last executing test programs: 47.566648064s ago: executing program 1 (id=1058): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000e40)=ANY=[@ANYBLOB="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"/3576], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x2e) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000540)='rcu_utilization\x00', r0}, 0x10) syz_genetlink_get_family_id$nl80211(&(0x7f0000000340), 0xffffffffffffffff) bpf$PROG_LOAD(0x5, 0x0, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r1 = getpid() sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r4 = socket$inet6(0xa, 0x3, 0x7) connect$inet6(r4, &(0x7f00000000c0)={0xa, 0x0, 0x0, @loopback}, 0x1c) sendmmsg(r4, &(0x7f0000000480), 0x2e9, 0xff00) r5 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_mreq(r5, 0x29, 0x1b, &(0x7f00000000c0)={@empty}, 0x14) r6 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r6, 0x29, 0x1b, 0x0, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r6, 0x29, 0x1b, &(0x7f00000000c0)={@remote={0xfe, 0x80, '\x00', 0xffffffffffffffff}}, 0x20) syz_open_procfs(0x0, &(0x7f0000000080)='net/anycast6\x00') syz_mount_image$hfsplus(&(0x7f0000000000), &(0x7f0000000080)='./bus\x00', 0x2000010, &(0x7f00000013c0)=ANY=[], 0xf, 0x6a2, &(0x7f0000000100)="$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") openat$fuse(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) stat(&(0x7f0000001580)='./bus\x00', &(0x7f00000016c0)) r7 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x0) ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r7, 0xc08c5332, &(0x7f0000000300)={0x0, 0x0, 0x0, 'queue1\x00'}) ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TIMER(r7, 0xc02c5341, &(0x7f00000000c0)) 46.273998313s ago: executing program 1 (id=1059): bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, 0x0, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x61}, 0x0) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4) sched_setscheduler(0x0, 0x1, &(0x7f00000000c0)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, 0x0, 0x0, 0x2, 0x0) r3 = socket(0x10, 0x803, 0x0) sendmsg$nl_route(r3, 0x0, 0x0) syz_open_dev$sndctrl(&(0x7f0000000000), 0x1, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000100)={0xffffffffffffffff}) ioctl$TIOCL_GETMOUSEREPORTING(0xffffffffffffffff, 0x541c, &(0x7f0000000600)) splice(r4, 0x0, 0xffffffffffffffff, 0x0, 0x7, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x1e, 0xe, &(0x7f0000002040)=ANY=[@ANYBLOB="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", @ANYBLOB="1d139ea82bf95c2a5474d4a0d51d574c1e80c08468a1d0ffcaa5beda1d1e735401cddf133954ac1858a89458dfcc08fd460fd4095d862fefdd7b67249f863619a16200c3158d5c0f1d41e7e236a48ed97a83105f991550cd52d04afc5d4236e333c523630f55e3335db9f3008ffba8c0caf3b9cea8aa798e4b36b3cd801c9bb3c666bd5a41ea3c09e7583961eb53a6c5948b47502e0d4b2959fb217a2ea66fd7e4f5eaa78c31c69a1c9d5f"], &(0x7f0000000b80)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_lookup=0x24, 0xffffffffffffffff, 0x8, &(0x7f0000000400), 0x5d, 0x10, &(0x7f0000000040), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x4b) 45.178155044s ago: executing program 1 (id=1067): syz_mount_image$ext4(&(0x7f0000000200)='ext4\x00', &(0x7f0000000740)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0xc000, &(0x7f00000006c0), 0x2, 0x246, &(0x7f0000000ac0)="$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") syz_mount_image$ext4(0x0, &(0x7f0000000080)='./file0\x00', 0x18808, 0x0, 0xf9, 0x0, 0x0) syz_mount_image$fuse(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) r0 = getpid() sched_setaffinity(0x0, 0x1, &(0x7f00000002c0)=0x2) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f00000004c0)=@abs={0x0, 0x0, 0x4e24}, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) mount$overlay(0x0, 0x0, &(0x7f0000000000), 0x0, &(0x7f0000000140)={[{@upperdir={'upperdir', 0x3d, './file2'}}], [], 0x2c}) chdir(&(0x7f0000000140)='./file0\x00') r3 = openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) getdents64(r3, 0xfffffffffffffffe, 0x29) creat(&(0x7f0000000e00)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0) mknod$loop(&(0x7f0000000000)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, 0x1) link(&(0x7f0000001240)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f0000000bc0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00') rename(&(0x7f0000000240)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f0000000f40)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00') r4 = openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0) getdents(r4, 0x0, 0x58) 42.17657873s ago: executing program 1 (id=1072): syz_mount_image$udf(&(0x7f0000000080), &(0x7f0000000180)='./file1\x00', 0x4000, &(0x7f0000000e00)=ANY=[@ANYBLOB='lastblock=00000000000000000000,umask=00000000000000000000002,dmode=00000000000000000077777,novrs,shortad,shortad,undelete,iocharset=cp437,shortad,umask=00000000000000000000006,dmode=00000000000000000000011,fileset=00000000000000000011,uid=', @ANYRESDEC=0x0, @ANYBLOB="303030304e303030303030303030303030462ca0179058936d6561737572652c00"], 0x2, 0xc2d, &(0x7f00000001c0)="$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") sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x3, 0x0, 0x0) connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(0xffffffffffffffff, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0) syz_clone(0x0, 0x0, 0xfffffe11, 0x0, 0x0, 0x0) ioctl$TIOCSTI(0xffffffffffffffff, 0x5412, 0x0) clock_nanosleep(0x8, 0x2, &(0x7f0000000080)={0x77359400}, 0x0) 38.206924407s ago: executing program 1 (id=1085): syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000600)='./bus\x00', 0x1c14744, &(0x7f0000000100), 0xff, 0x490, &(0x7f0000000f40)="$eJzs3M9vFFUcAPDvTLf8VFoRf4AkVtHY+KOlBZSDHjSaeNBEowc81rYQZKGG1kQI0WIMHg2Jd+PRxL/Akyejnky8eNC7ISFKTAAvrpndmba77lT6cxf380kW3tt5M+99++btvr632wB61lD2TxJxR0T8EhEDjWxzgaHGfzeuXZi8ee3CZBK12hu/J/Vy169dmCyKFuftzDPDaUT6cZJX0mz23PlTE9Xq9Nk8Pzp3+t3R2XPnnzp5euLE9InpM+NHjx4+NPbM0+NHms47sso4s/iu7/tgZv/el9+6/Orksctvf/9V1t40P740jvUylAX+R62u9dij611Zh/1dW4wzqXS6NdyqvojIuqu/Pv4Hoi8WO28gXvqoo40DNlT2mr21/PB8DfgfS6LTLQA6o3ijz37/zR/9mzT16ApXn2/8ApTFfiN/NI5UFtYGNvIHMhQRx+b/+jx7RMs6RK3NugEAwFp9k81/nmya/+XzjzTuXVJuV743NBgRd0XE7oi4OyL2RMQ9EfWy90XE/Susv3Vr6N/7MOmVVQV2i7L537P53lbz/K+Y/cVgX567sx5/f3L8ZHX6YP4zGY7+rVl+rN3Fi0u8+NOnZfUvnf9lj6z+Yi6YX+RKpWWBbmpibmK9JqVXL0bsq7SLP1nYCUgiYm9E7FvZpXcViZOPf7m/rNB/x7+Mddhnqn0R8Vij/+ejJf5Csvz+5Oi2qE4fHG3cFX1t6vjhx0uvldW/pvjXQdb/O5rv/5YSA38mS/drZ1dex6VfPyndW62s8v7fkrxZ39Pdkj/3/sTc3NmxiC3JK/V80/Pji+cW+aJ8Fv/wgfbjf3d+Thb/AxGxP+LnYtg9mPfdQxHxcEQcWCb+71545J2yY93Q/1NtX/8W7v/B5v5feaLv1Ldfl9XfGn+S5xdLZP1/uJ4azp+pv/7ltpdct7w52/ISq72bAQAA4PaT1j8bn6QjC+k0HRlpfIZ/T+xIqzOzc08cn3nvzFTjM/SD0Z8W658DS9ZDx5L5/IqN/Hi+VlwcP5SvG3/Wtz1Jojo9MjlTnepw7NDrdpaM/8xv7RazI+K5TW0hsKF8Xwt6V+v4TzvUDmDzef+H3mX8Q+8y/qF3FeP/9SXPfdhSpmQvALjNef+H3mX8Q+9aGP8XO9sOYPN5/4ee1O5L8sXfOFjDV/7XlKgs8+39Lk0Uq6Pd0p5TSURsbBWRdkekpYnI/4hFt7Rn5YmbtVWeXllmdN9qojOvRwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAOvtnwAAAP//aP7lHQ==") bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[], 0x48) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000001480)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file1\x00'}, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) ptrace$poke(0x5, r0, &(0x7f00000004c0), 0x3) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0) getsockopt$bt_l2cap_L2CAP_CONNINFO(r3, 0x6, 0x2, 0x0, &(0x7f0000000040)) 38.16644166s ago: executing program 4 (id=1086): r0 = syz_open_dev$sndctrl(&(0x7f0000001440), 0x0, 0x0) write$binfmt_script(0xffffffffffffffff, &(0x7f0000000040), 0xfea7) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0xb, 0x10010, r0, 0x308ce000) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r1 = getpid() sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) syz_mount_image$hfsplus(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x80000c, &(0x7f00000003c0)=ANY=[@ANYBLOB="706172743d3078300002a27f9edc6b44900000c63d5f852c6769643d", @ANYRESOCT, @ANYRESOCT=0x0, @ANYRES8, @ANYRES32, @ANYRES8, @ANYBLOB="2c6e03d465636f6d706f73652c6769643d29ab72f4a2f73b811c7fd9bae7ecd520839bd791f81b6637f549a77ac6cb621635f9c08b2615964a3c43b727df50d049dc760465dea7349206240e6fb4756f276c72f20bab7d507fe4853b18ebe583cbf9009044b021249834326e80399ca072639251325e38177eef4f05093acfe76553919ecca99460ea4ebdbcef9c4e0ed3f10f86889116979b7aa52b38442546b806d6b8964f99a04195ad43adb611", @ANYRES16, @ANYBLOB="4599"], 0x1, 0x701, &(0x7f00000009c0)="$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") ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000300)=[@text64={0x40, &(0x7f0000000200)="f7790066baa00066b86b4266ef66ba420066b8e20066ef0f29902cbb0000c4e2b1ba8c88d9000000666666440f38826b410f7842280f07b8010000000f01d9c4033921820f47a753fd", 0x49}], 0x1, 0x0, 0x0, 0x0) clock_adjtime(0x0, &(0x7f00000004c0)={0xc5, 0x0, 0xfffffffffffffff9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200004, 0x0, 0x0, 0x0, 0x0, 0x7}) syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) open(0x0, 0xce942, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce) r5 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r5, &(0x7f0000019680)=""/102392, 0x18ff8) ioctl$KVM_SET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r4, 0xae80, 0x0) 36.551464659s ago: executing program 4 (id=1088): r0 = socket$packet(0x11, 0x3, 0x300) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000240)={'batadv_slave_1\x00', 0x0}) setsockopt$packet_int(r0, 0x107, 0x14, &(0x7f0000000480)=0x102, 0x4) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r2 = getpid() sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000b40)={0x11, 0x8, 0x0, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) setsockopt$packet_int(r0, 0x107, 0xf, &(0x7f0000000080)=0xf3e, 0x62) sendto$packet(r0, &(0x7f00000000c0)="3f033608260812002c001e0089e9aaa911d7c2290f0086dd1327c9167c643c4a1b7880610cc96655b1b141ab059b24d0fbc50df71548a3f6c5609063382a0c152bfdf9435e3ffe46", 0xe90c, 0xa0c4, &(0x7f0000000540)={0x11, 0x0, r1, 0x1, 0x0, 0x6, @multicast}, 0x14) 36.235209219s ago: executing program 1 (id=1090): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100008b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() syz_usb_connect(0x0, 0x24, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x1d, 0x6d, 0x47, 0x8, 0x83a, 0x7511, 0xb62d, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x0, 0x1, 0x80, 0x0, [{{0x9, 0x4, 0xaf, 0x0, 0x0, 0x37, 0x5c, 0x7b}}]}}]}}, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0) sendmsg$NL80211_CMD_JOIN_MESH(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)={0x1c, 0x0, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}}, 0x1c}}, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_IRQCHIP(r2, 0x8208ae63, &(0x7f0000000600)={0x0, 0x0, @pic={0x0, 0x7, 0x0, 0x20, 0x0, 0xdb, 0x0, 0x7f, 0x0, 0x0, 0x8, 0x0, 0x8}}) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x44, 0x0, 0x0, 0xfffffffffffffffd], 0xf000, 0x2c0f12}) sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(0xffffffffffffffff, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r4 = syz_open_procfs(0x0, &(0x7f0000000240)='clear_refs\x00') writev(r4, &(0x7f0000000100)=[{&(0x7f00000004c0)='4', 0x1}], 0x9) newfstatat(0xffffffffffffff9c, &(0x7f0000003d40)='./file1\x00', &(0x7f0000003d80), 0x0) 34.995411583s ago: executing program 4 (id=1094): socket$inet6_tcp(0xa, 0x1, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) ioctl$TIOCMGET(0xffffffffffffffff, 0x5415, &(0x7f0000000040)) r3 = bpf$MAP_CREATE(0x0, &(0x7f0000004080)=@base={0x2, 0x4, 0x4, 0xbf22, 0x480, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) mmap(&(0x7f0000f9f000/0x4000)=nil, 0x4000, 0x1000002, 0x13, r3, 0x0) 34.409275347s ago: executing program 4 (id=1097): mount(0x0, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0) syz_mount_image$ext4(&(0x7f00000006c0)='ext4\x00', &(0x7f0000000700)='./file0\x00', 0x8413, &(0x7f0000000080)={[{@discard}, {@usrquota}, {@inlinecrypt}, {@noblock_validity}]}, 0x0, 0x526, &(0x7f00000014c0)="$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") creat(&(0x7f0000000480)='./bus\x00', 0x0) mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0) mount$bind(0x0, &(0x7f0000000040)='./file0\x00', 0x0, 0x100000, 0x0) mount$bind(&(0x7f0000000100)='./file0\x00', &(0x7f0000000340)='./file0\x00', 0x0, 0x813014, 0x0) mount$bind(&(0x7f00000003c0)='./file0\x00', &(0x7f0000000400)='./file0\x00', 0x0, 0x1000, 0x0) mount$bind(&(0x7f0000000180)='.\x00', &(0x7f0000000140)='./file0\x00', 0x0, 0x45110, 0x0) r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000200)='mounts\x00') read$FUSE(r0, &(0x7f0000004180)={0x2020}, 0x2020) 31.597888626s ago: executing program 4 (id=1103): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100008b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() syz_usb_connect(0x0, 0x24, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x1d, 0x6d, 0x47, 0x8, 0x83a, 0x7511, 0xb62d, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x0, 0x1, 0x80, 0x0, [{{0x9, 0x4, 0xaf, 0x0, 0x0, 0x37, 0x5c, 0x7b}}]}}]}}, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0) sendmsg$NL80211_CMD_JOIN_MESH(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)={0x1c, 0x0, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}}, 0x1c}}, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_IRQCHIP(r2, 0x8208ae63, &(0x7f0000000600)={0x0, 0x0, @pic={0x0, 0x7, 0x0, 0x20, 0x0, 0xdb, 0x0, 0x7f, 0x0, 0x0, 0x8, 0x0, 0x8}}) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x44, 0x0, 0x0, 0xfffffffffffffffd], 0xf000, 0x2c0f12}) sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(0xffffffffffffffff, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r4 = syz_open_procfs(0x0, &(0x7f0000000240)='clear_refs\x00') writev(r4, &(0x7f0000000100)=[{&(0x7f00000004c0)='4', 0x1}], 0x9) newfstatat(0xffffffffffffff9c, &(0x7f0000003d40)='./file1\x00', &(0x7f0000003d80), 0x0) 29.338868385s ago: executing program 3 (id=1106): bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) socketpair(0x1, 0x5, 0x0, &(0x7f0000000100)) bpf$PROG_LOAD(0x5, 0x0, 0x0) syz_open_procfs$namespace(0x0, 0xfffffffffffffffe) r0 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r0}, 0x10) bpf$MAP_CREATE(0x0, 0x0, 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000a80)=ANY=[@ANYBLOB="0400000004000000040000000500010000000000", @ANYRES32, @ANYRES32=0x0, @ANYRES32, @ANYBLOB], 0x48) socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) sendmsg$inet(r2, &(0x7f0000000580)={&(0x7f0000000040)={0x2, 0x4e20, @empty}, 0x10, &(0x7f0000000500)=[{&(0x7f00000003c0)}], 0x1, &(0x7f0000000780)=ANY=[@ANYBLOB='\x00\r\x00', @ANYRES32=0x0, @ANYBLOB="e000000100000000000000002c000000000000000000000007000000891babac1414bbffffffff0a0101000000bb000000000054000000000000000000000007000000442c71930a01010200000001ac14142200000004ac1414bb000000086401010100000002e000100100000d143712dc21cc0873d60b0febe5ed247aafae3f94040100000000000000180000000000000000000000070000008907d4ffffffff00110000000000000000000000010000000a00"/196], 0xd8}, 0x4000826) bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000180)={r1, 0x58, &(0x7f0000000340)={0x0, 0x0}}, 0x10) r4 = bpf$BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f0000000080)={r3}, 0xc) close(r4) 29.0623713s ago: executing program 3 (id=1108): r0 = bpf$MAP_CREATE(0x0, 0x0, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000280)=ANY=[@ANYRES16=r0, @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000000)='kfree\x00', r1}, 0x18) syz_mount_image$ext4(0x0, &(0x7f0000000140)='./file0\x00', 0x2000000, 0x0, 0x0, 0x0, &(0x7f0000000000)) pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) write$P9_RVERSION(r3, &(0x7f0000000ac0)=ANY=[@ANYBLOB="1500000065ffff097b00000800395032303030"], 0x15) mount$nfs(0x0, 0x0, &(0x7f0000000080), 0x0, 0x0) syz_mount_image$exfat(0x0, &(0x7f0000000100)='./bus\x00', 0x4800, 0x0, 0x0, 0x0, &(0x7f0000000000)) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7) r4 = getpid() sched_setscheduler(r4, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r5, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r6, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4) r7 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r7, &(0x7f0000deb000)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r7, 0x0, 0xffffffffffffff7c, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @loopback}, 0x10) sendmsg$NFT_MSG_GETTABLE(0xffffffffffffffff, &(0x7f00000005c0)={0x0, 0x0, 0x0}, 0x0) sendto$inet(r7, &(0x7f0000000080)='\x00', 0x1, 0xc840, 0x0, 0x0) close(r7) r8 = dup(r3) write$FUSE_BMAP(r8, &(0x7f0000000100)={0x18}, 0x18) write$FUSE_NOTIFY_RETRIEVE(r8, &(0x7f00000000c0)={0x14c}, 0x137) mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', 0x0, 0x8, &(0x7f0000000180)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r2, @ANYBLOB=',wfdno=', @ANYRESHEX=r8]) 28.931351692s ago: executing program 4 (id=1109): bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000047b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000007b00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0x6, 0x4, 0x8, 0xa, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) close(0x3) bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x2, 0x4, 0x4, 0x1, 0x1100, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000940)='percpu_alloc_percpu\x00', r0}, 0x10) bpf$MAP_CREATE(0x100000000000000, &(0x7f0000000140)=@base={0xa, 0x16, 0xb3, 0x7f, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) 27.714977804s ago: executing program 3 (id=1112): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_IDENTITY_MAP_ADDR(r1, 0x4008ae48, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000300)='pids.events\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000000), 0x208e24b) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f00005d4000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, &(0x7f0000000040)="5b0f01c2c29c028ed0660f388236af0083ee2c0f20c06635000004200f22c0643e1f0fb7c2", 0x25}], 0x1, 0x0, 0x0, 0x0) preadv(r2, &(0x7f00000015c0)=[{&(0x7f0000000080)=""/124, 0xffffff23}], 0x1, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil}) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000380)=[@text64={0x40, 0x0}], 0x1, 0x64, 0x0, 0x0) ioctl$sock_inet6_SIOCADDRT(0xffffffffffffffff, 0x8902, &(0x7f0000000080)={@loopback={0x8000000000}, @private1, @empty, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000}) ioctl$KVM_RUN(r3, 0xae80, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) 25.797594811s ago: executing program 3 (id=1114): syz_mount_image$udf(&(0x7f0000000080), &(0x7f0000000180)='./file1\x00', 0x4000, &(0x7f0000000e00)=ANY=[@ANYBLOB='lastblock=00000000000000000000,umask=00000000000000000000002,dmode=00000000000000000077777,novrs,shortad,shortad,undelete,iocharset=cp437,shortad,umask=00000000000000000000006,dmode=00000000000000000000011,fileset=00000000000000000011,uid=', @ANYRESDEC=0x0, @ANYBLOB="303030304e303030303030303030303030462ca0179058936d6561737572652c00"], 0x2, 0xc2d, &(0x7f00000001c0)="$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") sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x3, 0x0, 0x0) connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(0xffffffffffffffff, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0) syz_clone(0x0, 0x0, 0xfffffe11, 0x0, 0x0, 0x0) ioctl$TIOCSTI(0xffffffffffffffff, 0x5412, 0x0) clock_nanosleep(0x8, 0x2, &(0x7f0000000080)={0x77359400}, 0x0) 22.159274057s ago: executing program 3 (id=1121): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000e40)=ANY=[@ANYBLOB="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"/3576], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x2e) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000540)='rcu_utilization\x00', r0}, 0x10) syz_genetlink_get_family_id$nl80211(&(0x7f0000000340), 0xffffffffffffffff) bpf$PROG_LOAD(0x5, 0x0, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r1 = getpid() sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r4 = socket$inet6(0xa, 0x3, 0x7) connect$inet6(r4, &(0x7f00000000c0)={0xa, 0x0, 0x0, @loopback}, 0x1c) sendmmsg(r4, &(0x7f0000000480), 0x2e9, 0xff00) r5 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_mreq(r5, 0x29, 0x1b, &(0x7f00000000c0)={@empty}, 0x14) r6 