last executing test programs: 7m17.955552096s ago: executing program 1 (id=2): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000b00)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x50) r1 = socket$packet(0x11, 0x3, 0x300) r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x1, 0xf, &(0x7f00000006c0)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x8000}, {{0x18, 0x1, 0x1, 0x0, r0}}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) close(0x4) r3 = socket(0xa, 0x5, 0x0) setsockopt$SO_ATTACH_FILTER(r3, 0x1, 0x1a, 0x0, 0x0) setsockopt$sock_attach_bpf(r1, 0x1, 0x32, &(0x7f0000000040)=r2, 0x4) 7m17.687389371s ago: executing program 1 (id=10): sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={0x0, 0x44}, 0x1, 0x0, 0x0, 0x24000810}, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x1f, 0x0, 0x0, &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x38, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0) syz_emit_ethernet(0x2a, &(0x7f0000000180)=ANY=[@ANYBLOB="bbbbbbbbbbbb00000000000008004500001c0000000000119078ac1414aae000000100004e200008907839c171b453b681bc9ead78d509d46586a871c8353655e944f1"], 0x0) r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000000c0)={'lo\x00'}) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000940)=ANY=[], 0x44}}, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x80002, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000fe6000/0x18000)=nil, &(0x7f0000000200)=[@textreal={0x8, &(0x7f0000000000)="0f20e06635400000000f22e00f237e3e660f124bfab853058ec80f01ca0f20d86635080000000f22d80f01cad838ddeff20f58f3", 0xfffffffffffffe3c}], 0x1, 0x2, 0x0, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) 7m17.157767691s ago: executing program 1 (id=16): syz_emit_ethernet(0x3e, &(0x7f0000000240)=ANY=[@ANYBLOB="aaaa"], 0x0) syz_emit_ethernet(0x4a, &(0x7f0000000000)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaaaaaaabb86dd69000000001406fffe800080000000000000000000000039fe8000000000000000000000000000aa4e204e24", @ANYRES32=0x41424344, @ANYRES32=0x41424344, @ANYBLOB="51c2"], 0x0) sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000007880)=[{{0x0, 0x0, &(0x7f0000000740)=[{&(0x7f0000000040)="af0ac9", 0x3}], 0x1}}], 0x1, 0x4000000) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x8, 0xf, &(0x7f0000000200)=ANY=[@ANYRESDEC, @ANYRES32, @ANYBLOB="0000000000000000b702000014000000b7020000000000008500000051000000bf0900000000000055"], 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x6}, 0x94) r0 = syz_open_dev$loop(&(0x7f0000000100), 0x2, 0x2001) r1 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0) epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, &(0x7f0000000200)={0x20000000}) write$binfmt_misc(r1, &(0x7f0000000040), 0xe09) ioctl$LOOP_CONFIGURE(r0, 0x4c0a, &(0x7f00000002c0)={r1, 0x0, {0x2a00, 0x80010000, 0x0, 0x2, 0x0, 0x0, 0x0, 0xb, 0x1c, "fee8a2ab78fc979fd1e00d96072000001ea89de2b7fb0000e60080b8785d96000100", "2809e8dbe108598948224ad54afac11d875397bdb22d0000b420a1a93c5240f45f819e01177d3d458dd4992861ac00", "f4bd000000801900", [0x0, 0xffffffff9673e35d]}}) 7m17.001083155s ago: executing program 1 (id=18): openat$fuse(0xffffffffffffff9c, 0x0, 0x2, 0x0) syz_mount_image$fuse(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0) syz_mount_image$iso9660(&(0x7f0000000380), &(0x7f00000000c0)='./file0\x00', 0x204818, &(0x7f0000000480)={[{@overriderock}, {@mode={'mode', 0x3d, 0xfe}}, {@hide}, {@dmode={'dmode', 0x3d, 0xb}}, {@unhide}, {@iocharset={'iocharset', 0x3d, 'cp437'}}, {@map_off}, {@mode={'mode', 0x3d, 0x483}}]}, 0xff, 0x544, &(0x7f00000008c0)="$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") mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x109041, 0x0) mount$bind(0x0, &(0x7f0000000140)='./file0\x00', 0x0, 0x100000, 0x0) mount$bind(&(0x7f0000000180)='./file0/../file0\x00', &(0x7f0000000340)='./file0/file0\x00', 0x0, 0x81105a, 0x0) mount$bind(&(0x7f0000000880)='./file0/../file0\x00', &(0x7f0000000440)='./file0/file0\x00', 0x0, 0x1adc11, 0x0) mount$bind(&(0x7f0000000100)='./file0/../file0\x00', &(0x7f0000000080)='./file0/file0/file0\x00', 0x0, 0x887008, 0x0) r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='mountinfo\x00') read$FUSE(r0, &(0x7f0000006b40)={0x2020}, 0x2020) 7m16.73495731s ago: executing program 1 (id=20): mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0) r0 = creat(&(0x7f0000000080)='./file0/file1\x00', 0x90) write$cgroup_type(r0, &(0x7f00000009c0), 0xd4ba0ff) unlink(&(0x7f0000000100)='./file0/file1\x00') rmdir(&(0x7f0000000000)='./file0\x00') pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) write$P9_RVERSION(r2, &(0x7f0000000480)=ANY=[@ANYBLOB="1500000065ffff097b00000800395032303030"], 0x15) r3 = dup(r2) write$FUSE_BMAP(r3, &(0x7f0000000100)={0x18}, 0x18) write$FUSE_DIRENTPLUS(r3, &(0x7f0000000440)=ANY=[@ANYBLOB="b0"], 0xb0) mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000b80), 0x0, &(0x7f0000000300)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@access_any}], [{@smackfsroot={'smackfsroot', 0x3d, '*&.'}}]}}) bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) 7m16.419657036s ago: executing program 1 (id=22): mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0) pipe2$9p(&(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) write$P9_RVERSION(r1, &(0x7f0000000040)={0x15, 0x65, 0xffff, 0x1000, 0x8, '9P2000.u'}, 0x15) r2 = dup(r1) write$FUSE_BMAP(r2, &(0x7f0000000100)={0x18, 0x0, 0x0, {0x2}}, 0x18) write$FUSE_INIT(r2, &(0x7f0000000280)={0x50, 0x0, 0x0, {0x7, 0x21, 0x0, 0x0, 0xfff8, 0x4, 0x0, 0x2, 0x0, 0x0, 0x20, 0x4}}, 0x50) mount$9p_fd(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000004380), 0x0, &(0x7f0000000300)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[{@dfltuid}, {@dfltgid}], [], 0x6b}}) r3 = syz_open_procfs(0xffffffffffffffff, 0x0) read$FUSE(r3, &(0x7f00000029c0)={0x2020}, 0x2020) 7m16.104627352s ago: executing program 32 (id=22): mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0) pipe2$9p(&(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) write$P9_RVERSION(r1, &(0x7f0000000040)={0x15, 0x65, 0xffff, 0x1000, 0x8, '9P2000.u'}, 0x15) r2 = dup(r1) write$FUSE_BMAP(r2, &(0x7f0000000100)={0x18, 0x0, 0x0, {0x2}}, 0x18) write$FUSE_INIT(r2, &(0x7f0000000280)={0x50, 0x0, 0x0, {0x7, 0x21, 0x0, 0x0, 0xfff8, 0x4, 0x0, 0x2, 0x0, 0x0, 0x20, 0x4}}, 0x50) mount$9p_fd(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000004380), 0x0, &(0x7f0000000300)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[{@dfltuid}, {@dfltgid}], [], 0x6b}}) r3 = syz_open_procfs(0xffffffffffffffff, 0x0) read$FUSE(r3, &(0x7f00000029c0)={0x2020}, 0x2020) 20.254324774s ago: executing program 2 (id=2328): syz_mount_image$fuse(0x0, &(0x7f00000000c0)='./file0\x00', 0x48882, 0x0, 0x1, 0x0, 0x0) pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) write$P9_RVERSION(r0, &(0x7f0000000180)=ANY=[@ANYBLOB="1500000065ffff097b00000800395032303030"], 0x15) r1 = dup(r0) write$FUSE_BMAP(r1, &(0x7f0000000100)={0x18}, 0x18) write$FUSE_NOTIFY_RETRIEVE(r1, &(0x7f00000000c0)={0x14c}, 0x137) mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000b80), 0x200000, 0x0) chdir(&(0x7f0000000080)='./file0\x00') mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0) mount$overlay(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000000), 0x10000, 0x0) 19.850345662s ago: executing program 2 (id=2331): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000006c5985000000"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x18) r1 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0) ioctl$UI_DEV_SETUP(r1, 0x405c5503, 0x0) ioctl$UI_DEV_CREATE(r1, 0x5501) r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="180500000000c800000000004b64ffec850000007d000000850000002a00000095"], &(0x7f0000000480)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r2}, 0x10) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r3 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000240)={0xffffffffffffffff}) connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e) bpf$MAP_CREATE(0x0, 0x0, 0x48) syz_mount_image$ext4(0x0, &(0x7f0000000140)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000000)) openat(0xffffffffffffff9c, &(0x7f0000000080)='./file2\x00', 0x101042, 0x40) symlinkat(&(0x7f0000000000)='.\x00', 0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00') syz_mount_image$fuse(0x0, &(0x7f00000000c0)='./bus\x00', 0x3000009, 0x0, 0x1, 0x0, 0x0) linkat(0xffffffffffffff9c, &(0x7f00000006c0)='./file2\x00', 0xffffffffffffff9c, &(0x7f0000000700)='./file7\x00', 0x0) mount$overlay(0x0, &(0x7f0000000340)='./bus\x00', &(0x7f0000000b80), 0x200008, &(0x7f0000000380)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file1'}}, {@upperdir={'upperdir', 0x3d, './file0'}}, {@index_on}, {@metacopy_on}]}) syz_mount_image$fuse(&(0x7f00000001c0), &(0x7f0000000240)='./bus\x00', 0x322020, &(0x7f0000000240)=ANY=[], 0x1, 0x0, 0x0) renameat2(0xffffffffffffff9c, &(0x7f0000000780)='./file7\x00', 0xffffffffffffff9c, &(0x7f00000007c0)='./file1\x00', 0x0) 18.302219762s ago: executing program 2 (id=2333): r0 = socket$inet6_tcp(0xa, 0x1, 0x0) mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0) syz_mount_image$fuse(0x0, &(0x7f00000000c0)='./bus\x00', 0x3000009, 0x0, 0x1, 0x0, 0x0) mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x1c0) mount$overlay(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000b80), 0x8, &(0x7f0000000200)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file0'}}]}) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r1 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r4 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000740)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48) r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xf, &(0x7f0000000340)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r4}}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000001dc0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r5}, 0x2d) sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x4000814) chdir(&(0x7f0000000000)='./file0/file1\x00') mknodat(0xffffffffffffff9c, &(0x7f0000000140)='./file4\x00', 0x11c0, 0xffffffa1) ioctl$sock_SIOCETHTOOL(r0, 0x89f1, &(0x7f0000000340)={'ip6gre0\x00', &(0x7f0000000080)=@ethtool_rxfh={0x0, 0x10, 0x3, 0x3f, 0x6, "c5873c", 0xe4}}) 12.629633503s ago: executing program 2 (id=2345): syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x21081e, &(0x7f0000000040)={[{@grpquota}, {@lazytime}, {@minixdf}]}, 0x1, 0x4fa, &(0x7f00000005c0)="$eJzs3c9vG1kdAPCvnThx0uwmu+wBEOyW3YWCqjqJuxut9gDLCSFUCdEjSG1I3CiKHUexU5rQQ3rmikQlTnDkD+DcE3cuCG5cygGJHxGoQeLg1YwnqZvaTdQkdhR/PtJo3ps39fe9pvNe/U3iF8DQuhoRuxExFhF3I2I6u57LjvisfST3Pdt7uLS/93ApF63W7X/l0vbkWnT8mcSV7DWLEfGj70X8NPdy3Mb2ztpitVrZzOqzzdrGbGN758ZqbXGlslJZL5cX5hfmPrn5cfnMxvpebSwrffXpH3e/9fOkW1PZlc5xnKX20AuHcRKjEfGD8wg2ACPZeMYG3RFeSz4i3o6I99PnfzpG0q8mAHCZtVrT0ZrurAMAl10+zYHl8qUsFzAV+Xyp1M7hvROT+Wq90bx+r761vtzOlc1EIX9vtVqZy3KFM1HIJfX5tPy8Xj5SvxkRb0XEL8cn0nppqV5dHuR/fABgiF05sv7/d7y9/gMAl1xx0B0AAPrO+g8Aw8f6DwDDx/oPAMOnvf5PDLobAEAfef8PAMPH+g8AQ+WHt24lR2s/+/zr5fvbW2v1+zeWK421Um1rqbRU39wordTrK+ln9tSOe71qvb4x/1FsPZj59kajOdvY3rlTq2+tN++kn+t9p1JI79rtw8gAgF7eeu/JX3LJivzpRHpEx14OhYH2DDhv+UF3ABiYkUF3ABgYu33B8DrFe3zpAbgkumzR+4Jit18QarVarfPrEnDOrn1J/h+GVUf+308Bw5CR/4fhJf8Pw6vVyp10z/846Y0AwMUmxw/0+P7/29n5d9k3B36yfPSOx+fZKwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAALjYDvb/LWV7gU9FPl8qRbwRETNRyN1brVbmIuLNiPjzeGE8qc8PuM8AwGnl/57L9v+6Nv3h1AtN7145LI5FxM9+fftXDxabzc0/RYzl/j1+cL35OLte7n/vAYDjHazT6bnjjfyzvYdLB0c/+/OP70ZEsR1/f28s9g/jj8Zoei5GISIm/5PL6m25jtzFaew+iogvdht/LqbSHEh759Oj8ZPYb/Q1fv6F+Pm0rX1O/i6+cAZ9gWHzJJl/Puv2/OXjanru/vwX0xnq9LL5L3mppf10Dnwe/2D+G+kx/109aYyP/vD9dmni5bZHEV8ejTiIvd8x/xzEz/WI/+EJ4//1K+++36ut9ZuIa9E9fmes2WZtY7axvXNjtba4UlmprJfLC/MLc5/c/Lg8m+aoZ3uvBv/89PqbvdqS8U/2iF88ZvxfP+H4f/v/uz/+2ivif/ODbvHz8c4r4idr4jdOGH9x8vfFXm1J/OUe4z/u63/9hPGf/m3npW3DAYDBaWzvrC1Wq5VNBYWLX0j+yV6AbnQtfKdfscaie9MvPmg/00eaWq3XitVrxjiLrBtwERw+9BHxv0F3BgAAAAAAAAAAAAAA6Kofv7E06DECAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABweX0eAAD//19xzyM=") open(&(0x7f00000000c0)='.\x00', 0x8000, 0x50) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = socket$can_raw(0x1d, 0x3, 0x1) r4 = socket$inet6_udp(0xa, 0x2, 0x0) ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000040)={'bridge0\x00', 0x0}) writev(0xffffffffffffffff, &(0x7f0000000100)=[{0x0}, {&(0x7f0000000580)="051a00000e80006558f2878f02000000", 0x10}], 0x2) sendmsg$can_raw(r3, &(0x7f0000000000)={&(0x7f0000000580)={0x1d, r5}, 0x10, &(0x7f0000000100)={0x0}, 0x2, 0x0, 0x0, 0x4904}, 0x4040005) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000680)='sched_switch\x00'}, 0x10) syz_open_dev$usbfs(&(0x7f0000000100), 0x77, 0x101301) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={0x0}, 0x18) r6 = add_key$fscrypt_v1(&(0x7f0000000040), &(0x7f0000000280)={'fscrypt:', @desc2}, &(0x7f00000000c0)={0x0, "f1a1173fb9462d3589e67197f90be6e423ceb0ab4912f9f6a31854ec98e950cfed21fcad7ff0fbcb566a0982f8938caa52dd8d39af14c31ed56ad59300"}, 0x48, 0xffffffffffffffff) keyctl$KEYCTL_MOVE(0x4, r6, r6, 0x0, 0x0) r7 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/power/resume', 0x169a82, 0x109) bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0b00000007000000080000000800000005"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f0000000480)={0x1e, 0x0, 0x0, &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) sendfile(r7, r7, 0x0, 0xb) 10.031457584s ago: executing program 3 (id=2357): syz_mount_image$fuse(0x0, &(0x7f00000000c0)='./file0\x00', 0x48882, 0x0, 0x1, 0x0, 0x0) pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) write$P9_RVERSION(r1, &(0x7f0000000180)=ANY=[@ANYBLOB="1500000065ffff097b00000800395032303030"], 0x15) r2 = dup(r1) write$FUSE_BMAP(r2, &(0x7f0000000100)={0x18}, 0x18) write$FUSE_NOTIFY_RETRIEVE(r2, &(0x7f00000000c0)={0x14c}, 0x137) mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000b80), 0x200000, &(0x7f0000000700)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r2}}) chdir(&(0x7f0000000080)='./file0\x00') mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0) mount$overlay(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000000), 0x10000, 0x0) 10.008027784s ago: executing program 5 (id=2358): r0 = socket$inet_udp(0x2, 0x2, 0x0) sendto$inet(r0, &(0x7f0000000080)='\x00\x00', 0xfdef, 0x8080, &(0x7f00000000c0)={0x2, 0x4e20, @empty}, 0x10) setsockopt$inet_int(r0, 0x0, 0xb, &(0x7f0000000000)=0x8, 0x4) sendmmsg$inet(r0, &(0x7f0000002c40)=[{{0x0, 0x0, &(0x7f0000000500)=[{&(0x7f0000000240)="a4e80a0f0cb7221a55fa11a7774edce647d4ce55e54a4a1f702e2529442db1df2bb4861b7a046daebd2e285783bba51cbb5a0b440a367a481dd299e22e6166500a3ef315b39217084c", 0x49}, {&(0x7f0000000380)="9a9dc1421462c27098d2444c3e2eeff649e942f43c9df768395a66284830aeefb11a79fb155fad2c55f808010cd0f04899e97059a0642a124686f461bc65c3597eea51a8ac832ad81639b5bc123c84eedaaa62290deae53b961d528544bc6cdd9770f12575358e22989a93ade7b6d659e90f6516de53674df3a68959be5018b5c30c7b85ecde35149d25ddef2e3aa97581915a6cf84416a1db90c18a8f3102e7bf585a3cb6615ff3d715e2d42943428e6ab0f690ff33fb73432b", 0xba}, {&(0x7f00000001c0)="11d754ff8c", 0x5}, {&(0x7f00000007c0)="39e4002f666948eb7a4c25bcc1bf120531dacc287df0a7956bf34adfd0bd0370dc5fb47800f1b9f3b8c48bf7ff5d9af8d201782eef205a5caff7cad3c3b44b383700e5cdc1751add33d0ae69491bafceaa6dc7fa997720c6e7f638d828a86ab68909264b5e117b25d1623c179cf55be2ad5d7a82cec8e8cc11584d8c11c841d9206afdbc6a6bbff6c97b9e082eba70c0c09650", 0x93}, {&(0x7f0000000580)="3daea5b8894265737bd53a6ec5c93e011772dd5f39ebbc43d6a81d511d1a8261fe08b75b67e9410faa7025396bf564a191051578cb83e66b81d97d066173968254227aa7", 0x44}], 0x5}}], 0x1, 0x40000) 8.846785087s ago: executing program 3 (id=2360): bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x11, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32, @ANYBLOB="0000000004000000b705000008000000850000006a00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000040)=ANY=[], 0x48) bpf$PROG_LOAD(0x5, &(0x7f0000001440)={0x1f, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000000000000000000000000000b70800000c000000638af8ff00000000b5080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018240000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x11, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0xc, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000440)={r1, 0xfffff000, 0xe, 0x0, &(0x7f0000000300)="61df712bc884fed5722780b605a7", 0x0, 0x7fff, 0x7000000, 0x0, 0x0, 0x0, 0x0}, 0x50) 8.431483426s ago: executing program 5 (id=2361): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000006c5985000000"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x18) r1 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0) ioctl$UI_DEV_SETUP(r1, 0x405c5503, 0x0) ioctl$UI_DEV_CREATE(r1, 0x5501) r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="180500000000c800000000004b64ffec850000007d000000850000002a00000095"], &(0x7f0000000480)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r2}, 0x10) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r3 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}) sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0) bpf$MAP_CREATE(0x0, 0x0, 0x48) syz_mount_image$ext4(0x0, &(0x7f0000000140)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000000)) openat(0xffffffffffffff9c, &(0x7f0000000080)='./file2\x00', 0x101042, 0x40) symlinkat(&(0x7f0000000000)='.