/loop0p1, 10) failed: No such file or directory [ 195.414323][ T5609] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 196.488571][ T5627] EXT4-fs error (device loop0): ext4_validate_block_bitmap:438: comm syz.0.388: bg 0: block 288: padding at end of block bitmap is not set [ 196.499094][ T5627] fs-verity (loop0, inode 13): ext4_end_enable_verity() failed with err -117 [ 197.154360][ T5633] loop3: detected capacity change from 0 to 1024 [ 198.012534][ T5633] hfsplus: invalid extent max_key_len 0 [ 198.014440][ T5633] hfsplus: failed to load extents file [ 201.211913][ T5664] loop1: detected capacity change from 0 to 1024 [ 201.366855][ T5668] loop3: detected capacity change from 0 to 512 [ 201.408849][ T5668] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended [ 201.449840][ T5671] loop2: detected capacity change from 0 to 128 [ 201.474903][ T5668] EXT4-fs (loop3): orphan cleanup on readonly fs [ 201.477970][ T5668] EXT4-fs error (device loop3): ext4_mb_mark_diskspace_used:3879: comm syz.3.405: Allocating blocks 41-42 which overlap fs metadata [ 201.483621][ T5668] EXT4-fs (loop3): Remounting filesystem read-only [ 201.484429][ T5672] loop0: detected capacity change from 0 to 512 [ 201.485436][ T5668] Quota error (device loop3): write_blk: dquota write failed [ 201.488761][ T5668] Quota error (device loop3): qtree_write_dquot: Error -117 occurred while creating quota [ 201.491151][ T5668] EXT4-fs error (device loop3): ext4_acquire_dquot:6196: comm syz.3.405: Failed to acquire dquot type 0 [ 201.494718][ T5671] FAT-fs (loop2): Unrecognized mount option "nnonumtail=1" or missing value [ 201.520588][ T5668] EXT4-fs (loop3): 1 truncate cleaned up [ 201.522959][ T5668] EXT4-fs (loop3): pa 000000005d306cb7: logic 1, phys. 41, len 23 [ 201.525184][ T5668] EXT4-fs error (device loop3): ext4_mb_release_inode_pa:4896: group 0, free 22, pa_free 23 [ 201.540386][ T5668] EXT4-fs (loop3): mounted filesystem without journal. Opts: max_dir_size_kb=0x0000000000000005,noblock_validity,usrquota,resgid=0x0000000000000000,nogrpid,errors=remount-ro,noinit_itable,inode_readahead_blks=0x0000000000000001,resuid=0x00000000000000002. Quota mode: writeback. [ 201.563709][ T5672] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 201.586973][ T5668] udc-core: couldn't find an available UDC or it's busy [ 201.588739][ T5668] misc raw-gadget: fail, usb_gadget_probe_driver returned -19 [ 201.640886][ T5672] EXT4-fs (loop0): 1 truncate cleaned up [ 201.642754][ T5672] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 202.125872][ T4185] hfsplus: b-tree write err: -5, ino 4 [ 202.360306][ T5686] netlink: 76 bytes leftover after parsing attributes in process `syz.2.406'. [ 202.373034][ T5683] loop3: detected capacity change from 0 to 2048 [ 202.420237][ T5683] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 202.746607][ T5690] EXT4-fs error (device loop3): ext4_validate_block_bitmap:438: comm syz.3.409: bg 0: block 288: padding at end of block bitmap is not set [ 202.834519][ T5690] fs-verity (loop3, inode 13): ext4_end_enable_verity() failed with err -117 [ 206.204174][ T5713] loop4: detected capacity change from 0 to 512 [ 206.209110][ T5716] loop3: detected capacity change from 0 to 1024 [ 206.480374][ T5713] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended [ 207.063460][ T5713] EXT4-fs (loop4): orphan cleanup on readonly fs [ 207.115881][ T5713] EXT4-fs error (device loop4): ext4_mb_mark_diskspace_used:3879: comm syz.4.420: Allocating blocks 41-42 which overlap fs metadata [ 207.123369][ T5713] EXT4-fs (loop4): Remounting filesystem read-only [ 207.128811][ T5722] loop1: detected capacity change from 0 to 256 [ 207.130691][ T5713] Quota error (device loop4): write_blk: dquota write failed [ 207.243753][ T5713] Quota error (device loop4): qtree_write_dquot: Error -117 occurred while creating quota [ 207.246812][ T5713] EXT4-fs error (device loop4): ext4_acquire_dquot:6196: comm syz.4.420: Failed to acquire dquot type 0 [ 207.252306][ T5713] EXT4-fs (loop4): 1 truncate cleaned up [ 207.259655][ T5722] FAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 207.280438][ T5713] EXT4-fs (loop4): pa 0000000064a79ff7: logic 1, phys. 41, len 23 [ 207.283222][ T5713] EXT4-fs error (device loop4): ext4_mb_release_inode_pa:4896: group 0, free 22, pa_free 23 [ 207.299014][ T5713] EXT4-fs (loop4): mounted filesystem without journal. Opts: max_dir_size_kb=0x0000000000000005,noblock_validity,usrquota,resgid=0x0000000000000000,nogrpid,errors=remount-ro,noinit_itable,inode_readahead_blks=0x0000000000000001,resuid=0x00000000000000002. Quota mode: writeback. [ 207.316530][ T5713] udc-core: couldn't find an available UDC or it's busy [ 207.318376][ T5713] misc raw-gadget: fail, usb_gadget_probe_driver returned -19 [ 207.574799][ T4380] hfsplus: b-tree write err: -5, ino 4 [ 210.749510][ T5760] netlink: 4 bytes leftover after parsing attributes in process `syz.4.434'. [ 210.774989][ T5762] netlink: 4 bytes leftover after parsing attributes in process `syz.3.436'. [ 210.795010][ T5766] loop2: detected capacity change from 0 to 512 [ 210.799282][ T5764] loop1: detected capacity change from 0 to 1024 [ 210.925787][ T5766] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended [ 210.993429][ T5766] EXT4-fs (loop2): orphan cleanup on readonly fs [ 210.998146][ T5766] EXT4-fs error (device loop2): ext4_mb_mark_diskspace_used:3879: comm syz.2.437: Allocating blocks 41-42 which overlap fs metadata [ 211.002831][ T5766] EXT4-fs (loop2): Remounting filesystem read-only [ 211.008687][ T5766] Quota error (device loop2): write_blk: dquota write failed [ 211.010503][ T5766] Quota error (device loop2): qtree_write_dquot: Error -117 occurred while creating quota [ 211.013447][ T5766] EXT4-fs error (device loop2): ext4_acquire_dquot:6196: comm syz.2.437: Failed to acquire dquot type 0 [ 211.018474][ T5766] EXT4-fs (loop2): 1 truncate cleaned up [ 211.020342][ T5766] EXT4-fs (loop2): pa 0000000071e2cfc6: logic 1, phys. 41, len 23 [ 211.022498][ T5766] EXT4-fs error (device loop2): ext4_mb_release_inode_pa:4896: group 0, free 22, pa_free 23 [ 211.901251][ T4380] hfsplus: b-tree write err: -5, ino 4 [ 211.918400][ T5766] EXT4-fs (loop2): mounted filesystem without journal. Opts: max_dir_size_kb=0x0000000000000005,noblock_validity,usrquota,resgid=0x0000000000000000,nogrpid,errors=remount-ro,noinit_itable,inode_readahead_blks=0x0000000000000001,resuid=0x00000000000000002. Quota mode: writeback. [ 212.122637][ T5787] loop0: detected capacity change from 0 to 256 [ 213.076539][ T5788] netlink: 28 bytes leftover after parsing attributes in process `syz.3.442'. [ 215.108752][ T5811] loop1: detected capacity change from 0 to 1024 [ 215.514503][ T5819] vimc link validate: Scaler:src:1920x1440 (0x33424752, 8, 0, 0, 0) RGB/YUV Capture:snk:640x480 (0x33424752, 8, 0, 0, 0) [ 216.245363][ T9] hfsplus: b-tree write err: -5, ino 4 [ 216.368459][ T5827] loop1: detected capacity change from 0 to 512 [ 218.923774][ T5827] EXT4-fs (loop1): Ignoring removed oldalloc option [ 220.719985][ T5853] loop2: detected capacity change from 0 to 512 [ 221.236175][ T5827] EXT4-fs error (device loop1): ext4_xattr_inode_iget:400: comm syz.1.452: Parent and EA inode have the same ino 15 [ 221.253019][ T5827] EXT4-fs (loop1): Remounting filesystem read-only [ 221.261646][ T5827] EXT4-fs error (device loop1): ext4_evict_inode:293: comm syz.1.452: couldn't truncate inode 15 (err -30) [ 221.273967][ T5853] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 221.444268][ T5827] EXT4-fs (loop1): 1 orphan inode deleted [ 221.445836][ T5827] EXT4-fs (loop1): mounted filesystem without journal. Opts: errors=remount-ro,bsdgroups,debug_want_extra_isize=0x000000000000005e,noauto_da_alloc,bsdgroups,oldalloc,stripe=0x0000000000000002,. Quota mode: none. [ 221.453196][ T5853] EXT4-fs (loop2): 1 truncate cleaned up [ 221.455345][ T5853] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 221.483326][ T5859] loop4: detected capacity change from 0 to 1024 [ 221.642682][ T5861] loop0: detected capacity change from 0 to 256 [ 223.930942][ T5861] exFAT-fs (loop0): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d) [ 226.693070][ T5017] Bluetooth: hci2: command 0x0406 tx timeout [ 226.731036][ T5888] input: syz1 as /devices/virtual/input/input4 [ 226.735488][ T9] hfsplus: b-tree write err: -5, ino 4 [ 228.677516][ T5894] udc-core: couldn't find an available UDC or it's busy [ 228.679374][ T5894] misc raw-gadget: fail, usb_gadget_probe_driver returned -19 [ 229.832685][ T5908] loop1: detected capacity change from 0 to 128 [ 231.296791][ T5921] loop0: detected capacity change from 0 to 1024 [ 231.531926][ T5925] loop2: detected capacity change from 0 to 2048 [ 231.771397][ T5925] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 231.870507][ T5933] loop1: detected capacity change from 0 to 164 [ 234.315136][ T9] hfsplus: b-tree write err: -5, ino 4 [ 234.668835][ T5945] udc-core: couldn't find an available UDC or it's busy [ 234.681611][ T5945] misc raw-gadget: fail, usb_gadget_probe_driver returned -19 [ 234.697451][ T5947] udc-core: couldn't find an available UDC or it's busy [ 234.723799][ T5947] misc raw-gadget: fail, usb_gadget_probe_driver returned -19 [ 234.738284][ T5946] loop2: detected capacity change from 0 to 512 [ 234.809647][ T5946] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback. [ 234.954842][ T5945] udc-core: couldn't find an available UDC or it's busy [ 234.957211][ T5945] misc raw-gadget: fail, usb_gadget_probe_driver returned -19 [ 236.369347][ T5962] loop1: detected capacity change from 0 to 2048 [ 236.660466][ T5976] loop0: detected capacity change from 0 to 4096 [ 236.793245][ T5976] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback. [ 237.621828][ T5986] loop2: detected capacity change from 0 to 512 [ 237.671952][ T5984] ODEBUG: Out of memory. ODEBUG disabled [ 237.690886][ T5992] loop4: detected capacity change from 0 to 128 [ 237.735311][ T5992] FAT-fs (loop4): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 238.483314][ T5986] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback. [ 238.612140][ T6004] fuse: Unknown parameter '0xffffffffffffffff' [ 238.621536][ T5986] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1152: group 0, block bitmap and bg descriptor inconsistent: 96 vs 65376 free clusters [ 238.646234][ T5986] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 1 with max blocks 31 with error 28 [ 238.646786][ T6004] futex_wake_op: syz.0.507 tries to shift op by -1; fix this program [ 238.649667][ T5986] EXT4-fs (loop2): This should not happen!! Data will be lost [ 238.649667][ T5986] [ 238.658390][ T5986] EXT4-fs (loop2): Total free blocks count 0 [ 238.659978][ T5986] EXT4-fs (loop2): Free/Dirty block details [ 238.661412][ T5986] EXT4-fs (loop2): free_blocks=65280 [ 238.662790][ T5986] EXT4-fs (loop2): dirty_blocks=32 [ 238.676522][ T5986] EXT4-fs (loop2): Block reservation details [ 238.678162][ T5986] EXT4-fs (loop2): i_reserved_data_blocks=32 [ 238.682173][ T5986] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 32 with max blocks 32 with error 28 [ 238.685952][ T5986] EXT4-fs (loop2): This should not happen!! Data will be lost [ 238.685952][ T5986] [ 238.822233][ T26] audit: type=1326 audit(238.790:31): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6007 comm="syz.1.508" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffa16eb9a8 code=0x7fc00000 [ 238.832278][ T26] audit: type=1326 audit(238.790:32): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6007 comm="syz.1.508" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=277 compat=0 ip=0xffffa16eb9a8 code=0x7fc00000 [ 238.845373][ T6016] loop2: detected capacity change from 0 to 256 [ 238.847973][ T26] audit: type=1326 audit(238.800:33): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6007 comm="syz.1.508" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffa16eb9a8 code=0x7fc00000 [ 238.889757][ T6016] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0x205ad3fc, utbl_chksum : 0xe619d30d) [ 238.930748][ T6021] bridge0: port 3(vlan2) entered blocking state [ 238.933850][ T6021] bridge0: port 3(vlan2) entered disabled state [ 238.941249][ T6021] device vlan2 entered promiscuous mode [ 238.943104][ T6021] device vlan1 entered promiscuous mode [ 238.963073][ T6021] bridge0: port 3(vlan2) entered blocking state [ 238.965066][ T6021] bridge0: port 3(vlan2) entered forwarding state [ 239.285876][ T6032] loop1: detected capacity change from 0 to 256 [ 239.387523][ T6035] loop3: detected capacity change from 0 to 512 [ 239.460715][ T6035] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback. [ 239.531165][ T6021] bridge0: port 3(vlan2) entered disabled state [ 239.533015][ T6021] bridge0: port 2(bridge_slave_1) entered disabled state [ 239.535306][ T6021] bridge0: port 1(bridge_slave_0) entered disabled state [ 241.493447][ T6021] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 241.535979][ T6021] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 241.772407][ T6071] loop1: detected capacity change from 0 to 512 [ 241.910517][ T6021] device vlan1 left promiscuous mode [ 241.921316][ T6071] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback. [ 243.050340][ T6102] loop3: detected capacity change from 0 to 256 [ 243.130309][ T6102] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0x205ad3fc, utbl_chksum : 0xe619d30d) [ 243.146781][ T6021] netdevsim netdevsim0 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0 [ 243.149415][ T6021] netdevsim netdevsim0 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0 [ 243.151888][ T6021] netdevsim netdevsim0 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0 [ 243.166810][ T6021] netdevsim netdevsim0 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0 [ 243.390641][ T6025] team0: Port device batadv0 removed [ 243.392350][ T6025] device bridge_slave_0 left promiscuous mode [ 243.395261][ T6025] bridge0: port 1(bridge_slave_0) entered disabled state [ 243.449279][ T6025] device bridge_slave_1 left promiscuous mode [ 243.450914][ T6025] bridge0: port 2(bridge_slave_1) entered disabled state [ 243.475892][ T6025] bond0: (slave bond_slave_0): Releasing backup interface [ 243.505413][ T6025] bond0: (slave bond_slave_1): Releasing backup interface [ 243.548436][ T6025] team0: Port device team_slave_0 removed [ 243.551658][ T6025] team0: Port device team_slave_1 removed [ 243.553403][ T6025] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 243.566377][ T6025] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 243.569038][ T6025] device vlan2 left promiscuous mode [ 243.575775][ T6025] bridge0: port 3(vlan2) entered disabled state [ 245.676582][ T6147] udc-core: couldn't find an available UDC or it's busy [ 245.678330][ T6147] misc raw-gadget: fail, usb_gadget_probe_driver returned -19 [ 247.253216][ T6169] udc-core: couldn't find an available UDC or it's busy [ 247.260893][ T6169] misc raw-gadget: fail, usb_gadget_probe_driver returned -19 [ 247.474641][ T6179] loop4: detected capacity change from 0 to 512 [ 247.550977][ T6183] loop1: detected capacity change from 0 to 1024 [ 247.589156][ T6185] loop0: detected capacity change from 0 to 1024 [ 247.612268][ T6179] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 247.622244][ T6188] udc-core: couldn't find an available UDC or it's busy [ 247.629261][ T6179] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a00ec019, mo2=0002] [ 247.631158][ T6179] System zones: 1-12 [ 247.660700][ T6179] EXT4-fs (loop4): 1 truncate cleaned up [ 247.662181][ T6179] EXT4-fs (loop4): mounted filesystem without journal. Opts: nogrpid,jqfmt=vfsv0,debug_want_extra_isize=0x0000000000000068,debug,nombcache,quota,nolazytime,,errors=continue. Quota mode: writeback. [ 247.668599][ T6188] misc raw-gadget: fail, usb_gadget_probe_driver returned -19 [ 247.727524][ T4185] hfsplus: b-tree write err: -5, ino 4 [ 247.855281][ T6198] loop2: detected capacity change from 0 to 256 [ 247.900490][ T6198] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0x205ad3fc, utbl_chksum : 0xe619d30d) [ 252.774653][ T6271] netlink: 128 bytes leftover after parsing attributes in process `syz.3.609'. [ 252.779623][ T6269] A link change request failed with some changes committed already. Interface xfrm0 may have been left with an inconsistent configuration, please check. [ 252.796291][ T6269] udc-core: couldn't find an available UDC or it's busy [ 252.798122][ T6269] misc raw-gadget: fail, usb_gadget_probe_driver returned -19 [ 253.181987][ T6277] loop4: detected capacity change from 0 to 1024 [ 253.294115][ T6277] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 255.184033][ T2053] ieee802154 phy0 wpan0: encryption failed: -22 [ 255.189303][ T2053] ieee802154 phy1 wpan1: encryption failed: -22 [ 255.324161][ T6300] udc-core: couldn't find an available UDC or it's busy [ 255.325934][ T6300] misc raw-gadget: fail, usb_gadget_probe_driver returned -19 [ 256.403051][ T6306] loop1: detected capacity change from 0 to 1024 [ 256.567901][ T6313] loop3: detected capacity change from 0 to 8 [ 256.573302][ T4315] hfsplus: b-tree write err: -5, ino 4 [ 256.779431][ T6316] loop1: detected capacity change from 0 to 256 [ 256.830235][ T6316] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x205ad3fc, utbl_chksum : 0xe619d30d) [ 258.067731][ T6296] loop4: detected capacity change from 0 to 32768 [ 259.753388][ T6341] loop0: detected capacity change from 0 to 1024 [ 260.376132][ T6349] A link change request failed with some changes committed already. Interface xfrm0 may have been left with an inconsistent configuration, please check. [ 260.549829][ T294] hfsplus: b-tree write err: -5, ino 8 [ 260.621128][ T6358] netlink: 92 bytes leftover after parsing attributes in process `syz.0.641'. [ 261.636619][ T6367] loop4: detected capacity change from 0 to 256 [ 261.823072][ T6367] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0x205ad3fc, utbl_chksum : 0xe619d30d) [ 263.372258][ T6380] loop3: detected capacity change from 0 to 2048 [ 264.241266][ T6386] loop0: detected capacity change from 0 to 16 [ 264.291423][ T6380] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 264.351221][ T6386] erofs: (device loop0): mounted with root inode @ nid 36. [ 264.382502][ T6386] erofs: (device loop0): z_erofs_readahead: readahead error at page 22 @ nid 36 [ 264.386446][ T6386] erofs: (device loop0): z_erofs_readahead: readahead error at page 21 @ nid 36 [ 264.388851][ T6386] erofs: (device loop0): z_erofs_readahead: readahead error at page 20 @ nid 36 [ 264.438165][ T26] audit: type=1326 audit(264.410:34): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6398 comm="syz.2.655" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffbb5dc9a8 code=0x7ffc0000 [ 264.448479][ T6386] erofs: (device loop0): z_erofs_readahead: readahead error at page 16 @ nid 36 [ 264.450871][ T6386] erofs: (device loop0): z_erofs_map_blocks_iter: unknown type 3 @ offset 45055 of nid 36 [ 264.452972][ T6386] erofs: (device loop0): z_erofs_readahead: readahead error at page 10 @ nid 36 [ 264.457142][ T26] audit: type=1326 audit(264.430:35): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6398 comm="syz.2.655" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=208 compat=0 ip=0xffffbb5dc9a8 code=0x7ffc0000 [ 264.462899][ T26] audit: type=1326 audit(264.430:36): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6398 comm="syz.2.655" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffbb5dc9a8 code=0x7ffc0000 [ 264.482281][ T26] audit: type=1326 audit(264.430:37): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6398 comm="syz.2.655" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffffbb5dc9a8 code=0x7ffc0000 [ 264.491745][ T6386] attempt to access beyond end of device [ 264.491745][ T6386] loop0: rw=524288, want=6536, limit=16 [ 264.495068][ T6386] attempt to access beyond end of device [ 264.495068][ T6386] loop0: rw=524288, want=34359736344, limit=16 [ 264.497947][ T6386] attempt to access beyond end of device [ 264.497947][ T6386] loop0: rw=524288, want=736, limit=16 [ 264.500683][ T6386] attempt to access beyond end of device [ 264.500683][ T6386] loop0: rw=524288, want=536576872, limit=16 [ 264.520753][ T26] audit: type=1326 audit(264.430:38): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6398 comm="syz.2.655" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffbb5dc9a8 code=0x7ffc0000 [ 264.533840][ T6386] attempt to access beyond end of device [ 264.533840][ T6386] loop0: rw=524288, want=24, limit=16 [ 264.536664][ T6386] attempt to access beyond end of device [ 264.536664][ T6386] loop0: rw=524288, want=13478624040, limit=16 [ 264.546224][ T26] audit: type=1326 