last executing test programs: 52.746842777s ago: executing program 1 (id=604): r0 = mq_open(&(0x7f0000000380)='!selin\xdb\b\x00\xbf\xd9l\xd7\xcd\xc0uxse\xee\x0e\xcd\xce6\xbf\xfa:\xb9-a\xb8\xef\x8de\x14\xbc\x9ej\xa1q\xa2\xa5\t\x98\x8a\x8f>\xba]\xdeC xx\xba\xb6&8`\xc80\xdb>\xd7%\xcbI\x14C\xfb\xac\xdcq\x86\x85\x95\x90\x8f\xcc\xbe\x8f8hE\xf5\x1f\xdcO\xe9\xc5\x06L\x9f\xcdY\x88\x83\x892\xa4\xb4\xa5\x94,M=\x8a\xcd\x90\x15\x8an\x8d\x90\xe3\xf0\xa8p\xf2\xc0\f\xfbR\x17[\xa0\xdc\xe75r4\xd9\t\x80', 0x6e93ebbbcc088cf2, 0x1c9, 0x0) preadv(r0, 0x0, 0x0, 0x60200, 0x8) 52.594447864s ago: executing program 1 (id=606): mkdirat(0xffffffffffffff9c, &(0x7f0000002000)='./file0\x00', 0x0) mount_setattr(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x9100, &(0x7f0000000140)={0x4, 0x71}, 0x20) 52.411125902s ago: executing program 1 (id=609): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000000c0)=@ipv6_newrule={0x4c, 0x20, 0x1, 0x0, 0x25dfdbfb, {0xa, 0x40, 0x10, 0x0, 0x4, 0x0, 0x0, 0x3, 0x3001a}, [@FRA_DST={0x14, 0x1, @rand_addr=' \x01\x00'}, @FRA_SRC={0x14, 0x2, @private0={0xfc, 0x0, '\x00', 0x1}}, @FIB_RULE_POLICY=@FRA_FWMARK={0x8, 0xa, 0x6}]}, 0x4c}}, 0x40000) sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000340)=@newlink={0x5c, 0x10, 0x439, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x10, 0x1000}, [@IFLA_LINKINFO={0x3c, 0x12, 0x0, 0x1, @ipip6={{0xb}, {0x2c, 0x2, 0x0, 0x1, [@IFLA_IPTUN_REMOTE={0x14, 0x3, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02'}, @IFLA_IPTUN_LOCAL={0x14, 0x2, @private2={0xfc, 0x2, '\x00', 0xff}}]}}}]}, 0x5c}}, 0x0) 52.019465978s ago: executing program 1 (id=612): syz_mount_image$fuse(0x0, &(0x7f0000000000)='./file0\x00', 0x21000, 0x0, 0x0, 0x0, 0x0) mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x101091, 0x0) mount$bind(&(0x7f0000000340)='./file0/../file0\x00', &(0x7f0000000280)='./file0/file0\x00', 0x0, 0xb101e, 0x0) mount$9p_xen(0x0, &(0x7f0000000080)='./file0/file0\x00', 0x0, 0x20000, 0x0) open_tree(0xffffffffffffff9c, &(0x7f0000000300)='\x00', 0x89901) 51.851369716s ago: executing program 1 (id=615): socket$packet(0x11, 0x2, 0x300) socket$inet6_udplite(0xa, 0x2, 0x88) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) socket$packet(0x11, 0x3, 0x300) socket$nl_netfilter(0x10, 0x3, 0xc) socket$inet_sctp(0x2, 0x5, 0x84) pipe2$9p(&(0x7f0000000240), 0x0) pipe2$9p(&(0x7f00000001c0), 0x0) syz_open_dev$loop(&(0x7f0000000240), 0x5, 0x80000) r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="1c0000005e00010028bd7000fedbdf2500000000", @ANYRES32=r0, @ANYRES16], 0x1c}, 0x1, 0x0, 0x0, 0x4040c04}, 0x20040840) 51.387443836s ago: executing program 1 (id=621): r0 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TCSETSW(r0, 0x5403, &(0x7f0000000500)={0x4009, 0x400008, 0x0, 0x787e, 0x3, "00a6400d00000000000000f8ffffff00"}) ioctl$TIOCSTI(r0, 0x5412, &(0x7f0000000080)=0x29) ioctl$TIOCSTI(r0, 0x5412, &(0x7f0000000040)=0x9) ioctl$TIOCL_GETMOUSEREPORTING(r0, 0x5412, &(0x7f0000000000)=0xd) 50.975076393s ago: executing program 32 (id=621): r0 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TCSETSW(r0, 0x5403, &(0x7f0000000500)={0x4009, 0x400008, 0x0, 0x787e, 0x3, "00a6400d00000000000000f8ffffff00"}) ioctl$TIOCSTI(r0, 0x5412, &(0x7f0000000080)=0x29) ioctl$TIOCSTI(r0, 0x5412, &(0x7f0000000040)=0x9) ioctl$TIOCL_GETMOUSEREPORTING(r0, 0x5412, &(0x7f0000000000)=0xd) 6.364494955s ago: executing program 3 (id=995): r0 = socket(0xa, 0x5, 0x0) pipe(&(0x7f0000000440)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000440), 0x2040, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1000003, 0x13, r4, 0x0) vmsplice(r1, &(0x7f0000000100)=[{&(0x7f0000000480)="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", 0xb85}, {0x0}], 0x2, 0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2000003, 0x8031, 0xffffffffffffffff, 0x0) close_range(r0, 0xffffffffffffffff, 0x0) 4.852228891s ago: executing program 3 (id=1000): r0 = openat$binfmt_register(0xffffffffffffff9c, 0x0, 0x1, 0x0) fsetxattr$trusted_overlay_redirect(r0, 0x0, 0x0, 0x0, 0x3) mkdir(0x0, 0xa) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(0xffffffffffffffff, 0xc0189379, 0x0) getpid() timerfd_settime(0xffffffffffffffff, 0x3, 0x0, 0x0) r1 = socket(0xa, 0x1, 0x0) bind$inet6(r1, &(0x7f0000000000)={0xa, 0x4e22, 0x13, @local, 0x2}, 0x1c) listen(r1, 0x7f) socket$nl_rdma(0x10, 0x3, 0x14) syz_emit_ethernet(0x5e, &(0x7f0000000040)={@local, @broadcast, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "000200", 0x28, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0xa, 0x4, 0x0, 0x0, 0x0, {[@generic={0x0, 0x11, "63d3d7f5d2bb4b478f378a33000069"}]}}}}}}}}, 0x0) 4.479442807s ago: executing program 3 (id=1003): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fd9000/0x18000)=nil, &(0x7f0000000000)=[@textreal={0x8, &(0x7f0000000040)="b800048ed03e0f090f01df656765f2650f09bad004b80900ef0fe3f50f01c50f01df0f01c80f20e06635000020000f22e0", 0x31}], 0x1, 0x13, 0x0, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0xd, 0x4, 0x0, 0x0, 0x2, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sock_ops, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x94) ioctl$KVM_RUN(r2, 0xae80, 0x0) 4.128681022s ago: executing program 3 (id=1006): mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file1\x00', 0x94) mount$fuse(0x0, 0x0, 0x0, 0xfc5cd7921c2c19c4, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0]) mount(0x0, &(0x7f0000000380)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400)) chdir(&(0x7f0000000080)='./file1\x00') mkdirat(0xffffffffffffff9c, &(0x7f0000000200)='./file0\x00', 0x220) openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x40000, 0x120) unlinkat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x200) r0 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) setpgid(r0, r0) setpgid(0x0, r0) llistxattr(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0) 3.777890587s ago: executing program 3 (id=1010): mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x1c0) mount$overlay(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000b80), 0x8, &(0x7f0000000140)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file0'}}]}) chdir(&(0x7f0000000140)='./file0\x00') r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x101142, 0xeaff) r1 = openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0) fcntl$notify(r1, 0x402, 0x100000008) ioctl$FICLONERANGE(r0, 0x4020940d, &(0x7f0000000100)={{r0}, 0x7, 0x4, 0x7ffffffffffffffc}) 3.151504554s ago: executing program 3 (id=1017): r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000400), 0x2, 0x0) write$RDMA_USER_CM_CMD_JOIN_MCAST(r0, &(0x7f0000000500)={0x16, 0x98, 0xfa00, {0x0, 0x1, 0xffffffffffffffff, 0x30, 0x1, @in6={0xa, 0x4e21, 0x3d46, @private2, 0x3}}}, 0xa0) 2.676858834s ago: executing program 33 (id=1017): r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000400), 0x2, 0x0) write$RDMA_USER_CM_CMD_JOIN_MCAST(r0, &(0x7f0000000500)={0x16, 0x98, 0xfa00, {0x0, 0x1, 0xffffffffffffffff, 0x30, 0x1, @in6={0xa, 0x4e21, 0x3d46, @private2, 0x3}}}, 0xa0) 1.874265789s ago: executing program 0 (id=1029): mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0) mount$tmpfs(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB='huge=always,huge=within_size,nr_blocks=5']) chdir(&(0x7f0000000140)='./file0\x00') ftruncate(0xffffffffffffffff, 0x5c4b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, 0xffffffffffffffff, 0x0) madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000100)) 1.694811667s ago: executing program 0 (id=1033): r0 = socket$netlink(0x10, 0x3, 0xc) r1 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r1, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000004240)={{0x14, 0x10, 0x1, 0x0, 0x0, {0xa}}, [@NFT_MSG_NEWSET={0x54, 0x9, 0xa, 0x101, 0x0, 0x0, {0xa, 0x0, 0x2}, [@NFTA_SET_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0x1d}, @NFTA_SET_DATA_LEN={0x8, 0x7, 0x1, 0x0, 0x8000002c}, @NFTA_SET_NAME={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_ID={0x8}, @NFTA_SET_FLAGS={0x8, 0x3, 0x1, 0x0, 0x2a}, @NFTA_SET_DATA_TYPE={0x8}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x1}}}, 0x7c}, 0x1, 0x0, 0x0, 0x4000850}, 0x40) bind$netlink(r0, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc) r2 = socket$igmp6(0xa, 0x3, 0x2) setsockopt$IP6T_SO_SET_REPLACE(r2, 0x29, 0x40, &(0x7f0000000300)=@raw={'raw\x00', 0x8, 0x3, 0x568, 0x0, 0xffffffff, 0xffffffff, 0x210, 0xffffffff, 0x498, 0xffffffff, 0xffffffff, 0x498, 0xffffffff, 0x3, 0x0, {[{{@ipv6={@private0, @mcast2, [], [], 'vcan0\x00', 'dvmrp1\x00'}, 0x0, 0x1e8, 0x210, 0x0, {}, [@common=@unspec=@helper={{0x48}}, @common=@inet=@recent0={{0xf8}, {0x7, 0xfffffff8, 0x8, 0x1, 'syz0\x00', 0xe}}]}, @common=@unspec=@NFQUEUE0={0x28}}, {{@ipv6={@remote, @ipv4={'\x00', '\xff\xff', @local}, [], [], 'erspan0\x00', 'gre0\x00'}, 0x0, 0x258, 0x288, 0x0, {}, [@common=@inet=@hashlimit1={{0x58}, {'pim6reg\x00', {0x0, 0x0, 0x5, 0x0, 0x0, 0x7, 0x3ff}}}, @common=@inet=@hashlimit3={{0x158}, {'batadv_slave_0\x00', {0x3, 0x0, 0x41, 0x0, 0x2, 0x1000, 0x6, 0x3}}}]}, @common=@unspec=@CONNMARK={0x30, 'CONNMARK\x00', 0x1, {0x0, 0x0, 0x0, 0x1}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28, '\x00', 0x7}}}}, 0x5c8) r3 = socket$inet6(0xa, 0x2, 0x88) r4 = openat$rtc(0xffffffffffffff9c, &(0x7f0000001740), 0x80000, 0x0) ioctl$RTC_WKALM_SET(r4, 0x4028700f, &(0x7f0000000000)={0x0, 0x0, {0x14, 0x35, 0x20215, 0xc, 0x8, 0xe80, 0x5, 0x11}}) fcntl$getownex(r0, 0x10, &(0x7f0000000080)={0x0, 0x0}) fcntl$lock(0xffffffffffffffff, 0x24, &(0x7f00000000c0)={0x0, 0x0, 0x2, 0xd0f3, r5}) connect$inet6(r3, &(0x7f00000002c0)={0xa, 0x4e24, 0x0, @rand_addr, 0xd}, 0x1c) sendmmsg(r3, &(0x7f00000092c0), 0x4ff, 0x0) 1.427415359s ago: executing program 0 (id=1036): openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x101142, 0xeaff) mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c8) mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file2\x00', 0x207) mount$overlay(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f00000000c0)={[{@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file2'}}], [], 0x2c}) r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0/file1\x00', 0x20400, 0x20) setxattr$security_capability(&(0x7f0000000080)='./file0/file1\x00', &(0x7f00000001c0), 0x0, 0x0, 0x3) lseek(r0, 0x5, 0x1) 1.197063698s ago: executing program 0 (id=1039): openat$kvm(0xffffffffffffff9c, &(0x7f0000000340), 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r0, &(0x7f0000fd9000/0x18000)=nil, &(0x7f0000000000)=[@textreal={0x8, &(0x7f0000000040)="b800048ed03e0f090f01df656765f2650f09bad004b80900ef0fe3f50f01c50f01df0f01c80f20e06635000020000f22e0", 0x31}], 0x1, 0x13, 0x0, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0xd, 0x4, 0x0, 0x0, 0x2, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sock_ops, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x94) ioctl$KVM_RUN(r0, 0xae80, 0x0) 1.087178153s ago: executing program 0 (id=1041): r0 = socket$inet_tcp(0x2, 0x1, 0x0) sendto$inet(r0, 0x0, 0x0, 0x20000800, &(0x7f0000000040)={0x2, 0x3, @remote}, 0x10) syz_emit_ethernet(0x2a, &(0x7f0000000080)=ANY=[@ANYBLOB="ffffffffffff0180c200000308060001"], 0x0) 1.019682696s ago: executing program 4 (id=1042): r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000005c0)='ns\x00') fchdir(r0) r1 = openat(0xffffffffffffff9c, &(0x7f0000004280)='.\x00', 0x0, 0x0) getdents64(r1, &(0x7f0000000000)=""/45, 0x2d) mprotect(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1) getdents64(r1, &(0x7f0000000100)=""/203, 0xcb) 895.079661ms ago: executing program 4 (id=1043): getsockopt$inet_sctp6_SCTP_CONTEXT(0xffffffffffffffff, 0x84, 0x7d, &(0x7f0000000180)={0x0, 0x71}, &(0x7f00000002c0)=0x8) timer_create(0x0, &(0x7f00000000c0)={0x0, 0x21, 0x2, @thr={0x0, 0x0}}, 0x0) readv(0xffffffffffffffff, &(0x7f00000001c0)=[{&(0x7f0000000500)=""/158, 0x9e}], 0x1) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x28100, 0x0) setsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000000)={@multicast1, @local}, 0xc) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000180)=ANY=[], 0x44}}, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_NMI(r2, 0xae9a) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000440)={[0x0, 0x100000000, 0x0, 0x4000081, 0x100000, 0x0, 0x2004c8, 0x8000000, 0x0, 0x0, 0x7, 0x0, 0x7, 0x0, 0x2, 0xffffffffffffffff]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0)={[0x4, 0x5, 0x6, 0x4004, 0x2, 0x4, 0xefffffffffffffff, 0x400000, 0x0, 0x2000000, 0x0, 0x1c, 0x0, 0xffffffffffffffff, 0x6], 0x0, 0x302000}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 677.933431ms ago: executing program 2 (id=1045): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000680), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = dup(r1) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x2) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000080)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000300)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) openat$dir(0xffffffffffffff9c, 0x0, 0x111080, 0x5c) socket(0x10, 0x803, 0x0) syz_mount_image$vfat(&(0x7f0000000100), &(0x7f0000000000)='.\x00', 0x80c8d0, &(0x7f0000000140)=ANY=[], 0x1, 0x35d, &(0x7f0000001740)="$eJzs3L9vG2Ucx/FPjO04qZrzgEAMqF+JBZZTEiYWhIVaCRFBCTXih4S4NhewctiRzwoyQqSdWBgQfwRD1bFbJeg/kIWNAbGwZUFioAPikO+Xz42TuDEuTfJ+SdE9yfN8757zczl9n5Pv2X//u8+3NkN30+upVDPNSdIDqa6SMnPpthSXq6pr6KZeuvDnL8+/+8GHbzbW1i6vm11pXHt51cyWLv34xVcLabN789qrf7z/x+rve8/sPbf/z7XPWqG1Qmt3eubZ9c5vPe964NtGK9xyza4Gvhf61mqHfjepj3alwLfNoLO93TevvXBxcbvrh6F57b5t+X3rdazX7Zv3qddqm+u6dnFRx5ufoM1Z1ry9vu410l9eeerRgm/MokeYTjTmku52G95gbBcO1DRvP55eAQCAJ0ma/+fZfmmQ0h+T/xfl+X85yf9/lVTI/+/U7/cuvHd3Kc3/71UH+b9UyP8/yXdVk22U8vy/JmmY/3eS+UGe/2/8N/n/wYzodPt2dHAURXmxUFPLSyP5P86oQf6/mP7/xm59dGc5LpD/AwAAAAAAAAAAAAAAAAAAAABwGjyIIieKIifZZm+AR858+p5IlNYfEv6Ir4zjSTM6/sOfCccfp9xw4Y7ykhR8s9PcaSbbtMF9SYF8LcvR3/H1kBqUqzet+BbdT8FuGr+700xuDY1NteL4FTmqPxwfRVfeWLu8YpatWlCIr2ixGL8qR09L82PiVy2RH78y2Fb14guFeFeOfr6hjgJtpG/GZfFfr5i9/vaajfZ/IW4HAAAAAMBZ4Fquns1/i0sIuu7B+mR+nNQn8+uyxj8fSObXyw/Pz+P4skrl/+usAQAAAAA4X8L+l1teEPjdGRVuSTqqTVlTHeKd9IspB6qGzzAm3WG2QO4hbeY0N11XxxVqkuJCdvCT7WfQtxMcvTK2qjLRJ1Y6UVcvVScflOqhVdljo8PCdfUEn2EtctKxmGJMn/3+h7+ObpM8GZMm2eGrd2vHnOkRl0T5qDbV4860MnKTKM3wBgQAAADgsRkm/dlfXpMqE4e/Nat+AQAAAAAAAAAAAAAAAAAAAAAAAAAAAABwnsx6/b/iygIAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADAefdvAAAA//+RPfV1") ioctl$KVM_RUN(r3, 0xae80, 0x0) syz_fuse_handle_req(0xffffffffffffffff, 0x0, 0x0, 0x0) 660.243981ms ago: executing program 4 (id=1046): openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x101142, 0xeaff) mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c8) mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file2\x00', 0x207) mount$overlay(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f00000000c0)={[{@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file2'}}], [], 0x2c}) r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0/file1\x00', 0x20400, 0x20) setxattr$security_capability(&(0x7f0000000080)='./file0/file1\x00', &(0x7f00000001c0), 0x0, 0x0, 0x3) lseek(r0, 0x5, 0x1) 503.495948ms ago: executing program 2 (id=1047): r0 = socket$inet_udp(0x2, 0x2, 0x0) bind$inet(r0, &(0x7f0000000040)={0x2, 0x4e20, @multicast1}, 0x10) r1 = socket$inet_udp(0x2, 0x2, 0x0) bind$inet(r1, &(0x7f0000000080)={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x17}}, 0x10) r2 = socket$netlink(0x10, 0x3, 0x4) writev(r2, &(0x7f0000000300)=[{&(0x7f0000000340)="580000001400192340834b80040d8c560a117436c379000000000000000058000b4824ca945f6400940f6a0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100090c100000000000204e0000", 0x58}], 0x1) 503.336028ms ago: executing program 4 (id=1048): openat$kvm(0xffffffffffffff9c, &(0x7f0000000340), 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r0, &(0x7f0000fd9000/0x18000)=nil, &(0x7f0000000000)=[@textreal={0x8, &(0x7f0000000040)="b800048ed03e0f090f01df656765f2650f09bad004b80900ef0fe3f50f01c50f01df0f01c80f20e06635000020000f22e0", 0x31}], 0x1, 0x13, 0x0, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0xd, 0x4, 0x0, 0x0, 0x2, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sock_ops, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x94) ioctl$KVM_RUN(r0, 0xae80, 0x0) 408.732282ms ago: executing program 4 (id=1049): mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0) mount$tmpfs(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB='huge=always,huge=within_size,nr_blocks=5']) r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0) ftruncate(r0, 0x5c4b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r0, 0x0) madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000100)) 378.502874ms ago: executing program 2 (id=1050): bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x22) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)) epoll_create1(0x0) r0 = openat$udambuf(0xffffffffffffff9c, &(0x7f0000000040), 0x2) r1 = memfd_create(&(0x7f00000004c0)='y\x105\xfb\xf7u\x83%:r\xc2\xb9x\xa4q\xc1\xea_\x8cZ7\xe7a\x9b\x11x\x0e\xa1\xcf\x1a\x98S7\xc9\x00\x00\x00\x00\x00\x00\a\x00\x00\x00\x00\x00\x00\x04\x879\xa24\xa9am\xde\xb2\xd3\xcbZJoa\xc4\x1acB\xaa\xc1\xfb Q\xd4\xf4\x01\xa52\xe2DG\xd4\xbd{\x9f\xa9\x97\x9b@\xdbU\xb1\xe1br\xb6\x008\xe3\x10\xff\xc2\x9d\r2\x9e\x8e\x04sW\x1b\xb7\xb3\xa2\xc9&@\xca\xda\xdc\xe2/\x97X\xac\b\xb0\xc2<\x80E\x1a\xbc\xc7W\xda9VsA\xaf\xc6\x90i\xa1\xb5M\xa2\x85\xa6y\xc4J\xf1\xf7\xfcD\x95\xe3\xeb\xc7\xbc\x91\xb0\xa8\x9eo\xebF(\x9dL\x01vRk\xaacB\x04\xa7I\v\x86EZ\x96\xd5\x14O\xf8\xb5C\x1f\xb6b8b\x06A2@D\\\xe8R\xe4\xcd\xec\xcc\xd1\x0fre\xe86\xcd\xeb\xc4$\x98\x06J\xd6dD\x8d_U`ji{\xab\x97\xaf;l\x1f\xaf\xb38U\xcb\xfa\xb3j\x92\f\x81\xa0\xa2-g\b\x99\x0e\x8d\x8d\x16\x05\x00\x00\x00\x00\x00\x00\x00\'\x93\xef\x1d\xa0H\xd9\xbd\xd9\xaf\x12$\x8d\x16%\x8b\x00\x88\xd1\x1eQB\x18\xc1-\xc4\x8fK\xf8\xfa\xb6\xf8\v;\xaa\x8fW\xcc\n\x17\x7f\x98\xb7\xcdqV\xd4\xf0)\xfa\x0fG\xc8\xbf\xfd\xe8>K\f\xcd+\xb0\x99Q\xba/\xa8\xb9`k\b\xd1\xcc\xfc\xeaA\"\v=\x83fC\x90%\xa1d\x91\xf8:\x16<\xad\xc2\x18\xdf\x01\xe2\x96\xfcj\xe9\xa4\x065m\x03\x05Np\xda\"\xf1\xb6\xbcP\x8fP\x8d\x89%\xf2\x12T\xd0\xc3\x15W\x9c\x87\x1b\x8c\xc9\xd9\xc6\xad\x96-d\xa2wFB\xcaB\xa5\x15\xf8,\x04\x1c*\xd98\x8bG\x90\x81`\x03\xe0\xde\x9c\x9a\x0f\x1b\x8f\xd2%*&$Wc\xb3\xa6\xc4TK1}2\xb3\xab\xf4\xb7\xb7\x85\apa\xaf\x1c\x10i\xb9\x9f\x06\xff4%\"7f \x0e\xf5Bk\r\xac\"\x13tNx\xc0$\x85\x9f', 0x2) ftruncate(r1, 0xffff) close(0x3) fcntl$addseals(r1, 0x409, 0x7) ioctl$UDMABUF_CREATE(r0, 0x40187542, &(0x7f00000001c0)={r1, 0x1, 0x0, 0x8000}) socket$alg(0x26, 0x5, 0x0) unshare(0x22020600) pselect6(0x40, &(0x7f00000001c0)={0x300, 0x18800000000000, 0x4, 0xfffffffffffffffd, 0x0, 0x0, 0x7, 0x3}, 0x0, &(0x7f00000002c0)={0x3ff, 0x3ff, 0x2800000000004, 0x9, 0x3, 0xfffffffffffffffc, 0x7fffffff}, 0x0, 0x0) 235.37854ms ago: executing program 2 (id=1051): mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x10) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0) mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x404, &(0x7f0000000440)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}}) read$FUSE(r0, &(0x7f00000021c0)={0x2020, 0x0, 0x0, 0x0, 0x0}, 0x2020) write$FUSE_INIT(r0, &(0x7f0000001dc0)={0x50, 0x0, r1, {0x7, 0x2b, 0x0, 0x2940984a, 0x6, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc}}, 0x50) statx(0xffffffffffffff9c, &(0x7f0000000640)='./file0/file1\x00', 0x1000, 0x100, 0x0) syz_fuse_handle_req(r0, &(0x7f0000004200)="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", 0x2000, &(0x7f0000000f40)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000540)={0x90, 0x0, 0x7ff, {0x5, 0x3, 0xdc, 0x5, 0x2, 0x6, {0x4, 0x638, 0xfffffffffffffff8, 0x8, 0x3, 0x400000000000079, 0xfffffffe, 0x7, 0x1, 0x8000, 0x4, r2, r3, 0x7, 0x5}}}, 0x0, 0x0, 0x0, 0x0, 