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r6, 0x29, 0x1b, 0x0, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r6, 0x29, 0x1b, &(0x7f00000000c0)={@remote={0xfe, 0x80, '\x00', 0xffffffffffffffff}}, 0x20) syz_open_procfs(0x0, &(0x7f0000000080)='net/anycast6\x00') syz_mount_image$hfsplus(&(0x7f0000000000), &(0x7f0000000080)='./bus\x00', 0x2000010, &(0x7f00000013c0)=ANY=[], 0xf, 0x6a2, &(0x7f0000000100)="$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") stat(&(0x7f0000001580)='./bus\x00', &(0x7f00000016c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) write$FUSE_ATTR(0xffffffffffffffff, &(0x7f0000001640)={0x78, 0xfffffffffffffffe, 0x0, {0x0, 0xfffffff8, 0x0, {0x0, 0x16c, 0x1, 0x8000000000000000, 0x8, 0x2, 0xffff, 0x7, 0xfffffff8, 0x2000, 0x8001, 0xee01, r7, 0x7, 0x1}}}, 0x78) r8 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x0) ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r8, 0xc08c5332, &(0x7f0000000300)={0x0, 0x0, 0x0, 'queue1\x00'}) ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TIMER(r8, 0xc02c5341, &(0x7f00000000c0)) 17.951254405s ago: executing program 3 (id=1126): bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) socketpair(0x1, 0x5, 0x0, &(0x7f0000000100)) bpf$PROG_LOAD(0x5, 0x0, 0x0) syz_open_procfs$namespace(0x0, 0xfffffffffffffffe) r0 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r0}, 0x10) bpf$MAP_CREATE(0x0, 0x0, 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000a80)=ANY=[@ANYBLOB="0400000004000000040000000500010000000000", @ANYRES32, @ANYRES32=0x0, @ANYRES32, @ANYBLOB], 0x48) socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) sendmsg$inet(r2, &(0x7f0000000580)={&(0x7f0000000040)={0x2, 0x4e20, @empty}, 0x10, &(0x7f0000000500)=[{&(0x7f00000003c0)}], 0x1, &(0x7f0000000780)=ANY=[@ANYBLOB='\x00\r\x00', @ANYRES32=0x0, @ANYBLOB="e000000100000000000000002c000000000000000000000007000000891babac1414bbffffffff0a0101000000bb000000000054000000000000000000000007000000442c71930a01010200000001ac14142200000004ac1414bb000000086401010100000002e000100100000d143712dc21cc0873d60b0febe5ed247aafae3f94040100000000000000180000000000000000000000070000008907d4ffffffff00110000000000000000000000010000000a00"/196], 0xd8}, 0x4000826) bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000180)={r1, 0x58, &(0x7f0000000340)={0x0, 0x0}}, 0x10) r4 = bpf$BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f0000000080)={r3}, 0xc) close(r4) 7.553059224s ago: executing program 2 (id=1145): bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000047b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000007b00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0x6, 0x4, 0x8, 0xa, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) close(0x3) bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x2, 0x4, 0x4, 0x1, 0x1100, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, 0x0, &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000940)='percpu_alloc_percpu\x00', r0}, 0x10) bpf$MAP_CREATE(0x100000000000000, &(0x7f0000000140)=@base={0xa, 0x16, 0xb3, 0x7f, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) 7.294128518s ago: executing program 2 (id=1146): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x2}]}, 0x24}}, 0x0) sendmsg$NL80211_CMD_CONNECT(r0, &(0x7f0000000440)={0x0, 0x0, 0x0}, 0x0) 6.989440716s ago: executing program 2 (id=1147): bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, 0x0, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x61}, 0x0) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4) sched_setscheduler(0x0, 0x1, &(0x7f00000000c0)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = socket(0x10, 0x803, 0x0) sendmsg$nl_route(r3, 0x0, 0x0) syz_open_dev$sndctrl(&(0x7f0000000000), 0x1, 0x0) socketpair$unix(0x1, 0x5, 0x0, 0x0) ioctl$TIOCL_GETMOUSEREPORTING(0xffffffffffffffff, 0x541c, &(0x7f0000000600)) splice(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x7, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x1e, 0xe, &(0x7f0000002040)=ANY=[@ANYBLOB="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", @ANYBLOB="1d139ea82bf95c2a5474d4a0d51d574c1e80c08468a1d0ffcaa5beda1d1e735401cddf133954ac1858a89458dfcc08fd460fd4095d862fefdd7b67249f863619a16200c3158d5c0f1d41e7e236a48ed97a83105f991550cd52d04afc5d4236e333c523630f55e3335db9f3008ffba8c0caf3b9cea8aa798e4b36b3cd801c9bb3c666bd5a41ea3c09e7583961eb53a6c5948b47502e0d4b2959fb217a2ea66fd7e4f5eaa78c31c69a1c9d5f"], &(0x7f0000000b80)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_lookup=0x24, 0xffffffffffffffff, 0x8, &(0x7f0000000400), 0x5d, 0x10, &(0x7f0000000040), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x4b) 5.062869374s ago: executing program 0 (id=1149): openat(0xffffffffffffff9c, 0x0, 0x10042, 0x18) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) socket(0x28, 0x5, 0x0) r3 = socket(0x28, 0x5, 0x0) bind$vsock_stream(r3, &(0x7f0000000040)={0x28, 0x0, 0x0, @local}, 0x10) listen(r3, 0x0) syz_mount_image$iso9660(&(0x7f0000000dc0), &(0x7f0000002380)='./file1\x00', 0x3a0cc12, &(0x7f00000007c0)={[{@unhide}, {@session={'session', 0x3d, 0x13}}, {@map_normal}, {@check_strict}, {@cruft}, {@hide}, {@session={'session', 0x3d, 0x54}}, {@unhide}, {@check_relaxed}, {@sbsector={'sbsector', 0x3d, 0x1}}, {@utf8}, {@sbsector={'sbsector', 0x3d, 0xffffffffffffffff}}], [{@uid_eq}], 0x2c}, 0x1, 0x9be, &(0x7f0000004180)="$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") 4.895091099s ago: executing program 2 (id=1150): syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0xe, &(0x7f0000000440)={[{@noload}, {@resuid={'resuid', 0x3d, 0xee01}}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x68}}, {@lazytime}, {@block_validity}, {@quota}]}, 0x3, 0x431, &(0x7f0000000940)="$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") prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, &(0x7f0000000640)=0x0) r1 = getpid() sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) fcntl$setownex(r2, 0xf, &(0x7f00000008c0)={0x2, r0}) 3.849144356s ago: executing program 0 (id=1151): syz_mount_image$udf(&(0x7f0000000080), &(0x7f0000000180)='./file1\x00', 0x4000, &(0x7f0000000e00)=ANY=[@ANYBLOB='lastblock=00000000000000000000,umask=00000000000000000000002,dmode=00000000000000000077777,novrs,shortad,shortad,undelete,iocharset=cp437,shortad,umask=00000000000000000000006,dmode=00000000000000000000011,fileset=00000000000000000011,uid=', @ANYRESDEC=0x0, @ANYBLOB="303030304e303030303030303030303030462ca0179058936d6561737572652c00"], 0x2, 0xc2d, &(0x7f00000001c0)="$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") sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000001480)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, 0x0, 0x0) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) syz_clone(0x0, 0x0, 0xfffffe11, 0x0, 0x0, 0x0) ioctl$TIOCSTI(0xffffffffffffffff, 0x5412, 0x0) clock_nanosleep(0x8, 0x2, &(0x7f0000000080)={0x77359400}, 0x0) 3.095328025s ago: executing program 2 (id=1152): syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000040)='./file2\x00', 0x10050, &(0x7f0000000800)={[{@delalloc}, {@nouid32}, {@jqfmt_vfsv0}, {@norecovery}, {@norecovery}, {@dioread_lock}]}, 0x3, 0x546, &(0x7f0000000180)="$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") prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xcadbd000) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000180)={'wlan1\x00'}) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sendmsg$key(0xffffffffffffffff, 0x0, 0x0) r3 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r3, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000400)={0x2, 0x13, 0x0, 0x8, 0x2}, 0x10}}, 0x10) 1.826133832s ago: executing program 0 (id=1153): bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000047b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000007b00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0x6, 0x4, 0x8, 0xa, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) close(0x3) bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x2, 0x4, 0x4, 0x1, 0x1100, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, 0x0, &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000940)='percpu_alloc_percpu\x00', r0}, 0x10) bpf$MAP_CREATE(0x100000000000000, &(0x7f0000000140)=@base={0xa, 0x16, 0xb3, 0x7f, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) 1.812215393s ago: executing program 2 (id=1154): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x2}]}, 0x24}}, 0x0) sendmsg$NL80211_CMD_CONNECT(r0, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000200)={0x0}}, 0x0) 1.683135825s ago: executing program 0 (id=1155): syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0xe, &(0x7f0000000440)={[{@noload}, {@resuid={'resuid', 0x3d, 0xee01}}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x68}}, {@lazytime}, {@block_validity}, {@quota}]}, 0x3, 0x431, &(0x7f0000000940)="$eJzs289rHFUcAPDvzCat/WViqT+aVo1WMfgjadJae/CiKHhQEPRQjzFJS+y2kSaCLUGjSD1Kwbt4FPwLPOlF1JPgVe9SKJJLq6eV2Z1Jdje7aZJustX9fGCS92be8t53Z97ue/N2AuhZw9mfJGJ/RPweEQO1bGOB4dq/W8uLU38vL04lUam89VdSLXdzeXGqKFq8bl+R6YtIP0viSIt65y9fOT9ZLs9cyvNjCxfeH5u/fOW52QuT52bOzVycOH365InxF05NPN+ROLO4bg59NHf08GvvXHtj6sy1d3/+Ninib4qjQ4bXO/hkpdLh6rrrQF066etiQ9iUUq2bRn+1/w9EKVZP3kC8+mlXGwdsq0qlUnmg/eGlCvA/lkS3WwB0R/FFn81/i22Hhh53hRsv1SZAWdy38q12pC/SvEx/0/y2k4Yj4szSP19lW2zPfQgAgAbfZ+OfZ1uN/9Kovy90b76GMhgR90XEwYg4FRGHIuL+iGrZByPioU3W37xIsnb8k17fUmAblI3/XszXthrHf8XoLwZLee5ANf7+5OxseeZ4/p6MRP/uLD++Th0/vPLbF+2O1Y//si2rvxgL5u243re78TXTkwuTdxJzvRufRAz1tYo/WVkJSCLicEQMbbGO2ae/Odru2O3jX0cH1pkqX0c8VTv/S9EUfyFZf31y7J4ozxwfK66KtX759eqb7eq/o/g7IDv/e1te/yvxDyb167Xzm6/j6h+ft53TbPX635W83bDvw8mFhUvjEbuS12uNrt8/0VRuYrV8Fv/Isdb9/2CsvhNHIiK7iB+OiEci4tG87Y9FxOMRcWyd+H96+Yn3th7/9srin97U+V9N7IrmPa0TpfM/ftdQ6eBm4s/O/8lqaiTfs5HPv420a2tXMwAAAPz3pBGxP5J0dCWdpqOjtd/wH4q9aXlufuGZs3MfXJyuPSMwGP1pcadroO5+6Hg+rS/yE035E/l94y9Le6r50am58nS3g4cet69N/8/8Wep264Bt53kt6F36P/Qu/R96l/4PvatF/9/TjXYAO6/V9//HXWgHsPOa+r9lP+gh5v/Qu/R/6F36P/Sk+T1x+4fkJSTWJCK9K5ohsU2Jbn8yAQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAdMa/AQAA//9QOObV") prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, &(0x7f0000000640)=0x0) sched_setscheduler(r0, 0x1, &(0x7f0000000080)=0x7) getpid() mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) statx(0xffffffffffffffff, 0x0, 0x6000, 0x4, 0x0) 375.298326ms ago: executing program 0 (id=1156): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0x3, &(0x7f0000000300)=@framed, &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f00000001c0)='kfree\x00', r0}, 0x10) r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r1, &(0x7f0000000080)={0x1f, 0xffff, 0x3}, 0x6) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000780)={0x5, 0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00'}, 0x10) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r3, 0x0, 0x0, 0x0) r4 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x101000) ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_INFO(r4, 0xc08c5335, &(0x7f00000003c0)={0x5, 0xa45c, 0x0, 'queue0\x00', 0xf}) bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYBLOB="0000000000000000b702000014800000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) prctl$PR_SET_IO_FLUSHER(0x39, 0x1) openat$sndseq(0xffffffffffffff9c, 0x0, 0x0) socket$nl_xfrm(0x10, 0x3, 0x6) setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x9003000000000000, 0x40, &(0x7f0000000b40)=@raw={'raw\x00', 0x2, 0x3, 0x2c8, 0x178, 0x178, 0x178, 0x178, 0x178, 0x230, 0x230, 0x230, 0x230, 0x230, 0x3, 0x0, {[{{@uncond, 0x0, 0x158, 0x178, 0x0, {}, [@common=@unspec=@string={{0xc0}, {0x0, 0x0, 'bm\x00', "d9d9e63590ab5471c46924e95540949f0cd7e2b0a94d71d9d944acb7f0a1297674a95b30cee19db4c1725572ba928385b1635c89b58ae9a0e1ea500b26f006da3fa8a134552f7980e92de5a784cd4f46e799e191835d7d5ea776f04bef524e22f0bb6ed4b00f44ceb936943e13fa1caa6b4b159c673db1efa9a08b1ddc74ce6c", 0x43, 0x3}}, @common=@inet=@socket3={{0x28}}]}, @unspec=@NOTRACK={0x20}}, {{@uncond, 0x0, 0x98, 0xb8, 0x0, {}, [@common=@inet=@set2={{0x28}}]}, @unspec=@TRACE={0x20}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28, '\x00', 0x4}}}}, 0x328) write(r1, &(0x7f0000000340)="41000000010001", 0x7) 0s ago: executing program 0 (id=1157): syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000001c0)='./file2\x00', 0x404, &(0x7f0000000200)={[{@nogrpid}, {@resuid}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x68}}, {@debug}, {@nombcache}, {@quota}]}, 0x3, 0x42f, &(0x7f0000000940)="$eJzs289rHFUcAPDvzCat/WViqT+aVo1WMfgjadJae/CiKHhQEPRQjzFJS+y2kSaCLUGjSD1Kwbt4FPwLPOlF1JPgVe9SKJJLq6eV2Z1Jdje7aZJustX9fGCS92be8t53Z97ue/N2AuhZw9mfJGJ/RPweEQO1bGOB4dq/W8uLU38vL04lUam89VdSLXdzeXGqKFq8bl+R6YtIP0viSIt65y9fOT9ZLs9cyvNjCxfeH5u/fOW52QuT52bOzVycOH365InxF05NPN+ROLO4bg59NHf08GvvXHtj6sy1d3/+Ninib4qjQ4bXO/hkpdLh6rrrQF066etiQ9iUUq2bRn+1/w9EKVZP3kC8+mlXGwdsq0qlUnmg/eGlCvA/lkS3WwB0R/FFn81/i22Hhh53hRsv1SZAWdy38q12pC/SvEx/0/y2k4Yj4szSP19lW2zPfQgAgAbfZ+OfZ1uN/9Kovy90b76GMhgR90XEwYg4FRGHIuL+iGrZByPioU3W37xIsnb8k17fUmAblI3/XszXthrHf8XoLwZLee5ANf7+5OxseeZ4/p6MRP/uLD++Th0/vPLbF+2O1Y//si2rvxgL5u243re78TXTkwuTdxJzvRufRAz1tYo/WVkJSCLicEQMbbGO2ae/Odru2O3jX0cH1pkqX0c8VTv/S9EUfyFZf31y7J4ozxwfK66KtX759eqb7eq/o/g7IDv/e1te/yvxDyb167Xzm6/j6h+ft53TbPX635W83bDvw8mFhUvjEbuS12uNrt8/0VRuYrV8Fv/Isdb9/2CsvhNHIiK7iB+OiEci4tG87Y9FxOMRcWyd+H96+Yn3th7/9srin97U+V9N7IrmPa0TpfM/ftdQ6eBm4s/O/8lqaiTfs5HPv420a2tXMwAAAPz3pBGxP5J0dCWdpqOjtd/wH4q9aXlufuGZs3MfXJyuPSMwGP1pcadroO5+6Hg+rS/yE035E/l94y9Le6r50am58nS3g4cet69N/8/8Wep264Bt53kt6F36P/Qu/R96l/4PvatF/9/TjXYAO6/V9//HXWgHsPOa+r9lP+gh5v/Qu/R/6F36P/Sk+T1x+4fkJSTWJCK9K5ohsU2Jbn8yAQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAdMa/AQAA//9QOObV") syz_mount_image$ext4(&(0x7f0000000240)='ext4\x00', &(0x7f0000000280)='./mnt\x00', 0x0, &(0x7f00000002c0), 0x0, 0x236, &(0x7f0000000300)="$eJzs3TFoM2UcBvDnLomf/b4gVRdBUEFEtFDqJrjURaEgpYgIKlREXJRWqC1urZOLg84qnVyKuFkdpUtxUQSnqh3qImhxsDjoELlcK9VGFFNz8t3vB5fcJe97//e4e95kOS5Aa00nmU/SSTKTpJekON/grnqZPt3cntpfTgaDx38shu3q7dpZv2tJtpI8mGSvLPJiN9nYffro54NH731jvXfPe7tPTU30IE8dHx0+dvLu4usfLjyw8fmX3y8WmU//D8d1+YoRn3WL5Jb/otj/RNFtegT8E0uvfvBVlftbk9w9zH8vZeqT9+baDXu93P/OX/V964cvbp/kWIHLNxj0qt/ArQHQOmWSfopyNkm9Xpazs/V/+K87V8uXVtdemXlhdX3l+aZnKuCy9JPDRz6+8tG1P+X/u06df+D6VeX/iaWdb6r1k07TowEmqcr/zLOb90X+oXXkH9pL/qG95B/aS/6hveQf2kv+ob3kH9pL/qG95B/a63z+AYB2GVxp+g5koClNzz8AAAAAAAAAAAAAAAAAAMBF21P7y2fLpGp++nZy/HCS7qj6neHziJMbh69XfyqqZr8r6m5jeebOMXcwpvcbvvv6pm+brf/ZHc3W31xJtl5LMtftXrz+itPr79+7+W++7z03ZoExPfRks/V/3Wm2/sJB8kk1/8yNmn/K3DZ8Hz3/9KvzN2b9l38ZcwcAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABMzG8BAAD//8n0bSk=") write$FUSE_NOTIFY_INVAL_ENTRY(0xffffffffffffffff, 0x0, 0x0) listen(0xffffffffffffffff, 0x0) setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, &(0x7f0000000000)={0x3, &(0x7f0000000040)=[{0x20, 0x0, 0x0, 0xfffff010}, {0x20, 0x0, 0x0, 0xfffff038}, {0x1}]}, 0x10) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) setsockopt$IP6T_SO_SET_REPLACE(0xffffffffffffffff, 0x29, 0x40, 0x0, 0x0) openat$dir(0xffffffffffffff9c, 0x0, 0x0, 0x0) landlock_add_rule$LANDLOCK_RULE_PATH_BENEATH(0xffffffffffffffff, 0x1, 0x0, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={0x0}, 0x18) lsetxattr$trusted_overlay_upper(&(0x7f0000000100)='./file1\x00', &(0x7f00000000c0), &(0x7f0000000040)=ANY=[], 0xfe37, 0x0) creat(&(0x7f0000000140)='./file2\x00', 0x1ad) unlink(&(0x7f0000000180)='./file1\x00') kernel console output (not intermixed with test programs): ][ T3807] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 358.922016][ T3807] device bridge_slave_1 left promiscuous mode [ 358.929024][ T3807] bridge0: port 2(bridge_slave_1) entered disabled state [ 358.938081][ T3807] device bridge_slave_0 left promiscuous mode [ 358.944849][ T3807] bridge0: port 1(bridge_slave_0) entered disabled state [ 358.976341][ T3807] device veth1_macvtap left promiscuous mode [ 358.982945][ T3807] device veth0_macvtap left promiscuous mode [ 358.989245][ T3807] device veth1_vlan left promiscuous mode [ 358.995223][ T3807] device veth0_vlan left promiscuous mode [ 359.564309][ T3661] Bluetooth: hci0: command tx timeout [ 359.701122][ T6991] EXT4-fs (loop1): unmounting filesystem. [ 359.876390][ T6162] EXT4-fs (loop3): unmounting filesystem. [ 359.928221][ T7330] fuse: Unknown parameter 'use00000000000000000000' [ 359.990814][ T7332] loop3: detected capacity change from 0 to 512 [ 360.045835][ T7332] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 360.133534][ T7332] EXT4-fs (loop3): 1 truncate cleaned up [ 360.170557][ T7332] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 360.304672][ T7340] loop2: detected capacity change from 0 to 512 [ 360.475352][ T7340] EXT4-fs error (device loop2): ext4_acquire_dquot:6800: comm syz.2.860: Failed to acquire dquot type 0 [ 360.605104][ T7344] netlink: 68 bytes leftover after parsing attributes in process `syz.3.857'. [ 360.751499][ T7340] EXT4-fs error (device loop2): ext4_acquire_dquot:6800: comm syz.2.860: Failed to acquire dquot type 0 [ 360.908881][ T6222] EXT4-fs (loop0): unmounting filesystem. [ 360.936159][ T7340] EXT4-fs error (device loop2): ext4_acquire_dquot:6800: comm syz.2.860: Failed to acquire dquot type 0 [ 361.001500][ T7340] EXT4-fs (loop2): 1 orphan inode deleted [ 361.020148][ T7340] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 361.057728][ T7340] ext4 filesystem being mounted at /36/file1 supports timestamps until 2038 (0x7fffffff) [ 361.654742][ T3661] Bluetooth: hci0: command tx timeout [ 362.472946][ T3807] team0 (unregistering): Port device team_slave_1 removed [ 362.599678][ T3807] team0 (unregistering): Port device team_slave_0 removed [ 362.716034][ T6419] EXT4-fs (loop2): unmounting filesystem. [ 362.723806][ T3807] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 362.893223][ T3807] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 363.017925][ T7364] loop2: detected capacity change from 0 to 512 [ 363.027373][ T7364] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 363.073797][ T7364] EXT4-fs (loop2): revision level too high, forcing read-only mode [ 363.082897][ T7364] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e800e118, mo2=0003] [ 363.091942][ T7364] System zones: 0-1, 15-15, 18-18, 34-34 [ 363.101295][ T7364] EXT4-fs (loop2): orphan cleanup on readonly fs [ 363.109196][ T7364] __quota_error: 13 callbacks suppressed [ 363.109214][ T7364] Quota error (device loop2): v2_read_header: Failed header read: expected=8 got=0 [ 363.124883][ T7364] EXT4-fs warning (device loop2): ext4_enable_quotas:7035: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix. [ 363.139774][ T7364] EXT4-fs (loop2): Cannot turn on quotas: error -22 [ 363.147580][ T7364] EXT4-fs error (device loop2): ext4_validate_block_bitmap:438: comm syz.2.865: bg 0: block 40: padding at end of block bitmap is not set [ 363.162547][ T7364] EXT4-fs error (device loop2) in ext4_mb_clear_bb:6172: Corrupt filesystem [ 363.180584][ T7364] EXT4-fs (loop2): 1 truncate cleaned up [ 363.188607][ T7364] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 363.510615][ T7370] loop1: detected capacity change from 0 to 512 [ 363.535084][ T6419] EXT4-fs (loop2): unmounting filesystem. [ 363.544051][ T7370] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 363.602563][ T7370] EXT4-fs (loop1): 1 truncate cleaned up [ 363.614050][ T7370] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 363.774236][ T3661] Bluetooth: hci0: command tx timeout [ 364.504113][ T3807] bond0 (unregistering): Released all slaves [ 364.562469][ T6991] EXT4-fs (loop1): unmounting filesystem. [ 364.624460][ T3693] usb 3-1: new high-speed USB device number 11 using dummy_hcd [ 364.635444][ T7251] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 364.637122][ T7377] fuse: Unknown parameter 'use00000000000000000000' [ 364.746863][ T7251] team0: Port device team_slave_0 added [ 364.801266][ T6162] EXT4-fs (loop3): unmounting filesystem. [ 364.867050][ T7251] team0: Port device team_slave_1 added [ 364.902646][ T7382] loop3: detected capacity change from 0 to 512 [ 364.984468][ T3693] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 365.012919][ T7251] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 365.024360][ T3693] usb 3-1: config 0 has no interfaces? [ 365.029909][ T3693] usb 3-1: New USB device found, idVendor=1908, idProduct=1315, bcdDevice= 0.00 [ 365.060280][ T7251] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 