audit(264.430:39): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6398 comm="syz.2.655" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffffbb5dc9a8 code=0x7ffc0000 [ 264.574429][ T26] audit: type=1326 audit(264.430:40): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6398 comm="syz.2.655" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffbb5dc9a8 code=0x7ffc0000 [ 264.600615][ T26] audit: type=1326 audit(264.430:41): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6398 comm="syz.2.655" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=160 compat=0 ip=0xffffbb5dc9a8 code=0x7ffc0000 [ 264.628947][ T26] audit: type=1326 audit(264.430:42): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6398 comm="syz.2.655" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffbb5dc9a8 code=0x7ffc0000 [ 264.647073][ T26] audit: type=1326 audit(264.430:43): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6398 comm="syz.2.655" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=196 compat=0 ip=0xffffbb5dc9a8 code=0x7ffc0000 [ 264.722463][ T6411] loop4: detected capacity change from 0 to 512 [ 264.750651][ T6409] loop0: detected capacity change from 0 to 256 [ 264.775483][ T6413] loop2: detected capacity change from 0 to 764 [ 266.697558][ T6417] EXT4-fs error (device loop3): ext4_validate_block_bitmap:438: comm syz.3.648: bg 0: block 288: padding at end of block bitmap is not set [ 266.716195][ T6409] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0x205ad3fc, utbl_chksum : 0xe619d30d) [ 267.089757][ T6417] fs-verity (loop3, inode 13): ext4_end_enable_verity() failed with err -117 [ 267.650252][ T6443] loop4: detected capacity change from 0 to 512 [ 267.685362][ T6443] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended [ 268.167817][ T6448] loop3: detected capacity change from 0 to 256 [ 268.411693][ T6448] UDF-fs: bad mount option "" or missing value [ 268.540506][ T6443] EXT4-fs (loop4): orphan cleanup on readonly fs [ 268.569211][ T6443] EXT4-fs error (device loop4): ext4_mb_mark_diskspace_used:3879: comm syz.4.673: Allocating blocks 41-42 which overlap fs metadata [ 268.580919][ T6443] EXT4-fs (loop4): Remounting filesystem read-only [ 268.582808][ T6443] EXT4-fs error (device loop4): ext4_acquire_dquot:6196: comm syz.4.673: Failed to acquire dquot type 0 [ 268.608719][ T6443] EXT4-fs (loop4): 1 truncate cleaned up [ 268.623979][ T6443] EXT4-fs (loop4): pa 000000001f1d2880: logic 1, phys. 41, len 23 [ 268.626092][ T6443] EXT4-fs error (device loop4): ext4_mb_release_inode_pa:4896: group 0, free 22, pa_free 23 [ 269.262542][ T6443] EXT4-fs (loop4): mounted filesystem without journal. Opts: max_dir_size_kb=0x0000000000000005,noblock_validity,usrquota,resgid=0x0000000000000000,nogrpid,errors=remount-ro,noinit_itable,inode_readahead_blks=0x0000000000000001,resuid=0x00000000000000002. Quota mode: writeback. [ 269.475641][ T6454] loop1: detected capacity change from 0 to 512 [ 269.502743][ T6443] udc-core: couldn't find an available UDC or it's busy [ 269.513734][ T6443] misc raw-gadget: fail, usb_gadget_probe_driver returned -19 [ 269.562151][ T6454] EXT4-fs (loop1): Test dummy encryption mode enabled [ 269.579975][ T6454] EXT4-fs error (device loop1): __ext4_iget:4872: inode #11: block 1: comm syz.1.674: invalid block [ 269.583046][ T6454] EXT4-fs error (device loop1): ext4_orphan_get:1402: comm syz.1.674: couldn't read orphan inode 11 (err -117) [ 269.594742][ T6458] loop0: detected capacity change from 0 to 2048 [ 269.607803][ T6454] EXT4-fs (loop1): mounted filesystem without journal. Opts: noauto_da_alloc,user_xattr,max_dir_size_kb=0x0000000000000009,inode_readahead_blks=0x0000000000010000,jqfmt=vfsv0,delalloc,inode_readahead_blks=0x0000000000400000,noauto_da_alloc,test_dummy_encryption,,errors=continue. Quota mode: none. [ 269.830649][ T6458] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 269.981552][ T6471] EXT4-fs error (device loop1): ext4_add_entry:2484: inode #2: comm syz.1.674: Directory hole found for htree leaf block 0 [ 271.883098][ T6476] loop3: detected capacity change from 0 to 256 [ 271.949042][ T6476] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0x205ad3fc, utbl_chksum : 0xe619d30d) [ 272.112712][ T6484] bridge0: port 2(bridge_slave_1) entered disabled state [ 272.115226][ T6484] bridge0: port 1(bridge_slave_0) entered disabled state [ 273.593899][ T6464] EXT4-fs error (device loop0): ext4_validate_block_bitmap:438: comm ext4lazyinit: bg 0: block 288: padding at end of block bitmap is not set [ 273.599602][ T6501] loop2: detected capacity change from 0 to 256 [ 273.633111][ T6502] binder: 6500:6502 IncRefs 0 refcount change on invalid ref 0 ret -22 [ 273.654794][ T6501] exfat: Deprecated parameter 'utf8' [ 273.656354][ T6501] exfat: Deprecated parameter 'namecase' [ 273.657765][ T6501] exfat: Deprecated parameter 'utf8' [ 273.784678][ T6506] loop1: detected capacity change from 0 to 512 [ 273.806364][ T6501] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0xb89b369d, utbl_chksum : 0xe619d30d) [ 273.848609][ T6506] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended [ 273.861695][ T6501] exFAT-fs (loop2): error, tried to truncate zeroed cluster. [ 273.870142][ T6506] EXT4-fs (loop1): orphan cleanup on readonly fs [ 273.881512][ T6506] EXT4-fs error (device loop1): ext4_mb_mark_diskspace_used:3879: comm syz.1.691: Allocating blocks 41-42 which overlap fs metadata [ 273.920707][ T6506] EXT4-fs (loop1): Remounting filesystem read-only [ 273.922616][ T6506] __quota_error: 14 callbacks suppressed [ 273.922627][ T6506] Quota error (device loop1): write_blk: dquota write failed [ 273.931755][ T6506] Quota error (device loop1): qtree_write_dquot: Error -117 occurred while creating quota [ 273.948220][ T6507] binder: 6500:6507 got transaction to invalid handle, 1 [ 273.950502][ T6507] binder: 6500:6507 transaction failed 29201/-22, size 72-24 line 2917 [ 273.953581][ T6507] binder: 6500:6507 ERROR: Thread waiting for process work before calling BC_REGISTER_LOOPER or BC_ENTER_LOOPER (state 10) [ 273.956991][ T6507] binder: 6507 RLIMIT_NICE not set [ 273.982661][ T6506] EXT4-fs error (device loop1): ext4_acquire_dquot:6196: comm syz.1.691: Failed to acquire dquot type 0 [ 274.006835][ T6506] EXT4-fs (loop1): 1 truncate cleaned up [ 274.022226][ T6506] EXT4-fs (loop1): pa 000000007bb13063: logic 1, phys. 41, len 23 [ 274.024476][ T6506] EXT4-fs error (device loop1): ext4_mb_release_inode_pa:4896: group 0, free 22, pa_free 23 [ 274.153020][ T5535] binder: undelivered TRANSACTION_ERROR: 29201 [ 274.165436][ T6506] EXT4-fs (loop1): mounted filesystem without journal. Opts: max_dir_size_kb=0x0000000000000005,noblock_validity,usrquota,resgid=0x0000000000000000,nogrpid,errors=remount-ro,noinit_itable,inode_readahead_blks=0x0000000000000001,resuid=0x00000000000000002. Quota mode: writeback. [ 274.201461][ T6505] udc-core: couldn't find an available UDC or it's busy [ 