0x0}) chdir(&(0x7f00000000c0)='./file0/file0\x00') syz_fuse_handle_req(r0, &(0x7f0000008e80)="0e24ac7705237246fc1db898fda0c7f95d375ea7f4bc7a07517a51095880f2219d9e4329f6c4e734f2bb34564a1c2e298d7eb8844d8af7b30e1a71750a2511e44b368fc6e9ae65e40e64e4b5fd3d0f87009b5727519df1ddbcbb38ef00871f00ed2543b7f2990a44482bf3d7478c3c2799dd8120fc3258cfeccf648fe15128c54d1d4272bfd44950915afd3aa0abb5b04d4dbec287df0816c3e43c2503cac6e95041aa205c5958f51a9c4c8214ae2108401b08ae7ff8440988c93424422f06c628077d767432521fefa0f8d0f387e685e4af54bdd7f931c3eace52ca7a6ba2d0fd701e5d77393e6268f52e68d97087f87edd2ae49180028bf08ab7e02c3ef12aec2f286d1bf40fd3a5f337b0f0b63d701c60bae36a5e1644bc90f34165049ac5c4fc8a0ada90e345df1420a58c92cfcc6973d3fa532b8b4088592e0f2c36f7e756139b272fc99104a93c5cf2599c683b60910af98a55b17bf646ddddb13e73d0bfdcfb3e3d261d84f83270832708f6e5b3fd2bb98e135b914e21681b409d717afa8f65dc9d3ab6a78b9b026b6aa1f1ee5872426b4bd4fd652072f86dfb96ef79649396a0f19239b0ce6ba9a8ff49f8f4820579a3169fe54b6f060a69236d57a1a13f033054fb22dbfb3f72861acc7ed51ebed60a8a03c3e16030e7a114d0690c268713d8206b34a005fb89d5123103d36ab57594fc731e8a6353ab3be3af22faa6f85b54ba78b90aba30e17dad90c31a20cc5f39c8ff50097bb310535efd6ecbc49dfc2d547bee78d5c5ebfe0d4bd3c093413e12cfefbfdb5f38c437ce831b209f3337979f6e0c46d8bf272a3ac6076c7940f905536167d2285d2a7d0e75f1765f0c080f1dfd9bae98afdfda7e7837d1081d83effab72e6eff493cc9031a299383f726227d75474e4c8378b2376fc7fef8b213b26794edc4c2fc110d917b863d25e7382b19b1b90cc90428f6aa0b1df015bcbbe83de36ff56c065ba92f1f49e61ac6bc6b3c20e42e7763dd52f66095f07e235f0062accb0eab60ce54d84391cbf2613096ded353543b5d6a884cc981b759e4499ab72881f88542208c9fd81b541514d6d2ed54683926b0d6bfe904b76215aea6db4cff8242d3ee5524acb456ec219e42d46c1b1e3fa9748404db4583537b195ad326853ed9472790656ab01bd031b19fb64b0e5227d18ea09ea7557c9afdc918c918a1fafdd18f9f54682bf0f49ba2ae14f963340dc6600e1b344ce50ed61af0726e3441583f8cf045df193dfbce93285d7fddfc0d831fefc85cd3e7920757f27a4e09b5cfa77b93a5e82f571d1293d9437cf89997011eee6ba9f9b7e6ce2fe1c381cb2db053a6e2d9351edbddcc10faf80f5b686727dd8982b18004fde3467f4a7e98b13250df7e1eef67da8f7fe3fffd3a185457aaaecb38f5ca31ea3e35cc7c6adc3873c734cb661e3c43e64bf0843b2cf1d950642eeb20d698cc9e598eb7ec71d3a0d83f311afa2d40a659a219defad76fdb7e8146756ff02a8a74abf8a8ccd72ffd7f70911698d54552aada8ef27b3f5b2644d4d0fda2976d838686a7469b296a98b67b7cc9834dc94f2292581dd242d1abb42db30d4de42c4611c0fbdc77134a6cb0c0d7b36d18a217aaabd34744ed5cac171e2a8bfe90b2dad03d0ca5f74d3eb95c454757be4c77f386c63fee91e95a508d8fcea5cd6bef9bd05e0b992da4e4cbc2f52c9cfde09b6f17f3d73fffc01d7ac55f328061516cf0e4fa50fff5b03dca67b163a68d9ddbb988f50a68fdbfc6e6feb6c892b58eb766d3429396669228dd1653bcbb5cb47c0857d27660e62d23e90178ef2b75713c2c58a207d8c21e9ce64556bfd71b40207ee76416f9f40c5601173b1d84105ac331247c021941a6a27e86de4f9a4db382f67dd6dc8e86a02a8438ddda1a636256fcac8e2328aaa3c054ab86f55c9d7bb2c2999a5c7933f092a3bf66523cb388052c65d138346ad1c5137fa383d7b9023b1868af02cf48923289162544db8fb29cf592c306a76ec92b35f33fae90f5aeac830b82dcc3f0069f668aebe6e5fe13c811f150de080632e357221d2f220ef95ce436730d1f9390d9f192220347d04ac5a94631e349ad330276b9524f775f7a8f68be7823ad7ed3ac4b4d87a12c0261846ec1dfe785b60675968e79496d7ae4e5d478661bd7125f2cc0de35422764556b63d687b339e2b25ad43ca85bc861944d19f9689dffe71d87030d23e0428942441d622de361778cbe8952f7b93c74783552b0087bff535afaf92935aa889018e46d34b2a258f863d89e4b6da841389fa63d489d135e559b7d11b8d97215323548501c275248eb07916ae3f0814c6af32f5ece7eb0330bdaac4394c518f3c8e48cafc36057cfa7788fb2f9a73bddb1d40546cf21b681e6c9ef6f0ac43c512762323209b2c878ed5a9f55e207b56a33c863eaa34a6eb14ad8de9885d52a7c073a406ea4324f8433ddfd89b269d6716072627054197928370ae01a94e3dd4d07125560a5cb1d1bfbbd8c099194de5f787a550a3400ce796e115702255d1f17d96a7fb63384ff497cf72beeb50bd24008ffc58256aec6b2faff2c20336e29bc1acd853214496893af25e8efb571c96edf64fbcd136c95e1213e73bc3f1a896fca2bde0894449ee2927c38114de5f1063d0c203c3fab1389861c4cda173a991eb275ccffe04f75d67df181c26777b18e5552b42fb4332046554109a9a6007592a62d2553dbd098f1daae593322e45f66a64bdb09869feede70d1fcc88fd4c19f4008d1b1d5f34a6025a71d9bf6ff20daccda25cbcc662cfc687ffe5ebc344468f338f4c9bbdc7ed9820feb5e3b09ace47f4253a81da7029816656613aef7456524fc68f4345bc0e7f26240d4594374d2fcb39560e2828e0e219b2417f5787add73418b465b1308d5ac5169791f55802d11354eb62940a492d955e8bd11b952a28acea90cb43af774e6fc75e57383e68937aa3643aa37f7e7665c703576579dcccf63d2bdadfbf14be796d4023689880453b0ff576fb01bb141be3c17478f0d555ca96ff7c3f3e4f53be1f088827203fab2008ec6687e4f5df305f58fe647b93ad09a70165c989498d313ca5ba05f3ce90adc80d55b56d0ec4cd5a78268cc6def7e8bb810bc29f8e742487048363815fa3fe645194ee8529ffba2b8d6756915530f142b42f31eae1703faeae14f3d81ae5c2297c3476b0f89b32f53802453fc74c80bf217097577a910a51860bbead4f73a29423816eadca7b1e2d24a9895949b352fe59f13abfa7b69c0f0061eaae2ada6d72b2f90c9c553ad8be9ee4e4ad2876851a3f3e979c4d770d7df9a27e72ab215ec3efd252d622e7ec6160ac951d1ee9b8c0adc0fc853f2a4f36602c955b61646246e07bd7b745f5d3e99f95f55a1616ed36633db6efa97a96dacf12219cf1555222cc6a589a6def5680124f7ac2f1ec83832a30fd011ff02dbf4ab01afb5989fcc678383f179b5d647cf0a762acf0714e9e4151afa39626884e6f56859d3aafc9fc7f7bbcfb27e038e238783cf56c86f0be52568c4bed0917d651f4d26f76ba6c343e075146504590da391e1c4d028dc81767294df5de9370d62756584baa3bfa31578b6f754e77b0d6ea7357d8915ff0bda182b604b014ecf7dc94ab97061765bfab2053fa863fb671fad3b6312d6e59ba0e70b0ea2476399e925f8fa2e51c9bbfac19aeb11db3dd6ea8d916c4d4eae7de17259e6155591be9b704d3e24cda131eded5e9dd6758dc90a5c7a43332957d26ac91bc65120b1c6b7b94fdf83b397bd8990747f01d3ed912abeab74bb5ae3ff2ee0009cfe8cdb6b4e75a7de3566c8ff7bdddb06b7775cf3116b029e7c85fb7189147e753d614caa490594ff2e22b7144153c635ac7b20a49c2d8575af2f546b968bea9fc4ee5ff417a6fa86ca09c8fed14ea4b721b2d5870d4b670761c70516daa07809ac3817246844f01eadda045c57d1c864cbaabedf90cb42d374392e77b3d1a1afdf962feb55a4e04a77c8fb452429007e0046a406a5f2325f0c7f75a19deed1b456ac5de6486eebbc126ff97c5ee8531a975676b61a0d79f56ff75cbcd20337119422815537a57766648777f1b5f75d358dc63764083406e2d95afd87d00099581940367ed029065df0d9008301fb92e019feac9bb406032167eb053ab07309385771aacc2c52a5d526d14721fd530e63cb7c53f27518c679ccd0f3d2db8aa52ef95c6ac3f5dac0b9b5c3a96a794690f3d49aa0e5a4a95b36609cf61d471cc2c0cd55e8cd96be47558b055280313b15907eba5761180f5229a59341faa1e11eb5b6a48ec9320efb1d9f00936d9a5d91f2bf837fe72edf6ec025c1c4e87171cc02c7342fa5d4f825157d70d8f66f6fa0542de2255373d8743612e7d4e16b8ceebf4e92c40926f21929cab343b981120236b8b0b900772a33bbe4eef06feff3c7b104cf63d92c7f9233982f9b713489fb8bf80f2feffd6c22007b63925209e158a837dc95b42d52ed764350b5f83ad54041bc15a7552c0b8c1933d674a16b0c0934277d9895c1ad01327231a7fffc4b5e1a1495489559bebff324d54f2894563a23b85d3bef62c356eb476e01e0c039287ca38626751f701ef4e20d951433940ce1138660589ff389dee9f85a7faebb9cc494bbe7138b413303af6e05806032d8131d5a25a5d7c0ed87906d92bdd87ce7d62c13989f3435ad77a29b721d8219d2cf530c2ec9edc3de9ce2dcd5053c38a6797de8d8cbd3596ed545d2dc6f825a0e65428dd73df96d5f3e40dbe5a62f0f440f712419d1558ef97bf1d0ca1d59fa1caf6ed0d422456848e196e94b4741b757935bc3aef3a46f53066dc7a74f42d539da2228fb8593ddb79ac977a8b67c0a6058efdbe23ba75fb2faf5b9f152e60b8a96ee19fbf0c417c89f882c53d389bf27a18b9e34b2a33aa27029cfed7a03335cf33d95ea803ad125237a9cc70520f18bc7e9f0c1432368a5304544f5d1e1599242bcd905f69f25cd0fcde391960fc57426e0bf22155ea315f0caee330bf3b7f4f4363f87146531175ad4f69002d46e95a48f714c9bbd9e39b95783406d477dabe03397d68e7af5ee623b4c05eb64120ca76af4f1d37348f93f39d8fa1d22fef874ce65b66f8a1aaff9db97520dab97eb8d1f99efef4d4c9704d181d687874ec4fbb400ed4ce050ac997c843e647bebeddc33eeb70201b3286ea25ad1bdb80dba1fc78a6883ecca84d17645be16bee32967bd487c6f5e0714ca819d5913436ac9aeeab4e5092ec1897dad39737365e8414246a81a731bf7d3ad8d789b42c651702b70ee786032356e3b9fc4402104ffbe55026c84e8ec5dd2a1860cefd0e7789ac2a47fa5ee9610dee980fa3c2fa7219b4e57642f31012b3e00e64285fda219fa9ca37955e3c25fd5872172ed2f5651d208897ed4e1d224243b2f241f24580e924e02cb60af5e14898028596400a770f94e67590df5fe99e9d170d061397f71f4202eca4c91c7fc27e2379358a8d9bfc28c2fb67842b0bd1e5e68e017b34084aa08e7453fc6b03bd42772643eae036f25f10e4da022818dc84f35eea2c07e4dbb41e861b8a4c6df4f0b4b785f0df55f863707a0563cdd5b9fcaa352b54071cd486cf4948575ddbe4654a566438922887a3bd304853a98283c7a4d7757cc6e8298b0121aca5fdb64d86996d8c0ddfa1ee4ccef1ee21dcf853bdb02471383f73ddae17dfef217c6a3f79b182fc36bdb47d1899e87bb4c4e490ad4a2724d223b31b889685355f349ca8bc62d39150ebccaba863bd72bf91d65cffe560eecf162b2440f9d74fe0fb3f8479fd8f6293f16e4d67b3ec30e83180444cec51d2b455a3ab2b6286d4fac1acba8b7b5026671fef497d5e050e0aa34dcecf2d06a9e4b64cdb3f9cbb7cadd73c817f255f8e2eb22d6283a7934e0fd64eaf52caab2d1862baf505889e4db1a1870f0049b3ada06d38af52535da352bedbf1e88e34595820cedd4559cbe0fe0578c557a62f56060d75c5a6806e384d3c274c218d57beecbd8e7832f3cc050668b44c1b8ff8cdcd2b85b5ecb9eca1dcc1204d27bc3689578eab43dac5658a1cfe75456b221c15ed26720a49829f96d501fda6d7839724207d6a5f6bb3d8390e90dd7c6b80e15e6b20b7c74ff3282c770eb1c77583fc97bdb5f2df62a74b3385e2e8ba06fc39730f1f02107477c215deb6c8599cdacc7c710b7b1a77afbe3b2a593f6eec5c8014dd366f5890a1a579e51d858cc8ef93aff098af9903b4e3633a3090a630e64be99f49d32d63d779f989d0198044717741d3bfab4242a05dae33f11ed6b1d850fb379f725fdb7b296d9d9b3024160d4fd735a77c8ab23f0816bfc2715a2561c3cee6e41cf79030c1500c09e75ebbd5a7aa8a0e4826542ad46a9350e969b357c142af13afdd8927cdce3d1f35493f6a7a14c5a20739d462d566fe3ab620f66dc23768bd871eb454dad947f2a871efa05d601cf9fb08d992caf6f4b0f652e13df7dfc658f50e0c9bfc3bf28114a51142f65e25435a32c8719fde2a3d5c4850e31ffa675fa44f9e54957d108e46a67a3b7d71b272ecb0385466e39238f6421b2fd6f33a258883a4501b63001ee9ecb9137162488051f7ff15e6f4be81ca31ffac70f48bcd3457fcb137a2f5108d908ba1d51b0fca7e14273b176af4b954837dc3d40b4341fd03063ee145dfc4456bb303bb0540db3aadb26240242f4a55cb9f6623b6e724e0f9d8b73d02c9fd9140873c0bb884e3cf4c844bad6f27388b56840b63d65ca760dbddf778e430e1f03c246e74e9b56a08a56617658f7fc42e3582f3181a720e51598d22062815ca3caebf36389a58278acc788035d8deb0b800180ef6537d92bfa18947cb18232bfd27e048fcd49d44c137f1d8a10294a6dd20251a00c379bb0936fcb5137c9f5a7a7404976c778912a37f1503deb27b85d3b1d886415a98348d3632c7eb4bf58fdfddd5b24407709474e4478c991a03ed8b456d9a71ec82f05791eb17425e0360493fb5ec343eba7e9c970f47f4cd85edda849cc524d42a11eaf29be950e621cd12e16e3a304516ce5c74a2b47a1baf1f3321b84318883bb023cb5f67dc3541a4d72ebb3316244f96cde4aebc1a77336a93d226c315ab02581123140e45373f40c8cfc7fb5d478607f9b38c2b95bcd55fb8a2047569ac7927b9e4208f75032abfe83442d2ca5db1ee8903888548b5fa9724520083052f8e652f1b0d39d031d2c61f63e5cfb98061b5b913dc6da26e690c85b07fa19b9bf83d124a5fcf96de21d9f00c9aaf2ec66580e4dd99c21c01b7557b7c6336cec525003157d3efdd16a52407b35225f65e44933d56c90dbeeffcfbe2b10bdd921a507592817043c88bab1882ac8863f8a73fed3310138ae56c9b5fb8aa22d5d6ab9e5ece2afb94c5054bdc8444b00a46d74716c21346f2dce31f180f3e01453d7a7aaf4200c4be278a2a88fbec4529a551189da822d1365c8ac70bd6c6cb3c3791e183eeba95e65f1f87c10b2f740bee2575807c486e3b7939f093d44693ac069089830afff26d7165712abb7ba5bf8aaa87a3d57c5670b3a45d707b87aa7689b18292d851cac59802b38bd7ab8e1c3b8a134db1a366aaa8f77a6e2c937f49961637d291970b4541e3405948ba2ef49b40f600e28861c54f06a2400f82ffb2b9a0d4c6da720f9fea31dbe3f42aa29bd126fcbfccb9d809c8bbd76d241fc2588963f10434b69e9415d20bea13c30a08b22f5f21bd945a11466d228848b7b68927725239142fc536f784b705d3bd318f5d5fce31ddd32eca57309b1f9e5cdb0164df0bc45d04db323ed272fef5e4e051b3814d8d5e2cc68dd82b67a5de6986b7063851602f833a23946ffb004b9cb30f6af2108e2aee029aa3e4fd525597f4a8d0184750731821bf21aaf703753270d3f12d5ed5f7bdb47c891074a44c63bebe47c66aab7f24e422b5f549249f26cab0aac9484087871de53cdb6d575e0e7ea3c73de23460c5b1bbe1e838433de48ecc812c1e21861dc290f22733090b5d3f88910478bff51307e6d869b68a745255ca007b9f5dda63074845d4d8f03604ada7cb5f8c1bcad9f3a84bab71e6c109ef7bd8eb29ba18011430f28eee91aa83749594aa5c717c0d53e0ff68372284e356e55f9cf33716ade1e148beda327236f4005472600f99a1c2fbe10c5492d2e082d15fa962492b16029a222bce55a001b2726fad239160f3ed55e98343fa5266cd7f5e36158480430e2f802fbfa3aa6e7299ab0940eea91682c79fffb171a705a23b70173f0973ca0b0ea230b306418677be4e6bcca0e6cc7bdbf6a3a96090819d541f505402ce505b40bd7d012ffb6a62f2528c5d370b2d6d6cf4b49c6886d20a5cc94cbe5e7cdf012af5d27c0c89c190956d1aaf1911888b33f67341fe74a10cba3328b84e3c4b83bb8b25da32122ed8df7b831e77bf9528af4b0960a0abb420e931eead4dcf31849cafc6099e8a3053758200bdbb411346662442e8274bc9780fd69abb4ef9ddd292f791b846a5849610862453cdb9263ddc232492de5d24c2c52751223cb961bb9ba7c86988b2a5490c3540ada6ffb9ba287c3e15d228aa0a6491ceced135cb1533b31c0b8ca218ffe4e1a07f29b4557a05b447358350ebfdcff9793b2eb1d7e0ea082b1f4fde8207071a8beb8c1e5efc49e1153fb8fb21ebc46c4d5b404a743a54076e4987da1748a39c70c083960873ffa0b88d4cccae69cdf4630a78250db81141e216e2007b7aea7500ad3176ae8e22c5fce5f14f0aa581bbe520a6d6c5f504547b178e62236f54809dd43763107e49b0d44a7968dcdf73a8c3c395fecd8a557ab850bebf1a67e82714131e0380fd6684e8094783190ce491a03243d903b4488d574be3847b4219145f5aa05201b4bafcbe2c2c98fb4e968c15822e20c06e83b0fc24d8d30acc9e24b36cfd06ad1a073719bf3a92922111e76efac5a813faaca76acfb065ad4faf1efe403aee89bc149bfa4e907008fe5f81d4e795c7a646c2b48e79b7ba54ec42425978c4d084c3c1f66ccdf230515366b08cd506a210e92e75bf7adfbaada44b619feecc4427ca23e74b68abfe9796a6e9a1f540d6a438042f506c27bb4f4814c73541b38eb7d548010363cdf7b2b6faf1a41a10fb71bd206388f32777c6b8e3fd7f6cd76342a1fba80deba8100f878eb4e4a09287ce513bb6b1f445e3cbdf220ff5faceb36c3a7f1a1710e780b9772124e5728fed14bbe348f0f4831913ae69ff40c953cc6447babbcf55b08491357531dc9d86fbe5cd4fd0d6e03e5b71daca299a8d31c3596fb98d21acc09d03e3fe7cc1f13c3e8b49b9dd40b8397ae617b322951a4bd8fe8a1eff9f920b79ddad1639da4d4a18c12ca3b65430e41506198483d5a2a0bc058269e7575cd6dc8d1a0393748622369c107b8a5fe570a7795d98b75e23d4c05c39655c8b81a389b512461a20711487695b8d4ff2d81ab4fe8c884768cbb99640a9ec5b54d3cd13a90f318e0264038b7f91dd73205342400eb9d186ed30286ff7cb9e459341ee59638b253148cfa74bada6b959f185b5cf68a313ff757836aafbbdf1f4440ec0f44d99c3950a6e2fdc6b7d8c6120f921630b93ec31c216e93e6b3781d02ef2339dbea56125ffe79019b1689c25d35db7d3f3e5c613060400977a2f7e142b50591b2ae5738dfd208c0f4daeda71edd05beaf4fc0b128fd004bd2bf1cea1d6883b4287cab96354e8f34f9d3707763b731686cbe6c175848a9f4bdd7c2961d270d9ef63ac95aa0603d3612a8933660c303fd1a91b3eb700718cdf40a34795399a7812c89b44f7b223dbe8bb08e0c01c4bf740c95431445a6b6fae337df7778e834813b34e0e6d3f0e935fdd136e6ac50c8e11fffb518b06c734985f31884a411293a3a3757a6e5be3d2495916314dc072fc9c0dbefcb5100513df15c18e04b2ad744d660f9cb5f4c64eead30fdd52507bba003c625108e6cdfcd7a1b38e8fd4fef0d419f695904be3026aeb9bab1ad3566a0a46a2a2d092c75ae2cbad109a117b7db76b729aaab3a89bcef8a5e63008613414fa5ce56988bbe3e839ccb8e192c56115522620e0851fbd19790f3acf9669915ef0f1ca0a2ca8a5578747f2d6cbec07a7bc4128ae131b7685191d5cf05210cc4bca2dc6303747c72cc0e4165512cccd43c5a79800b84ca018190a70984d73056e2a8bbdea91fdfcda72d9f8705227c5c4fdef9e0b81948420cae7344ba872a85e2d47c1e40fefcaa8d246fac5c7abe90b2bf39ec601390dd0a8cacbe82fc1ba0cf13c3cd89220a42e82ce62ccdf63fcb1be53c91d36349c7d3aa30170dccd5262d9ee570581ae5c9f84cf5b32261d8f531f6df0636cea496c698f36aee3274f0f9dfb7d72c074530a2679d13e5cc1bfcd957be3eba04a12f8897507122fc74ad66a7f621012ea43878cfa9a2a3ed95581aebdf1ffd7a8985f65c63de9eab4286cb94e57e3076e4e2850faef69b1d9f75ff45227b9e1bcc256c0236dc63483cffb8d72543eb213b2e0a487217850ab3bf7213dabb360c35714dbab5604357ea7b23fc0ba27d0bd09dc09e7ac471088c58d28e3ef12c3054d8a017a5023f378ae81bbbf55228620e061ace44906cc82520bfac2e1d7f7e340f53215bcf6f6078d82266abaaf479e084e73f0600572a7d482a84633eefc6e196f27638e8f08c6a4c615ef98238895d2cffb221a800424e115b0e84b960424fe39a2f33a203eb42f7f5e70e8f73aa172a8adf1d977b176cae2750859c96692bdac1067b7a1b1496dbd7c8220f3f0b42938ba0779c9bfa414a0e6073556d651d526875a4cfa95e8e981f40fc6d8bdd4704a12f44612e8eb8842535edea3d609d929b3fc05c2b02bd44e02a732ba814caf9e03e0bd7f41a24b3b6e282d07d74de2ab968ac739e994c0265416a7347f44bb80d1948cf8c9a69409e850b13f379dd672eb34a732b0b1d7b67ef2ee1bcb686cc4d1f4512c1ffb105ad2e46d783e0ca5f97ef9e4ab2798ce1c29b0f3292fbf1001d9487adfc3b34b4329be6b72ebf7a62158e488bd7888060f1e562045ecf9388c492fe3e0a6ce9b92b5a3eb29c80cc69da72f7dc2f2ac730e5d82cc5b75cecdd0809db8f1cc17bf5b72ed46fa3038722b6369d9f9497b83cc2ea1d0ebea0ac1306a83249705ae0b1c0145af67388d2153dbcb8856971216ee8f3d0cc6f532f159e5e28c6308154bf8efe46333b30740e9d94993393a27eb263dc0d19f1913ffa3953a52847fe979b9e682d304944529131b02ed468c88b5aac0483ff22ad56f9630b4f6134f266ee446068edd079411571f7e77acf2035d483043b8ad85b6277dca9e590ca801dc1896acdfc88dcf3cf83fca85afefe6addd27131f8be0fd5a80a0723556639fff59d56453ec76d3ebad3f5cb04e7b758b13e3d64c2ff5c3b018f52ba9363e053ee2fd78e35b2a834a069953e759455047521ad6615ab87e6381f0363a4554b86dd14f5ab43eb6b3fff64d94af0949a9e5c63d8c8e883886e61bd36f5ca11dfe2c025290cd49f369f8a3f9023d5daa7410fba96927fd0b5d2c75e00", 0x2000, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000300)={0x90, 0x0, 0x0, {0x5, 0x100000003, 0xfffffffffffffffd, 0x4000000000008, 0xfffffffd, 0x5, {0x4, 0x9, 0x8, 0x0, 0x7, 0x3, 0x8, 0x6, 0x6f514e41, 0x8000, 0xe47, 0xee01, r3, 0x1, 0x81}}}, 0x0, 0x0, 0x0, 0x0, 0x0}) 214.70423ms ago: executing program 4 (id=1052): mknodat$loop(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x1000, 0x0) pipe2$9p(0x0, 0x0) r0 = mq_open(&(0x7f0000000000)='!selinu\xff\x7f\x00\x00inux\x00T\x8b\xb5\xf3\xcb\xdd\xe3\xbf2\x86\x01\x84\xdd\x8a\x8f_l\xa1L\xb1\xef\xb2\xc9\xf7+C\xb2\x8e9\xb8\xec\x1a\xe5\xaeq\x8fZ\xff\xbcY+\xaf0<\xa3\xb8\"Zm\x1c\x18\x11\x93\xb5z \xc2\x8b\xa9\xc5\x9es\t\xfe\x002\xa0-\xaf\xcdP\x9f\xe5Iv\xce*\xa8\xa3\x14i\x05\x8f\x9b\x1eB\x9f\x9d#E\x19\xdc\xfe\xc7\xeb\xb5\xcd\xc8\xe2U\xce\x00\x00', 0x6e93ebbbcc0884f2, 0x2c, &(0x7f0000000300)={0x0, 0x1, 0x3}) mq_timedsend(r0, 0x0, 0x0, 0xa, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000180), 0x2004000, &(0x7f00000000c0)={'trans=fd,', {}, 0x2c, {'wfdno', 0x3d, r0}, 0x2c, {[{@version_L}], [], 0x6b}}) 185.289412ms ago: executing program 0 (id=1053): r0 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r0, &(0x7f0000000040)={0x2, 0x4e21, @local}, 0x47) r1 = getpid() fcntl$setownex(r0, 0xf, &(0x7f0000000000)={0x2, r1}) connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, 0x0, 0x0) setsockopt$inet_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f00000001c0), 0x4) sendto$inet(r0, &(0x7f00000004c0)='<', 0x381, 0x805, 0x0, 0x0) 11.399579ms ago: executing program 2 (id=1054): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x20040, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = ioctl$KVM_GET_STATS_FD_cpu(r2, 0xaece) preadv(r3, &(0x7f00000001c0)=[{&(0x7f0000000140)=""/15, 0xf}], 0x1, 0x1, 0x7fff) 0s ago: executing program 2 (id=1055): r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket(0x10, 0x3, 0x0) sendmmsg$alg(r1, &(0x7f0000000140), 0x4924b68, 0x0) r2 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000100), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000140)={'veth0_macvtap\x00', 0x0}) sendmsg$ETHTOOL_MSG_DEBUG_SET(r1, &(0x7f0000000500)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000480)={&(0x7f0000000400)={0x60, r2, 0x20, 0x70bd2d, 0x25dfdbfc, {}, [@ETHTOOL_A_DEBUG_HEADER={0x4c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'wlan0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r3}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_macvtap\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8}]}]}, 0x60}, 0x1, 0x0, 0x0, 0x1}, 0x4) sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=@newlink={0x60, 0x10, 0xffffffffffffffff, 0x70bd27, 0x25dfdbfa, {0x0, 0x0, 0x0, 0x0, 0x67a38, 0x5d20b}, [@IFLA_LINKINFO={0x40, 0x12, 0x0, 0x1, @ipip6={{0xb}, {0x30, 0x2, 0x0, 0x1, [@IFLA_IPTUN_REMOTE={0x14, 0x3, @private2={0xfc, 0x2, '\x00', 0x1}}, @IFLA_IPTUN_COLLECT_METADATA={0x4}, @IFLA_IPTUN_LOCAL={0x14, 0x2, @private2={0xfc, 0x2, '\x00', 0x1}}]}}}]}, 0x60}, 0x1, 0x0, 0x0, 0x1}, 0x20040040) kernel console output (not intermixed with test programs): 0x170/0x170 [ 151.837102][ T6398] ? __might_fault+0xaa/0x120 [ 151.841843][ T6398] ? __might_fault+0xc6/0x120 [ 151.844211][ T6389] F2FS-fs (loop1): inject no more block in inc_valid_node_count of f2fs_new_node_page+0x187/0x910 [ 151.846648][ T6398] ? __might_fault+0xaa/0x120 [ 151.846684][ T6398] drm_ioctl+0x661/0xac0 [ 151.866969][ T6398] ? drm_atomic_set_property+0x2820/0x2820 [ 151.872954][ T6398] ? drm_ioctl_kernel+0x4c0/0x4c0 [ 151.878054][ T6398] ? bpf_lsm_file_ioctl+0x9/0x10 [ 151.883043][ T6398] ? security_file_ioctl+0x80/0xa0 [ 151.888320][ T6398] ? drm_ioctl_kernel+0x4c0/0x4c0 [ 151.893569][ T6398] __se_sys_ioctl+0xfd/0x170 [ 151.898565][ T6398] do_syscall_64+0x55/0xb0 [ 151.903077][ T6398] ? clear_bhb_loop+0x40/0x90 [ 151.907820][ T6398] ? clear_bhb_loop+0x40/0x90 [ 151.912659][ T6398] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 151.918876][ T6398] RIP: 0033:0x7f0a6a18f749 [ 151.923525][ T6398] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 151.943975][ T6398] RSP: 002b:00007f0a6b07b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 151.952791][ T6398] RAX: ffffffffffffffda RBX: 00007f0a6a3e5fa0 RCX: 00007f0a6a18f749 [ 151.961044][ T6398] RDX: 0000200000000180 RSI: 00000000c03864bc RDI: 0000000000000011 [ 151.969426][ T6398] RBP: 00007f0a6b07b090 R08: 0000000000000000 R09: 0000000000000000 [ 151.977448][ T6398] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 151.985474][ T6398] R13: 00007f0a6a3e6038 R14: 00007f0a6a3e5fa0 R15: 00007fff549d7f38 [ 151.993502][ T6398] [ 151.996705][ C0] vkms_vblank_simulate: vblank timer overrun [ 152.183862][ T5786] syz-executor: attempt to access beyond end of device [ 152.183862][ T5786] loop1: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 152.247866][ T5786] F2FS-fs (loop1): Stopped filesystem due to reason: 3 [ 152.799613][ T5861] hub 4-1:0.0: config failed, can't read hub descriptor (err -90) [ 153.667004][ T6406] loop0: detected capacity change from 0 to 8192 [ 153.696595][ T6406] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 153.735707][ T6406] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 153.745535][ T6406] REISERFS (device loop0): using ordered data mode [ 153.752251][ T6406] reiserfs: using flush barriers [ 153.767759][ T6406] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 153.785663][ T6406] REISERFS (device loop0): checking transaction log (loop0) [ 153.796497][ T6406] REISERFS (device loop0): Using r5 hash to sort names [ 153.807452][ T6406] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. [ 153.935315][ T5861] usbhid 4-1:0.0: can't add hid device: -71 [ 153.949610][ T5861] usbhid: probe of 4-1:0.0 failed with error -71 [ 153.998283][ T5861] usb 4-1: USB disconnect, device number 11 [ 155.359615][ T5861] usb 2-1: new full-speed USB device number 6 using dummy_hcd [ 155.373977][ T6443] 9pnet_fd: Insufficient options for proto=fd [ 155.572920][ T5861] usb 2-1: config 1 interface 0 has no altsetting 0 [ 155.595234][ T5861] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40 [ 155.615180][ T5861] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 155.640971][ T5861] usb 2-1: Product: syz [ 155.659744][ T5861] usb 2-1: Manufacturer: syz [ 155.669568][ T5861] usb 2-1: SerialNumber: syz [ 155.764931][ T6433] loop2: detected capacity change from 0 to 40427 [ 155.823217][ T6433] F2FS-fs (loop2): build fault injection attr: rate: 25, type: 0x7ffff [ 155.841193][ T6433] F2FS-fs (loop2): build fault injection attr: rate: 0, type: 0x7698c [ 156.018154][ T6433] F2FS-fs (loop2): invalid crc value [ 156.037124][ T6433] F2FS-fs (loop2): inject invalid blkaddr in f2fs_is_valid_blkaddr of f2fs_ra_meta_pages+0x1d6/0x920 [ 156.063543][ T6433] F2FS-fs (loop2): Found nat_bits in checkpoint [ 156.973304][ T6433] F2FS-fs (loop2): inject page alloc in f2fs_grab_cache_page of f2fs_ra_meta_pages+0x644/0x920 [ 157.759706][ T968] usb 4-1: new high-speed USB device number 12 using dummy_hcd [ 157.772318][ T6464] loop2: detected capacity change from 0 to 136 [ 157.970166][ T968] usb 4-1: Using ep0 maxpacket: 16 [ 157.992011][ T968] usb 4-1: config 0 has an invalid interface number: 197 but max is 0 [ 158.016518][ T968] usb 4-1: config 0 contains an unexpected descriptor of type 0x1, skipping [ 158.042922][ T968] usb 4-1: config 0 contains an unexpected descriptor of type 0x1, skipping [ 158.068390][ T968] usb 4-1: config 0 has no interface number 0 [ 158.098493][ T968] usb 4-1: config 0 interface 197 altsetting 0 endpoint 0xF has invalid maxpacket 512, setting to 64 [ 158.128433][ T968] usb 4-1: config 0 interface 197 altsetting 0 has a duplicate endpoint with address 0x9, skipping [ 158.162926][ T968] usb 4-1: config 0 interface 197 altsetting 0 bulk endpoint 0x4 has invalid maxpacket 1024 [ 158.204557][ T968] usb 4-1: config 0 interface 197 altsetting 0 has a duplicate endpoint with address 0xF, skipping [ 158.228846][ T968] usb 4-1: config 0 interface 197 altsetting 0 has a duplicate endpoint with address 0x9, skipping [ 158.247729][ T6455] syz.0.163 (6455): drop_caches: 2 [ 158.288565][ T968] usb 4-1: config 0 interface 197 altsetting 0 has an invalid endpoint with address 0x0, skipping [ 158.336367][ T968] usb 4-1: config 0 interface 197 altsetting 0 has an invalid endpoint with address 0x0, skipping [ 158.371865][ T968] usb 4-1: config 0 interface 197 altsetting 0 endpoint 0xB has invalid maxpacket 919, setting to 64 [ 158.417858][ T968] usb 4-1: config 0 interface 197 altsetting 0 has a duplicate endpoint with address 0xF, skipping [ 158.474372][ T968] usb 4-1: config 0 interface 197 altsetting 0 has a duplicate endpoint with address 