365.134305][ T3693] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 365.142526][ T7251] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 365.175555][ T3693] usb 3-1: config 0 descriptor?? [ 365.180409][ T7251] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 365.189606][ T7382] EXT4-fs (loop3): 1 truncate cleaned up [ 365.190314][ T7251] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 365.222844][ T7382] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 365.255647][ T7389] loop0: detected capacity change from 0 to 512 [ 365.536427][ T7251] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 365.737902][ T3693] usb 3-1: string descriptor 0 read error: -71 [ 365.904524][ T7389] Quota error (device loop0): find_tree_dqentry: Cycle in quota tree detected: block 1 index 0 [ 365.970541][ T7389] Quota error (device loop0): qtree_read_dquot: Can't read quota structure for id 0 [ 366.032475][ T3693] usb 3-1: USB disconnect, device number 11 [ 366.041664][ T7389] EXT4-fs error (device loop0): ext4_acquire_dquot:6800: comm syz.0.872: Failed to acquire dquot type 0 [ 366.055673][ T7389] Quota error (device loop0): find_tree_dqentry: Cycle in quota tree detected: block 1 index 0 [ 366.148379][ T7251] device hsr_slave_0 entered promiscuous mode [ 366.154621][ T7389] Quota error (device loop0): qtree_read_dquot: Can't read quota structure for id 0 [ 366.165845][ T7389] EXT4-fs error (device loop0): ext4_acquire_dquot:6800: comm syz.0.872: Failed to acquire dquot type 0 [ 366.180855][ T7251] device hsr_slave_1 entered promiscuous mode [ 366.205831][ T7389] Quota error (device loop0): find_tree_dqentry: Cycle in quota tree detected: block 1 index 0 [ 366.224013][ T7251] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 366.239135][ T7389] Quota error (device loop0): qtree_read_dquot: Can't read quota structure for id 0 [ 366.246004][ T7251] Cannot create hsr debugfs directory [ 366.254315][ T7389] EXT4-fs error (device loop0): ext4_acquire_dquot:6800: comm syz.0.872: Failed to acquire dquot type 0 [ 366.279376][ T7389] EXT4-fs (loop0): 1 orphan inode deleted [ 366.285763][ T7389] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 366.304675][ T7389] ext4 filesystem being mounted at /42/file1 supports timestamps until 2038 (0x7fffffff) [ 368.054056][ T7419] loop2: detected capacity change from 0 to 512 [ 368.095109][ T7419] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 368.133146][ T7419] EXT4-fs (loop2): revision level too high, forcing read-only mode [ 368.164263][ T7419] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e800e118, mo2=0003] [ 368.172504][ T7419] System zones: 0-1, 15-15, 18-18, 34-34 [ 368.227142][ T7423] loop1: detected capacity change from 0 to 512 [ 368.245172][ T7419] EXT4-fs (loop2): orphan cleanup on readonly fs [ 368.252066][ T7423] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 368.264801][ T7419] Quota error (device loop2): v2_read_header: Failed header read: expected=8 got=0 [ 368.294025][ T6162] EXT4-fs (loop3): unmounting filesystem. [ 368.306734][ T7419] EXT4-fs warning (device loop2): ext4_enable_quotas:7035: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix. [ 368.326577][ T7419] EXT4-fs (loop2): Cannot turn on quotas: error -22 [ 368.344363][ T7423] EXT4-fs (loop1): 1 truncate cleaned up [ 368.350595][ T7419] EXT4-fs error (device loop2): ext4_validate_block_bitmap:438: comm syz.2.876: bg 0: block 40: padding at end of block bitmap is not set [ 368.376098][ T7423] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 368.415886][ T7419] EXT4-fs error (device loop2) in ext4_mb_clear_bb:6172: Corrupt filesystem [ 368.545466][ T7419] EXT4-fs (loop2): 1 truncate cleaned up [ 368.572265][ T7428] fuse: Unknown parameter 'user_i00000000000000000000' [ 368.592872][ T7419] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 368.680634][ T6222] EXT4-fs (loop0): unmounting filesystem. [ 368.705971][ T7251] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 368.724915][ T7251] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 368.739416][ T7251] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 368.877247][ T7251] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 369.058863][ T6419] EXT4-fs (loop2): unmounting filesystem. [ 369.145403][ T6991] EXT4-fs (loop1): unmounting filesystem. [ 369.170317][ T7437] loop0: detected capacity change from 0 to 512 [ 369.237858][ T7437] ext4: Unknown parameter 'context' [ 369.276317][ T7441] loop3: detected capacity change from 0 to 512 [ 369.297524][ T3776] I/O error, dev loop0, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 369.308888][ T7441] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 369.374077][ T7251] 8021q: adding VLAN 0 to HW filter on device bond0 [ 369.405560][ T3754] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 369.420731][ T3754] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 369.433057][ T7251] 8021q: adding VLAN 0 to HW filter on device team0 [ 369.462646][ T7441] EXT4-fs (loop3): 1 truncate cleaned up [ 369.501147][ T7441] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 369.541445][ T3807] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 370.761554][ T7455] netlink: 68 bytes leftover after parsing attributes in process `syz.3.882'. [ 371.231858][ T3807] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 371.468507][ T3807] bridge0: port 1(bridge_slave_0) entered blocking state [ 371.475740][ T3807] bridge0: port 1(bridge_slave_0) entered forwarding state [ 371.701851][ T3807] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 371.748930][ T3807] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 371.757923][ T3807] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 371.766773][ T3807] bridge0: port 2(bridge_slave_1) entered blocking state [ 371.773997][ T3807] bridge0: port 2(bridge_slave_1) entered forwarding state [ 371.780069][ T6162] EXT4-fs (loop3): unmounting filesystem. [ 371.847828][ T3807] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 372.032816][ T3807] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 372.131054][ T7466] netlink: 8 bytes leftover after parsing attributes in process `syz.1.884'. [ 372.140196][ T7466] netlink: 16 bytes leftover after parsing attributes in process `syz.1.884'. [ 372.294713][ T3807] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 372.750864][ T3807] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 372.851741][ T3807] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 372.870506][ T7469] loop3: detected capacity change from 0 to 512 [ 372.910120][ T3807] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 372.922005][ T7469] EXT4-fs (loop3): 1 truncate cleaned up [ 372.925604][ T3807] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 372.941332][ T3807] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 372.960374][ T3807] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 372.965223][ T7469] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 372.979764][ T3807] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 373.012163][ T7251] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 373.031579][ T3807] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 373.060030][ T7474] loop0: detected capacity change from 0 to 512 [ 373.092712][ T7476] fuse: Unknown parameter 'user_i00000000000000000000' [ 373.207573][ T7474] Quota error (device loop0): find_tree_dqentry: Cycle in quota tree detected: block 1 index 0 [ 373.294432][ T7474] Quota error (device loop0): qtree_read_dquot: Can't read quota structure for id 0 [ 373.344314][ T7474] EXT4-fs error (device loop0): ext4_acquire_dquot:6800: comm syz.0.888: Failed to acquire dquot type 0 [ 373.396921][ T7474] Quota error (device loop0): find_tree_dqentry: Cycle in quota tree detected: block 1 index 0 [ 373.440036][ T7474] Quota error (device loop0): qtree_read_dquot: Can't read quota structure for id 0 [ 373.494461][ T7474] EXT4-fs error (device loop0): ext4_acquire_dquot:6800: comm syz.0.888: Failed to acquire dquot type 0 [ 373.557280][ T7489] loop1: detected capacity change from 0 to 512 [ 373.586923][ T7474] Quota error (device loop0): find_tree_dqentry: Cycle in quota tree detected: block 1 index 0 [ 373.670565][ T7489] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 373.700735][ T7474] Quota error (device loop0): qtree_read_dquot: Can't read quota structure for id 0 [ 373.755757][ T7474] EXT4-fs error (device loop0): ext4_acquire_dquot:6800: comm syz.0.888: Failed to acquire dquot type 0 [ 373.795181][ T7489] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 373.803362][ T7489] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e800e118, mo2=0003] [ 373.866163][ T7474] EXT4-fs (loop0): 1 orphan inode deleted [ 373.871967][ T7474] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 373.884794][ T7489] System zones: 0-1, 15-15, 18-18, 34-34 [ 373.911085][ T7474] ext4 filesystem being mounted at /45/file1 supports timestamps until 2038 (0x7fffffff) [ 373.985068][ T7489] EXT4-fs (loop1): orphan cleanup on readonly fs [ 373.991570][ T7489] Quota error (device loop1): v2_read_header: Failed header read: expected=8 got=0 [ 374.031475][ T7489] EXT4-fs warning (device loop1): ext4_enable_quotas:7035: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix. [ 374.094275][ T7489] EXT4-fs (loop1): Cannot turn on quotas: error -22 [ 374.111656][ T7489] EXT4-fs error (device loop1): ext4_validate_block_bitmap:438: comm syz.1.890: bg 0: block 40: padding at end of block bitmap is not set [ 374.167007][ T7489] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6172: Corrupt filesystem [ 374.175984][ T3754] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 374.183591][ T3754] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 374.214915][ T7489] EXT4-fs (loop1): 1 truncate cleaned up [ 374.223395][ T7251] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 374.236758][ T7489] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 374.248874][ T7502] loop2: detected capacity change from 0 to 512 [ 374.272122][ T7502] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 374.320594][ T7502] EXT4-fs (loop2): 1 truncate cleaned up [ 374.334308][ T7502] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 374.688208][ T6991] EXT4-fs (loop1): unmounting filesystem. [ 375.120478][ T7519] Bluetooth: MGMT ver 1.22 [ 375.687417][ T6419] EXT4-fs (loop2): unmounting filesystem. [ 375.991480][ T6222] EXT4-fs (loop0): unmounting filesystem. [ 376.009985][ T7526] loop1: detected capacity change from 0 to 1024 [ 376.011061][ T7524] loop2: detected capacity change from 0 to 512 [ 376.129074][ T7524] EXT4-fs (loop2): Test dummy encryption mode enabled [ 376.165607][ T7524] EXT4-fs error (device loop2): __ext4_fill_super:5399: inode #2: comm syz.2.894: casefold flag without casefold feature [ 376.247991][ T7524] EXT4-fs (loop2): get root inode failed [ 376.253656][ T7524] EXT4-fs (loop2): mount failed [ 376.319847][ T1288] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 376.512625][ T1288] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 377.136677][ T3734] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 377.156895][ T3734] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 377.190335][ T7251] device veth0_vlan entered promiscuous mode [ 377.199606][ T3734] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 377.218483][ T3734] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 377.264944][ T7251] device veth1_vlan entered promiscuous mode [ 377.324811][ T1288] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 377.412699][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 377.438085][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 377.465953][ T7251] device veth0_macvtap entered promiscuous mode [ 377.531596][ T7251] device veth1_macvtap entered promiscuous mode [ 377.564362][ T3660] Bluetooth: hci0: Opcode 0x0401 failed: -110 [ 377.571988][ T3660] Bluetooth: hci0: command 0x0401 tx timeout [ 377.625704][ T7251] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 377.636525][ T7251] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 377.646706][ T7251] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 377.675958][ T7251] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 377.925326][ T7251] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 378.132708][ T7251] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 378.272083][ T7251] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 378.303122][ T7251] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 378.335310][ T7251] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 378.369013][ T7251] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 378.401544][ T7251] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 378.462867][ T7551] loop0: detected capacity change from 0 to 512 [ 378.470721][ T7251] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 378.481449][ T7551] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 378.501562][ T7251] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 378.527275][ T1267] ieee802154 phy0 wpan0: encryption failed: -22 [ 378.527346][ T7251] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 378.533643][ T1267] ieee802154 phy1 wpan1: encryption failed: -22 [ 378.610753][ T7251] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 378.610769][ T7551] EXT4-fs (loop0): revision level too high, forcing read-only mode [ 378.628854][ T7551] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e800e118, mo2=0003] [ 378.637326][ T7551] System zones: 0-1, 15-15, 18-18, 34-34 [ 378.651043][ T7551] EXT4-fs (loop0): orphan cleanup on readonly fs [ 378.659564][ T7251] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 378.680041][ T7551] Quota error (device loop0): v2_read_header: Failed header read: expected=8 got=0 [ 378.707877][ T7251] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 378.718128][ T7551] EXT4-fs warning (device loop0): ext4_enable_quotas:7035: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix. [ 378.718168][ T7551] EXT4-fs (loop0): Cannot turn on quotas: error -22 [ 378.734703][ T7251] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 378.742322][ T6162] EXT4-fs (loop3): unmounting filesystem. [ 378.751080][ T7251] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 378.761583][ T7251] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 378.776078][ T7251] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 378.824215][ T7251] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 378.860957][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 378.878780][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 378.896142][ T7551] EXT4-fs error (device loop0): ext4_validate_block_bitmap:438: comm syz.0.902: bg 0: block 40: padding at end of block bitmap is not set [ 378.917074][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 378.935552][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 378.948634][ T7563] loop2: detected capacity change from 0 to 256 [ 378.957523][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 378.965835][ T7551] EXT4-fs error (device loop0) in ext4_mb_clear_bb:6172: Corrupt filesystem [ 378.989398][ T7563] exfat: Deprecated parameter 'namecase' [ 379.005935][ T7551] EXT4-fs (loop0): 1 truncate cleaned up [ 379.011651][ T7551] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 379.040547][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 379.068347][ T7563] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0xb89b369d, utbl_chksum : 0xe619d30d) [ 379.343499][ T7568] syz.2.904: attempt to access beyond end of device [ 379.343499][ T7568] loop2: rw=524288, sector=34359738488, nr_sectors = 8 limit=256 [ 379.551114][ T7568] syz.2.904: attempt to access beyond end of device [ 379.551114][ T7568] loop2: rw=0, sector=34359738488, nr_sectors = 8 limit=256 [ 379.743161][ T3734] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 379.776875][ T26] audit: type=1800 audit(1726738358.413:47): pid=7568 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.904" name="file1" dev="loop2" ino=1048731 res=0 errno=0 [ 379.817327][ T3734] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 379.893154][ T6222] EXT4-fs (loop0): unmounting filesystem. [ 379.909315][ T1288] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 380.017146][ T5233] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 380.030502][ T5233] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 380.048977][ T7580] loop0: detected capacity change from 0 to 512 [ 380.086813][ T5233] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 380.175464][ T7580] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 380.239935][ T7580] EXT4-fs (loop0): 1 truncate cleaned up [ 380.260117][ T7580] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 380.786050][ T7588] netlink: 68 bytes leftover after parsing attributes in process `syz.0.906'. [ 381.221311][ T7587] device syzkaller0 entered promiscuous mode [ 381.291794][ T7587] syzkaller0: create flow: hash 2665254075 index 1 [ 381.341166][ T6222] EXT4-fs (loop0): unmounting filesystem. [ 381.444560][ T7592] loop2: detected capacity change from 0 to 164 [ 381.597978][ T7592] syz.2.907: attempt to access beyond end of device [ 381.597978][ T7592] loop2: rw=524288, sector=263328, nr_sectors = 4 limit=164 [ 381.619256][ T7603] loop1: detected capacity change from 0 to 512 [ 381.692161][ T7603] EXT4-fs (loop1): 1 truncate cleaned up [ 381.707480][ T7603] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 381.749505][ T7592] syz.2.907: attempt to access beyond end of device [ 381.749505][ T7592] loop2: rw=0, sector=263328, nr_sectors = 4 limit=164 [ 381.824902][ T26] audit: type=1800 audit(1726738360.533:48): pid=7592 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.907" name="file0" dev="loop2" ino=1862 res=0 errno=0 [ 381.931313][ T7587] syzkaller0: delete flow: hash 2665254075 index 1 [ 382.774279][ T7616] Zero length message leads to an empty skb [ 383.023502][ T7619] loop3: detected capacity change from 0 to 512 [ 383.103735][ T7619] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 383.155011][ T7619] EXT4-fs (loop3): revision level too high, forcing read-only mode [ 383.164446][ T3660] Bluetooth: hci0: Opcode 0x0401 failed: -110 [ 383.182099][ T7619] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e800e118, mo2=0003] [ 383.239221][ T7619] System zones: 0-1, 15-15, 18-18, 34-34 [ 383.245464][ T3660] Bluetooth: hci0: command 0x0401 tx timeout [ 383.263023][ T7619] EXT4-fs (loop3): orphan cleanup on readonly fs [ 383.299821][ T7619] Quota error (device loop3): v2_read_header: Failed header read: expected=8 got=0 [ 383.318772][ T7619] EXT4-fs warning (device loop3): ext4_enable_quotas:7035: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix. [ 383.355969][ T7619] EXT4-fs (loop3): Cannot turn on quotas: error -22 [ 383.370608][ T7619] EXT4-fs error (device loop3): ext4_validate_block_bitmap:438: comm syz.3.915: bg 0: block 40: padding at end of block bitmap is not set [ 383.420634][ T7619] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6172: Corrupt filesystem [ 383.429935][ T7619] EXT4-fs (loop3): 1 truncate cleaned up [ 383.443465][ T7619] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 383.593814][ T6991] EXT4-fs (loop1): unmounting filesystem. [ 383.883867][ T7625] loop1: detected capacity change from 0 to 512 [ 383.953581][ T7625] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 384.081320][ T7625] EXT4-fs (loop1): 1 truncate cleaned up [ 384.089779][ T7625] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 384.216556][ T6162] EXT4-fs (loop3): unmounting filesystem. [ 384.921651][ T6991] EXT4-fs (loop1): unmounting filesystem. [ 385.072879][ T7634] loop4: detected capacity change from 0 to 256 [ 385.120222][ T7634] exfat: Deprecated parameter 'namecase' [ 385.161476][ T7636] loop1: detected capacity change from 0 to 512 [ 385.253475][ T7634] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0xb89b369d, utbl_chksum : 0xe619d30d) [ 385.314714][ T7636] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 385.339023][ T7636] ext4 filesystem being mounted at /24/file0 supports timestamps until 2038 (0x7fffffff) [ 385.583481][ T7634] syz.4.918: attempt to access