274.203170][ T6505] misc raw-gadget: fail, usb_gadget_probe_driver returned -19 [ 275.108555][ T6526] loop4: detected capacity change from 0 to 1024 [ 275.266498][ T6530] loop0: detected capacity change from 0 to 256 [ 275.360981][ T6535] loop1: detected capacity change from 0 to 2048 [ 275.365340][ T6530] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0x205ad3fc, utbl_chksum : 0xe619d30d) [ 275.474017][ T6537] loop2: detected capacity change from 0 to 1024 [ 275.484731][ T6535] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 276.394279][ T6546] EXT4-fs error (device loop1): ext4_validate_block_bitmap:438: comm syz.1.702: bg 0: block 288: padding at end of block bitmap is not set [ 276.399398][ T6546] fs-verity (loop1, inode 13): ext4_end_enable_verity() failed with err -117 [ 276.554216][ T4164] hfsplus: b-tree write err: -5, ino 4 [ 276.577959][ T6548] loop2: detected capacity change from 0 to 512 [ 276.778502][ T6552] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 276.788100][ T6548] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended [ 276.807401][ T6552] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 276.824057][ T6552] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 276.848536][ T6548] EXT4-fs (loop2): orphan cleanup on readonly fs [ 276.851322][ T6548] EXT4-fs error (device loop2): ext4_mb_mark_diskspace_used:3879: comm syz.2.707: Allocating blocks 41-42 which overlap fs metadata [ 276.865828][ T6548] EXT4-fs (loop2): Remounting filesystem read-only [ 276.867575][ T6548] Quota error (device loop2): write_blk: dquota write failed [ 276.869332][ T6548] Quota error (device loop2): qtree_write_dquot: Error -117 occurred while creating quota [ 276.871962][ T6548] EXT4-fs error (device loop2): ext4_acquire_dquot:6196: comm syz.2.707: Failed to acquire dquot type 0 [ 276.923033][ T6548] EXT4-fs (loop2): 1 truncate cleaned up [ 276.965486][ T6548] EXT4-fs (loop2): pa 000000004efe0dca: logic 1, phys. 41, len 23 [ 276.967479][ T6548] EXT4-fs error (device loop2): ext4_mb_release_inode_pa:4896: group 0, free 22, pa_free 23 [ 276.983744][ T6548] EXT4-fs (loop2): mounted filesystem without journal. Opts: max_dir_size_kb=0x0000000000000005,noblock_validity,usrquota,resgid=0x0000000000000000,nogrpid,errors=remount-ro,noinit_itable,inode_readahead_blks=0x0000000000000001,resuid=0x00000000000000002. Quota mode: writeback. [ 277.060705][ T6548] udc-core: couldn't find an available UDC or it's busy [ 277.063719][ T6548] misc raw-gadget: fail, usb_gadget_probe_driver returned -19 [ 277.138801][ T6559] loop3: detected capacity change from 0 to 512 [ 277.172244][ T6559] EXT4-fs (loop3): Test dummy encryption mode enabled [ 277.184259][ T6559] EXT4-fs error (device loop3): __ext4_iget:4872: inode #11: block 1: comm syz.3.710: invalid block [ 277.187249][ T6559] EXT4-fs error (device loop3): ext4_orphan_get:1402: comm syz.3.710: couldn't read orphan inode 11 (err -117) [ 277.190596][ T6559] EXT4-fs (loop3): mounted filesystem without journal. Opts: noauto_da_alloc,user_xattr,max_dir_size_kb=0x0000000000000009,inode_readahead_blks=0x0000000000010000,jqfmt=vfsv0,delalloc,inode_readahead_blks=0x0000000000400000,noauto_da_alloc,test_dummy_encryption,,errors=continue. Quota mode: none. [ 278.367333][ T6569] EXT4-fs error (device loop3): ext4_add_entry:2484: inode #2: comm syz.3.710: Directory hole found for htree leaf block 0 [ 278.374871][ T6576] loop4: detected capacity change from 0 to 1024 [ 278.402885][ T6578] loop0: detected capacity change from 0 to 1024 [ 278.750149][ T6583] loop1: detected capacity change from 0 to 512 [ 278.844163][ T6583] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended [ 278.864887][ T6583] EXT4-fs (loop1): orphan cleanup on readonly fs [ 278.868859][ T6583] EXT4-fs error (device loop1): ext4_mb_mark_diskspace_used:3879: comm syz.1.718: Allocating blocks 41-42 which overlap fs metadata [ 278.909595][ T6583] Quota error (device loop1): write_blk: dquota write failed [ 279.022303][ T6583] Quota error (device loop1): qtree_write_dquot: Error -117 occurred while creating quota [ 279.053662][ T6583] EXT4-fs error (device loop1): ext4_acquire_dquot:6196: comm syz.1.718: Failed to acquire dquot type 0 [ 279.089847][ T6583] EXT4-fs (loop1): 1 truncate cleaned up [ 279.112252][ T6583] EXT4-fs (loop1): pa 00000000fece5d3f: logic 1, phys. 41, len 23 [ 279.114623][ T6583] EXT4-fs error (device loop1): ext4_mb_release_inode_pa:4896: group 0, free 22, pa_free 23 [ 279.213806][ T6583] EXT4-fs (loop1): mounted filesystem without journal. Opts: max_dir_size_kb=0x0000000000000005,noblock_validity,usrquota,grpjquota=,nogrpid,errors=continue,noinit_itable,resgid=0x0000000000000000,resuid=0x00000000000000002,errors=continue. Quota mode: writeback. [ 279.401191][ T4164] hfsplus: b-tree write err: -5, ino 4 [ 279.784537][ T6583] EXT4-fs (loop1): warning: mounting fs with errors, running e2fsck is recommended [ 279.999991][ T6583] EXT4-fs warning (device loop1): ext4_multi_mount_protect:403: Unable to create kmmpd thread for loop1. [ 280.234111][ T6602] xt_SECMARK: invalid mode: 0 [ 281.015992][ T6604] netlink: 47 bytes leftover after parsing attributes in process `syz.2.722'. [ 281.151084][ T6622] loop0: detected capacity change from 0 to 512 [ 281.157160][ T6624] loop2: detected capacity change from 0 to 256 [ 281.190595][ T6622] EXT4-fs (loop0): feature flags set on rev 0 fs, running e2fsck is recommended [ 281.201044][ T6624] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0x205ad3fc, utbl_chksum : 0xe619d30d) [ 281.212281][ T6622] EXT4-fs (loop0): orphan cleanup on readonly fs [ 281.215712][ T6622] EXT4-fs error (device loop0): ext4_mb_mark_diskspace_used:3879: comm syz.0.727: Allocating blocks 41-42 which overlap fs metadata [ 281.231545][ T6622] EXT4-fs (loop0): Remounting filesystem read-only [ 281.233265][ T6622] Quota error (device loop0): write_blk: dquota write failed [ 281.235185][ T6622] Quota error (device loop0): qtree_write_dquot: Error -117 occurred while creating quota [ 281.237510][ T6622] EXT4-fs error (device loop0): ext4_acquire_dquot:6196: comm syz.0.727: Failed to acquire dquot type 0 [ 281.240637][ T6622] EXT4-fs (loop0): 1 truncate cleaned up [ 281.242486][ T6622] EXT4-fs (loop0): pa 00000000c387c194: logic 1, phys. 41, len 23 [ 281.244517][ T6622] EXT4-fs error (device loop0): ext4_mb_release_inode_pa:4896: group 0, free 22, pa_free 23 [ 281.247344][ T6622] EXT4-fs (loop0): mounted filesystem without journal. Opts: max_dir_size_kb=0x0000000000000005,noblock_validity,usrquota,resgid=0x0000000000000000,nogrpid,errors=remount-ro,noinit_itable,inode_readahead_blks=0x0000000000000001,resuid=0x00000000000000002. Quota mode: writeback. [ 282.061631][ T5535] usb 1-1: new high-speed USB device number 7 using dummy_hcd [ 282.159789][ T6641] loop2: detected capacity change from 0 to 1024 [ 282.544073][ T5535] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 