\x00', 0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00') syz_mount_image$fuse(0x0, &(0x7f00000000c0)='./bus\x00', 0x3000009, 0x0, 0x1, 0x0, 0x0) linkat(0xffffffffffffff9c, &(0x7f00000006c0)='./file2\x00', 0xffffffffffffff9c, &(0x7f0000000700)='./file7\x00', 0x0) mount$overlay(0x0, &(0x7f0000000340)='./bus\x00', &(0x7f0000000b80), 0x200008, &(0x7f0000000380)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file1'}}, {@upperdir={'upperdir', 0x3d, './file0'}}, {@index_on}, {@metacopy_on}]}) syz_mount_image$fuse(&(0x7f00000001c0), &(0x7f0000000240)='./bus\x00', 0x322020, &(0x7f0000000240)=ANY=[], 0x1, 0x0, 0x0) renameat2(0xffffffffffffff9c, &(0x7f0000000780)='./file7\x00', 0xffffffffffffff9c, &(0x7f00000007c0)='./file1\x00', 0x0) 7.787431268s ago: executing program 4 (id=2362): bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[], 0x0}, 0x94) bpf$MAP_CREATE(0x0, 0x0, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000000)={r0, 0x2000000, 0xb, 0x0, &(0x7f0000000200)="63eced8e46dc3f0adf33c9", 0x0, 0x2f00, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) r1 = bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000840)={&(0x7f0000000800)='kfree_skb\x00', r1}, 0x10) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000004c0)={r1, 0x0, 0x0, 0x4d, &(0x7f0000000280), &(0x7f0000000180)=""/77, 0x10de57a4, 0x0, 0x5, 0x4b, &(0x7f0000000340)="0da07a478e", &(0x7f0000000380)="0f897ce00fc06a5a5baae9e412645f1bcfc9d067b3c6114e30a235512d406cf98c242e229a55a723da85fe3ec0d21121f47014fb999fdee6c397932865444eb27b49bb9bcf888a2374d565", 0x6, 0x0, 0x6}, 0x50) syz_open_dev$vcsu(&(0x7f0000000400), 0xffffffffffffffff, 0x3a401) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r2 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r3, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e21}, 0x6e) sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r5 = socket$nl_generic(0x10, 0x3, 0x10) r6 = syz_genetlink_get_family_id$devlink(&(0x7f0000000400), 0xffffffffffffffff) sendmsg$DEVLINK_CMD_RATE_GET(r5, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000080)={0x30, r6, 0x301, 0x0, 0x0, {0x34}, [@handle=@pci={{0x8}, {0x11}}]}, 0x30}}, 0x0) 7.66745544s ago: executing program 3 (id=2364): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x7, 0x4, 0x180, 0x557, 0x28}, 0x50) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f00000000c0)=ANY=[@ANYRES32=r0, @ANYBLOB="0000000000000000b703000000050000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='mm_page_alloc\x00', r1}, 0x18) syz_clone(0x40000000, 0x0, 0x0, 0x0, 0x0, 0x0) syz_io_uring_setup(0x94e, &(0x7f00000016c0)={0x0, 0x0, 0x400, 0xfffffffe}, &(0x7f00000003c0), &(0x7f0000000040)) 6.700973469s ago: executing program 5 (id=2365): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000004080)=ANY=[@ANYBLOB="02000000040000000400000022bf00000004"], 0x48) mmap(&(0x7f0000fa2000/0x4000)=nil, 0x4000, 0x18, 0x82011, r0, 0x0) 6.516437583s ago: executing program 4 (id=2366): syz_mount_image$ext4(&(0x7f00000001c0)='ext4\x00', &(0x7f0000001000)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, &(0x7f00000004c0), 0xfe, 0x269, &(0x7f0000000200)="$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") r0 = syz_open_dev$tty1(0xc, 0x4, 0x2) ioctl$VT_GETMODE(r0, 0x5601, 0xfffffffffffffffe) bpf$BPF_GET_PROG_INFO(0xf, 0x0, 0x0) syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file1\x00', 0x0, &(0x7f0000000b40)={[{@user_xattr}, {@resgid}, {@barrier_val={'barrier', 0x3d, 0xb}}]}, 0x1, 0x4a3, &(0x7f0000000580)="$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") syz_mount_image$exfat(0x0, &(0x7f0000000100)='./bus\x00', 0x0, 0x0, 0xfc, 0x0, &(0x7f0000000100)) chdir(&(0x7f00000003c0)='./bus\x00') mkdir(&(0x7f0000000000)='./file0\x00', 0x40) prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000280)=0x8) r1 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f0000000180)=@abs, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="19000000040000000400000008"], 0x48) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00'}, 0x10) bpf$PROG_LOAD(0x5, 0x0, 0x0) syz_mount_image$fuse(0x0, &(0x7f0000001040)='./file2\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount$overlay(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f0000000140)={[{@workdir={'workdir', 0x3d, './file0'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file2'}}], [], 0x2c}) 6.094807201s ago: executing program 5 (id=2367): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x1c1341, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2}) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b70800000d0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000740)=ANY=[@ANYBLOB="0b00000005000000000400000900000001"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b708000008"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_skb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f00000004c0)={r1, &(0x7f0000000340), &(0x7f00000005c0)=""/155}, 0x20) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xc, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r1], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r2}, 0x10) write$cgroup_subtree(r0, 0x0, 0x280) 6.093937181s ago: executing program 2 (id=2368): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x181d82, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000880)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020732500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000008500000010000000850000000e00000095"], &(0x7f0000000480)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xf, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f00000005c0)='sys_enter\x00', r1}, 0x10) mmap(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1000000, 0x4010, r0, 0x944f7000) syz_open_procfs(0x0, &(0x7f00000005c0)='smaps_rollup\x00') r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="19000000040000000400000008"], 0x48) r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000001500000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x26, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10) prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x5c399000) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0) process_vm_readv(0x0, &(0x7f0000000040), 0x0, &(0x7f0000000900)=[{0x0}, {0x0}, {0x0}], 0x3, 0x0) r6 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$IPT_SO_SET_REPLACE(r6, 0x0, 0x40, &(0x7f00000014c0)=@nat={'nat\x00', 0x62, 0x5, 0x430, 0x398, 0x2a0, 0xffffffff, 0xe0, 0x188, 0x398, 0x398, 0xffffffff, 0x398, 0x398, 0x5, 0x0, {[{{@ip={@multicast2, @initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x0, 'veth0_to_bond\x00', 'wg1\x00'}, 0x0, 0xa8, 0xe0, 0x0, {0x22e}, [@common=@unspec=@statistic={{0x38}}]}, @MASQUERADE={0x38, 'MASQUERADE\x00', 0x0, {0x1, {0x0, @multicast1, @remote, @icmp_id, @icmp_id}}}}, {{@uncond, 0x0, 0x70, 0xa8}, @REDIRECT={0x38, 'REDIRECT\x00', 0x0, {0x1, {0x0, @multicast1, @empty, @gre_key, @icmp_id}}}}, {{@ip={@broadcast, @multicast1, 0x0, 0x0, 'veth1_to_hsr\x00', 'ipvlan0\x00'}, 0x0, 0xe0, 0x118, 0x0, {}, [@common=@socket0={{0x20}}, @common=@osf={{0x50}, {'syz0\x00'}}]}, @DNAT0={0x38, 'DNAT\x00', 0x0, {0x1, {0x0, @private, @multicast2, @gre_key}}}}, {{@ip={@remote, @empty, 0x0, 0x0, 'veth1_to_batadv\x00', 'pim6reg\x00', {0xff}}, 0x0, 0xc0, 0xf8, 0x0, {}, [@common=@ttl={{0x28}}, @common=@inet=@tcpmss={{0x28}, {0xf}}]}, @NETMAP={0x38, 'NETMAP\x00', 0x0, {0x1, {0x16, @remote, @broadcast, @icmp_id}}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x490) 6.046462412s ago: executing program 3 (id=2369): prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]}) dup2(0xffffffffffffffff, 0xffffffffffffffff) r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000000000f7850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x10) setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x1, 0x21, 0x0, 0x0) time(0x0) 5.355515396s ago: executing program 0 (id=2370): syz_mount_image$fuse(0x0, &(0x7f00000000c0)='./file0\x00', 0x48882, 0x0, 0x1, 0x0, 0x0) pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) write$P9_RVERSION(r1, &(0x7f0000000180)=ANY=[@ANYBLOB="1500000065ffff097b00000800395032303030"], 0x15) r2 = dup(r1) write$FUSE_BMAP(r2, &(0x7f0000000100)={0x18}, 0x18) write$FUSE_NOTIFY_RETRIEVE(r2, &(0x7f00000000c0)={0x14c}, 0x137) mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000b80), 0x200000, &(0x7f0000000700)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r2}}) chdir(&(0x7f0000000080)='./file0\x00') mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0) mount$overlay(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000000), 0x10000, 0x0) 5.248960988s ago: executing program 0 (id=2371): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x181d82, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000880)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020732500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000008500000010000000850000000e00000095"], &(0x7f0000000480)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xf, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f00000005c0)='sys_enter\x00', r1}, 0x10) mmap(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1000000, 0x4010, r0, 0x944f7000) syz_open_procfs(0x0, &(0x7f00000005c0)='smaps_rollup\x00') r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="19000000040000000400000008"], 0x48) r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000001500000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x26, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10) prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r4 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r4, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x5c399000) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={0xffffffffffffffff}) connect$unix(r5, &(0x7f000057eff8)=@abs, 0x6e) recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0) socket$nl_generic(0x10, 0x3, 0x10) mkdirat(0xffffffffffffff9c, 0x0, 0x0) mount$overlay(0x0, &(0x7f0000000240)='./bus\x00', 0x0, 0x0, &(0x7f0000000400)) process_vm_readv(0x0, &(0x7f0000000040), 0x0, &(0x7f0000000900)=[{0x0}, {0x0}, {0x0}], 0x3, 0x0) write(0xffffffffffffffff, 0x0, 0x0) timer_create(0x9, 0x0, &(0x7f0000bbdffc)) socket$inet_udp(0x2, 0x2, 0x0) r6 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x2) 5.204632669s ago: executing program 4 (id=2372): mknodat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x1, 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18060000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000003000000b703000000000000850000007300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000000)='kmem_cache_free\x00', r1}, 0x18) mount$fuse(0x0, &(0x7f0000002080)='./file0\x00', &(0x7f00000020c0), 0x0, &(0x7f0000000380)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000060000,user_id=', @ANYRESDEC=r2, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) llistxattr(&(0x7f0000000080)='./file0\x00', 0x0, 0x14) 5.003400942s ago: executing program 3 (id=2373): socket$nl_xfrm(0x10, 0x3, 0x6) prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setaffinity(0x0, 0x1, &(0x7f00000002c0)=0x2) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffe000) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f00000004c0)=@abs={0x0, 0x0, 0x4e21}, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0) r3 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004", @ANYRES32=0x0], 0x48) r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7020000140000e5b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='sched_switch\x00', r4}, 0x10) socket$nl_generic(0x10, 0x3, 0x10) syz_mount_image$vfat(&(0x7f0000000180), &(0x7f0000001240)='./file2\x00', 0x410, &(0x7f0000000b00)=ANY=[@ANYBLOB="7379735f696d6d757461626c652c666d61736b3d30313737373737373737373737373737373737373737332c73686f72746e616d653d6c6f7765722c636865636b3d7374726963742c2c756e695f786c6174653d302c726f6469722c726f6469722c73686f72746e616d653d6c6f7765722c73686f72746e616d653d6c6f7765722c6e6f6e756d7461696c3d302c756e695f786c6174653d312c756e695f786c6174653d312c6572726f72733d636f6e74696e75652c74696d655f6f66667365743d3078303030303030303030303030303465302c757466383d302c0077b5b28056fc4549d277ed7fab6b0be29df17f888ccab55cccc917ad315c8ea56f5a89c104f92d058b92f5881e69e06002f5914c03fefbeb09121733eaf5ded73df976fbd4cfcb8b70b0bf44da1b46bc3935431d5e60a641f9e4ebbf71c77fc9a810ce726b8c6d6295a5f2e2b069b95ba8ecce52ded99b82923228c37d5e1ec11cdbcabb8a89cbf2cf2771d69e3cf0e6760094145e542e426bceaab9b2cf261046247bce0565db3ac5888b74efd48bc9f455e60f49496ca8137aba85fe39756814fda1f0624b33a2025792a477ccfff09befb1d0cf1599d272628028b9786e1fbfb3d637c2561421488c9d0000000094bf13ac582f6b67de0cad933631794271b2259fe5d73a74ad7da615c31505c7c0c168052d38e5b64c4bb7d0599e5dcf0000000000000000000000000000002790cf17418aa278cfc0c9d1c81c63e58b877706a4b7eed8a5aff253298db2939adc0efdab4745ab0e09ef8beaaf04e5374c2e7e4672e47fe5a25502919954242f8d779d84091f20646210edf871d3f20ad66fcf4b816323b8abb307381d4ada887dcc71e35f364baa1b93fd5ee36c02aa4628511442992ced893ab946472440b53fc08cc41403e167b1f2605e04d5f0c16ed49969b59d650d88642b10c7893fe9b664421a40f4822ffcc284dfe9aea76e4a04293c970f2dae776decf07b085e16511b0bd365b0f86c7fcd8df00a87f4dbbf8e623667e3b65e4c487055a2e5cd64402a4de537bf113fc7370099e4faebe6ea9d4f155f8f5f4c5f9b205ce1bbc8c0002a19457e05a210d9e9820bc7f318ebfdfcc22f83150503b2", @ANYBLOB="d23c17f6ec95b3b820b1161ffa233394c6007d8285b061be4d1d842e4a63ec77a08347691f71d1e4132f09405a5b81867a01cf3df73c16fd31622d37a921bdbff76ef2fed6da828ab4e0f87928c18c0380050249fb6ab8e225d1"], 0xf, 0x2a0, &(0x7f00000001c0)="$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") 5.001522912s ago: executing program 5 (id=2383): syz_mount_image$ext4(&(0x7f00000001c0)='ext4\x00', &(0x7f0000001000)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, &(0x7f00000004c0), 0xfe, 0x269, &(0x7f0000000200)="$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") r0 = syz_open_dev$tty1(0xc, 0x4, 0x2) ioctl$VT_GETMODE(r0, 0x5601, 0xfffffffffffffffe) bpf$BPF_GET_PROG_INFO(0xf, 0x0, 0x0) syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file1\x00', 0x0, &(0x7f0000000b40)={[{@user_xattr}, {@resgid}, {@barrier_val={'barrier', 0x3d, 0xb}}]}, 0x1, 0x4a3, &(0x7f0000000580)="$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") syz_mount_image$exfat(0x0, &(0x7f0000000100)='./bus\x00', 0x0, 0x0, 0xfc, 0x0, &(0x7f0000000100)) chdir(&(0x7f00000003c0)='./bus\x00') mkdir(&(0x7f0000000000)='./file0\x00', 0x40) prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000280)=0x8) getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeea, 0x8031, 0xffffffffffffffff, 0x28f43000) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="19000000040000000400000008"], 0x48) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00'}, 0x10) bpf$PROG_LOAD(0x5, 0x0, 0x0) syz_mount_image$fuse(0x0, &(0x7f0000001040)='./file2\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount$overlay(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f0000000140)={[{@workdir={'workdir', 0x3d, './file0'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file2'}}], [], 0x2c}) 4.176142609s ago: executing program 4 (id=2374): bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x11, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32, @ANYBLOB="0000000004000000b705000008000000850000006a00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000040)=ANY=[@ANYBLOB], 0x48) bpf$PROG_LOAD(0x5, &(0x7f0000001440)={0x1f, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000000000000000000000000000b70800000c000000638af8ff00000000b5080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018240000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x11, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0xc, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000440)={r1, 0xfffff000, 0xe, 0x0, &(0x7f0000000300)="61df712bc884fed5722780b605a7", 0x0, 0x7fff, 0x7000000, 0x0, 0x0, 0x0, 0x0}, 0x50) 2.868265134s ago: executing program 3 (id=2375): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000006c5985000000"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x18) r1 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0) ioctl$UI_DEV_SETUP(r1, 0x405c5503, 0x0) ioctl$UI_DEV_CREATE(r1, 0x5501) r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="180500000000c800000000004b64ffec850000007d000000850000002a00000095"], &(0x7f0000000480)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r2}, 0x10) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r3 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}) sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0) bpf$MAP_CREATE(0x0, 0x0, 0x48) syz_mount_image$ext4(0x0, &(0x7f0000000140)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000000)) openat(0xffffffffffffff9c, &(0x7f0000000080)='./file2\x00', 0x101042, 0x40) symlinkat(&(0x7f0000000000)='.\x00', 0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00') syz_mount_image$fuse(0x0, &(0x7f00000000c0)='./bus\x00', 0x3000009, 0x0, 0x1, 0x0, 0x0) linkat(0xffffffffffffff9c, &(0x7f00000006c0)='./file2\x00', 0xffffffffffffff9c, &(0x7f0000000700)='./file7\x00', 0x0) mount$overlay(0x0, &(0x7f0000000340)='./bus\x00', &(0x7f0000000b80), 0x200008, &(0x7f0000000380)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file1'}}, {@upperdir={'upperdir', 0x3d, './file0'}}, {@index_on}, {@metacopy_on}]}) syz_mount_image$fuse(&(0x7f00000001c0), &(0x7f0000000240)='./bus\x00', 0x322020, &(0x7f0000000240)=ANY=[], 0x1, 0x0, 0x0) renameat2(0xffffffffffffff9c, &(0x7f0000000780)='./file7\x00', 0xffffffffffffff9c, &(0x7f00000007c0)='./file1\x00', 0x0) 2.58741456s ago: executing program 0 (id=2376): bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[], 0x0}, 0x94) bpf$MAP_CREATE(0x0, 0x0, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000000)={r0, 0x2000000, 0xb, 0x0, &(0x7f0000000200)="63eced8e46dc3f0adf33c9", 0x0, 0x2f00, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) r1 = bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000840)={&(0x7f0000000800)='kfree_skb\x00', r1}, 0x10) syz_open_dev$vcsu(&(0x7f0000000400), 0xffffffffffffffff, 0x3a401) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r2 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r3, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e21}, 0x6e) sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r5 = socket$nl_generic(0x10, 0x3, 0x10) r6 = syz_genetlink_get_family_id$devlink(&(0x7f0000000400), 0xffffffffffffffff) sendmsg$DEVLINK_CMD_RATE_GET(r5, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000080)={0x30, r6, 0x301, 0x0, 0x0, {0x34}, [@handle=@pci={{0x8}, {0x11}}]}, 0x30}}, 0x0) 2.485949752s ago: executing program 4 (id=2377): connect$inet(0xffffffffffffffff, 0x0, 0x0) ftruncate(0xffffffffffffffff, 0x2000009) syz_mount_image$vfat(&(0x7f0000000400), &(0x7f0000000280)='./file1\x00', 0x2008000, &(0x7f0000000000)=ANY=[@ANYBLOB="6e6f6e756d7461696c2c6e66732c73686f72746e616d653d6c6f7765722c757466383d312c64656275672c696f636861727365743d757466382c73686f72746e616d653d6d697865642c757466383d312c004845160000000000"], 0x1, 0x2bc, &(0x7f0000000440)="$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") open(&(0x7f0000000040)='./file1\x00', 0x80242, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r2 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48) r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0xf, &(0x7f0000000200)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000001dc0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x2d) r4 = open(&(0x7f00000000c0)='.\x00', 0x0, 0x0) getdents(r4, &(0x7f0000001fc0)=""/184, 0xb8) 1.510516821s ago: executing program 0 (id=2378): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x4, &(0x7f00000000c0)=ANY=[@ANYBLOB="18000000000700000000000000000000850000002300000095"], &(0x7f00000001c0)='GPL\x00', 0x4, 0x8f, &(0x7f00000002c0)=""/143}, 0x80) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x10) r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000000080)={0x1, &(0x7f0000000b80)=[{0x6}]}, 0x10) bind$bt_hci(r1, &(0x7f0000000140)={0x1f, 0xffff, 0x2}, 0x6) r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) ioctl$sock_bt_hci(r2, 0x400448e3, 0x0) 1.291468245s ago: executing program 0 (id=2379): syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x21081e, &(0x7f0000000040)={[{@grpquota}, {@lazytime}, {@minixdf}]}, 0x1, 0x4fa, &(0x7f00000005c0)="$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") open(&(0x7f00000000c0)='.