beyond end of device [ 385.583481][ T7634] loop4: rw=524288, sector=34359738488, nr_sectors = 8 limit=256 [ 385.607665][ T6991] EXT4-fs error (device loop1): htree_dirblock_to_tree:1112: inode #2: block 3: comm syz-executor: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=2048 fake=0 [ 385.610825][ T7634] syz.4.918: attempt to access beyond end of device [ 385.610825][ T7634] loop4: rw=0, sector=34359738488, nr_sectors = 8 limit=256 [ 385.721025][ T6991] EXT4-fs (loop1): unmounting filesystem. [ 385.755962][ T26] audit: type=1800 audit(1726738364.453:49): pid=7634 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.918" name="file1" dev="loop4" ino=1048738 res=0 errno=0 [ 388.931677][ T7658] loop3: detected capacity change from 0 to 512 [ 389.654353][ T3661] Bluetooth: hci0: command 0x0401 tx timeout [ 389.660563][ T3660] Bluetooth: hci0: Opcode 0x0401 failed: -110 [ 389.788903][ T7658] EXT4-fs (loop3): 1 truncate cleaned up [ 389.804379][ T7658] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 389.900684][ T7668] loop0: detected capacity change from 0 to 512 [ 389.948240][ T7668] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 390.107769][ T5233] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 390.168327][ T7668] EXT4-fs (loop0): 1 truncate cleaned up [ 390.174037][ T7668] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 391.008422][ T5233] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 391.231580][ T6222] EXT4-fs (loop0): unmounting filesystem. [ 391.335222][ T5233] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 391.647486][ T5233] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 391.812086][ T7686] loop2: detected capacity change from 0 to 512 [ 391.859170][ T3660] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 391.875957][ T3660] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 391.884380][ T3660] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 391.895765][ T3660] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 391.906296][ T3655] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 391.914469][ T3655] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 393.880559][ T6162] EXT4-fs (loop3): unmounting filesystem. [ 393.910474][ T7684] chnl_net:caif_netlink_parms(): no params data found [ 393.964486][ T3661] Bluetooth: hci2: command tx timeout [ 394.188672][ T7715] loop3: detected capacity change from 0 to 16 [ 394.233048][ T7715] erofs: Unknown parameter 'user_pattr' [ 394.310103][ T3776] I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 394.493712][ T7722] loop4: detected capacity change from 0 to 512 [ 394.559420][ T7722] Quota error (device loop4): find_tree_dqentry: Cycle in quota tree detected: block 1 index 0 [ 394.658102][ T7727] xt_TPROXY: Can be used only with -p tcp or -p udp [ 394.705420][ T7727] loop3: detected capacity change from 0 to 512 [ 394.713903][ T7727] EXT4-fs: Ignoring removed mblk_io_submit option [ 394.720760][ T7727] EXT4-fs: Ignoring removed nomblk_io_submit option [ 394.752290][ T7727] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 394.761260][ T7727] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended [ 394.989502][ T7727] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 18 vs 41 free clusters [ 395.006557][ T7727] Quota error (device loop3): write_blk: dquota write failed [ 395.014345][ T7727] Quota error (device loop3): find_free_dqentry: Can't write quota data block 5 [ 395.025144][ T7727] Quota error (device loop3): write_blk: dquota write failed [ 395.034513][ T7727] Quota error (device loop3): qtree_write_dquot: Error -28 occurred while creating quota [ 395.045628][ T7727] EXT4-fs error (device loop3): ext4_acquire_dquot:6800: comm syz.3.936: Failed to acquire dquot type 1 [ 395.069837][ T7727] EXT4-fs (loop3): 1 truncate cleaned up [ 395.075756][ T7727] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 395.257918][ T7722] Quota error (device loop4): qtree_read_dquot: Can't read quota structure for id 0 [ 395.278991][ T7722] EXT4-fs error (device loop4): ext4_acquire_dquot:6800: comm syz.4.938: Failed to acquire dquot type 0 [ 395.332698][ T7727] EXT4-fs (loop3): unmounting filesystem. [ 395.333263][ T7722] Quota error (device loop4): find_tree_dqentry: Cycle in quota tree detected: block 1 index 0 [ 395.381807][ T7722] Quota error (device loop4): qtree_read_dquot: Can't read quota structure for id 0 [ 395.402070][ T7722] EXT4-fs error (device loop4): ext4_acquire_dquot:6800: comm syz.4.938: Failed to acquire dquot type 0 [ 395.470662][ T7722] Quota error (device loop4): find_tree_dqentry: Cycle in quota tree detected: block 1 index 0 [ 395.504286][ T7722] Quota error (device loop4): qtree_read_dquot: Can't read quota structure for id 0 [ 395.513813][ T7722] EXT4-fs error (device loop4): ext4_acquire_dquot:6800: comm syz.4.938: Failed to acquire dquot type 0 [ 395.591991][ T7684] bridge0: port 1(bridge_slave_0) entered blocking state [ 395.611172][ T7684] bridge0: port 1(bridge_slave_0) entered disabled state [ 395.624873][ T7722] EXT4-fs (loop4): 1 orphan inode deleted [ 395.630704][ T7722] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 395.632120][ T7684] device bridge_slave_0 entered promiscuous mode [ 395.694503][ T7722] ext4 filesystem being mounted at /9/file1 supports timestamps until 2038 (0x7fffffff) [ 395.718538][ T7684] bridge0: port 2(bridge_slave_1) entered blocking state [ 395.739919][ T7684] bridge0: port 2(bridge_slave_1) entered disabled state [ 395.781357][ T7684] device bridge_slave_1 entered promiscuous mode [ 396.128957][ T3655] Bluetooth: hci0: command 0x0401 tx timeout [ 396.135006][ T3660] Bluetooth: hci2: command tx timeout [ 396.135290][ T3661] Bluetooth: hci0: Opcode 0x0401 failed: -110 [ 397.295395][ T7684] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 397.386398][ T7684] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 397.429459][ T5233] device hsr_slave_0 left promiscuous mode [ 397.455880][ T5233] device hsr_slave_1 left promiscuous mode [ 397.466461][ T7744] loop3: detected capacity change from 0 to 512 [ 397.473014][ T5233] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 397.478403][ T7745] loop2: detected capacity change from 0 to 512 [ 397.491320][ T5233] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 397.509788][ T5233] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 397.540767][ T7745] EXT4-fs error (device loop2): ext4_map_blocks:634: inode #2: block 3: comm syz.2.942: lblock 0 mapped to illegal pblock 3 (length 1) [ 397.544571][ T5233] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 397.575753][ T7744] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 397.586709][ T7745] EXT4-fs (loop2): Remounting filesystem read-only [ 397.596727][ T7745] EXT4-fs warning (device loop2): dx_probe:823: inode #2: lblock 0: comm syz.2.942: error -117 reading directory block [ 397.622385][ T7745] EXT4-fs (loop2): Cannot turn on journaled quota: type 1: error -117 [ 397.631686][ T5233] device bridge_slave_1 left promiscuous mode [ 397.632752][ T7745] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 397.665827][ T7251] EXT4-fs (loop4): unmounting filesystem. [ 397.676024][ T5233] bridge0: port 2(bridge_slave_1) entered disabled state [ 397.685943][ T6419] EXT4-fs (loop2): unmounting filesystem. [ 397.692004][ T7744] EXT4-fs (loop3): 1 truncate cleaned up [ 397.724197][ T5233] device bridge_slave_0 left promiscuous mode [ 397.730499][ T5233] bridge0: port 1(bridge_slave_0) entered disabled state [ 397.739366][ T7744] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 397.921857][ T7753] loop2: detected capacity change from 0 to 512 [ 397.938904][ T5233] device veth1_macvtap left promiscuous mode [ 397.988498][ T5233] device veth0_macvtap left promiscuous mode [ 397.997984][ T7753] EXT4-fs (loop2): 1 truncate cleaned up [ 398.114480][ T7753] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 398.138530][ T5233] device veth1_vlan left promiscuous mode [ 398.347551][ T3655] Bluetooth: hci2: command tx timeout [ 398.412614][ T5233] device veth0_vlan left promiscuous mode [ 398.532366][ T6162] EXT4-fs (loop3): unmounting filesystem. [ 400.364409][ T3655] Bluetooth: hci2: command tx timeout [ 401.839434][ T6419] EXT4-fs (loop2): unmounting filesystem. [ 401.997964][ T7797] loop2: detected capacity change from 0 to 512 [ 402.152176][ T7799] loop4: detected capacity change from 0 to 2048 [ 402.303875][ T7797] Quota error (device loop2): find_tree_dqentry: Cycle in quota tree detected: block 1 index 0 [ 402.322600][ T7799] loop4: detected capacity change from 0 to 256 [ 402.339490][ T7797] Quota error (device loop2): qtree_read_dquot: Can't read quota structure for id 0 [ 402.423376][ T7799] exFAT-fs (loop4): failed to load upcase table (idx : 0x00017f3e, chksum : 0x3d831678, utbl_chksum : 0xe619d30d) [ 402.444279][ T7797] EXT4-fs error (device loop2): ext4_acquire_dquot:6800: comm syz.2.953: Failed to acquire dquot type 0 [ 402.502790][ T7797] Quota error (device loop2): find_tree_dqentry: Cycle in quota tree detected: block 1 index 0 [ 402.534346][ T7797] Quota error (device loop2): qtree_read_dquot: Can't read quota structure for id 0 [ 402.545041][ T7797] EXT4-fs error (device loop2): ext4_acquire_dquot:6800: comm syz.2.953: Failed to acquire dquot type 0 [ 402.599497][ T7797] Quota error (device loop2): find_tree_dqentry: Cycle in quota tree detected: block 1 index 0 [ 402.611180][ T7797] Quota error (device loop2): qtree_read_dquot: Can't read quota structure for id 0 [ 402.621111][ T7797] EXT4-fs error (device loop2): ext4_acquire_dquot:6800: comm syz.2.953: Failed to acquire dquot type 0 [ 402.662513][ T7797] EXT4-fs (loop2): 1 orphan inode deleted [ 402.668868][ T7797] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 402.685523][ T7797] ext4 filesystem being mounted at /57/file1 supports timestamps until 2038 (0x7fffffff) [ 403.052641][ T7807] loop0: detected capacity change from 0 to 1764 [ 403.698902][ T7809] loop4: detected capacity change from 0 to 512 [ 403.764323][ T7809] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 403.835095][ T7809] EXT4-fs (loop4): 1 truncate cleaned up [ 403.840819][ T7809] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 404.140063][ T5233] team0 (unregistering): Port device team_slave_1 removed [ 404.148816][ T3655] Bluetooth: hci0: Opcode 0x0401 failed: -110 [ 404.204745][ T3661] Bluetooth: hci0: command 0x0401 tx timeout [ 404.346911][ T5233] team0 (unregistering): Port device team_slave_0 removed [ 404.674639][ T5233] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 404.714549][ T6419] EXT4-fs (loop2): unmounting filesystem. [ 404.755730][ T7251] EXT4-fs (loop4): unmounting filesystem. [ 404.919127][ T5233] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 405.106385][ T7818] loop4: detected capacity change from 0 to 2048 [ 405.144744][ T7818] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 406.257149][ T7838] loop4: detected capacity change from 0 to 512 [ 406.348338][ T7838] EXT4-fs (loop4): 1 truncate cleaned up [ 406.368163][ T7838] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 407.012188][ T3655] Bluetooth: hci0: Opcode 0x0401 failed: -110 [ 407.153234][ T3661] Bluetooth: hci0: command 0x0401 tx timeout [ 407.412682][ T7850] loop3: detected capacity change from 0 to 1024 [ 407.469841][ T7850] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 407.489832][ T7251] EXT4-fs (loop4): unmounting filesystem. [ 407.503337][ T7850] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 407.649726][ T26] audit: type=1804 audit(1726738386.353:50): pid=7850 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.966" name="/newroot/75/file0/bus" dev="loop3" ino=18 res=1 errno=0 [ 407.661116][ T7854] loop4: detected capacity change from 0 to 512 [ 407.710893][ T26] audit: type=1804 audit(1726738386.373:51): pid=7850 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.3.966" name="/newroot/75/file0/bus" dev="loop3" ino=18 res=1 errno=0 [ 407.713304][ T7854] Quota error (device loop4): find_tree_dqentry: Cycle in quota tree detected: block 1 index 0 [ 407.738451][ T7855] loop2: detected capacity change from 0 to 2048 [ 407.753365][ T7854] Quota error (device loop4): qtree_read_dquot: Can't read quota structure for id 0 [ 407.764050][ T7854] EXT4-fs error (device loop4): ext4_acquire_dquot:6800: comm syz.4.967: Failed to acquire dquot type 0 [ 407.781387][ T7854] Quota error (device loop4): find_tree_dqentry: Cycle in quota tree detected: block 1 index 0 [ 407.792786][ T7854] Quota error (device loop4): qtree_read_dquot: Can't read quota structure for id 0 [ 407.832820][ T7854] EXT4-fs error (device loop4): ext4_acquire_dquot:6800: comm syz.4.967: Failed to acquire dquot type 0 [ 407.877447][ T7854] Quota error (device loop4): find_tree_dqentry: Cycle in quota tree detected: block 1 index 0 [ 407.897232][ T7854] Quota error (device loop4): qtree_read_dquot: Can't read quota structure for id 0 [ 407.897574][ T7855] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 407.908754][ T7854] EXT4-fs error (device loop4): ext4_acquire_dquot:6800: comm syz.4.967: Failed to acquire dquot type 0 [ 407.951183][ T7854] EXT4-fs (loop4): 1 orphan inode deleted [ 407.962774][ T7854] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 407.969357][ T7860] loop0: detected capacity change from 0 to 512 [ 407.990892][ T7854] ext4 filesystem being mounted at /17/file1 supports timestamps until 2038 (0x7fffffff) [ 408.021806][ T7860] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 408.112331][ T7860] EXT4-fs (loop0): 1 truncate cleaned up [ 408.172381][ T7860] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 408.526164][ T6222] EXT4-fs (loop0): unmounting filesystem. [ 408.612061][ T6162] EXT4-fs (loop3): unmounting filesystem. [ 408.801665][ T7868] loop3: detected capacity change from 0 to 512 [ 408.839058][ T7868] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 408.888345][ T7868] EXT4-fs (loop3): 1 truncate cleaned up [ 408.894068][ T7868] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 409.055757][ T5233] bond0 (unregistering): Released all slaves [ 409.331985][ T7251] EXT4-fs (loop4): unmounting filesystem. [ 409.440824][ T7878] loop4: detected capacity change from 0 to 128 [ 409.519879][ T7684] team0: Port device team_slave_0 added [ 409.556775][ T7684] team0: Port device team_slave_1 added [ 409.671946][ T7879] netlink: 68 bytes leftover after parsing attributes in process `syz.3.971'. [ 409.691281][ T7684] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 409.722148][ T7684] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 409.897526][ T7684] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 410.168717][ T7684] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 410.202347][ T7684] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 410.416462][ T7684] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 410.736007][ T7684] device hsr_slave_0 entered promiscuous mode [ 410.771935][ T7684] device hsr_slave_1 entered promiscuous mode [ 411.192278][ T5233] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 411.410956][ T5233] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 411.441416][ T7902] loop2: detected capacity change from 0 to 512 [ 411.513947][ T7902] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 411.605487][ T7902] EXT4-fs (loop2): 1 truncate cleaned up [ 411.611209][ T7902] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 411.636880][ T5233] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 412.089237][ T6419] EXT4-fs (loop2): unmounting filesystem. [ 412.220073][ T6162] EXT4-fs (loop3): unmounting filesystem. [ 412.329517][ T3661] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 412.339425][ T3661] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 412.348320][ T3661] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 412.363040][ T3661] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 412.371268][ T3661] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 412.378822][ T3661] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 412.443675][ T7914] loop0: detected capacity change from 0 to 512 [ 412.644567][ T7918] loop2: detected capacity change from 0 to 1764 [ 412.663306][ T5233] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 412.836003][ T7914] Quota error (device loop0): find_tree_dqentry: Cycle in quota tree detected: block 1 index 0 [ 413.002156][ T7914] Quota error (device loop0): qtree_read_dquot: Can't read quota structure for id 0 [ 413.173737][ T7914] EXT4-fs error (device loop0): ext4_acquire_dquot:6800: comm syz.0.982: Failed to acquire dquot type 0 [ 413.301197][ T7914] Quota error (device loop0): find_tree_dqentry: Cycle in quota tree detected: block 1 index 0 [ 413.366094][ T7914] Quota error (device loop0): qtree_read_dquot: Can't read quota structure for id 0 [ 413.377231][ T7914] EXT4-fs error (device loop0): ext4_acquire_dquot:6800: comm syz.0.982: Failed to acquire dquot type 0 [ 413.391662][ T7914] Quota error (device loop0): find_tree_dqentry: Cycle in quota tree detected: block 1 index 0 [ 413.412130][ T7914] Quota error (device loop0): qtree_read_dquot: Can't read quota structure for id 0 [ 413.422091][ T7914] EXT4-fs error (device loop0): ext4_acquire_dquot:6800: comm syz.0.982: Failed to acquire dquot type 0 [ 413.435327][ T7914] EXT4-fs (loop0): 1 orphan inode deleted [ 413.441116][ T7914] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 413.443015][ T7921] loop2: detected capacity change from 0 to 2048 [ 413.450845][ T7914] ext4 filesystem being mounted at /69/file1 supports timestamps until 2038 (0x7fffffff) [ 413.655796][ T3776] I/O error, dev loop2, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 414.444638][ T48] Bluetooth: hci0: command tx timeout [ 414.459479][ T7684] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 414.478269][ T7684] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 414.489451][ T7684] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 414.501492][ T7684] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 414.698025][ T7908] chnl_net:caif_netlink_parms(): no params data found [ 414.777299][ T7684] 8021q: adding VLAN 0 to HW filter on device bond0 [ 414.882312][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 414.900918][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 415.098019][ T7684] 8021q: adding VLAN 0 to HW filter on device team0 [ 415.109796][ T7945] loop2: detected capacity change from 0 to 256 [ 415.126012][ T7945] exfat: Deprecated parameter 'namecase' [ 415.138316][ T6222] EXT4-fs (loop0): unmounting filesystem. [ 415.219484][ T7945] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0xb89b369d, utbl_chksum : 0xe619d30d) [ 415.391884][ T7951] loop3: detected capacity change from 0 to 256 [ 415.439489][ T4232] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 415.471222][ T7945] syz.2.987: attempt to access beyond end of device [ 415.471222][ T7945] loop2: rw=524288, sector=34359738488, nr_sectors = 8 limit=256 [ 415.474584][ T7954] loop0: detected capacity change from 0 to 512 [ 415.494052][ T7954] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 415.522227][ T4232] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 415.524702][ T7945] syz.2.987: attempt to access beyond end of device [ 415.524702][ T7945] loop2: rw=0, sector=34359738488, nr_sectors = 8 limit=256 [ 415.544904][ T26] audit: type=1800 audit(1726738394.253:52): pid=7945 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.987" name="file1" dev="loop2" ino=1048745 res=0 errno=0 [ 415.576123][ T7951] FAT-fs (loop3): error, fat_get_cluster: invalid cluster chain (i_pos 196) [ 415.578759][ T7954] EXT4-fs (loop0): 1 truncate cleaned up [ 415.591275][ T4232] bridge0: port 1(bridge_slave_0) entered blocking state [ 415.594367][ T7954] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 415.598428][ T4232] bridge0: port 1(bridge_slave_0) entered forwarding state [ 415.616314][ T4232] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 415.626749][ T4232] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 415.634546][ T7951] FAT-fs (loop3): error, fat_get_cluster: invalid cluster chain (i_pos 196) [ 415.635488][ T4232] bridge0: port 2(bridge_slave_1) entered blocking state [ 415.643728][ T7951] FAT-fs (loop3): error, fat_get_cluster: invalid cluster chain (i_pos 196) [ 415.650514][ T4232] bridge0: port 2(bridge_slave_1) entered forwarding state [ 415.651548][ T4232] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 415.708341][ T7951] FAT-fs (loop3): error, fat_get_cluster: invalid cluster chain (i_pos 196) [ 415.740111][ T7951] FAT-fs (loop3): error, fat_get_cluster: invalid cluster chain (i_pos 196) [ 415.975145][ T7951] FAT-fs (loop3): error, fat_get_cluster: invalid cluster chain (i_pos 196) [ 416.078683][ T7908] bridge0: port 1(bridge_slave_0) entered blocking state [ 416.101283][ T7951] FAT-fs (loop3): error, fat_get_cluster: invalid cluster chain (i_pos 0) [ 416.155717][ T7951] FAT-fs (loop3): error, fat_get_cluster: invalid cluster chain (i_pos 0) [ 416.165854][ T7908] bridge0: port 1(bridge_slave_0) entered disabled state [ 416.262406][ T7908] device bridge_slave_0 entered promiscuous mode [ 416.266861][ T7951] FAT-fs (loop3): error, fat_get_cluster: invalid cluster chain (i_pos 0) [ 416.277751][ T7951] FAT-fs (loop3): error, fat_get_cluster: invalid cluster chain (i_pos 0) [ 416.287343][ T26] audit: type=1800 audit(1726738394.993:53): pid=7951 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.989" name="file1" dev="loop3" ino=1048746 res=0 errno=0 [ 416.326539][ T7964] loop2: detected capacity change from 0 to 512 [ 416.347057][ T7964] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 416.349879][ T3807] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 416.420386][ T3807] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 416.422574][ T7964] EXT4-fs (loop2): 1 truncate cleaned up [ 416.445894][ T7964] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 416.476183][ T7951] FAT-fs (loop3): error, fat_free_clusters: deleting FAT entry beyond EOF [ 416.524372][ T48] Bluetooth: hci0: command tx timeout [ 416.540805][ T7908] bridge0: port 2(bridge_slave_1) entered blocking state [ 416.580966][ T6222] EXT4-fs (loop0): unmounting filesystem. [ 416.640392][ T7908] bridge0: port 2(bridge_slave_1) entered disabled state [ 416.698424][ T7908] device bridge_slave_1 entered promiscuous mode [ 416.734612][ T1288] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 416.777409][ T1288] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 416.898605][ T7970] netlink: 68 bytes leftover after parsing attributes in process `syz.2.990'. [ 417.253700][ T1288] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 417.510091][ T3754] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 417.525298][ T3754] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 417.534693][ T3754] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 417.543294][ T3754] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 417.552699][ T3754] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 417.561585][ T3754] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 417.591651][ T7684] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 417.627433][ T6419] EXT4-fs (loop2): unmounting filesystem. [ 417.761420][ T7908] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 417.764397][ T3693] usb 4-1: new high-speed USB device number 21 using dummy_hcd [ 417.858345][ T7908] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 418.025033][ T3693] usb 4-1: Using ep0 maxpacket: 8 [ 418.154349][ T3693] usb 4-1: config 0 has an invalid interface number: 175 but max is 0 [ 418.168097][ T3693] usb 4-1: config 0 has no interface number 0 [ 418.203105][ T7908] team0: Port device team_slave_0 added [ 418.218929][ T7908] team0: Port device team_slave_1 added [ 418.337616][ T3693] usb 4-1: New USB device found, idVendor=083a, idProduct=7511, bcdDevice=b6.2d [ 418.350021][ T3693] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 418.359479][ T3693] usb 4-1: Product: syz [ 418.363682][ T3693] usb 4-1: Manufacturer: syz [ 418.369100][ T3693] usb 4-1: SerialNumber: syz [ 418.383847][ T3693] usb 4-1: config 0 descriptor?? [ 418.456445][ T7908] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 418.477522][ T7908] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 418.542575][ T7908] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 418.561859][ T7908] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 418.570363][ T7908] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 418.604221][ T48] Bluetooth: hci0: command tx timeout [ 418.811303][ T7908] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 418.896618][ T5233] device hsr_slave_0 left promiscuous mode [ 418.910450][ T5233] device hsr_slave_1 left promiscuous mode [ 418.937791][ T5233] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 418.954528][ T5233] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 419.013994][ T5233] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 419.034199][ T5233] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 419.040162][ T7993] loop0: detected capacity change from 0 to 512 [ 419.049757][ T5233] device bridge_slave_1 left promiscuous mode [ 419.064391][ T5233] bridge0: port 2(bridge_slave_1) entered disabled state [ 419.077608][ T5233] device bridge_slave_0 left promiscuous mode [ 419.104956][ T5233] bridge0: port 1(bridge_slave_0) entered disabled state [ 419.136405][ T7993] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 419.160069][ T7993] ext4 filesystem being mounted at /72/file0 supports timestamps until 2038 (0x7fffffff) [ 419.170691][ T5233] device veth1_macvtap left promiscuous mode [ 419.184223][ T5233] device veth0_macvtap left promiscuous mode [ 419.190547][ T5233] device veth1_vlan left promiscuous mode [ 419.196518][ T5233] device veth0_vlan left promiscuous mode [ 419.653111][ T7998] EXT4-fs error (device loop0): ext4_map_blocks:634: inode #2: block 18: comm syz.0.996: lblock 23 mapped to illegal pblock 18 (length 1) [ 419.738861][ T7999] EXT4-fs error (device loop0): ext4_map_blocks:634: inode #2: block 18: comm syz.0.996: lblock 23 mapped to illegal pblock 18 (length 1) [ 419.766622][ T7998] xt_TCPMSS: Only works on TCP SYN packets [ 419.787546][ T7998] EXT4-fs error (device loop0): ext4_readdir:260: inode #2: block 12: comm syz.0.996: path /72/file0: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=5066064, rec_len=1, size=2048 fake=0 [ 419.819594][ T7998] EXT4-fs error (device loop0): ext4_readdir:260: inode #2: block 13: comm syz.0.996: path /72/file0: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=3653246737, rec_len=1, size=2048 fake=0 [ 419.855385][ T7998] EXT4-fs error (device loop0): ext4_readdir:260: inode #2: block 14: comm syz.0.996: path /72/file0: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=3, rec_len=0, size=2048 fake=0 [ 419.881294][ T7998] EXT4-fs error (device loop0): ext4_readdir:260: inode #2: block 15: comm syz.0.996: path /72/file0: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=5, rec_len=0, size=2048 fake=0 [ 419.906459][ T7998] EXT4-fs error (device loop0): ext4_readdir:260: inode #2: block 16: comm syz.0.996: path /72/file0: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=3653245223, rec_len=1, size=2048 fake=0 [ 419.931263][ T7998] EXT4-fs error (device loop0): ext4_readdir:260: inode #2: block 17: comm syz.0.996: path /72/file0: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=3, rec_len=0, size=2048 fake=0 [ 420.319304][ T6222] EXT4-fs (loop0): unmounting filesystem. [ 420.519423][ T8003] loop0: detected capacity change from 0 to 256 [ 420.582243][ T8003] exfat: Deprecated parameter 'namecase' [ 420.646700][ T8003] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0xb89b369d, utbl_chksum : 0xe619d30d) [ 420.684501][ T48] Bluetooth: hci0: command tx timeout [ 420.860367][ T8003] syz.0.998: attempt to access beyond end of device [ 420.860367][ T8003] loop0: rw=524288, sector=34359738488, nr_sectors = 8 limit=256 [ 420.965151][ T8003] syz.0.998: attempt to access beyond end of device [ 420.965151][ T8003] loop0: rw=0, sector=34359738488, nr_sectors = 8 limit=256 [ 421.089893][ T26] audit: type=1800 audit(1726738399.783:54): pid=8003 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.998" name="file1" dev="loop0" ino=1048750 res=0 errno=0 [ 421.276955][ T8009] loop0: detected capacity change from 0 to 1024 [ 421.449949][ T8011] loop2: detected capacity change from 0 to 512 [ 421.477942][ T8011] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 421.557025][ T8011] EXT4-fs (loop2): 1 truncate cleaned up [ 421.563789][ T8011] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 421.588622][ T3693] usb 4-1: USB disconnect, device number 21 [ 422.081351][ T6419] EXT4-fs (loop2): unmounting filesystem. [ 422.438764][ T8017] loop2: detected capacity change from 0 to 256 [ 422.526237][ T8017] FAT-fs (loop2): error, fat_get_cluster: invalid cluster chain (i_pos 196) [ 422.550093][ T1931] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 422.559604][ T1931] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 422.567872][ T1931] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 422.575723][ T1931] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 422.583285][ T1931] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 422.591292][ T1931] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 422.599188][ T1931] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 422.607580][ T1931] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 422.617008][ T8017] FAT-fs (loop2): error, fat_get_cluster: invalid cluster chain (i_pos 196) [ 422.626696][ T1931] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 422.741470][ T8017] FAT-fs (loop2): error, fat_get_cluster: invalid cluster chain (i_pos 196) [ 422.751732][ T8017] FAT-fs (loop2): error, fat_get_cluster: invalid cluster chain (i_pos 196) [ 422.772105][ T8017] FAT-fs (loop2): error, fat_get_cluster: invalid cluster chain (i_pos 196) [ 422.801821][ T8017] FAT-fs (loop2): error, fat_get_cluster: invalid cluster chain (i_pos 196) [ 422.819210][ T1931] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 422.826775][ T1931] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 422.833504][ T8017] FAT-fs (loop2): error, fat_get_cluster: invalid cluster chain (i_pos 196) [ 422.839485][ T1931] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 422.852334][ T1931] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 422.860144][ T8017] FAT-fs (loop2): error, fat_get_cluster: invalid cluster chain (i_pos 196) [ 422.869444][ T1931] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 422.875733][ T8017] FAT-fs (loop2): error, fat_get_cluster: invalid cluster chain (i_pos 196) [ 422.877393][ T1931] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 422.895074][ T1931] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 422.903065][ T1931] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 422.913874][ T1931] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 423.017085][ T1931] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 423.060125][ T1931] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 423.094468][ T8017] FAT-fs (loop2): error, fat_get_cluster: invalid cluster chain (i_pos 0) [ 423.147967][ T1931] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 423.194035][ T26] audit: type=1800 audit(1726738401.883:55): pid=8017 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.1001" name="file1" dev="loop2" ino=1048751 res=0 errno=0 [ 423.237688][ T1931] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 423.324718][ T1931] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 423.601780][ T1931] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 423.625075][ T1931] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 423.632526][ T1931] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 423.641274][ T1931] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 423.648768][ T1931] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 423.656230][ T1931] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 423.663645][ T1931] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 423.671106][ T1931] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 423.679279][ T1931] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 423.679893][ T8027] loop3: detected capacity change from 0 to 1764 [ 423.686763][ T1931] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 423.686790][ T1931] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 423.686814][ T1931] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 423.686838][ T1931] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 423.686861][ T1931] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 423.686885][ T1931] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 423.763824][ T1931] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 423.771387][ T1931] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 423.779023][ T1931] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 423.786553][ T1931] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 423.794048][ T1931] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 423.807889][ T1931] hid-generic 0000:0000:0000.0001: hidraw0: HID v0.00 Device [syz0] on syz0 [ 423.840036][ T8016] FAT-fs (loop2): error, fat_free_clusters: deleting FAT entry beyond EOF [ 423.959236][ T5233] team0 (unregistering): Port device team_slave_1 removed [ 424.083842][ T5233] team0 (unregistering): Port device team_slave_0 removed [ 424.160614][ T5233] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 424.252779][ T5233] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 425.805632][ T8036] loop0: detected capacity change from 0 to 256 [ 425.849805][ T8036] exfat: Deprecated parameter 'namecase' [ 425.896883][ T8040] loop2: detected capacity change from 0 to 2048 [ 425.971126][ T8036] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0xb89b369d, utbl_chksum : 0xe619d30d) [ 425.996040][ T8040] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 426.093306][ T8036] syz.0.1008: attempt to access beyond end of device [ 426.093306][ T8036] loop0: rw=524288, sector=34359738488, nr_sectors = 8 limit=256 [ 426.175328][ T8042] loop3: detected capacity change from 0 to 1024 [ 426.179224][ T8036] syz.0.1008: attempt to access beyond end of device [ 426.179224][ T8036] loop0: rw=0, sector=34359738488, nr_sectors = 8 limit=256 [ 426.238313][ T26] audit: type=1800 audit(1726738404.933:56): pid=8036 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.1008" name="file1" dev="loop0" ino=1048755 res=0 errno=0 [ 426.377819][ T8045] loop0: detected capacity change from 0 to 512 [ 426.392485][ T8045] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 426.516127][ T8045] EXT4-fs (loop0): 1 truncate cleaned up [ 426.521989][ T8045] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 427.724654][ T8051] netlink: 68 bytes leftover after parsing attributes in process `syz.0.1012'. [ 428.279439][ T6222] EXT4-fs (loop0): unmounting filesystem. [ 428.410269][ T8057] loop0: detected capacity change from 0 to 256 [ 428.482770][ T8057] FAT-fs (loop0): error, fat_get_cluster: invalid cluster chain (i_pos 196) [ 428.491922][ T8057] FAT-fs (loop0): error, fat_get_cluster: invalid cluster chain (i_pos 196) [ 428.507639][ T8057] FAT-fs (loop0): error, fat_get_cluster: invalid cluster chain (i_pos 196) [ 428.519892][ T8057] FAT-fs (loop0): error, fat_get_cluster: invalid cluster chain (i_pos 196) [ 428.529184][ T8057] FAT-fs (loop0): error, fat_get_cluster: invalid cluster chain (i_pos 196) [ 428.544047][ T8057] FAT-fs (loop0): error, fat_get_cluster: invalid cluster chain (i_pos 196) [ 428.558685][ T8057] FAT-fs (loop0): error, fat_get_cluster: invalid cluster chain (i_pos 196) [ 428.675068][ T8057] FAT-fs (loop0): error, fat_get_cluster: invalid cluster chain (i_pos 196) [ 428.692370][ T8057] FAT-fs (loop0): error, fat_get_cluster: invalid cluster chain (i_pos 196) [ 428.735381][ T8057] FAT-fs (loop0): error, fat_get_cluster: invalid cluster chain (i_pos 196) [ 428.757516][ T26] audit: type=1800 audit(1726738407.463:57): pid=8057 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.1014" name="file1" dev="loop0" ino=1048756 res=0 errno=0 [ 429.115970][ T5233] bond0 (unregistering): Released all slaves [ 429.251834][ T8056] FAT-fs (loop0): error, fat_free_clusters: deleting FAT entry beyond EOF [ 429.315434][ T8066] kvm: pic: non byte write [ 429.342185][ T4232] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 429.350997][ T4232] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 429.406009][ T7684] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 429.511589][ T7908] device hsr_slave_0 entered promiscuous mode [ 429.535124][ T7908] device hsr_slave_1 entered promiscuous mode [ 429.555113][ T7908] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 429.584334][ T7908] Cannot create hsr debugfs directory [ 429.655947][ T3807] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 429.670756][ T3807] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 429.713893][ T8073] loop3: detected capacity change from 0 to 2048 [ 429.741548][ T3754] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 429.770383][ T3754] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 429.802454][ T7684] device veth0_vlan entered promiscuous mode [ 429.833125][ T8073] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 429.856661][ T3754] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 429.882721][ T3754] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 429.902284][ T7684] device veth1_vlan entered promiscuous mode [ 429.999846][ T8073] UDF-fs: error (device loop3): udf_read_inode: (ino 1329) failed !bh [ 430.051375][ T7684] device veth0_macvtap entered promiscuous mode [ 430.104389][ T7684] device veth1_macvtap entered promiscuous mode [ 430.142489][ T3734] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 430.175161][ T3734] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 430.227773][ T3734] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 430.288392][ T3734] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 430.341132][ T3734] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 430.367366][ T8080] UDF-fs: error (device loop3): udf_read_inode: (ino 1329) failed !bh [ 430.778948][ T3734] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 430.894241][ T7684] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 430.940418][ T7684] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 430.994274][ T7684] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 431.014191][ T7684] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 431.034197][ T7684] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 431.054188][ T7684] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 431.125806][ T7684] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 431.185736][ T4232] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 431.212059][ T4232] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 431.295561][ T7684] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 431.336633][ T7684] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 431.369377][ T7684] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 431.394147][ T7684] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 431.424184][ T7684] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 431.451408][ T7684] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 431.477866][ T7684] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 431.511893][ T3807] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 431.538762][ T3807] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 431.598704][ T7684] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 431.611382][ T8094] loop0: detected capacity change from 0 to 512 [ 431.614882][ T7684] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 431.645364][ T8094] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 431.654788][ T8094] ext4 filesystem being mounted at /79/file0 supports timestamps until 2038 (0x7fffffff) [ 431.699620][ T7684] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 431.741955][ T7684] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 432.103837][ T8102] EXT4-fs error (device loop0): ext4_map_blocks:634: inode #2: block 18: comm syz.0.1019: lblock 23 mapped to illegal pblock 18 (length 1) [ 432.122031][ T8103] EXT4-fs error (device loop0): ext4_map_blocks:634: inode #2: block 18: comm syz.0.1019: lblock 23 mapped to illegal pblock 18 (length 1) [ 432.682014][ T6222] EXT4-fs (loop0): unmounting filesystem. [ 432.695938][ T3754] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 432.703984][ T3754] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 432.802069][ T3754] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 432.946026][ T4232] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 432.984704][ T4232] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 433.029801][ T8106] Bluetooth: MGMT ver 1.22 [ 433.066634][ T8112] loop3: detected capacity change from 0 to 512 [ 433.079470][ T3754] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 433.103758][ T8112] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 433.116838][ T7908] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 433.156072][ T7908] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 433.172468][ T7908] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 433.196469][ T8112] EXT4-fs (loop3): 1 truncate cleaned up [ 433.202220][ T8112] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 433.233811][ T8121] loop1: detected capacity change from 0 to 512 [ 433.251466][ T8121] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 433.263617][ T7908] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 433.304363][ T3690] usb 1-1: new high-speed USB device number 14 using dummy_hcd [ 433.337857][ T8121] EXT4-fs (loop1): 1 truncate cleaned up [ 433.357718][ T8121] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 433.752776][ T8131] netlink: 68 bytes leftover after parsing attributes in process `syz.3.1022'. [ 433.950507][ T3690] usb 1-1: config 0 has no interfaces? [ 433.964995][ T3690] usb 1-1: New USB device found, idVendor=a766, idProduct=7cb1, bcdDevice=55.3a [ 434.196685][ T3690] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 434.402699][ T3690] usb 1-1: config 0 descriptor?? [ 434.411686][ T7908] 8021q: adding VLAN 0 to HW filter on device bond0 [ 434.499598][ T7908] 8021q: adding VLAN 0 to HW filter on device team0 [ 434.521878][ T3754] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 434.548660][ T6162] EXT4-fs (loop3): unmounting filesystem. [ 434.566223][ T3754] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 434.590299][ T3754] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 434.594580][ T7684] EXT4-fs (loop1): unmounting filesystem. [ 434.615316][ T3754] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 434.660983][ T3754] bridge0: port 1(bridge_slave_0) entered blocking state [ 434.668217][ T3754] bridge0: port 1(bridge_slave_0) entered forwarding state [ 434.704781][ T3754] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 434.730815][ T3754] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 434.743916][ T8114] loop0: detected capacity change from 0 to 1024 [ 434.779045][ T3754] bridge0: port 2(bridge_slave_1) entered blocking state [ 434.786248][ T3754] bridge0: port 2(bridge_slave_1) entered forwarding state [ 434.811832][ T8136] loop3: detected capacity change from 0 to 256 [ 434.824487][ T3754] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 434.863404][ T3776] I/O error, dev loop0, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 434.915208][ T3754] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 435.087959][ T8135] loop1: detected capacity change from 0 to 2048 [ 435.095009][ T48] Bluetooth: hci0: Opcode 0x0401 failed: -110 [ 435.103495][ T48] Bluetooth: hci0: command 0x0401 tx timeout [ 435.120133][ T8135] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 435.176555][ T3754] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 435.310920][ T8139] loop0: detected capacity change from 0 to 1024 [ 435.949731][ T7908] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 436.003929][ T7908] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 436.030581][ T4221] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 436.050946][ T4221] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 436.119899][ T4221] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 436.169958][ T4221] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 436.221206][ T4221] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 436.260544][ T4221] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 436.301399][ T4221] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 436.352268][ T4221] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 436.412648][ T4221] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 436.459113][ T4221] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 436.564490][ T8154] loop2: detected capacity change from 0 to 512 [ 436.674988][ T8154] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 436.704393][ T8154] ext4 filesystem being mounted at /79/file0 supports timestamps until 2038 (0x7fffffff) [ 437.165423][ T8172] EXT4-fs error (device loop2): ext4_map_blocks:634: inode #2: block 18: comm syz.2.1029: lblock 23 mapped to illegal pblock 18 (length 1) [ 437.186181][ T8172] EXT4-fs error (device loop2): ext4_map_blocks:634: inode #2: block 18: comm syz.2.1029: lblock 23 mapped to illegal pblock 18 (length 1) [ 437.715217][ T6419] EXT4-fs (loop2): unmounting filesystem. [ 437.795374][ T7908] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 437.814420][ T4221] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 437.822139][ T4221] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 437.902146][ T8179] loop2: detected capacity change from 0 to 512 [ 438.018170][ T8179] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 438.060815][ T8179] ext4 filesystem being mounted at /80/file0 supports timestamps until 2038 (0x7fffffff) [ 438.539746][ T8190] EXT4-fs error (device loop2): ext4_map_blocks:634: inode #2: block 18: comm syz.2.1031: lblock 23 mapped to illegal pblock 18 (length 1) [ 438.637428][ T8191] EXT4-fs error (device loop2): ext4_map_blocks:634: inode #2: block 18: comm syz.2.1031: lblock 23 mapped to illegal pblock 18 (length 1) [ 439.080866][ T6419] EXT4-fs (loop2): unmounting filesystem. [ 439.247954][ T3718] usb 1-1: USB disconnect, device number 14 [ 439.477466][ T8200] loop2: detected capacity change from 0 to 1024 [ 439.511913][ T3734] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 439.522551][ T4221] hfsplus: b-tree write err: -5, ino 4 [ 439.544933][ T3734] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 439.574378][ T8200] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended [ 439.583487][ T8200] EXT4-fs (loop2): The Hurd can't support 64-bit file systems [ 439.616715][ T1288] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 439.641039][ T1288] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 439.673160][ T7908] device veth0_vlan entered promiscuous mode [ 439.682415][ T1288] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 439.705939][ T1288] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 439.710114][ T8204] loop0: detected capacity change from 0 to 512 [ 439.743232][ T7908] device veth1_vlan entered promiscuous mode [ 439.794071][ T8204] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 439.828294][ T8204] EXT4-fs (loop0): 1 truncate cleaned up [ 439.854239][ T8204] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 439.897595][ T4221] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 439.906761][ T4221] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 440.056812][ T1267] ieee802154 phy0 wpan0: encryption failed: -22 [ 440.063335][ T1267] ieee802154 phy1 wpan1: encryption failed: -22 [ 440.078652][ T4221] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 440.153908][ T8212] loop3: detected capacity change from 0 to 1024 [ 440.158537][ T4221] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 440.172193][ T7908] device veth0_macvtap entered promiscuous mode [ 440.200836][ T7908] device veth1_macvtap entered promiscuous mode [ 440.317926][ T8214] netlink: 68 bytes leftover after parsing attributes in process `syz.0.1034'. [ 440.405214][ T8212] hfsplus: unable to parse mount options [ 440.594679][ T3734] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 440.625328][ T3734] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 440.891543][ T6222] EXT4-fs (loop0): unmounting filesystem. [ 441.217288][ T7908] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 441.314181][ T7908] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 441.315884][ T8221] loop2: detected capacity change from 0 to 512 [ 441.343519][ T7908] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 441.355669][ T8221] ext4: Unknown parameter 'nouser_xattr' [ 441.404316][ T3661] Bluetooth: hci0: command 0x0401 tx timeout [ 441.410882][ T48] Bluetooth: hci0: Opcode 0x0401 failed: -110 [ 441.544277][ T7908] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 441.597631][ T7908] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 441.657602][ T8229] loop1: detected capacity change from 0 to 128 [ 441.663764][ T7908] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 441.709826][ T8229] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 441.733671][ T7908] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 441.756010][ T7908] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 441.794061][ T7908] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 442.102481][ T8229] ext4 filesystem being mounted at /3/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038 (0x7fffffff) [ 442.145830][ T8237] loop3: detected capacity change from 0 to 256 [ 442.154290][ T4513] I/O error, dev loop2, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 442.166206][ T4221] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 442.197158][ T8237] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0x205ad3fc, utbl_chksum : 0xe619d30d) [ 442.210271][ T8237] exFAT-fs (loop3): IO charset iso8859d=A$땖Y.c̜*wwH/WZ7s4 W.k0x00000000ffffffffid=0xffffffffffffffff not found [ 442.261822][ T4221] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 442.324741][ T7908] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 442.374011][ T7908] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 442.424152][ T7908] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 442.466626][ T7908] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 442.477137][ T7908] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 442.487774][ T7908] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 442.498060][ T7908] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 442.508869][ T7908] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 442.521105][ T8229] syz.1.1039 (pid 8229) is setting deprecated v1 encryption policy; recommend upgrading to v2. [ 442.533699][ T7908] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 442.555799][ T4232] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 442.563888][ T3779] I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 442.574028][ T4232] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 442.637327][ T7908] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 442.683911][ T7908] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 442.718807][ T7908] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 442.749262][ T7908] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 442.785801][ T8229] fscrypt (loop1, inode 12): Missing crypto API support for Adiantum (API name: "adiantum(xchacha12,aes)") [ 442.843104][ T8229] fscrypt (loop1, inode 12): Missing crypto API support for Adiantum (API name: "adiantum(xchacha12,aes)") [ 442.866510][ T8249] loop2: detected capacity change from 0 to 1024 [ 442.921457][ T8249] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended [ 442.964189][ T8249] EXT4-fs (loop2): The Hurd can't support 64-bit file systems [ 443.117448][ T7684] EXT4-fs (loop1): unmounting filesystem. [ 443.235865][ T11] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 443.244056][ T11] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 443.300636][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 443.352626][ T4221] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 443.373891][ T4221] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 443.396280][ T8262] loop3: detected capacity change from 0 to 2048 [ 443.418843][ T4232] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 443.526572][ T8262] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 443.638421][ T8270] loop2: detected capacity change from 0 to 512 [ 443.664313][ T8270] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 443.728854][ T8274] loop0: detected capacity change from 0 to 512 [ 443.736976][ T8270] EXT4-fs (loop2): 1 truncate cleaned up [ 443.747589][ T8270] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 443.822541][ T8274] EXT4-fs (loop0): 1 truncate cleaned up [ 443.934295][ T8274] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 444.182862][ T8284] netlink: 68 bytes leftover after parsing attributes in process `syz.2.1047'. [ 444.790870][ T6419] EXT4-fs (loop2): unmounting filesystem. [ 445.785437][ T3655] Bluetooth: hci0: Opcode 0x0401 failed: -110 [ 445.797880][ T3655] Bluetooth: hci0: command 0x0401 tx timeout [ 447.492849][ T8332] loop1: detected capacity change from 0 to 1024 [ 449.421879][ T8356] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1065'. [ 449.459987][ T8359] loop1: detected capacity change from 0 to 128 [ 449.519543][ T8361] loop2: detected capacity change from 0 to 128 [ 449.545388][ T8359] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 449.579084][ T8359] ext4 filesystem being mounted at /10/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038 (0x7fffffff) [ 449.729993][ T8361] UDF-fs: error (device loop2): udf_read_tagged: read failed, block=256, location=256 [ 451.185788][ T8374] loop3: detected capacity change from 0 to 1024 [ 453.025397][ T8374] hfsplus: failed to load extents file [ 453.095876][ T7684] EXT4-fs (loop1): unmounting filesystem. [ 453.495409][ T6222] EXT4-fs (loop0): unmounting filesystem. [ 453.572395][ T8385] loop1: detected capacity change from 0 to 2048 [ 453.636208][ T8387] netlink: 36 bytes leftover after parsing attributes in process `syz.3.1076'. [ 453.639941][ T8385] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 453.734421][ T8391] loop0: detected capacity change from 0 to 256 [ 453.757423][ T8391] exfat: Deprecated parameter 'utf8' [ 453.783668][ T8391] exfat: Deprecated parameter 'namecase' [ 453.842144][ T8391] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0x1806556a, utbl_chksum : 0xe619d30d) [ 455.011839][ T8403] loop3: detected capacity change from 0 to 1024 [ 455.055184][ T8403] EXT4-fs: Ignoring removed bh option [ 455.132696][ T8403] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 455.308502][ T8413] loop4: detected capacity change from 0 to 256 [ 455.316866][ T8413] exfat: Deprecated parameter 'namecase' [ 455.515062][ T3693] usb 3-1: new high-speed USB device number 12 using dummy_hcd [ 455.531222][ T8413] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0xb89b369d, utbl_chksum : 0xe619d30d) [ 455.631193][ T6162] EXT4-fs (loop3): unmounting filesystem. [ 455.865618][ T8413] syz.4.1081: attempt to access beyond end of device [ 455.865618][ T8413] loop4: rw=524288, sector=34359738488, nr_sectors = 8 limit=256 [ 455.974919][ T3693] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 255, changing to 11 [ 455.986413][ T8413] syz.4.1081: attempt to access beyond end of device [ 455.986413][ T8413] loop4: rw=0, sector=34359738488, nr_sectors = 8 limit=256 [ 456.044638][ T3693] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 59391, setting to 1024 [ 456.144426][ T26] audit: type=1800 audit(1726738434.823:58): pid=8413 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.1081" name="file1" dev="loop4" ino=1048766 res=0 errno=0 [ 456.267043][ T3693] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 456.304279][ T3693] usb 3-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 456.308822][ T7684] UDF-fs: error (device loop1): udf_read_inode: (ino 1317) failed !bh [ 456.313442][ T3693] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 456.325758][ T3693] usb 3-1: config 0 descriptor?? [ 456.470906][ T8427] loop0: detected capacity change from 0 to 1024 [ 456.814915][ T8410] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22 [ 456.823665][ T7684] UDF-fs: error (device loop1): udf_read_inode: (ino 1317) failed !bh [ 457.034536][ T8429] loop4: detected capacity change from 0 to 1024 [ 457.044790][ T8429] hfsplus: extend alloc file! (8192,65536,366) [ 457.154182][ T8431] kvm: vcpu 0: requested 394 ns lapic timer period limited to 200000 ns [ 457.617048][ T3693] plantronics 0003:047F:FFFF.0002: unknown main item tag 0x0 [ 457.645021][ T3693] plantronics 0003:047F:FFFF.0002: No inputs registered, leaving [ 457.733895][ T3693] plantronics 0003:047F:FFFF.0002: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.2-1/input0 [ 457.774579][ T3693] usb 3-1: USB disconnect, device number 12 [ 458.238585][ T11] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 459.420745][ T11] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 460.090807][ T11] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 460.136523][ T8450] loop3: detected capacity change from 0 to 8 [ 460.625360][ T8454] loop4: detected capacity change from 0 to 512 [ 460.634933][ T8450] SQUASHFS error: zlib decompression failed, data probably corrupt [ 460.675210][ T8454] EXT4-fs: inline encryption not supported [ 460.684940][ T8450] SQUASHFS error: Failed to read block 0x1b9: -5 [ 460.691492][ T8450] SQUASHFS error: Unable to read metadata cache entry [1b7] [ 460.724224][ T8453] loop0: detected capacity change from 0 to 2048 [ 460.732976][ T11] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 460.744597][ T8454] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 1 overlaps superblock [ 460.797919][ T8453] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 460.815401][ T8457] SQUASHFS error: Unable to read metadata cache entry [1b7] [ 460.824550][ T8454] EXT4-fs (loop4): ext4_check_descriptors: Inode bitmap for group 1 overlaps superblock [ 460.882786][ T8454] EXT4-fs (loop4): ext4_check_descriptors: Inode table for group 1 overlaps superblock [ 460.980431][ T8454] EXT4-fs (loop4): revision level too high, forcing read-only mode [ 461.122697][ T8454] [EXT4 FS bs=4096, gc=2, bpg=34, ipg=32, mo=c04ce01c, mo2=0000] [ 461.175582][ T8454] EXT4-fs (loop4): orphan cleanup on readonly fs [ 461.250808][ T8454] EXT4-fs error (device loop4): ext4_validate_block_bitmap:438: comm syz.4.1097: bg 0: block 34: padding at end of block bitmap is not set [ 461.314035][ T8466] loop2: detected capacity change from 0 to 512 [ 461.471389][ T3661] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 461.481436][ T3661] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 461.516644][ T8466] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 461.548371][ T8454] Quota error (device loop4): write_blk: dquota write failed [ 461.705524][ T3661] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 461.822832][ T8454] Quota error (device loop4): qtree_write_dquot: Error -28 occurred while creating quota [ 461.844011][ T3661] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 461.906206][ T3661] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 461.920062][ T3661] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 462.062901][ T8476] loop3: detected capacity change from 0 to 1024 [ 462.143254][ T8454] EXT4-fs error (device loop4): ext4_acquire_dquot:6800: comm syz.4.1097: Failed to acquire dquot type 1 [ 462.393056][ T8466] EXT4-fs (loop2): revision level too high, forcing read-only mode [ 462.421834][ T8466] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e800e118, mo2=0003] [ 462.430997][ T8454] EXT4-fs (loop4): 1 truncate cleaned up [ 462.478312][ T8454] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 462.494876][ T8466] System zones: 0-1, 15-15, 18-18, 34-34 [ 462.602429][ T8466] EXT4-fs (loop2): orphan cleanup on readonly fs [ 462.664394][ T8466] Quota error (device loop2): v2_read_header: Failed header read: expected=8 got=0 [ 462.714350][ T8466] EXT4-fs warning (device