282.561768][ T5535] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 282.632309][ T5535] usb 1-1: New USB device found, idVendor=06cb, idProduct=81a7, bcdDevice= 0.00 [ 282.717142][ T5535] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 282.980590][ T5535] usb 1-1: config 0 descriptor?? [ 283.279972][ T6653] loop1: detected capacity change from 0 to 8 [ 283.455684][ T9] hfsplus: b-tree write err: -5, ino 4 [ 283.660189][ T5535] usbhid 1-1:0.0: can't add hid device: -71 [ 283.875758][ T5535] usbhid: probe of 1-1:0.0 failed with error -71 [ 287.623945][ T6659] EXT4-fs warning (device nvme0n1p2): ext4_resize_fs:1981: can't read last block, resize aborted [ 287.680505][ T5535] usb 1-1: USB disconnect, device number 7 [ 287.832658][ T6665] netlink: 40 bytes leftover after parsing attributes in process `syz.0.734'. [ 287.919327][ T6672] loop2: detected capacity change from 0 to 512 [ 287.990653][ T6672] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback. [ 288.928350][ T6692] loop1: detected capacity change from 0 to 256 [ 289.692269][ T6692] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x205ad3fc, utbl_chksum : 0xe619d30d) [ 289.959741][ T6699] loop2: detected capacity change from 0 to 1024 [ 289.977694][ T6700] loop0: detected capacity change from 0 to 512 [ 290.115095][ T6700] EXT4-fs (loop0): feature flags set on rev 0 fs, running e2fsck is recommended [ 290.145283][ T6700] EXT4-fs (loop0): orphan cleanup on readonly fs [ 290.148126][ T6700] EXT4-fs error (device loop0): ext4_mb_mark_diskspace_used:3879: comm syz.0.744: Allocating blocks 41-42 which overlap fs metadata [ 290.160748][ T6700] EXT4-fs (loop0): Remounting filesystem read-only [ 290.162487][ T6700] Quota error (device loop0): write_blk: dquota write failed [ 290.164814][ T6700] Quota error (device loop0): qtree_write_dquot: Error -117 occurred while creating quota [ 290.167304][ T6700] EXT4-fs error (device loop0): ext4_acquire_dquot:6196: comm syz.0.744: Failed to acquire dquot type 0 [ 290.194273][ T6700] EXT4-fs (loop0): 1 truncate cleaned up [ 290.199987][ T6700] EXT4-fs (loop0): pa 00000000bf19b8ad: logic 1, phys. 41, len 23 [ 290.201975][ T6700] EXT4-fs error (device loop0): ext4_mb_release_inode_pa:4896: group 0, free 22, pa_free 23 [ 290.205638][ T6700] EXT4-fs (loop0): mounted filesystem without journal. Opts: max_dir_size_kb=0x0000000000000005,noblock_validity,usrquota,resgid=0x0000000000000000,nogrpid,errors=remount-ro,noinit_itable,inode_readahead_blks=0x0000000000000001,resuid=0x00000000000000002. Quota mode: writeback. [ 290.493812][ T5017] usb 1-1: new high-speed USB device number 8 using dummy_hcd [ 291.302151][ T6701] chnl_net:caif_netlink_parms(): no params data found [ 291.419034][ T6701] bridge0: port 1(bridge_slave_0) entered blocking state [ 291.420925][ T6701] bridge0: port 1(bridge_slave_0) entered disabled state [ 291.425629][ T6701] device bridge_slave_0 entered promiscuous mode [ 291.437300][ T6701] bridge0: port 2(bridge_slave_1) entered blocking state [ 291.443962][ T6701] bridge0: port 2(bridge_slave_1) entered disabled state [ 291.457856][ T6701] device bridge_slave_1 entered promiscuous mode [ 291.518331][ T6701] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 291.522605][ T6701] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 291.531840][ T294] hfsplus: b-tree write err: -5, ino 4 [ 291.586468][ T6701] team0: Port device team_slave_0 added [ 291.590197][ T6701] team0: Port device team_slave_1 added [ 291.623849][ T5017] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 291.626618][ T5017] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 291.629012][ T5017] usb 1-1: New USB device found, idVendor=06cb, idProduct=81a7, bcdDevice= 0.00 [ 291.631355][ T5017] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 291.655041][ T5017] usb 1-1: config 0 descriptor?? [ 291.691954][ T6727] loop2: detected capacity change from 0 to 512 [ 291.703052][ T6701] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 291.707767][ T6701] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 291.727987][ T6701] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 291.767524][ T6727] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended [ 291.810074][ T6727] EXT4-fs warning (device loop2): ext4_update_dynamic_rev:1061: updating to rev 1 because of new feature flag, running e2fsck is recommended [ 291.838045][ T6727] EXT4-fs (loop2): 1 truncate cleaned up [ 291.839605][ T6727] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback. [ 291.954674][ T6701] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 291.956428][ T6701] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 291.973276][ T6701] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 292.000316][ T1655] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 292.003650][ T5017] usbhid 1-1:0.0: can't add hid device: -71 [ 292.005290][ T5017] usbhid: probe of 1-1:0.0 failed with error -71 [ 292.008425][ T5017] usb 1-1: USB disconnect, device number 8 [ 292.093644][ T5016] Bluetooth: hci4: command 0x0409 tx timeout [ 292.155201][ T1655] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 292.246663][ T6701] device hsr_slave_0 entered promiscuous mode [ 292.284154][ T6701] device hsr_slave_1 entered promiscuous mode [ 292.328811][ T6701] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 292.328928][ T6701] Cannot create hsr debugfs directory [ 292.380538][ T1655] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 292.454243][ T1655] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 292.732670][ T6736] loop0: detected capacity change from 0 to 2048 [ 293.663455][ T6751] loop3: detected capacity change from 0 to 512 [ 293.671289][ T6736] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 293.691271][ T1655] tipc: Disabling bearer [ 293.693395][ T1655] tipc: Left network mode [ 293.831564][ T6754] loop1: detected capacity change from 0 to 1024 [ 294.019639][ T6760] EXT4-fs error (device loop0): ext4_validate_block_bitmap:438: comm syz.0.750: bg 0: block 288: padding at end of block bitmap is not set [ 294.041589][ T6760] fs-verity (loop0, inode 13): ext4_end_enable_verity() failed with err -117 [ 294.173712][ T5022] Bluetooth: hci4: command 0x041b tx timeout [ 295.211166][ T6701] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 295.329784][ T6701] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 295.365217][ T6701] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 295.431832][ T6776] loop3: detected capacity change from 0 to 512 [ 295.439546][ T6701] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 295.532830][ T6776] EXT4-fs (loop3): Mount option "noacl" will be removed by 3.5 [ 295.532830][ T6776] Contact linux-ext4@vger.kernel.org if you think we should keep it. [ 295.532830][ T6776] [ 295.555228][ T6776] EXT4-fs (loop3): Unrecognized mount option "subj_role=bsddf" or missing value [ 295.649523][ T6701] 