\x00', 0x8000, 0x50) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) socket$can_raw(0x1d, 0x3, 0x1) r3 = socket$inet6_udp(0xa, 0x2, 0x0) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000040)={'bridge0\x00'}) writev(0xffffffffffffffff, &(0x7f0000000100)=[{0x0}, {&(0x7f0000000580)="051a00000e80006558f2878f02000000", 0x10}], 0x2) r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000000}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000680)='sched_switch\x00', r4}, 0x10) syz_open_dev$usbfs(&(0x7f0000000100), 0x77, 0x101301) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={0x0}, 0x18) r5 = add_key$fscrypt_v1(&(0x7f0000000040), &(0x7f0000000280)={'fscrypt:', @desc2}, &(0x7f00000000c0)={0x0, "f1a1173fb9462d3589e67197f90be6e423ceb0ab4912f9f6a31854ec98e950cfed21fcad7ff0fbcb566a0982f8938caa52dd8d39af14c31ed56ad59300"}, 0x48, 0xffffffffffffffff) keyctl$KEYCTL_MOVE(0x4, r5, r5, 0x0, 0x0) r6 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/power/resume', 0x169a82, 0x109) bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0b00000007000000080000000800000005"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f0000000480)={0x1e, 0x0, 0x0, &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) sendfile(r6, r6, 0x0, 0xb) 1.016677221s ago: executing program 2 (id=2380): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000005000000850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000040)='netlink_extack\x00', r0}, 0x10) r1 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r1, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000180)=ANY=[@ANYBLOB="1b000000210001"], 0x2c}}, 0x0) 701.436057ms ago: executing program 4 (id=2381): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000006900000000000001000000940000000fad413e850000000700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000340)='kfree\x00', r0}, 0x18) syz_emit_ethernet(0x76, &(0x7f0000000040)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x1}, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x16}, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "f53a04", 0x40, 0x3a, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @mcast2, {[], @param_prob={0x2, 0x0, 0x0, 0x502, {0x0, 0x6, "508359", 0x0, 0x0, 0x0, @private1, @remote, [@hopopts={0x3a, 0x0, '\x00', [@pad1]}]}}}}}}}, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$sock_inet6_SIOCDELRT(r1, 0x890c, &(0x7f0000005fc0)={@remote, @mcast2, @mcast1, 0x4, 0x8000, 0x40, 0x400, 0x1000, 0x1cc0014}) 130.006628ms ago: executing program 5 (id=2382): syz_mount_image$fuse(0x0, &(0x7f00000000c0)='./file0\x00', 0x48882, 0x0, 0x1, 0x0, 0x0) pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) write$P9_RVERSION(r1, &(0x7f0000000180)=ANY=[@ANYBLOB="1500000065ffff097b00000800395032303030"], 0x15) r2 = dup(r1) write$FUSE_BMAP(r2, &(0x7f0000000100)={0x18}, 0x18) write$FUSE_NOTIFY_RETRIEVE(r2, &(0x7f00000000c0)={0x14c}, 0x137) mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000b80), 0x200000, &(0x7f0000000700)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[{@cache_fscache}]}}) chdir(0x0) mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0) mount$overlay(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000000), 0x10000, 0x0) 0s ago: executing program 0 (id=2384): mkdirat(0xffffffffffffff9c, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x42, 0x0) r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$TIOCL_SCROLLCONSOLE(r0, 0x541c, &(0x7f0000000040)={0xd, 0x7f}) syz_mount_image$vfat(&(0x7f00000000c0), &(0x7f0000000000)='./bus\x00', 0x2000082, &(0x7f0000000880)=ANY=[@ANYBLOB="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"], 0x25, 0x358, &(0x7f0000000480)="$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") prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x50) bpf$PROG_LOAD(0x5, 0x0, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={0x0, r1}, 0x18) fsetxattr$system_posix_acl(0xffffffffffffffff, &(0x7f0000000000)='system.posix_acl_default\x00', &(0x7f00000004c0)=ANY=[@ANYBLOB="02"], 0xfe44, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r2 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000380)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000ddffffff850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0) r5 = socket$packet(0x11, 0x2, 0x300) setsockopt$packet_int(r5, 0x107, 0x14, &(0x7f0000000000)=0x930d, 0x4) r6 = socket$can_raw(0x1d, 0x3, 0x1) ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000080)={'erspan0\x00', 0x0}) sendto$packet(r5, 0x0, 0x0, 0x0, &(0x7f0000000140)={0x11, 0x0, r7, 0x1, 0x0, 0x6, @multicast}, 0x14) setxattr$security_capability(&(0x7f0000000240)='./file0/file1\x00', &(0x7f0000000280), 0x0, 0x0, 0x0) kernel console output (not intermixed with test programs): 97][ T8287] EXT4-fs (loop5): Remounting filesystem read-only [ 241.210786][ T8287] EXT4-fs warning (device loop5): ext4_expand_extra_isize_ea:2818: Unable to expand inode 15. Delete some EAs or run e2fsck. [ 241.281895][ T8287] EXT4-fs (loop5): 1 truncate cleaned up [ 241.289135][ T8287] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback. [ 241.909738][ T8283] loop4: detected capacity change from 0 to 40427 [ 241.945360][ T8283] F2FS-fs (loop4): Unrecognized mount option "whint_mode=fs-based" or missing value [ 242.200971][ T4479] EXT4-fs (loop5): unmounting filesystem. [ 242.379671][ T8304] binfmt_misc: register: failed to install interpreter file ./file0 [ 243.014751][ T8307] loop5: detected capacity change from 0 to 1024 [ 243.161253][ T8307] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none. [ 243.173450][ T8307] ext4 filesystem being mounted at /253/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 244.398914][ T8325] loop3: detected capacity change from 0 to 1024 [ 244.449982][ T8325] EXT4-fs error (device loop3): ext4_read_block_bitmap_nowait:477: comm syz.3.1424: Invalid block bitmap block 0 in block_group 0 [ 244.467029][ T8325] Quota error (device loop3): write_blk: dquota write failed [ 244.474926][ T8325] Quota error (device loop3): qtree_write_dquot: Error -117 occurred while creating quota [ 244.486798][ T8325] EXT4-fs error (device loop3): ext4_acquire_dquot:6816: comm syz.3.1424: Failed to acquire dquot type 0 [ 244.503992][ T8325] EXT4-fs error (device loop3): ext4_free_blocks:6205: comm syz.3.1424: Freeing blocks not in datazone - block = 0, count = 4096 [ 244.535221][ T8325] EXT4-fs error (device loop3): ext4_read_inode_bitmap:140: comm syz.3.1424: Invalid inode bitmap blk 0 in block_group 0 [ 244.573203][ T8325] EXT4-fs error (device loop3) in ext4_free_inode:362: Corrupt filesystem [ 244.591498][ T8325] EXT4-fs (loop3): 1 orphan inode deleted [ 244.591799][ T4983] Quota error (device loop3): do_check_range: Getting block 0 out of range 1-8 [ 244.597359][ T8325] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 244.626817][ T4983] EXT4-fs error (device loop3): ext4_release_dquot:6852: comm kworker/u4:9: Failed to release dquot type 0 [ 244.903737][ T8293] bridge0: port 2(bridge_slave_1) entered disabled state [ 244.912212][ T8293] bridge0: port 1(bridge_slave_0) entered disabled state [ 244.929481][ T8298] device bridge_slave_1 left promiscuous mode [ 244.937104][ T8298] bridge0: port 2(bridge_slave_1) entered disabled state [ 244.958356][ T8298] device bridge_slave_0 left promiscuous mode [ 244.965295][ T8298] bridge0: port 1(bridge_slave_0) entered disabled state [ 245.088219][ T4479] EXT4-fs (loop5): unmounting filesystem. [ 245.225756][ T4278] EXT4-fs (loop3): unmounting filesystem. [ 245.362326][ T8336] overlayfs: missing 'lowerdir' [ 247.243026][ T32] usb 6-1: new high-speed USB device number 3 using dummy_hcd [ 247.311179][ T8364] loop0: detected capacity change from 0 to 40427 [ 247.336375][ T8364] F2FS-fs (loop0): Unrecognized mount option "whint_mode=fs-based" or missing value [ 247.463175][ T32] usb 6-1: Using ep0 maxpacket: 8 [ 247.471234][ T32] usb 6-1: unable to get BOS descriptor or descriptor too short [ 247.517605][ T32] usb 6-1: config 1 interface 0 altsetting 2 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 247.603095][ T32] usb 6-1: config 1 interface 0 has no altsetting 0 [ 247.617014][ T32] usb 6-1: New USB device found, idVendor=046d, idProduct=c262, bcdDevice= 0.40 [ 247.698622][ T8377] binfmt_misc: register: failed to install interpreter file ./file0 [ 248.271483][ T32] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 248.292993][ T32] usb 6-1: Product: syz [ 248.297285][ T32] usb 6-1: Manufacturer: syz [ 248.301924][ T32] usb 6-1: SerialNumber: syz [ 249.065564][ T8380] loop5: detected capacity change from 0 to 256 [ 249.186930][ T8380] FAT-fs (loop5): Directory bread(block 64) failed [ 249.203058][ T8380] FAT-fs (loop5): Directory bread(block 65) failed [ 249.220210][ T8380] FAT-fs (loop5): Directory bread(block 66) failed [ 249.227263][ T8380] FAT-fs (loop5): Directory bread(block 67) failed [ 249.251842][ T8380] FAT-fs (loop5): Directory bread(block 68) failed [ 249.283191][ T8380] FAT-fs (loop5): Directory bread(block 69) failed [ 249.290251][ T8380] FAT-fs (loop5): Directory bread(block 70) failed [ 249.313329][ T8380] FAT-fs (loop5): Directory bread(block 71) failed [ 249.344895][ T8380] FAT-fs (loop5): Directory bread(block 72) failed [ 249.365126][ T8380] FAT-fs (loop5): Directory bread(block 73) failed [ 250.522744][ T8385] loop2: detected capacity change from 0 to 512 [ 250.908305][ T8385] EXT4-fs error (device loop2): ext4_do_update_inode:5254: inode #16: comm syz.2.1440: corrupted inode contents [ 250.932051][ T8385] EXT4-fs (loop2): Remounting filesystem read-only [ 250.938810][ T8385] EXT4-fs error (device loop2): ext4_dirty_inode:6119: inode #16: comm syz.2.1440: mark_inode_dirty error [ 250.954347][ T8385] EXT4-fs (loop2): Remounting filesystem read-only [ 250.961584][ T8385] EXT4-fs error (device loop2): ext4_do_update_inode:5254: inode #16: comm syz.2.1440: corrupted inode contents [ 250.989778][ T8385] EXT4-fs (loop2): Remounting filesystem read-only [ 250.996616][ T8385] EXT4-fs error (device loop2): __ext4_ext_dirty:202: inode #16: comm syz.2.1440: mark_inode_dirty error [ 251.017839][ T8385] EXT4-fs (loop2): Remounting filesystem read-only [ 251.026228][ T8385] EXT4-fs error (device loop2): ext4_do_update_inode:5254: inode #16: comm syz.2.1440: corrupted inode contents [ 251.046678][ T8385] EXT4-fs (loop2): Remounting filesystem read-only [ 251.053636][ T8385] EXT4-fs error (device loop2) in ext4_orphan_del:305: Corrupt filesystem [ 251.073145][ T8385] EXT4-fs (loop2): Remounting filesystem read-only [ 251.079964][ T8385] EXT4-fs error (device loop2): ext4_do_update_inode:5254: inode #16: comm syz.2.1440: corrupted inode contents [ 251.111102][ T8385] EXT4-fs (loop2): Remounting filesystem read-only [ 251.118694][ T8385] EXT4-fs error (device loop2): ext4_truncate:4312: inode #16: comm syz.2.1440: mark_inode_dirty error [ 251.149248][ T8385] EXT4-fs (loop2): Remounting filesystem read-only [ 251.156332][ T8385] EXT4-fs error (device loop2) in ext4_process_orphan:347: Corrupt filesystem [ 251.173033][ T8385] EXT4-fs (loop2): Remounting filesystem read-only [ 251.184823][ T8385] EXT4-fs (loop2): 1 truncate cleaned up [ 251.190669][ T8385] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 251.200192][ T8385] ext4 filesystem being mounted at /259/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 251.314678][ T56] Quota error (device loop2): do_check_range: Getting dqdh_entries 15 out of range 0-14 [ 251.362667][ T56] EXT4-fs error (device loop2): ext4_release_dquot:6852: comm kworker/u4:4: Failed to release dquot type 1 [ 251.435190][ T56] EXT4-fs (loop2): Remounting filesystem read-only [ 251.474360][ T4275] EXT4-fs (loop2): unmounting filesystem. [ 251.694584][ T8392] overlayfs: missing 'lowerdir' [ 252.196748][ T4387] usb 5-1: new high-speed USB device number 4 using dummy_hcd [ 252.416087][ T4387] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 129, changing to 11 [ 252.428867][ T4387] usb 5-1: New USB device found, idVendor=046d, idProduct=ca03, bcdDevice= 0.00 [ 252.438492][ T4387] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 252.458262][ T4387] usb 5-1: config 0 descriptor?? [ 252.896765][ T4387] logitech 0003:046D:CA03.0009: nested delimiters [ 252.904010][ T4387] logitech 0003:046D:CA03.0009: item 0 1 2 10 parsing failed [ 252.912133][ T4387] logitech 0003:046D:CA03.0009: parse failed [ 252.918863][ T4387] logitech: probe of 0003:046D:CA03.0009 failed with error -22 [ 253.701241][ T8368] netlink: 16 bytes leftover after parsing attributes in process `syz.5.1437'. [ 253.716608][ T8368] netlink: 30 bytes leftover after parsing attributes in process `syz.5.1437'. [ 253.787720][ T22] usb 5-1: USB disconnect, device number 4 [ 253.793979][ T32] usbhid 6-1:1.0: can't add hid device: -71 [ 254.027696][ T32] usbhid: probe of 6-1:1.0 failed with error -71 [ 254.040485][ T32] usb 6-1: USB disconnect, device number 3 [ 255.029891][ T8419] loop0: detected capacity change from 0 to 1024 [ 255.345442][ T8425] device wg2 left promiscuous mode [ 255.457936][ T8432] overlayfs: missing 'lowerdir' [ 255.661123][ T8419] EXT4-fs: Ignoring removed i_version option [ 255.667489][ T8419] EXT4-fs: inline encryption not supported [ 255.684484][ T8419] EXT4-fs (loop0): Test dummy encryption mode enabled [ 255.713754][ T8419] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 255.747912][ T1274] ieee802154 phy0 wpan0: encryption failed: -22 [ 255.755230][ T1274] ieee802154 phy1 wpan1: encryption failed: -22 [ 255.901887][ T8419] fscrypt (loop0): Missing crypto API support for AES-256-XTS (API name: "xts(aes)") [ 255.996162][ T4266] EXT4-fs (loop0): unmounting filesystem. [ 258.683137][ T32] usb 3-1: new high-speed USB device number 3 using dummy_hcd [ 258.788755][ T8484] loop4: detected capacity change from 0 to 1024 [ 258.848116][ T8484] EXT4-fs: Ignoring removed i_version option [ 258.884549][ T8484] EXT4-fs: inline encryption not supported [ 258.926503][ T8484] EXT4-fs (loop4): Test dummy encryption mode enabled [ 258.976927][ T8484] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 259.079996][ T32] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 129, changing to 11 [ 259.113093][ T32] usb 3-1: New USB device found, idVendor=046d, idProduct=ca03, bcdDevice= 0.00 [ 259.122304][ T32] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 259.180914][ T32] usb 3-1: config 0 descriptor?? [ 259.406410][ T8456] loop3: detected capacity change from 0 to 40427 [ 259.439267][ T8456] F2FS-fs (loop3): Unrecognized mount option "whint_mode=fs-based" or missing value [ 259.479682][ T8484] fscrypt: AES-256-XTS using implementation "xts-aes-aesni" [ 259.957730][ T8502] binfmt_misc: register: failed to install interpreter file ./file0 [ 262.304994][ T32] logitech 0003:046D:CA03.000A: nested delimiters [ 262.311497][ T32] logitech 0003:046D:CA03.000A: item 0 1 2 10 parsing failed [ 262.334201][ T32] logitech 0003:046D:CA03.000A: parse failed [ 262.340311][ T32] logitech: probe of 0003:046D:CA03.000A failed with error -22 [ 262.361213][ T4265] EXT4-fs (loop4): unmounting filesystem. [ 262.418277][ T32] usb 3-1: USB disconnect, device number 3 [ 262.611163][ T26] audit: type=1326 audit(1759069106.907:23): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8515 comm="syz.0.1479" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fddf078eec9 code=0x7ffc0000 [ 262.692427][ T26] audit: type=1326 audit(1759069106.937:24): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8515 comm="syz.0.1479" exe="/root/syz-executor" sig=0 arch=c000003e syscall=7 compat=0 ip=0x7fddf078eec9 code=0x7ffc0000 [ 263.456715][ T8529] loop3: detected capacity change from 0 to 512 [ 263.586004][ T8529] EXT4-fs error (device loop3): ext4_do_update_inode:5254: inode #16: comm syz.3.1480: corrupted inode contents [ 263.598575][ T8529] EXT4-fs (loop3): Remounting filesystem read-only [ 263.605797][ T8529] EXT4-fs error (device loop3): ext4_dirty_inode:6119: inode #16: comm syz.3.1480: mark_inode_dirty error [ 263.619880][ T8529] EXT4-fs (loop3): Remounting filesystem read-only [ 263.626923][ T8529] EXT4-fs error (device loop3): ext4_do_update_inode:5254: inode #16: comm syz.3.1480: corrupted inode contents [ 263.642684][ T8529] EXT4-fs (loop3): Remounting filesystem read-only [ 263.649325][ T8529] EXT4-fs error (device loop3): __ext4_ext_dirty:202: inode #16: comm syz.3.1480: mark_inode_dirty error [ 263.661501][ T8529] EXT4-fs (loop3): Remounting filesystem read-only [ 263.668237][ T8529] EXT4-fs error (device loop3): ext4_do_update_inode:5254: inode #16: comm syz.3.1480: corrupted inode contents [ 263.681112][ T8529] EXT4-fs (loop3): Remounting filesystem read-only [ 263.687722][ T8529] EXT4-fs error (device loop3) in ext4_orphan_del:305: Corrupt filesystem [ 263.697158][ T8529] EXT4-fs (loop3): Remounting filesystem read-only [ 263.703795][ T8529] EXT4-fs error (device loop3): ext4_do_update_inode:5254: inode #16: comm syz.3.1480: corrupted inode contents [ 263.725535][ T8529] EXT4-fs (loop3): Remounting filesystem read-only [ 263.732125][ T8529] EXT4-fs error (device loop3): ext4_truncate:4312: inode #16: comm syz.3.1480: mark_inode_dirty error [ 263.747657][ T8529] EXT4-fs (loop3): Remounting filesystem read-only [ 263.754392][ T8529] EXT4-fs error (device loop3) in ext4_process_orphan:347: Corrupt filesystem [ 263.764294][ T8529] EXT4-fs (loop3): Remounting filesystem read-only [ 263.771298][ T8529] EXT4-fs (loop3): 1 truncate cleaned up [ 263.777364][ T8529] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 263.786477][ T8529] ext4 filesystem being mounted at /277/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 263.866373][ T7500] Quota error (device loop3): do_check_range: Getting dqdh_entries 15 out of range 0-14 [ 263.950293][ T7500] EXT4-fs error (device loop3): ext4_release_dquot:6852: comm kworker/u4:10: Failed to release dquot type 1 [ 264.012560][ T8539] loop2: detected capacity change from 0 to 512 [ 264.021462][ T8539] EXT4-fs: Ignoring removed nomblk_io_submit option [ 264.072521][ T7500] EXT4-fs (loop3): Remounting filesystem read-only [ 264.113508][ T8539] EXT4-fs (loop2): Test dummy encryption mode enabled [ 264.138217][ T8537] 9pnet_fd: Insufficient options for proto=fd [ 264.315893][ T4278] EXT4-fs (loop3): unmounting filesystem. [ 264.477027][ T8547] loop0: detected capacity change from 0 to 1024 [ 264.489174][ T8547] EXT4-fs: Ignoring removed nobh option [ 264.651684][ T8547] EXT4-fs error (device loop0): ext4_ext_check_inode:520: inode #11: comm syz.0.1486: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 32512(32512) [ 264.673356][ T8547] EXT4-fs error (device loop0): ext4_orphan_get:1405: comm syz.0.1486: couldn't read orphan inode 11 (err -117) [ 264.689076][ T8547] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 264.815220][ T8539] EXT4-fs (loop2): 1 truncate cleaned up [ 265.103161][ T8539] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 265.533131][ T22] usb 4-1: new high-speed USB device number 6 using dummy_hcd [ 265.745191][ T22] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 129, changing to 11 [ 265.764248][ T4275] EXT4-fs (loop2): unmounting filesystem. [ 265.777473][ T22] usb 4-1: New USB device found, idVendor=046d, idProduct=ca03, bcdDevice= 0.00 [ 265.827880][ T22] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 265.870163][ T22] usb 4-1: config 0 descriptor?? [ 266.312424][ T22] logitech 0003:046D:CA03.000B: nested delimiters [ 266.332271][ T22] logitech 0003:046D:CA03.000B: item 0 1 2 10 parsing failed [ 266.344409][ T22] logitech 0003:046D:CA03.000B: parse failed [ 266.363064][ T22] logitech: probe of 0003:046D:CA03.000B failed with error -22 [ 266.441632][ T4266] EXT4-fs (loop0): unmounting filesystem. [ 266.441675][ T8573] loop2: detected capacity change from 0 to 512 [ 266.515358][ T6102] usb 4-1: USB disconnect, device number 6 [ 266.598191][ T8573] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 266.623858][ T8573] ext4 filesystem being mounted at /270/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 266.857457][ T4275] EXT4-fs (loop2): unmounting filesystem. [ 266.986648][ T8582] 9pnet_fd: Insufficient options for proto=fd [ 269.380285][ T8594] overlayfs: missing 'lowerdir' [ 269.408388][ T8597] loop4: detected capacity change from 0 to 512 [ 269.420393][ T8597] EXT4-fs: Ignoring removed nomblk_io_submit option [ 269.461145][ T8597] EXT4-fs (loop4): Test dummy encryption mode enabled [ 269.469358][ T8595] loop2: detected capacity change from 0 to 512 [ 269.628441][ T8595] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 269.643218][ T8597] EXT4-fs (loop4): 1 truncate cleaned up [ 269.677746][ T8595] ext4 filesystem being mounted at /271/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 269.691796][ T8597] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 271.018157][ T8612] EXT4-fs error (device loop2): ext4_xattr_inode_iget:404: comm syz.2.1499: inode #1: comm syz.2.1499: iget: illegal inode # [ 271.039199][ T8612] EXT4-fs error (device loop2): ext4_xattr_inode_iget:409: comm syz.2.1499: error while reading EA inode 1 err=-117 [ 271.052677][ T8612] EXT4-fs error (device loop2): ext4_xattr_inode_iget:404: comm syz.2.1499: inode #1: comm syz.2.1499: iget: illegal inode # [ 271.066665][ T8612] EXT4-fs error (device loop2): ext4_xattr_inode_iget:409: comm syz.2.1499: error while reading EA inode 1 err=-117 [ 271.311691][ T4275] EXT4-fs (loop2): unmounting filesystem. [ 271.320683][ T8620] loop0: detected capacity change from 0 to 128 [ 271.410688][ T4265] EXT4-fs (loop4): unmounting filesystem. [ 272.733178][ T4256] usb 5-1: new high-speed USB device number 5 using dummy_hcd [ 273.723545][ T4256] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 129, changing to 11 [ 273.743568][ T4256] usb 5-1: New USB device found, idVendor=046d, idProduct=ca03, bcdDevice= 0.00 [ 273.769113][ T4256] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 273.793948][ T4256] usb 5-1: config 0 descriptor?? [ 273.943970][ T8647] overlayfs: missing 'lowerdir' [ 274.212002][ T4256] logitech 0003:046D:CA03.000C: nested delimiters [ 274.229560][ T4256] logitech 0003:046D:CA03.000C: item 0 1 2 10 parsing failed [ 274.250345][ T4256] logitech 0003:046D:CA03.000C: parse failed [ 275.091259][ T4256] logitech: probe of 0003:046D:CA03.000C failed with error -22 [ 275.112632][ T4256] usb 5-1: USB disconnect, device number 5 [ 275.130582][ T8658] loop0: detected capacity change from 0 to 512 [ 275.175816][ T8658] EXT4-fs: Ignoring removed nomblk_io_submit option [ 275.204328][ T8658] EXT4-fs (loop0): Test dummy encryption mode enabled [ 275.260381][ T8658] EXT4-fs (loop0): 1 truncate cleaned up [ 275.266254][ T8658] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 275.398073][ T4266] EXT4-fs (loop0): unmounting filesystem. [ 275.841168][ T8678] overlayfs: missing 'lowerdir' [ 276.803103][ T4320] usb 1-1: new high-speed USB device number 2 using dummy_hcd [ 276.841751][ T8716] 9pnet_fd: Insufficient options for proto=fd [ 276.855039][ T8716] overlayfs: missing 'lowerdir' [ 277.005381][ T4320] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 129, changing to 11 [ 277.033019][ T4320] usb 1-1: New USB device found, idVendor=046d, idProduct=ca03, bcdDevice= 0.00 [ 277.042138][ T4320] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 277.093695][ T4320] usb 1-1: config 0 descriptor?? [ 277.348917][ T8726] syz.2.1548[8726] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 277.349029][ T8726] syz.2.1548[8726] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 277.515528][ T4320] logitech 0003:046D:CA03.000D: nested delimiters [ 277.603080][ T4320] logitech 0003:046D:CA03.000D: item 0 1 2 10 parsing failed [ 277.611222][ T4320] logitech 0003:046D:CA03.000D: parse failed [ 277.655142][ T4320] logitech: probe of 0003:046D:CA03.000D failed with error -22 [ 277.840136][ T14] usb 1-1: USB disconnect, device number 2 [ 277.924839][ T8739] loop2: detected capacity change from 0 to 1024 [ 277.932170][ T8739] EXT4-fs: Ignoring removed nobh option [ 278.093260][ T8743] loop5: detected capacity change from 0 to 1024 [ 278.105136][ T8743] EXT4-fs: Ignoring removed nobh option [ 278.202627][ T8743] EXT4-fs error (device loop5): ext4_ext_check_inode:520: inode #11: comm syz.5.1554: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 32512(32512) [ 278.228046][ T8743] EXT4-fs error (device loop5): ext4_orphan_get:1405: comm syz.5.1554: couldn't read orphan inode 11 (err -117) [ 278.247930][ T8743] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback. [ 279.013218][ T8739] EXT4-fs: inline encryption not supported [ 279.274345][ T8739] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 280.163937][ T4479] EXT4-fs (loop5): unmounting filesystem. [ 280.214895][ T8739] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 281.507285][ T8765] loop4: detected capacity change from 0 to 4096 [ 282.898613][ T8765] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 283.795348][ T4275] EXT4-fs (loop2): unmounting filesystem. [ 284.378919][ T4265] EXT4-fs (loop4): unmounting filesystem. [ 286.194083][ T8791] overlayfs: missing 'lowerdir' [ 287.819108][ T8813] loop4: detected capacity change from 0 to 40427 [ 288.126724][ T8813] F2FS-fs (loop4): Found nat_bits in checkpoint [ 288.332853][ T8813] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5 [ 291.833597][ T8772] ªªªªªª: renamed from vlan0 [ 292.262208][ T8844] loop0: detected capacity change from 0 to 512 [ 292.352324][ T8844] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 292.361844][ T8844] ext4 filesystem being mounted at /433/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 292.619136][ T4266] EXT4-fs (loop0): unmounting filesystem. [ 292.749975][ T8851] loop5: detected capacity change from 0 to 256 [ 292.843490][ T8851] FAT-fs (loop5): Directory bread(block 64) failed [ 292.897133][ T8851] FAT-fs (loop5): Directory bread(block 65) failed [ 292.923175][ T8851] FAT-fs (loop5): Directory bread(block 66) failed [ 292.971609][ T8851] FAT-fs (loop5): Directory bread(block 67) failed [ 292.988776][ T8851] FAT-fs (loop5): Directory bread(block 68) failed [ 293.016165][ T8851] FAT-fs (loop5): Directory bread(block 69) failed [ 293.081651][ T8851] FAT-fs (loop5): Directory bread(block 70) failed [ 293.110368][ T8851] FAT-fs (loop5): Directory bread(block 71) failed [ 293.143170][ T8851] FAT-fs (loop5): Directory bread(block 72) failed [ 293.149808][ T8851] FAT-fs (loop5): Directory bread(block 73) failed [ 293.310967][ T8859] loop0: detected capacity change from 0 to 40427 [ 293.337814][ T8859] F2FS-fs (loop0): Unrecognized mount option "whint_mode=user-based" or missing value [ 293.371068][ T26] audit: type=1326 audit(1759069137.667:25): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8857 comm="syz.0.1593" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fddf078eec9 code=0x7ffc0000 [ 293.434430][ T26] audit: type=1326 audit(1759069137.667:26): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8857 comm="syz.0.1593" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fddf078eec9 code=0x7ffc0000 [ 293.555187][ T26] audit: type=1326 audit(1759069137.667:27): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8857 comm="syz.0.1593" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fddf078eec9 code=0x7ffc0000 [ 293.655442][ T26] audit: type=1326 audit(1759069137.667:28): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8857 comm="syz.0.1593" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fddf078eec9 code=0x7ffc0000 [ 293.805217][ T26] audit: type=1326 audit(1759069137.667:29): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8857 comm="syz.0.1593" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fddf078eec9 code=0x7ffc0000 [ 293.866898][ T26] audit: type=1326 audit(1759069137.697:30): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8857 comm="syz.0.1593" exe="/root/syz-executor" sig=0 arch=c000003e syscall=125 compat=0 ip=0x7fddf078eec9 code=0x7ffc0000 [ 293.939261][ T8873] loop4: detected capacity change from 0 to 128 [ 294.259672][ T26] audit: type=1326 audit(1759069137.697:31): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8857 comm="syz.0.1593" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fddf078eec9 code=0x7ffc0000 [ 294.648354][ T26] audit: type=1326 audit(1759069137.697:32): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8857 comm="syz.0.1593" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fddf078eec9 code=0x7ffc0000 [ 296.315640][ T8893] set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state. [ 297.016650][ T8898] loop4: detected capacity change from 0 to 40427 [ 297.034430][ T8898] F2FS-fs (loop4): Wrong MAIN_AREA boundary, start(4096) end(12800) block(12288) [ 297.054779][ T8898] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock [ 297.076028][ T8898] F2FS-fs (loop4): build fault injection attr: rate: 0, type: 0x35f7 [ 297.084504][ T8898] F2FS-fs (loop4): build fault injection attr: rate: 690, type: 0x3ffff [ 297.107356][ T8898] F2FS-fs (loop4): invalid crc value [ 297.172676][ T8898] F2FS-fs (loop4): Found nat_bits in checkpoint [ 297.279520][ T8898] F2FS-fs (loop4): Start checkpoint disabled! [ 297.336138][ T8898] F2FS-fs (loop4): Try to recover 1th superblock, ret: 0 [ 297.344643][ T8898] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e6 [ 297.465958][ T8898] F2FS-fs (loop4) : inject page get in f2fs_pagecache_get_page of generic_perform_write+0x2db/0x560 [ 297.528465][ T8898] syz.4.1606: attempt to access beyond end of device [ 297.528465][ T8898] loop4: rw=2049, sector=53248, nr_sectors = 392 limit=40427 [ 297.546620][ T8902] syz.4.1606: attempt to access beyond end of device [ 297.546620][ T8902] loop4: rw=2049, sector=53640, nr_sectors = 152 limit=40427 [ 297.680330][ T4357] kworker/u4:5: attempt to access beyond end of device [ 297.680330][ T4357] loop4: rw=2049, sector=40960, nr_sectors = 16 limit=40427 [ 299.411885][ T8911] loop4: detected capacity change from 0 to 512 [ 299.464261][ T8911] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended [ 299.536903][ T8919] loop0: detected capacity change from 0 to 512 [ 299.553886][ T8919] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 299.575673][ T8919] EXT4-fs (loop0): orphan cleanup on readonly fs [ 299.593055][ T8919] EXT4-fs error (device loop0): ext4_validate_block_bitmap:438: comm syz.0.1611: bg 0: block 248: padding at end of block bitmap is not set [ 299.624649][ T8919] Quota error (device loop0): write_blk: dquota write failed [ 299.632274][ T8919] Quota error (device loop0): qtree_write_dquot: Error -117 occurred while creating quota [ 299.642316][ T8919] EXT4-fs error (device loop0): ext4_acquire_dquot:6816: comm syz.0.1611: Failed to acquire dquot type 1 [ 299.664566][ T8919] EXT4-fs (loop0): 1 truncate cleaned up [ 299.768234][ T8919] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 301.618558][ T8932] loop5: detected capacity change from 0 to 40427 [ 301.638314][ T8911] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 301.840183][ T4266] EXT4-fs (loop0): unmounting filesystem. [ 302.001890][ T8932] F2FS-fs (loop5): Found nat_bits in checkpoint [ 302.606267][ T8932] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e5 [ 303.261006][ T4265] EXT4-fs (loop4): unmounting filesystem. [ 304.775347][ T8959] xt_policy: neither incoming nor outgoing policy selected [ 305.483489][ T8965] loop2: detected capacity change from 0 to 512 [ 305.515718][ T8965] EXT4-fs error (device loop2): ext4_orphan_get:1400: inode #15: comm syz.2.1623: casefold flag without casefold feature [ 305.583347][ T8965] EXT4-fs error (device loop2): ext4_orphan_get:1405: comm syz.2.1623: couldn't read orphan inode 15 (err -117) [ 305.730968][ T8965] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 306.521166][ T4275] EXT4-fs (loop2): unmounting filesystem. [ 307.507786][ T8982] loop4: detected capacity change from 0 to 40427 [ 307.521005][ T8984] loop3: detected capacity change from 0 to 512 [ 307.577448][ T4397] I/O error, dev loop4, sector 40192 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 307.647759][ T8984] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 307.718417][ T8984] ext4 filesystem being mounted at /302/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 307.740999][ T8990] overlayfs: missing 'lowerdir' [ 308.929950][ T4278] EXT4-fs (loop3): unmounting filesystem. [ 310.441014][ T8998] loop0: detected capacity change from 0 to 40427 [ 310.675991][ T8998] F2FS-fs (loop0): Found nat_bits in checkpoint [ 310.825891][ T8998] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5 [ 312.407527][ T9022] loop3: detected capacity change from 0 to 512 [ 312.443662][ T9024] overlayfs: missing 'lowerdir' [ 312.471200][ T9022] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended [ 312.570424][ T9022] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 312.598211][ T26] audit: type=1326 audit(1759069156.897:33): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9021 comm="syz.3.1640" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5d8af8eec9 code=0x7ffc0000 [ 312.673881][ T26] audit: type=1326 audit(1759069156.897:34): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9021 comm="syz.3.1640" exe="/root/syz-executor" sig=0 arch=c000003e syscall=273 compat=0 ip=0x7f5d8af8eec9 code=0x7ffc0000 [ 312.736179][ T4278] EXT4-fs (loop3): unmounting filesystem. [ 312.769236][ T26] audit: type=1326 audit(1759069156.897:35): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9021 comm="syz.3.1640" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5d8af8eec9 code=0x7ffc0000 [ 312.922234][ T26] audit: type=1326 audit(1759069156.917:36): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9021 comm="syz.3.1640" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5d8af8eec9 code=0x7ffc0000 [ 313.476924][ T32] usb 1-1: new high-speed USB device number 3 using dummy_hcd [ 313.500273][ T9012] loop2: detected capacity change from 0 to 40427 [ 313.522309][ T9012] F2FS-fs (loop2): Wrong MAIN_AREA boundary, start(4096) end(12800) block(12288) [ 313.733745][ T9012] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock [ 313.754024][ T32] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 313.956893][ T32] usb 1-1: New USB device found, idVendor=046d, idProduct=c71f, bcdDevice= 0.00 [ 314.081838][ T9012] F2FS-fs (loop2): build fault injection attr: rate: 0, type: 0x35f7 [ 314.225967][ T9012] F2FS-fs (loop2): build fault injection attr: rate: 690, type: 0x3ffff [ 314.238655][ T9050] loop4: detected capacity change from 0 to 256 [ 314.245287][ T32] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 314.257447][ T9012] F2FS-fs (loop2): invalid crc value [ 314.301991][ T9012] F2FS-fs (loop2): Found nat_bits in checkpoint [ 314.318479][ T32] usb 1-1: config 0 descriptor?? [ 314.423239][ T9012] F2FS-fs (loop2): Start checkpoint disabled! [ 314.548904][ T9012] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0 [ 314.586952][ T9012] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e6 [ 314.597188][ T9050] FAT-fs (loop4): Directory bread(block 64) failed [ 314.637662][ T9050] FAT-fs (loop4): Directory bread(block 65) failed [ 314.710943][ T9050] FAT-fs (loop4): Directory bread(block 66) failed [ 314.728922][ T9012] F2FS-fs (loop2) : inject page get in f2fs_pagecache_get_page of generic_perform_write+0x2db/0x560 [ 314.767699][ T9012] syz.2.1636: attempt to access beyond end of device [ 314.767699][ T9012] loop2: rw=2049, sector=53248, nr_sectors = 392 limit=40427 [ 314.777866][ T9042] loop3: detected capacity change from 0 to 40427 [ 314.797686][ T9050] FAT-fs (loop4): Directory bread(block 67) failed [ 314.822589][ T9042] F2FS-fs (loop3): Unrecognized mount option "whint_mode=user-based" or missing value [ 314.849686][ T32] hid (null): report_id 0 is invalid [ 314.853068][ T9050] FAT-fs (loop4): Directory bread(block 68) failed [ 314.866380][ T9012] syz.2.1636: attempt to access beyond end of device [ 314.866380][ T9012] loop2: rw=2049, sector=53640, nr_sectors = 152 limit=40427 [ 314.893957][ T9050] FAT-fs (loop4): Directory bread(block 69) failed [ 314.912657][ T32] logitech-djreceiver 0003:046D:C71F.000E: report_id 0 is invalid [ 314.913725][ T9050] FAT-fs (loop4): Directory bread(block 70) failed [ 314.933331][ T32] logitech-djreceiver 0003:046D:C71F.000E: item 0 0 1 8 parsing failed [ 314.950031][ T26] audit: type=1326 audit(1759069159.247:37): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9039 comm="syz.3.1646" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5d8af8eec9 code=0x7ffc0000 [ 314.963624][ T32] logitech-djreceiver 0003:046D:C71F.000E: logi_dj_probe: parse failed [ 314.998372][ T26] audit: type=1326 audit(1759069159.247:38): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9039 comm="syz.3.1646" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5d8af8eec9 code=0x7ffc0000 [ 315.000825][ T9012] syz.2.1636: attempt to access beyond end of device [ 315.000825][ T9012] loop2: rw=2049, sector=53248, nr_sectors = 392 limit=40427 [ 315.062660][ T9058] loop5: detected capacity change from 0 to 512 [ 315.082976][ T32] logitech-djreceiver: probe of 0003:046D:C71F.000E failed with error -22 [ 315.084244][ T26] audit: type=1326 audit(1759069159.257:39): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9039 comm="syz.3.1646" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f5d8af8eec9 code=0x7ffc0000 [ 315.113566][ T9050] FAT-fs (loop4): Directory bread(block 71) failed [ 315.122329][ T9050] FAT-fs (loop4): Directory bread(block 72) failed [ 315.149542][ T32] usb 1-1: USB disconnect, device number 3 [ 315.182341][ T9058] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback. [ 315.216358][ T26] audit: type=1326 audit(1759069159.257:40): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9039 comm="syz.3.1646" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5d8af8eec9 code=0x7ffc0000 [ 315.253074][ T9058] ext4 filesystem being mounted at /294/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 315.259865][ T9062] 9pnet_fd: Insufficient options for proto=fd [ 315.265834][ T9050] FAT-fs (loop4): Directory bread(block 73) failed [ 315.282704][ T9062] overlayfs: missing 'lowerdir' [ 315.304362][ T26] audit: type=1326 audit(1759069159.257:41): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9039 comm="syz.3.1646" exe="/root/syz-executor" sig=0 arch=c000003e syscall=125 compat=0 ip=0x7f5d8af8eec9 code=0x7ffc0000 [ 315.408198][ T26] audit: type=1326 audit(1759069159.257:42): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9039 comm="syz.3.1646" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5d8af8eec9 code=0x7ffc0000 [ 316.269232][ T4357] kworker/u4:5: attempt to access beyond end of device [ 316.269232][ T4357] loop2: rw=2049, sector=40960, nr_sectors = 16 limit=40427 [ 316.448767][ T4479] EXT4-fs (loop5): unmounting filesystem. [ 316.613264][ T9075] 9pnet_fd: Insufficient options for proto=fd [ 317.119840][ T9088] loop5: detected capacity change from 0 to 512 [ 317.188482][ T1274] ieee802154 phy0 wpan0: encryption failed: -22 [ 317.195001][ T1274] ieee802154 phy1 wpan1: encryption failed: -22 [ 317.216799][ T9093] 9pnet_fd: Insufficient options for proto=fd [ 317.225091][ T9088] EXT4-fs error (device loop5): ext4_xattr_inode_iget:404: comm syz.5.1664: inode #1: comm syz.5.1664: iget: illegal inode # [ 317.265207][ T9093] overlayfs: missing 'lowerdir' [ 317.282304][ T9088] EXT4-fs error (device loop5): ext4_xattr_inode_iget:409: comm syz.5.1664: error while reading EA inode 1 err=-117 [ 317.295781][ T9088] EXT4-fs (loop5): 1 orphan inode deleted [ 317.301581][ T9088] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none. [ 317.441490][ T9098] loop0: detected capacity change from 0 to 256 [ 317.489804][ T9098] exFAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 317.501939][ T9098] exFAT-fs (loop0): Medium has reported failures. Some data may be lost. [ 317.524009][ T4479] EXT4-fs (loop5): unmounting filesystem. [ 317.539320][ T9098] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d) [ 318.349723][ T9112] loop2: detected capacity change from 0 to 512 [ 318.475746][ T9112] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 318.502295][ T9115] 9pnet_fd: Insufficient options for proto=fd [ 318.523221][ T9112] ext4 filesystem being mounted at /297/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 319.699737][ T4275] EXT4-fs (loop2): unmounting filesystem. [ 320.448888][ T9149] loop3: detected capacity change from 0 to 512 [ 320.592685][ T9149] EXT4-fs error (device loop3): ext4_orphan_get:1400: inode #15: comm syz.3.1685: casefold flag without casefold feature [ 320.628626][ T9108] loop4: detected capacity change from 0 to 40427 [ 320.649513][ T9108] F2FS-fs (loop4): Unrecognized mount option "whint_mode=user-based" or missing value [ 320.665741][ T9149] EXT4-fs error (device loop3): ext4_orphan_get:1405: comm syz.3.1685: couldn't read orphan inode 15 (err -117) [ 320.678495][ T26] audit: type=1326 audit(1759069164.987:43): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9105 comm="syz.4.1667" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe90278eec9 code=0x7ffc0000 [ 320.723473][ T9149] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 320.831616][ T26] audit: type=1326 audit(1759069165.007:44): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9105 comm="syz.4.1667" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe90278eec9 code=0x7ffc0000 [ 320.972268][ T9160] 9pnet_fd: Insufficient options for proto=fd [ 321.098440][ T26] audit: type=1326 audit(1759069165.007:45): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9105 comm="syz.4.1667" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe90278eec9 code=0x7ffc0000 [ 321.478815][ T26] audit: type=1326 audit(1759069165.007:46): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9105 comm="syz.4.1667" exe="/root/syz-executor" sig=0 arch=c000003e syscall=125 compat=0 ip=0x7fe90278eec9 code=0x7ffc0000 [ 321.614071][ T26] audit: type=1326 audit(1759069165.007:47): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9105 comm="syz.4.1667" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe90278eec9 code=0x7ffc0000 [ 321.765961][ T4278] EXT4-fs (loop3): unmounting filesystem. [ 321.964829][ T9177] x_tables: ip_tables: osf match: only valid for protocol 6 [ 323.782724][ T9193] overlayfs: missing 'lowerdir' [ 324.141134][ T4256] usb 1-1: new high-speed USB device number 4 using dummy_hcd [ 324.344417][ T9209] 9pnet_fd: Insufficient options for proto=fd [ 324.372316][ T4256] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 129, changing to 11 [ 324.396072][ T4256] usb 1-1: New USB device found, idVendor=046d, idProduct=ca03, bcdDevice= 0.00 [ 324.411719][ T4256] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 324.423860][ T4256] usb 1-1: config 0 descriptor?? [ 324.657553][ T4256] usbhid 1-1:0.0: can't add hid device: -71 [ 324.665002][ T4256] usbhid: probe of 1-1:0.0 failed with error -71 [ 324.681891][ T4256] usb 1-1: USB disconnect, device number 4 [ 324.721234][ T9203] loop3: detected capacity change from 0 to 40427 [ 324.751112][ T9203] F2FS-fs (loop3): Unrecognized mount option "whint_mode=user-based" or missing value [ 326.260272][ T9225] loop2: detected capacity change from 0 to 40427 [ 326.363186][ T4397] I/O error, dev loop2, sector 40192 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 326.452391][ T9232] loop5: detected capacity change from 0 to 128 [ 326.529063][ T9232] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none. [ 326.603200][ T9232] ext4 filesystem being mounted at /309/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 326.631200][ T9237] overlayfs: missing 'lowerdir' [ 327.155596][ T9246] 9pnet_fd: Insufficient options for proto=fd [ 327.313378][ T9248] overlayfs: upper fs needs to support d_type. [ 328.254207][ T4479] EXT4-fs (loop5): unmounting filesystem. [ 328.390306][ T9242] loop3: detected capacity change from 0 to 40427 [ 328.434047][ T9242] F2FS-fs (loop3): Invalid log_blocksize (268), supports only 12 [ 328.441856][ T9242] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock [ 328.458977][ T9258] loop5: detected capacity change from 0 to 256 [ 328.497294][ T9242] F2FS-fs (loop3): invalid crc value [ 328.520610][ T9258] exFAT-fs (loop5): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 328.559898][ T9242] F2FS-fs (loop3): Found nat_bits in checkpoint [ 328.582779][ T9258] exFAT-fs (loop5): Medium has reported failures. Some data may be lost. [ 328.663378][ T9258] exFAT-fs (loop5): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d) [ 328.842515][ T9242] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0 [ 328.853038][ T9242] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5 [ 329.185742][ T9275] loop4: detected capacity change from 0 to 512 [ 329.283288][ T9275] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 329.298531][ T9275] ext4 filesystem being mounted at /306/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 330.368624][ T4265] EXT4-fs (loop4): unmounting filesystem. [ 330.676689][ T9292] loop0: detected capacity change from 0 to 128 [ 330.705382][ T9292] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 330.737133][ T9292] ext4 filesystem being mounted at /476/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 331.202811][ T9307] overlayfs: upper fs needs to support d_type. [ 331.719137][ T9305] overlayfs: missing 'lowerdir' [ 331.814634][ T4266] EXT4-fs (loop0): unmounting filesystem. [ 333.026911][ T9331] Bluetooth: hci5: Frame reassembly failed (-90) [ 334.538701][ T9354] loop3: detected capacity change from 0 to 128 [ 334.643988][ T9354] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 334.714213][ T9354] ext4 filesystem being mounted at /330/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 335.024400][ T4284] Bluetooth: hci5: Opcode 0x1003 failed: -110 [ 335.031102][ T4281] Bluetooth: hci5: command 0x1003 tx timeout [ 335.572954][ T9374] overlayfs: upper fs needs to support d_type. [ 335.958850][ T9381] loop2: detected capacity change from 0 to 256 [ 335.990917][ T4278] EXT4-fs (loop3): unmounting filesystem. [ 336.064312][ T9381] exFAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 336.088486][ T9381] exFAT-fs (loop2): Medium has reported failures. Some data may be lost. [ 336.124740][ T9381] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d) [ 337.533827][ T9406] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready [ 337.542297][ T9406] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready [ 337.935353][ T9406] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 340.048180][ T9453] loop4: detected capacity change from 0 to 256 [ 340.277186][ T9453] exFAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 340.431679][ T9453] exFAT-fs (loop4): Medium has reported failures. Some data may be lost. [ 340.733982][ T9453] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d) [ 340.886424][ T9449] loop0: detected capacity change from 0 to 40427 [ 340.920079][ T9449] F2FS-fs (loop0): Invalid log_blocksize (268), supports only 12 [ 340.992998][ T9449] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock [ 341.022801][ T9449] F2FS-fs (loop0): invalid crc value [ 341.103392][ T9449] F2FS-fs (loop0): Found nat_bits in checkpoint [ 341.244605][ T9449] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0 [ 341.269440][ T9449] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5 [ 342.921100][ T9488] loop3: detected capacity change from 0 to 512 [ 342.951009][ T9488] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 343.315605][ T9488] EXT4-fs (loop3): 1 orphan inode deleted [ 343.321501][ T9488] EXT4-fs (loop3): 1 truncate cleaned up [ 343.327381][ T9488] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 343.440382][ T9488] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1097: group 0, block bitmap and bg descriptor inconsistent: 191 vs 220 free clusters [ 343.460389][ T9488] EXT4-fs (loop3): Remounting filesystem read-only [ 344.975449][ T4278] EXT4-fs (loop3): unmounting filesystem. [ 346.013970][ T9517] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1810'. [ 346.631639][ T9525] loop3: detected capacity change from 0 to 256 [ 346.723454][ T9525] exFAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 346.853251][ T9525] exFAT-fs (loop3): Medium has reported failures. Some data may be lost. [ 346.906269][ T9525] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d) [ 349.368678][ T9560] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1824'. [ 350.189853][ T26] audit: type=1326 audit(1759069194.487:48): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9573 comm="syz.5.1829" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb2fe58eec9 code=0x7ffc0000 [ 350.232998][ T26] audit: type=1326 audit(1759069194.527:49): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9573 comm="syz.5.1829" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb2fe58eec9 code=0x7ffc0000 [ 350.962928][ T26] audit: type=1326 audit(1759069194.527:50): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9573 comm="syz.5.1829" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb2fe58eec9 code=0x7ffc0000 [ 351.121915][ T26] audit: type=1326 audit(1759069194.527:51): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9573 comm="syz.5.1829" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb2fe58eec9 code=0x7ffc0000 [ 351.714122][ T26] audit: type=1326 audit(1759069194.527:52): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9573 comm="syz.5.1829" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb2fe58eec9 code=0x7ffc0000 [ 351.935011][ T26] audit: type=1326 audit(1759069194.527:53): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9573 comm="syz.5.1829" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb2fe58eec9 code=0x7ffc0000 [ 351.983915][ T26] audit: type=1326 audit(1759069194.527:54): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9573 comm="syz.5.1829" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb2fe58eec9 code=0x7ffc0000 [ 352.066782][ T26] audit: type=1326 audit(1759069194.527:55): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9573 comm="syz.5.1829" exe="/root/syz-executor" sig=0 arch=c000003e syscall=255 compat=0 ip=0x7fb2fe58eec9 code=0x7ffc0000 [ 352.134634][ T26] audit: type=1326 audit(1759069194.527:56): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9573 comm="syz.5.1829" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb2fe58eec9 code=0x7ffc0000 [ 353.397592][ T9601] loop2: detected capacity change from 0 to 512 [ 353.405624][ T9601] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 353.453166][ T9601] EXT4-fs (loop2): 1 orphan inode deleted [ 353.459166][ T9601] EXT4-fs (loop2): 1 truncate cleaned up [ 353.464985][ T9601] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 353.482614][ T9601] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1097: group 0, block bitmap and bg descriptor inconsistent: 191 vs 220 free clusters [ 353.497917][ T9601] EXT4-fs (loop2): Remounting filesystem read-only [ 353.569158][ T9608] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1842'. [ 354.187513][ T9619] loop0: detected capacity change from 0 to 8192 [ 354.570622][ T9627] I/O error, dev loop11, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 1 [ 354.580689][ T9627] FAT-fs (loop11): unable to read boot sector [ 355.952488][ T9621] overlayfs: './file1' not a directory [ 356.221668][ T9643] loop3: detected capacity change from 0 to 256 [ 356.249161][ T9643] exfat: Deprecated parameter 'namecase' [ 356.264656][ T9643] exfat: Deprecated parameter 'utf8' [ 356.270052][ T9643] exfat: Deprecated parameter 'namecase' [ 356.276254][ T9643] exfat: Deprecated parameter 'utf8' [ 356.326034][ T9643] exFAT-fs (loop3): failed to load upcase table (idx : 0x00012153, chksum : 0x555ffa9e, utbl_chksum : 0xe619d30d) [ 356.351687][ T9645] overlayfs: missing 'lowerdir' [ 356.941207][ T9652] overlayfs: failed to resolve './file0': -5 [ 357.666082][ T9657] x_tables: ip_tables: osf match: only valid for protocol 6 [ 357.910713][ T9663] loop4: detected capacity change from 0 to 128 [ 358.023083][ T9663] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 358.054534][ T9667] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1863'. [ 358.116458][ T9663] ext4 filesystem being mounted at /330/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 358.597779][ T9679] overlayfs: failed to resolve './file2': -2 [ 359.133429][ T4265] EXT4-fs (loop4): unmounting filesystem. [ 360.027062][ T9694] loop4: detected capacity change from 0 to 256 [ 360.127447][ T9694] exfat: Deprecated parameter 'namecase' [ 360.181873][ T9694] exfat: Deprecated parameter 'utf8' [ 360.187431][ T9694] exfat: Deprecated parameter 'namecase' [ 360.193157][ T9694] exfat: Deprecated parameter 'utf8' [ 361.094274][ T9694] exFAT-fs (loop4): failed to load upcase table (idx : 0x00012153, chksum : 0x555ffa9e, utbl_chksum : 0xe619d30d) [ 361.686943][ T9708] overlayfs: failed to resolve './file0': -5 [ 361.930549][ T9709] loop0: detected capacity change from 0 to 1024 [ 361.988653][ T9709] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 362.187799][ T9709] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=a842c028, mo2=0003] [ 362.204019][ T9709] System zones: 1-12 [ 362.253938][ T9709] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 362.356619][ T9709] EXT4-fs (loop0): unmounting filesystem. [ 363.397930][ T9711] syz.3.1876[9711] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 363.398474][ T9711] syz.3.1876[9711] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 363.460952][ T9712] loop3: detected capacity change from 0 to 256 [ 363.648917][ T9712] exFAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 363.702958][ T9712] exFAT-fs (loop3): Medium has reported failures. Some data may be lost. [ 363.813527][ T9712] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d) [ 364.651260][ T9738] 9pnet_fd: Insufficient options for proto=fd [ 364.917824][ T9744] loop5: detected capacity change from 0 to 128 [ 365.201847][ T9744] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none. [ 365.612673][ T9744] ext4 filesystem being mounted at /333/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 366.094600][ T4275] EXT4-fs (loop2): unmounting filesystem. [ 367.907074][ T9764] overlayfs: upper fs needs to support d_type. [ 368.677362][ T9776] x_tables: ip_tables: osf match: only valid for protocol 6 [ 368.820726][ T4479] EXT4-fs (loop5): unmounting filesystem. [ 369.657091][ T9786] 9pnet_fd: Insufficient options for proto=fd [ 371.635091][ T9808] loop4: detected capacity change from 0 to 512 [ 371.661892][ T9808] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 371.805783][ T9808] EXT4-fs (loop4): 1 orphan inode deleted [ 371.811633][ T9808] EXT4-fs (loop4): 1 truncate cleaned up [ 371.817480][ T9808] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 371.929071][ T9808] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1097: group 0, block bitmap and bg descriptor inconsistent: 191 vs 220 free clusters [ 371.953683][ T9808] EXT4-fs (loop4): Remounting filesystem read-only [ 372.520911][ T9813] loop5: detected capacity change from 0 to 256 [ 372.841705][ T9813] exfat: Deprecated parameter 'namecase' [ 373.412995][ T9813] exfat: Deprecated parameter 'utf8' [ 373.418401][ T9813] exfat: Deprecated parameter 'namecase' [ 373.740124][ T9813] exfat: Deprecated parameter 'utf8' [ 374.166460][ T9822] x_tables: ip_tables: osf match: only valid for protocol 6 [ 374.705449][ T9813] exFAT-fs (loop5): failed to load upcase table (idx : 0x00012153, chksum : 0x555ffa9e, utbl_chksum : 0xe619d30d) [ 374.728011][ T4265] EXT4-fs (loop4): unmounting filesystem. [ 375.186844][ T9833] overlayfs: missing 'lowerdir' [ 375.344257][ T9834] overlayfs: failed to resolve './file0': -5 [ 375.485747][ T9836] 9pnet_fd: Insufficient options for proto=fd [ 376.004705][ T9847] x_tables: ip_tables: osf match: only valid for protocol 6 [ 376.810133][ T9852] loop0: detected capacity change from 0 to 512 [ 376.823581][ T9852] EXT4-fs (loop0): Test dummy encryption mode enabled [ 376.830461][ T9852] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 376.852286][ T9852] EXT4-fs error (device loop0): ext4_orphan_get:1426: comm syz.0.1919: bad orphan inode 131083 [ 376.879767][ T9852] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 377.210707][ T9860] tipc: Started in network mode [ 377.216210][ T9860] tipc: Node identity 7f000001, cluster identity 4711 [ 377.229868][ T9860] tipc: Enabled bearer , priority 10 [ 377.877015][ T4266] EXT4-fs (loop0): unmounting filesystem. [ 378.067127][ T9867] overlayfs: missing 'lowerdir' [ 378.207452][ T9871] x_tables: ip_tables: osf match: only valid for protocol 6 [ 378.345457][ T22] tipc: Node number set to 2130706433 [ 378.629612][ T1274] ieee802154 phy0 wpan0: encryption failed: -22 [ 378.642255][ T1274] ieee802154 phy1 wpan1: encryption failed: -22 [ 378.921322][ T9874] 9pnet_fd: Insufficient options for proto=fd [ 378.970574][ T9879] loop4: detected capacity change from 0 to 512 [ 379.220328][ T9879] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 379.239885][ T9879] ext4 filesystem being mounted at /343/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 379.515529][ T9887] x_tables: ip_tables: osf match: only valid for protocol 6 [ 379.926641][ T9900] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1932'. [ 380.993627][ T9906] netlink: 208 bytes leftover after parsing attributes in process `syz.0.1934'. [ 381.003020][ T9906] netlink: 208 bytes leftover after parsing attributes in process `syz.0.1934'. [ 381.316203][ T9907] loop0: detected capacity change from 0 to 4096 [ 381.327396][ T9907] EXT4-fs: Ignoring removed mblk_io_submit option [ 381.336058][ T9907] ext4: Unknown parameter 'rootcontext' [ 382.207267][ T9911] loop3: detected capacity change from 0 to 128 [ 382.256033][ T4397] I/O error, dev loop0, sector 3968 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 382.266798][ T9911] EXT4-fs (loop3): Test dummy encryption mode enabled [ 382.292085][ T4265] EXT4-fs (loop4): unmounting filesystem. [ 382.329928][ T9911] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 382.443592][ T9911] ext4 filesystem being mounted at /369/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 382.508162][ T9915] overlayfs: missing 'lowerdir' [ 384.161888][ T9937] x_tables: ip_tables: osf match: only valid for protocol 6 [ 385.024532][ T9943] 9pnet_fd: Insufficient options for proto=fd [ 385.213981][ T4278] EXT4-fs (loop3): unmounting filesystem. [ 385.317158][ T9957] loop3: detected capacity change from 0 to 128 [ 385.483074][ T9957] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 385.529105][ T9957] ext4 filesystem being mounted at /370/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 385.578526][ T9963] x_tables: ip_tables: osf match: only valid for protocol 6 [ 385.588826][ T4320] usb 1-1: new high-speed USB device number 5 using dummy_hcd [ 385.835144][ T4320] usb 1-1: Using ep0 maxpacket: 32 [ 385.888608][ T4320] usb 1-1: config 4 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 386.014473][ T4320] usb 1-1: config 4 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 386.434300][ T4320] usb 1-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40 [ 386.444139][ T4320] usb 1-1: New USB device strings: Mfr=255, Product=255, SerialNumber=0 [ 386.452594][ T4320] usb 1-1: Product: syz [ 386.457260][ T4320] usb 1-1: Manufacturer: syz [ 386.475752][ T9966] overlayfs: missing 'lowerdir' [ 386.481972][ T4320] hub 1-1:4.0: USB hub found [ 386.588503][ T9968] overlayfs: upper fs needs to support d_type. [ 386.859125][ T4320] hub 1-1:4.0: 2 ports detected [ 387.163992][ T4278] EXT4-fs (loop3): unmounting filesystem. [ 387.272985][ T4320] hub 1-1:4.0: set hub depth failed [ 387.286407][ T4320] usb 1-1: USB disconnect, device number 5 [ 387.970610][ T9986] x_tables: ip_tables: osf match: only valid for protocol 6 [ 388.984964][ T9995] 9pnet_fd: Insufficient options for proto=fd [ 389.320057][T10003] x_tables: ip_tables: osf match: only valid for protocol 6 [ 390.099526][T10002] loop3: detected capacity change from 0 to 512 [ 390.389479][T10002] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 390.405655][T10013] loop2: detected capacity change from 0 to 128 [ 390.423701][T10013] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 390.453281][T10013] ext4 filesystem being mounted at /337/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 390.514845][T10002] ext4 filesystem being mounted at /373/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 390.964963][T10023] device veth0_to_team entered promiscuous mode [ 391.077787][T10033] x_tables: ip_tables: osf match: only valid for protocol 6 [ 391.860612][ T4278] EXT4-fs (loop3): unmounting filesystem. [ 391.967016][T10037] random: crng reseeded on system resumption [ 392.490564][T10043] overlayfs: upper fs needs to support d_type. [ 393.802890][T10049] x_tables: ip_tables: osf match: only valid for protocol 6 [ 395.921543][T10078] binder: 10075:10078 ioctl 4018620d 0 returned -22 [ 395.929937][T10078] binder: 10075:10078 ioctl c0306201 0 returned -14 [ 399.219012][ T4275] EXT4-fs (loop2): unmounting filesystem. [ 401.855217][T10138] loop3: detected capacity change from 0 to 128 [ 401.913433][T10138] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 401.937930][T10138] ext4 filesystem being mounted at /381/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 402.300925][T10142] loop4: detected capacity change from 0 to 40427 [ 402.402893][T10142] F2FS-fs (loop4): Invalid log_blocksize (268), supports only 12 [ 402.410715][T10142] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock [ 402.523393][T10142] F2FS-fs (loop4): invalid crc value [ 402.653580][T10153] overlayfs: upper fs needs to support d_type. [ 402.994638][T10142] F2FS-fs (loop4): Found nat_bits in checkpoint [ 403.168591][T10160] loop2: detected capacity change from 0 to 256 [ 403.186707][T10160] exfat: Deprecated parameter 'namecase' [ 403.192442][T10160] exfat: Deprecated parameter 'utf8' [ 403.209931][T10160] exfat: Deprecated parameter 'namecase' [ 403.216029][T10160] exfat: Deprecated parameter 'utf8' [ 403.244212][ T4278] EXT4-fs (loop3): unmounting filesystem. [ 403.257593][T10160] exFAT-fs (loop2): failed to load upcase table (idx : 0x00012153, chksum : 0x555ffa9e, utbl_chksum : 0xe619d30d) [ 403.349916][T10142] F2FS-fs (loop4): Try to recover 1th superblock, ret: 0 [ 403.357191][T10142] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5 [ 405.798323][T10174] loop3: detected capacity change from 0 to 256 [ 405.924289][T10174] exFAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 406.013040][T10174] exFAT-fs (loop3): Medium has reported failures. Some data may be lost. [ 406.141906][T10174] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0x44ede5da, utbl_chksum : 0xe619d30d) [ 407.513504][T10196] loop0: detected capacity change from 0 to 4096 [ 407.523957][T10196] EXT4-fs: Ignoring removed mblk_io_submit option [ 407.563484][T10196] EXT4-fs (loop0): Test dummy encryption mode enabled [ 407.762563][T10196] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 410.120200][ T4266] EXT4-fs (loop0): unmounting filesystem. [ 410.703547][T10223] loop5: detected capacity change from 0 to 512 [ 411.462947][T10223] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback. [ 411.473289][T10223] ext4 filesystem being mounted at /359/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 413.356411][ T4479] EXT4-fs (loop5): unmounting filesystem. [ 413.661752][T10238] x_tables: ip_tables: osf match: only valid for protocol 6 [ 413.735045][T10243] loop3: detected capacity change from 0 to 256 [ 413.833232][T10244] overlayfs: failed to resolve './file1': -2 [ 414.107636][T10243] exfat: Unknown parameter '/dev/net/tun' [ 414.659976][ T26] audit: type=1326 audit(1759069258.957:57): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10247 comm="syz.2.2034" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f4a4878eec9 code=0x0 [ 415.921887][T10266] loop0: detected capacity change from 0 to 2048 [ 415.983160][T10266] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 416.141150][ T4266] EXT4-fs (loop0): unmounting filesystem. [ 417.170851][T10263] loop5: detected capacity change from 0 to 40427 [ 417.189612][T10263] F2FS-fs (loop5): Invalid log_blocksize (268), supports only 12 [ 417.223064][T10263] F2FS-fs (loop5): Can't find valid F2FS filesystem in 1th superblock [ 417.258362][T10263] F2FS-fs (loop5): invalid crc value [ 417.334685][T10263] F2FS-fs (loop5): Found nat_bits in checkpoint [ 417.661812][T10263] F2FS-fs (loop5): Try to recover 1th superblock, ret: 0 [ 417.692116][T10263] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e5 [ 417.787258][T10297] overlayfs: failed to resolve './file1': -2 [ 420.002088][ T26] audit: type=1326 audit(1759069264.297:58): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10315 comm="syz.0.2050" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fddf078eec9 code=0x0 [ 420.074467][T10318] x_tables: duplicate underflow at hook 3 [ 420.280189][T10320] syz.2.2052[10320] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 420.280298][T10320] syz.2.2052[10320] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 421.362594][T10332] loop0: detected capacity change from 0 to 40427 [ 421.389608][T10332] F2FS-fs (loop0): build fault injection attr: rate: 771, type: 0x3ffff [ 421.410807][T10332] F2FS-fs (loop0): invalid crc value [ 421.445983][T10332] F2FS-fs (loop0): Found nat_bits in checkpoint [ 421.503155][T10332] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5 [ 421.574416][ T4266] syz-executor: attempt to access beyond end of device [ 421.574416][ T4266] loop0: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 422.095090][T10346] loop2: detected capacity change from 0 to 4096 [ 422.102542][T10346] EXT4-fs: Ignoring removed mblk_io_submit option [ 422.650775][T10346] EXT4-fs (loop2): Test dummy encryption mode enabled [ 423.352697][T10346] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 425.294453][ T4275] EXT4-fs (loop2): unmounting filesystem. [ 425.839888][T10367] overlayfs: failed to resolve './file1': -2 [ 426.639066][ T26] audit: type=1326 audit(1759069270.937:59): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10372 comm="syz.5.2067" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fb2fe58eec9 code=0x0 [ 427.665764][T10395] overlayfs: missing 'lowerdir' [ 428.083815][T10397] loop3: detected capacity change from 0 to 40427 [ 428.095408][ T4282] Bluetooth: hci5: Opcode 0x1003 failed: -110 [ 428.126593][T10397] F2FS-fs (loop3): Invalid log_blocksize (268), supports only 12 [ 428.134467][T10397] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock [ 428.173308][T10397] F2FS-fs (loop3): invalid crc value [ 428.199164][T10405] loop5: detected capacity change from 0 to 512 [ 428.203703][T10397] F2FS-fs (loop3): Found nat_bits in checkpoint [ 428.248673][T10397] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0 [ 428.255884][T10397] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5 [ 428.421590][T10405] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback. [ 428.473347][T10405] ext4 filesystem being mounted at /367/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 430.048766][ T4479] EXT4-fs (loop5): unmounting filesystem. [ 431.080325][T10454] loop0: detected capacity change from 0 to 256 [ 431.402210][T10454] loop0: detected capacity change from 0 to 512 [ 431.428918][T10454] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 431.847549][T10454] EXT4-fs (loop0): 1 truncate cleaned up [ 431.854199][T10454] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 431.901683][T10454] EXT4-fs error (device loop0): ext4_read_inline_dir:1601: inode #12: block 7: comm syz.0.2077: path /584/bus/file0: bad entry in directory: rec_len is smaller than minimal - offset=40, inode=2085390, rec_len=0, size=80 fake=0 [ 431.930479][T10454] EXT4-fs (loop0): Remounting filesystem read-only [ 432.423065][T10460] EXT4-fs error (device loop0): ext4_validate_block_bitmap:438: comm ext4lazyinit: bg 0: block 256: padding at end of block bitmap is not set [ 432.648820][T10460] EXT4-fs (loop0): Remounting filesystem read-only [ 433.134720][ T26] audit: type=1326 audit(1759069277.437:60): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10462 comm="syz.5.2079" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb2fe58eec9 code=0x7ffc0000 [ 433.221011][ T4266] EXT4-fs (loop0): unmounting filesystem. [ 433.249686][ T26] audit: type=1326 audit(1759069277.457:61): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10462 comm="syz.5.2079" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb2fe58eec9 code=0x7ffc0000 [ 433.306982][T10466] loop2: detected capacity change from 0 to 256 [ 433.324182][T10466] FAT-fs (loop2): Unrecognized mount option "nonumtail=" or missing value [ 433.457680][ T26] audit: type=1326 audit(1759069277.457:62): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10462 comm="syz.5.2079" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb2fe58eec9 code=0x7ffc0000 [ 433.482435][T10471] overlayfs: missing 'lowerdir' [ 433.584201][ T26] audit: type=1326 audit(1759069277.457:63): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10462 comm="syz.5.2079" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb2fe58eec9 code=0x7ffc0000 [ 433.643075][ T26] audit: type=1326 audit(1759069277.457:64): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10462 comm="syz.5.2079" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb2fe58eec9 code=0x7ffc0000 [ 434.416172][ T26] audit: type=1326 audit(1759069277.477:65): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10462 comm="syz.5.2079" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb2fe58eec9 code=0x7ffc0000 [ 434.438786][ T26] audit: type=1326 audit(1759069277.477:66): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10462 comm="syz.5.2079" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb2fe58eec9 code=0x7ffc0000 [ 434.517643][T10476] loop5: detected capacity change from 0 to 256 [ 434.533013][ T26] audit: type=1326 audit(1759069277.477:67): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10462 comm="syz.5.2079" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb2fe58eec9 code=0x7ffc0000 [ 434.574640][ T26] audit: type=1326 audit(1759069277.487:68): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10462 comm="syz.5.2079" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fb2fe58eec9 code=0x7ffc0000 [ 434.602206][T10476] exfat: Deprecated parameter 'namecase' [ 434.637708][T10476] exfat: Deprecated parameter 'utf8' [ 434.669107][T10476] exfat: Deprecated parameter 'namecase' [ 434.706980][T10476] exfat: Deprecated parameter 'utf8' [ 434.733510][ T26] audit: type=1326 audit(1759069277.487:69): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10462 comm="syz.5.2079" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb2fe58eec9 code=0x7ffc0000 [ 434.775244][T10476] exFAT-fs (loop5): failed to load upcase table (idx : 0x00012153, chksum : 0x555ffa9e, utbl_chksum : 0xe619d30d) [ 435.410224][T10490] loop2: detected capacity change from 0 to 40427 [ 435.437046][T10490] F2FS-fs (loop2): Invalid log_blocksize (268), supports only 12 [ 435.444945][T10490] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock [ 435.460153][T10490] F2FS-fs (loop2): invalid crc value [ 435.552242][T10490] F2FS-fs (loop2): Found nat_bits in checkpoint [ 435.600433][T10490] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0 [ 435.608153][T10490] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5 [ 437.333641][T10520] overlayfs: missing 'lowerdir' [ 437.375722][T10519] loop4: detected capacity change from 0 to 128 [ 437.596109][T10519] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 437.672344][T10519] ext4 filesystem being mounted at /368/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 438.058901][T10528] x_tables: ip_tables: osf match: only valid for protocol 6 [ 439.525695][T10543] overlayfs: upper fs needs to support d_type. [ 439.723914][T10536] loop0: detected capacity change from 0 to 40427 [ 439.737920][T10536] F2FS-fs (loop0): Invalid log_blocksize (268), supports only 12 [ 439.750273][T10536] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock [ 439.792489][T10536] F2FS-fs (loop0): Found nat_bits in checkpoint [ 439.854107][T10536] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0 [ 439.861412][T10536] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5 [ 439.907748][ T26] kauditd_printk_skb: 5 callbacks suppressed [ 439.907766][ T26] audit: type=1800 audit(1759069284.207:75): pid=10536 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.2100" name="bus" dev="loop0" ino=10 res=0 errno=0 [ 439.951268][T10536] syz.0.2100: attempt to access beyond end of device [ 439.951268][T10536] loop0: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 440.113256][ T1274] ieee802154 phy0 wpan0: encryption failed: -22 [ 440.123219][ T1274] ieee802154 phy1 wpan1: encryption failed: -22 [ 442.875932][T10580] syz.3.2110[10580] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 442.876046][T10580] syz.3.2110[10580] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 442.974406][T10581] x_tables: ip_tables: osf match: only valid for protocol 6 [ 443.576223][ T26] audit: type=1326 audit(1759069287.877:76): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10598 comm="syz.0.2118" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fddf078eec9 code=0x7ffc0000 [ 443.628100][ T4265] EXT4-fs (loop4): unmounting filesystem. [ 443.693029][ T26] audit: type=1326 audit(1759069287.877:77): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10598 comm="syz.0.2118" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fddf078eec9 code=0x7ffc0000 [ 443.833695][ T26] audit: type=1326 audit(1759069287.897:78): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10598 comm="syz.0.2118" exe="/root/syz-executor" sig=0 arch=c000003e syscall=138 compat=0 ip=0x7fddf078eec9 code=0x7ffc0000 [ 443.838771][T10606] tipc: Started in network mode [ 443.864052][ T26] audit: type=1326 audit(1759069287.897:79): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10598 comm="syz.0.2118" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fddf078eec9 code=0x7ffc0000 [ 443.909091][ T26] audit: type=1326 audit(1759069287.897:80): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10598 comm="syz.0.2118" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fddf078eec9 code=0x7ffc0000 [ 443.920285][T10606] tipc: Node identity 00000000000000000000000000000001, cluster identity 4711 [ 443.988991][T10606] tipc: New replicast peer: fe80:0000:0000:0000:0000:0000:0000:00bb [ 444.052168][T10606] tipc: Enabled bearer , priority 10 [ 444.162772][T10616] loop2: detected capacity change from 0 to 512 [ 444.196536][T10616] EXT4-fs: Ignoring removed nomblk_io_submit option [ 444.352649][T10616] EXT4-fs error (device loop2): ext4_xattr_ibody_find:2195: inode #15: comm syz.2.2123: corrupted in-inode xattr [ 444.406905][T10616] EXT4-fs error (device loop2): ext4_orphan_get:1405: comm syz.2.2123: couldn't read orphan inode 15 (err -117) [ 444.423384][T10616] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 445.168785][ T8937] tipc: Node number set to 1 [ 445.765631][T10635] device syzkaller0 entered promiscuous mode [ 446.297924][ T4275] EXT4-fs (loop2): unmounting filesystem. [ 446.402590][T10646] x_tables: ip_tables: osf match: only valid for protocol 6 [ 446.529624][T10651] binder: 10648:10651 ioctl c0306201 200000000180 returned -14 [ 446.575685][T10654] loop2: detected capacity change from 0 to 128 [ 446.657090][T10654] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 446.679977][T10654] ext4 filesystem being mounted at /376/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 447.188419][T10660] overlayfs: upper fs needs to support d_type. [ 447.658575][ T4275] EXT4-fs (loop2): unmounting filesystem. [ 447.967524][ T4281] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 447.977305][ T4281] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 448.007601][ T4281] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 448.723730][ T4281] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 448.733515][ T4281] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 448.740931][ T4281] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 449.899878][T10690] x_tables: ip_tables: osf match: only valid for protocol 6 [ 450.447136][T10694] loop2: detected capacity change from 0 to 256 [ 450.568752][T10694] FAT-fs (loop2): Directory bread(block 64) failed [ 450.578596][T10694] FAT-fs (loop2): Directory bread(block 65) failed [ 450.587264][T10694] FAT-fs (loop2): Directory bread(block 66) failed [ 450.595978][T10694] FAT-fs (loop2): Directory bread(block 67) failed [ 450.609279][T10694] FAT-fs (loop2): Directory bread(block 68) failed [ 450.616006][T10694] FAT-fs (loop2): Directory bread(block 69) failed [ 450.629848][T10694] FAT-fs (loop2): Directory bread(block 70) failed [ 450.648355][T10694] FAT-fs (loop2): Directory bread(block 71) failed [ 450.666601][T10694] FAT-fs (loop2): Directory bread(block 72) failed [ 450.673754][T10694] FAT-fs (loop2): Directory bread(block 73) failed [ 450.679038][T10698] loop4: detected capacity change from 0 to 128 [ 450.752679][T10698] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 450.801453][T10698] ext4 filesystem being mounted at /380/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 450.836296][ T4282] Bluetooth: hci1: command 0x0409 tx timeout [ 451.272363][T10702] overlayfs: upper fs needs to support d_type. [ 451.626332][ T4265] EXT4-fs (loop4): unmounting filesystem. [ 452.863331][ T4282] Bluetooth: hci1: command 0x041b tx timeout [ 454.491922][T10715] loop2: detected capacity change from 0 to 40427 [ 454.529720][T10715] F2FS-fs (loop2): Invalid log_blocksize (268), supports only 12 [ 454.541880][T10715] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock [ 454.620502][T10715] F2FS-fs (loop2): Found nat_bits in checkpoint [ 454.809210][T10715] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0 [ 454.834768][T10715] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5 [ 454.988435][ T4282] Bluetooth: hci1: command 0x040f tx timeout [ 455.042985][ T26] audit: type=1800 audit(1759069299.337:81): pid=10715 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.2152" name="bus" dev="loop2" ino=10 res=0 errno=0 [ 455.078428][T10715] syz.2.2152: attempt to access beyond end of device [ 455.078428][T10715] loop2: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 455.613827][T10727] loop4: detected capacity change from 0 to 1024 [ 455.681363][T10727] EXT4-fs error (device loop4): ext4_read_block_bitmap_nowait:477: comm syz.4.2155: Invalid block bitmap block 0 in block_group 0 [ 455.696667][T10727] Quota error (device loop4): write_blk: dquota write failed [ 455.705243][T10727] Quota error (device loop4): qtree_write_dquot: Error -117 occurred while creating quota [ 455.718405][T10727] EXT4-fs error (device loop4): ext4_acquire_dquot:6816: comm syz.4.2155: Failed to acquire dquot type 0 [ 455.759014][T10727] EXT4-fs error (device loop4): ext4_free_blocks:6205: comm syz.4.2155: Freeing blocks not in datazone - block = 0, count = 4096 [ 455.788583][T10727] EXT4-fs error (device loop4): ext4_read_inode_bitmap:140: comm syz.4.2155: Invalid inode bitmap blk 0 in block_group 0 [ 455.801866][T10727] EXT4-fs error (device loop4) in ext4_free_inode:362: Corrupt filesystem [ 455.812295][T10727] EXT4-fs (loop4): 1 orphan inode deleted [ 455.818148][T10727] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 455.827675][ T4357] Quota error (device loop4): do_check_range: Getting block 0 out of range 1-8 [ 455.857902][ T4357] EXT4-fs error (device loop4): ext4_release_dquot:6852: comm kworker/u4:5: Failed to release dquot type 0 [ 456.143967][ T26] audit: type=1400 audit(1759069300.437:82): apparmor="DENIED" operation="setprocattr" info="current" error=-22 profile="unconfined" pid=10731 comm="syz.2.2154" [ 456.542264][T10735] x_tables: ip_tables: osf match: only valid for protocol 6 [ 456.768334][ T4265] EXT4-fs (loop4): unmounting filesystem. [ 456.967628][ T8388] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 457.024712][ T4281] Bluetooth: hci1: command 0x0419 tx timeout [ 457.075601][T10743] overlayfs: missing 'lowerdir' [ 457.326278][T10747] loop5: detected capacity change from 0 to 256 [ 458.131497][ T8388] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 458.844273][T10747] loop5: detected capacity change from 0 to 512 [ 458.851957][T10747] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode [ 459.059192][T10747] EXT4-fs (loop5): 1 truncate cleaned up [ 459.065133][T10747] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none. [ 459.121286][T10747] EXT4-fs error (device loop5): ext4_read_inline_dir:1601: inode #12: block 7: comm syz.5.2158: path /376/bus/file0: bad entry in directory: rec_len is smaller than minimal - offset=40, inode=2085390, rec_len=0, size=80 fake=0 [ 459.145370][T10747] EXT4-fs (loop5): Remounting filesystem read-only [ 459.831376][ T8388] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 459.989593][ T4479] EXT4-fs (loop5): unmounting filesystem. [ 460.002389][T10669] chnl_net:caif_netlink_parms(): no params data found [ 460.019755][T10758] loop3: detected capacity change from 0 to 128 [ 460.089435][T10758] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 460.189231][ T8388] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 460.200402][T10758] ext4 filesystem being mounted at /402/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 460.499587][T10766] overlayfs: upper fs needs to support d_type. [ 460.685623][T10772] loop5: detected capacity change from 0 to 256 [ 460.694111][T10669] bridge0: port 1(bridge_slave_0) entered blocking state [ 460.701250][T10669] bridge0: port 1(bridge_slave_0) entered disabled state [ 460.711554][T10669] device bridge_slave_0 entered promiscuous mode [ 460.720514][T10669] bridge0: port 2(bridge_slave_1) entered blocking state [ 460.728741][T10669] bridge0: port 2(bridge_slave_1) entered disabled state [ 460.744177][T10669] device bridge_slave_1 entered promiscuous mode [ 460.958537][ T4278] EXT4-fs (loop3): unmounting filesystem. [ 460.992393][T10669] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 461.054382][T10669] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 461.301981][T10778] x_tables: ip_tables: osf match: only valid for protocol 6 [ 461.335690][ T8388] tipc: Disabling bearer [ 461.365808][ T8388] tipc: Left network mode [ 461.376702][T10669] team0: Port device team_slave_0 added [ 461.433832][T10669] team0: Port device team_slave_1 added [ 461.510254][T10781] loop2: detected capacity change from 0 to 512 [ 461.603925][T10669] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 461.615401][T10781] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 461.638026][T10669] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 461.678833][T10781] ext4 filesystem being mounted at /390/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 461.755463][T10669] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 461.877504][T10669] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 461.890043][T10669] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 462.138205][T10669] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 462.391405][T10669] device hsr_slave_0 entered promiscuous mode [ 462.433635][T10669] device hsr_slave_1 entered promiscuous mode [ 462.473483][T10669] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 462.481101][T10669] Cannot create hsr debugfs directory [ 462.481531][T10789] overlayfs: missing 'lowerdir' [ 462.635007][ T4275] EXT4-fs (loop2): unmounting filesystem. [ 462.735879][ T26] audit: type=1326 audit(1759069307.037:83): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10790 comm="syz.3.2175" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5d8af8eec9 code=0x7ffc0000 [ 462.800348][ T26] audit: type=1326 audit(1759069307.067:84): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10790 comm="syz.3.2175" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5d8af8eec9 code=0x7ffc0000 [ 462.830385][ T26] audit: type=1326 audit(1759069307.067:85): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10790 comm="syz.3.2175" exe="/root/syz-executor" sig=0 arch=c000003e syscall=307 compat=0 ip=0x7f5d8af8eec9 code=0x7ffc0000 [ 462.863043][ T26] audit: type=1326 audit(1759069307.067:86): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10790 comm="syz.3.2175" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5d8af8eec9 code=0x7ffc0000 [ 462.967539][T10791] tipc: New replicast peer: fe80:0000:0000:0000:0000:0000:0000:00bb [ 462.982213][ T26] audit: type=1326 audit(1759069307.067:87): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10790 comm="syz.3.2175" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5d8af8eec9 code=0x7ffc0000 [ 462.991129][T10791] tipc: Enabled bearer , priority 10 [ 463.005426][ T26] audit: type=1326 audit(1759069307.067:88): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10790 comm="syz.3.2175" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f5d8af8eec9 code=0x7ffc0000 [ 463.033236][ T26] audit: type=1326 audit(1759069307.067:89): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10790 comm="syz.3.2175" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5d8af8eec9 code=0x7ffc0000 [ 463.055660][ T26] audit: type=1326 audit(1759069307.067:90): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10790 comm="syz.3.2175" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5d8af8eec9 code=0x7ffc0000 [ 463.078938][ T26] audit: type=1326 audit(1759069307.067:91): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10790 comm="syz.3.2175" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f5d8af90de7 code=0x7ffc0000 [ 463.169623][ T26] audit: type=1326 audit(1759069307.067:92): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10790 comm="syz.3.2175" exe="/root/syz-executor" sig=0 arch=c000003e syscall=44 compat=0 ip=0x7f5d8af90d5c code=0x7ffc0000 [ 463.788106][T10810] x_tables: ip_tables: osf match: only valid for protocol 6 [ 465.180348][T10827] loop3: detected capacity change from 0 to 512 [ 465.320087][T10669] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 465.345845][T10833] loop5: detected capacity change from 0 to 256 [ 465.349312][T10827] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 465.363517][T10669] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 465.379231][T10827] ext4 filesystem being mounted at /408/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 466.453049][T10669] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 466.501716][T10669] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 466.538750][ T4278] EXT4-fs (loop3): unmounting filesystem. [ 466.686535][ T8388] device hsr_slave_0 left promiscuous mode [ 466.703905][ T8388] device hsr_slave_1 left promiscuous mode [ 466.722264][ T8388] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 466.730096][ T8388] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 466.747113][ T8388] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 466.754859][ T8388] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 466.773071][ T4320] usb 6-1: new high-speed USB device number 4 using dummy_hcd [ 466.802623][ T8388] device veth1_macvtap left promiscuous mode [ 466.808937][ T8388] device veth0_macvtap left promiscuous mode [ 466.815443][ T8388] device veth1_vlan left promiscuous mode [ 466.821393][ T8388] device veth0_vlan left promiscuous mode [ 466.962941][ T4320] usb 6-1: Using ep0 maxpacket: 32 [ 466.971080][ T4320] usb 6-1: config 0 has an invalid interface number: 16 but max is 0 [ 466.994897][ T4320] usb 6-1: config 0 has no interface number 0 [ 467.015016][ T4320] usb 6-1: config 0 interface 16 altsetting 0 bulk endpoint 0x6 has invalid maxpacket 1023 [ 467.036902][ T4320] usb 6-1: config 0 interface 16 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0 [ 467.077794][ T4320] usb 6-1: config 0 interface 16 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 0 [ 467.104782][ T4320] usb 6-1: New USB device found, idVendor=0499, idProduct=102a, bcdDevice=85.2d [ 467.117992][ T4320] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 467.276188][ T4320] usb 6-1: Product: syz [ 467.281695][ T4320] usb 6-1: Manufacturer: syz [ 467.286593][ T4320] usb 6-1: SerialNumber: syz [ 467.303256][ T4320] usb 6-1: config 0 descriptor?? [ 467.308970][T10841] raw-gadget.0 gadget.5: fail, usb_ep_enable returned -22 [ 467.402370][T10860] x_tables: ip_tables: osf match: only valid for protocol 6 [ 467.824459][ T4320] snd-usb-audio: probe of 6-1:0.16 failed with error -12 [ 467.848591][ T4320] usb 6-1: USB disconnect, device number 4 [ 467.899827][ T8560] udevd[8560]: error opening ATTR{/sys/devices/platform/dummy_hcd.5/usb6/6-1/6-1:0.16/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 468.117294][T10862] loop4: detected capacity change from 0 to 8192 [ 468.206385][ T26] kauditd_printk_skb: 7 callbacks suppressed [ 468.206402][ T26] audit: type=1804 audit(1759069312.507:100): pid=10862 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.4.2198" name="/newroot/396/file0/bus" dev="loop4" ino=1048623 res=1 errno=0 [ 468.530782][T10876] loop5: detected capacity change from 0 to 128 [ 468.557248][T10876] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none. [ 468.592291][T10876] ext4 filesystem being mounted at /384/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 468.743045][T10200] usb 5-1: new high-speed USB device number 6 using dummy_hcd [ 468.955462][T10200] usb 5-1: config 0 has an invalid interface number: 186 but max is 1 [ 468.971757][T10200] usb 5-1: config 0 has no interface number 1 [ 468.976686][T10880] loop3: detected capacity change from 0 to 512 [ 468.987965][T10878] overlayfs: upper fs needs to support d_type. [ 469.024404][T10200] usb 5-1: New USB device found, idVendor=0582, idProduct=0005, bcdDevice=e5.83 [ 469.040948][T10200] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 469.053435][T10200] usb 5-1: Product: syz [ 469.072656][T10200] usb 5-1: Manufacturer: syz [ 469.085500][T10200] usb 5-1: SerialNumber: syz [ 469.096087][T10880] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 469.103852][T10200] usb 5-1: config 0 descriptor?? [ 469.159658][T10880] ext4 filesystem being mounted at /411/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 469.323727][T10200] usb 5-1: USB disconnect, device number 6 [ 469.331793][ T8388] team0 (unregistering): Port device team_slave_1 removed [ 469.567147][ T4479] EXT4-fs (loop5): unmounting filesystem. [ 469.677087][ T8388] team0 (unregistering): Port device team_slave_0 removed [ 469.780747][T10887] overlayfs: missing 'lowerdir' [ 469.921958][ T8388] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 470.118766][ T8388] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 470.468872][T10899] loop4: detected capacity change from 0 to 128 [ 470.728992][T10901] x_tables: ip_tables: osf match: only valid for protocol 6 [ 471.476718][T10906] loop5: detected capacity change from 0 to 256 [ 471.500076][T10906] exfat: Deprecated parameter 'namecase' [ 471.508796][T10906] exfat: Deprecated parameter 'utf8' [ 471.518104][T10906] exfat: Deprecated parameter 'namecase' [ 471.525972][T10906] exfat: Deprecated parameter 'utf8' [ 471.543301][ T8388] bond0 (unregistering): Released all slaves [ 471.578377][T10906] exFAT-fs (loop5): failed to load upcase table (idx : 0x00012153, chksum : 0x555ffa9e, utbl_chksum : 0xe619d30d) [ 471.819108][ T4278] EXT4-fs (loop3): unmounting filesystem. [ 472.319731][T10917] loop2: detected capacity change from 0 to 512 [ 472.529475][T10917] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 473.194716][T10924] loop3: detected capacity change from 0 to 128 [ 473.281809][T10669] 8021q: adding VLAN 0 to HW filter on device bond0 [ 473.399063][T10924] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 473.428418][T10924] ext4 filesystem being mounted at /412/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 473.496441][T10669] 8021q: adding VLAN 0 to HW filter on device team0 [ 474.682604][ T8356] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 474.696178][ T8356] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 475.130076][ T56] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 475.153834][T10930] overlayfs: upper fs needs to support d_type. [ 475.223723][ T56] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 475.288749][ T56] bridge0: port 1(bridge_slave_0) entered blocking state [ 475.295996][ T56] bridge0: port 1(bridge_slave_0) entered forwarding state [ 475.619978][ T4275] EXT4-fs (loop2): unmounting filesystem. [ 475.642678][ T4278] EXT4-fs (loop3): unmounting filesystem. [ 475.916583][ T56] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 476.143681][ T56] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 476.233396][ T56] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 476.254009][ T56] bridge0: port 2(bridge_slave_1) entered blocking state [ 476.261172][ T56] bridge0: port 2(bridge_slave_1) entered forwarding state [ 476.331013][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 476.406468][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 476.562523][ T56] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 476.599106][T10949] loop5: detected capacity change from 0 to 512 [ 476.615522][ T56] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 476.655875][T10952] x_tables: ip_tables: osf match: only valid for protocol 6 [ 476.681952][ T56] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 476.750307][T10949] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback. [ 476.768017][T10951] loop2: detected capacity change from 0 to 512 [ 476.788815][ T56] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 476.812422][T10949] ext4 filesystem being mounted at /393/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 476.856804][ T56] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 476.886526][T10951] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 476.923186][ T56] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 476.941629][T10951] ext4 filesystem being mounted at /406/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 477.009181][T10669] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 477.068591][T10669] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 477.255462][ T56] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 477.327425][ T56] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 477.383751][ T56] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 477.709584][ T4479] EXT4-fs (loop5): unmounting filesystem. [ 477.876105][T10968] loop5: detected capacity change from 0 to 128 [ 477.976889][T10968] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none. [ 478.018744][T10968] ext4 filesystem being mounted at /394/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 478.581221][ T4275] EXT4-fs (loop2): unmounting filesystem. [ 478.614803][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 478.622425][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 478.681168][T10669] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 478.758612][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 478.772474][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 478.807466][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 478.818298][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 478.835029][T10669] device veth0_vlan entered promiscuous mode [ 478.854757][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 478.870988][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 478.887561][T10669] device veth1_vlan entered promiscuous mode [ 478.929104][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 478.945287][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 478.961858][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 478.971923][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 478.996571][T10669] device veth0_macvtap entered promiscuous mode [ 479.014922][T10669] device veth1_macvtap entered promiscuous mode [ 479.040959][T10669] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 479.060035][T10669] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 479.083027][T10669] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 479.126274][T10669] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 479.143359][T10669] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 479.145602][T10976] overlayfs: upper fs needs to support d_type. [ 479.154653][T10669] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 479.171296][T10669] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 479.182054][T10669] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 479.210169][T10669] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 479.227432][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 479.236787][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 479.248056][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 479.263527][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 479.280679][T10669] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 479.298015][T10669] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 479.326114][T10669] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 479.340118][T10669] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 479.352494][T10669] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 479.388570][T10669] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 479.398912][T10669] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 479.415600][T10669] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 479.442442][T10669] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 479.458375][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 479.486496][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 479.513547][T10669] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 479.528997][T10669] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 479.554121][T10669] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 479.578720][T10669] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 479.604398][T10994] loop4: detected capacity change from 0 to 256 [ 479.631998][T10994] exfat: Deprecated parameter 'namecase' [ 479.678877][T10994] exfat: Deprecated parameter 'utf8' [ 479.716037][T10994] exfat: Deprecated parameter 'namecase' [ 479.729292][T10994] exfat: Deprecated parameter 'utf8' [ 479.742292][T10994] exFAT-fs (loop4): failed to load upcase table (idx : 0x00012153, chksum : 0x555ffa9e, utbl_chksum : 0xe619d30d) [ 479.810465][ T8356] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 479.835341][ T8356] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 479.866604][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 480.146642][ T8356] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 480.212719][ T8356] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 480.305107][ T8388] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 480.314378][T11002] x_tables: ip_tables: osf match: only valid for protocol 6 [ 480.656136][ T4479] EXT4-fs (loop5): unmounting filesystem. [ 480.814293][T11005] loop3: detected capacity change from 0 to 512 [ 480.838941][T11006] loop2: detected capacity change from 0 to 512 [ 480.901307][T11005] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 480.931817][T11005] ext4 filesystem being mounted at /420/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 480.959151][T11016] loop5: detected capacity change from 0 to 128 [ 480.968475][T11006] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 481.005236][T11006] ext4 filesystem being mounted at /410/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 481.059072][T11018] loop4: detected capacity change from 0 to 256 [ 481.200968][T11018] exfat: Deprecated parameter 'namecase' [ 481.207540][T11018] exfat: Deprecated parameter 'utf8' [ 481.213109][T11018] exfat: Deprecated parameter 'namecase' [ 481.218818][T11018] exfat: Deprecated parameter 'utf8' [ 481.292541][T11018] exFAT-fs (loop4): failed to load upcase table (idx : 0x00012153, chksum : 0x555ffa9e, utbl_chksum : 0xe619d30d) [ 482.672871][T11016] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none. [ 482.681814][T11016] ext4 filesystem being mounted at /395/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 482.765460][ T4275] EXT4-fs (loop2): unmounting filesystem. [ 482.909543][ T4278] EXT4-fs (loop3): unmounting filesystem. [ 483.330058][T11031] overlayfs: upper fs needs to support d_type. [ 483.552367][T11034] loop0: detected capacity change from 0 to 1024 [ 483.571228][T11034] EXT4-fs: Ignoring removed orlov option [ 483.672384][T11034] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 483.946454][T11044] loop3: detected capacity change from 0 to 128 [ 483.986878][ T4479] EXT4-fs (loop5): unmounting filesystem. [ 485.299767][T11051] x_tables: ip_tables: osf match: only valid for protocol 6 [ 485.740269][T11059] overlayfs: missing 'lowerdir' [ 486.007143][T10669] EXT4-fs (loop0): unmounting filesystem. [ 486.140250][T11066] loop0: detected capacity change from 0 to 256 [ 486.147884][T11066] exfat: Bad value for 'gid' [ 487.229755][T11077] loop5: detected capacity change from 0 to 256 [ 487.303110][T11077] exfat: Deprecated parameter 'namecase' [ 487.337457][T11077] exfat: Deprecated parameter 'utf8' [ 487.372994][T11077] exfat: Deprecated parameter 'namecase' [ 487.378748][T11077] exfat: Deprecated parameter 'utf8' [ 487.503285][T11077] exFAT-fs (loop5): failed to load upcase table (idx : 0x00012153, chksum : 0x555ffa9e, utbl_chksum : 0xe619d30d) [ 487.625883][T11083] loop2: detected capacity change from 0 to 128 [ 487.748218][T11083] EXT4-fs (loop2): Test dummy encryption mode enabled [ 487.910609][T11083] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 488.043351][T11083] ext4 filesystem being mounted at /414/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 488.068299][T11090] loop3: detected capacity change from 0 to 128 [ 488.087144][T11090] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 488.147775][T11090] ext4 filesystem being mounted at /422/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 488.454221][T11097] x_tables: ip_tables: osf match: only valid for protocol 6 [ 488.788985][T11106] binder: 11103:11106 ioctl c0306201 200000000180 returned -14 [ 488.799548][T11106] binder_alloc: 11103: binder_alloc_buf, no vma [ 488.803915][ T4275] EXT4-fs (loop2): unmounting filesystem. [ 489.147157][T11116] overlayfs: missing 'lowerdir' [ 490.116648][T11114] ªªªªªª: renamed from vlan0 [ 490.143491][T11125] overlayfs: unrecognized mount option "/" or missing value [ 490.451477][T11129] syz.4.2272[11129] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 490.451981][T11129] syz.4.2272[11129] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 490.520639][T11129] loop4: detected capacity change from 0 to 1024 [ 490.544924][T11129] EXT4-fs: Ignoring removed orlov option [ 490.598213][T11128] loop0: detected capacity change from 0 to 128 [ 490.860851][T11129] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 490.885748][T11129] ext4: Unknown parameter 'ÉÆ÷'G›çÃhë¬Xë¯[G~ëÔþÖúß{ÙøïÛ¸ÿÃIûýÚúÖÛøaÏ?i§mÛ' [ 491.119186][T11124] overlayfs: upper fs needs to support d_type. [ 491.226253][T11135] loop2: detected capacity change from 0 to 256 [ 491.534309][T11135] exfat: Deprecated parameter 'namecase' [ 491.540050][T11135] exfat: Deprecated parameter 'utf8' [ 491.594052][T11135] exfat: Deprecated parameter 'namecase' [ 491.633242][T11135] exfat: Deprecated parameter 'utf8' [ 491.660545][T11135] exFAT-fs (loop2): failed to load upcase table (idx : 0x00012153, chksum : 0x555ffa9e, utbl_chksum : 0xe619d30d) [ 492.411555][ T4265] EXT4-fs (loop4): unmounting filesystem. [ 492.628923][T11145] loop4: detected capacity change from 0 to 128 [ 492.646921][T11145] EXT4-fs (loop4): Test dummy encryption mode enabled [ 492.719457][T11147] x_tables: ip_tables: osf match: only valid for protocol 6 [ 492.820719][T11145] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 493.034691][T11145] ext4 filesystem being mounted at /417/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 494.371413][ T4278] EXT4-fs (loop3): unmounting filesystem. [ 494.383914][ T4265] EXT4-fs (loop4): unmounting filesystem. [ 494.896707][T11171] loop4: detected capacity change from 0 to 256 [ 495.548929][T11171] exfat: Deprecated parameter 'namecase' [ 495.612982][T11171] exfat: Deprecated parameter 'utf8' [ 495.670744][T11171] exfat: Deprecated parameter 'namecase' [ 495.714857][T11171] exfat: Deprecated parameter 'utf8' [ 495.730237][T11159] af_packet: tpacket_rcv: packet too big, clamped from 42 to 4294967286. macoff=82 [ 495.779090][T11171] exFAT-fs (loop4): failed to load upcase table (idx : 0x00012153, chksum : 0x555ffa9e, utbl_chksum : 0xe619d30d) [ 495.935920][T11181] loop2: detected capacity change from 0 to 512 [ 496.012907][T11181] EXT4-fs (loop2): ext4_check_descriptors: Block bitmap for group 1 overlaps superblock [ 496.108793][T11181] EXT4-fs (loop2): ext4_check_descriptors: Inode bitmap for group 1 overlaps superblock [ 496.119624][T11181] EXT4-fs (loop2): ext4_check_descriptors: Inode table for group 1 overlaps superblock [ 496.437660][T11181] EXT4-fs (loop2): revision level too high, forcing read-only mode [ 496.469890][T11190] loop4: detected capacity change from 0 to 2048 [ 496.479854][T11190] EXT4-fs: Ignoring removed nomblk_io_submit option [ 496.489974][T11181] [EXT4 FS bs=4096, gc=2, bpg=34, ipg=32, mo=c042e01c, mo2=0000] [ 496.731149][T11181] EXT4-fs (loop2): orphan cleanup on readonly fs [ 496.762290][T11190] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 497.223635][T11181] EXT4-fs error (device loop2): ext4_validate_block_bitmap:438: comm syz.2.2284: bg 0: block 34: padding at end of block bitmap is not set [ 497.314091][T11181] Quota error (device loop2): write_blk: dquota write failed [ 497.321595][T11181] Quota error (device loop2): qtree_write_dquot: Error -28 occurred while creating quota [ 497.331696][T11181] EXT4-fs error (device loop2): ext4_acquire_dquot:6816: comm syz.2.2284: Failed to acquire dquot type 1 [ 497.348711][T11181] EXT4-fs (loop2): 1 truncate cleaned up [ 497.363285][T11181] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 497.814540][ T4265] EXT4-fs (loop4): unmounting filesystem. [ 497.869829][ T4275] EXT4-fs (loop2): unmounting filesystem. [ 497.908638][T11203] loop3: detected capacity change from 0 to 128 [ 498.001693][T11203] EXT4-fs (loop3): Test dummy encryption mode enabled [ 498.059744][T11204] binder: 11200:11204 ioctl c0306201 200000000180 returned -14 [ 498.109625][T11203] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 498.126092][T11208] loop4: detected capacity change from 0 to 128 [ 498.148231][T11201] binder_alloc: 11200: binder_alloc_buf, no vma [ 498.162958][T11203] ext4 filesystem being mounted at /427/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 498.210582][T11208] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 498.285265][T11208] ext4 filesystem being mounted at /421/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 498.640267][T11208] overlayfs: upper fs needs to support d_type. [ 498.779536][ T4265] EXT4-fs (loop4): unmounting filesystem. [ 499.251194][T11224] loop5: detected capacity change from 0 to 256 [ 499.292255][T11224] exfat: Deprecated parameter 'namecase' [ 499.345555][T11224] exfat: Deprecated parameter 'utf8' [ 499.396403][T11224] exfat: Deprecated parameter 'namecase' [ 499.462505][T11224] exfat: Deprecated parameter 'utf8' [ 499.513258][T11224] exFAT-fs (loop5): failed to load upcase table (idx : 0x00012153, chksum : 0x555ffa9e, utbl_chksum : 0xe619d30d) [ 500.492915][ T26] audit: type=1326 audit(2000000005.940:101): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11237 comm="syz.4.2308" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe90278eec9 code=0x7ffc0000 [ 500.672913][ T26] audit: type=1326 audit(2000000005.970:102): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11237 comm="syz.4.2308" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe90278eec9 code=0x7ffc0000 [ 500.776812][T11244] x_tables: ip6_tables: SNPT target: used from hooks FORWARD, but only usable from INPUT/POSTROUTING [ 501.242516][ T26] audit: type=1326 audit(2000000005.970:103): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11237 comm="syz.4.2308" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe90278eec9 code=0x7ffc0000 [ 501.505256][ T1274] ieee802154 phy0 wpan0: encryption failed: -22 [ 501.511616][ T1274] ieee802154 phy1 wpan1: encryption failed: -22 [ 501.526448][ T26] audit: type=1326 audit(2000000005.970:104): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11237 comm="syz.4.2308" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7fe90278eec9 code=0x7ffc0000 [ 501.549242][ T26] audit: type=1326 audit(2000000005.970:105): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11237 comm="syz.4.2308" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe90278eec9 code=0x7ffc0000 [ 501.576386][T11249] loop4: detected capacity change from 0 to 128 [ 501.586306][ T26] audit: type=1326 audit(2000000005.970:106): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11237 comm="syz.4.2308" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe90278eec9 code=0x7ffc0000 [ 501.632012][T11249] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 501.689880][T11249] ext4 filesystem being mounted at /425/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 501.807511][ T26] audit: type=1326 audit(2000000005.970:107): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11237 comm="syz.4.2308" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe90278eec9 code=0x7ffc0000 [ 501.987094][T11258] loop0: detected capacity change from 0 to 512 [ 502.004204][ T26] audit: type=1326 audit(2000000005.970:108): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11237 comm="syz.4.2308" exe="/root/syz-executor" sig=0 arch=c000003e syscall=326 compat=0 ip=0x7fe90278eec9 code=0x7ffc0000 [ 502.073416][T11249] overlayfs: upper fs needs to support d_type. [ 502.196957][ T4265] EXT4-fs (loop4): unmounting filesystem. [ 502.253246][T11258] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 502.262297][T11258] ext4 filesystem being mounted at /18/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 503.320546][T10669] EXT4-fs (loop0): unmounting filesystem. [ 503.978567][T11282] loop0: detected capacity change from 0 to 1024 [ 504.137732][T11282] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 504.153529][T11282] ext4 filesystem being mounted at /21/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 504.314322][T11291] loop5: detected capacity change from 0 to 256 [ 504.414209][T11291] exfat: Bad value for 'gid' [ 504.445234][ T4278] EXT4-fs (loop3): unmounting filesystem. [ 504.451635][ T26] kauditd_printk_skb: 3 callbacks suppressed [ 504.451650][ T26] audit: type=1800 audit(2000000009.900:112): pid=11282 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.2322" name="file1" dev="loop0" ino=15 res=0 errno=0 [ 504.777682][T10669] EXT4-fs (loop0): unmounting filesystem. [ 505.717712][T11307] overlayfs: missing 'lowerdir' [ 505.795578][T11310] loop0: detected capacity change from 0 to 512 [ 505.847044][T11310] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 505.857446][T11310] ext4 filesystem being mounted at /23/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 506.059107][ T4312] usb 6-1: new high-speed USB device number 5 using dummy_hcd [ 507.464006][T11317] fuse: Bad value for 'fd' [ 507.527024][ T4312] usb 6-1: Using ep0 maxpacket: 16 [ 507.546010][ T4312] usb 6-1: config 1 contains an unexpected descriptor of type 0x2, skipping [ 507.603840][T10669] EXT4-fs (loop0): unmounting filesystem. [ 507.747162][ T4312] usb 6-1: config 1 has 2 interfaces, different from the descriptor's value: 3 [ 507.756827][ T4312] usb 6-1: config 1 has no interface number 1 [ 507.763235][ T4312] usb 6-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 0 [ 507.792880][ T4312] usb 6-1: config 1 interface 2 altsetting 1 endpoint 0x82 has an invalid bInterval 0, changing to 7 [ 507.806947][ T4312] usb 6-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40 [ 507.873873][ T4312] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 508.315522][ T4312] usb 6-1: Product: syz [ 508.502714][ T4312] usb 6-1: Manufacturer: syz [ 508.522909][ T4312] usb 6-1: SerialNumber: syz [ 508.929011][T11337] x_tables: ip_tables: osf match: only valid for protocol 6 [ 509.032362][ T4312] usb 6-1: 2:1 : format type 0 is detected, processed as PCM [ 509.066449][ T4312] usb 6-1: 2:1 : invalid UAC_FORMAT_TYPE desc [ 509.074624][ T4312] usb 6-1: 2:1 : invalid channels 0 [ 509.970562][ T4312] usb 6-1: USB disconnect, device number 5 [ 510.080347][ T5754] udevd[5754]: error opening ATTR{/sys/devices/platform/dummy_hcd.5/usb6/6-1/6-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 510.478121][T11344] loop5: detected capacity change from 0 to 256 [ 513.110390][T11357] loop2: detected capacity change from 0 to 512 [ 513.304573][T11357] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 513.378295][T11357] ext4 filesystem being mounted at /430/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 513.530390][T11371] netlink: 'syz.0.2343': attribute type 15 has an invalid length. [ 513.569030][T11371] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready [ 513.586602][T11371] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 513.594281][T11371] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 514.473031][ T14] usb 1-1: new high-speed USB device number 6 using dummy_hcd [ 514.596659][T11381] x_tables: ip_tables: osf match: only valid for protocol 6 [ 514.695050][ T14] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 514.719894][ T14] usb 1-1: New USB device found, idVendor=1908, idProduct=1315, bcdDevice= 0.00 [ 514.757000][ T14] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 514.824566][ T14] usb 1-1: config 0 descriptor?? [ 514.838667][ T14] usb-storage 1-1:0.0: USB Mass Storage device detected [ 514.860330][ T14] usb-storage 1-1:0.0: Quirks match for vid 1908 pid 1315: 20000 [ 514.912390][T11383] I/O error, dev loop0, sector 0 op 0x0:(READ) flags 0x800 phys_seg 1 prio class 2 [ 515.083963][ T14] usb 1-1: USB disconnect, device number 6 [ 515.120497][T11386] I/O error, dev loop0, sector 0 op 0x0:(READ) flags 0x800 phys_seg 1 prio class 1 [ 515.316695][T11392] loop3: detected capacity change from 0 to 128 [ 515.695605][T11397] syz.0.2356 calls setitimer() with new_value NULL pointer. Misfeature support will be removed [ 515.841449][T11398] loop4: detected capacity change from 0 to 256 [ 517.431701][T11403] loop0: detected capacity change from 0 to 40427 [ 517.459715][T11403] F2FS-fs (loop0): invalid crc value [ 517.540513][T11403] F2FS-fs (loop0): Found nat_bits in checkpoint [ 517.830893][T11403] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5 [ 517.984301][T10669] syz-executor: attempt to access beyond end of device [ 517.984301][T10669] loop0: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 519.305374][T11426] loop4: detected capacity change from 0 to 128 [ 519.630106][T11426] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 519.889508][T11426] ext4 filesystem being mounted at /434/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 520.344864][ T26] audit: type=1326 audit(2000000025.800:113): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11434 comm="syz.3.2369" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5d8af8eec9 code=0x7ffc0000 [ 520.385258][ T4275] EXT4-fs (loop2): unmounting filesystem. [ 520.430755][T11426] overlayfs: upper fs needs to support d_type. [ 520.508771][ T4265] EXT4-fs (loop4): unmounting filesystem. [ 520.514940][ T26] audit: type=1326 audit(2000000025.800:114): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11434 comm="syz.3.2369" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5d8af8eec9 code=0x7ffc0000 [ 520.733116][ T26] audit: type=1326 audit(2000000025.830:115): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11434 comm="syz.3.2369" exe="/root/syz-executor" sig=0 arch=c000003e syscall=33 compat=0 ip=0x7f5d8af8eec9 code=0x7ffc0000 [ 520.905390][ T26] audit: type=1326 audit(2000000025.830:116): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11434 comm="syz.3.2369" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5d8af8eec9 code=0x7ffc0000 [ 520.962056][ T26] audit: type=1326 audit(2000000025.830:117): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11434 comm="syz.3.2369" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5d8af8eec9 code=0x7ffc0000 [ 521.034567][T11453] loop5: detected capacity change from 0 to 128 [ 521.171144][ T26] audit: type=1326 audit(2000000025.830:118): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11434 comm="syz.3.2369" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f5d8af8eec9 code=0x7ffc0000 [ 521.175722][T11453] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none. [ 521.270631][T11448] loop3: detected capacity change from 0 to 256 [ 521.311556][T11456] x_tables: ip_tables: osf match: only valid for protocol 6 [ 521.342531][ T26] audit: type=1326 audit(2000000025.830:119): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11434 comm="syz.3.2369" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5d8af8eec9 code=0x7ffc0000 [ 521.367212][T11453] ext4 filesystem being mounted at /423/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 521.560942][ T26] audit: type=1326 audit(2000000025.830:120): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11434 comm="syz.3.2369" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5d8af8eec9 code=0x7ffc0000 [ 521.777375][ T26] audit: type=1326 audit(2000000025.830:121): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11434 comm="syz.3.2369" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f5d8af8eec9 code=0x7ffc0000 [ 522.072248][ T26] audit: type=1326 audit(2000000025.830:122): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11434 comm="syz.3.2369" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5d8af8eec9 code=0x7ffc0000 [ 522.183907][T11458] overlayfs: upper fs needs to support d_type. [ 523.347709][T11468] loop4: detected capacity change from 0 to 128 [ 523.564193][T11468] FAT-fs (loop4): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 524.074585][T11468] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 524.454975][T11474] loop0: detected capacity change from 0 to 512 [ 524.491842][T11474] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 524.505518][T11474] ext4 filesystem being mounted at /37/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 525.645853][ T4479] EXT4-fs (loop5): unmounting filesystem. [ 525.701277][T10669] EXT4-fs (loop0): unmounting filesystem. [ 525.781220][T11475] ------------[ cut here ]------------ [ 525.787300][T11475] kernel BUG at fs/buffer.c:2666! [ 525.807976][T11475] invalid opcode: 0000 [#1] PREEMPT SMP KASAN [ 525.814136][T11475] CPU: 0 PID: 11475 Comm: kmmpd-loop0 Not tainted syzkaller #0 [ 525.821720][T11475] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 525.831987][T11475] RIP: 0010:submit_bh_wbc+0x4ac/0x4d0 [ 525.837415][T11475] Code: 01 89 e9 80 e1 07 80 c1 03 38 c1 0f 8c c0 fe ff ff 48 89 ef e8 f5 69 e2 ff e9 b3 fe ff ff e8 bb 48 92 ff 0f 0b e8 b4 48 92 ff <0f> 0b e8 ad 48 92 ff 0f 0b e8 a6 48 92 ff 0f 0b e8 9f 48 92 ff 0f [ 525.857058][T11475] RSP: 0018:ffffc9000e59fcc8 EFLAGS: 00010293 [ 525.863173][T11475] RAX: ffffffff81ee863c RBX: 0000000000000000 RCX: ffff888026df3b80 [ 525.871180][T11475] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 525.879190][T11475] RBP: 0000000000003801 R08: dffffc0000000000 R09: ffffed100e00a17a [ 525.887195][T11475] R10: ffffed100e00a17a R11: 1ffff1100e00a179 R12: 1ffff1100e00a179 [ 525.891521][T11486] overlayfs: missing 'lowerdir' [ 525.895194][T11475] R13: 0000000000000000 R14: ffff888070050bc8 R15: ffff888075ef4000 [ 525.895217][T11475] FS: 0000000000000000(0000) GS:ffff8880b8e00000(0000) knlGS:0000000000000000 [ 525.895233][T11475] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 525.895247][T11475] CR2: 0000200000006000 CR3: 000000000c88e000 CR4: 00000000003506f0 [ 525.895264][T11475] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 525.895275][T11475] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 525.895288][T11475] Call Trace: [ 525.895295][T11475] [ 525.895303][T11475] ? debug_object_free+0x2a2/0x3e0 [ 525.959031][T11475] write_mmp_block_thawed+0x360/0x4f0 [ 525.964538][T11475] ? read_mmp_block+0x6f0/0x6f0 [ 525.969437][T11475] ? rcu_read_lock_any_held+0xb0/0x120 [ 525.974952][T11475] ? rcu_read_lock_bh_held+0xe0/0xe0 [ 525.980296][T11475] ? kmmpd+0x6f7/0x980 [ 525.984574][T11475] write_mmp_block+0x13e/0x3a0 [ 525.989372][T11475] kmmpd+0x6f7/0x980 [ 525.993300][T11475] kthread+0x29d/0x330 [ 525.997443][T11475] ? write_mmp_block_thawed+0x4f0/0x4f0 [ 526.003035][T11475] ? kthread_blkcg+0xd0/0xd0 [ 526.007654][T11475] ret_from_fork+0x1f/0x30 [ 526.012093][T11475] [ 526.015139][T11475] Modules linked in: [ 526.023671][T11475] ---[ end trace 0000000000000000 ]--- [ 526.031690][T11475] RIP: 0010:submit_bh_wbc+0x4ac/0x4d0 [ 526.037184][T11475] Code: 01 89 e9 80 e1 07 80 c1 03 38 c1 0f 8c c0 fe ff ff 48 89 ef e8 f5 69 e2 ff e9 b3 fe ff ff e8 bb 48 92 ff 0f 0b e8 b4 48 92 ff <0f> 0b e8 ad 48 92 ff 0f 0b e8 a6 48 92 ff 0f 0b e8 9f 48 92 ff 0f [ 526.059910][T11475] RSP: 0018:ffffc9000e59fcc8 EFLAGS: 00010293 [ 526.066072][T11475] RAX: ffffffff81ee863c RBX: 0000000000000000 RCX: ffff888026df3b80 [ 526.076612][T11475] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 526.084994][T11475] RBP: 0000000000003801 R08: dffffc0000000000 R09: ffffed100e00a17a [ 526.095444][T11475] R10: ffffed100e00a17a R11: 1ffff1100e00a179 R12: 1ffff1100e00a179 [ 526.103757][T11475] R13: 0000000000000000 R14: ffff888070050bc8 R15: ffff888075ef4000 [ 526.111869][T11475] FS: 0000000000000000(0000) GS:ffff8880b8e00000(0000) knlGS:0000000000000000 [ 526.123046][T11475] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 526.129782][T11475] CR2: 0000200000006000 CR3: 000000007e1c0000 CR4: 00000000003506f0 [ 526.164474][T11475] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 526.172532][T11475] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 526.181950][T11475] Kernel panic - not syncing: Fatal exception [ 526.188355][T11475] Kernel Offset: disabled [ 526.192701][T11475] Rebooting in 86400 seconds..