loop2): ext4_enable_quotas:7035: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix. [ 462.733487][ T8466] EXT4-fs (loop2): Cannot turn on quotas: error -22 [ 462.751088][ T8466] EXT4-fs error (device loop2): ext4_validate_block_bitmap:438: comm syz.2.1100: bg 0: block 40: padding at end of block bitmap is not set [ 462.824208][ T8466] EXT4-fs error (device loop2) in ext4_mb_clear_bb:6172: Corrupt filesystem [ 462.879235][ T8466] EXT4-fs (loop2): 1 truncate cleaned up [ 462.886539][ T8466] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 464.760403][ T3655] Bluetooth: hci2: command tx timeout [ 464.927181][ T7908] EXT4-fs (loop4): unmounting filesystem. [ 464.933989][ T6419] EXT4-fs (loop2): unmounting filesystem. [ 465.361193][ T8500] loop2: detected capacity change from 0 to 512 [ 465.362600][ T8501] loop0: detected capacity change from 0 to 256 [ 465.432527][ T8500] EXT4-fs (loop2): 1 truncate cleaned up [ 465.445558][ T8500] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 465.447608][ T8501] FAT-fs (loop0): error, fat_get_cluster: invalid cluster chain (i_pos 196) [ 465.511603][ T8501] FAT-fs (loop0): error, fat_get_cluster: invalid cluster chain (i_pos 196) [ 465.513188][ T8500] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1107'. [ 465.520600][ T8501] FAT-fs (loop0): error, fat_get_cluster: invalid cluster chain (i_pos 196) [ 465.540227][ T8501] FAT-fs (loop0): error, fat_get_cluster: invalid cluster chain (i_pos 196) [ 465.549228][ T8501] FAT-fs (loop0): error, fat_get_cluster: invalid cluster chain (i_pos 196) [ 465.574276][ T8501] FAT-fs (loop0): error, fat_get_cluster: invalid cluster chain (i_pos 196) [ 465.592034][ T8501] FAT-fs (loop0): error, fat_get_cluster: invalid cluster chain (i_pos 196) [ 465.609872][ T8501] FAT-fs (loop0): error, fat_get_cluster: invalid cluster chain (i_pos 196) [ 465.629052][ T8501] FAT-fs (loop0): error, fat_get_cluster: invalid cluster chain (i_pos 196) [ 465.754664][ T8501] FAT-fs (loop0): error, fat_get_cluster: invalid cluster chain (i_pos 196) [ 465.794283][ T26] audit: type=1800 audit(1726738444.473:59): pid=8501 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.1105" name="file1" dev="loop0" ino=1048767 res=0 errno=0 [ 466.536468][ T6419] EXT4-fs (loop2): unmounting filesystem. [ 466.822144][ T8469] chnl_net:caif_netlink_parms(): no params data found [ 466.845647][ T3655] Bluetooth: hci2: command tx timeout [ 467.511601][ T8530] loop2: detected capacity change from 0 to 1024 [ 468.309529][ T3661] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 468.324800][ T3661] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 468.334446][ T3661] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 468.353486][ T3661] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 468.361251][ T3661] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 468.368835][ T3661] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 468.527827][ T8541] loop2: detected capacity change from 0 to 512 [ 468.580906][ T8541] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 468.691730][ T8541] EXT4-fs (loop2): revision level too high, forcing read-only mode [ 468.703057][ T8541] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e800e118, mo2=0003] [ 468.721374][ T8541] System zones: 0-1, 15-15, 18-18, 34-34 [ 468.735676][ T8469] bridge0: port 1(bridge_slave_0) entered blocking state [ 468.742826][ T8469] bridge0: port 1(bridge_slave_0) entered disabled state [ 468.757434][ T8541] EXT4-fs (loop2): orphan cleanup on readonly fs [ 468.764008][ T8541] Quota error (device loop2): v2_read_header: Failed header read: expected=8 got=0 [ 468.774383][ T8541] EXT4-fs warning (device loop2): ext4_enable_quotas:7035: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix. [ 468.789150][ T8541] EXT4-fs (loop2): Cannot turn on quotas: error -22 [ 468.796545][ T8541] EXT4-fs error (device loop2): ext4_validate_block_bitmap:438: comm syz.2.1113: bg 0: block 40: padding at end of block bitmap is not set [ 468.811517][ T8541] EXT4-fs error (device loop2) in ext4_mb_clear_bb:6172: Corrupt filesystem [ 468.821122][ T8541] EXT4-fs (loop2): 1 truncate cleaned up [ 468.825693][ T8469] device bridge_slave_0 entered promiscuous mode [ 468.834244][ T8541] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 468.944236][ T3661] Bluetooth: hci2: command tx timeout [ 468.968854][ T8469] bridge0: port 2(bridge_slave_1) entered blocking state [ 468.987973][ T8469] bridge0: port 2(bridge_slave_1) entered disabled state [ 469.025302][ T8469] device bridge_slave_1 entered promiscuous mode [ 469.951533][ T8554] loop3: detected capacity change from 0 to 2048 [ 469.982275][ T8554] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 470.030584][ T6419] EXT4-fs (loop2): unmounting filesystem. [ 470.445548][ T3655] Bluetooth: hci0: command tx timeout [ 471.242156][ T3661] Bluetooth: hci2: command tx timeout [ 471.297607][ T8570] loop2: detected capacity change from 0 to 512 [ 471.350454][ T11] device hsr_slave_0 left promiscuous mode [ 471.359244][ T3776] I/O error, dev loop2, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 471.391742][ T11] device hsr_slave_1 left promiscuous mode [ 472.132388][ T11] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 472.143226][ T8577] loop0: detected capacity change from 0 to 512 [ 472.152259][ T11] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 472.171695][ T11] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 472.196531][ T11] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 472.207204][ T11] device bridge_slave_1 left promiscuous mode [ 472.213478][ T11] bridge0: port 2(bridge_slave_1) entered disabled state [ 472.225157][ T11] device bridge_slave_0 left promiscuous mode [ 472.233230][ T11] bridge0: port 1(bridge_slave_0) entered disabled state [ 472.240950][ T8577] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 472.262219][ T8577] ext4 filesystem being mounted at /96/file0 supports timestamps until 2038 (0x7fffffff) [ 472.275228][ T6162] UDF-fs: error (device loop3): udf_read_inode: (ino 1317) failed !bh [ 472.283664][ T6162] UDF-fs: error (device loop3): udf_read_inode: (ino 1317) failed !bh [ 472.353140][ T11] device veth1_macvtap left promiscuous mode [ 472.397617][ T11] device veth0_macvtap left promiscuous mode [ 472.403787][ T11] device veth1_vlan left promiscuous mode [ 472.423654][ T11] device veth0_vlan left promiscuous mode [ 472.544226][ T3661] Bluetooth: hci0: command tx timeout [ 472.706311][ T8583] EXT4-fs error (device loop0): ext4_map_blocks:634: inode #2: block 18: comm syz.0.1120: lblock 23 mapped to illegal pblock 18 (length 1) [ 472.726299][ T8583] EXT4-fs error (device loop0): ext4_map_blocks:634: inode #2: block 18: comm syz.0.1120: lblock 23 mapped to illegal pblock 18 (length 1) [ 472.746112][ T8583] xt_TCPMSS: Only works on TCP SYN packets [ 473.258769][ T6222] EXT4-fs (loop0): unmounting filesystem. [ 473.360964][ T8585] loop0: detected capacity change from 0 to 1024 [ 473.369162][ T8585] hfsplus: unable to parse mount options [ 473.422996][ T3776] I/O error, dev loop0, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 474.226303][ T8588] loop0: detected capacity change from 0 to 1024 [ 474.230051][ T8588] EXT4-fs: Ignoring removed orlov option [ 474.230145][ T8588] EXT4-fs: Ignoring removed nomblk_io_submit option [ 474.369997][ T8588] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 474.647156][ T3655] Bluetooth: hci0: command tx timeout [ 474.661473][ T11] team0 (unregistering): Port device team_slave_1 removed [ 474.661560][ T6222] EXT4-fs (loop0): unmounting filesystem. [ 474.757682][ T11] team0 (unregistering): Port device team_slave_0 removed [ 474.761341][ T8592] loop0: detected capacity change from 0 to 256 [ 474.799605][ T8592] FAT-fs (loop0): error, fat_get_cluster: invalid cluster chain (i_pos 196) [ 474.809627][ T8592] FAT-fs (loop0): error, fat_get_cluster: invalid cluster chain (i_pos 196) [ 474.818688][ T8592] FAT-fs (loop0): error, fat_get_cluster: invalid cluster chain (i_pos 196) [ 474.827601][ T8592] FAT-fs (loop0): error, fat_get_cluster: invalid cluster chain (i_pos 196) [ 474.837386][ T8592] FAT-fs (loop0): error, fat_get_cluster: invalid cluster chain (i_pos 196) [ 474.849215][ T8592] FAT-fs (loop0): error, fat_get_cluster: invalid cluster chain (i_pos 196) [ 474.858950][ T8592] FAT-fs (loop0): error, fat_get_cluster: invalid cluster chain (i_pos 196) [ 474.868137][ T8592] FAT-fs (loop0): error, fat_get_cluster: invalid cluster chain (i_pos 196) [ 474.877214][ T8592] FAT-fs (loop0): error, fat_get_cluster: invalid cluster chain (i_pos 196) [ 474.886351][ T8592] FAT-fs (loop0): error, fat_get_cluster: invalid cluster chain (i_pos 196) [ 474.902854][ T26] audit: type=1800 audit(1726738453.603:60): pid=8592 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.1123" name="file1" dev="loop0" ino=1048768 res=0 errno=0 [ 475.013720][ T11] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 475.058024][ T11] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 475.786234][ T11] bond0 (unregistering): Released all slaves [ 475.803489][ T8596] loop0: detected capacity change from 0 to 1024 [ 475.816012][ T8596] hfsplus: extend alloc file! (8192,65536,366) [ 475.865802][ T3776] I/O error, dev loop0, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 475.909041][ T8596] kvm: vcpu 0: requested 394 ns lapic timer period limited to 200000 ns [ 475.960410][ T8469] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 475.993691][ T8469] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 476.079635][ T8599] loop0: detected capacity change from 0 to 512 [ 476.113176][ T8599] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 476.162718][ T8469] team0: Port device team_slave_0 added [ 476.192382][ T8599] EXT4-fs (loop0): revision level too high, forcing read-only mode [ 476.200738][ T8599] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e800e118, mo2=0003] [ 476.207582][ T8469] team0: Port device team_slave_1 added [ 476.209450][ T8599] System zones: 0-1, 15-15, 18-18, 34-34 [ 476.221395][ T8599] EXT4-fs (loop0): orphan cleanup on readonly fs [ 476.230307][ T8599] Quota error (device loop0): v2_read_header: Failed header read: expected=8 got=0 [ 476.240558][ T8599] EXT4-fs warning (device loop0): ext4_enable_quotas:7035: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix. [ 476.258015][ T8599] EXT4-fs (loop0): Cannot turn on quotas: error -22 [ 476.265877][ T8599] EXT4-fs error (device loop0): ext4_validate_block_bitmap:438: comm syz.0.1125: bg 0: block 40: padding at end of block bitmap is not set [ 476.291674][ T8599] EXT4-fs error (device loop0) in ext4_mb_clear_bb:6172: Corrupt filesystem [ 476.309914][ T8599] EXT4-fs (loop0): 1 truncate cleaned up [ 476.315759][ T8599] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 476.341190][ T8469] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 476.348529][ T8469] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 476.394175][ T8469] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 476.584274][ T8469] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 476.617388][ T8469] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 476.687722][ T8469] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 476.699209][ T3655] Bluetooth: hci0: command tx timeout [ 476.765122][ T8538] chnl_net:caif_netlink_parms(): no params data found [ 477.039711][ T6222] EXT4-fs (loop0): unmounting filesystem. [ 477.049250][ T8469] device hsr_slave_0 entered promiscuous mode [ 477.065512][ T8469] device hsr_slave_1 entered promiscuous mode [ 477.212209][ T3661] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 477.222842][ T3661] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 477.231122][ T3661] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 477.250393][ T3661] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 477.259690][ T3661] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 477.267181][ T3661] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 477.420982][ T8625] loop0: detected capacity change from 0 to 2048 [ 477.456623][ T8625] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 477.562855][ T8538] bridge0: port 1(bridge_slave_0) entered blocking state [ 477.581074][ T8538] bridge0: port 1(bridge_slave_0) entered disabled state [ 477.591030][ T8538] device bridge_slave_0 entered promiscuous mode [ 477.617215][ T8538] bridge0: port 2(bridge_slave_1) entered blocking state [ 477.634242][ T8538] bridge0: port 2(bridge_slave_1) entered disabled state [ 477.642830][ T8538] device bridge_slave_1 entered promiscuous mode [ 477.811505][ T11] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 477.854784][ T8538] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 477.873017][ T8538] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 477.978161][ T11] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 478.030825][ T8538] team0: Port device team_slave_0 added [ 478.168789][ T11] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 478.191744][ T8538] team0: Port device team_slave_1 added [ 478.516061][ T8538] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 478.533270][ T8538] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 478.542746][ T8637] loop2: detected capacity change from 0 to 16 [ 478.582461][ T8637] erofs: Unknown parameter 'user_pattr' [ 478.584175][ T8538] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 478.866416][ T11] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 478.882829][ T8538] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 478.890448][ T8538] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 478.922086][ T8538] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 479.325917][ T3661] Bluetooth: hci1: command tx timeout [ 479.465802][ T8538] device hsr_slave_0 entered promiscuous mode [ 479.492756][ T8538] device hsr_slave_1 entered promiscuous mode [ 479.512591][ T8538] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 479.532962][ T8538] Cannot create hsr debugfs directory [ 479.710508][ T8644] loop0: detected capacity change from 0 to 512 [ 479.716859][ T8613] chnl_net:caif_netlink_parms(): no params data found [ 479.763537][ T8644] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 479.968133][ T8644] EXT4-fs (loop0): 1 truncate cleaned up [ 479.974393][ T8644] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 480.234976][ T8469] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 480.267147][ T8469] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 480.279665][ T8469] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 480.290965][ T8469] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 480.420911][ T8613] bridge0: port 1(bridge_slave_0) entered blocking state [ 480.513474][ T8613] bridge0: port 1(bridge_slave_0) entered disabled state [ 480.539963][ T8613] device bridge_slave_0 entered promiscuous mode [ 480.605642][ T8613] bridge0: port 2(bridge_slave_1) entered blocking state [ 480.614620][ T8613] bridge0: port 2(bridge_slave_1) entered disabled state [ 480.688719][ T8613] device bridge_slave_1 entered promiscuous mode [ 480.800941][ T8662] loop2: detected capacity change from 0 to 512 [ 480.849317][ T8613] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 480.877068][ T8662] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 480.955042][ T8662] EXT4-fs (loop2): revision level too high, forcing read-only mode [ 480.963007][ T8662] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e800e118, mo2=0003] [ 480.995801][ T8662] System zones: 0-1, 15-15, 18-18, 34-34 [ 481.000482][ T8538] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 481.002762][ T8662] EXT4-fs (loop2): orphan cleanup on readonly fs [ 481.028243][ T8662] Quota error (device loop2): v2_read_header: Failed header read: expected=8 got=0 [ 481.057329][ T8613] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 481.077585][ T8662] EXT4-fs warning (device loop2): ext4_enable_quotas:7035: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix. [ 481.154429][ T8662] EXT4-fs (loop2): Cannot turn on quotas: error -22 [ 481.174842][ T8662] EXT4-fs error (device loop2): ext4_validate_block_bitmap:438: comm syz.2.1135: bg 0: block 40: padding at end of block bitmap is not set [ 481.214338][ T8662] EXT4-fs error (device loop2) in ext4_mb_clear_bb:6172: Corrupt filesystem [ 481.227204][ T8662] EXT4-fs (loop2): 1 truncate cleaned up [ 481.232926][ T8662] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 481.414161][ T3661] Bluetooth: hci1: command tx timeout [ 481.539568][ T8538] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 481.625686][ T8613] team0: Port device team_slave_0 added [ 481.640524][ T8469] 8021q: adding VLAN 0 to HW filter on device bond0 [ 481.653745][ T6222] EXT4-fs (loop0): unmounting filesystem. [ 481.786133][ T6419] EXT4-fs (loop2): unmounting filesystem. [ 481.846054][ T8538] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 481.875046][ T8613] team0: Port device team_slave_1 added [ 481.913991][ T3754] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 481.922651][ T3754] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 482.004515][ T8469] 8021q: adding VLAN 0 to HW filter on device team0 [ 482.135091][ T8538] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 482.697402][ T8687] loop2: detected capacity change from 0 to 2048 [ 482.836706][ T3754] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 482.874952][ T3754] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 482.922183][ T8687] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 482.931932][ T3754] bridge0: port 1(bridge_slave_0) entered blocking state [ 482.939105][ T3754] bridge0: port 1(bridge_slave_0) entered forwarding state [ 482.998253][ T3754] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 483.007288][ T3754] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 483.016020][ T3754] bridge0: port 2(bridge_slave_1) entered blocking state [ 483.023150][ T3754] bridge0: port 2(bridge_slave_1) entered forwarding state [ 483.031047][ T3754] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 483.045689][ T3754] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 483.059571][ T8613] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 483.074417][ T8613] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 483.143791][ T8613] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 483.176365][ T8613] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 483.203630][ T8613] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 483.253759][ T8613] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 483.301127][ T8696] loop0: detected capacity change from 0 to 16 [ 483.321989][ T8696] erofs: Unknown parameter 'user_pattr' [ 483.376127][ T3754] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 483.384766][ T3776] I/O error, dev loop0, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 483.389172][ T3754] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 483.417186][ T3754] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 483.432911][ T3754] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 483.452885][ T3754] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 483.504217][ T48] Bluetooth: hci1: command tx timeout [ 483.596745][ T3754] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 483.615329][ T3754] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 483.632241][ T3754] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 483.720348][ T8469] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 483.738447][ T8469] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 484.148331][ T8613] device hsr_slave_0 entered promiscuous mode [ 484.195268][ T8613] device hsr_slave_1 entered promiscuous mode [ 484.257033][ T8613] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 484.274247][ T8613] Cannot create hsr debugfs directory [ 484.485590][ T3734] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 484.533938][ T3734] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 485.087446][ T3754] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 485.115824][ T3754] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 485.238011][ T8469] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 485.407713][ T8538] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 