8021q: adding VLAN 0 to HW filter on device bond0 [ 295.652306][ T6776] netlink: 12 bytes leftover after parsing attributes in process `syz.3.759'. [ 295.739472][ T6701] 8021q: adding VLAN 0 to HW filter on device team0 [ 295.853113][ T4185] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 295.855586][ T4185] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 295.858618][ T4185] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 295.864516][ T4185] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 295.872129][ T4185] bridge0: port 1(bridge_slave_0) entered blocking state [ 295.873936][ T4185] bridge0: port 1(bridge_slave_0) entered forwarding state [ 296.822145][ T4185] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 296.825114][ T4185] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 296.827920][ T4185] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 296.833791][ T4185] bridge0: port 2(bridge_slave_1) entered blocking state [ 296.835608][ T4185] bridge0: port 2(bridge_slave_1) entered forwarding state [ 296.880306][ T4185] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 296.883497][ T4185] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 296.886837][ T4185] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 296.898071][ T4185] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 296.911227][ T4185] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 296.943205][ T6701] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 296.958211][ T6701] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 297.055728][ T13] Bluetooth: hci4: command 0x040f tx timeout [ 297.059436][ T4315] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 297.062346][ T4315] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 297.070164][ T4315] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 297.082702][ T136] hfsplus: b-tree write err: -5, ino 4 [ 297.091777][ T4315] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 297.099822][ T4315] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 297.103892][ T4315] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 297.625718][ T4315] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 297.999959][ T6793] loop3: detected capacity change from 0 to 1024 [ 298.093184][ T6801] loop1: detected capacity change from 0 to 256 [ 298.104401][ T4315] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 298.106510][ T4315] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 298.138806][ T4380] hfsplus: b-tree write err: -5, ino 4 [ 298.165223][ T6801] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x205ad3fc, utbl_chksum : 0xe619d30d) [ 298.188608][ T6701] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 298.276860][ T6809] loop3: detected capacity change from 0 to 1024 [ 298.457370][ T1655] device hsr_slave_0 left promiscuous mode [ 298.510355][ T1655] device hsr_slave_1 left promiscuous mode [ 298.606472][ T1655] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 298.608505][ T1655] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 298.612853][ T1655] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 298.620476][ T1655] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 298.629781][ T1655] device bridge_slave_1 left promiscuous mode [ 298.631514][ T1655] bridge0: port 2(bridge_slave_1) entered disabled state [ 298.704033][ T1655] device bridge_slave_0 left promiscuous mode [ 298.705879][ T1655] bridge0: port 1(bridge_slave_0) entered disabled state [ 298.833841][ T1655] device veth1_macvtap left promiscuous mode [ 298.835520][ T1655] device veth0_macvtap left promiscuous mode [ 298.837220][ T1655] device veth1_vlan left promiscuous mode [ 298.838674][ T1655] device veth0_vlan left promiscuous mode [ 298.872524][ T6829] loop0: detected capacity change from 0 to 1024 [ 299.133697][ T3602] Bluetooth: hci4: command 0x0419 tx timeout [ 299.243302][ T1655] team0 (unregistering): Port device team_slave_1 removed [ 299.260641][ T1655] team0 (unregistering): Port device team_slave_0 removed [ 299.279181][ T1655] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 299.308424][ T1655] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 299.478748][ T1655] bond0 (unregistering): Released all slaves [ 299.881499][ T6840] udc-core: couldn't find an available UDC or it's busy [ 299.883421][ T6840] misc raw-gadget: fail, usb_gadget_probe_driver returned -19 [ 299.899947][ T294] hfsplus: b-tree write err: -5, ino 4 [ 299.970547][ T4380] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 299.973455][ T4380] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 299.985260][ T4380] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 299.987917][ T4380] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 299.992221][ T6701] device veth0_vlan entered promiscuous mode [ 299.998166][ T4380] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 300.010623][ T4380] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 300.020910][ T6701] device veth1_vlan entered promiscuous mode [ 300.038817][ T6844] loop0: detected capacity change from 0 to 1024 [ 300.056504][ T4315] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 300.061001][ T4315] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 300.063513][ T4315] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 300.072352][ T4315] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 300.079988][ T6701] device veth0_macvtap entered promiscuous mode [ 300.090758][ T6701] device veth1_macvtap entered promiscuous mode [ 300.103240][ T6701] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 300.113136][ T6701] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 300.117839][ T6701] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 300.121796][ T6701] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 300.133291][ T6701] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 300.135708][ T4380] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 300.138312][ T4380] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 300.140717][ T4380] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 300.143707][ T4380] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 300.148560][ T6701] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 300.151140][ T6701] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 300.153285][ T6701] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 300.156737][ T6701] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 300.160493][ T6701] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 300.162714][ T4380] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 300.165264][ T4380] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 300.171050][ T6701] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 300.174311][ T6701] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 300.176531][ T6701] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 300.178839][ T6701] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 300.258068][ T4315] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 300.260873][ T4315] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 300.270043][ T4380] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 300.325002][ T294] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 300.328068][ T294] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 300.335457][ T294] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 301.313501][ T6855] loop3: detected capacity change from 0 to 2048 [ 301.346049][ T6862] loop4: detected capacity change from 0 to 256 [ 301.392295][ T6862] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0x205ad3fc, utbl_chksum : 0xe619d30d) [ 301.433956][ T6855] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 301.815412][ T6871] EXT4-fs error (device loop3): ext4_validate_block_bitmap:438: comm syz.3.779: bg 0: block 288: padding at end of block bitmap is not set [ 301.846059][ T6871] fs-verity (loop3, inode 13): ext4_end_enable_verity() failed with err -117 [ 302.508214][ T6877] loop1: detected capacity change from 0 to 1024 [ 303.238398][ T6880] loop2: detected capacity change from 0 to 1024 [ 303.529432][ T4164] hfsplus: b-tree write err: -5, ino 4 [ 303.725971][ T6890] loop1: detected capacity change from 0 to 512 [ 303.874044][ T6892] ------------[ cut here ]------------ [ 303.875688][ T6892] WARNING: CPU: 0 PID: 6892 at net/wireless/core.h:220 cfg80211_wireless_stats+0x510/0x5ec [ 303.878320][ T6892] Modules linked in: [ 303.879290][ T6892] CPU: 0 PID: 6892 Comm: syz.2.788 Not tainted 5.15.167-syzkaller #0 [ 303.881270][ T6892] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024 [ 303.883861][ T6892] pstate: 80400005 (Nzcv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 303.885859][ T6892] pc : cfg80211_wireless_stats+0x510/0x5ec [ 303.887395][ T6892] lr : cfg80211_wireless_stats+0x510/0x5ec [ 303.888898][ T6892] sp : ffff8000209375a0 [ 303.889942][ T6892] x29: ffff800020937630 x28: 1fffe0001a0ca400 x27: 1ffff00002958069 [ 303.892018][ T6892] x26: dfff800000000000 x25: ffff8000209375c0 x24: 1ffff00004126eb8 [ 303.894138][ T6892] x23: 0000000000000000 x22: ffff0000cdfc6000 x21: ffff0000d0652000 [ 303.896246][ T6892] x20: ffff0000cdfc65c0 x19: ffff0000d4d20000 x18: 0000000000000000 [ 303.898421][ T6892] x17: 0000000000000002 x16: ffff8000084c5eb8 x15: 00000000fffffff5 [ 303.900551][ T6892] x14: 1ffff0000295806a x13: dfff800000000000 x12: 0000000000040000 [ 303.902710][ T6892] x11: 0000000000005e34 x10: ffff80002476c000 x9 : 0000000000005e35 [ 303.904788][ T6892] x8 : ffff8000113e5e10 x7 : ffff80000ff4b648 x6 : 0000000000000000 [ 303.906885][ T6892] x5 : 0000000000000000 x4 : 0000000000000001 x3 : ffff8000082e1cb8 [ 303.908891][ T6892] x2 : 0000000000000000 x1 : 0000000000000000 x0 : 0000000000000000 [ 303.910830][ T6892] Call trace: [ 303.911707][ T6892] cfg80211_wireless_stats+0x510/0x5ec [ 303.913137][ T6892] get_wireless_stats+0x70/0x138 [ 303.914383][ T6892] wireless_dev_seq_show+0x5c/0x3e0 [ 303.915780][ T6892] seq_read_iter+0x3e0/0xc44 [ 303.916968][ T6892] seq_read+0x388/0x4ec [ 303.918034][ T6892] proc_reg_read+0x1a4/0x314 [ 303.919325][ T6892] do_iter_read+0x434/0x684 [ 303.920431][ T6892] do_preadv+0x1e4/0x324 [ 303.921531][ T6892] __arm64_sys_preadv+0xa0/0xb8 [ 303.922811][ T6892] invoke_syscall+0x98/0x2b8 [ 303.923934][ T6892] el0_svc_common+0x138/0x258 [ 303.925185][ T6892] do_el0_svc+0x58/0x14c [ 303.926302][ T6892] el0_svc+0x7c/0x1f0 [ 303.927367][ T6892] el0t_64_sync_handler+0x84/0xe4 [ 303.928654][ T6892] el0t_64_sync+0x1a0/0x1a4 [ 303.929874][ T6892] irq event stamp: 3298 [ 303.931031][ T6892] hardirqs last enabled at (3297): [] exit_to_kernel_mode+0x100/0x178 [ 303.933573][ T6892] hardirqs last disabled at (3298): [] el1_dbg+0x24/0x80 [ 303.935674][ T6892] softirqs last enabled at (3126): [] local_bh_enable+0x10/0x34 [ 303.938046][ T6892] softirqs last disabled at (3124): [] local_bh_disable+0x10/0x34 [ 303.940543][ T6892] ---[ end trace 0746362b1e252374 ]--- [ 303.943819][ T6892] ------------[ cut here ]------------ [ 303.945594][ T6892] WARNING: CPU: 0 PID: 6892 at net/wireless/core.h:228 cfg80211_wireless_stats+0x528/0x5ec [ 303.948198][ T6892] Modules linked in: [ 303.949292][ T6892] CPU: 0 PID: 6892 Comm: syz.2.788 Tainted: G W 5.15.167-syzkaller #0 [ 303.951741][ T6892] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024 [ 303.954192][ T6892] pstate: 80400005 (Nzcv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 303.956078][ T6892] pc : cfg80211_wireless_stats+0x528/0x5ec [ 303.957568][ T6892] lr : cfg80211_wireless_stats+0x528/0x5ec [ 303.958983][ T6892] sp : ffff8000209375a0 [ 303.960046][ T6892] x29: ffff800020937630 x28: 1fffe0001a0ca400 x27: 1ffff00002958069 [ 303.962109][ T6892] x26: dfff800000000000 x25: ffff8000209375c0 x24: 1ffff00004126eb8 [ 303.963987][ T6892] x23: ffff0000d0652048 x22: ffff0000cdfc6000 x21: ffff0000d0652000 [ 303.966047][ T6892] x20: ffff0000cdfc65c0 x19: 0000000000000000 x18: ffff800020936da0 [ 303.968341][ T6892] x17: 1fffe00036831b8e x16: ffff8000084c5eb8 x15: 0000000000000004 [ 303.970489][ T6892] x14: 1ffff0000295806a x13: dfff800000000000 x12: 0000000000040000 [ 303.972550][ T6892] x11: 0000000000026493 x10: ffff80002476c000 x9 : 0000000000026494 [ 303.974790][ T6892] x8 : ffff8000113e5e28 x7 : 0000000000000000 x6 : 0000000000000000 [ 303.976833][ T6892] x5 : 0000000000000080 x4 : 0000000000000000 x3 : ffff80000804605c [ 303.978838][ T6892] x2 : 0000000000000006 x1 : 0000000000000000 x0 : 0000000000000000 [ 303.980771][ T6892] Call trace: [ 303.981548][ T6892] cfg80211_wireless_stats+0x528/0x5ec [ 303.983030][ T6892] get_wireless_stats+0x70/0x138 [ 303.984296][ T6892] wireless_dev_seq_show+0x5c/0x3e0 [ 303.985625][ T6892] seq_read_iter+0x3e0/0xc44 [ 303.986792][ T6892] seq_read+0x388/0x4ec [ 303.987813][ T6892] proc_reg_read+0x1a4/0x314 [ 303.988983][ T6892] do_iter_read+0x434/0x684 [ 303.990159][ T6892] do_preadv+0x1e4/0x324 [ 303.991283][ T6892] __arm64_sys_preadv+0xa0/0xb8 [ 303.992591][ T6892] invoke_syscall+0x98/0x2b8 [ 303.993763][ T6892] el0_svc_common+0x138/0x258 [ 303.994977][ T6892] do_el0_svc+0x58/0x14c [ 303.996033][ T6892] el0_svc+0x7c/0x1f0 [ 303.996956][ T6892] el0t_64_sync_handler+0x84/0xe4 [ 303.998287][ T6892] el0t_64_sync+0x1a0/0x1a4 [ 303.999457][ T6892] irq event stamp: 3324 [ 304.000514][ T6892] hardirqs last enabled at (3323): [] finish_lock_switch+0xbc/0x1e8 [ 304.003112][ T6892] hardirqs last disabled at (3324): [] el1_dbg+0x24/0x80 [ 304.005339][ T6892] softirqs last enabled at (3314): [] handle_softirqs+0xb88/0xdbc [ 304.007707][ T6892] softirqs last disabled at (3303): [] __irq_exit_rcu+0x268/0x4d8 [ 304.009957][ T6892] ---[ end trace 0746362b1e252375 ]--- [ 304.632356][ T6890] EXT4-fs (loop1): mounted filesystem without journal. Opts: grpquota,nouid32,minixdf,,errors=continue. Quota mode: writeback.