0xE, skipping [ 158.477625][ T5861] usblp 2-1:1.0: usblp0: USB Unidirectional printer dev 6 if 0 alt 253 proto 1 vid 0x0525 pid 0xA4A8 [ 158.524243][ T968] usb 4-1: config 0 interface 197 altsetting 0 has a duplicate endpoint with address 0x9, skipping [ 158.588326][ T968] usb 4-1: config 0 interface 197 altsetting 0 has an invalid endpoint with address 0x0, skipping [ 158.591938][ T5861] usb 2-1: USB disconnect, device number 6 [ 158.621093][ T968] usb 4-1: config 0 interface 197 altsetting 0 endpoint 0xA has invalid maxpacket 1024, setting to 64 [ 158.641917][ T6470] 9pnet_fd: Insufficient options for proto=fd [ 158.678196][ T968] usb 4-1: New USB device found, idVendor=1b3d, idProduct=01db, bcdDevice=d7.44 [ 158.693869][ T968] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 158.716660][ T5861] usblp0: removed [ 158.722087][ T968] usb 4-1: Product: syz [ 158.726344][ T968] usb 4-1: Manufacturer: syz [ 158.776139][ T968] usb 4-1: SerialNumber: syz [ 158.832154][ T968] usb 4-1: config 0 descriptor?? [ 158.856544][ T6462] raw-gadget.1 gadget.3: fail, usb_ep_enable returned -22 [ 158.890394][ T968] ftdi_sio 4-1:0.197: FTDI USB Serial Device converter detected [ 158.912864][ T968] ftdi_sio ttyUSB0: unknown device type: 0xd744 [ 158.929752][ T5792] Bluetooth: hci1: unexpected cc 0x203e length: 2 > 1 [ 159.379538][ T5861] usb 2-1: new high-speed USB device number 7 using dummy_hcd [ 159.552483][ T6477] loop0: detected capacity change from 0 to 40427 [ 159.569760][ T5861] usb 2-1: Using ep0 maxpacket: 8 [ 159.577549][ T6477] F2FS-fs (loop0): build fault injection attr: rate: 25, type: 0x7ffff [ 159.590549][ T6477] F2FS-fs (loop0): build fault injection attr: rate: 0, type: 0x7698c [ 159.591053][ T5861] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 7 [ 159.616556][ T6477] F2FS-fs (loop0): invalid crc value [ 159.655681][ T6477] F2FS-fs (loop0): inject invalid blkaddr in f2fs_is_valid_blkaddr of f2fs_ra_meta_pages+0x1d6/0x920 [ 159.670976][ T5861] usb 2-1: New USB device found, idVendor=082d, idProduct=0100, bcdDevice=70.4b [ 159.680408][ T5861] usb 2-1: New USB device strings: Mfr=44, Product=2, SerialNumber=3 [ 159.706690][ T5861] usb 2-1: Product: syz [ 159.708596][ T6477] F2FS-fs (loop0): Found nat_bits in checkpoint [ 159.717648][ T5861] usb 2-1: Manufacturer: syz [ 159.722499][ T5861] usb 2-1: SerialNumber: syz [ 159.802996][ T6477] F2FS-fs (loop0): inject page alloc in f2fs_grab_cache_page of f2fs_ra_meta_pages+0x644/0x920 [ 159.836733][ T6477] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5 [ 159.908648][ T6477] F2FS-fs (loop0): inject too big dir depth in f2fs_add_regular_entry of f2fs_add_dentry+0xda/0x1d0 [ 159.974067][ T6477] F2FS-fs (loop0): inject no more block in inc_valid_node_count of f2fs_new_node_page+0x187/0x910 [ 160.012213][ T6482] tipc: Started in network mode [ 160.035962][ T6482] tipc: Node identity 22ec43de0025, cluster identity 4711 [ 160.050029][ T5861] usb 2-1: palm_os_3_probe - error -110 getting connection information [ 160.060167][ T6482] tipc: Enabled bearer , priority 0 [ 160.069512][ T28] audit: type=1800 audit(1764406978.442:82): pid=6492 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.172" name="bus" dev="loop0" ino=18 res=0 errno=0 [ 160.104087][ T6493] syzkaller0: entered promiscuous mode [ 160.111896][ T5861] visor: probe of 2-1:1.0 failed with error -110 [ 160.112496][ T6493] syzkaller0: entered allmulticast mode [ 160.231194][ T5788] syz-executor: attempt to access beyond end of device [ 160.231194][ T5788] loop0: rw=2049, sector=45096, nr_sectors = 16 limit=40427 [ 160.280358][ T6482] tipc: Resetting bearer [ 160.281240][ T5788] F2FS-fs (loop0): Stopped filesystem due to reason: 3 [ 160.299869][ T5788] F2FS-fs (loop0): Stopped filesystem due to reason: 3 [ 161.124303][ T6504] netlink: 20 bytes leftover after parsing attributes in process `syz.2.176'. [ 161.232677][ T787] tipc: Node number set to 583615454 [ 161.865846][ T6507] loop0: detected capacity change from 0 to 128 [ 161.897685][ T6507] hpfs: bad mount options. [ 162.197055][ T787] usb 4-1: USB disconnect, device number 12 [ 162.265507][ T787] ftdi_sio 4-1:0.197: device disconnected [ 162.304753][ T6493] tipc: Resetting bearer [ 162.518168][ T6493] tipc: Disabling bearer [ 162.689432][ C0] sched: RT throttling activated [ 162.690096][ T787] usb 2-1: USB disconnect, device number 7 [ 163.087966][ T5792] Bluetooth: hci1: Controller not accepting commands anymore: ncmd = 0 [ 163.139328][ T5792] Bluetooth: hci1: Injecting HCI hardware error event [ 163.702080][ T5103] Bluetooth: hci1: hardware error 0x00 [ 164.898279][ T6516] syz.3.178: vmalloc error: size 6291456, failed to allocated page array size 12288, mode:0x400dc2(GFP_KERNEL_ACCOUNT|__GFP_HIGHMEM|__GFP_ZERO), nodemask=(null),cpuset=syz3,mems_allowed=0-1 [ 164.929918][ T6516] CPU: 1 PID: 6516 Comm: syz.3.178 Not tainted syzkaller #0 [ 164.937382][ T6516] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 164.947574][ T6516] Call Trace: [ 164.950886][ T6516] [ 164.953860][ T6516] dump_stack_lvl+0x16c/0x230 [ 164.958604][ T6516] ? show_regs_print_info+0x20/0x20 [ 164.963888][ T6516] ? load_image+0x3b0/0x3b0 [ 164.968972][ T6516] ? cpuset_print_current_mems_allowed+0x1f/0x360 [ 164.975610][ T6516] ? cpuset_print_current_mems_allowed+0x2e3/0x360 [ 164.982501][ T6516] warn_alloc+0x210/0x300 [ 164.987180][ T6516] ? zone_watermark_ok_safe+0x230/0x230 [ 164.992971][ T6516] ? _raw_spin_unlock+0x28/0x40 [ 164.998194][ T6516] ? netlink_rcv_skb+0x216/0x480 [ 165.003195][ T6516] __vmalloc_node_range+0x662/0x1320 [ 165.008800][ T6516] ? __asan_memset+0x22/0x40 [ 165.013739][ T6516] ? free_vm_area+0x50/0x50 [ 165.018633][ T6516] ? kvmalloc_node+0x70/0x180 [ 165.023331][ T6516] ? rcu_is_watching+0x15/0xb0 [ 165.028112][ T6516] ? kvmalloc_node+0x70/0x180 [ 165.032803][ T6516] ? trace_kmalloc+0x1f/0xa0 [ 165.037498][ T6516] kvmalloc_node+0x13f/0x180 [ 165.042426][ T6516] ? hash_netport4_resize+0x232/0x1b50 [ 165.048259][ T6516] hash_netport4_resize+0x232/0x1b50 [ 165.053681][ T6516] ? hash_netport4_uadt+0xc1f/0xed0 [ 165.058934][ T6516] ? lockdep_hardirqs_on_prepare+0x400/0x760 [ 165.065237][ T6516] ? hash_netport4_uadt+0xed0/0xed0 [ 165.070521][ T6516] ? hash_netport4_kadt+0x560/0x560 [ 165.075756][ T6516] ? _local_bh_enable+0xa0/0xa0 [ 165.080744][ T6516] call_ad+0x43f/0xae0 [ 165.084947][ T6516] ? ip_set_ad+0x930/0x930 [ 165.089497][ T6516] ? __nla_parse+0x40/0x50 [ 165.094037][ T6516] ip_set_ad+0x787/0x930 [ 165.098383][ T6516] ? trace_raw_output_contention_end+0xd0/0xd0 [ 165.105112][ T6516] ? ip_set_dump_done+0x1e0/0x1e0 [ 165.110393][ T6516] ? rcu_is_watching+0x15/0xb0 [ 165.115420][ T6516] nfnetlink_rcv_msg+0xb49/0x1130 [ 165.120844][ T6516] ? nfnetlink_rcv_msg+0x20e/0x1130 [ 165.126212][ T6516] ? nfnetlink_unbind+0x160/0x160 [ 165.131298][ T6516] ? asm_sysvec_reschedule_ipi+0x1a/0x20 [ 165.136952][ T6516] ? lockdep_hardirqs_on+0x98/0x150 [ 165.142352][ T6516] netlink_rcv_skb+0x216/0x480 [ 165.147145][ T6516] ? nfnetlink_unbind+0x160/0x160 [ 165.152361][ T6516] ? netlink_ack+0x1110/0x1110 [ 165.157240][ T6516] ? apparmor_capable+0x137/0x1a0 [ 165.162903][ T6516] ? bpf_lsm_capable+0x9/0x10 [ 165.167699][ T6516] ? security_capable+0x89/0xb0 [ 165.172840][ T6516] nfnetlink_rcv+0x274/0x2180 [ 165.178248][ T6516] ? lockdep_hardirqs_on_prepare+0x400/0x760 [ 165.184277][ T6516] ? lock_chain_count+0x20/0x20 [ 165.189350][ T6516] ? _raw_spin_unlock_irqrestore+0x86/0x110 [ 165.195898][ T6516] ? lockdep_hardirqs_on+0x98/0x150 [ 165.201242][ T6516] ? nfnetlink_net_exit_batch+0xa0/0xa0 [ 165.206810][ T6516] ? _raw_spin_unlock_irqrestore+0xae/0x110 [ 165.212821][ T6516] ? _raw_spin_unlock+0x40/0x40 [ 165.217957][ T6516] ? rcu_preempt_deferred_qs_irqrestore+0x86a/0xcc0 [ 165.224584][ T6516] ? rcu_read_unlock_special+0x460/0x460 [ 165.230585][ T6516] ? __netlink_deliver_tap+0x7e8/0x830 [ 165.236534][ T6516] ? netlink_deliver_tap+0x2e/0x1b0 [ 165.241956][ T6516] ? __lock_acquire+0x7c80/0x7c80 [ 165.247304][ T6516] ? __rcu_read_unlock+0x7c/0xd0 [ 165.252347][ T6516] ? netlink_deliver_tap+0x2e/0x1b0 [ 165.257573][ T6516] netlink_unicast+0x751/0x8d0 [ 165.262365][ T6516] netlink_sendmsg+0x8c1/0xbe0 [ 165.267415][ T6516] ? netlink_getsockopt+0x580/0x580 [ 165.273159][ T6516] ? aa_sock_msg_perm+0x94/0x150 [ 165.278116][ T6516] ? bpf_lsm_socket_sendmsg+0x9/0x10 [ 165.283508][ T6516] ? security_socket_sendmsg+0x80/0xa0 [ 165.289064][ T6516] ? netlink_getsockopt+0x580/0x580 [ 165.294386][ T6516] ____sys_sendmsg+0x5bf/0x950 [ 165.299416][ T6516] ? asm_sysvec_reschedule_ipi+0x1a/0x20 [ 165.305562][ T6516] ? __asan_memset+0x22/0x40 [ 165.310185][ T6516] ? __sys_sendmsg_sock+0x30/0x30 [ 165.316195][ T6516] ? __import_iovec+0x5f2/0x860 [ 165.321359][ T6516] ? import_iovec+0x73/0xa0 [ 165.326069][ T6516] ___sys_sendmsg+0x220/0x290 [ 165.331140][ T6516] ? __sys_sendmsg+0x270/0x270 [ 165.336062][ T6516] __se_sys_sendmsg+0x1a5/0x270 [ 165.341039][ T6516] ? __x64_sys_sendmsg+0x80/0x80 [ 165.346011][ T6516] ? lockdep_hardirqs_on+0x98/0x150 [ 165.351229][ T6516] do_syscall_64+0x55/0xb0 [ 165.355769][ T6516] ? clear_bhb_loop+0x40/0x90 [ 165.360643][ T6516] ? clear_bhb_loop+0x40/0x90 [ 165.365686][ T6516] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 165.372216][ T6516] RIP: 0033:0x7f6cb9f8f749 [ 165.376888][ T6516] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 165.396697][ T6516] RSP: 002b:00007f6cb81f6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 165.405137][ T6516] RAX: ffffffffffffffda RBX: 00007f6cba1e6090 RCX: 00007f6cb9f8f749 [ 165.413210][ T6516] RDX: 0000000000000080 RSI: 00002000000002c0 RDI: 000000000000000b [ 165.421462][ T6516] RBP: 00007f6cba013f91 R08: 0000000000000000 R09: 0000000000000000 [ 165.429533][ T6516] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 165.437516][ T6516] R13: 00007f6cba1e6128 R14: 00007f6cba1e6090 R15: 00007fffca396478 [ 165.445521][ T6516] [ 165.598553][ T6516] Mem-Info: [ 165.612482][ T6516] active_anon:11690 inactive_anon:0 isolated_anon:0 [ 165.612482][ T6516] active_file:13316 inactive_file:39907 isolated_file:0 [ 165.612482][ T6516] unevictable:768 dirty:121 writeback:0 [ 165.612482][ T6516] slab_reclaimable:10306 slab_unreclaimable:91084 [ 165.612482][ T6516] mapped:26616 shmem:6509 pagetables:611 [ 165.612482][ T6516] sec_pagetables:0 bounce:0 [ 165.612482][ T6516] kernel_misc_reclaimable:0 [ 165.612482][ T6516] free:1348096 free_pcp:9993 free_cma:0 [ 165.763228][ T6516] Node 0 active_anon:55172kB inactive_anon:0kB active_file:53264kB inactive_file:159428kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:110600kB dirty:496kB writeback:0kB shmem:32204kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:2048kB writeback_tmp:0kB kernel_stack:11436kB pagetables:2460kB sec_pagetables:0kB all_unreclaimable? no [ 165.819586][ T6516] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:200kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:16kB pagetables:0kB sec_pagetables:0kB all_unreclaimable? no [ 165.877154][ T6531] loop2: detected capacity change from 0 to 40427 [ 165.889553][ T6516] Node 0 DMA free:15360kB boost:0kB min:204kB low:252kB high:300kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 165.951590][ T6531] F2FS-fs (loop2): build fault injection attr: rate: 25, type: 0x7ffff [ 165.964707][ T6531] F2FS-fs (loop2): build fault injection attr: rate: 0, type: 0x7698c [ 165.973673][ T6516] lowmem_reserve[]: 0 2525 2526 2526 2526 [ 165.982329][ T6516] Node 0 DMA32 free:1470988kB boost:0kB min:34676kB low:43344kB high:52012kB reserved_highatomic:0KB active_anon:53120kB inactive_anon:0kB active_file:53264kB inactive_file:158116kB unevictable:1536kB writepending:496kB present:3129332kB managed:2589596kB mlocked:0kB bounce:0kB free_pcp:23412kB local_pcp:8052kB free_cma:0kB [ 165.988273][ T6531] F2FS-fs (loop2): invalid crc value [ 166.036741][ T6516] lowmem_reserve[]: 0 0 1 1 1 [ 166.045373][ T6516] Node 0 Normal free:8kB boost:0kB min:16kB low:20kB high:24kB reserved_highatomic:0KB active_anon:52kB inactive_anon:0kB active_file:0kB inactive_file:1312kB unevictable:0kB writepending:0kB present:1048576kB managed:1384kB mlocked:0kB bounce:0kB free_pcp:12kB local_pcp:0kB free_cma:0kB [ 166.066253][ T5103] Bluetooth: hci1: Opcode 0x0c03 failed: -110 [ 166.073664][ T6516] lowmem_reserve[]: 0 0 0 0 0 [ 166.081310][ T6531] F2FS-fs (loop2): inject invalid blkaddr in f2fs_is_valid_blkaddr of f2fs_ra_meta_pages+0x1d6/0x920 [ 166.084927][ T6516] Node 1 Normal free:3894436kB boost:0kB min:55208kB low:69008kB high:82808kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:200kB unevictable:1536kB writepending:0kB present:4194304kB managed:4117312kB mlocked:0kB bounce:0kB free_pcp:22560kB local_pcp:9696kB free_cma:0kB [ 166.138070][ T6516] lowmem_reserve[]: 0 0 0 0 0 [ 166.251723][ T6531] F2FS-fs (loop2): Found nat_bits in checkpoint [ 166.324944][ T6516] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB [ 166.342923][ T6516] Node 0 DMA32: 2*4kB (ME) 789*8kB (UM) 519*16kB (UME) 161*32kB (UM) 244*64kB (UM) 53*128kB (UME) 34*256kB (ME) 9*512kB (M) 6*1024kB (M) 5*2048kB (UME) 339*4096kB (UM) = 1460416kB [ 166.369061][ T6516] Node 0 Normal: 0*4kB 1*8kB (M) 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 8kB [ 166.408991][ T6516] Node 1 Normal: 253*4kB (UM) 54*8kB (UME) 44*16kB (UME) 64*32kB (UME) 15*64kB (UE) 3*128kB (UME) 1*256kB (U) 3*512kB (UME) 2*1024kB (UE) 1*2048kB (E) 948*4096kB (M) = 3894436kB [ 166.429951][ T6516] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 166.484335][ T6516] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 166.534071][ T6531] F2FS-fs (loop2): inject page alloc in f2fs_grab_cache_page of f2fs_ra_meta_pages+0x644/0x920 [ 166.554221][ T6516] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 166.599806][ T6516] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 166.627604][ T6516] 61876 total pagecache pages [ 166.643191][ T6516] 0 pages in swap cache [ 166.657714][ T6531] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5 [ 166.665577][ T6516] Free swap = 124472kB [ 166.669965][ T6516] Total swap = 124996kB [ 166.674417][ T6516] 2097051 pages RAM [ 166.699527][ T6516] 0 pages HighMem/MovableOnly [ 166.704360][ T6516] 416138 pages reserved [ 166.708546][ T6516] 0 pages cma reserved [ 166.722417][ T6531] F2FS-fs (loop2): inject too big dir depth in f2fs_add_regular_entry of f2fs_add_dentry+0xda/0x1d0 [ 166.770945][ T6531] F2FS-fs (loop2): inject no more block in inc_valid_node_count of f2fs_new_node_page+0x187/0x910 [ 166.833943][ T28] audit: type=1800 audit(1764406985.212:83): pid=6547 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.183" name="bus" dev="loop2" ino=18 res=0 errno=0 [ 166.935203][ T5785] syz-executor: attempt to access beyond end of device [ 166.935203][ T5785] loop2: rw=2049, sector=45096, nr_sectors = 16 limit=40427 [ 167.007718][ T5785] F2FS-fs (loop2): Stopped filesystem due to reason: 3 [ 167.020248][ T5785] F2FS-fs (loop2): Stopped filesystem due to reason: 3 [ 167.773038][ T6554] loop1: detected capacity change from 0 to 32768 [ 167.852188][ T6554] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop1 scanned by syz.1.188 (6554) [ 167.944379][ T6554] BTRFS info (device loop1): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 167.979893][ T6554] BTRFS info (device loop1): using crc32c (crc32c-intel) checksum algorithm [ 168.016822][ T6554] BTRFS info (device loop1): metadata ratio 2 [ 168.037793][ T6554] BTRFS info (device loop1): turning on flush-on-commit [ 168.059838][ T6554] BTRFS info (device loop1): enabling auto defrag [ 168.085120][ T6554] BTRFS info (device loop1): max_inline at 4096 [ 168.112331][ T6554] BTRFS info (device loop1): using free space tree [ 168.251007][ T6554] BTRFS info (device loop1): enabling ssd optimizations [ 168.269080][ T6554] BTRFS info (device loop1): auto enabling async discard [ 168.305505][ T5860] usb 4-1: new high-speed USB device number 13 using dummy_hcd [ 168.520951][ T5860] usb 4-1: Using ep0 maxpacket: 32 [ 168.569655][ T5860] usb 4-1: config 0 has no interfaces? [ 168.583683][ T5860] usb 4-1: New USB device found, idVendor=06d0, idProduct=0622, bcdDevice= 0.02 [ 168.606818][ T5860] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 168.625068][ T5860] usb 4-1: Product: syz [ 168.635627][ T28] audit: type=1800 audit(1764406987.012:84): pid=6596 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.188" name="file1" dev="loop1" ino=260 res=0 errno=0 [ 168.679038][ T5860] usb 4-1: Manufacturer: syz [ 168.686320][ T5860] usb 4-1: SerialNumber: syz [ 168.702835][ T5860] usb 4-1: config 0 descriptor?? [ 168.906919][ T5786] BTRFS info (device loop1): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 168.936637][ T5860] usb 4-1: USB disconnect, device number 13 [ 169.116649][ T6602] loop2: detected capacity change from 0 to 256 [ 169.279491][ T6602] exFAT-fs (loop2): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x89cb6648, utbl_chksum : 0xe619d30d) [ 169.990770][ T27] usb 4-1: new high-speed USB device number 14 using dummy_hcd [ 170.202704][ T27] usb 4-1: Using ep0 maxpacket: 8 [ 170.212417][ T27] usb 4-1: config index 0 descriptor too short (expected 301, got 45) [ 170.239656][ T27] usb 4-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0 [ 170.250053][ T787] usb 2-1: new high-speed USB device number 8 using dummy_hcd [ 170.280127][ T27] usb 4-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0 [ 170.299909][ T27] usb 4-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32 [ 170.319317][ T27] usb 4-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 170.346443][ T27] usb 4-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23 [ 170.371009][ T27] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 170.473459][ T787] usb 2-1: unable to get BOS descriptor or descriptor too short [ 170.491606][ T787] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 2 [ 170.518826][ T787] usb 2-1: config 1 interface 0 altsetting 247 has 1 endpoint descriptor, different from the interface descriptor's value: 0 [ 170.559871][ T787] usb 2-1: config 1 interface 0 has no altsetting 1 [ 170.596297][ T787] usb 2-1: New USB device found, idVendor=2040, idProduct=b990, bcdDevice=f6.75 [ 170.618304][ T787] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 170.642327][ T787] usb 2-1: Product: syz [ 170.646758][ T787] usb 2-1: Manufacturer: syz [ 170.656902][ T787] usb 2-1: SerialNumber: syz [ 170.686690][ T787] smsusb:smsusb_probe: board id=8, interface number 0 [ 170.806516][ T6615] loop2: detected capacity change from 0 to 40427 [ 170.859646][ T6615] F2FS-fs (loop2): invalid crc value [ 170.910490][ T6615] F2FS-fs (loop2): Mismatch valid blocks 5 vs. 11 [ 170.950065][ T787] smsusb:smsusb_probe: Device initialized with return code -19 [ 170.958096][ T6615] F2FS-fs (loop2): Failed to initialize F2FS segment manager (-117) [ 171.144685][ T6619] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 171.168380][ T6619] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 171.246083][ T787] usb 2-1: USB disconnect, device number 8 [ 171.390653][ T6642] syzkaller0: entered promiscuous mode [ 171.396454][ T6642] syzkaller0: entered allmulticast mode [ 171.557015][ T6615] loop2: detected capacity change from 0 to 512 [ 171.564619][ T6615] EXT4-fs: Ignoring removed nomblk_io_submit option [ 171.622340][ T6615] EXT4-fs error (device loop2): ext4_xattr_ibody_find:2249: inode #15: comm syz.2.200: corrupted in-inode xattr: invalid ea_ino [ 171.641876][ T6615] EXT4-fs error (device loop2): ext4_orphan_get:1404: comm syz.2.200: couldn't read orphan inode 15 (err -117) [ 171.658030][ T6615] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 171.702025][ T6646] netlink: 19 bytes leftover after parsing attributes in process `syz.1.206'. [ 172.246351][ T5785] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 173.348633][ T6654] loop2: detected capacity change from 0 to 2048 [ 173.398642][ T5860] usb 4-1: USB disconnect, device number 14 [ 173.468341][ T6654] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 173.889668][ T787] usb 2-1: new high-speed USB device number 9 using dummy_hcd [ 174.079622][ T787] usb 2-1: Using ep0 maxpacket: 32 [ 174.118772][ T787] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 174.159577][ T787] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 174.289115][ T787] usb 2-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40 [ 174.445589][ T787] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 174.501349][ T787] usb 2-1: config 0 descriptor?? [ 174.557717][ T787] hub 2-1:0.0: USB hub found [ 174.750574][ T6670] 9pnet_fd: Insufficient options for proto=fd [ 175.058898][ T6672] FAULT_INJECTION: forcing a failure. [ 175.058898][ T6672] name failslab, interval 1, probability 0, space 0, times 0 [ 175.101296][ T6672] CPU: 0 PID: 6672 Comm: syz.3.215 Not tainted syzkaller #0 [ 175.108858][ T6672] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 175.120348][ T6672] Call Trace: [ 175.123762][ T6672] [ 175.126736][ T6672] dump_stack_lvl+0x16c/0x230 [ 175.131543][ T6672] ? show_regs_print_info+0x20/0x20 [ 175.136851][ T6672] ? load_image+0x3b0/0x3b0 [ 175.141556][ T6672] ? __might_sleep+0xe0/0xe0 [ 175.146439][ T6672] ? __lock_acquire+0x7c80/0x7c80 [ 175.151751][ T6672] should_fail_ex+0x39d/0x4d0 [ 175.156890][ T6672] should_failslab+0x9/0x20 [ 175.161849][ T6672] slab_pre_alloc_hook+0x59/0x310 [ 175.166926][ T6672] kmem_cache_alloc_lru+0x4d/0x2e0 [ 175.172235][ T6672] ? __d_alloc+0x31/0x730 [ 175.176686][ T6672] __d_alloc+0x31/0x730 [ 175.181219][ T6672] d_alloc_parallel+0xde/0x1530 [ 175.186218][ T6672] ? lockdep_init_map_type+0xa1/0x880 [ 175.191871][ T6672] ? lockdep_softirqs_off+0x430/0x430 [ 175.197743][ T6672] ? d_hash_and_lookup+0x1b0/0x1b0 [ 175.203135][ T6672] ? __init_waitqueue_head+0xa9/0x150 [ 175.208801][ T6672] __lookup_slow+0x117/0x3b0 [ 175.213599][ T6672] ? lookup_one_len+0x2c0/0x2c0 [ 175.218497][ T6672] ? down_read+0x1ac/0x2e0 [ 175.223288][ T6672] lookup_one_unlocked+0x17e/0x290 [ 175.228491][ T6672] ? lookup_one+0x2c0/0x2c0 [ 175.233307][ T6672] ? mod_objcg_state+0x50b/0x890 [ 175.238381][ T6672] ? verify_lock_unused+0x140/0x140 [ 175.243805][ T6672] ovl_lookup_single+0x125/0xa20 [ 175.248889][ T6672] ? ovl_lookup_data_layers+0x460/0x460 [ 175.254580][ T6672] ? lockdep_hardirqs_on_prepare+0x400/0x760 [ 175.260679][ T6672] ovl_lookup_layer+0x379/0x440 [ 175.265879][ T6672] ovl_lookup+0x439/0x1c20 [ 175.270442][ T6672] ? ovl_verify_lowerdata+0x790/0x790 [ 175.276170][ T6672] ? lockdep_softirqs_off+0x430/0x430 [ 175.281852][ T6672] ? d_hash_and_lookup+0x1b0/0x1b0 [ 175.287170][ T6672] ? __init_waitqueue_head+0xa9/0x150 [ 175.292656][ T6672] __lookup_slow+0x281/0x3b0 [ 175.297398][ T6672] ? lookup_one_len+0x2c0/0x2c0 [ 175.302371][ T6672] ? try_to_unlazy+0x34c/0x5a0 [ 175.307497][ T6672] ? down_read+0x1ac/0x2e0 [ 175.312161][ T6672] lookup_slow+0x53/0x70 [ 175.316437][ T6672] walk_component+0x2be/0x3f0 [ 175.321220][ T6672] ? path_lookupat+0x15c/0x440 [ 175.326094][ T6672] path_lookupat+0x169/0x440 [ 175.330716][ T6672] filename_lookup+0x1f4/0x510 [ 175.335617][ T6672] ? __virt_addr_valid+0x18c/0x540 [ 175.340861][ T6672] ? hashlen_string+0x110/0x110 [ 175.345843][ T6672] ? strncpy_from_user+0x197/0x2e0 [ 175.351250][ T6672] ? getname_flags+0x20a/0x500 [ 175.356307][ T6672] user_path_at_empty+0x42/0x60 [ 175.361288][ T6672] path_setxattr+0x274/0x550 [ 175.366184][ T6672] ? vfs_write+0x586/0x940 [ 175.370891][ T6672] ? simple_xattrs_free+0x150/0x150 [ 175.376322][ T6672] ? lockdep_hardirqs_on_prepare+0x400/0x760 [ 175.382415][ T6672] ? lock_chain_count+0x20/0x20 [ 175.387398][ T6672] __x64_sys_lsetxattr+0xb8/0xd0 [ 175.392479][ T6672] do_syscall_64+0x55/0xb0 [ 175.396946][ T6672] ? clear_bhb_loop+0x40/0x90 [ 175.401688][ T6672] ? clear_bhb_loop+0x40/0x90 [ 175.406412][ T6672] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 175.412354][ T6672] RIP: 0033:0x7f6cb9f8f749 [ 175.416880][ T6672] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 175.436682][ T6672] RSP: 002b:00007f6cbad56038 EFLAGS: 00000246 ORIG_RAX: 00000000000000bd [ 175.445330][ T6672] RAX: ffffffffffffffda RBX: 00007f6cba1e5fa0 RCX: 00007f6cb9f8f749 [ 175.453597][ T6672] RDX: 0000200000000580 RSI: 00002000000004c0 RDI: 0000200000000480 [ 175.461608][ T6672] RBP: 00007f6cbad56090 R08: 0000000000000000 R09: 0000000000000000 [ 175.469593][ T6672] R10: 0000000000000024 R11: 0000000000000246 R12: 0000000000000001 [ 175.477583][ T6672] R13: 00007f6cba1e6038 R14: 00007f6cba1e5fa0 R15: 00007fffca396478 [ 175.485598][ T6672] [ 175.715300][ T6677] netlink: 8 bytes leftover after parsing attributes in process `syz.3.216'. [ 175.765741][ T6679] loop0: detected capacity change from 0 to 1024 [ 175.778568][ T6679] EXT4-fs: Ignoring removed i_version option [ 175.786618][ T6679] EXT4-fs: inline encryption not supported [ 175.788437][ T6680] netlink: 8 bytes leftover after parsing attributes in process `syz.3.216'. [ 175.807008][ T6679] EXT4-fs (loop0): Test dummy encryption mode enabled [ 175.820273][ T6680] netlink: 8 bytes leftover after parsing attributes in process `syz.3.216'. [ 175.830512][ T6680] netlink: 8 bytes leftover after parsing attributes in process `syz.3.216'. [ 175.857927][ T6679] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 175.868799][ T787] hub 2-1:0.0: config failed, can't read hub descriptor (err -90) [ 176.023009][ T5788] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 177.775194][ T787] usbhid 2-1:0.0: can't add hid device: -71 [ 177.781949][ T787] usbhid: probe of 2-1:0.0 failed with error -71 [ 178.060562][ T787] usb 2-1: USB disconnect, device number 9 [ 178.120504][ T6696] loop0: detected capacity change from 0 to 8192 [ 178.786591][ T6696] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 178.919839][ T6696] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 178.929325][ T6696] REISERFS (device loop0): using ordered data mode [ 178.936790][ T6696] reiserfs: using flush barriers [ 178.961705][ T6696] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 179.005861][ T6696] REISERFS (device loop0): checking transaction log (loop0) [ 179.299665][ T5878] usb 3-1: new high-speed USB device number 3 using dummy_hcd [ 179.491161][ T6713] loop0: detected capacity change from 0 to 8192 [ 179.499842][ T5878] usb 3-1: Using ep0 maxpacket: 32 [ 179.503345][ T6713] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 179.511522][ T5878] usb 3-1: config 1 has an invalid interface number: 137 but max is 0 [ 179.522863][ T6713] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 179.550110][ T6713] REISERFS (device loop0): using ordered data mode [ 179.568126][ T5878] usb 3-1: config 1 has no interface number 0 [ 179.578368][ T6713] reiserfs: using flush barriers [ 179.598025][ T5878] usb 3-1: config 1 interface 137 has no altsetting 0 [ 179.617430][ T6713] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 179.666877][ T5878] usb 3-1: New USB device found, idVendor=0557, idProduct=2021, bcdDevice=74.1a [ 179.702396][ T6713] REISERFS (device loop0): checking transaction log (loop0) [ 179.711818][ T5878] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 179.738808][ T6713] REISERFS (device loop0): Using r5 hash to sort names [ 179.739503][ T5878] usb 3-1: Product: syz [ 179.758095][ T6713] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. [ 179.786830][ T5878] usb 3-1: Manufacturer: syz [ 179.809963][ T5878] usb 3-1: SerialNumber: syz [ 180.259233][ T6727] syzkaller0: entered promiscuous mode [ 180.283548][ T6727] syzkaller0: entered allmulticast mode [ 180.294841][ T5878] pl2303 3-1:1.137: required interrupt-in endpoint missing [ 180.353799][ T5878] usb 3-1: USB disconnect, device number 3 [ 180.657642][ T6736] loop0: detected capacity change from 0 to 512 [ 180.704313][ T6736] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 180.719731][ T6736] ext4 filesystem being mounted at /58/file2 supports timestamps until 2038-01-19 (0x7fffffff) [ 180.807352][ T28] audit: type=1804 audit(1764406999.182:85): pid=6736 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.0.230" name="/newroot/58/file2/bus" dev="loop0" ino=18 res=1 errno=0 [ 181.006000][ T6746] 8021q: VLANs not supported on nlmon0 [ 182.539831][ T6761] FAULT_INJECTION: forcing a failure. [ 182.539831][ T6761] name failslab, interval 1, probability 0, space 0, times 0 [ 182.555655][ T6761] CPU: 1 PID: 6761 Comm: syz.2.236 Not tainted syzkaller #0 [ 182.563538][ T6761] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 182.574255][ T6761] Call Trace: [ 182.577543][ T6761] [ 182.580496][ T6761] dump_stack_lvl+0x16c/0x230 [ 182.585210][ T6761] ? show_regs_print_info+0x20/0x20 [ 182.590611][ T6761] ? load_image+0x3b0/0x3b0 [ 182.595297][ T6761] ? __might_sleep+0xe0/0xe0 [ 182.600050][ T6761] ? __lock_acquire+0x7c80/0x7c80 [ 182.605172][ T6761] ? __dentry_path+0x464/0x500 [ 182.610059][ T6761] should_fail_ex+0x39d/0x4d0 [ 182.614806][ T6761] should_failslab+0x9/0x20 [ 182.619480][ T6761] slab_pre_alloc_hook+0x59/0x310 [ 182.624810][ T6761] ? tomoyo_encode+0x28b/0x540 [ 182.629619][ T6761] ? tomoyo_encode+0x28b/0x540 [ 182.634525][ T6761] __kmem_cache_alloc_node+0x53/0x260 [ 182.640028][ T6761] ? tomoyo_realpath_from_path+0x5d0/0x5d0 [ 182.645874][ T6761] ? tomoyo_encode+0x28b/0x540 [ 182.650666][ T6761] __kmalloc+0xa4/0x240 [ 182.654945][ T6761] tomoyo_encode+0x28b/0x540 [ 182.659669][ T6761] tomoyo_realpath_from_path+0x592/0x5d0 [ 182.665745][ T6761] tomoyo_path2_perm+0x264/0x660 [ 182.670908][ T6761] ? tomoyo_path2_perm+0x234/0x660 [ 182.676121][ T6761] ? tomoyo_check_mkdev_acl+0x490/0x490 [ 182.681764][ T6761] ? __bfs+0x5b0/0x5c0 [ 182.685863][ T6761] ? lockdep_hardirqs_on_prepare+0x400/0x760 [ 182.691895][ T6761] ? lock_chain_count+0x20/0x20 [ 182.696794][ T6761] tomoyo_path_rename+0x142/0x190 [ 182.701878][ T6761] ? tomoyo_path_link+0x100/0x100 [ 182.707037][ T6761] security_path_rename+0x16c/0x200 [ 182.712289][ T6761] do_renameat2+0x685/0xc70 [ 182.717095][ T6761] ? fsnotify_move+0x4e0/0x4e0 [ 182.721873][ T6761] ? __check_object_size+0x506/0xa30 [ 182.727292][ T6761] ? getname_flags+0x20a/0x500 [ 182.732095][ T6761] __x64_sys_renameat2+0xd2/0xe0 [ 182.737077][ T6761] do_syscall_64+0x55/0xb0 [ 182.741503][ T6761] ? clear_bhb_loop+0x40/0x90 [ 182.746211][ T6761] ? clear_bhb_loop+0x40/0x90 [ 182.750921][ T6761] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 182.757054][ T6761] RIP: 0033:0x7f0a6a18f749 [ 182.761541][ T6761] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 182.781708][ T6761] RSP: 002b:00007f0a6b05a038 EFLAGS: 00000246 ORIG_RAX: 000000000000013c [ 182.790142][ T6761] RAX: ffffffffffffffda RBX: 00007f0a6a3e6090 RCX: 00007f0a6a18f749 [ 182.798325][ T6761] RDX: ffffffffffffff9c RSI: 0000200000000440 RDI: ffffffffffffff9c [ 182.806428][ T6761] RBP: 00007f0a6b05a090 R08: 0000000000000000 R09: 0000000000000000 [ 182.814622][ T6761] R10: 0000200000000480 R11: 0000000000000246 R12: 0000000000000001 [ 182.822633][ T6761] R13: 00007f0a6a3e6128 R14: 00007f0a6a3e6090 R15: 00007fff549d7f38 [ 182.831033][ T6761] [ 182.839788][ T6761] ERROR: Out of memory at tomoyo_realpath_from_path. [ 183.713873][ T5788] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 183.722907][ T6772] syzkaller0: entered promiscuous mode [ 183.747528][ T6772] syzkaller0: entered allmulticast mode [ 183.759845][ T5878] usb 4-1: new high-speed USB device number 15 using dummy_hcd [ 183.796852][ T6772] netlink: 24 bytes leftover after parsing attributes in process `syz.1.239'. [ 183.827767][ T6774] loop0: detected capacity change from 0 to 256 [ 183.862421][ T6770] Bluetooth: MGMT ver 1.22 [ 183.971959][ T5878] usb 4-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 183.992818][ T6770] loop2: detected capacity change from 0 to 1024 [ 183.994289][ T5878] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 3 [ 184.050922][ T5878] usb 4-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40 [ 184.079640][ T5878] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 184.118998][ T5878] usb 4-1: Product: syz [ 184.124490][ T5878] usb 4-1: Manufacturer: syz [ 184.152899][ T5878] usb 4-1: SerialNumber: syz [ 184.192245][ T6770] hfsplus: invalid extended attribute record [ 184.407344][ T6769] capability: warning: `syz.3.238' uses 32-bit capabilities (legacy support in use) [ 184.439778][ T6769] loop3: detected capacity change from 0 to 1024 [ 184.469738][ T787] usb 2-1: new high-speed USB device number 10 using dummy_hcd [ 184.520710][ T968] usb 3-1: new high-speed USB device number 4 using dummy_hcd [ 184.538466][ T5803] I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 184.571498][ T5878] usb 4-1: 0:2 : does not exist [ 184.652648][ T5878] usb 4-1: USB disconnect, device number 15 [ 184.671122][ T787] usb 2-1: config 2 has an invalid interface number: 233 but max is 0 [ 184.695466][ T787] usb 2-1: config 2 has no interface number 0 [ 184.715935][ T787] usb 2-1: config 2 interface 233 has no altsetting 0 [ 184.719690][ T5799] udevd[5799]: setting owner of /dev/snd/controlC3 to uid=0, gid=29 failed: No such file or directory [ 184.741046][ T968] usb 3-1: Using ep0 maxpacket: 32 [ 184.757513][ T787] usb 2-1: New USB device found, idVendor=1b3d, idProduct=0109, bcdDevice=33.00 [ 184.758870][ T968] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 184.778274][ T787] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 184.778303][ T787] usb 2-1: Product: syz [ 184.778318][ T787] usb 2-1: Manufacturer: syz [ 184.809526][ T968] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 184.817556][ T787] usb 2-1: SerialNumber: syz [ 184.833740][ T968] usb 3-1: New USB device found, idVendor=1e7d, idProduct=2d5a, bcdDevice= 0.00 [ 184.859584][ T968] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 184.898600][ T968] usb 3-1: config 0 descriptor?? [ 184.914430][ T6780] loop0: detected capacity change from 0 to 40427 [ 184.944234][ T6780] F2FS-fs (loop0): Fix alignment : internally, start(4096) end(16896) block(12288) [ 184.961659][ T6780] F2FS-fs (loop0): invalid crc value [ 184.971044][ T6780] F2FS-fs (loop0): Current segment's next free block offset is inconsistent with bitmap, logtype:2, segno:5, type:0, next_blkoff:0, blkofs:0 [ 184.998565][ T6780] F2FS-fs (loop0): Failed to initialize F2FS segment manager (-117) [ 185.348941][ T6782] loop1: detected capacity change from 0 to 4096 [ 185.439508][ T5878] usb 1-1: new high-speed USB device number 6 using dummy_hcd [ 185.505848][ T968] savu 0003:1E7D:2D5A.0002: hiddev0,hidraw0: USB HID v0.00 Device [HID 1e7d:2d5a] on usb-dummy_hcd.2-1/input0 [ 185.568045][ T6782] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 185.626494][ T6782] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 185.662593][ T5878] usb 1-1: Using ep0 maxpacket: 8 [ 185.681515][ T5878] usb 1-1: config index 0 descriptor too short (expected 30, got 18) [ 185.702315][ T5878] usb 1-1: New USB device found, idVendor=1660, idProduct=0932, bcdDevice=80.ea [ 185.722309][ T5878] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 186.459630][ T5878] usb 1-1: Product: syz [ 186.463991][ T5878] usb 1-1: Manufacturer: syz [ 186.469196][ T5878] usb 1-1: SerialNumber: syz [ 186.482835][ T5878] usb 1-1: config 0 descriptor?? [ 186.503233][ T5878] dvb-usb: found a 'Medion MD95700 (MDUSBTV-HYBRID)' in warm state. [ 186.540897][ T5878] usb 1-1: setting power ON [ 186.563073][ T5878] dvb-usb: bulk message failed: -22 (2/0) [ 186.592197][ T968] usb 3-1: USB disconnect, device number 4 [ 186.610797][ T5878] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer. [ 186.650226][ T5878] dvbdev: DVB: registering new adapter (Medion MD95700 (MDUSBTV-HYBRID)) [ 186.708244][ T5878] usb 1-1: media controller created [ 186.774024][ T6784] cxusb: i2c rd: len=112 is too big! [ 186.774024][ T6784] [ 186.804200][ T5878] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered. [ 186.858861][ T5878] usb 1-1: selecting invalid altsetting 6 [ 186.872449][ T6795] loop3: detected capacity change from 0 to 8192 [ 186.878985][ T5878] usb 1-1: digital interface selection failed (-22) [ 186.886445][ T5878] dvb-usb: no frontend was attached by 'Medion MD95700 (MDUSBTV-HYBRID)' [ 186.905246][ T6795] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 186.935857][ T5878] usb 1-1: setting power OFF [ 186.947889][ T5878] dvb-usb: bulk message failed: -22 (2/0) [ 186.976809][ T6795] REISERFS (device loop3): found reiserfs format "3.6" with non-standard journal [ 186.996880][ T5878] dvb-usb: Medion MD95700 (MDUSBTV-HYBRID) successfully initialized and connected. [ 187.017253][ T6795] REISERFS (device loop3): using ordered data mode [ 187.034494][ T5878] (NULL device *): no alternate interface [ 187.054438][ T6795] reiserfs: using flush barriers [ 187.115146][ T6795] REISERFS (device loop3): journal params: device loop3, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 7, max trans age 7 [ 187.141505][ T6795] REISERFS (device loop3): checking transaction log (loop3) [ 187.154206][ T787] ftdi_sio 2-1:2.233: FTDI USB Serial Device converter detected [ 187.163576][ T787] usb 2-1: Detected FT232HP [ 187.171195][ T787] ftdi_sio ttyUSB0: Unable to read latency timer: -71 [ 187.178329][ T6795] REISERFS (device loop3): Using r5 hash to sort names [ 187.187138][ T787] ftdi_sio ttyUSB0: Unable to write latency timer: -71 [ 187.196349][ T6795] REISERFS warning (device loop3): vs-13060 reiserfs_update_sd_size: stat data of object [1 2 0x0 SD] (nlink == 1) not found (pos 2) [ 187.212504][ T6795] REISERFS (device loop3): Created .reiserfs_priv - reserved for xattr storage. [ 187.215550][ T787] usb 2-1: FTDI USB Serial Device converter now attached to ttyUSB0 [ 187.240867][ T787] usb 2-1: USB disconnect, device number 10 [ 187.274356][ T787] ftdi_sio ttyUSB0: FTDI USB Serial Device converter now disconnected from ttyUSB0 [ 187.291867][ T6795] REISERFS warning (device loop3): reiserfs-13077 reiserfs_fh_to_dentry: nfsd/reiserfs, fhtype=2, len=0 - odd [ 187.302007][ T787] ftdi_sio 2-1:2.233: device disconnected [ 187.419896][ T5878] dvb-usb: Medion MD95700 (MDUSBTV-HYBRID) successfully deinitialized and disconnected. [ 187.466495][ T5878] usb 1-1: USB disconnect, device number 6 [ 187.704879][ T42] hfsplus: b-tree write err: -5, ino 4 [ 187.773330][ T6802] loop3: detected capacity change from 0 to 128 [ 187.860148][ T6802] FAT-fs (loop3): error, corrupted directory (invalid entries) [ 187.868786][ T6802] FAT-fs (loop3): Filesystem has been set read-only [ 188.100521][ T6808] kvm: pic: non byte write [ 189.349717][ T5878] usb 2-1: new high-speed USB device number 11 using dummy_hcd [ 189.473333][ T6827] FAULT_INJECTION: forcing a failure. [ 189.473333][ T6827] name failslab, interval 1, probability 0, space 0, times 0 [ 189.487169][ T6827] CPU: 1 PID: 6827 Comm: syz.0.255 Not tainted syzkaller #0 [ 189.494758][ T6827] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 189.504905][ T6827] Call Trace: [ 189.508276][ T6827] [ 189.511392][ T6827] dump_stack_lvl+0x16c/0x230 [ 189.516206][ T6827] ? show_regs_print_info+0x20/0x20 [ 189.521600][ T6827] ? load_image+0x3b0/0x3b0 [ 189.526112][ T6827] ? __might_sleep+0xe0/0xe0 [ 189.530803][ T6827] ? __lock_acquire+0x7c80/0x7c80 [ 189.535845][ T6827] should_fail_ex+0x39d/0x4d0 [ 189.540559][ T6827] should_failslab+0x9/0x20 [ 189.545084][ T6827] slab_pre_alloc_hook+0x59/0x310 [ 189.549570][ T5878] usb 2-1: Using ep0 maxpacket: 32 [ 189.550125][ T6827] ? __lock_acquire+0x7c80/0x7c80 [ 189.560648][ T6827] kmem_cache_alloc+0x5a/0x2e0 [ 189.565420][ T6827] ? security_file_alloc+0x34/0x120 [ 189.570710][ T6827] security_file_alloc+0x34/0x120 [ 189.575733][ T6827] init_file+0x94/0x1f0 [ 189.579898][ T6827] alloc_empty_file+0xb7/0x1d0 [ 189.584770][ T6827] path_openat+0x100/0x3190 [ 189.589304][ T6827] ? kasan_set_track+0x4e/0x70 [ 189.594066][ T6827] ? __kasan_slab_alloc+0x6c/0x80 [ 189.599089][ T6827] ? do_sys_openat2+0xcb/0x1c0 [ 189.604085][ T6827] ? __x64_sys_creat+0x90/0xb0 [ 189.608877][ T6827] ? entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 189.615140][ T6827] ? verify_lock_unused+0x140/0x140 [ 189.620462][ T6827] ? do_filp_open+0x3d0/0x3d0 [ 189.625153][ T6827] ? __virt_addr_valid+0x18c/0x540 [ 189.630285][ T6827] do_filp_open+0x1c5/0x3d0 [ 189.634819][ T6827] ? vfs_tmpfile+0x490/0x490 [ 189.639457][ T6827] ? _raw_spin_unlock+0x28/0x40 [ 189.644322][ T6827] ? alloc_fd+0x58f/0x630 [ 189.648939][ T6827] do_sys_openat2+0x12c/0x1c0 [ 189.653630][ T6827] ? do_sys_open+0xe0/0xe0 [ 189.658254][ T6827] ? lockdep_hardirqs_on_prepare+0x400/0x760 [ 189.664477][ T6827] ? lock_chain_count+0x20/0x20 [ 189.669369][ T6827] __x64_sys_creat+0x90/0xb0 [ 189.674132][ T6827] do_syscall_64+0x55/0xb0 [ 189.678669][ T6827] ? clear_bhb_loop+0x40/0x90 [ 189.683381][ T6827] ? clear_bhb_loop+0x40/0x90 [ 189.688256][ T6827] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 189.694255][ T6827] RIP: 0033:0x7f9cb2f8f749 [ 189.698690][ T6827] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 189.718609][ T6827] RSP: 002b:00007f9cb3d6e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000055 [ 189.727207][ T6827] RAX: ffffffffffffffda RBX: 00007f9cb31e6090 RCX: 00007f9cb2f8f749 [ 189.735529][ T6827] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000200000000180 [ 189.743592][ T6827] RBP: 00007f9cb3d6e090 R08: 0000000000000000 R09: 0000000000000000 [ 189.751771][ T6827] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 189.759961][ T6827] R13: 00007f9cb31e6128 R14: 00007f9cb31e6090 R15: 00007ffd89964b88 [ 189.768030][ T6827] [ 189.781099][ T5878] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 189.798274][ T5878] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 189.815932][ T5878] usb 2-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40 [ 189.894337][ T5878] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 190.055640][ T5878] usb 2-1: config 0 descriptor?? [ 190.072899][ T5878] hub 2-1:0.0: USB hub found [ 190.163747][ T6832] FAULT_INJECTION: forcing a failure. [ 190.163747][ T6832] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 190.177708][ T6832] CPU: 0 PID: 6832 Comm: syz.3.256 Not tainted syzkaller #0 [ 190.185326][ T6832] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 190.195796][ T6832] Call Trace: [ 190.199110][ T6832] [ 190.202103][ T6832] dump_stack_lvl+0x16c/0x230 [ 190.207016][ T6832] ? show_regs_print_info+0x20/0x20 [ 190.212522][ T6832] ? load_image+0x3b0/0x3b0 [ 190.217322][ T6832] ? __might_fault+0xaa/0x120 [ 190.222059][ T6832] ? __lock_acquire+0x7c80/0x7c80 [ 190.227174][ T6832] should_fail_ex+0x39d/0x4d0 [ 190.232078][ T6832] _copy_from_user+0x2f/0xe0 [ 190.237040][ T6832] __sys_connect+0x136/0x420 [ 190.242024][ T6832] ? __sys_connect_file+0x180/0x180 [ 190.247478][ T6832] __x64_sys_connect+0x7a/0x90 [ 190.252635][ T6832] do_syscall_64+0x55/0xb0 [ 190.257294][ T6832] ? clear_bhb_loop+0x40/0x90 [ 190.262245][ T6832] ? clear_bhb_loop+0x40/0x90 [ 190.267187][ T6832] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 190.273351][ T6832] RIP: 0033:0x7f6cb9f8f749 [ 190.277929][ T6832] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 190.298018][ T6832] RSP: 002b:00007f6cb81d5038 EFLAGS: 00000246 ORIG_RAX: 000000000000002a [ 190.306488][ T6832] RAX: ffffffffffffffda RBX: 00007f6cba1e6180 RCX: 00007f6cb9f8f749 [ 190.314667][ T6832] RDX: 000000000000000e RSI: 0000200000000080 RDI: 0000000000000008 [ 190.323013][ T6832] RBP: 00007f6cb81d5090 R08: 0000000000000000 R09: 0000000000000000 [ 190.331290][ T6832] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 190.339552][ T6832] R13: 00007f6cba1e6218 R14: 00007f6cba1e6180 R15: 00007fffca396478 [ 190.348120][ T6832] [ 191.784083][ T5878] hub 2-1:0.0: config failed, can't read hub descriptor (err -22) [ 191.841827][ T5878] usbhid 2-1:0.0: can't add hid device: -71 [ 191.848106][ T5878] usbhid: probe of 2-1:0.0 failed with error -71 [ 191.930564][ T5878] usb 2-1: USB disconnect, device number 11 [ 192.711178][ T6864] loop3: detected capacity change from 0 to 1024 [ 192.720513][ T6856] nullb0: [CUMANA/ADFS] p1 [ADFS] p1 [ 192.726196][ T6856] nullb0: partition table partially beyond EOD, truncated [ 192.730256][ T6864] EXT4-fs: Ignoring removed nomblk_io_submit option [ 192.766445][ T6864] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 192.786823][ T6856] nullb0: p1 size 4218939122 extends beyond EOD, truncated [ 192.809674][ T6864] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 193.004712][ T5787] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 193.187745][ T6850] loop1: detected capacity change from 0 to 40427 [ 193.211477][ T6850] F2FS-fs (loop1): Small segment_count (9 < 1 * 24) [ 193.219616][ T6850] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock [ 193.250277][ T6850] F2FS-fs (loop1): Found nat_bits in checkpoint [ 193.418648][ T6850] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0 [ 193.445923][ T6850] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5 [ 193.487980][ T28] audit: type=1804 audit(1764407011.862:86): pid=6850 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.261" name="/newroot/53/file2/file0" dev="loop1" ino=10 res=1 errno=0 [ 193.603103][ T5786] syz-executor: attempt to access beyond end of device [ 193.603103][ T5786] loop1: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 193.617631][ T5786] F2FS-fs (loop1): Stopped filesystem due to reason: 3 [ 193.679525][ T5840] usb 1-1: new high-speed USB device number 7 using dummy_hcd [ 193.706530][ T6870] loop2: detected capacity change from 0 to 40427 [ 193.716806][ T6870] F2FS-fs (loop2): Invalid log_blocksize (268), supports only 12 [ 193.725897][ T6870] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock [ 193.749555][ T6870] F2FS-fs (loop2): invalid crc value [ 193.787895][ T6870] F2FS-fs (loop2): Found nat_bits in checkpoint [ 193.880761][ T5840] usb 1-1: Using ep0 maxpacket: 32 [ 193.891593][ T5840] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 193.899367][ T6870] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0 [ 193.910814][ T5840] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 193.915030][ T6870] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5 [ 193.979583][ T5840] usb 1-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40 [ 193.989265][ T5840] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 194.057999][ T5840] usb 1-1: config 0 descriptor?? [ 194.079826][ T5840] hub 1-1:0.0: USB hub found [ 194.134611][ T6870] syz.2.267: attempt to access beyond end of device [ 194.134611][ T6870] loop2: rw=2049, sector=45096, nr_sectors = 128 limit=40427 [ 194.404630][ T28] audit: type=1804 audit(1764407012.762:87): pid=6882 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.267" name="/newroot/77/bus/file0" dev="loop2" ino=10 res=1 errno=0 [ 194.810549][ T1284] ieee802154 phy0 wpan0: encryption failed: -22 [ 194.859457][ T1284] ieee802154 phy1 wpan1: encryption failed: -22 [ 195.981112][ T5840] hub 1-1:0.0: config failed, can't read hub descriptor (err -90) [ 196.218940][ T6884] loop3: detected capacity change from 0 to 32768 [ 196.283230][ T6884] XFS (loop3): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 196.901879][ T6884] XFS (loop3): Ending clean mount [ 196.966211][ T6884] XFS (loop3): Quotacheck needed: Please wait. [ 197.123189][ T5840] usbhid 1-1:0.0: can't add hid device: -71 [ 197.159201][ T5840] usbhid: probe of 1-1:0.0 failed with error -71 [ 197.178383][ T6884] XFS (loop3): Quotacheck: Done. [ 197.222858][ T5840] usb 1-1: USB disconnect, device number 7 [ 197.622106][ T5787] XFS (loop3): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 197.771668][ T6921] loop1: detected capacity change from 0 to 1024 [ 197.778536][ T6917] netlink: 209852 bytes leftover after parsing attributes in process `syz.2.276'. [ 197.801954][ T6921] EXT4-fs: Ignoring removed i_version option [ 197.808172][ T6921] EXT4-fs: inline encryption not supported [ 197.838951][ T6921] EXT4-fs (loop1): Test dummy encryption mode enabled [ 197.897876][ T6921] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 198.105535][ T5786] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 198.220847][ T6930] loop3: detected capacity change from 0 to 736 [ 198.376580][ T6934] loop2: detected capacity change from 0 to 4096 [ 198.492892][ T5799] I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 198.526549][ T6934] ntfs3: loop2: Mark volume as dirty due to NTFS errors [ 199.070537][ T6934] ntfs3: loop2: Failed to initialize $Extend/$Reparse. [ 199.505868][ T6942] loop3: detected capacity change from 0 to 1024 [ 199.552785][ T6942] EXT4-fs: Ignoring removed nomblk_io_submit option [ 199.574585][ T6942] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 199.644509][ T6942] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 199.765445][ T5787] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 199.925368][ T6955] loop1: detected capacity change from 0 to 1024 [ 199.933649][ T6955] EXT4-fs: Ignoring removed i_version option [ 199.953932][ T6955] EXT4-fs: inline encryption not supported [ 200.031388][ T6955] EXT4-fs (loop1): Test dummy encryption mode enabled [ 200.195188][ T6955] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 201.349488][ T6968] netlink: 'syz.3.291': attribute type 12 has an invalid length. [ 201.513802][ T5786] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 202.606679][ T6974] loop3: detected capacity change from 0 to 4096 [ 202.699836][ T6974] NILFS (loop3): unrecognized mount option "" [ 202.859217][ T6983] netlink: 12 bytes leftover after parsing attributes in process `syz.0.295'. [ 205.813161][ T7029] FAULT_INJECTION: forcing a failure. [ 205.813161][ T7029] name failslab, interval 1, probability 0, space 0, times 0 [ 205.859551][ T7029] CPU: 1 PID: 7029 Comm: syz.2.308 Not tainted syzkaller #0 [ 205.866937][ T7029] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 205.877125][ T7029] Call Trace: [ 205.880451][ T7029] [ 205.883412][ T7029] dump_stack_lvl+0x16c/0x230 [ 205.888154][ T7029] ? show_regs_print_info+0x20/0x20 [ 205.893399][ T7029] ? load_image+0x3b0/0x3b0 [ 205.897947][ T7029] ? __might_sleep+0xe0/0xe0 [ 205.902576][ T7029] ? __lock_acquire+0x7c80/0x7c80 [ 205.907650][ T7029] should_fail_ex+0x39d/0x4d0 [ 205.912374][ T7029] should_failslab+0x9/0x20 [ 205.916921][ T7029] slab_pre_alloc_hook+0x59/0x310 [ 205.921996][ T7029] ? p9_client_prepare_req+0x57a/0xe90 [ 205.927524][ T7029] ? p9_client_prepare_req+0x57a/0xe90 [ 205.933142][ T7029] __kmem_cache_alloc_node+0x53/0x260 [ 205.938756][ T7029] ? p9_client_prepare_req+0x57a/0xe90 [ 205.944420][ T7029] __kmalloc+0xa4/0x240 [ 205.948818][ T7029] p9_client_prepare_req+0x57a/0xe90 [ 205.954295][ T7029] ? idr_preload_end+0x200/0x200 [ 205.959352][ T7029] ? kasan_set_track+0x5f/0x70 [ 205.964136][ T7029] ? p9_client_walk+0xbc/0x5b0 [ 205.969086][ T7029] ? v9fs_vfs_lookup+0x18b/0x520 [ 205.974668][ T7029] ? lookup_one_qstr_excl+0x112/0x250 [ 205.980163][ T7029] ? filename_create+0x222/0x460 [ 205.985207][ T7029] ? do_mknodat+0x183/0x4f0 [ 205.989757][ T7029] p9_client_rpc+0x189/0xa80 [ 205.994464][ T7029] ? p9_fid_create+0x220/0x220 [ 205.999513][ T7029] ? rcu_is_watching+0x15/0xb0 [ 206.004379][ T7029] ? trace_9p_fid_ref+0x7c/0x1a0 [ 206.009337][ T7029] p9_client_walk+0x19d/0x5b0 [ 206.014039][ T7029] ? trace_9p_protocol_dump+0x1a0/0x1a0 [ 206.019608][ T7029] ? v9fs_fid_lookup+0x1d1/0xb70 [ 206.024658][ T7029] ? d_alloc+0x1eb/0x250 [ 206.029135][ T7029] v9fs_vfs_lookup+0x18b/0x520 [ 206.033935][ T7029] ? v9fs_inode_from_fid+0x360/0x360 [ 206.039360][ T7029] ? do_raw_spin_unlock+0x121/0x230 [ 206.045199][ T7029] ? _raw_spin_unlock+0x28/0x40 [ 206.050322][ T7029] ? d_alloc+0x1eb/0x250 [ 206.054595][ T7029] lookup_one_qstr_excl+0x112/0x250 [ 206.059905][ T7029] filename_create+0x222/0x460 [ 206.064895][ T7029] ? kern_path_create+0x50/0x50 [ 206.069896][ T7029] ? __virt_addr_valid+0x18c/0x540 [ 206.075123][ T7029] do_mknodat+0x183/0x4f0 [ 206.079475][ T7029] ? __check_object_size+0x506/0xa30 [ 206.084875][ T7029] ? do_o_path+0x1f0/0x1f0 [ 206.089399][ T7029] ? getname_flags+0x20a/0x500 [ 206.094371][ T7029] __x64_sys_mknodat+0xa9/0xc0 [ 206.099154][ T7029] do_syscall_64+0x55/0xb0 [ 206.103604][ T7029] ? clear_bhb_loop+0x40/0x90 [ 206.108383][ T7029] ? clear_bhb_loop+0x40/0x90 [ 206.113118][ T7029] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 206.119124][ T7029] RIP: 0033:0x7f0a6a18f749 [ 206.123661][ T7029] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 206.143453][ T7029] RSP: 002b:00007f0a6b07b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000103 [ 206.152407][ T7029] RAX: ffffffffffffffda RBX: 00007f0a6a3e5fa0 RCX: 00007f0a6a18f749 [ 206.160442][ T7029] RDX: b0a54e68b1cd2fdb RSI: 0000200000000040 RDI: ffffffffffffff9c [ 206.168433][ T7029] RBP: 00007f0a6b07b090 R08: 0000000000000000 R09: 0000000000000000 [ 206.176415][ T7029] R10: 0000000000000103 R11: 0000000000000246 R12: 0000000000000001 [ 206.184397][ T7029] R13: 00007f0a6a3e6038 R14: 00007f0a6a3e5fa0 R15: 00007fff549d7f38 [ 206.192402][ T7029] [ 206.552057][ T7037] xt_cluster: node mask cannot exceed total number of nodes [ 206.688254][ T7031] loop1: detected capacity change from 0 to 4096 [ 206.709262][ T7039] x_tables: duplicate underflow at hook 1 [ 206.726041][ T7031] ntfs: (device loop1): parse_options(): Option utf8 is no longer supported, using option nls=utf8. Please use option nls=utf8 in the future and make sure utf8 is compiled either as a module or into the kernel. [ 206.925828][ T7031] ntfs: volume version 3.1. [ 206.954554][ T7031] ntfs: (device loop1): ntfs_mark_quotas_out_of_date(): Quota defaults entry version 0x5 is not supported. [ 206.994805][ T7031] ntfs: (device loop1): load_system_files(): Failed to mark quotas out of date. Mounting read-only. Run chkdsk. [ 207.037098][ T7047] loop2: detected capacity change from 0 to 1024 [ 207.063167][ T7047] EXT4-fs: Ignoring removed i_version option [ 207.089687][ T7047] EXT4-fs: inline encryption not supported [ 207.111054][ T7047] EXT4-fs (loop2): Test dummy encryption mode enabled [ 207.159261][ T7047] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 207.182966][ T5798] Bluetooth: hci0: command 0x0406 tx timeout [ 207.184529][ T5800] Bluetooth: hci2: command 0x0406 tx timeout [ 207.366187][ T7047] netlink: 12 bytes leftover after parsing attributes in process `syz.2.314'. [ 207.524505][ T5785] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 207.820305][ T7051] loop1: detected capacity change from 0 to 1024 [ 207.828123][ T7051] EXT4-fs: Ignoring removed i_version option [ 207.890510][ T7051] EXT4-fs: inline encryption not supported [ 207.980595][ T7051] EXT4-fs (loop1): Test dummy encryption mode enabled [ 208.706365][ T7051] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 208.861895][ T7063] FAULT_INJECTION: forcing a failure. [ 208.861895][ T7063] name failslab, interval 1, probability 0, space 0, times 0 [ 208.875731][ T7063] CPU: 0 PID: 7063 Comm: syz.0.318 Not tainted syzkaller #0 [ 208.883072][ T7063] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 208.893434][ T7063] Call Trace: [ 208.896955][ T7063] [ 208.900076][ T7063] dump_stack_lvl+0x16c/0x230 [ 208.905327][ T7063] ? show_regs_print_info+0x20/0x20 [ 208.910674][ T7063] ? load_image+0x3b0/0x3b0 [ 208.915240][ T7063] ? __might_sleep+0xe0/0xe0 [ 208.919882][ T7063] ? __lock_acquire+0x7c80/0x7c80 [ 208.924968][ T7063] should_fail_ex+0x39d/0x4d0 [ 208.929788][ T7063] should_failslab+0x9/0x20 [ 208.934442][ T7063] slab_pre_alloc_hook+0x59/0x310 [ 208.939608][ T7063] ? asm_sysvec_call_function_single+0x1a/0x20 [ 208.945995][ T7063] ? vmci_host_open+0x4f/0xe0 [ 208.950728][ T7063] __kmem_cache_alloc_node+0x53/0x260 [ 208.956247][ T7063] ? vmci_host_open+0x4f/0xe0 [ 208.961077][ T7063] kmalloc_trace+0x2a/0xe0 [ 208.965554][ T7063] vmci_host_open+0x4f/0xe0 [ 208.970123][ T7063] ? vmci_host_unlocked_ioctl+0x25c0/0x25c0 [ 208.976159][ T7063] misc_open+0x326/0x3a0 [ 208.980459][ T7063] chrdev_open+0x59e/0x670 [ 208.985022][ T7063] ? cd_forget+0x160/0x160 [ 208.989465][ T7063] ? do_dentry_open+0x8b3/0x1500 [ 208.994596][ T7063] ? chrdev_open+0x5/0x670 [ 208.999233][ T7063] ? cd_forget+0x160/0x160 [ 209.003783][ T7063] do_dentry_open+0x8c6/0x1500 [ 209.008596][ T7063] path_openat+0x274b/0x3190 [ 209.013220][ T7063] ? __kasan_slab_alloc+0x6c/0x80 [ 209.018281][ T7063] ? entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 209.024461][ T7063] ? verify_lock_unused+0x140/0x140 [ 209.029682][ T7063] ? do_filp_open+0x3d0/0x3d0 [ 209.034386][ T7063] ? __virt_addr_valid+0x18c/0x540 [ 209.039719][ T7063] do_filp_open+0x1c5/0x3d0 [ 209.044400][ T7063] ? vfs_tmpfile+0x490/0x490 [ 209.049319][ T7063] ? _raw_spin_unlock+0x28/0x40 [ 209.054198][ T7063] ? alloc_fd+0x58f/0x630 [ 209.058565][ T7063] do_sys_openat2+0x12c/0x1c0 [ 209.063355][ T7063] ? do_sys_open+0xe0/0xe0 [ 209.067821][ T7063] ? lockdep_hardirqs_on_prepare+0x400/0x760 [ 209.073843][ T7063] ? lock_chain_count+0x20/0x20 [ 209.078820][ T7063] __x64_sys_openat+0x139/0x160 [ 209.083783][ T7063] do_syscall_64+0x55/0xb0 [ 209.088339][ T7063] ? clear_bhb_loop+0x40/0x90 [ 209.093345][ T7063] ? clear_bhb_loop+0x40/0x90 [ 209.098202][ T7063] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 209.104148][ T7063] RIP: 0033:0x7f9cb2f8f749 [ 209.108961][ T7063] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 209.128940][ T7063] RSP: 002b:00007f9cb3d6e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 209.137552][ T7063] RAX: ffffffffffffffda RBX: 00007f9cb31e6090 RCX: 00007f9cb2f8f749 [ 209.145797][ T7063] RDX: 0000000000000002 RSI: 0000200000000740 RDI: ffffffffffffff9c [ 209.153787][ T7063] RBP: 00007f9cb3d6e090 R08: 0000000000000000 R09: 0000000000000000 [ 209.161765][ T7063] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 209.170093][ T7063] R13: 00007f9cb31e6128 R14: 00007f9cb31e6090 R15: 00007ffd89964b88 [ 209.178091][ T7063] [ 209.410902][ T7051] netlink: 12 bytes leftover after parsing attributes in process `syz.1.315'. [ 209.784796][ T5786] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 211.641774][ T7085] loop3: detected capacity change from 0 to 764 [ 211.794739][ T7085] rock: directory entry would overflow storage [ 211.801918][ T7085] rock: sig=0x5245, size=8, remaining=5 [ 214.979629][ T5878] usb 1-1: new high-speed USB device number 8 using dummy_hcd [ 215.478091][ T5878] usb 1-1: New USB device found, idVendor=055f, idProduct=c230, bcdDevice=b6.ac [ 215.591451][ T5878] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 215.699627][ T5878] usb 1-1: Product: syz [ 215.719298][ T5878] usb 1-1: Manufacturer: syz [ 215.736382][ T5878] usb 1-1: SerialNumber: syz [ 215.771060][ T5878] usb 1-1: config 0 descriptor?? [ 215.817182][ T5878] gspca_main: sunplus-2.14.0 probing 055f:c230 [ 216.059872][ T7100] warning: `syz.0.326' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211 [ 216.117892][ T5878] gspca_sunplus: reg_r err -32 [ 216.127086][ T5878] sunplus: probe of 1-1:0.0 failed with error -32 [ 216.307513][ T7116] loop1: detected capacity change from 0 to 4096 [ 216.339657][ T7105] loop3: detected capacity change from 0 to 32768 [ 216.634127][ T28] audit: type=1800 audit(1764407035.012:88): pid=7105 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.328" name="bus" dev="loop3" ino=7 res=0 errno=0 [ 218.045864][ T5840] usb 1-1: USB disconnect, device number 8 [ 218.585149][ T7118] read_mapping_page failed! [ 218.591116][ T7118] ERROR: (device loop3): txCommit: [ 218.591116][ T7118] [ 218.673325][ T7114] loop2: detected capacity change from 0 to 32768 [ 218.969559][ T7114] workqueue: Failed to create a rescuer kthread for wq "xfs-buf/loop2": -EINTR [ 219.178426][ T7120] jfs: Unrecognized mount option "òˆø§”çårê¬" or missing value [ 222.887389][ T7155] loop0: detected capacity change from 0 to 1024 [ 222.929157][ T7155] EXT4-fs: Ignoring removed i_version option [ 222.962069][ T7155] EXT4-fs: inline encryption not supported [ 222.973061][ T7155] EXT4-fs (loop0): Test dummy encryption mode enabled [ 223.014534][ T7158] loop2: detected capacity change from 0 to 128 [ 223.069071][ T7158] ext2: Bad value for 'barrier' [ 223.082713][ T7155] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 223.331606][ T5788] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 223.764285][ T7162] loop3: detected capacity change from 0 to 32768 [ 223.815296][ T5799] I/O error, dev loop3, sector 32640 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 223.939864][ T5840] usb 1-1: new high-speed USB device number 9 using dummy_hcd [ 223.969191][ T7162] ipt_REJECT: TCP_RESET invalid for non-tcp [ 224.036682][ T7159] loop1: detected capacity change from 0 to 32768 [ 224.087751][ T7159] XFS (loop1): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d [ 224.133940][ T5840] usb 1-1: Using ep0 maxpacket: 32 [ 224.161979][ T5840] usb 1-1: unable to get BOS descriptor or descriptor too short [ 224.179283][ T7159] XFS (loop1): Torn write (CRC failure) detected at log block 0x30. Truncating head block from 0x50. [ 224.183771][ T5840] usb 1-1: config 135 has an invalid interface number: 152 but max is 0 [ 224.202233][ T7159] XFS (loop1): Tail block (0x29) overwrite detected. Updated to 0x30 [ 224.221541][ T5840] usb 1-1: config 135 has no interface number 0 [ 224.227927][ T5840] usb 1-1: config 135 interface 152 has no altsetting 0 [ 224.238413][ T7159] XFS (loop1): Ending clean mount [ 224.257482][ T5840] usb 1-1: New USB device found, idVendor=0547, idProduct=6801, bcdDevice=11.3b [ 224.270900][ T5840] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 224.285039][ T5840] usb 1-1: Product: syz [ 224.299546][ T5840] usb 1-1: Manufacturer: syz [ 224.314808][ T5840] usb 1-1: SerialNumber: syz [ 224.660076][ T5840] gspca_main: touptek-2.14.0 probing 0547:6801 [ 224.694712][ T5840] usb 1-1: USB disconnect, device number 9 [ 225.851379][ T5786] XFS (loop1): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d [ 226.276807][ T7194] loop2: detected capacity change from 0 to 32768 [ 226.342897][ T7194] XFS (loop2): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb [ 226.392189][ T7208] loop1: detected capacity change from 0 to 1024 [ 226.401384][ T7208] EXT4-fs: Ignoring removed i_version option [ 226.407757][ T7208] EXT4-fs: inline encryption not supported [ 226.417600][ T7208] EXT4-fs (loop1): Test dummy encryption mode enabled [ 226.470915][ T7194] XFS (loop2): Ending clean mount [ 226.488501][ T7208] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 226.520140][ T7194] XFS (loop2): Quotacheck needed: Please wait. [ 227.571844][ T7194] XFS (loop2): Quotacheck: Done. [ 227.676913][ T7221] loop3: detected capacity change from 0 to 8 [ 227.747210][ T5786] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 227.895629][ T7221] SQUASHFS error: Unable to read inode 0x87 [ 227.920309][ T5785] XFS (loop2): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb [ 227.981969][ T5792] Bluetooth: hci2: Malformed LE Event: 0x0b [ 230.378630][ T7253] loop0: detected capacity change from 0 to 1024 [ 230.402400][ T7253] EXT4-fs: Ignoring removed i_version option [ 230.415397][ T7253] EXT4-fs: inline encryption not supported [ 230.451659][ T7253] EXT4-fs (loop0): Test dummy encryption mode enabled [ 230.490036][ T7253] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 230.579650][ T968] usb 3-1: new high-speed USB device number 5 using dummy_hcd [ 230.699352][ T7241] loop3: detected capacity change from 0 to 32768 [ 230.703622][ T5788] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 230.835106][ T7241] XFS (loop3): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d [ 230.859688][ T968] usb 3-1: Using ep0 maxpacket: 16 [ 230.878879][ T968] usb 3-1: config 1 has an invalid descriptor of length 131, skipping remainder of the config [ 230.907086][ T968] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 3 [ 230.949911][ T968] usb 3-1: config 1 interface 0 altsetting 0 has an invalid endpoint with address 0x0, skipping [ 230.990080][ T7241] XFS (loop3): Torn write (CRC failure) detected at log block 0x30. Truncating head block from 0x50. [ 231.008038][ T968] usb 3-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 0 [ 231.055142][ T7265] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state. [ 231.055304][ T968] usb 3-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40 [ 231.086746][ T7241] XFS (loop3): Tail block (0x29) overwrite detected. Updated to 0x30 [ 231.131858][ T968] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 231.158183][ T7241] XFS (loop3): Ending clean mount [ 231.168732][ T968] usb 3-1: Product: syz [ 231.181898][ T968] usb 3-1: Manufacturer: syz [ 231.186583][ T968] usb 3-1: SerialNumber: syz [ 231.373492][ T7270] netlink: 36 bytes leftover after parsing attributes in process `syz.0.369'. [ 233.828855][ T968] usb 3-1: 0:2 : does not exist [ 233.880177][ T968] usb 3-1: USB disconnect, device number 5 [ 233.968363][ T5803] udevd[5803]: error opening ATTR{/sys/devices/platform/dummy_hcd.2/usb3/3-1/3-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 234.055440][ T5787] XFS (loop3): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d [ 234.130330][ T7283] netlink: 8 bytes leftover after parsing attributes in process `syz.2.372'. [ 234.182779][ T7268] loop1: detected capacity change from 0 to 32768 [ 234.291543][ T7268] XFS (loop1): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 234.304628][ T7268] workqueue: Failed to create a rescuer kthread for wq "xfs-log/loop1": -EINTR [ 234.305616][ T7268] XFS (loop1): log mount failed [ 235.249064][ T7311] FAULT_INJECTION: forcing a failure. [ 235.249064][ T7311] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 235.267506][ T7311] CPU: 1 PID: 7311 Comm: syz.1.378 Not tainted syzkaller #0 [ 235.275151][ T7311] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 235.285338][ T7311] Call Trace: [ 235.288660][ T7311] [ 235.291649][ T7311] dump_stack_lvl+0x16c/0x230 [ 235.296745][ T7311] ? show_regs_print_info+0x20/0x20 [ 235.302003][ T7311] ? load_image+0x3b0/0x3b0 [ 235.306557][ T7311] ? __lock_acquire+0x7c80/0x7c80 [ 235.311635][ T7311] ? snprintf+0xdb/0x120 [ 235.316107][ T7311] should_fail_ex+0x39d/0x4d0 [ 235.321896][ T7311] _copy_to_user+0x2f/0xa0 [ 235.326366][ T7311] simple_read_from_buffer+0xe7/0x150 [ 235.331988][ T7311] proc_fail_nth_read+0x1e3/0x250 [ 235.337084][ T7311] ? proc_fault_inject_write+0x340/0x340 [ 235.342938][ T7311] ? fsnotify_perm+0x271/0x5e0 [ 235.347772][ T7311] ? proc_fault_inject_write+0x340/0x340 [ 235.353600][ T7311] vfs_read+0x27e/0x920 [ 235.357909][ T7311] ? kernel_read+0x1e0/0x1e0 [ 235.362564][ T7311] ? __fget_files+0x28/0x4d0 [ 235.367221][ T7311] ? __fget_files+0x44a/0x4d0 [ 235.371961][ T7311] ? __fdget_pos+0x2a3/0x330 [ 235.376772][ T7311] ? ksys_read+0x75/0x250 [ 235.381158][ T7311] ksys_read+0x147/0x250 [ 235.385468][ T7311] ? vfs_write+0x940/0x940 [ 235.389942][ T7311] ? lockdep_hardirqs_on+0x98/0x150 [ 235.395256][ T7311] do_syscall_64+0x55/0xb0 [ 235.399740][ T7311] ? clear_bhb_loop+0x40/0x90 [ 235.404628][ T7311] ? clear_bhb_loop+0x40/0x90 [ 235.409532][ T7311] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 235.415534][ T7311] RIP: 0033:0x7f9039d8e15c [ 235.420249][ T7311] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 235.440233][ T7311] RSP: 002b:00007f903ac53030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 235.448803][ T7311] RAX: ffffffffffffffda RBX: 00007f9039fe5fa0 RCX: 00007f9039d8e15c [ 235.456912][ T7311] RDX: 000000000000000f RSI: 00007f903ac530a0 RDI: 0000000000000005 [ 235.464901][ T7311] RBP: 00007f903ac53090 R08: 0000000000000000 R09: 0000000000000000 [ 235.473418][ T7311] R10: 0000000000000016 R11: 0000000000000246 R12: 0000000000000001 [ 235.481658][ T7311] R13: 00007f9039fe6038 R14: 00007f9039fe5fa0 R15: 00007ffe9ea5b718 [ 235.489959][ T7311] [ 235.698330][ T7313] loop2: detected capacity change from 0 to 1024 [ 235.708933][ T7313] EXT4-fs: Ignoring removed nomblk_io_submit option [ 236.418204][ T7319] FAULT_INJECTION: forcing a failure. [ 236.418204][ T7319] name failslab, interval 1, probability 0, space 0, times 0 [ 236.431872][ T7319] CPU: 0 PID: 7319 Comm: syz.1.380 Not tainted syzkaller #0 [ 236.439565][ T7319] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 236.449941][ T7319] Call Trace: [ 236.453234][ T7319] [ 236.456255][ T7319] dump_stack_lvl+0x16c/0x230 [ 236.460982][ T7319] ? show_regs_print_info+0x20/0x20 [ 236.466211][ T7319] ? load_image+0x3b0/0x3b0 [ 236.470764][ T7319] ? __might_sleep+0xe0/0xe0 [ 236.475395][ T7319] ? __lock_acquire+0x7c80/0x7c80 [ 236.480809][ T7319] should_fail_ex+0x39d/0x4d0 [ 236.485878][ T7319] should_failslab+0x9/0x20 [ 236.490435][ T7319] slab_pre_alloc_hook+0x59/0x310 [ 236.495704][ T7319] ? tomoyo_realpath_from_path+0xe3/0x5d0 [ 236.501520][ T7319] ? tomoyo_realpath_from_path+0xe3/0x5d0 [ 236.507251][ T7319] __kmem_cache_alloc_node+0x53/0x260 [ 236.512737][ T7319] ? tomoyo_realpath_from_path+0xe3/0x5d0 [ 236.518462][ T7319] __kmalloc+0xa4/0x240 [ 236.522816][ T7319] tomoyo_realpath_from_path+0xe3/0x5d0 [ 236.528411][ T7319] tomoyo_path_number_perm+0x1ea/0x590 [ 236.533986][ T7319] ? tomoyo_path_number_perm+0x1ba/0x590 [ 236.539821][ T7319] ? tomoyo_check_path_acl+0x1c0/0x1c0 [ 236.545616][ T7319] ? lock_chain_count+0x20/0x20 [ 236.550766][ T7319] ? hook_path_mknod+0x14c/0x4e0 [ 236.556351][ T7319] ? asm_sysvec_call_function_single+0x1a/0x20 [ 236.562712][ T7319] tomoyo_path_mknod+0x143/0x190 [ 236.567866][ T7319] ? hook_path_mkdir+0x20/0x20 [ 236.573347][ T7319] ? tomoyo_path_symlink+0xe0/0xe0 [ 236.578484][ T7319] security_path_mknod+0xf0/0x150 [ 236.583528][ T7319] do_mknodat+0x252/0x4f0 [ 236.587905][ T7319] ? do_o_path+0x1f0/0x1f0 [ 236.592358][ T7319] ? getname_flags+0x20a/0x500 [ 236.597169][ T7319] __x64_sys_mknodat+0xa9/0xc0 [ 236.602230][ T7319] do_syscall_64+0x55/0xb0 [ 236.606758][ T7319] ? clear_bhb_loop+0x40/0x90 [ 236.611440][ T7319] ? clear_bhb_loop+0x40/0x90 [ 236.616732][ T7319] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 236.622629][ T7319] RIP: 0033:0x7f9039d8f749 [ 236.627414][ T7319] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 236.647820][ T7319] RSP: 002b:00007f903ac32038 EFLAGS: 00000246 ORIG_RAX: 0000000000000103 [ 236.656345][ T7319] RAX: ffffffffffffffda RBX: 00007f9039fe6090 RCX: 00007f9039d8f749 [ 236.664437][ T7319] RDX: 0000000000001000 RSI: 0000200000000040 RDI: ffffffffffffff9c [ 236.672529][ T7319] RBP: 00007f903ac32090 R08: 0000000000000000 R09: 0000000000000000 [ 236.680575][ T7319] R10: 0000000000010008 R11: 0000000000000246 R12: 0000000000000001 [ 236.689078][ T7319] R13: 00007f9039fe6128 R14: 00007f9039fe6090 R15: 00007ffe9ea5b718 [ 236.697470][ T7319] [ 236.703487][ T7319] ERROR: Out of memory at tomoyo_realpath_from_path. [ 237.485589][ T7313] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 237.545594][ T5847] usb 4-1: new high-speed USB device number 16 using dummy_hcd [ 237.809840][ T5847] usb 4-1: Using ep0 maxpacket: 32 [ 237.820122][ T5785] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 237.831553][ T5847] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 237.849478][ T5847] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 237.879987][ T5847] usb 4-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40 [ 237.929876][ T5847] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 237.940900][ T5847] usb 4-1: config 0 descriptor?? [ 237.981196][ T5847] hub 4-1:0.0: USB hub found [ 239.160076][ T5847] hub 4-1:0.0: config failed, can't read hub descriptor (err -90) [ 239.599163][ T7331] 9pnet_fd: Insufficient options for proto=fd [ 239.709484][ T27] usb 2-1: new high-speed USB device number 12 using dummy_hcd [ 239.826602][ T7325] loop2: detected capacity change from 0 to 32768 [ 239.870386][ T7325] XFS (loop2): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 239.899952][ T27] usb 2-1: Using ep0 maxpacket: 32 [ 239.915888][ T27] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 239.930452][ T27] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 239.941368][ T27] usb 2-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40 [ 239.951923][ T27] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 239.968147][ T27] usb 2-1: config 0 descriptor?? [ 239.976928][ T27] hub 2-1:0.0: USB hub found [ 240.067782][ T7325] XFS (loop2): Ending clean mount [ 240.334352][ T5847] usbhid 4-1:0.0: can't add hid device: -71 [ 240.395980][ T5847] usbhid: probe of 4-1:0.0 failed with error -71 [ 241.319797][ T27] hub 2-1:0.0: config failed, can't read hub descriptor (err -90) [ 241.683320][ T5847] usb 4-1: USB disconnect, device number 16 [ 241.730306][ T5785] XFS (loop2): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 242.568223][ T27] usbhid 2-1:0.0: can't add hid device: -71 [ 242.589594][ T27] usbhid: probe of 2-1:0.0 failed with error -71 [ 242.843893][ T27] usb 2-1: USB disconnect, device number 12 [ 243.704003][ T7362] loop3: detected capacity change from 0 to 512 [ 243.812524][ T7362] loop3: detected capacity change from 0 to 512 [ 243.825797][ T5803] I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 244.325087][ T7356] loop1: detected capacity change from 0 to 32768 [ 244.788498][ T7373] loop0: detected capacity change from 0 to 1024 [ 245.091928][ T7373] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 245.143459][ T28] audit: type=1800 audit(1764407063.512:89): pid=7356 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.388" name="bus" dev="loop1" ino=7 res=0 errno=0 [ 245.328761][ T7379] read_mapping_page failed! [ 245.334047][ T7379] ERROR: (device loop1): txCommit: [ 245.334047][ T7379] [ 248.011820][ T7380] jfs: Unrecognized mount option "òˆø§”çårê¬" or missing value [ 248.073097][ T5792] Bluetooth: hci3: command 0x0406 tx timeout [ 251.444005][ T7419] loop2: detected capacity change from 0 to 4096 [ 251.792805][ T28] audit: type=1800 audit(1764407070.172:90): pid=7415 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.402" name="file1" dev="loop2" ino=33 res=0 errno=0 [ 251.799618][ T5860] usb 4-1: new high-speed USB device number 17 using dummy_hcd [ 252.052059][ T5860] usb 4-1: Using ep0 maxpacket: 32 [ 252.065259][ T5860] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 252.079644][ T787] usb 2-1: new high-speed USB device number 13 using dummy_hcd [ 252.093015][ T5860] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 252.108410][ T5860] usb 4-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40 [ 252.122861][ T5860] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 252.147466][ T5860] usb 4-1: config 0 descriptor?? [ 252.168570][ T5860] hub 4-1:0.0: USB hub found [ 252.279471][ T787] usb 2-1: Using ep0 maxpacket: 32 [ 252.290341][ T787] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 252.319594][ T787] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 252.338455][ T787] usb 2-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40 [ 252.359146][ T787] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 252.390922][ T7430] loop0: detected capacity change from 0 to 32768 [ 252.400288][ T787] usb 2-1: config 0 descriptor?? [ 252.495860][ T787] hub 2-1:0.0: USB hub found [ 252.623152][ T7430] XFS (loop0): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb [ 252.738215][ T5860] hub 4-1:0.0: config failed, can't read hub descriptor (err -90) [ 252.801867][ T7430] XFS (loop0): Ending clean mount [ 252.823686][ T7430] XFS (loop0): Quotacheck needed: Please wait. [ 252.966210][ T7430] XFS (loop0): Quotacheck: Done. [ 253.037430][ T5860] usbhid 4-1:0.0: can't add hid device: -71 [ 253.049549][ T5860] usbhid: probe of 4-1:0.0 failed with error -71 [ 253.113535][ T5860] usb 4-1: USB disconnect, device number 17 [ 253.921042][ T787] hub 2-1:0.0: config failed, can't read hub descriptor (err -90) [ 254.238651][ T5788] XFS (loop0): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb [ 254.687249][ T7461] loop3: detected capacity change from 0 to 4096 [ 254.698236][ T7461] ntfs3: Bad value for 'umask' [ 255.036287][ T787] usbhid 2-1:0.0: can't add hid device: -71 [ 255.044905][ T787] usbhid: probe of 2-1:0.0 failed with error -71 [ 255.093917][ T787] usb 2-1: USB disconnect, device number 13 [ 255.679755][ T787] usb 2-1: new high-speed USB device number 14 using dummy_hcd [ 255.880016][ T787] usb 2-1: Using ep0 maxpacket: 32 [ 255.894514][ T787] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 255.918319][ T787] usb 2-1: config 0 has 0 interfaces, different from the descriptor's value: 1 [ 256.179699][ T5860] usb 3-1: new high-speed USB device number 6 using dummy_hcd [ 256.267395][ T787] usb 2-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40 [ 256.277126][ T787] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 256.302201][ T1284] ieee802154 phy0 wpan0: encryption failed: -22 [ 256.308772][ T1284] ieee802154 phy1 wpan1: encryption failed: -22 [ 256.426256][ T787] usb 2-1: config 0 descriptor?? [ 256.431423][ T5860] usb 3-1: Using ep0 maxpacket: 32 [ 256.443576][ T5860] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 256.501942][ T5860] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 256.512039][ T5860] usb 3-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40 [ 256.521602][ T5860] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 256.536161][ T5860] usb 3-1: config 0 descriptor?? [ 256.545784][ T5860] hub 3-1:0.0: USB hub found [ 257.875370][ T5860] hub 3-1:0.0: config failed, can't read hub descriptor (err -90) [ 257.897511][ T5860] usbhid 3-1:0.0: can't add hid device: -71 [ 257.923228][ T5860] usbhid: probe of 3-1:0.0 failed with error -71 [ 257.972411][ T5860] usb 3-1: USB disconnect, device number 6 [ 258.529553][ T5885] usb 1-1: new full-speed USB device number 10 using dummy_hcd [ 258.689040][ T5103] Bluetooth: hci2: SCO packet for unknown connection handle 522 [ 258.873926][ T7508] FAULT_INJECTION: forcing a failure. [ 258.873926][ T7508] name failslab, interval 1, probability 0, space 0, times 0 [ 259.021482][ T7506] loop3: detected capacity change from 0 to 32768 [ 259.036402][ T5885] usb 1-1: unable to get BOS descriptor or descriptor too short [ 259.048239][ T7506] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop3 scanned by syz.3.421 (7506) [ 259.053456][ T5860] usb 2-1: USB disconnect, device number 14 [ 259.062259][ T7508] CPU: 1 PID: 7508 Comm: syz.2.422 Not tainted syzkaller #0 [ 259.074530][ T7508] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 259.084599][ T7508] Call Trace: [ 259.088033][ T7508] [ 259.090975][ T7508] dump_stack_lvl+0x16c/0x230 [ 259.095686][ T7508] ? show_regs_print_info+0x20/0x20 [ 259.101101][ T7508] ? load_image+0x3b0/0x3b0 [ 259.105642][ T7508] ? __might_sleep+0xe0/0xe0 [ 259.110261][ T7508] ? __lock_acquire+0x7c80/0x7c80 [ 259.115695][ T7508] should_fail_ex+0x39d/0x4d0 [ 259.120645][ T7508] should_failslab+0x9/0x20 [ 259.125265][ T7508] slab_pre_alloc_hook+0x59/0x310 [ 259.130318][ T7508] ? read_lock_is_recursive+0x20/0x20 [ 259.135998][ T7508] ? encrypted_update+0x139/0x560 [ 259.141099][ T7508] ? encrypted_update+0x139/0x560 [ 259.146157][ T7508] __kmem_cache_alloc_node+0x53/0x260 [ 259.151638][ T7508] ? encrypted_update+0x139/0x560 [ 259.156681][ T7508] __kmalloc+0xa4/0x240 [ 259.161050][ T7508] encrypted_update+0x139/0x560 [ 259.165945][ T7508] ? key_task_permission+0x3b9/0x4f0 [ 259.171277][ T7508] __key_update+0x17b/0x420 [ 259.175836][ T7508] ? key_ref_put+0xc0/0xc0 [ 259.180292][ T7508] ? __key_link_end+0xe1/0x120 [ 259.185081][ T7508] __key_create_or_update+0x75a/0xa00 [ 259.190568][ T7508] ? key_create_or_update+0x60/0x60 [ 259.195803][ T7508] ? search_process_keyrings_rcu+0x2a0/0x2a0 [ 259.201997][ T7508] key_create_or_update+0x42/0x60 [ 259.207136][ T7508] __se_sys_add_key+0x337/0x400 [ 259.212196][ T7508] ? __x64_sys_add_key+0xc0/0xc0 [ 259.217246][ T7508] ? lockdep_hardirqs_on+0x98/0x150 [ 259.222644][ T7508] ? __x64_sys_add_key+0x20/0xc0 [ 259.227819][ T7508] do_syscall_64+0x55/0xb0 [ 259.232279][ T7508] ? clear_bhb_loop+0x40/0x90 [ 259.236983][ T7508] ? clear_bhb_loop+0x40/0x90 [ 259.241705][ T7508] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 259.247715][ T7508] RIP: 0033:0x7f0a6a18f749 [ 259.252148][ T7508] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 259.271876][ T7508] RSP: 002b:00007f0a6b07b038 EFLAGS: 00000246 ORIG_RAX: 00000000000000f8 [ 259.280663][ T7508] RAX: ffffffffffffffda RBX: 00007f0a6a3e5fa0 RCX: 00007f0a6a18f749 [ 259.288743][ T7508] RDX: 0000200000000100 RSI: 0000200000000180 RDI: 0000200000000140 [ 259.296903][ T7508] RBP: 00007f0a6b07b090 R08: fffffffffffffffe R09: 0000000000000000 [ 259.304903][ T7508] R10: 00000000000000ca R11: 0000000000000246 R12: 0000000000000001 [ 259.312889][ T7508] R13: 00007f0a6a3e6038 R14: 00007f0a6a3e5fa0 R15: 00007fff549d7f38 [ 259.320971][ T7508] [ 259.332732][ T5885] usb 1-1: not running at top speed; connect to a high speed hub [ 259.343858][ T5885] usb 1-1: config 56 has an invalid descriptor of length 1, skipping remainder of the config [ 259.355182][ T7506] BTRFS info (device loop3): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 259.365817][ T7506] BTRFS info (device loop3): using sha256 (sha256-avx2) checksum algorithm [ 259.374750][ T7506] BTRFS info (device loop3): force clearing of disk cache [ 259.382034][ T7506] BTRFS info (device loop3): enabling auto defrag [ 259.388601][ T7506] BTRFS info (device loop3): max_inline at 0 [ 259.394874][ T7506] BTRFS info (device loop3): enabling disk space caching [ 259.403098][ T7506] BTRFS info (device loop3): disk space caching is enabled [ 259.411664][ T5885] usb 1-1: config 56 has 0 interfaces, different from the descriptor's value: 1 [ 259.451822][ T5885] usb 1-1: New USB device found, idVendor=1410, idProduct=9011, bcdDevice=e5.d2 [ 259.469689][ T5885] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 259.481276][ T5885] usb 1-1: Product: syz [ 259.485601][ T5885] usb 1-1: Manufacturer: syz [ 259.499500][ T5885] usb 1-1: SerialNumber: syz [ 259.577576][ T7506] BTRFS info (device loop3): enabling ssd optimizations [ 259.601256][ T7506] BTRFS info (device loop3): rebuilding free space tree [ 259.667263][ T7506] BTRFS info (device loop3): disabling free space tree [ 259.674697][ T7506] BTRFS info (device loop3): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1) [ 259.685511][ T7506] BTRFS info (device loop3): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2) [ 260.423355][ T7518] loop1: detected capacity change from 0 to 8192 [ 260.744580][ T5787] BTRFS info (device loop3): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 261.263974][ T5885] usb 1-1: USB disconnect, device number 10 [ 261.329621][ T5878] usb 2-1: new high-speed USB device number 15 using dummy_hcd [ 261.529621][ T5878] usb 2-1: Using ep0 maxpacket: 32 [ 261.547570][ T5878] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 261.579675][ T5878] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 261.599548][ T5878] usb 2-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40 [ 261.619074][ T5878] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 261.632544][ T7533] loop2: detected capacity change from 0 to 32768 [ 261.647010][ T5878] usb 2-1: config 0 descriptor?? [ 261.665519][ T5878] hub 2-1:0.0: USB hub found [ 261.944726][ T7533] XFS (loop2): Mounting V5 Filesystem ed37bf6e-74ea-4e01-afba-5fee274b0f3a [ 262.234360][ T5878] hub 2-1:0.0: config failed, can't read hub descriptor (err -90) [ 262.328151][ T7533] XFS (loop2): Ending clean mount [ 262.444002][ T5878] usbhid 2-1:0.0: can't add hid device: -71 [ 262.510282][ T5878] usbhid: probe of 2-1:0.0 failed with error -71 [ 262.550538][ T5878] usb 2-1: USB disconnect, device number 15 [ 262.846382][ T5785] XFS (loop2): Unmounting Filesystem ed37bf6e-74ea-4e01-afba-5fee274b0f3a [ 263.056728][ T5840] usb 4-1: new high-speed USB device number 18 using dummy_hcd [ 263.633291][ T5840] usb 4-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30 [ 263.646213][ T5840] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 32, changing to 9 [ 265.072524][ T5840] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 1036, setting to 1024 [ 265.095033][ T5840] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253 [ 265.120134][ T5840] usb 4-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40 [ 265.145755][ T5840] usb 4-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0 [ 265.175206][ T5840] usb 4-1: Manufacturer: syz [ 265.204102][ T5840] usb 4-1: config 0 descriptor?? [ 265.240949][ T7566] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22 [ 265.536953][ T7580] loop0: detected capacity change from 0 to 8192 [ 265.656661][ T5840] usbhid 4-1:0.0: can't add hid device: -71 [ 265.698516][ T5840] usbhid: probe of 4-1:0.0 failed with error -71 [ 265.760627][ T5840] usb 4-1: USB disconnect, device number 18 [ 266.124422][ T7593] tap0: tun_chr_ioctl cmd 1074025677 [ 266.158172][ T7593] tap0: linktype set to 769 [ 266.550161][ T7606] netlink: 12 bytes leftover after parsing attributes in process `syz.0.446'. [ 266.559182][ T7606] bridge: RTM_NEWNEIGH with invalid ether address [ 266.851531][ T7614] loop0: detected capacity change from 0 to 256 [ 266.946513][ T7614] FAT-fs (loop0): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001) [ 266.986926][ T7614] FAT-fs (loop0): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001) [ 267.034327][ T7614] FAT-fs (loop0): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001) [ 267.083944][ T28] audit: type=1800 audit(1764407085.452:91): pid=7614 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.449" name="file1" dev="loop0" ino=1048598 res=0 errno=0 [ 267.129715][ T7614] FAT-fs (loop0): error, invalid access to FAT (entry 0x00000001) [ 267.945387][ T7646] bridge_slave_0: left allmulticast mode [ 267.964418][ T7646] bridge_slave_0: left promiscuous mode [ 267.982223][ T7646] bridge0: port 1(bridge_slave_0) entered disabled state [ 268.052901][ T7646] bridge_slave_1: left allmulticast mode [ 268.115027][ T7646] bridge_slave_1: left promiscuous mode [ 268.149444][ T7646] bridge0: port 2(bridge_slave_1) entered disabled state [ 268.191994][ T7651] loop2: detected capacity change from 0 to 128 [ 268.218464][ T7649] overlayfs: upper fs does not support RENAME_WHITEOUT. [ 268.231035][ T7651] FAT-fs (loop2): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 268.239991][ T7646] bond0: (slave bond_slave_0): Releasing backup interface [ 268.260365][ T7649] overlayfs: failed to set xattr on upper [ 268.270445][ T7649] overlayfs: ...falling back to index=off. [ 268.282757][ T7649] overlayfs: ...falling back to uuid=null. [ 268.292019][ T7649] overlayfs: maximum fs stacking depth exceeded [ 268.298993][ T7651] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 268.342154][ T7646] bond0: (slave bond_slave_1): Releasing backup interface [ 268.493330][ T42] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 268.527277][ T7646] team0: Port device team_slave_0 removed [ 268.584819][ T7646] team0: Port device team_slave_1 removed [ 268.634062][ T7646] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 268.648316][ T7646] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 268.684663][ T7646] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 268.724131][ T7646] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 268.827595][ T7658] loop2: detected capacity change from 0 to 256 [ 268.901125][ T7658] FAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 268.901953][ T7662] loop0: detected capacity change from 0 to 256 [ 269.066265][ T7659] bond1: entered allmulticast mode [ 269.072013][ T7659] 8021q: adding VLAN 0 to HW filter on device bond1 [ 270.040343][ T7698] loop3: detected capacity change from 0 to 256 [ 270.052860][ T7688] loop1: detected capacity change from 0 to 8192 [ 270.123135][ T7688] FAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 270.545868][ T7708] loop3: detected capacity change from 0 to 128 [ 270.616153][ T7708] FAT-fs (loop3): error, corrupted directory (invalid entries) [ 270.631256][ T7708] FAT-fs (loop3): Filesystem has been set read-only [ 270.912227][ T7718] loop3: detected capacity change from 0 to 136 [ 271.303195][ T7729] tun0: tun_chr_ioctl cmd 1074025675 [ 271.308684][ T7729] tun0: persist enabled [ 271.340044][ T7729] tun0: tun_chr_ioctl cmd 2148553947 [ 271.449802][ T7734] IPv6: NLM_F_CREATE should be specified when creating new route [ 271.848620][ T7747] loop3: detected capacity change from 0 to 512 [ 271.868345][ T7751] loop2: detected capacity change from 0 to 128 [ 271.952493][ T7747] FAT-fs (loop3): error, fat_get_cluster: invalid start cluster (i_pos 2178, start 8e210000) [ 271.979534][ T7747] FAT-fs (loop3): Filesystem has been set read-only [ 272.001504][ T7747] FAT-fs (loop3): error, fat_get_cluster: invalid start cluster (i_pos 2178, start 8e210000) [ 272.033690][ T7751] syz.2.511: attempt to access beyond end of device [ 272.033690][ T7751] loop2: rw=2049, sector=138, nr_sectors = 112 limit=128 [ 272.039528][ T7747] FAT-fs (loop3): error, fat_get_cluster: invalid start cluster (i_pos 2178, start 8e210000) [ 272.121507][ T28] audit: type=1800 audit(1764407090.492:92): pid=7747 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.509" name="file1" dev="loop3" ino=1048605 res=0 errno=0 [ 272.174369][ T7751] Trying to write to read-only block-device loop2 [ 273.148992][ T7780] sctp: [Deprecated]: syz.2.524 (pid 7780) Use of struct sctp_assoc_value in delayed_ack socket option. [ 273.148992][ T7780] Use struct sctp_sack_info instead [ 273.608558][ T7812] loop3: detected capacity change from 0 to 256 [ 274.084025][ T7824] loop2: detected capacity change from 0 to 128 [ 275.332146][ T7848] loop1: detected capacity change from 0 to 1764 [ 275.979277][ T7867] loop2: detected capacity change from 0 to 256 [ 276.065853][ T7873] loop1: detected capacity change from 0 to 128 [ 276.073625][ T7397] I/O error, dev loop2, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 276.183165][ T7873] FAT-fs (loop1): error, corrupted directory (invalid entries) [ 276.223756][ T7873] FAT-fs (loop1): Filesystem has been set read-only [ 276.365211][ T7876] loop2: detected capacity change from 0 to 2048 [ 276.451222][ T7876] Alternate GPT is invalid, using primary GPT. [ 276.457828][ T7876] loop2: p1 p2 p3 [ 276.466431][ T7876] loop2: partition table partially beyond EOD, truncated [ 276.537202][ T28] audit: type=1326 audit(1764407094.912:93): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7880 comm="syz.1.565" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9039d8f749 code=0x7fc00000 [ 276.611870][ T28] audit: type=1326 audit(1764407094.952:94): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7880 comm="syz.1.565" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f9039d8f749 code=0x7fc00000 [ 276.704942][ T28] audit: type=1326 audit(1764407094.952:95): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7880 comm="syz.1.565" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9039d8f749 code=0x7fc00000 [ 276.859197][ T7470] udevd[7470]: inotify_add_watch(7, /dev/loop2p2, 10) failed: No such file or directory [ 276.876280][ T7384] udevd[7384]: inotify_add_watch(7, /dev/loop2p1, 10) failed: No such file or directory [ 276.886480][ T7433] udevd[7433]: inotify_add_watch(7, /dev/loop2p3, 10) failed: No such file or directory [ 277.030061][ T7894] veth0: entered promiscuous mode [ 277.047740][ T7894] netlink: 4 bytes leftover after parsing attributes in process `syz.2.570'. [ 277.515694][ T7908] netlink: 24 bytes leftover after parsing attributes in process `syz.1.576'. [ 279.151269][ T7960] loop0: detected capacity change from 0 to 8192 [ 279.253891][ T7960] loop0: p1 p3 p4 [ 279.260648][ T7960] loop0: p1 size 50333697 extends beyond EOD, truncated [ 279.282424][ T7960] loop0: p3 size 196608 extends beyond EOD, truncated [ 279.311182][ T7960] loop0: p4 size 524032 extends beyond EOD, truncated [ 279.591166][ T7972] netlink: 'syz.0.608': attribute type 4 has an invalid length. [ 279.603457][ T7397] udevd[7397]: inotify_add_watch(7, /dev/loop0p1, 10) failed: No such file or directory [ 279.615649][ T7384] udevd[7384]: inotify_add_watch(7, /dev/loop0p3, 10) failed: No such file or directory [ 279.618488][ T7470] udevd[7470]: inotify_add_watch(7, /dev/loop0p4, 10) failed: No such file or directory [ 279.679035][ T7976] netlink: 'syz.0.608': attribute type 4 has an invalid length. [ 280.068345][ T7984] xt_CT: You must specify a L4 protocol and not use inversions on it [ 280.272835][ T7991] loop2: detected capacity change from 0 to 764 [ 280.317216][ T7991] rock: directory entry would overflow storage [ 280.347457][ T7991] rock: sig=0x5245, size=8, remaining=5 [ 280.747853][ T142] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 280.843577][ T142] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 280.988663][ T142] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 281.136869][ T142] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 281.508397][ T142] tipc: Left network mode [ 281.602730][ T5792] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 281.618817][ T5792] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 281.646209][ T5792] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 281.659763][ T5792] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 281.670089][ T5792] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 281.678601][ T5792] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 283.060617][ T8056] overlayfs: failed to resolve './bus': -2 [ 283.267303][ T8016] chnl_net:caif_netlink_parms(): no params data found [ 283.414518][ T8068] loop0: detected capacity change from 0 to 512 [ 283.743070][ T5103] Bluetooth: hci1: command tx timeout [ 284.033867][ T8090] overlayfs: failed to resolve './bus': -2 [ 284.721542][ T8016] bridge0: port 1(bridge_slave_0) entered blocking state [ 284.739702][ T8016] bridge0: port 1(bridge_slave_0) entered disabled state [ 284.739910][ T8016] bridge_slave_0: entered allmulticast mode [ 284.742901][ T8016] bridge_slave_0: entered promiscuous mode [ 284.791114][ T8016] bridge0: port 2(bridge_slave_1) entered blocking state [ 284.791240][ T8016] bridge0: port 2(bridge_slave_1) entered disabled state [ 284.791431][ T8016] bridge_slave_1: entered allmulticast mode [ 284.793023][ T8016] bridge_slave_1: entered promiscuous mode [ 285.068774][ T8016] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 285.169525][ T8016] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 285.383941][ T8131] 9pnet: p9_errstr2errno: server reported unknown error 000000 [ 285.417853][ T8016] team0: Port device team_slave_0 added [ 285.492051][ T8016] team0: Port device team_slave_1 added [ 285.540124][ T142] hsr_slave_0: left promiscuous mode [ 285.553631][ T142] hsr_slave_1: left promiscuous mode [ 285.563032][ T142] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 285.571400][ T142] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 285.579725][ T142] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 285.587190][ T142] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 285.597373][ T142] bridge_slave_1: left allmulticast mode [ 285.603476][ T142] bridge_slave_1: left promiscuous mode [ 285.611983][ T142] bridge0: port 2(bridge_slave_1) entered disabled state [ 285.626425][ T142] bridge_slave_0: left allmulticast mode [ 285.632814][ T142] bridge_slave_0: left promiscuous mode [ 285.638648][ T142] bridge0: port 1(bridge_slave_0) entered disabled state [ 285.674776][ T142] veth1_macvtap: left promiscuous mode [ 285.681394][ T142] veth0_macvtap: left promiscuous mode [ 285.687092][ T142] veth1_vlan: left promiscuous mode [ 285.693204][ T142] veth0_vlan: left promiscuous mode [ 285.819497][ T5103] Bluetooth: hci1: command tx timeout [ 286.037836][ T142] bond1 (unregistering): Released all slaves [ 286.873609][ T142] team0 (unregistering): Port device team_slave_1 removed [ 286.939045][ T142] team0 (unregistering): Port device team_slave_0 removed [ 287.005845][ T142] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 287.082725][ T142] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 287.820680][ T142] bond0 (unregistering): Released all slaves [ 287.909522][ T5103] Bluetooth: hci1: command tx timeout [ 287.954039][ T8016] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 287.961147][ T8016] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 288.083912][ T8016] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 288.108279][ T8016] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 288.115650][ T8016] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 288.142480][ T8016] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 288.314669][ T8016] hsr_slave_0: entered promiscuous mode [ 288.346938][ T8016] hsr_slave_1: entered promiscuous mode [ 288.774840][ T8016] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 288.814368][ T8016] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 288.842514][ T8016] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 288.877441][ T8016] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 289.223584][ T8016] 8021q: adding VLAN 0 to HW filter on device bond0 [ 289.357824][ T8016] 8021q: adding VLAN 0 to HW filter on device team0 [ 289.407283][ T142] bridge0: port 1(bridge_slave_0) entered blocking state [ 289.414817][ T142] bridge0: port 1(bridge_slave_0) entered forwarding state [ 289.535218][ T142] bridge0: port 2(bridge_slave_1) entered blocking state [ 289.542633][ T142] bridge0: port 2(bridge_slave_1) entered forwarding state [ 289.665362][ T5885] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 289.982900][ T5103] Bluetooth: hci1: command tx timeout [ 290.175210][ T8194] overlayfs: failed to resolve './file0/file1': -111 [ 290.435093][ T8016] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 290.700500][ T5885] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 290.704324][ T8240] overlayfs: failed to resolve './file2': -2 [ 291.268998][ T8016] veth0_vlan: entered promiscuous mode [ 291.293594][ T8257] QAT: Invalid ioctl 1074356734 [ 291.298049][ T8016] veth1_vlan: entered promiscuous mode [ 291.409888][ T8260] capability: warning: `syz.0.697' uses deprecated v2 capabilities in a way that may be insecure [ 291.411283][ T8016] veth0_macvtap: entered promiscuous mode [ 291.488689][ T8016] veth1_macvtap: entered promiscuous mode [ 291.547017][ T8016] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 291.562538][ T8016] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 291.579766][ T8016] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 291.596628][ T8016] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 291.632930][ T8016] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 291.677175][ T8016] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 291.696286][ T8016] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 291.719694][ T8016] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 291.740204][ T5840] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 291.749160][ T8016] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 291.784600][ T8016] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 291.835545][ T8016] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 291.859533][ T8016] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 291.927189][ T8016] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 291.961899][ T8016] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 292.301048][ T5847] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 292.332185][ T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 292.369608][ T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 292.466914][ T3442] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 292.490816][ T3442] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 292.654287][ T8295] overlayfs: failed to get inode (-116) [ 292.674748][ T8295] overlayfs: failed to get inode (-116) [ 292.789848][ T23] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 293.152075][ T8313] fuse: root generation should be zero [ 293.756834][ T8333] overlayfs: upper fs does not support RENAME_WHITEOUT. [ 293.820305][ T23] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 293.830187][ T8333] overlayfs: failed to set xattr on upper [ 293.836436][ T8333] overlayfs: ...falling back to redirect_dir=nofollow. [ 293.896101][ T8333] overlayfs: ...falling back to index=off. [ 293.920688][ T8333] overlayfs: ...falling back to uuid=null. [ 293.943709][ T28] audit: type=1804 audit(1764407112.312:96): pid=8337 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.4.722" name="/newroot/4/file0/file1" dev="ramfs" ino=19127 res=1 errno=0 [ 295.349925][ T23] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 295.359615][ T5860] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 295.559042][ T8375] netlink: 212 bytes leftover after parsing attributes in process `syz.3.736'. [ 295.608724][ T8375] xt_hashlimit: size too large, truncated to 1048576 [ 295.631881][ T8375] xt_hashlimit: max too large, truncated to 1048576 [ 295.651498][ T8377] x_tables: ip_tables: osf match: only valid for protocol 6 [ 296.135978][ T8393] loop4: detected capacity change from 0 to 128 [ 296.322200][ T28] audit: type=1804 audit(1764407114.692:97): pid=8393 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.4.743" name="/newroot/8/bus/bus" dev="loop4" ino=1048611 res=1 errno=0 [ 296.389095][ T787] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 296.661277][ T8393] loop4: detected capacity change from 128 to 0 [ 296.702279][ T8404] syz.4.743: attempt to access beyond end of device [ 296.702279][ T8404] loop4: rw=2049, sector=100, nr_sectors = 1 limit=0 [ 296.874620][ T8404] Buffer I/O error on dev loop4, logical block 100, lost async page write [ 297.058765][ T8404] syz.4.743: attempt to access beyond end of device [ 297.058765][ T8404] loop4: rw=2049, sector=101, nr_sectors = 1 limit=0 [ 297.089281][ T8404] Buffer I/O error on dev loop4, logical block 101, lost async page write [ 297.421401][ T787] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 297.445043][ T8016] syz-executor: attempt to access beyond end of device [ 297.445043][ T8016] loop4: rw=2049, sector=0, nr_sectors = 1 limit=0 [ 297.489536][ T8016] Buffer I/O error on dev loop4, logical block 0, lost sync page write [ 298.381581][ T8] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 298.461912][ T787] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 299.525770][ T23] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 300.539877][ T23] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 301.420018][ T5878] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 301.628136][ T5840] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 301.780643][ T8579] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 301.814233][ T8579] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 301.878135][ T8579] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 302.700041][ T787] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 302.733771][ T8610] loop2: detected capacity change from 0 to 128 [ 302.806717][ T7397] I/O error, dev loop2, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 303.099043][ T8617] loop0: detected capacity change from 0 to 2048 [ 303.182888][ T8617] loop0: p1 < > p4 [ 303.221979][ T8617] loop0: p4 size 8388608 extends beyond EOD, truncated [ 303.642152][ T7397] udevd[7397]: inotify_add_watch(7, /dev/loop0p1, 10) failed: No such file or directory [ 303.680883][ T7384] udevd[7384]: inotify_add_watch(7, /dev/loop0p4, 10) failed: No such file or directory [ 303.739832][ T787] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 304.453421][ T8651] loop3: detected capacity change from 0 to 128 [ 304.466274][ T5878] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 304.791669][ T787] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 306.140375][ T5840] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 307.296304][ T23] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 307.501835][ T5860] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 307.772858][ T8691] netlink: 8 bytes leftover after parsing attributes in process `syz.4.845'. [ 308.300457][ T787] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 309.340335][ T787] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 309.856201][ T8733] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 309.899782][ T8733] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 309.908498][ T8733] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 309.976578][ T8737] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 310.029703][ T8737] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 310.262686][ T8745] loop0: detected capacity change from 0 to 256 [ 310.488746][ T8753] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 310.529217][ T8753] overlayfs: "xino" feature enabled using 2 upper inode bits. [ 310.822336][ T8760] loop3: detected capacity change from 0 to 764 [ 310.891585][ T8760] Symlink component flag not implemented [ 310.920688][ T8760] Symlink component flag not implemented (101) [ 311.420028][ T5840] net_ratelimit: 11 callbacks suppressed [ 311.420051][ T5840] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 312.463611][ T5840] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 312.867566][ T8809] loop4: detected capacity change from 0 to 164 [ 313.500026][ T5840] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 313.580226][ T5860] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 313.783015][ T8821] loop4: detected capacity change from 0 to 1764 [ 314.401578][ T8847] netlink: 116 bytes leftover after parsing attributes in process `syz.4.896'. [ 314.551388][ T5840] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 315.581429][ T787] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 315.820948][ T8901] overlayfs: missing 'lowerdir' [ 316.620171][ T8] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 316.628675][ T787] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 316.750078][ T8926] overlayfs: missing 'lowerdir' [ 317.662953][ T787] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 317.673121][ T1284] ieee802154 phy0 wpan0: encryption failed: -22 [ 317.679786][ T1284] ieee802154 phy1 wpan1: encryption failed: -22 [ 318.058165][ T8970] syz.4.934: attempt to access beyond end of device [ 318.058165][ T8970] loop9: rw=4096, sector=2, nr_sectors = 2 limit=0 [ 318.096667][ T8970] EXT4-fs (loop9): unable to read superblock [ 318.439960][ T8979] loop4: detected capacity change from 0 to 2048 [ 318.529932][ T8979] loop4: p3 p4 < > [ 318.534125][ T8979] loop4: p3 start 11362048 is beyond EOD, truncated [ 318.617029][ T8979] EXT4-fs (loop4p4): unable to read superblock [ 318.701011][ T787] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 318.766199][ T8991] tap0: tun_chr_ioctl cmd 1074025677 [ 318.787403][ T8991] tap0: linktype set to 773 [ 318.882349][ T8993] overlayfs: missing 'lowerdir' [ 319.321309][ T9002] loop4: detected capacity change from 0 to 256 [ 319.664934][ T8] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 319.740181][ T787] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 319.960847][ T9023] sch_tbf: burst 0 is lower than device macvtap0 mtu (1514) ! [ 320.221707][ T9031] overlayfs: missing 'lowerdir' [ 320.780141][ T787] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 321.003375][ T28] audit: type=1326 audit(1764407139.382:98): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9054 comm="syz.0.959" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f9cb2f8f749 code=0x0 [ 322.206710][ T23] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 322.501079][ T9077] loop4: detected capacity change from 0 to 512 [ 322.531758][ T9077] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x61000000 (sector = 1) [ 322.654696][ T9077] FAT-fs (loop4): error, corrupted directory (invalid entries) [ 322.714891][ T968] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 322.783575][ T968] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 323.259886][ T787] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 323.355579][ T9107] overlayfs: missing 'workdir' [ 324.147047][ T9139] loop0: detected capacity change from 0 to 256 [ 324.304216][ T5840] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 324.673525][ T9156] overlayfs: missing 'lowerdir' [ 325.347688][ T787] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 325.822501][ T8] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 326.380634][ T23] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 326.450179][ T9197] netlink: 8 bytes leftover after parsing attributes in process `syz.0.997'. [ 327.421151][ T23] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 327.778481][ T9227] overlayfs: missing 'lowerdir' [ 327.900599][ C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 328.441204][ T9242] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 328.450459][ C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 328.502267][ T5840] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 328.830607][ T9251] overlayfs: missing 'lowerdir' [ 328.890636][ T8] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 329.542195][ T9266] loop0: detected capacity change from 0 to 16 [ 329.569534][ T9269] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 329.578819][ C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 329.588891][ T23] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 329.617634][ T9266] erofs: (device loop0): mounted with root inode @ nid 36. [ 329.796312][ T9271] overlayfs: failed to resolve './bus': -2 [ 329.820075][ T5915] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 329.951056][ T9274] overlayfs: missing 'workdir' [ 330.108585][ T5792] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 330.122251][ T5792] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 330.131707][ T5792] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 330.146787][ T5792] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 330.155620][ T5792] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 330.171602][ T5792] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 330.299729][ T9287] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1031'. [ 330.479598][ T9287] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1031'. [ 330.487209][ T9294] 9pnet_fd: Insufficient options for proto=fd [ 330.643975][ T9296] overlayfs: missing 'workdir' [ 330.692946][ T9301] loop2: detected capacity change from 0 to 128 [ 330.847765][ T7397] I/O error, dev loop2, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 331.165490][ T9317] 9pnet_fd: Insufficient options for proto=fd [ 331.178976][ T9278] chnl_net:caif_netlink_parms(): no params data found [ 331.335599][ T9324] overlayfs: missing 'workdir' [ 331.401466][ T9278] bridge0: port 1(bridge_slave_0) entered blocking state [ 331.408945][ T9278] bridge0: port 1(bridge_slave_0) entered disabled state [ 331.434135][ T9278] bridge_slave_0: entered allmulticast mode [ 331.461929][ T9278] bridge_slave_0: entered promiscuous mode [ 331.486840][ T9278] bridge0: port 2(bridge_slave_1) entered blocking state [ 331.500099][ T9278] bridge0: port 2(bridge_slave_1) entered disabled state [ 331.507780][ T9278] bridge_slave_1: entered allmulticast mode [ 331.533646][ T9278] bridge_slave_1: entered promiscuous mode [ 331.653209][ T9278] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 331.692057][ T9278] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 331.697557][ T9334] fuse: Bad value for 'fd' [ 331.823026][ T9336] 9pnet_fd: Insufficient options for proto=fd [ 331.853802][ T9278] team0: Port device team_slave_0 added [ 331.873467][ T9278] team0: Port device team_slave_1 added [ 331.880439][ T9338] [ 331.882935][ T9338] ===================================================== [ 331.890686][ T9338] WARNING: HARDIRQ-safe -> HARDIRQ-unsafe lock order detected [ 331.898181][ T9338] syzkaller #0 Not tainted [ 331.902738][ T9338] ----------------------------------------------------- [ 331.910340][ T9338] syz.0.1053/9338 [HC0[0]:SC0[0]:HE0:SE1] is trying to acquire: [ 331.918547][ T9338] ffffffff8ca0a058 (tasklist_lock){.