485.451421][ T8728] loop0: detected capacity change from 0 to 512 [ 485.466945][ T8728] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 485.560387][ T8538] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 485.567886][ T3661] Bluetooth: hci1: command tx timeout [ 485.573938][ T8728] EXT4-fs (loop0): 1 truncate cleaned up [ 485.580011][ T8728] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 485.798362][ T8538] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 485.870470][ T8538] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 486.007574][ T3734] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 486.015991][ T8737] loop2: detected capacity change from 0 to 512 [ 486.027331][ T8737] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 486.037498][ T3734] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 486.065509][ T8737] EXT4-fs (loop2): revision level too high, forcing read-only mode [ 486.074257][ T8737] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e800e118, mo2=0003] [ 486.082332][ T8737] System zones: 0-1, 15-15, 18-18, 34-34 [ 486.136206][ T8737] EXT4-fs (loop2): orphan cleanup on readonly fs [ 486.142708][ T8737] Quota error (device loop2): v2_read_header: Failed header read: expected=8 got=0 [ 486.154939][ T8737] EXT4-fs warning (device loop2): ext4_enable_quotas:7035: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix. [ 486.170012][ T8737] EXT4-fs (loop2): Cannot turn on quotas: error -22 [ 486.178054][ T8737] EXT4-fs error (device loop2): ext4_validate_block_bitmap:438: comm syz.2.1144: bg 0: block 40: padding at end of block bitmap is not set [ 486.198454][ T8737] EXT4-fs error (device loop2) in ext4_mb_clear_bb:6172: Corrupt filesystem [ 486.241932][ T8737] EXT4-fs (loop2): 1 truncate cleaned up [ 486.248338][ T8737] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 486.330156][ T8469] device veth0_vlan entered promiscuous mode [ 486.514457][ T3734] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 486.531750][ T3734] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 486.560952][ T3734] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 486.589361][ T3734] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 486.658040][ T8469] device veth1_vlan entered promiscuous mode [ 486.899915][ T3754] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 486.915389][ T6419] EXT4-fs (loop2): unmounting filesystem. [ 486.932787][ T3754] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 486.997249][ T5233] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 487.045140][ T5233] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 487.061911][ T8538] 8021q: adding VLAN 0 to HW filter on device bond0 [ 487.095836][ T8469] device veth0_macvtap entered promiscuous mode [ 487.263465][ T8469] device veth1_macvtap entered promiscuous mode [ 487.289228][ T8538] 8021q: adding VLAN 0 to HW filter on device team0 [ 487.302198][ T3754] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 487.322535][ T3754] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 487.339462][ T3754] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 487.356961][ T3754] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 487.419371][ T11] device hsr_slave_0 left promiscuous mode [ 487.435535][ T11] device hsr_slave_1 left promiscuous mode [ 487.445102][ T11] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 487.452572][ T11] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 487.471854][ T11] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 487.480063][ T11] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 487.483205][ T6222] EXT4-fs (loop0): unmounting filesystem. [ 487.535149][ T11] device bridge_slave_1 left promiscuous mode [ 487.541527][ T11] bridge0: port 2(bridge_slave_1) entered disabled state [ 487.771610][ T11] device bridge_slave_0 left promiscuous mode [ 487.793755][ T11] bridge0: port 1(bridge_slave_0) entered disabled state [ 487.807510][ T11] device hsr_slave_0 left promiscuous mode [ 487.813891][ T11] device hsr_slave_1 left promiscuous mode [ 487.820770][ T11] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 489.197364][ T11] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 489.213933][ T11] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 489.229992][ T11] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 489.246514][ T11] device bridge_slave_1 left promiscuous mode [ 489.253917][ T11] bridge0: port 2(bridge_slave_1) entered disabled state [ 489.269789][ T11] device bridge_slave_0 left promiscuous mode [ 489.280299][ T11] bridge0: port 1(bridge_slave_0) entered disabled state [ 489.544004][ T11] device veth1_macvtap left promiscuous mode [ 489.562372][ T11] device veth0_macvtap left promiscuous mode [ 489.569393][ T11] device veth1_vlan left promiscuous mode [ 489.575542][ T11] device veth0_vlan left promiscuous mode [ 489.643267][ T8771] loop2: detected capacity change from 0 to 512 [ 489.661556][ T8771] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 489.706680][ T8771] EXT4-fs (loop2): 1 truncate cleaned up [ 489.712383][ T8771] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 489.789507][ T11] device veth1_macvtap left promiscuous mode [ 489.795758][ T11] device veth0_macvtap left promiscuous mode [ 489.801913][ T11] device veth1_vlan left promiscuous mode [ 489.808451][ T11] device veth0_vlan left promiscuous mode [ 489.995364][ T8775] loop0: detected capacity change from 0 to 1764 [ 490.772815][ T8777] loop0: detected capacity change from 0 to 2048 [ 490.809064][ T8777] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 491.331193][ T6419] EXT4-fs (loop2): unmounting filesystem. [ 491.423786][ T8782] loop2: detected capacity change from 0 to 512 [ 491.434668][ T8782] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 491.494916][ T8782] EXT4-fs (loop2): revision level too high, forcing read-only mode [ 491.512122][ T8782] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e800e118, mo2=0003] [ 491.550437][ T8782] System zones: 0-1, 15-15, 18-18, 34-34 [ 491.575273][ T8782] EXT4-fs (loop2): orphan cleanup on readonly fs [ 491.581841][ T8782] Quota error (device loop2): v2_read_header: Failed header read: expected=8 got=0 [ 491.636698][ T8782] EXT4-fs warning (device loop2): ext4_enable_quotas:7035: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix. [ 491.694298][ T8782] EXT4-fs (loop2): Cannot turn on quotas: error -22 [ 491.715969][ T8782] EXT4-fs error (device loop2): ext4_validate_block_bitmap:438: comm syz.2.1152: bg 0: block 40: padding at end of block bitmap is not set [ 491.770970][ T8782] EXT4-fs error (device loop2) in ext4_mb_clear_bb:6172: Corrupt filesystem [ 491.794497][ T8782] EXT4-fs (loop2): 1 truncate cleaned up [ 491.800321][ T8782] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 492.650931][ T6419] EXT4-fs (loop2): unmounting filesystem. [ 492.661696][ T11] team0 (unregistering): Port device team_slave_1 removed [ 492.818828][ T11] team0 (unregistering): Port device team_slave_0 removed [ 492.846180][ T8794] loop0: detected capacity change from 0 to 512 [ 492.857265][ T8794] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 492.879320][ T8794] EXT4-fs (loop0): 1 truncate cleaned up [ 492.889388][ T8794] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 492.927316][ T11] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 492.982600][ T11] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 493.843450][ T11] bond0 (unregistering): Released all slaves [ 494.044859][ T6222] EXT4-fs (loop0): unmounting filesystem. [ 494.305517][ T8801] Bluetooth: MGMT ver 1.22 [ 494.510845][ T8804] loop0: detected capacity change from 0 to 512 [ 494.521416][ T8804] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 494.554762][ T8804] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a00ec019, mo2=0002] [ 494.562870][ T8804] System zones: 1-12 [ 494.571106][ T8804] EXT4-fs (loop0): 1 truncate cleaned up [ 494.577011][ T8804] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 494.802059][ T11] team0 (unregistering): Port device team_slave_1 removed [ 495.007889][ T8808] ================================================================== [ 495.016022][ T8808] BUG: KASAN: out-of-bounds in ext4_xattr_set_entry+0x8ca/0x1f30 [ 495.023772][ T8808] Read of size 18446744073709551572 at addr ffff888077665050 by task syz.0.1157/8808 [ 495.033427][ T8808] [ 495.035791][ T8808] CPU: 1 PID: 8808 Comm: syz.0.1157 Not tainted 6.1.111-syzkaller #0 [ 495.043963][ T8808] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024 [ 495.054131][ T8808] Call Trace: [ 495.057429][ T8808] [ 495.060384][ T8808] dump_stack_lvl+0x1e3/0x2cb [ 495.065127][ T8808] ? nf_tcp_handle_invalid+0x642/0x642 [ 495.070620][ T8808] ? panic+0x764/0x764 [ 495.074712][ T8808] ? _printk+0xd1/0x111 [ 495.078892][ T8808] ? __virt_addr_valid+0x17f/0x530 [ 495.084038][ T8808] ? __virt_addr_valid+0x17f/0x530 [ 495.089175][ T8808] print_report+0x15f/0x4f0 [ 495.093701][ T8808] ? __virt_addr_valid+0x17f/0x530 [ 495.098929][ T8808] ? __virt_addr_valid+0x17f/0x530 [ 495.104071][ T8808] ? __virt_addr_valid+0x45b/0x530 [ 495.109210][ T8808] ? __phys_addr+0xb6/0x170 [ 495.113741][ T8808] ? ext4_xattr_set_entry+0x8ca/0x1f30 [ 495.119222][ T8808] kasan_report+0x136/0x160 [ 495.123752][ T8808] ? ext4_xattr_set_entry+0x8ca/0x1f30 [ 495.129240][ T8808] ? ext4_xattr_set_entry+0x8ca/0x1f30 [ 495.134721][ T8808] kasan_check_range+0x27f/0x290 [ 495.139676][ T8808] ? ext4_xattr_set_entry+0x8ca/0x1f30 [ 495.145155][ T8808] memmove+0x25/0x60 [ 495.149074][ T8808] ext4_xattr_set_entry+0x8ca/0x1f30 [ 495.154393][ T8808] ? ext4_xattr_inode_lookup_create+0x1ef0/0x1ef0 [ 495.160829][ T8808] ? ext4_xattr_block_set+0x884/0x3920 [ 495.166394][ T8808] ? kmemdup+0x41/0x60 [ 495.170485][ T8808] ? memcpy+0x3c/0x60 [ 495.174605][ T8808] ext4_xattr_block_set+0xa58/0x3920 [ 495.180009][ T8808] ? __getblk_gfp+0x50/0xa20 [ 495.184620][ T8808] ? asm_sysvec_reschedule_ipi+0x16/0x20 [ 495.190287][ T8808] ? ext4_xattr_block_find+0x510/0x510 [ 495.195787][ T8808] ? ext4_xattr_block_find+0x468/0x510 [ 495.201270][ T8808] ext4_expand_extra_isize_ea+0x10d5/0x1bb0 [ 495.207231][ T8808] ? ext4_xattr_set+0x3d0/0x3d0 [ 495.212108][ T8808] ? rwsem_write_trylock+0x166/0x210 [ 495.217612][ T8808] ? clear_nonspinnable+0x60/0x60 [ 495.222665][ T8808] ? ext4_reserve_inode_write+0x2b3/0x360 [ 495.228503][ T8808] ? dquot_initialize_needed+0x128/0x320 [ 495.234180][ T8808] __ext4_expand_extra_isize+0x2f7/0x3d0 [ 495.239850][ T8808] __ext4_mark_inode_dirty+0x54f/0x920 [ 495.245428][ T8808] ? asm_sysvec_reschedule_ipi+0x16/0x20 [ 495.251101][ T8808] ? ext4_blocks_for_truncate+0x270/0x270 [ 495.256844][ T8808] ? __sanitizer_cov_trace_cmp8+0x4/0x80 [ 495.262537][ T8808] ? current_time+0x1ba/0x300 [ 495.267332][ T8808] ? atime_needs_update+0x7b0/0x7b0 [ 495.272568][ T8808] __ext4_unlink+0x6ed/0xba0 [ 495.277273][ T8808] ? __ext4_read_dirblock+0x890/0x890 [ 495.282673][ T8808] ? rwsem_write_trylock+0x166/0x210 [ 495.287998][ T8808] ? inode_permission+0xf7/0x450 [ 495.292957][ T8808] ? clear_nonspinnable+0x60/0x60 [ 495.298007][ T8808] ext4_unlink+0x1d5/0x670 [ 495.302439][ T8808] vfs_unlink+0x359/0x5f0 [ 495.306784][ T8808] do_unlinkat+0x4a5/0x820 [ 495.311214][ T8808] ? fsnotify_link_count+0xf0/0xf0 [ 495.316345][ T8808] __x64_sys_unlink+0x45/0x50 [ 495.321056][ T8808] do_syscall_64+0x3b/0xb0 [ 495.325488][ T8808] ? clear_bhb_loop+0x45/0xa0 [ 495.330177][ T8808] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 495.336099][ T8808] RIP: 0033:0x7fe024b7def9 [ 495.340524][ T8808] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 495.360141][ T8808] RSP: 002b:00007fe02588e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000057 [ 495.368569][ T8808] RAX: ffffffffffffffda RBX: 00007fe024d36130 RCX: 00007fe024b7def9 [ 495.376552][ T8808] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000020000180 [ 495.384528][ T8808] RBP: 00007fe024bf0b76 R08: 0000000000000000 R09: 0000000000000000 [ 495.392504][ T8808] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 495.400565][ T8808] R13: 0000000000000000 R14: 00007fe024d36130 R15: 00007ffc20aab198 [ 495.408545][ T8808] [ 495.411734][ T8808] [ 495.414076][ T8808] Allocated by task 8808: [ 495.418405][ T8808] kasan_set_track+0x4b/0x70 [ 495.423011][ T8808] __kasan_kmalloc+0x97/0xb0 [ 495.427605][ T8808] __kmalloc_node_track_caller+0xb1/0x220 [ 495.433348][ T8808] kmemdup+0x26/0x60 [ 495.437244][ T8808] ext4_xattr_block_set+0x884/0x3920 [ 495.442526][ T8808] ext4_expand_extra_isize_ea+0x10d5/0x1bb0 [ 495.448773][ T8808] __ext4_expand_extra_isize+0x2f7/0x3d0 [ 495.454438][ T8808] __ext4_mark_inode_dirty+0x54f/0x920 [ 495.459904][ T8808] __ext4_unlink+0x6ed/0xba0 [ 495.464498][ T8808] ext4_unlink+0x1d5/0x670 [ 495.468947][ T8808] vfs_unlink+0x359/0x5f0 [ 495.473451][ T8808] do_unlinkat+0x4a5/0x820 [ 495.477869][ T8808] __x64_sys_unlink+0x45/0x50 [ 495.482556][ T8808] do_syscall_64+0x3b/0xb0 [ 495.486987][ T8808] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 495.492895][ T8808] [ 495.495219][ T8808] The buggy address belongs to the object at ffff888077665000 [ 495.495219][ T8808] which belongs to the cache kmalloc-1k of size 1024 [ 495.509276][ T8808] The buggy address is located 80 bytes inside of [ 495.509276][ T8808] 1024-byte region [ffff888077665000, ffff888077665400) [ 495.522563][ T8808] [ 495.524910][ T8808] The buggy address belongs to the physical page: [ 495.531323][ T8808] page:ffffea0001dd9800 refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x77660 [ 495.541561][ T8808] head:ffffea0001dd9800 order:3 compound_mapcount:0 compound_pincount:0 [ 495.549886][ T8808] flags: 0xfff00000010200(slab|head|node=0|zone=1|lastcpupid=0x7ff) [ 495.557885][ T8808] raw: 00fff00000010200 0000000000000000 dead000000000001 ffff888017c41dc0 [ 495.566475][ T8808] raw: 0000000000000000 0000000080100010 00000001ffffffff 0000000000000000 [ 495.575050][ T8808] page dumped because: kasan: bad access detected [ 495.581469][ T8808] page_owner tracks the page as allocated [ 495.587205][ T8808] page last allocated via order 3, migratetype Unmovable, gfp_mask 0xd20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 3405, tgid 3405 (dhcpcd-run-hook), ts 40039000632, free_ts 39996843429 [ 495.608831][ T8808] post_alloc_hook+0x18d/0x1b0 [ 495.613600][ T8808] get_page_from_freelist+0x322e/0x33b0 [ 495.619147][ T8808] __alloc_pages+0x28d/0x770 [ 495.623735][ T8808] alloc_slab_page+0x6a/0x150 [ 495.628415][ T8808] new_slab+0x84/0x2d0 [ 495.632490][ T8808] ___slab_alloc+0xc20/0x1270 [ 495.637170][ T8808] __kmem_cache_alloc_node+0x19f/0x260 [ 495.642630][ T8808] __kmalloc+0xa1/0x230 [ 495.646786][ T8808] load_elf_binary+0x2ec/0x2720 [ 495.651642][ T8808] bprm_execve+0x96a/0x18a0 [ 495.656145][ T8808] do_execveat_common+0x580/0x720 [ 495.661199][ T8808] __x64_sys_execve+0x8e/0xa0 [ 495.665877][ T8808] do_syscall_64+0x3b/0xb0 [ 495.670302][ T8808] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 495.676288][ T8808] page last free stack trace: [ 495.680951][ T8808] free_unref_page_prepare+0xf63/0x1120 [ 495.686496][ T8808] free_unref_page+0x33/0x3e0 [ 495.691170][ T8808] qlist_free_all+0x76/0xe0 [ 495.695702][ T8808] kasan_quarantine_reduce+0x156/0x170 [ 495.701163][ T8808] __kasan_slab_alloc+0x1f/0x70 [ 495.706010][ T8808] slab_post_alloc_hook+0x52/0x3a0 [ 495.711126][ T8808] kmem_cache_alloc+0x10c/0x2d0 [ 495.716001][ T8808] getname_flags+0xb8/0x4f0 [ 495.720512][ T8808] __x64_sys_newfstatat+0x130/0x1e0 [ 495.725803][ T8808] do_syscall_64+0x3b/0xb0 [ 495.730226][ T8808] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 495.736132][ T8808] [ 495.738453][ T8808] Memory state around the buggy address: [ 495.744091][ T8808] ffff888077664f00: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 495.752164][ T8808] ffff888077664f80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 495.760277][ T8808] >ffff888077665000: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 495.768362][ T8808] ^ [ 495.776175][ T8808] ffff888077665080: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 495.784256][ T8808] ffff888077665100: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 495.792324][ T8808] ================================================================== [ 495.801073][ T8808] Kernel panic - not syncing: KASAN: panic_on_warn set ... [ 495.808397][ T8808] CPU: 1 PID: 8808 Comm: syz.0.1157 Not tainted 6.1.111-syzkaller #0 [ 495.816581][ T8808] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024 [ 495.826755][ T8808] Call Trace: [ 495.830068][ T8808] [ 495.833111][ T8808] dump_stack_lvl+0x1e3/0x2cb [ 495.837846][ T8808] ? nf_tcp_handle_invalid+0x642/0x642 [ 495.843351][ T8808] ? panic+0x764/0x764 [ 495.847452][ T8808] ? preempt_schedule_common+0xa6/0xd0 [ 495.852958][ T8808] ? vscnprintf+0x59/0x80 [ 495.857334][ T8808] panic+0x318/0x764 [ 495.861269][ T8808] ? check_panic_on_warn+0x1d/0xa0 [ 495.866414][ T8808] ? memcpy_page_flushcache+0xfc/0xfc [ 495.871907][ T8808] ? _raw_spin_unlock_irqrestore+0x128/0x130 [ 495.878008][ T8808] ? _raw_spin_unlock+0x40/0x40 [ 495.882928][ T8808] check_panic_on_warn+0x7e/0xa0 [ 495.887923][ T8808] ? ext4_xattr_set_entry+0x8ca/0x1f30 [ 495.893407][ T8808] end_report+0x66/0x110 [ 495.897670][ T8808] kasan_report+0x143/0x160 [ 495.902297][ T8808] ? ext4_xattr_set_entry+0x8ca/0x1f30 [ 495.907795][ T8808] ? ext4_xattr_set_entry+0x8ca/0x1f30 [ 495.913284][ T8808] kasan_check_range+0x27f/0x290 [ 495.918238][ T8808] ? ext4_xattr_set_entry+0x8ca/0x1f30 [ 495.923711][ T8808] memmove+0x25/0x60 [ 495.927709][ T8808] ext4_xattr_set_entry+0x8ca/0x1f30 [ 495.933023][ T8808] ? ext4_xattr_inode_lookup_create+0x1ef0/0x1ef0 [ 495.939446][ T8808] ? ext4_xattr_block_set+0x884/0x3920 [ 495.945028][ T8808] ? kmemdup+0x41/0x60 [ 495.949196][ T8808] ? memcpy+0x3c/0x60 [ 495.953181][ T8808] ext4_xattr_block_set+0xa58/0x3920 [ 495.958503][ T8808] ? __getblk_gfp+0x50/0xa20 [ 495.963103][ T8808] ? asm_sysvec_reschedule_ipi+0x16/0x20 [ 495.968746][ T8808] ? ext4_xattr_block_find+0x510/0x510 [ 495.974240][ T8808] ? ext4_xattr_block_find+0x468/0x510 [ 495.979703][ T8808] ext4_expand_extra_isize_ea+0x10d5/0x1bb0 [ 495.985614][ T8808] ? ext4_xattr_set+0x3d0/0x3d0 [ 495.990463][ T8808] ? rwsem_write_trylock+0x166/0x210 [ 495.995755][ T8808] ? clear_nonspinnable+0x60/0x60 [ 496.000788][ T8808] ? ext4_reserve_inode_write+0x2b3/0x360 [ 496.006523][ T8808] ? dquot_initialize_needed+0x128/0x320 [ 496.012167][ T8808] __ext4_expand_extra_isize+0x2f7/0x3d0 [ 496.017815][ T8808] __ext4_mark_inode_dirty+0x54f/0x920 [ 496.023311][ T8808] ? asm_sysvec_reschedule_ipi+0x16/0x20 [ 496.028981][ T8808] ? ext4_blocks_for_truncate+0x270/0x270 [ 496.034745][ T8808] ? __sanitizer_cov_trace_cmp8+0x4/0x80 [ 496.040400][ T8808] ? current_time+0x1ba/0x300 [ 496.045097][ T8808] ? atime_needs_update+0x7b0/0x7b0 [ 496.050331][ T8808] __ext4_unlink+0x6ed/0xba0 [ 496.054932][ T8808] ? __ext4_read_dirblock+0x890/0x890 [ 496.060312][ T8808] ? rwsem_write_trylock+0x166/0x210 [ 496.065696][ T8808] ? inode_permission+0xf7/0x450 [ 496.070669][ T8808] ? clear_nonspinnable+0x60/0x60 [ 496.075718][ T8808] ext4_unlink+0x1d5/0x670 [ 496.080235][ T8808] vfs_unlink+0x359/0x5f0 [ 496.084588][ T8808] do_unlinkat+0x4a5/0x820 [ 496.089022][ T8808] ? fsnotify_link_count+0xf0/0xf0 [ 496.094160][ T8808] __x64_sys_unlink+0x45/0x50 [ 496.098955][ T8808] do_syscall_64+0x3b/0xb0 [ 496.103387][ T8808] ? clear_bhb_loop+0x45/0xa0 [ 496.108080][ T8808] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 496.114002][ T8808] RIP: 0033:0x7fe024b7def9 [ 496.118423][ T8808] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 496.138041][ T8808] RSP: 002b:00007fe02588e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000057 [ 496.146462][ T8808] RAX: ffffffffffffffda RBX: 00007fe024d36130 RCX: 00007fe024b7def9 [ 496.154558][ T8808] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000020000180 [ 496.162577][ T8808] RBP: 00007fe024bf0b76 R08: 0000000000000000 R09: 0000000000000000 [ 496.170577][ T8808] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 496.178671][ T8808] R13: 0000000000000000 R14: 00007fe024d36130 R15: 00007ffc20aab198 [ 496.186660][ T8808] [ 496.189810][ T8808] Kernel Offset: disabled [ 496.194146][ T8808] Rebooting in 86400 seconds..