+.+}-{2:2}, at: send_sigurg+0xf0/0x3c0 [ 331.927324][ T9338] [ 331.927324][ T9338] and this task is already holding: [ 331.934924][ T9338] ffff8880250b0618 (&f->f_owner.lock){....}-{2:2}, at: send_sigurg+0x29/0x3c0 [ 331.944308][ T9338] which would create a new lock dependency: [ 331.950424][ T9338] (&f->f_owner.lock){....}-{2:2} -> (tasklist_lock){.+.+}-{2:2} [ 331.958195][ T9338] [ 331.958195][ T9338] but this new dependency connects a HARDIRQ-irq-safe lock: [ 331.967747][ T9338] (&dev->event_lock#2){-...}-{2:2} [ 331.967778][ T9338] [ 331.967778][ T9338] ... which became HARDIRQ-irq-safe at: [ 331.980864][ T9338] lock_acquire+0x197/0x410 [ 331.985639][ T9338] _raw_spin_lock_irqsave+0xa8/0xf0 [ 331.991125][ T9338] input_event+0x7a/0xc0 [ 331.995554][ T9338] psmouse_report_standard_packet+0x53/0x200 [ 332.001717][ T9338] psmouse_process_byte+0x478/0x670 [ 332.007026][ T9338] psmouse_handle_byte+0x43/0x490 [ 332.012497][ T9338] ps2_interrupt+0x164/0x980 [ 332.017656][ T9338] serio_interrupt+0x8b/0x130 [ 332.023337][ T9338] i8042_interrupt+0x394/0x730 [ 332.029171][ T9338] __handle_irq_event_percpu+0x276/0x930 [ 332.035907][ T9338] handle_irq_event+0x8b/0x1e0 [ 332.041756][ T9338] handle_edge_irq+0x247/0xb30 [ 332.046888][ T9338] __common_interrupt+0x13b/0x230 [ 332.052374][ T9338] common_interrupt+0xb4/0xd0 [ 332.057290][ T9338] asm_common_interrupt+0x26/0x40 [ 332.062454][ T9338] pv_native_safe_halt+0x13/0x20 [ 332.067602][ T9338] default_idle+0x13/0x20 [ 332.072507][ T9338] default_idle_call+0x6c/0xa0 [ 332.077474][ T9338] do_idle+0x1eb/0x510 [ 332.081700][ T9338] cpu_startup_entry+0x43/0x60 [ 332.086678][ T9338] start_secondary+0xee/0xf0 [ 332.091737][ T9338] secondary_startup_64_no_verify+0x179/0x17b [ 332.098237][ T9338] [ 332.098237][ T9338] to a HARDIRQ-irq-unsafe lock: [ 332.105544][ T9338] (tasklist_lock){.+.+}-{2:2} [ 332.105583][ T9338] [ 332.105583][ T9338] ... which became HARDIRQ-irq-unsafe at: [ 332.118706][ T9338] ... [ 332.118723][ T9338] lock_acquire+0x197/0x410 [ 332.126188][ T9338] _raw_read_lock+0x36/0x50 [ 332.130811][ T9338] do_wait+0x294/0xaf0 [ 332.135336][ T9338] kernel_wait+0xac/0x170 [ 332.139768][ T9338] call_usermodehelper_exec_work+0xb9/0x220 [ 332.145775][ T9338] process_scheduled_works+0xa45/0x15b0 [ 332.151589][ T9338] worker_thread+0xa55/0xfc0 [ 332.156481][ T9338] kthread+0x2fa/0x390 [ 332.160930][ T9338] ret_from_fork+0x48/0x80 [ 332.165611][ T9338] ret_from_fork_asm+0x11/0x20 [ 332.170670][ T9338] [ 332.170670][ T9338] other info that might help us debug this: [ 332.170670][ T9338] [ 332.181092][ T9338] Chain exists of: [ 332.181092][ T9338] &dev->event_lock#2 --> &f->f_owner.lock --> tasklist_lock [ 332.181092][ T9338] [ 332.194413][ T9338] Possible interrupt unsafe locking scenario: [ 332.194413][ T9338] [ 332.202823][ T9338] CPU0 CPU1 [ 332.208282][ T9338] ---- ---- [ 332.213652][ T9338] lock(tasklist_lock); [ 332.218190][ T9338] local_irq_disable(); [ 332.225322][ T9338] lock(&dev->event_lock#2); [ 332.232760][ T9338] lock(&f->f_owner.lock); [ 332.240072][ T9338] [ 332.243537][ T9338] lock(&dev->event_lock#2); [ 332.248497][ T9338] [ 332.248497][ T9338] *** DEADLOCK *** [ 332.248497][ T9338] [ 332.256923][ T9338] 2 locks held by syz.0.1053/9338: [ 332.262049][ T9338] #0: ffff88801b30cab0 (sk_lock-AF_INET){+.+.}-{0:0}, at: tcp_sendmsg+0x21/0x50 [ 332.271388][ T9338] #1: ffff8880250b0618 (&f->f_owner.lock){....}-{2:2}, at: send_sigurg+0x29/0x3c0 [ 332.281318][ T9338] [ 332.281318][ T9338] the dependencies between HARDIRQ-irq-safe lock and the holding lock: [ 332.292340][ T9338] -> (&dev->event_lock#2){-...}-{2:2} { [ 332.298490][ T9338] IN-HARDIRQ-W at: [ 332.302844][ T9338] lock_acquire+0x197/0x410 [ 332.309682][ T9338] _raw_spin_lock_irqsave+0xa8/0xf0 [ 332.317240][ T9338] input_event+0x7a/0xc0 [ 332.324018][ T9338] psmouse_report_standard_packet+0x53/0x200 [ 332.332394][ T9338] psmouse_process_byte+0x478/0x670 [ 332.339956][ T9338] psmouse_handle_byte+0x43/0x490 [ 332.347251][ T9338] ps2_interrupt+0x164/0x980 [ 332.354294][ T9338] serio_interrupt+0x8b/0x130 [ 332.361235][ T9338] i8042_interrupt+0x394/0x730 [ 332.368176][ T9338] __handle_irq_event_percpu+0x276/0x930 [ 332.376217][ T9338] handle_irq_event+0x8b/0x1e0 [ 332.383447][ T9338] handle_edge_irq+0x247/0xb30 [ 332.390467][ T9338] __common_interrupt+0x13b/0x230 [ 332.398000][ T9338] common_interrupt+0xb4/0xd0 [ 332.405055][ T9338] asm_common_interrupt+0x26/0x40 [ 332.412559][ T9338] pv_native_safe_halt+0x13/0x20 [ 332.420014][ T9338] default_idle+0x13/0x20 [ 332.426648][ T9338] default_idle_call+0x6c/0xa0 [ 332.433794][ T9338] do_idle+0x1eb/0x510 [ 332.440174][ T9338] cpu_startup_entry+0x43/0x60 [ 332.447422][ T9338] start_secondary+0xee/0xf0 [ 332.454236][ T9338] secondary_startup_64_no_verify+0x179/0x17b [ 332.462667][ T9338] INITIAL USE at: [ 332.467011][ T9338] lock_acquire+0x197/0x410 [ 332.473971][ T9338] _raw_spin_lock_irqsave+0xa8/0xf0 [ 332.481572][ T9338] input_inject_event+0xab/0x320 [ 332.488644][ T9338] led_trigger_event+0x133/0x210 [ 332.495889][ T9338] kbd_led_trigger_activate+0xbd/0x100 [ 332.503647][ T9338] led_trigger_set+0x524/0x940 [ 332.510798][ T9338] led_trigger_set_default+0x1a0/0x1e0 [ 332.518557][ T9338] led_classdev_register_ext+0x6e9/0x940 [ 332.526598][ T9338] input_leds_connect+0x4eb/0x6b0 [ 332.533959][ T9338] input_register_device+0xcdc/0x1070 [ 332.541521][ T9338] atkbd_connect+0x6fb/0x9a0 [ 332.548576][ T9338] serio_driver_probe+0x7a/0xa0 [ 332.555781][ T9338] really_probe+0x25b/0xb40 [ 332.562649][ T9338] __driver_probe_device+0x18c/0x330 [ 332.570569][ T9338] driver_probe_device+0x4f/0x420 [ 332.577982][ T9338] __driver_attach+0x44e/0x6f0 [ 332.585333][ T9338] bus_for_each_dev+0x22d/0x2a0 [ 332.592660][ T9338] serio_handle_event+0x1a2/0x860 [ 332.600610][ T9338] process_scheduled_works+0xa45/0x15b0 [ 332.608469][ T9338] worker_thread+0xa55/0xfc0 [ 332.615210][ T9338] kthread+0x2fa/0x390 [ 332.621475][ T9338] ret_from_fork+0x48/0x80 [ 332.628274][ T9338] ret_from_fork_asm+0x11/0x20 [ 332.635172][ T9338] } [ 332.638159][ T9338] ... key at: [] input_allocate_device.__key.5+0x0/0x20 [ 332.647721][ T9338] -> (&client->buffer_lock){....}-{2:2} { [ 332.653651][ T9338] INITIAL USE at: [ 332.657724][ T9338] lock_acquire+0x197/0x410 [ 332.664162][ T9338] _raw_spin_lock_irq+0xa3/0xe0 [ 332.671027][ T9338] evdev_read+0x370/0xb50 [ 332.677371][ T9338] do_iter_read+0x506/0xc80 [ 332.683793][ T9338] do_readv+0x235/0x3e0 [ 332.689956][ T9338] do_syscall_64+0x55/0xb0 [ 332.696379][ T9338] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 332.704391][ T9338] } [ 332.707070][ T9338] ... key at: [] evdev_open.__key.28+0x0/0x20 [ 332.715676][ T9338] ... acquired at: [ 332.719679][ T9338] _raw_spin_lock+0x2e/0x40 [ 332.724477][ T9338] evdev_pass_values+0xcb/0xab0 [ 332.729514][ T9338] evdev_events+0x1d8/0x330 [ 332.734199][ T9338] input_pass_values+0x907/0x1300 [ 332.739579][ T9338] input_event_dispose+0x346/0x6c0 [ 332.744875][ T9338] input_inject_event+0x1f9/0x320 [ 332.750080][ T9338] evdev_write+0x32a/0x470 [ 332.754685][ T9338] vfs_write+0x288/0x940 [ 332.759129][ T9338] ksys_write+0x147/0x250 [ 332.763751][ T9338] do_syscall_64+0x55/0xb0 [ 332.768366][ T9338] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 332.774447][ T9338] [ 332.776878][ T9338] -> (&new->fa_lock){....}-{2:2} { [ 332.782473][ T9338] INITIAL USE at: [ 332.786720][ T9338] lock_acquire+0x197/0x410 [ 332.792980][ T9338] _raw_write_lock_irq+0xa3/0xe0 [ 332.799925][ T9338] fasync_remove_entry+0xf4/0x1c0 [ 332.807309][ T9338] pipe_fasync+0xb2/0x1f0 [ 332.813689][ T9338] __fput+0x7f3/0x970 [ 332.819607][ T9338] task_work_run+0x1ce/0x250 [ 332.826137][ T9338] get_signal+0x1235/0x1400 [ 332.832492][ T9338] arch_do_signal_or_restart+0x9c/0x7b0 [ 332.839951][ T9338] exit_to_user_mode_loop+0x70/0x110 [ 332.847512][ T9338] exit_to_user_mode_prepare+0xf6/0x180 [ 332.855516][ T9338] syscall_exit_to_user_mode+0x1a/0x50 [ 332.863626][ T9338] do_syscall_64+0x61/0xb0 [ 332.870599][ T9338] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 332.878253][ T9338] INITIAL READ USE at: [ 332.882781][ T9338] lock_acquire+0x197/0x410 [ 332.889670][ T9338] _raw_read_lock_irqsave+0xb0/0x100 [ 332.897415][ T9338] kill_fasync+0x192/0x4b0 [ 332.904574][ T9338] pipe_read+0xa4c/0x12a0 [ 332.911640][ T9338] vfs_read+0x431/0x920 [ 332.918331][ T9338] ksys_read+0x147/0x250 [ 332.925993][ T9338] do_syscall_64+0x55/0xb0 [ 332.933205][ T9338] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 332.942506][ T9338] } [ 332.945338][ T9338] ... key at: [] fasync_insert_entry.__key+0x0/0x20 [ 332.955357][ T9338] ... acquired at: [ 332.959297][ T9338] _raw_read_lock_irqsave+0xb0/0x100 [ 332.965504][ T9338] kill_fasync+0x192/0x4b0 [ 332.970395][ T9338] evdev_pass_values+0x54b/0xab0 [ 332.975724][ T9338] evdev_events+0x1d8/0x330 [ 332.980500][ T9338] input_pass_values+0x907/0x1300 [ 332.985885][ T9338] input_event_dispose+0x346/0x6c0 [ 332.991401][ T9338] input_inject_event+0x1f9/0x320 [ 332.997395][ T9338] evdev_write+0x32a/0x470 [ 333.002102][ T9338] vfs_write+0x288/0x940 [ 333.006549][ T9338] ksys_write+0x147/0x250 [ 333.011181][ T9338] do_syscall_64+0x55/0xb0 [ 333.015896][ T9338] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 333.022604][ T9338] [ 333.024950][ T9338] -> (&f->f_owner.lock){....}-{2:2} { [ 333.030438][ T9338] INITIAL USE at: [ 333.034434][ T9338] lock_acquire+0x197/0x410 [ 333.040618][ T9338] _raw_write_lock_irq+0xa3/0xe0 [ 333.047220][ T9338] __f_setown+0x3b/0x330 [ 333.053067][ T9338] fcntl_dirnotify+0x6e2/0x8d0 [ 333.059450][ T9338] do_fcntl+0x37c/0x1380 [ 333.065357][ T9338] __se_sys_fcntl+0xc9/0x1a0 [ 333.071516][ T9338] do_syscall_64+0x55/0xb0 [ 333.077594][ T9338] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 333.085066][ T9338] INITIAL READ USE at: [ 333.089413][ T9338] lock_acquire+0x197/0x410 [ 333.096184][ T9338] _raw_read_lock_irq+0xab/0xf0 [ 333.103128][ T9338] f_getown+0x2b/0x270 [ 333.109420][ T9338] sock_ioctl+0x4be/0x7a0 [ 333.115855][ T9338] __se_sys_ioctl+0xfd/0x170 [ 333.122554][ T9338] do_syscall_64+0x55/0xb0 [ 333.129044][ T9338] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 333.137346][ T9338] } [ 333.139883][ T9338] ... key at: [] init_file.__key+0x0/0x20 [ 333.147712][ T9338] ... acquired at: [ 333.151527][ T9338] _raw_read_lock_irqsave+0xb0/0x100 [ 333.157003][ T9338] send_sigio+0x33/0x360 [ 333.161532][ T9338] kill_fasync+0x228/0x4b0 [ 333.166130][ T9338] pipe_read+0xa4c/0x12a0 [ 333.170930][ T9338] vfs_read+0x431/0x920 [ 333.175395][ T9338] ksys_read+0x147/0x250 [ 333.179913][ T9338] do_syscall_64+0x55/0xb0 [ 333.184863][ T9338] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 333.191053][ T9338] [ 333.193388][ T9338] [ 333.193388][ T9338] the dependencies between the lock to be acquired [ 333.193396][ T9338] and HARDIRQ-irq-unsafe lock: [ 333.207672][ T9338] -> (tasklist_lock){.+.+}-{2:2} { [ 333.212815][ T9338] HARDIRQ-ON-R at: [ 333.216984][ T9338] lock_acquire+0x197/0x410 [ 333.223424][ T9338] _raw_read_lock+0x36/0x50 [ 333.229593][ T9338] do_wait+0x294/0xaf0 [ 333.235327][ T9338] kernel_wait+0xac/0x170 [ 333.241325][ T9338] call_usermodehelper_exec_work+0xb9/0x220 [ 333.248976][ T9338] process_scheduled_works+0xa45/0x15b0 [ 333.256272][ T9338] worker_thread+0xa55/0xfc0 [ 333.262622][ T9338] kthread+0x2fa/0x390 [ 333.268344][ T9338] ret_from_fork+0x48/0x80 [ 333.274600][ T9338] ret_from_fork_asm+0x11/0x20 [ 333.281373][ T9338] SOFTIRQ-ON-R at: [ 333.285461][ T9338] lock_acquire+0x197/0x410 [ 333.291798][ T9338] _raw_read_lock+0x36/0x50 [ 333.297971][ T9338] do_wait+0x294/0xaf0 [ 333.304171][ T9338] kernel_wait+0xac/0x170 [ 333.310262][ T9338] call_usermodehelper_exec_work+0xb9/0x220 [ 333.318115][ T9338] process_scheduled_works+0xa45/0x15b0 [ 333.326414][ T9338] worker_thread+0xa55/0xfc0 [ 333.332819][ T9338] kthread+0x2fa/0x390 [ 333.338728][ T9338] ret_from_fork+0x48/0x80 [ 333.344935][ T9338] ret_from_fork_asm+0x11/0x20 [ 333.351625][ T9338] INITIAL USE at: [ 333.355705][ T9338] lock_acquire+0x197/0x410 [ 333.362137][ T9338] _raw_write_lock_irq+0xa3/0xe0 [ 333.369269][ T9338] copy_process+0x225d/0x3d70 [ 333.375605][ T9338] kernel_clone+0x21b/0x840 [ 333.381768][ T9338] user_mode_thread+0xde/0x130 [ 333.388103][ T9338] rest_init+0x27/0x300 [ 333.393830][ T9338] arch_call_rest_init+0xe/0x10 [ 333.400543][ T9338] start_kernel+0x459/0x4e0 [ 333.406897][ T9338] x86_64_start_reservations+0x2a/0x30 [ 333.414282][ T9338] copy_bootdata+0x0/0xe0 [ 333.420363][ T9338] secondary_startup_64_no_verify+0x179/0x17b [ 333.428533][ T9338] INITIAL READ USE at: [ 333.432955][ T9338] lock_acquire+0x197/0x410 [ 333.439665][ T9338] _raw_read_lock+0x36/0x50 [ 333.446520][ T9338] do_wait+0x294/0xaf0 [ 333.452693][ T9338] kernel_wait+0xac/0x170 [ 333.459032][ T9338] call_usermodehelper_exec_work+0xb9/0x220 [ 333.467287][ T9338] process_scheduled_works+0xa45/0x15b0 [ 333.475102][ T9338] worker_thread+0xa55/0xfc0 [ 333.482134][ T9338] kthread+0x2fa/0x390 [ 333.488294][ T9338] ret_from_fork+0x48/0x80 [ 333.494809][ T9338] ret_from_fork_asm+0x11/0x20 [ 333.501709][ T9338] } [ 333.504222][ T9338] ... key at: [] tasklist_lock+0x18/0x40 [ 333.512296][ T9338] ... acquired at: [ 333.516110][ T9338] _raw_read_lock+0x36/0x50 [ 333.520904][ T9338] send_sigurg+0xf0/0x3c0 [ 333.526124][ T9338] sk_send_sigurg+0x6f/0xc0 [ 333.531270][ T9338] tcp_check_urg+0x200/0x750 [ 333.536736][ T9338] tcp_urg+0x161/0x3f0 [ 333.541245][ T9338] tcp_rcv_established+0xa2e/0x1cf0 [ 333.546882][ T9338] tcp_v4_do_rcv+0x4ed/0xb80 [ 333.551863][ T9338] __release_sock+0x1e5/0x460 [ 333.557045][ T9338] release_sock+0x5f/0x1c0 [ 333.561652][ T9338] tcp_sendmsg+0x39/0x50 [ 333.566478][ T9338] __sys_sendto+0x46a/0x620 [ 333.571612][ T9338] __x64_sys_sendto+0xde/0xf0 [ 333.576559][ T9338] do_syscall_64+0x55/0xb0 [ 333.581248][ T9338] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 333.587499][ T9338] [ 333.590295][ T9338] [ 333.590295][ T9338] stack backtrace: [ 333.596817][ T9338] CPU: 1 PID: 9338 Comm: syz.0.1053 Not tainted syzkaller #0 [ 333.604485][ T9338] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 333.615363][ T9338] Call Trace: [ 333.618692][ T9338] [ 333.621642][ T9338] dump_stack_lvl+0x16c/0x230 [ 333.626513][ T9338] ? load_image+0x3b0/0x3b0 [ 333.631288][ T9338] ? show_regs_print_info+0x20/0x20 [ 333.636584][ T9338] ? load_image+0x3b0/0x3b0 [ 333.641131][ T9338] ? print_shortest_lock_dependencies+0xf4/0x160 [ 333.647661][ T9338] __lock_acquire+0x678f/0x7c80 [ 333.652536][ T9338] ? verify_lock_unused+0x140/0x140 [ 333.657947][ T9338] ? cubictcp_acked+0xc6/0xe90 [ 333.662732][ T9338] lock_acquire+0x197/0x410 [ 333.667243][ T9338] ? send_sigurg+0xf0/0x3c0 [ 333.671765][ T9338] ? read_lock_is_recursive+0x20/0x20 [ 333.677184][ T9338] ? do_raw_read_lock+0x3d/0x90 [ 333.682055][ T9338] ? _raw_read_lock_irqsave+0xbc/0x100 [ 333.687712][ T9338] ? _raw_read_lock+0x50/0x50 [ 333.692527][ T9338] _raw_read_lock+0x36/0x50 [ 333.697215][ T9338] ? send_sigurg+0xf0/0x3c0 [ 333.701814][ T9338] send_sigurg+0xf0/0x3c0 [ 333.706161][ T9338] sk_send_sigurg+0x6f/0xc0 [ 333.710783][ T9338] tcp_check_urg+0x200/0x750 [ 333.715481][ T9338] tcp_urg+0x161/0x3f0 [ 333.719646][ T9338] ? tcp_validate_incoming+0x2250/0x2250 [ 333.725288][ T9338] ? read_tsc+0x9/0x20 [ 333.729455][ T9338] ? inet_sk_rx_dst_set+0x15f/0x1d0 [ 333.735103][ T9338] tcp_rcv_established+0xa2e/0x1cf0 [ 333.740424][ T9338] ? tcp_check_space+0xae0/0xae0 [ 333.745474][ T9338] ? __local_bh_enable_ip+0x12e/0x1c0 [ 333.750863][ T9338] tcp_v4_do_rcv+0x4ed/0xb80 [ 333.755471][ T9338] __release_sock+0x1e5/0x460 [ 333.760347][ T9338] release_sock+0x5f/0x1c0 [ 333.764893][ T9338] tcp_sendmsg+0x39/0x50 [ 333.769328][ T9338] __sys_sendto+0x46a/0x620 [ 333.774556][ T9338] ? __ia32_sys_getpeername+0x90/0x90 [ 333.780034][ T9338] ? aa_af_perm+0x2b0/0x2b0 [ 333.784633][ T9338] ? __sys_connect+0x240/0x420 [ 333.789694][ T9338] ? lockdep_hardirqs_on_prepare+0x400/0x760 [ 333.795951][ T9338] ? lock_chain_count+0x20/0x20 [ 333.801074][ T9338] __x64_sys_sendto+0xde/0xf0 [ 333.806297][ T9338] do_syscall_64+0x55/0xb0 [ 333.810726][ T9338] ? clear_bhb_loop+0x40/0x90 [ 333.815637][ T9338] ? clear_bhb_loop+0x40/0x90 [ 333.820360][ T9338] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 333.826463][ T9338] RIP: 0033:0x7f9cb2f8f749 [ 333.830908][ T9338] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 333.851567][ T9338] RSP: 002b:00007f9cb3d8f038 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 333.860223][ T9338] RAX: ffffffffffffffda RBX: 00007f9cb31e5fa0 RCX: 00007f9cb2f8f749 [ 333.868571][ T9338] RDX: 0000000000000381 RSI: 00002000000004c0 RDI: 0000000000000003 [ 333.876655][ T9338] RBP: 00007f9cb3013f91 R08: 0000000000000000 R09: 0000000000000000 [ 333.884931][ T9338] R10: 0000000000000805 R11: 0000000000000246 R12: 0000000000000000 [ 333.893179][ T9338] R13: 00007f9cb31e6038 R14: 00007f9cb31e5fa0 R15: 00007ffd89964b88 [ 333.901517][ T9338] [ 333.923752][ T9342] ip6tnl1: entered allmulticast mode [ 333.928991][ T5103] Bluetooth: hci2: command tx timeout [ 333.939316][ T9338] net_ratelimit: 22 callbacks suppressed [ 333.945243][ T9338] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 333.962394][ T5840] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 333.970901][ T968] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 333.974419][ T5885] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 333.989958][ T787] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 334.006464][ T9337] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 334.045359][ T9278] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 334.053627][ T9278] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 334.080667][ T9278] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 334.094224][ T9278] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 334.101485][ T9278] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 334.128002][ T9278] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 334.139830][ T968] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 334.169870][ T9278] hsr_slave_0: entered promiscuous mode [ 334.176246][ T9278] hsr_slave_1: entered promiscuous mode [ 334.182743][ T9278] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 334.190525][ T9278] Cannot create hsr debugfs directory [ 334.288572][ T9278] netdevsim netdevsim5 netdevsim0: renamed from eth0 [ 334.298294][ T9278] netdevsim netdevsim5 netdevsim1: renamed from eth1 [ 334.307994][ T9278] netdevsim netdevsim5 netdevsim2: renamed from eth2 [ 334.318332][ T9278] netdevsim netdevsim5 netdevsim3: renamed from eth3 [ 334.384024][ T9278] 8021q: adding VLAN 0 to HW filter on device bond0 [ 334.402166][ T9278] 8021q: adding VLAN 0 to HW filter on device team0 [ 334.415362][ T42] bridge0: port 1(bridge_slave_0) entered blocking state [ 334.422761][ T42] bridge0: port 1(bridge_slave_0) entered forwarding state [ 334.436436][ T142] bridge0: port 2(bridge_slave_1) entered blocking state [ 334.443724][ T142] bridge0: port 2(bridge_slave_1) entered forwarding state [ 334.588052][ T9278] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 334.754909][ T9278] veth0_vlan: entered promiscuous mode [ 334.766246][ T9278] veth1_vlan: entered promiscuous mode [ 334.794034][ T9278] veth0_macvtap: entered promiscuous mode [ 334.804490][ T9278] veth1_macvtap: entered promiscuous mode [ 334.819297][ T9278] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 334.830677][ T9278] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 334.840896][ T9278] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 334.853238][ T9278] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 334.863242][ T9278] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 334.874468][ T9278] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 334.885816][ T9278] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 334.900096][ T9278] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 334.911284][ T9278] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 334.921972][ T9278] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 334.932953][ T9278] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 334.944297][ T9278] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 334.955371][ T9278] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 334.967580][ T9278] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 334.979963][ T9278] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 334.988890][ T9278] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 334.998124][ T9278] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 335.007166][ T9278] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 335.020215][ T5840] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 335.028579][ T5861] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 335.055145][ T9278] ieee80211 phy14: Selected rate control algorithm 'minstrel_ht' [ 335.078966][ T42] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 335.080940][ T9278] ieee80211 phy15: Selected rate control algorithm 'minstrel_ht' [ 335.096087][ T42] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 335.118612][ T42] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 335.127126][ T42] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 335.989726][ T5103] Bluetooth: hci2: command tx timeout [ 336.060446][ T5840] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 338.060057][ T5103] Bluetooth: hci2: command tx timeout [ 339.181175][ T5861] net_ratelimit: 7 callbacks suppressed [ 339.181196][ T5861] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 339.195611][ T5840] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 340.060475][ T5878] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 340.069270][ T968] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 340.140316][ T5103] Bluetooth: hci2: command tx timeout [ 340.220550][ T5885] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 340.229303][ T5860] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 340.229518][ T5861] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 341.260966][ T27] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 341.269261][ T5885] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog