last executing test programs: 9.265104499s ago: executing program 2 (id=1447): r0 = openat$audio(0xffffffffffffff9c, &(0x7f0000000180), 0x109842, 0x0) ioctl$SNDCTL_DSP_SETFMT(r0, 0xc0045005, &(0x7f0000000000)=0x400) mmap$dsp(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x2000002, 0x8012, r0, 0x0) ioctl$SNDCTL_DSP_SPEED(r0, 0x5008, 0x0) ioctl$SNDCTL_DSP_GETOSPACE(r0, 0x800c5012, &(0x7f0000000400)) 4.098495648s ago: executing program 0 (id=1477): r0 = syz_usb_connect(0x0, 0x2d, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x83, 0x66, 0x7d, 0x10, 0x2040, 0x264, 0x4ed1, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x1b, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x90, 0xf1, 0x9c, 0x0, [], [{{0x9, 0x5, 0x84}}]}}]}}]}}, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$printer(r0, 0x0, &(0x7f0000000440)={0x34, &(0x7f0000000200)={0x0, 0x0, 0x1, "e3"}, 0x0, 0x0, 0x0, 0x0, 0x0}) 3.08606737s ago: executing program 3 (id=1480): r0 = socket$inet6_udp(0xa, 0x2, 0x0) r1 = socket$pppl2tp(0x18, 0x1, 0x1) connect$pppl2tp(r1, &(0x7f0000000040)=@pppol2tp={0x18, 0x1, {0x0, r0, {0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x4}}, 0x26) r2 = dup2(r1, r0) sendmmsg$inet6(r2, &(0x7f00000088c0)=[{{&(0x7f0000001fc0)={0xa, 0x0, 0x0, @private1}, 0x1c, 0x0}}, {{&(0x7f00000043c0)={0xa, 0x0, 0x0, @private1}, 0x1c, 0x0}}], 0x2, 0x0) 2.97051164s ago: executing program 3 (id=1482): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000180)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x3, 0x0, 0x0, {0x7}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWSET={0x3c, 0x9, 0xa, 0x401, 0x0, 0x0, {0x7}, [@NFTA_SET_ID={0x8}, @NFTA_SET_NAME={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0xd}]}, @NFT_MSG_NEWSETELEM={0x5c, 0xc, 0xa, 0x101, 0x0, 0x0, {0x7}, [@NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_ELEM_LIST_ELEMENTS={0x30, 0x3, 0x0, 0x1, [{0x2c, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_FLAGS={0x8, 0x3, 0x1, 0x0, 0x2}, @NFTA_SET_ELEM_EXPRESSIONS={0x20, 0xb, 0x0, 0x1, [{0x1c, 0x1, 0x0, 0x1, @limit={{0xa}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_LIMIT_TYPE={0x8, 0x4, 0x1, 0x0, 0x1}]}}}]}]}]}]}], {0x14, 0x10, 0x1, 0x0, 0x0, {0x0, 0x84}}}, 0xe0}}, 0x0) 2.884433367s ago: executing program 3 (id=1483): mkdir(&(0x7f0000000080)='./file0\x00', 0x0) mount$tmpfs(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000040)=ANY=[@ANYBLOB="6d706f6c3d7072656665723d73746174697bbb093a", @ANYRESDEC]) 2.618987698s ago: executing program 3 (id=1485): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000100), 0xffffffffffffffff) sendmsg$NL80211_CMD_SET_TID_CONFIG(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000002c0)={0x38, r1, 0xc4fc9e906872338b, 0x0, 0x0, {{0x5}, {@val={0x8}, @val={0xc}}}, [@NL80211_ATTR_TID_CONFIG={0x10, 0x11d, 0x0, 0x1, [{0xc, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_RETRY_LONG={0x5, 0xd}]}]}]}, 0x38}}, 0x0) 2.560767013s ago: executing program 3 (id=1487): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFQNL_MSG_CONFIG(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="280000000203010400000000ffffffff000000000800010001"], 0x28}}, 0x0) sendmsg$NFQNL_MSG_CONFIG(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000002c0)=ANY=[@ANYBLOB="1c000000020301020000000000000000000000100800010001"], 0x1c}}, 0x0) sendmsg$NFQNL_MSG_VERDICT(r0, &(0x7f0000000740)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000004c0)={0x14, 0x1, 0x3, 0x5, 0x0, 0x0, {0x0, 0x0, 0x60}}, 0x14}}, 0x0) 2.416107945s ago: executing program 3 (id=1489): syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10) syz_usb_connect$cdc_ncm(0x4, 0x6e, &(0x7f00000000c0)=ANY=[@ANYBLOB="12010000020000002505a1a440000102030109025c0002010000000904000001a3f45747d649f9a30105240000000d240f8100000000000000000006241a0000000905810300000000000904010000020d00000904010102020d000009058202000000000009050302"], 0x0) r0 = syz_usb_connect(0x0, 0x2d, &(0x7f0000000100)=ANY=[@ANYBLOB="120100001ddf8208c007121522300000000109021b0001000000010904010001faf40d00090582"], 0x0) syz_usb_ep_write$ath9k_ep1(r0, 0x82, 0x54, &(0x7f0000000140)={[{0x4f, 0x4e00, "e36ffdce6394c295f8464245f5a7e2756e5d00c7ddd0a9f715e2e5970c3cfde3cebd80e67edde85a33f946f786c3e4713eb6d75d876cbf467b5032ec4a4c3537074e6306f78fd6743021577ac5aaab"}]}) syz_open_dev$char_usb(0xc, 0xb4, 0x0) epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0x0) 2.415482804s ago: executing program 4 (id=1490): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x18, 0x3, &(0x7f0000000080)=@framed, &(0x7f0000000000)='syzkaller\x00'}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='contention_end\x00', r0}, 0x10) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$IP6T_SO_SET_REPLACE(r1, 0x29, 0x40, &(0x7f00000001c0)=@raw={'raw\x00', 0x3c1, 0x3, 0x4c8, 0x2e0, 0x9403, 0x3002, 0x0, 0x2c0, 0x3f8, 0x3d8, 0x3d8, 0x3f8, 0x3d8, 0x3, 0x0, {[{{@uncond, 0x0, 0x298, 0x2e0, 0x0, {}, [@common=@inet=@recent0={{0xf8}, {0x0, 0x0, 0x1, 0x0, 'syz0\x00'}}, @common=@inet=@recent0={{0xf8}, {0x0, 0x80, 0x1, 0x0, 'syz0\x00'}}]}, @common=@inet=@TEE={0x48, 'TEE\x00', 0x1, {@ipv4=@loopback, 'virt_wifi0\x00'}}}, {{@uncond, 0x0, 0xd0, 0x118, 0x0, {}, [@inet=@rpfilter={{0x28}}]}, @unspec=@CT0={0x48, 'CT\x00', 0x0, {0x0, 0x0, 0x0, 0x0, 'syz1\x00'}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x528) 2.341390121s ago: executing program 4 (id=1491): syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f00000000c0)='./file1\x00', 0x10, &(0x7f0000000740), 0xfe, 0x499, &(0x7f0000001780)="$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") mkdir(&(0x7f0000000040)='./control\x00', 0x0) r0 = open(&(0x7f0000022ff6)='./control\x00', 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x5) lseek(r0, 0x100000000008, 0x0) getdents64(r0, 0x0, 0x0) 2.040359425s ago: executing program 4 (id=1495): mkdir(&(0x7f0000000080)='./file0\x00', 0x0) mount$tmpfs(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000040)=ANY=[@ANYBLOB="6d706f6c3d7072656665723d73746174697bbb093a", @ANYRESDEC]) 1.864748219s ago: executing program 4 (id=1499): bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0) r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) r1 = fcntl$dupfd(r0, 0x0, r0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r2 = getpid() sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x4) r3 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)={0x1b, 0x0, 0x0, 0x40000}, 0x48) r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xf, &(0x7f0000000340)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r3}}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000001dc0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x2d) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r5, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r6, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0) ioctl$KDFONTOP_SET(r1, 0x4b72, &(0x7f0000000000)={0x0, 0x0, 0x3, 0x1d, 0x100, &(0x7f00000000c0)="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"}) 966.366332ms ago: executing program 2 (id=1501): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x18, 0x3, &(0x7f0000000080)=@framed, &(0x7f0000000000)='syzkaller\x00'}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='contention_end\x00', r0}, 0x10) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$IP6T_SO_SET_REPLACE(r1, 0x29, 0x40, &(0x7f00000001c0)=@raw={'raw\x00', 0x3c1, 0x3, 0x4c8, 0x2e0, 0x9403, 0x3002, 0x0, 0x2c0, 0x3f8, 0x3d8, 0x3d8, 0x3f8, 0x3d8, 0x3, 0x0, {[{{@uncond, 0x0, 0x298, 0x2e0, 0x0, {}, [@common=@inet=@recent0={{0xf8}, {0x0, 0x0, 0x1, 0x0, 'syz0\x00'}}, @common=@inet=@recent0={{0xf8}, {0x0, 0x80, 0x1, 0x0, 'syz0\x00'}}]}, @common=@inet=@TEE={0x48, 'TEE\x00', 0x1, {@ipv4=@loopback, 'virt_wifi0\x00'}}}, {{@uncond, 0x0, 0xd0, 0x118, 0x0, {}, [@inet=@rpfilter={{0x28}}]}, @unspec=@CT0={0x48, 'CT\x00', 0x0, {0x0, 0x0, 0x0, 0x0, 'syz1\x00'}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x528) 909.555537ms ago: executing program 2 (id=1502): syz_mount_image$vfat(&(0x7f0000000040), &(0x7f0000000000)='./file0\x00', 0x101c088, &(0x7f0000000c00)=ANY=[@ANYBLOB="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"], 0x6, 0x2c3, &(0x7f0000000900)="$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") statx(0xffffffffffffff9c, &(0x7f0000000500)='./file1\x00', 0x0, 0x0, &(0x7f0000000240)) 882.999969ms ago: executing program 1 (id=1503): r0 = socket$inet6_udp(0xa, 0x2, 0x0) r1 = socket$pppl2tp(0x18, 0x1, 0x1) connect$pppl2tp(r1, &(0x7f0000000040)=@pppol2tp={0x18, 0x1, {0x0, r0, {0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x4}}, 0x26) r2 = dup2(r1, r0) sendmmsg$inet6(r2, &(0x7f00000088c0)=[{{&(0x7f0000001fc0)={0xa, 0x0, 0x0, @private1}, 0x1c, 0x0}}, {{&(0x7f00000043c0)={0xa, 0x0, 0x0, @private1}, 0x1c, 0x0}}], 0x2, 0x0) 876.355639ms ago: executing program 4 (id=1504): set_mempolicy(0x3, &(0x7f00000002c0)=0x1, 0x7fff) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000140), 0x1, 0x0) 708.448183ms ago: executing program 0 (id=1505): bpf$MAP_CREATE(0x0, &(0x7f00000012c0)=@base={0x6, 0x20}, 0x48) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x5, 0x10001, 0x9, 0x1}, 0x48) bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000080)={r0, &(0x7f0000000080), &(0x7f0000001540)=""/155}, 0x20) bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000000000)={r0, &(0x7f00000012c0), 0x0}, 0x20) 703.247644ms ago: executing program 1 (id=1506): r0 = socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f0000000480)={'macvlan1\x00', &(0x7f00000002c0)=@ethtool_cmd={0x3}}) 614.431261ms ago: executing program 2 (id=1507): r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3) ioctl$FS_IOC_GETFSLABEL(r0, 0x800452d2, 0x0) 532.362557ms ago: executing program 0 (id=1508): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000100), 0xffffffffffffffff) sendmsg$NL80211_CMD_SET_TID_CONFIG(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000002c0)={0x38, r1, 0xc4fc9e906872338b, 0x0, 0x0, {{0x5}, {@val={0x8}, @val={0xc}}}, [@NL80211_ATTR_TID_CONFIG={0x10, 0x11d, 0x0, 0x1, [{0xc, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_RETRY_LONG={0x5, 0xd}]}]}]}, 0x38}}, 0x0) 525.102468ms ago: executing program 1 (id=1509): mkdir(&(0x7f0000000080)='./file0\x00', 0x0) mount$tmpfs(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000040)=ANY=[@ANYBLOB="6d706f6c3d7072656665723d73746174697bbb093a", @ANYRESDEC]) 463.563823ms ago: executing program 2 (id=1510): r0 = syz_open_dev$dri(&(0x7f0000000080), 0x0, 0x0) ioctl$DRM_IOCTL_SET_VERSION(r0, 0xc0106407, &(0x7f00000000c0)={0x1, 0x2}) ioctl$DRM_IOCTL_GET_UNIQUE(r0, 0xc0086401, &(0x7f0000000140)={0xfffffffe, 0x0}) 369.927001ms ago: executing program 0 (id=1511): r0 = syz_init_net_socket$rose(0xb, 0x5, 0x0) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'wlan0\x00'}) ioctl$sock_proto_private(r0, 0x8b2a, &(0x7f0000000080)) 369.576191ms ago: executing program 2 (id=1512): r0 = openat$audio(0xffffffffffffff9c, &(0x7f0000000180), 0x109842, 0x0) ioctl$SNDCTL_DSP_SETFMT(r0, 0xc0045005, &(0x7f0000000000)=0x400) mmap$dsp(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x2000002, 0x8012, r0, 0x0) ioctl$SNDCTL_DSP_SPEED(r0, 0x5008, 0x0) ioctl$SNDCTL_DSP_GETOSPACE(r0, 0x800c5012, &(0x7f0000000400)) 362.575931ms ago: executing program 1 (id=1513): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFQNL_MSG_CONFIG(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="280000000203010400000000ffffffff000000000800010001"], 0x28}}, 0x0) sendmsg$NFQNL_MSG_CONFIG(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000002c0)=ANY=[@ANYBLOB="1c000000020301020000000000000000000000100800010001"], 0x1c}}, 0x0) sendmsg$NFQNL_MSG_VERDICT(r0, &(0x7f0000000740)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000004c0)={0x14, 0x1, 0x3, 0x5, 0x0, 0x0, {0x0, 0x0, 0x60}}, 0x14}}, 0x0) 219.824683ms ago: executing program 1 (id=1514): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x18, 0x3, &(0x7f0000000080)=@framed, &(0x7f0000000000)='syzkaller\x00'}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='contention_end\x00', r0}, 0x10) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$IP6T_SO_SET_REPLACE(r1, 0x29, 0x40, &(0x7f00000001c0)=@raw={'raw\x00', 0x3c1, 0x3, 0x4c8, 0x2e0, 0x9403, 0x3002, 0x0, 0x2c0, 0x3f8, 0x3d8, 0x3d8, 0x3f8, 0x3d8, 0x3, 0x0, {[{{@uncond, 0x0, 0x298, 0x2e0, 0x0, {}, [@common=@inet=@recent0={{0xf8}, {0x0, 0x0, 0x1, 0x0, 'syz0\x00'}}, @common=@inet=@recent0={{0xf8}, {0x0, 0x80, 0x1, 0x0, 'syz0\x00'}}]}, @common=@inet=@TEE={0x48, 'TEE\x00', 0x1, {@ipv4=@loopback, 'virt_wifi0\x00'}}}, {{@uncond, 0x0, 0xd0, 0x118, 0x0, {}, [@inet=@rpfilter={{0x28}}]}, @unspec=@CT0={0x48, 'CT\x00', 0x0, {0x0, 0x0, 0x0, 0x0, 'syz1\x00'}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x528) 169.179317ms ago: executing program 0 (id=1515): r0 = socket(0x40000000015, 0x5, 0x0) connect$inet(r0, &(0x7f0000000200)={0x2, 0x4e20, @loopback}, 0x10) bind$inet(r0, &(0x7f0000000340)={0x2, 0x4e20, @loopback}, 0x57) sendmsg$xdp(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000380)=[{&(0x7f00000003c0)="fe", 0x1}, {&(0x7f0000000900)="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", 0xff10}], 0x2}, 0x0) read$alg(r0, &(0x7f0000000d80)=""/4103, 0x1007) 36.663698ms ago: executing program 0 (id=1516): r0 = socket(0x10, 0x3, 0x0) setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0xc, &(0x7f0000000180)={0xffffff}, 0x10) write(r0, &(0x7f0000000000)="1c0000001a005f0214f9f4070009f0df800000000102000202020000", 0x1c) 36.051458ms ago: executing program 1 (id=1517): r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)=ANY=[@ANYBLOB="12010000000000402609333340000000000109022400010000000009040000010301000009210000000122010009058103"], 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, &(0x7f00000011c0)={0x2c, &(0x7f0000000100)=ANY=[@ANYBLOB="000002"], 0x0, 0x0, 0x0, 0x0}, 0x0) r1 = syz_open_dev$evdev(&(0x7f0000000000), 0x4, 0x0) ioctl$EVIOCSKEYCODE_V2(r1, 0x40284504, &(0x7f0000000040)={0x81, 0x0, 0x81, 0x0, "d57f8080fc2b719aeafeaf270632d39c68872691db9b679ea1376f83f99dfa2c"}) 0s ago: executing program 4 (id=1518): bpf$MAP_CREATE(0x0, &(0x7f00000012c0)=@base={0x6, 0x20}, 0x48) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x5, 0x10001, 0x9, 0x1}, 0x48) bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000080)={r0, &(0x7f0000000080), &(0x7f0000001540)=""/155}, 0x20) bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000000000)={r0, &(0x7f00000012c0), 0x0}, 0x20) kernel console output (not intermixed with test programs): 6414][ T41] usb 2-1: new high-speed USB device number 9 using dummy_hcd [ 286.321133][ T7324] erofs: (device loop3): erofs_readdir: fail to readdir of logical block 16 of nid 36 [ 286.377343][ T7327] sctp: [Deprecated]: syz.2.1095 (pid 7327) Use of struct sctp_assoc_value in delayed_ack socket option. [ 286.377343][ T7327] Use struct sctp_sack_info instead [ 286.444543][ T4347] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 286.467041][ T4347] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 286.498456][ T7331] loop3: detected capacity change from 0 to 64 [ 286.526313][ T4217] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 286.558460][ T4347] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 286.583066][ T4347] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 286.646192][ T4217] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 286.695596][ T7335] loop2: detected capacity change from 0 to 512 [ 286.702874][ T41] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 286.722791][ T41] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 286.733019][ T41] usb 2-1: New USB device found, idVendor=0d8c, idProduct=0022, bcdDevice= 0.00 [ 286.742588][ T41] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 286.778123][ T7335] EXT4-fs error (device loop2): ext4_orphan_get:1396: inode #15: comm syz.2.1099: casefold flag without casefold feature [ 286.799051][ T41] usb 2-1: config 0 descriptor?? [ 286.896913][ T7335] EXT4-fs error (device loop2): ext4_xattr_inode_iget:404: inode #12: comm syz.2.1099: missing EA_INODE flag [ 286.962390][ T7339] loop3: detected capacity change from 0 to 512 [ 286.962808][ T7335] EXT4-fs error (device loop2): ext4_xattr_inode_iget:409: comm syz.2.1099: error while reading EA inode 12 err=-117 [ 287.003507][ T7335] EXT4-fs (loop2): 1 orphan inode deleted [ 287.020918][ T7335] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 287.054817][ T7339] EXT4-fs error (device loop3): ext4_xattr_delete_inode:2926: inode #16: comm syz.3.1100: corrupted xattr block 8 [ 287.140472][ T7339] EXT4-fs (loop3): Remounting filesystem read-only [ 287.172767][ T7339] EXT4-fs warning (device loop3): ext4_evict_inode:299: xattr delete (err -117) [ 287.205149][ T6297] bio_check_eod: 1044 callbacks suppressed [ 287.205172][ T6297] syz.0.733: attempt to access beyond end of device [ 287.205172][ T6297] loop0: rw=524288, sector=57344, nr_sectors = 8 limit=40427 [ 287.245347][ T7339] EXT4-fs (loop3): 1 orphan inode deleted [ 287.256969][ T6297] syz.0.733: attempt to access beyond end of device [ 287.256969][ T6297] loop0: rw=0, sector=57344, nr_sectors = 8 limit=40427 [ 287.264364][ T7339] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 287.284257][ T5930] EXT4-fs (loop2): unmounting filesystem. [ 287.311301][ T41] cm6533_jd 0003:0D8C:0022.0007: unknown main item tag 0x0 [ 287.318605][ T6297] syz.0.733: attempt to access beyond end of device [ 287.318605][ T6297] loop0: rw=524288, sector=57344, nr_sectors = 8 limit=40427 [ 287.333525][ T7339] ext4 filesystem being mounted at /23/file1 supports timestamps until 2038 (0x7fffffff) [ 287.333635][ T41] cm6533_jd 0003:0D8C:0022.0007: unknown main item tag 0x0 [ 287.382049][ T41] cm6533_jd 0003:0D8C:0022.0007: unknown main item tag 0x0 [ 287.400880][ T41] cm6533_jd 0003:0D8C:0022.0007: unknown main item tag 0x0 [ 287.413585][ T41] cm6533_jd 0003:0D8C:0022.0007: unknown main item tag 0x0 [ 287.429446][ T41] cm6533_jd 0003:0D8C:0022.0007: No inputs registered, leaving [ 287.481129][ T41] cm6533_jd 0003:0D8C:0022.0007: hiddev0,hidraw0: USB HID v0.00 Device [HID 0d8c:0022] on usb-dummy_hcd.1-1/input0 [ 287.502462][ T6297] syz.0.733: attempt to access beyond end of device [ 287.502462][ T6297] loop0: rw=0, sector=57344, nr_sectors = 8 limit=40427 [ 287.578373][ T6297] syz.0.733: attempt to access beyond end of device [ 287.578373][ T6297] loop0: rw=524288, sector=57344, nr_sectors = 8 limit=40427 [ 287.593729][ T6297] syz.0.733: attempt to access beyond end of device [ 287.593729][ T6297] loop0: rw=0, sector=57344, nr_sectors = 8 limit=40427 [ 287.611827][ T6297] syz.0.733: attempt to access beyond end of device [ 287.611827][ T6297] loop0: rw=524288, sector=57344, nr_sectors = 8 limit=40427 [ 287.677048][ T6297] syz.0.733: attempt to access beyond end of device [ 287.677048][ T6297] loop0: rw=0, sector=57344, nr_sectors = 8 limit=40427 [ 287.928759][ T6297] syz.0.733: attempt to access beyond end of device [ 287.928759][ T6297] loop0: rw=524288, sector=57344, nr_sectors = 8 limit=40427 [ 288.025873][ T6297] syz.0.733: attempt to access beyond end of device [ 288.025873][ T6297] loop0: rw=0, sector=57344, nr_sectors = 8 limit=40427 [ 288.062854][ T7353] loop2: detected capacity change from 0 to 1024 [ 288.083439][ T152] usb 2-1: USB disconnect, device number 9 [ 288.142738][ T7353] hfsplus: unable to parse mount options [ 288.324535][ T6825] EXT4-fs (loop3): unmounting filesystem. [ 288.475857][ T7360] netlink: 'syz.3.1104': attribute type 5 has an invalid length. [ 288.504051][ T7360] netlink: 156 bytes leftover after parsing attributes in process `syz.3.1104'. [ 288.714812][ T7364] loop2: detected capacity change from 0 to 16 [ 288.762281][ T7364] erofs: (device loop2): mounted with root inode @ nid 36. [ 288.802724][ T7364] erofs: (device loop2): z_erofs_read_folio: failed to read, err [-117] [ 288.831874][ T7364] erofs: (device loop2): erofs_readdir: fail to readdir of logical block 16 of nid 36 [ 289.120504][ T7371] loop2: detected capacity change from 0 to 64 [ 289.172650][ T7373] 9pnet: Unknown protocol version 9p2000.ڴ>;1gˏӟ?u [ 289.269043][ T7375] loop1: detected capacity change from 0 to 512 [ 289.411951][ T7375] EXT4-fs (loop1): orphan cleanup on readonly fs [ 289.468665][ T7375] EXT4-fs (loop1): 1 orphan inode deleted [ 290.041046][ T7375] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 290.174715][ T7373] 9pnet: Could not find request transport: rdn|Jm [ 290.246411][ T5869] EXT4-fs (loop1): unmounting filesystem. [ 290.417770][ T7362] loop3: detected capacity change from 0 to 32768 [ 290.436502][ T7362] BTRFS: device fsid a6a605fc-d5f1-4e66-8595-3726e2b761d6 devid 1 transid 8 /dev/loop3 scanned by syz.3.1105 (7362) [ 290.463152][ T7362] BTRFS info (device loop3): first mount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6 [ 290.600304][ T7362] BTRFS info (device loop3): using blake2b (blake2b-256-generic) checksum algorithm [ 290.712949][ T7362] BTRFS info (device loop3): using free space tree [ 291.109892][ T7394] loop4: detected capacity change from 0 to 512 [ 291.169633][ T7362] BTRFS info (device loop3): enabling ssd optimizations [ 291.198187][ T7394] EXT4-fs error (device loop4): ext4_orphan_get:1396: inode #15: comm syz.4.1112: casefold flag without casefold feature [ 291.273861][ T7394] EXT4-fs error (device loop4): ext4_xattr_inode_iget:404: inode #12: comm syz.4.1112: missing EA_INODE flag [ 291.315214][ T7394] EXT4-fs error (device loop4): ext4_xattr_inode_iget:409: comm syz.4.1112: error while reading EA inode 12 err=-117 [ 291.343297][ T7394] EXT4-fs (loop4): 1 orphan inode deleted [ 291.372651][ T7394] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 291.383451][ T6825] BTRFS info (device loop3): last unmount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6 [ 291.409610][ T7412] netlink: 'syz.2.1116': attribute type 21 has an invalid length. [ 291.439468][ T7412] netlink: 128 bytes leftover after parsing attributes in process `syz.2.1116'. [ 291.470893][ T7412] netlink: 'syz.2.1116': attribute type 5 has an invalid length. [ 291.481178][ T7412] netlink: 3 bytes leftover after parsing attributes in process `syz.2.1116'. [ 291.500918][ T3939] usb 2-1: new high-speed USB device number 10 using dummy_hcd [ 291.718608][ T6789] EXT4-fs (loop4): unmounting filesystem. [ 291.745487][ T7420] loop2: detected capacity change from 0 to 4096 [ 291.787428][ T7420] __ntfs_error: 53 callbacks suppressed [ 291.787449][ T7420] ntfs: (device loop2): ntfs_read_locked_inode(): $DATA attribute is missing. [ 291.846026][ T7420] ntfs: (device loop2): ntfs_read_locked_inode(): Failed with error code -2. Marking corrupt inode 0xa as bad. Run chkdsk. [ 291.854287][ T7422] loop4: detected capacity change from 0 to 512 [ 291.865771][ T3932] usb 1-1: new high-speed USB device number 7 using dummy_hcd [ 291.876124][ T3939] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 291.893330][ T3939] usb 2-1: New USB device found, idVendor=0926, idProduct=3333, bcdDevice= 0.40 [ 291.912640][ T7420] ntfs: (device loop2): load_and_init_upcase(): Failed to load $UpCase from the volume. Using default. [ 291.924112][ T3939] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 291.936834][ T7422] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 291.949961][ T7426] loop3: detected capacity change from 0 to 16 [ 291.959929][ T7422] ext4 filesystem being mounted at /26/file0 supports timestamps until 2038 (0x7fffffff) [ 291.971487][ T7426] erofs: (device loop3): mounted with root inode @ nid 36. [ 291.971835][ T3939] usb 2-1: config 0 descriptor?? [ 291.985301][ T7420] ntfs: volume version 3.1. [ 292.005552][ T7426] erofs: (device loop3): z_erofs_read_folio: failed to read, err [-117] [ 292.034478][ T7426] erofs: (device loop3): erofs_readdir: fail to readdir of logical block 16 of nid 36 [ 292.137278][ T6789] EXT4-fs (loop4): unmounting filesystem. [ 292.195625][ T5930] ntfs: (device loop2): ntfs_put_super(): Volume has errors. Leaving volume marked dirty. Run chkdsk. [ 292.208040][ T6297] bio_check_eod: 355 callbacks suppressed [ 292.208056][ T6297] syz.0.733: attempt to access beyond end of device [ 292.208056][ T6297] loop0: rw=0, sector=57344, nr_sectors = 8 limit=40427 [ 292.230558][ T6297] syz.0.733: attempt to access beyond end of device [ 292.230558][ T6297] loop0: rw=524288, sector=57344, nr_sectors = 8 limit=40427 [ 292.253060][ T6297] syz.0.733: attempt to access beyond end of device [ 292.253060][ T6297] loop0: rw=0, sector=57344, nr_sectors = 8 limit=40427 [ 292.270378][ T6297] syz.0.733: attempt to access beyond end of device [ 292.270378][ T6297] loop0: rw=524288, sector=57344, nr_sectors = 8 limit=40427 [ 292.314587][ T6297] syz.0.733: attempt to access beyond end of device [ 292.314587][ T6297] loop0: rw=0, sector=57344, nr_sectors = 8 limit=40427 [ 292.328617][ T3932] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 292.350901][ T3932] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 292.367027][ T6297] syz.0.733: attempt to access beyond end of device [ 292.367027][ T6297] loop0: rw=524288, sector=57344, nr_sectors = 8 limit=40427 [ 292.388248][ T3932] usb 1-1: New USB device found, idVendor=0d8c, idProduct=0022, bcdDevice= 0.00 [ 292.401103][ T3932] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 292.413941][ T6297] syz.0.733: attempt to access beyond end of device [ 292.413941][ T6297] loop0: rw=0, sector=57344, nr_sectors = 8 limit=40427 [ 292.454843][ T3932] usb 1-1: config 0 descriptor?? [ 292.473371][ T7433] loop2: detected capacity change from 0 to 256 [ 292.497323][ T3939] keytouch 0003:0926:3333.0008: fixing up Keytouch IEC report descriptor [ 292.508212][ T6297] syz.0.733: attempt to access beyond end of device [ 292.508212][ T6297] loop0: rw=524288, sector=57344, nr_sectors = 8 limit=40427 [ 292.523023][ T6297] syz.0.733: attempt to access beyond end of device [ 292.523023][ T6297] loop0: rw=0, sector=57344, nr_sectors = 8 limit=40427 [ 292.538266][ T7433] exfat: Deprecated parameter 'utf8' [ 292.544500][ T7433] exfat: Deprecated parameter 'utf8' [ 292.552059][ T3939] input: HID 0926:3333 as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/0003:0926:3333.0008/input/input23 [ 292.557390][ T6297] syz.0.733: attempt to access beyond end of device [ 292.557390][ T6297] loop0: rw=524288, sector=57344, nr_sectors = 8 limit=40427 [ 292.604687][ T7433] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0x36dfe6b4, utbl_chksum : 0xe619d30d) [ 292.883996][ T7438] ip6t_REJECT: TCP_RESET illegal for non-tcp [ 292.967137][ T3939] keytouch 0003:0926:3333.0008: input,hidraw0: USB HID v0.00 Keyboard [HID 0926:3333] on usb-dummy_hcd.1-1/input0 [ 293.205575][ T3932] cm6533_jd 0003:0D8C:0022.0009: unknown main item tag 0x0 [ 293.213128][ T3932] cm6533_jd 0003:0D8C:0022.0009: unknown main item tag 0x0 [ 293.262678][ T3932] cm6533_jd 0003:0D8C:0022.0009: unknown main item tag 0x0 [ 293.293785][ T3932] cm6533_jd 0003:0D8C:0022.0009: unknown main item tag 0x0 [ 293.333972][ T3932] cm6533_jd 0003:0D8C:0022.0009: unknown main item tag 0x0 [ 293.388146][ T3932] cm6533_jd 0003:0D8C:0022.0009: No inputs registered, leaving [ 293.445991][ T3932] cm6533_jd 0003:0D8C:0022.0009: hiddev0,hidraw1: USB HID v0.00 Device [HID 0d8c:0022] on usb-dummy_hcd.0-1/input0 [ 293.526175][ T3932] usb 1-1: USB disconnect, device number 7 [ 293.617197][ T7444] netlink: 'syz.4.1131': attribute type 21 has an invalid length. [ 293.645849][ T7444] netlink: 128 bytes leftover after parsing attributes in process `syz.4.1131'. [ 293.655007][ T7444] netlink: 'syz.4.1131': attribute type 5 has an invalid length. [ 293.682519][ T3939] usb 2-1: USB disconnect, device number 10 [ 293.725873][ T7444] netlink: 3 bytes leftover after parsing attributes in process `syz.4.1131'. [ 293.892525][ T7454] loop4: detected capacity change from 0 to 512 [ 293.961080][ T7454] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 293.983519][ T7454] ext4 filesystem being mounted at /30/file0 supports timestamps until 2038 (0x7fffffff) [ 294.084077][ T7440] loop3: detected capacity change from 0 to 32768 [ 294.123966][ T7440] BTRFS: device fsid a6a605fc-d5f1-4e66-8595-3726e2b761d6 devid 1 transid 8 /dev/loop3 scanned by syz.3.1128 (7440) [ 294.139368][ T7440] BTRFS info (device loop3): first mount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6 [ 294.150481][ T7440] BTRFS info (device loop3): using blake2b (blake2b-256-generic) checksum algorithm [ 294.155433][ T6789] EXT4-fs (loop4): unmounting filesystem. [ 294.167289][ T7440] BTRFS info (device loop3): using free space tree [ 294.310088][ T7462] loop4: detected capacity change from 0 to 2048 [ 294.320961][ T7462] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 294.442482][ T7453] loop2: detected capacity change from 0 to 32768 [ 294.459506][ T7453] BTRFS: device fsid 24c7a497-3402-47dd-bef8-82358f5f30e0 devid 1 transid 8 /dev/loop2 scanned by syz.2.1135 (7453) [ 294.510703][ T7453] BTRFS info (device loop2): first mount of filesystem 24c7a497-3402-47dd-bef8-82358f5f30e0 [ 294.526240][ T7440] BTRFS info (device loop3): enabling ssd optimizations [ 294.609399][ T7453] BTRFS info (device loop2): using crc32c (crc32c-intel) checksum algorithm [ 294.629670][ T7453] BTRFS info (device loop2): using free space tree [ 294.725535][ T6825] BTRFS info (device loop3): last unmount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6 [ 295.141636][ T7496] overlayfs: option "workdir=./file0" is useless in a non-upper mount, ignore [ 295.150940][ T7496] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent [ 295.869391][ T7453] BTRFS info (device loop2): enabling ssd optimizations [ 296.069751][ T5930] BTRFS info (device loop2): last unmount of filesystem 24c7a497-3402-47dd-bef8-82358f5f30e0 [ 296.085997][ T7515] netlink: 'syz.1.1143': attribute type 5 has an invalid length. [ 296.093774][ T7515] netlink: 156 bytes leftover after parsing attributes in process `syz.1.1143'. [ 296.316330][ T7522] netlink: 'syz.4.1145': attribute type 21 has an invalid length. [ 296.361157][ T7522] netlink: 128 bytes leftover after parsing attributes in process `syz.4.1145'. [ 296.396695][ T7522] netlink: 'syz.4.1145': attribute type 5 has an invalid length. [ 296.423994][ T7522] netlink: 3 bytes leftover after parsing attributes in process `syz.4.1145'. [ 296.450101][ T7528] loop3: detected capacity change from 0 to 256 [ 296.492936][ T7528] exfat: Deprecated parameter 'utf8' [ 296.557661][ T7528] exfat: Deprecated parameter 'utf8' [ 296.640688][ T7528] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0x36dfe6b4, utbl_chksum : 0xe619d30d) [ 297.082951][ T7537] loop4: detected capacity change from 0 to 2048 [ 297.120601][ T7537] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 297.196830][ T7549] loop3: detected capacity change from 0 to 512 [ 297.218557][ T6297] bio_check_eod: 439 callbacks suppressed [ 297.218576][ T6297] syz.0.733: attempt to access beyond end of device [ 297.218576][ T6297] loop0: rw=524288, sector=57344, nr_sectors = 8 limit=40427 [ 297.254553][ T6297] syz.0.733: attempt to access beyond end of device [ 297.254553][ T6297] loop0: rw=0, sector=57344, nr_sectors = 8 limit=40427 [ 297.360163][ T6297] syz.0.733: attempt to access beyond end of device [ 297.360163][ T6297] loop0: rw=524288, sector=57344, nr_sectors = 8 limit=40427 [ 297.379579][ T7556] netlink: 'syz.0.1157': attribute type 5 has an invalid length. [ 297.387436][ T7556] netlink: 156 bytes leftover after parsing attributes in process `syz.0.1157'. [ 297.408372][ T7549] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 297.413059][ T6297] syz.0.733: attempt to access beyond end of device [ 297.413059][ T6297] loop0: rw=0, sector=57344, nr_sectors = 8 limit=40427 [ 297.427987][ T7549] ext4 filesystem being mounted at /33/file0 supports timestamps until 2038 (0x7fffffff) [ 297.648934][ T7562] overlayfs: option "workdir=./file0" is useless in a non-upper mount, ignore [ 297.658141][ T7562] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent [ 298.146512][ T6297] syz.0.733: attempt to access beyond end of device [ 298.146512][ T6297] loop0: rw=524288, sector=57344, nr_sectors = 8 limit=40427 [ 298.284678][ T6297] syz.0.733: attempt to access beyond end of device [ 298.284678][ T6297] loop0: rw=0, sector=57344, nr_sectors = 8 limit=40427 [ 298.318524][ T6297] syz.0.733: attempt to access beyond end of device [ 298.318524][ T6297] loop0: rw=524288, sector=57344, nr_sectors = 8 limit=40427 [ 298.370210][ T6825] EXT4-fs (loop3): unmounting filesystem. [ 298.449654][ T6297] syz.0.733: attempt to access beyond end of device [ 298.449654][ T6297] loop0: rw=0, sector=57344, nr_sectors = 8 limit=40427 [ 298.522432][ T6297] syz.0.733: attempt to access beyond end of device [ 298.522432][ T6297] loop0: rw=524288, sector=57344, nr_sectors = 8 limit=40427 [ 298.639891][ T6297] syz.0.733: attempt to access beyond end of device [ 298.639891][ T6297] loop0: rw=0, sector=57344, nr_sectors = 8 limit=40427 [ 298.674268][ T7583] loop3: detected capacity change from 0 to 256 [ 298.681360][ T7583] exfat: Deprecated parameter 'utf8' [ 298.687689][ T7583] exfat: Deprecated parameter 'utf8' [ 298.705543][ T7583] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0x36dfe6b4, utbl_chksum : 0xe619d30d) [ 299.469033][ T3560] Bluetooth: hci4: unexpected event 0x2f length: 509 > 260 [ 299.615954][ T22] usb 2-1: new high-speed USB device number 11 using dummy_hcd [ 300.095998][ T22] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 300.133047][ T22] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 300.163794][ T22] usb 2-1: New USB device found, idVendor=0d8c, idProduct=0022, bcdDevice= 0.00 [ 300.363232][ T22] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 300.383857][ T22] usb 2-1: config 0 descriptor?? [ 300.625538][ T7616] overlayfs: option "workdir=./file0" is useless in a non-upper mount, ignore [ 300.635364][ T7616] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent [ 301.110890][ T22] cm6533_jd 0003:0D8C:0022.000A: unknown main item tag 0x0 [ 301.162966][ T22] cm6533_jd 0003:0D8C:0022.000A: unknown main item tag 0x0 [ 301.237947][ T22] cm6533_jd 0003:0D8C:0022.000A: unknown main item tag 0x0 [ 301.327586][ T22] cm6533_jd 0003:0D8C:0022.000A: unknown main item tag 0x0 [ 301.357257][ T22] cm6533_jd 0003:0D8C:0022.000A: unknown main item tag 0x0 [ 301.375114][ T3932] libceph: connect (1)[c::]:6789 error -101 [ 301.396733][ T22] cm6533_jd 0003:0D8C:0022.000A: No inputs registered, leaving [ 301.404550][ T3932] libceph: mon0 (1)[c::]:6789 connect error [ 301.420724][ T7615] ceph: No mds server is up or the cluster is laggy [ 301.443570][ T7628] loop3: detected capacity change from 0 to 512 [ 301.485928][ T22] cm6533_jd 0003:0D8C:0022.000A: hiddev0,hidraw0: USB HID v0.00 Device [HID 0d8c:0022] on usb-dummy_hcd.1-1/input0 [ 301.500989][ T7629] loop4: detected capacity change from 0 to 2048 [ 301.512044][ T22] usb 2-1: USB disconnect, device number 11 [ 301.561481][ T7629] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 301.634288][ T7628] EXT4-fs error (device loop3): ext4_xattr_delete_inode:2926: inode #16: comm syz.3.1174: corrupted xattr block 8 [ 301.693568][ T7628] EXT4-fs (loop3): Remounting filesystem read-only [ 301.765954][ T7628] EXT4-fs warning (device loop3): ext4_evict_inode:299: xattr delete (err -117) [ 301.801344][ T7628] EXT4-fs (loop3): 1 orphan inode deleted [ 301.823484][ T7628] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 301.848966][ T7628] ext4 filesystem being mounted at /38/file1 supports timestamps until 2038 (0x7fffffff) [ 302.261813][ T6297] bio_check_eod: 318 callbacks suppressed [ 302.261873][ T6297] syz.0.733: attempt to access beyond end of device [ 302.261873][ T6297] loop0: rw=524288, sector=57344, nr_sectors = 8 limit=40427 [ 302.772868][ T6297] syz.0.733: attempt to access beyond end of device [ 302.772868][ T6297] loop0: rw=0, sector=57344, nr_sectors = 8 limit=40427 [ 302.935117][ T6297] syz.0.733: attempt to access beyond end of device [ 302.935117][ T6297] loop0: rw=524288, sector=57344, nr_sectors = 8 limit=40427 [ 303.062251][ T6297] syz.0.733: attempt to access beyond end of device [ 303.062251][ T6297] loop0: rw=0, sector=57344, nr_sectors = 8 limit=40427 [ 303.178768][ T7656] 9pnet: Unknown protocol version 9p2000.ڴ>;1gˏӟ?u [ 303.229200][ T6825] EXT4-fs (loop3): unmounting filesystem. [ 303.282085][ T7658] loop1: detected capacity change from 0 to 512 [ 303.344434][ T7658] EXT4-fs (loop1): orphan cleanup on readonly fs [ 303.370731][ T7658] EXT4-fs (loop1): 1 orphan inode deleted [ 303.675321][ T6297] syz.0.733: attempt to access beyond end of device [ 303.675321][ T6297] loop0: rw=524288, sector=57344, nr_sectors = 8 limit=40427 [ 303.743925][ T7656] 9pnet: Could not find request transport: rdn|Jm [ 304.019098][ T6297] syz.0.733: attempt to access beyond end of device [ 304.019098][ T6297] loop0: rw=0, sector=57344, nr_sectors = 8 limit=40427 [ 304.068594][ T7658] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 304.141357][ T6297] syz.0.733: attempt to access beyond end of device [ 304.141357][ T6297] loop0: rw=524288, sector=57344, nr_sectors = 8 limit=40427 [ 304.202334][ T6297] syz.0.733: attempt to access beyond end of device [ 304.202334][ T6297] loop0: rw=0, sector=57344, nr_sectors = 8 limit=40427 [ 304.262204][ T6297] syz.0.733: attempt to access beyond end of device [ 304.262204][ T6297] loop0: rw=524288, sector=57344, nr_sectors = 8 limit=40427 [ 304.287541][ T5869] EXT4-fs (loop1): unmounting filesystem. [ 304.328882][ T6297] syz.0.733: attempt to access beyond end of device [ 304.328882][ T6297] loop0: rw=0, sector=57344, nr_sectors = 8 limit=40427 [ 304.382511][ T7666] device sit0 entered promiscuous mode [ 304.452711][ T7666] netlink: 'syz.0.1183': attribute type 1 has an invalid length. [ 304.512315][ T7666] netlink: 1 bytes leftover after parsing attributes in process `syz.0.1183'. [ 304.724015][ T7680] loop1: detected capacity change from 0 to 4096 [ 304.762479][ T7680] ntfs3: loop1: Different NTFS' sector size (4096) and media sector size (512) [ 304.853089][ T7680] ntfs3: loop1: Mark volume as dirty due to NTFS errors [ 304.868939][ T7680] ntfs3: loop1: Failed to load $Extend. [ 304.931565][ T7690] loop2: detected capacity change from 0 to 512 [ 304.985837][ T152] usb 4-1: new high-speed USB device number 9 using dummy_hcd [ 304.993083][ T7690] EXT4-fs error (device loop2): ext4_xattr_delete_inode:2926: inode #16: comm syz.2.1195: corrupted xattr block 8 [ 305.025229][ T7690] EXT4-fs (loop2): Remounting filesystem read-only [ 305.040796][ T7690] EXT4-fs warning (device loop2): ext4_evict_inode:299: xattr delete (err -117) [ 305.077069][ T7690] EXT4-fs (loop2): 1 orphan inode deleted [ 305.102294][ T7690] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 305.145508][ T7690] ext4 filesystem being mounted at /139/file1 supports timestamps until 2038 (0x7fffffff) [ 305.526801][ T152] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x6 has invalid wMaxPacketSize 0 [ 306.186205][ T7714] 9pnet: Unknown protocol version 9p2000.ڴ>;1gˏӟ?u [ 307.790975][ T7712] loop4: detected capacity change from 0 to 512 [ 307.851194][ T3569] Bluetooth: hci5: unexpected event 0x2f length: 509 > 260 [ 307.855030][ T6297] bio_check_eod: 163 callbacks suppressed [ 307.855075][ T6297] syz.0.733: attempt to access beyond end of device [ 307.855075][ T6297] loop0: rw=0, sector=57344, nr_sectors = 8 limit=40427 [ 307.864086][ T152] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x7 has invalid wMaxPacketSize 0 [ 307.871680][ T6297] syz.0.733: attempt to access beyond end of device [ 307.871680][ T6297] loop0: rw=524288, sector=57344, nr_sectors = 8 limit=40427 [ 307.905229][ T7712] EXT4-fs (loop4): orphan cleanup on readonly fs [ 307.909078][ T6297] syz.0.733: attempt to access beyond end of device [ 307.909078][ T6297] loop0: rw=0, sector=57344, nr_sectors = 8 limit=40427 [ 307.918198][ T7712] EXT4-fs (loop4): 1 orphan inode deleted [ 307.964035][ T6297] syz.0.733: attempt to access beyond end of device [ 307.964035][ T6297] loop0: rw=524288, sector=57344, nr_sectors = 8 limit=40427 [ 308.033492][ T7712] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 308.096955][ T152] usb 4-1: string descriptor 0 read error: -71 [ 308.099150][ T5930] EXT4-fs (loop2): unmounting filesystem. [ 308.109582][ T152] usb 4-1: New USB device found, idVendor=05e1, idProduct=0408, bcdDevice=45.c8 [ 308.109614][ T152] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 308.113855][ T152] usb 4-1: config 0 descriptor?? [ 308.136762][ T6297] syz.0.733: attempt to access beyond end of device [ 308.136762][ T6297] loop0: rw=0, sector=57344, nr_sectors = 8 limit=40427 [ 308.164379][ T6297] syz.0.733: attempt to access beyond end of device [ 308.164379][ T6297] loop0: rw=524288, sector=57344, nr_sectors = 8 limit=40427 [ 308.164651][ T7725] netlink: 276 bytes leftover after parsing attributes in process `syz.3.1205'. [ 308.209914][ T7716] 9pnet: Could not find request transport: rdn|Jm [ 308.234800][ T6297] syz.0.733: attempt to access beyond end of device [ 308.234800][ T6297] loop0: rw=0, sector=57344, nr_sectors = 8 limit=40427 [ 308.302101][ T152] usb 4-1: can't set config #0, error -71 [ 308.309777][ T152] usb 4-1: USB disconnect, device number 9 [ 308.312570][ T6789] EXT4-fs (loop4): unmounting filesystem. [ 308.342274][ T6297] syz.0.733: attempt to access beyond end of device [ 308.342274][ T6297] loop0: rw=524288, sector=57344, nr_sectors = 8 limit=40427 [ 308.368134][ T6297] syz.0.733: attempt to access beyond end of device [ 308.368134][ T6297] loop0: rw=0, sector=57344, nr_sectors = 8 limit=40427 [ 308.461210][ T6297] syz.0.733: attempt to access beyond end of device [ 308.461210][ T6297] loop0: rw=524288, sector=57344, nr_sectors = 8 limit=40427 [ 308.601162][ T152] libceph: connect (1)[c::]:6789 error -101 [ 308.610321][ T152] libceph: mon0 (1)[c::]:6789 connect error [ 308.671447][ T7729] ceph: No mds server is up or the cluster is laggy [ 308.982345][ T7752] loop4: detected capacity change from 0 to 1024 [ 309.154976][ T7760] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1218'. [ 309.226634][ T4344] hfsplus: b-tree write err: -5, ino 4 [ 309.512031][ T7780] netlink: 276 bytes leftover after parsing attributes in process `syz.0.1224'. [ 309.565795][ T3929] usb 4-1: new high-speed USB device number 10 using dummy_hcd [ 309.570042][ T22] libceph: connect (1)[c::]:6789 error -101 [ 309.579901][ T22] libceph: mon0 (1)[c::]:6789 connect error [ 309.650624][ T7782] ceph: No mds server is up or the cluster is laggy [ 309.816948][ T3929] usb 4-1: Using ep0 maxpacket: 8 [ 309.856608][ T3569] Bluetooth: hci0: command 0x0406 tx timeout [ 309.874603][ T7799] loop1: detected capacity change from 0 to 1024 [ 310.092220][ T34] hfsplus: b-tree write err: -5, ino 4 [ 310.146095][ T3929] usb 4-1: New USB device found, idVendor=046d, idProduct=08dd, bcdDevice=ff.f4 [ 310.189830][ T3929] usb 4-1: New USB device strings: Mfr=8, Product=2, SerialNumber=3 [ 310.213983][ T3929] usb 4-1: Product: syz [ 310.223102][ T3929] usb 4-1: Manufacturer: syz [ 310.233801][ T3929] usb 4-1: SerialNumber: syz [ 310.428799][ T7814] overlayfs: option "workdir=./file0" is useless in a non-upper mount, ignore [ 310.438027][ T7814] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent [ 311.101489][ T3929] usb 4-1: config 0 descriptor?? [ 311.148147][ T3929] gspca_main: gspca_zc3xx-2.14.0 probing 046d:08dd [ 311.308293][ T7830] loop1: detected capacity change from 0 to 512 [ 311.335720][ T7830] EXT4-fs: Ignoring removed mblk_io_submit option [ 311.362694][ T7830] EXT4-fs (loop1): mounting ext3 file system using the ext4 subsystem [ 311.419307][ T7830] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=b016c118, mo2=0002] [ 311.430173][ T7830] System zones: 1-12 [ 311.449480][ T7830] EXT4-fs error (device loop1): ext4_xattr_ibody_find:2213: inode #15: comm syz.1.1242: corrupted in-inode xattr [ 311.474921][ T7830] EXT4-fs error (device loop1): ext4_orphan_get:1401: comm syz.1.1242: couldn't read orphan inode 15 (err -117) [ 311.502982][ T7830] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 311.512181][ T7832] loop4: detected capacity change from 0 to 4096 [ 311.513452][ T7832] ntfs3: loop4: Different NTFS' sector size (4096) and media sector size (512) [ 311.711930][ T7832] ntfs3: loop4: Mark volume as dirty due to NTFS errors [ 311.722042][ T7830] loop1: detected capacity change from 512 to 64 [ 311.740428][ T7832] ntfs3: loop4: Failed to load $Extend. [ 311.785856][ T3929] gspca_zc3xx: reg_w_i err -71 [ 311.790759][ T3929] gspca_zc3xx: probe of 4-1:0.0 failed with error -71 [ 311.839054][ T3929] usb 4-1: USB disconnect, device number 10 [ 311.883119][ T7830] EXT4-fs warning (device loop1): ext4_end_bio:347: I/O error 10 writing to inode 13 starting block 36) [ 311.934418][ T7830] Buffer I/O error on device loop1, logical block 36 [ 311.941729][ T7830] Buffer I/O error on device loop1, logical block 37 [ 311.953487][ T7830] Buffer I/O error on device loop1, logical block 38 [ 311.960226][ T7830] Buffer I/O error on device loop1, logical block 39 [ 311.966932][ T7830] Buffer I/O error on device loop1, logical block 40 [ 311.973637][ T7830] Buffer I/O error on device loop1, logical block 41 [ 311.981684][ T7830] Buffer I/O error on device loop1, logical block 42 [ 311.988410][ T7830] Buffer I/O error on device loop1, logical block 43 [ 311.995105][ T7830] Buffer I/O error on device loop1, logical block 44 [ 312.001799][ T7830] Buffer I/O error on device loop1, logical block 45 [ 312.144769][ T5869] EXT4-fs error (device loop1): ext4_readdir:260: inode #11: block 18: comm syz-executor: path /151/file0/lost+found: bad entry in directory: inode out of bounds - offset=0, inode=256, rec_len=1024, size=1024 fake=0 [ 312.196467][ T5869] EXT4-fs error (device loop1): ext4_empty_dir:3131: inode #11: block 18: comm syz-executor: bad entry in directory: inode out of bounds - offset=4096, inode=256, rec_len=1024, size=1024 fake=0 [ 312.226367][ T5869] EXT4-fs error (device loop1): ext4_readdir:260: inode #11: block 18: comm syz-executor: path /151/file0/lost+found: bad entry in directory: inode out of bounds - offset=0, inode=256, rec_len=1024, size=1024 fake=0 [ 312.279522][ T5869] EXT4-fs error (device loop1): ext4_empty_dir:3131: inode #11: block 18: comm syz-executor: bad entry in directory: inode out of bounds - offset=4096, inode=256, rec_len=1024, size=1024 fake=0 [ 312.316650][ T5869] EXT4-fs error (device loop1): ext4_readdir:260: inode #11: block 18: comm syz-executor: path /151/file0/lost+found: bad entry in directory: inode out of bounds - offset=0, inode=256, rec_len=1024, size=1024 fake=0 [ 312.377052][ T5869] EXT4-fs error (device loop1): ext4_empty_dir:3131: inode #11: block 18: comm syz-executor: bad entry in directory: inode out of bounds - offset=4096, inode=256, rec_len=1024, size=1024 fake=0 [ 312.426638][ T5869] EXT4-fs error (device loop1): ext4_readdir:260: inode #11: block 18: comm syz-executor: path /151/file0/lost+found: bad entry in directory: inode out of bounds - offset=0, inode=256, rec_len=1024, size=1024 fake=0 [ 312.467127][ T5869] EXT4-fs error (device loop1): ext4_empty_dir:3131: inode #11: block 18: comm syz-executor: bad entry in directory: inode out of bounds - offset=4096, inode=256, rec_len=1024, size=1024 fake=0 [ 312.516439][ T5869] EXT4-fs error (device loop1): ext4_readdir:260: inode #11: block 18: comm syz-executor: path /151/file0/lost+found: bad entry in directory: inode out of bounds - offset=0, inode=256, rec_len=1024, size=1024 fake=0 [ 312.556705][ T5869] EXT4-fs error (device loop1): ext4_empty_dir:3131: inode #11: block 18: comm syz-executor: bad entry in directory: inode out of bounds - offset=4096, inode=256, rec_len=1024, size=1024 fake=0 [ 312.614485][ T7861] loop3: detected capacity change from 0 to 4096 [ 312.666113][ T7861] NILFS (loop3): invalid segment: Checksum error in segment payload [ 312.674913][ T7861] NILFS (loop3): trying rollback from an earlier position [ 312.721060][ T7861] NILFS (loop3): recovery complete [ 312.772801][ T7864] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 312.906717][ T6297] bio_check_eod: 558 callbacks suppressed [ 312.906736][ T6297] syz.0.733: attempt to access beyond end of device [ 312.906736][ T6297] loop0: rw=524288, sector=57344, nr_sectors = 8 limit=40427 [ 312.987258][ T6297] syz.0.733: attempt to access beyond end of device [ 312.987258][ T6297] loop0: rw=0, sector=57344, nr_sectors = 8 limit=40427 [ 313.018673][ T6297] syz.0.733: attempt to access beyond end of device [ 313.018673][ T6297] loop0: rw=524288, sector=57344, nr_sectors = 8 limit=40427 [ 313.063104][ T6297] syz.0.733: attempt to access beyond end of device [ 313.063104][ T6297] loop0: rw=0, sector=57344, nr_sectors = 8 limit=40427 [ 313.098862][ T6297] syz.0.733: attempt to access beyond end of device [ 313.098862][ T6297] loop0: rw=524288, sector=57344, nr_sectors = 8 limit=40427 [ 313.133261][ T6297] syz.0.733: attempt to access beyond end of device [ 313.133261][ T6297] loop0: rw=0, sector=57344, nr_sectors = 8 limit=40427 [ 313.235509][ T3602] usb 1-1: new high-speed USB device number 8 using dummy_hcd [ 313.268449][ T6297] syz.0.733: attempt to access beyond end of device [ 313.268449][ T6297] loop0: rw=524288, sector=57344, nr_sectors = 8 limit=40427 [ 313.294036][ T7874] loop3: detected capacity change from 0 to 512 [ 313.300081][ T6297] syz.0.733: attempt to access beyond end of device [ 313.300081][ T6297] loop0: rw=0, sector=57344, nr_sectors = 8 limit=40427 [ 313.327331][ T6297] syz.0.733: attempt to access beyond end of device [ 313.327331][ T6297] loop0: rw=524288, sector=57344, nr_sectors = 8 limit=40427 [ 313.369444][ T7874] EXT4-fs error (device loop3): ext4_orphan_get:1396: inode #15: comm syz.3.1258: casefold flag without casefold feature [ 313.377281][ T6297] syz.0.733: attempt to access beyond end of device [ 313.377281][ T6297] loop0: rw=0, sector=57344, nr_sectors = 8 limit=40427 [ 313.396359][ T7874] EXT4-fs error (device loop3): ext4_xattr_inode_iget:404: inode #12: comm syz.3.1258: missing EA_INODE flag [ 313.409334][ T7877] loop2: detected capacity change from 0 to 4096 [ 313.440916][ T7874] EXT4-fs error (device loop3): ext4_xattr_inode_iget:409: comm syz.3.1258: error while reading EA inode 12 err=-117 [ 313.472423][ T7877] ntfs3: loop2: Different NTFS' sector size (4096) and media sector size (512) [ 313.490205][ T3629] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 313.498111][ T5869] EXT4-fs (loop1): unmounting filesystem. [ 313.514177][ T7874] EXT4-fs (loop3): 1 orphan inode deleted [ 313.522709][ T7874] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 313.548175][ T7881] loop4: detected capacity change from 0 to 512 [ 313.582856][ T7881] EXT4-fs: Ignoring removed mblk_io_submit option [ 313.614671][ T3629] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 313.623420][ T3602] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x6 has invalid wMaxPacketSize 0 [ 313.645014][ T7881] EXT4-fs (loop4): mounting ext3 file system using the ext4 subsystem [ 313.653527][ T7877] ntfs3: loop2: Mark volume as dirty due to NTFS errors [ 313.666986][ T3602] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x7 has invalid wMaxPacketSize 0 [ 313.683177][ T7877] ntfs3: loop2: Failed to load $Extend. [ 313.703474][ T7881] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=b016c118, mo2=0002] [ 313.733497][ T6825] EXT4-fs (loop3): unmounting filesystem. [ 313.771905][ T7881] System zones: 1-12 [ 313.787375][ T3629] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 313.812159][ T7881] EXT4-fs error (device loop4): ext4_xattr_ibody_find:2213: inode #15: comm syz.4.1262: corrupted in-inode xattr [ 313.856280][ T3602] usb 1-1: New USB device found, idVendor=05e1, idProduct=0408, bcdDevice=45.c8 [ 313.875624][ T3602] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 313.877479][ T7881] EXT4-fs error (device loop4): ext4_orphan_get:1401: comm syz.4.1262: couldn't read orphan inode 15 (err -117) [ 313.894382][ T3602] usb 1-1: Product: syz [ 313.900318][ T3602] usb 1-1: Manufacturer: syz [ 313.905027][ T3602] usb 1-1: SerialNumber: syz [ 313.931569][ T3602] usb 1-1: config 0 descriptor?? [ 313.955446][ T3629] team0: Port device netdevsim0 removed [ 313.962785][ T7881] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 313.991250][ T3629] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 313.998207][ T3602] usb 1-1: no audio or video endpoints found [ 314.118696][ T7881] loop4: detected capacity change from 512 to 64 [ 314.276614][ T5542] usb 1-1: USB disconnect, device number 8 [ 314.339236][ T7881] EXT4-fs warning (device loop4): ext4_end_bio:347: I/O error 10 writing to inode 13 starting block 36) [ 314.393803][ T3570] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 314.413081][ T3570] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 314.432075][ T3570] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 314.440207][ T3570] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 314.449032][ T3570] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 314.457906][ T3570] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 314.588326][ T6789] EXT4-fs error (device loop4): ext4_readdir:260: inode #11: block 18: comm syz-executor: path /58/file0/lost+found: bad entry in directory: inode out of bounds - offset=0, inode=256, rec_len=1024, size=1024 fake=0 [ 314.640437][ T6789] EXT4-fs error (device loop4): ext4_empty_dir:3131: inode #11: block 18: comm syz-executor: bad entry in directory: inode out of bounds - offset=4096, inode=256, rec_len=1024, size=1024 fake=0 [ 314.734532][ T6789] EXT4-fs error (device loop4): ext4_readdir:260: inode #11: block 18: comm syz-executor: path /58/file0/lost+found: bad entry in directory: inode out of bounds - offset=0, inode=256, rec_len=1024, size=1024 fake=0 [ 314.781814][ T6789] EXT4-fs error (device loop4): ext4_empty_dir:3131: inode #11: block 18: comm syz-executor: bad entry in directory: inode out of bounds - offset=4096, inode=256, rec_len=1024, size=1024 fake=0 [ 314.847449][ T6789] EXT4-fs error (device loop4): ext4_readdir:260: inode #11: block 18: comm syz-executor: path /58/file0/lost+found: bad entry in directory: inode out of bounds - offset=0, inode=256, rec_len=1024, size=1024 fake=0 [ 314.900979][ T6789] EXT4-fs error (device loop4): ext4_empty_dir:3131: inode #11: block 18: comm syz-executor: bad entry in directory: inode out of bounds - offset=4096, inode=256, rec_len=1024, size=1024 fake=0 [ 314.976174][ T6789] EXT4-fs error (device loop4): ext4_readdir:260: inode #11: block 18: comm syz-executor: path /58/file0/lost+found: bad entry in directory: inode out of bounds - offset=0, inode=256, rec_len=1024, size=1024 fake=0 [ 315.119289][ T6789] EXT4-fs error (device loop4): ext4_empty_dir:3131: inode #11: block 18: comm syz-executor: bad entry in directory: inode out of bounds - offset=4096, inode=256, rec_len=1024, size=1024 fake=0 [ 315.180749][ T7911] loop3: detected capacity change from 0 to 512 [ 315.199450][ T6789] EXT4-fs error (device loop4): ext4_readdir:260: inode #11: block 18: comm syz-executor: path /58/file0/lost+found: bad entry in directory: inode out of bounds - offset=0, inode=256, rec_len=1024, size=1024 fake=0 [ 315.238744][ T7911] EXT4-fs error (device loop3): ext4_orphan_get:1396: inode #15: comm syz.3.1276: casefold flag without casefold feature [ 315.252097][ T6789] EXT4-fs error (device loop4): ext4_empty_dir:3131: inode #11: block 18: comm syz-executor: bad entry in directory: inode out of bounds - offset=4096, inode=256, rec_len=1024, size=1024 fake=0 [ 315.307352][ T7892] chnl_net:caif_netlink_parms(): no params data found [ 315.406924][ T7911] EXT4-fs error (device loop3): ext4_xattr_inode_iget:404: inode #12: comm syz.3.1276: missing EA_INODE flag [ 315.473306][ T7911] EXT4-fs error (device loop3): ext4_xattr_inode_iget:409: comm syz.3.1276: error while reading EA inode 12 err=-117 [ 315.540736][ T7911] EXT4-fs (loop3): 1 orphan inode deleted [ 315.567993][ T7911] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 315.758791][ T7892] bridge0: port 1(bridge_slave_0) entered blocking state [ 315.759683][ T6825] EXT4-fs (loop3): unmounting filesystem. [ 315.774087][ T7892] bridge0: port 1(bridge_slave_0) entered disabled state [ 315.791934][ T7892] device bridge_slave_0 entered promiscuous mode [ 315.868279][ T7892] bridge0: port 2(bridge_slave_1) entered blocking state [ 315.875423][ T7892] bridge0: port 2(bridge_slave_1) entered disabled state [ 315.925408][ T7892] device bridge_slave_1 entered promiscuous mode [ 316.144519][ T7934] loop2: detected capacity change from 0 to 8192 [ 316.180495][ T7934] FAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 316.256371][ T3629] device hsr_slave_0 left promiscuous mode [ 316.284450][ T3629] device hsr_slave_1 left promiscuous mode [ 316.338128][ T6789] EXT4-fs (loop4): unmounting filesystem. [ 316.389003][ T3629] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 316.402208][ T3629] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 316.465055][ T3629] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 316.489112][ T3629] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 316.498370][ T3570] Bluetooth: hci2: command tx timeout [ 316.559141][ T3629] device bridge_slave_1 left promiscuous mode [ 316.565530][ T3629] bridge0: port 2(bridge_slave_1) entered disabled state [ 316.613315][ T3629] device bridge_slave_0 left promiscuous mode [ 316.638609][ T3629] bridge0: port 1(bridge_slave_0) entered disabled state [ 316.732430][ T3629] device veth1_macvtap left promiscuous mode [ 316.751217][ T3629] device veth0_macvtap left promiscuous mode [ 316.766081][ T3629] device veth1_vlan left promiscuous mode [ 316.771988][ T3629] device veth0_vlan left promiscuous mode [ 316.923949][ T7962] loop3: detected capacity change from 0 to 512 [ 316.949966][ T7962] EXT4-fs: Ignoring removed mblk_io_submit option [ 316.975234][ T7962] EXT4-fs (loop3): mounting ext3 file system using the ext4 subsystem [ 317.021265][ T7962] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=b016c118, mo2=0002] [ 317.049643][ T1255] ieee802154 phy0 wpan0: encryption failed: -22 [ 317.056038][ T1255] ieee802154 phy1 wpan1: encryption failed: -22 [ 317.099398][ T7962] System zones: 1-12 [ 317.135853][ T7962] EXT4-fs error (device loop3): ext4_xattr_ibody_find:2213: inode #15: comm syz.3.1297: corrupted in-inode xattr [ 317.151339][ T3569] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 317.165958][ T3569] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 317.172459][ T7962] EXT4-fs error (device loop3): ext4_orphan_get:1401: comm syz.3.1297: couldn't read orphan inode 15 (err -117) [ 317.175109][ T3569] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 317.215952][ T3569] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 317.226025][ T3569] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 317.236188][ T3569] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 317.243391][ T7962] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 317.285408][ T7966] loop2: detected capacity change from 0 to 8192 [ 317.303195][ T7966] FAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 317.432821][ T7962] loop3: detected capacity change from 512 to 64 [ 317.542428][ T7962] EXT4-fs warning (device loop3): ext4_end_bio:347: I/O error 10 writing to inode 13 starting block 36) [ 317.583052][ T7962] buffer_io_error: 10 callbacks suppressed [ 317.583073][ T7962] Buffer I/O error on device loop3, logical block 36 [ 317.595713][ T7962] Buffer I/O error on device loop3, logical block 37 [ 317.614402][ T7962] Buffer I/O error on device loop3, logical block 38 [ 317.621156][ T7962] Buffer I/O error on device loop3, logical block 39 [ 317.627871][ T7962] Buffer I/O error on device loop3, logical block 40 [ 317.634614][ T7962] Buffer I/O error on device loop3, logical block 41 [ 317.686152][ T7962] Buffer I/O error on device loop3, logical block 42 [ 317.692904][ T7962] Buffer I/O error on device loop3, logical block 43 [ 317.699617][ T7962] Buffer I/O error on device loop3, logical block 44 [ 317.706323][ T7962] Buffer I/O error on device loop3, logical block 45 [ 317.858465][ T6825] EXT4-fs error (device loop3): ext4_readdir:260: inode #11: block 18: comm syz-executor: path /59/file0/lost+found: bad entry in directory: inode out of bounds - offset=0, inode=256, rec_len=1024, size=1024 fake=0 [ 317.914578][ T6825] EXT4-fs error (device loop3): ext4_empty_dir:3131: inode #11: block 18: comm syz-executor: bad entry in directory: inode out of bounds - offset=4096, inode=256, rec_len=1024, size=1024 fake=0 [ 317.946740][ T6297] bio_check_eod: 756 callbacks suppressed [ 317.946761][ T6297] syz.0.733: attempt to access beyond end of device [ 317.946761][ T6297] loop0: rw=524288, sector=57344, nr_sectors = 8 limit=40427 [ 317.974893][ T6825] EXT4-fs error (device loop3): ext4_readdir:260: inode #11: block 18: comm syz-executor: path /59/file0/lost+found: bad entry in directory: inode out of bounds - offset=0, inode=256, rec_len=1024, size=1024 fake=0 [ 318.004765][ T6297] syz.0.733: attempt to access beyond end of device [ 318.004765][ T6297] loop0: rw=0, sector=57344, nr_sectors = 8 limit=40427 [ 318.028612][ T6297] syz.0.733: attempt to access beyond end of device [ 318.028612][ T6297] loop0: rw=524288, sector=57344, nr_sectors = 8 limit=40427 [ 318.030550][ T6825] EXT4-fs error (device loop3): ext4_empty_dir:3131: inode #11: block 18: comm syz-executor: bad entry in directory: inode out of bounds - offset=4096, inode=256, rec_len=1024, size=1024 fake=0 [ 318.075290][ T6825] EXT4-fs error (device loop3): ext4_readdir:260: inode #11: block 18: comm syz-executor: path /59/file0/lost+found: bad entry in directory: inode out of bounds - offset=0, inode=256, rec_len=1024, size=1024 fake=0 [ 318.098021][ T6825] EXT4-fs error (device loop3): ext4_empty_dir:3131: inode #11: block 18: comm syz-executor: bad entry in directory: inode out of bounds - offset=4096, inode=256, rec_len=1024, size=1024 fake=0 [ 318.119173][ T6297] syz.0.733: attempt to access beyond end of device [ 318.119173][ T6297] loop0: rw=0, sector=57344, nr_sectors = 8 limit=40427 [ 318.139033][ T6297] syz.0.733: attempt to access beyond end of device [ 318.139033][ T6297] loop0: rw=524288, sector=57344, nr_sectors = 8 limit=40427 [ 318.159195][ T6825] EXT4-fs error (device loop3): ext4_readdir:260: inode #11: block 18: comm syz-executor: path /59/file0/lost+found: bad entry in directory: inode out of bounds - offset=0, inode=256, rec_len=1024, size=1024 fake=0 [ 318.159553][ T6297] syz.0.733: attempt to access beyond end of device [ 318.159553][ T6297] loop0: rw=0, sector=57344, nr_sectors = 8 limit=40427 [ 318.192829][ T6825] EXT4-fs error (device loop3): ext4_empty_dir:3131: inode #11: block 18: comm syz-executor: bad entry in directory: inode out of bounds - offset=4096, inode=256, rec_len=1024, size=1024 fake=0 [ 318.203208][ T6297] syz.0.733: attempt to access beyond end of device [ 318.203208][ T6297] loop0: rw=524288, sector=57344, nr_sectors = 8 limit=40427 [ 318.228224][ T6297] syz.0.733: attempt to access beyond end of device [ 318.228224][ T6297] loop0: rw=0, sector=57344, nr_sectors = 8 limit=40427 [ 318.246848][ T6297] syz.0.733: attempt to access beyond end of device [ 318.246848][ T6297] loop0: rw=524288, sector=57344, nr_sectors = 8 limit=40427 [ 318.261842][ T6825] EXT4-fs error (device loop3): ext4_readdir:260: inode #11: block 18: comm syz-executor: path /59/file0/lost+found: bad entry in directory: inode out of bounds - offset=0, inode=256, rec_len=1024, size=1024 fake=0 [ 318.265043][ T6297] syz.0.733: attempt to access beyond end of device [ 318.265043][ T6297] loop0: rw=0, sector=57344, nr_sectors = 8 limit=40427 [ 318.287436][ T6825] EXT4-fs error (device loop3): ext4_empty_dir:3131: inode #11: block 18: comm syz-executor: bad entry in directory: inode out of bounds - offset=4096, inode=256, rec_len=1024, size=1024 fake=0 [ 318.575702][ T3569] Bluetooth: hci2: command tx timeout [ 318.648012][ T3629] team0 (unregistering): Port device team_slave_1 removed [ 318.732133][ T3629] team0 (unregistering): Port device team_slave_0 removed [ 318.855157][ T3629] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 318.913843][ T3629] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 319.291025][ T3569] Bluetooth: hci4: command tx timeout [ 319.694736][ T3629] bond0 (unregistering): Released all slaves [ 319.968405][ T7892] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 320.002092][ T7892] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 320.104561][ T6825] EXT4-fs (loop3): unmounting filesystem. [ 320.132623][ T7892] team0: Port device team_slave_0 added [ 320.207524][ T7892] team0: Port device team_slave_1 added [ 320.348196][ T7892] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 320.355202][ T7892] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 320.449707][ T7892] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 320.537381][ T7892] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 320.544465][ T7892] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 320.645880][ T3569] Bluetooth: hci2: command tx timeout [ 320.670907][ T3570] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 320.681050][ T3570] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 320.683672][ T7892] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 320.702788][ T3570] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 320.712388][ T3570] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 320.722069][ T3570] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 320.729552][ T3570] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 320.944488][ T7892] device hsr_slave_0 entered promiscuous mode [ 320.967448][ T7892] device hsr_slave_1 entered promiscuous mode [ 321.006021][ T7968] chnl_net:caif_netlink_parms(): no params data found [ 321.206928][ T7989] loop2: detected capacity change from 0 to 32768 [ 321.291234][ T26] audit: type=1804 audit(1719995868.640:4213): pid=7989 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.1309" name="/newroot/172/file2/bus" dev="loop2" ino=8 res=1 errno=0 [ 321.369888][ T3569] Bluetooth: hci4: command tx timeout [ 321.460000][ T7968] bridge0: port 1(bridge_slave_0) entered blocking state [ 321.495830][ T7968] bridge0: port 1(bridge_slave_0) entered disabled state [ 321.504804][ T7968] device bridge_slave_0 entered promiscuous mode [ 321.582013][ T7968] bridge0: port 2(bridge_slave_1) entered blocking state [ 321.598062][ T7968] bridge0: port 2(bridge_slave_1) entered disabled state [ 321.626001][ T7968] device bridge_slave_1 entered promiscuous mode [ 321.862818][ T7968] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 321.892226][ T7968] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 321.952934][ T34] wlan1: BSS 50:50:50:50:50:50 switches to unsupported channel (0 MHz), disconnecting [ 322.034042][ T34] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 322.053832][ T34] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 322.117102][ T8017] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 322.126070][ T8016] loop2: detected capacity change from 0 to 512 [ 322.250521][ T8016] EXT4-fs (loop2): 1 orphan inode deleted [ 322.252770][ T7968] team0: Port device team_slave_0 added [ 322.265129][ T8016] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 322.303731][ T8016] ext4 filesystem being mounted at /175/file1 supports timestamps until 2038 (0x7fffffff) [ 322.314898][ T7992] chnl_net:caif_netlink_parms(): no params data found [ 322.472841][ T7968] team0: Port device team_slave_1 added [ 322.727587][ T3569] Bluetooth: hci2: command tx timeout [ 322.808479][ T3569] Bluetooth: hci3: command tx timeout [ 323.078522][ T6297] bio_check_eod: 1034 callbacks suppressed [ 323.078543][ T6297] syz.0.733: attempt to access beyond end of device [ 323.078543][ T6297] loop0: rw=524288, sector=57344, nr_sectors = 8 limit=40427 [ 323.139834][ T6297] syz.0.733: attempt to access beyond end of device [ 323.139834][ T6297] loop0: rw=0, sector=57344, nr_sectors = 8 limit=40427 [ 323.197954][ T6297] syz.0.733: attempt to access beyond end of device [ 323.197954][ T6297] loop0: rw=524288, sector=57344, nr_sectors = 8 limit=40427 [ 323.241959][ T6297] syz.0.733: attempt to access beyond end of device [ 323.241959][ T6297] loop0: rw=0, sector=57344, nr_sectors = 8 limit=40427 [ 323.331544][ T5930] EXT4-fs (loop2): unmounting filesystem. [ 323.377261][ T6297] syz.0.733: attempt to access beyond end of device [ 323.377261][ T6297] loop0: rw=524288, sector=57344, nr_sectors = 8 limit=40427 [ 323.430359][ T7968] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 323.446147][ T3569] Bluetooth: hci4: command tx timeout [ 323.453314][ T6297] syz.0.733: attempt to access beyond end of device [ 323.453314][ T6297] loop0: rw=0, sector=57344, nr_sectors = 8 limit=40427 [ 323.467194][ T7968] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 323.467230][ T7968] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 323.560517][ T6297] syz.0.733: attempt to access beyond end of device [ 323.560517][ T6297] loop0: rw=524288, sector=57344, nr_sectors = 8 limit=40427 [ 323.577525][ T6297] syz.0.733: attempt to access beyond end of device [ 323.577525][ T6297] loop0: rw=0, sector=57344, nr_sectors = 8 limit=40427 [ 323.594515][ T6297] syz.0.733: attempt to access beyond end of device [ 323.594515][ T6297] loop0: rw=524288, sector=57344, nr_sectors = 8 limit=40427 [ 323.616669][ T6297] syz.0.733: attempt to access beyond end of device [ 323.616669][ T6297] loop0: rw=0, sector=57344, nr_sectors = 8 limit=40427 [ 323.687366][ T7968] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 323.694622][ T7968] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 323.755697][ T7968] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 323.787748][ T7992] bridge0: port 1(bridge_slave_0) entered blocking state [ 323.794897][ T7992] bridge0: port 1(bridge_slave_0) entered disabled state [ 323.823786][ T7992] device bridge_slave_0 entered promiscuous mode [ 323.872211][ T7992] bridge0: port 2(bridge_slave_1) entered blocking state [ 323.891174][ T7992] bridge0: port 2(bridge_slave_1) entered disabled state [ 323.926150][ T7992] device bridge_slave_1 entered promiscuous mode [ 324.134625][ T7968] device hsr_slave_0 entered promiscuous mode [ 324.166144][ T7968] device hsr_slave_1 entered promiscuous mode [ 324.191030][ T7968] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 324.207922][ T7968] Cannot create hsr debugfs directory [ 324.225241][ T7992] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 324.299505][ T7992] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 324.395184][ T7892] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 324.457274][ T7992] team0: Port device team_slave_0 added [ 324.484888][ T7892] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 324.538311][ T7992] team0: Port device team_slave_1 added [ 324.606745][ T7892] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 324.619960][ T7892] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 324.730507][ T7992] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 324.742063][ T7992] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 324.768069][ C1] vkms_vblank_simulate: vblank timer overrun [ 324.804148][ T7992] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 324.817552][ T7992] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 324.824626][ T7992] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 324.851487][ T7992] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 324.905869][ T3569] Bluetooth: hci3: command tx timeout [ 325.525825][ T3560] Bluetooth: hci4: command tx timeout [ 325.819420][ T7992] device hsr_slave_0 entered promiscuous mode [ 325.856702][ T7992] device hsr_slave_1 entered promiscuous mode [ 325.865565][ T7992] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 325.882491][ T7992] Cannot create hsr debugfs directory [ 325.997263][ T3629] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 326.148731][ T7968] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 326.226561][ T3629] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 326.308997][ T7968] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 326.368528][ T8053] loop2: detected capacity change from 0 to 40427 [ 326.372703][ T3629] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 326.378028][ T8053] F2FS-fs (loop2): Invalid log_blocksize (268), supports only 12 [ 326.402826][ T8053] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock [ 326.450139][ T8053] F2FS-fs (loop2): Found nat_bits in checkpoint [ 326.454232][ T7968] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 326.496406][ T7892] 8021q: adding VLAN 0 to HW filter on device bond0 [ 326.518883][ T8053] F2FS-fs (loop2): f2fs_check_nid_range: out-of-range nid=1, run fsck to fix. [ 326.533295][ T3629] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 326.580845][ T8053] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0 [ 326.595753][ T8053] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5 [ 326.615428][ T7968] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 326.636790][ T7892] 8021q: adding VLAN 0 to HW filter on device team0 [ 326.859387][ T3602] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 326.868174][ T3602] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 326.902421][ T5542] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 326.911471][ T5542] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 326.921619][ T5542] bridge0: port 1(bridge_slave_0) entered blocking state [ 326.928783][ T5542] bridge0: port 1(bridge_slave_0) entered forwarding state [ 327.088502][ T3560] Bluetooth: hci3: command tx timeout [ 327.386242][ T3602] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 327.394360][ T3602] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 327.444443][ T3602] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 327.466611][ T3602] bridge0: port 2(bridge_slave_1) entered blocking state [ 327.473903][ T3602] bridge0: port 2(bridge_slave_1) entered forwarding state [ 327.516268][ T3602] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 327.679526][ T22] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 327.690341][ T22] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 327.709049][ T22] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 327.730008][ T22] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 327.739258][ T22] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 327.748392][ T22] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 327.757564][ T22] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 327.831750][ T22] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 327.856815][ T22] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 327.865454][ T22] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 327.908160][ T7892] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 328.087203][ T6297] bio_check_eod: 602 callbacks suppressed [ 328.087222][ T6297] syz.0.733: attempt to access beyond end of device [ 328.087222][ T6297] loop0: rw=524288, sector=57344, nr_sectors = 8 limit=40427 [ 328.142498][ T6297] syz.0.733: attempt to access beyond end of device [ 328.142498][ T6297] loop0: rw=0, sector=57344, nr_sectors = 8 limit=40427 [ 328.204811][ T7968] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 328.213135][ T6297] syz.0.733: attempt to access beyond end of device [ 328.213135][ T6297] loop0: rw=524288, sector=57344, nr_sectors = 8 limit=40427 [ 328.236612][ T6297] syz.0.733: attempt to access beyond end of device [ 328.236612][ T6297] loop0: rw=0, sector=57344, nr_sectors = 8 limit=40427 [ 328.307201][ T6297] syz.0.733: attempt to access beyond end of device [ 328.307201][ T6297] loop0: rw=524288, sector=57344, nr_sectors = 8 limit=40427 [ 328.325554][ T6297] syz.0.733: attempt to access beyond end of device [ 328.325554][ T6297] loop0: rw=0, sector=57344, nr_sectors = 8 limit=40427 [ 328.342262][ T6297] syz.0.733: attempt to access beyond end of device [ 328.342262][ T6297] loop0: rw=524288, sector=57344, nr_sectors = 8 limit=40427 [ 328.357167][ T6297] syz.0.733: attempt to access beyond end of device [ 328.357167][ T6297] loop0: rw=0, sector=57344, nr_sectors = 8 limit=40427 [ 328.373370][ T6297] syz.0.733: attempt to access beyond end of device [ 328.373370][ T6297] loop0: rw=524288, sector=57344, nr_sectors = 8 limit=40427 [ 328.389790][ T6297] syz.0.733: attempt to access beyond end of device [ 328.389790][ T6297] loop0: rw=0, sector=57344, nr_sectors = 8 limit=40427 [ 328.413902][ T7968] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 328.446464][ T152] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 328.454034][ T152] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 328.532223][ T7968] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 328.623491][ T7968] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 328.740019][ T7892] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 328.865811][ T152] usb 3-1: new high-speed USB device number 11 using dummy_hcd [ 328.870289][ T22] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 328.888635][ T22] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 328.992966][ T7892] device veth0_vlan entered promiscuous mode [ 329.013227][ T22] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 329.027554][ T22] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 329.076142][ T7892] device veth1_vlan entered promiscuous mode [ 329.133900][ T3569] Bluetooth: hci3: command tx timeout [ 329.144590][ T22] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 329.153271][ T22] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 329.166878][ T152] usb 3-1: Using ep0 maxpacket: 16 [ 329.279449][ T8087] xt_NFQUEUE: number of total queues is 0 [ 329.388457][ T26] audit: type=1326 audit(1719995876.740:4214): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8080 comm="syz.2.1335" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f55fef75b99 code=0x7ffc0000 [ 329.581788][ T26] audit: type=1326 audit(1719995876.770:4215): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8080 comm="syz.2.1335" exe="/root/syz-executor" sig=0 arch=c000003e syscall=280 compat=0 ip=0x7f55fef75b99 code=0x7ffc0000 [ 329.604263][ C1] vkms_vblank_simulate: vblank timer overrun [ 329.974449][ T26] audit: type=1326 audit(1719995876.770:4216): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8080 comm="syz.2.1335" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f55fef75b99 code=0x7ffc0000 [ 329.998020][ T26] audit: type=1326 audit(1719995876.770:4217): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8080 comm="syz.2.1335" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f55fef75b99 code=0x7ffc0000 [ 330.171758][ T7892] device veth0_macvtap entered promiscuous mode [ 330.193292][ T3601] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 330.205228][ T3601] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 330.226448][ T7892] device veth1_macvtap entered promiscuous mode [ 330.311198][ T3601] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 330.321054][ T3601] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 330.359226][ T7968] 8021q: adding VLAN 0 to HW filter on device bond0 [ 330.381604][ T7992] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 330.472223][ T7892] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 330.483412][ T7892] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 330.505308][ T7892] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 330.517735][ T7892] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 330.536911][ T7892] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 330.555483][ T7892] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 330.566771][ T7892] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 330.585785][ T7892] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 330.604018][ T7892] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 330.614547][ T7892] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 330.627951][ T7892] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 330.640149][ T7992] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 330.660589][ T3932] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 330.676843][ T3932] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 330.821249][ T7892] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 330.840756][ T7892] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 330.859587][ T7892] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 330.881933][ T7892] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 330.901901][ T7892] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 330.914952][ T7892] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 330.932038][ T7892] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 330.953288][ T7892] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 330.964569][ T7892] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 330.975421][ T7892] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 330.987272][ T7892] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 330.994734][ T7992] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 331.018056][ T3604] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 331.031531][ T3604] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 331.043529][ T7892] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 331.053654][ T7892] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 331.063043][ T7892] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 331.072897][ T7892] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 331.091184][ T7992] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 331.116593][ T3928] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 331.124718][ T3928] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 331.168954][ T7968] 8021q: adding VLAN 0 to HW filter on device team0 [ 331.293755][ T3932] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 331.310524][ T3932] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 331.327034][ T3932] bridge0: port 1(bridge_slave_0) entered blocking state [ 331.334189][ T3932] bridge0: port 1(bridge_slave_0) entered forwarding state [ 331.395192][ T3929] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 331.414862][ T3929] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 331.433266][ T3929] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 331.444270][ T3929] bridge0: port 2(bridge_slave_1) entered blocking state [ 331.451443][ T3929] bridge0: port 2(bridge_slave_1) entered forwarding state [ 331.469368][ T3929] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 331.484613][ T3929] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 331.497335][ T3929] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 331.517054][ T3929] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 331.655561][ T3929] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 331.664529][ T3929] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 331.690260][ T3929] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 331.706659][ T3929] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 331.715326][ T3929] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 331.795209][ T7968] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 331.820468][ T7968] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 331.955503][ T3929] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 331.987702][ T3929] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 332.631180][ T4347] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 332.654433][ T4347] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 332.723389][ T3629] device hsr_slave_0 left promiscuous mode [ 332.739355][ T3629] device hsr_slave_1 left promiscuous mode [ 332.764243][ T3629] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 332.789249][ T3629] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 332.803020][ T3629] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 332.811648][ T3629] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 332.821350][ T3629] device bridge_slave_1 left promiscuous mode [ 332.828640][ T3629] bridge0: port 2(bridge_slave_1) entered disabled state [ 332.840369][ T3629] device bridge_slave_0 left promiscuous mode [ 332.850431][ T3629] bridge0: port 1(bridge_slave_0) entered disabled state [ 332.871951][ T3629] device hsr_slave_0 left promiscuous mode [ 332.890721][ T3629] device hsr_slave_1 left promiscuous mode [ 332.904466][ T3629] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 332.914293][ T3629] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 332.934697][ T3629] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 332.945750][ T3629] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 332.953767][ T3629] device bridge_slave_1 left promiscuous mode [ 332.970255][ T3629] bridge0: port 2(bridge_slave_1) entered disabled state [ 332.984047][ T3629] device bridge_slave_0 left promiscuous mode [ 333.000693][ T3629] bridge0: port 1(bridge_slave_0) entered disabled state [ 333.098099][ T6297] bio_check_eod: 1014 callbacks suppressed [ 333.098183][ T6297] syz.0.733: attempt to access beyond end of device [ 333.098183][ T6297] loop0: rw=524288, sector=57344, nr_sectors = 8 limit=40427 [ 333.119124][ T3629] device veth1_macvtap left promiscuous mode [ 333.119338][ T6297] syz.0.733: attempt to access beyond end of device [ 333.119338][ T6297] loop0: rw=0, sector=57344, nr_sectors = 8 limit=40427 [ 333.125414][ T3629] device veth0_macvtap left promiscuous mode [ 333.142978][ T6297] syz.0.733: attempt to access beyond end of device [ 333.142978][ T6297] loop0: rw=524288, sector=57344, nr_sectors = 8 limit=40427 [ 333.157499][ T3629] device veth1_vlan left promiscuous mode [ 333.162930][ T6297] syz.0.733: attempt to access beyond end of device [ 333.162930][ T6297] loop0: rw=0, sector=57344, nr_sectors = 8 limit=40427 [ 333.164492][ T3629] device veth0_vlan left promiscuous mode [ 333.181520][ T6297] syz.0.733: attempt to access beyond end of device [ 333.181520][ T6297] loop0: rw=524288, sector=57344, nr_sectors = 8 limit=40427 [ 333.198827][ T6297] syz.0.733: attempt to access beyond end of device [ 333.198827][ T6297] loop0: rw=0, sector=57344, nr_sectors = 8 limit=40427 [ 333.215381][ T6297] syz.0.733: attempt to access beyond end of device [ 333.215381][ T6297] loop0: rw=524288, sector=57344, nr_sectors = 8 limit=40427 [ 333.229945][ T3629] device veth1_macvtap left promiscuous mode [ 333.230192][ T6297] syz.0.733: attempt to access beyond end of device [ 333.230192][ T6297] loop0: rw=0, sector=57344, nr_sectors = 8 limit=40427 [ 333.242705][ T3629] device veth0_macvtap left promiscuous mode [ 333.252479][ T6297] syz.0.733: attempt to access beyond end of device [ 333.252479][ T6297] loop0: rw=524288, sector=57344, nr_sectors = 8 limit=40427 [ 333.269519][ T3629] device veth1_vlan left promiscuous mode [ 333.269643][ T3629] device veth0_vlan left promiscuous mode [ 333.278331][ T6297] syz.0.733: attempt to access beyond end of device [ 333.278331][ T6297] loop0: rw=0, sector=57344, nr_sectors = 8 limit=40427 [ 334.223808][ T3629] team0 (unregistering): Port device team_slave_1 removed [ 334.281525][ T3629] team0 (unregistering): Port device team_slave_0 removed [ 334.288978][ T152] usb 3-1: unable to get BOS descriptor or descriptor too short [ 334.310913][ T152] usb 3-1: no configurations [ 334.315620][ T152] usb 3-1: can't read configurations, error -22 [ 334.356961][ T3629] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 334.442298][ T3629] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 334.495815][ T152] usb 3-1: new high-speed USB device number 12 using dummy_hcd [ 334.691743][ T152] usb 3-1: device descriptor read/64, error -32 [ 334.825887][ T152] usb usb3-port1: attempt power cycle [ 335.234899][ T3629] bond0 (unregistering): Released all slaves [ 335.245742][ T152] usb 3-1: new high-speed USB device number 13 using dummy_hcd [ 335.335849][ T152] usb 3-1: device descriptor read/8, error -32 [ 335.616037][ T152] usb 3-1: new high-speed USB device number 14 using dummy_hcd [ 335.696969][ T152] usb 3-1: device descriptor read/8, error -32 [ 335.825942][ T152] usb usb3-port1: unable to enumerate USB device [ 335.912452][ T8114] loop2: detected capacity change from 0 to 512 [ 336.017117][ T8114] EXT4-fs (loop2): 1 orphan inode deleted [ 336.022921][ T8114] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 336.037647][ T8114] ext4 filesystem being mounted at /187/file1 supports timestamps until 2038 (0x7fffffff) [ 336.399195][ T3629] team0 (unregistering): Port device team_slave_1 removed [ 336.910102][ T3629] team0 (unregistering): Port device team_slave_0 removed [ 337.103046][ T5930] EXT4-fs (loop2): unmounting filesystem. [ 337.116787][ T3629] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 337.244765][ T3629] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 337.358345][ T8124] xt_NFQUEUE: number of total queues is 0 [ 338.120126][ T6297] bio_check_eod: 1458 callbacks suppressed [ 338.120150][ T6297] syz.0.733: attempt to access beyond end of device [ 338.120150][ T6297] loop0: rw=524288, sector=57344, nr_sectors = 8 limit=40427 [ 338.162770][ T6297] syz.0.733: attempt to access beyond end of device [ 338.162770][ T6297] loop0: rw=0, sector=57344, nr_sectors = 8 limit=40427 [ 338.180029][ T6297] syz.0.733: attempt to access beyond end of device [ 338.180029][ T6297] loop0: rw=524288, sector=57344, nr_sectors = 8 limit=40427 [ 338.195286][ T6297] syz.0.733: attempt to access beyond end of device [ 338.195286][ T6297] loop0: rw=0, sector=57344, nr_sectors = 8 limit=40427 [ 338.213503][ T6297] syz.0.733: attempt to access beyond end of device [ 338.213503][ T6297] loop0: rw=524288, sector=57344, nr_sectors = 8 limit=40427 [ 338.239645][ T6297] syz.0.733: attempt to access beyond end of device [ 338.239645][ T6297] loop0: rw=0, sector=57344, nr_sectors = 8 limit=40427 [ 338.263441][ T6297] syz.0.733: attempt to access beyond end of device [ 338.263441][ T6297] loop0: rw=524288, sector=57344, nr_sectors = 8 limit=40427 [ 338.292950][ T6297] syz.0.733: attempt to access beyond end of device [ 338.292950][ T6297] loop0: rw=0, sector=57344, nr_sectors = 8 limit=40427 [ 338.310548][ T6297] syz.0.733: attempt to access beyond end of device [ 338.310548][ T6297] loop0: rw=524288, sector=57344, nr_sectors = 8 limit=40427 [ 338.329392][ T6297] syz.0.733: attempt to access beyond end of device [ 338.329392][ T6297] loop0: rw=0, sector=57344, nr_sectors = 8 limit=40427 [ 338.536696][ T8134] loop2: detected capacity change from 0 to 2048 [ 338.558980][ T8134] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 339.067165][ T3629] bond0 (unregistering): Released all slaves [ 339.194906][ T14] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 339.259014][ T4344] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 339.286154][ T4344] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 339.344904][ T3932] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 339.459849][ T7992] 8021q: adding VLAN 0 to HW filter on device bond0 [ 339.505192][ T935] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 339.536587][ T935] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 339.548749][ T7992] 8021q: adding VLAN 0 to HW filter on device team0 [ 339.562456][ T935] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 339.577009][ T935] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 339.596405][ T935] bridge0: port 1(bridge_slave_0) entered blocking state [ 339.603648][ T935] bridge0: port 1(bridge_slave_0) entered forwarding state [ 339.622010][ T8140] loop2: detected capacity change from 0 to 4096 [ 339.654728][ T4214] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 339.666646][ T4214] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 339.674891][ T8140] ntfs3: loop2: Different NTFS' sector size (2048) and media sector size (512) [ 339.685802][ T4214] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 339.694433][ T4214] bridge0: port 2(bridge_slave_1) entered blocking state [ 339.701642][ T4214] bridge0: port 2(bridge_slave_1) entered forwarding state [ 339.718933][ T4214] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 339.727617][ T4214] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 339.741131][ T7968] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 339.765476][ T8140] ntfs3: loop2: Mark volume as dirty due to NTFS errors [ 339.789277][ T935] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 339.798198][ T3602] usb 2-1: new high-speed USB device number 12 using dummy_hcd [ 339.822497][ T22] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 339.862000][ T4214] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 339.879780][ T4214] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 339.905848][ T3932] usb 1-1: new high-speed USB device number 9 using dummy_hcd [ 339.926434][ T22] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 339.948236][ T22] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 339.967663][ T51] ntfs3: loop2: ntfs3_write_inode r=5 failed, -22. [ 339.968152][ T22] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 340.044219][ T4214] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 340.055721][ T3602] usb 2-1: Using ep0 maxpacket: 8 [ 340.072270][ T4214] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 340.097231][ T5930] ntfs3: loop2: ntfs_evict_inode r=5 failed, -22. [ 340.102058][ T7992] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 340.133182][ T7992] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 340.162424][ T22] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 340.173287][ T22] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 340.191669][ T3932] usb 1-1: Using ep0 maxpacket: 16 [ 340.346234][ T3602] usb 2-1: New USB device found, idVendor=046d, idProduct=08dd, bcdDevice=ff.f4 [ 340.354146][ T26] audit: type=1326 audit(1719995887.700:4218): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8141 comm="syz.0.1352" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f544d575b99 code=0x7ffc0000 [ 340.355406][ T3602] usb 2-1: New USB device strings: Mfr=8, Product=2, SerialNumber=3 [ 340.409480][ T3602] usb 2-1: Product: syz [ 340.413724][ T3602] usb 2-1: Manufacturer: syz [ 340.435898][ T3602] usb 2-1: SerialNumber: syz [ 340.438852][ T26] audit: type=1326 audit(1719995887.740:4219): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8141 comm="syz.0.1352" exe="/root/syz-executor" sig=0 arch=c000003e syscall=280 compat=0 ip=0x7f544d575b99 code=0x7ffc0000 [ 340.457138][ T3602] usb 2-1: config 0 descriptor?? [ 340.463329][ T3932] usb 1-1: unable to get BOS descriptor or descriptor too short [ 340.490256][ T3932] usb 1-1: no configurations [ 340.494903][ T3932] usb 1-1: can't read configurations, error -22 [ 340.518560][ T3602] gspca_main: gspca_zc3xx-2.14.0 probing 046d:08dd [ 340.543282][ T26] audit: type=1326 audit(1719995887.740:4220): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8141 comm="syz.0.1352" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f544d575b99 code=0x7ffc0000 [ 340.589423][ T3601] usb 3-1: new high-speed USB device number 15 using dummy_hcd [ 340.615726][ T26] audit: type=1326 audit(1719995887.740:4221): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8141 comm="syz.0.1352" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f544d575b99 code=0x7ffc0000 [ 340.795539][ T5542] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 340.824974][ T5542] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 340.845988][ T3601] usb 3-1: Using ep0 maxpacket: 8 [ 340.880335][ T22] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 340.889739][ T22] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 340.904473][ T7968] device veth0_vlan entered promiscuous mode [ 340.914296][ T7992] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 340.924521][ T5542] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 340.941386][ T5542] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 340.967678][ T7968] device veth1_vlan entered promiscuous mode [ 340.976161][ T22] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 340.992283][ T3601] usb 3-1: config 0 has an invalid interface number: 1 but max is 0 [ 341.005121][ T22] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 341.012940][ T3601] usb 3-1: config 0 has no interface number 0 [ 341.019339][ T3601] usb 3-1: config 0 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7 [ 341.031415][ T22] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 341.039876][ T3601] usb 3-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22 [ 341.050740][ T3601] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 341.060917][ T3601] usb 3-1: config 0 descriptor?? [ 341.069781][ T3928] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 341.086432][ T3928] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 341.122334][ T8160] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1354'. [ 341.142321][ T3601] iowarrior 3-1:0.1: IOWarrior product=0x1512, serial= interface=1 now attached to iowarrior0 [ 341.175908][ T3602] gspca_zc3xx: reg_w_i err -71 [ 341.180778][ T3602] gspca_zc3xx: probe of 2-1:0.0 failed with error -71 [ 341.197050][ T3929] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 341.206238][ T3602] usb 2-1: USB disconnect, device number 12 [ 341.225916][ T3929] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 341.234371][ T3929] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 341.265944][ T7992] device veth0_vlan entered promiscuous mode [ 341.290496][ T3928] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 341.308858][ T3928] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 341.336010][ T3929] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 341.344994][ T3929] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 341.373591][ T7992] device veth1_vlan entered promiscuous mode [ 341.395846][ T7968] device veth0_macvtap entered promiscuous mode [ 341.434066][ T7968] device veth1_macvtap entered promiscuous mode [ 341.491896][ T7968] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 341.513139][ T7968] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 341.547943][ T7968] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 341.571400][ T7968] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 341.614733][ T8164] xt_NFQUEUE: number of total queues is 0 [ 341.681142][ T7968] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 341.716937][ T7968] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 341.882820][ T7968] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 342.076399][ T7968] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 342.292578][ T7968] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 342.399799][ T935] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 342.420486][ T935] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 342.454694][ T935] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 342.481795][ T935] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 342.497947][ T935] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 342.516527][ T935] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 342.533360][ T7968] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 342.575691][ T7968] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 342.585599][ T7968] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 342.631060][ T7968] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 342.650297][ T7968] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 342.657478][ T8173] loop1: detected capacity change from 0 to 2048 [ 342.672532][ T7968] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 342.684451][ T8173] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 342.693918][ T7968] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 342.715767][ T7968] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 342.740431][ T7968] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 342.766782][ T7992] device veth0_macvtap entered promiscuous mode [ 342.784876][ T3602] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 342.798837][ T3602] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 342.820096][ T3602] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 342.856810][ T7992] device veth1_macvtap entered promiscuous mode [ 342.865602][ T7968] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 342.884487][ T7968] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 342.898142][ T7968] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 342.911741][ T7968] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 342.972886][ T7992] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 342.996885][ T7992] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 343.016859][ T7992] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 343.040172][ T7992] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 343.061514][ T7992] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 343.084555][ T7992] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 343.104495][ T7992] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 343.126093][ T7992] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 343.130819][ T6297] bio_check_eod: 845 callbacks suppressed [ 343.130839][ T6297] syz.0.733: attempt to access beyond end of device [ 343.130839][ T6297] loop0: rw=0, sector=57344, nr_sectors = 8 limit=40427 [ 343.150453][ T7992] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 343.169533][ T6297] syz.0.733: attempt to access beyond end of device [ 343.169533][ T6297] loop0: rw=524288, sector=57344, nr_sectors = 8 limit=40427 [ 343.185135][ T6297] syz.0.733: attempt to access beyond end of device [ 343.185135][ T6297] loop0: rw=0, sector=57344, nr_sectors = 8 limit=40427 [ 343.203390][ T6297] syz.0.733: attempt to access beyond end of device [ 343.203390][ T6297] loop0: rw=524288, sector=57344, nr_sectors = 8 limit=40427 [ 343.215723][ T7992] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 343.221501][ T6297] syz.0.733: attempt to access beyond end of device [ 343.221501][ T6297] loop0: rw=0, sector=57344, nr_sectors = 8 limit=40427 [ 343.260041][ T7992] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 343.264472][ T4214] usb 3-1: USB disconnect, device number 15 [ 343.278528][ T4214] iowarrior 3-1:0.1: I/O-Warror #0 now disconnected [ 343.302197][ T6297] syz.0.733: attempt to access beyond end of device [ 343.302197][ T6297] loop0: rw=524288, sector=57344, nr_sectors = 8 limit=40427 [ 343.334963][ T6297] syz.0.733: attempt to access beyond end of device [ 343.334963][ T6297] loop0: rw=0, sector=57344, nr_sectors = 8 limit=40427 [ 343.343675][ T3929] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 343.352763][ T6297] syz.0.733: attempt to access beyond end of device [ 343.352763][ T6297] loop0: rw=524288, sector=57344, nr_sectors = 8 limit=40427 [ 343.367024][ T8181] program syz.1.1361 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 343.391502][ T3929] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 343.406557][ T6297] syz.0.733: attempt to access beyond end of device [ 343.406557][ T6297] loop0: rw=0, sector=57344, nr_sectors = 8 limit=40427 [ 343.428432][ T7992] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 343.465266][ T7992] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 343.491734][ T6297] syz.0.733: attempt to access beyond end of device [ 343.491734][ T6297] loop0: rw=524288, sector=57344, nr_sectors = 8 limit=40427 [ 343.494054][ T7992] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 343.563726][ T7992] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 343.602280][ T7992] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 343.622599][ T7992] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 343.652643][ T7992] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 343.683538][ T7992] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 343.714351][ T7992] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 343.735075][ T7992] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 343.757049][ T8191] loop2: detected capacity change from 0 to 2048 [ 343.777121][ T7992] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 343.811869][ T3928] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 343.831481][ T3928] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 343.852579][ T8192] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 343.863207][ T7992] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 343.863247][ T7992] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 343.863277][ T7992] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 343.863307][ T7992] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 343.898784][ T4214] usb 1-1: new high-speed USB device number 11 using dummy_hcd [ 343.977736][ T8191] NILFS error (device loop2): nilfs_check_page: bad entry in directory #2: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, name_len=0 [ 344.046072][ T8191] Remounting filesystem read-only [ 344.076419][ T8191] NILFS error (device loop2): nilfs_check_page: bad entry in directory #2: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, name_len=0 [ 344.106228][ T51] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 344.127795][ T51] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 344.145523][ T6767] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 344.145786][ T4214] usb 1-1: Using ep0 maxpacket: 8 [ 344.162564][ T6767] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 344.178960][ T22] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 344.211840][ T22] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 344.251461][ T4103] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 344.292407][ T5930] NILFS (loop2): discard dirty page: offset=0, ino=6 [ 344.296260][ T4103] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 344.315891][ T5930] NILFS (loop2): discard dirty block: blocknr=35, size=1024 [ 344.348108][ T5930] NILFS (loop2): discard dirty block: blocknr=36, size=1024 [ 344.350487][ T3928] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 344.371759][ T9] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 344.372207][ T5930] NILFS (loop2): discard dirty block: blocknr=37, size=1024 [ 344.397950][ T9] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 344.415757][ T5930] NILFS (loop2): discard dirty block: blocknr=38, size=1024 [ 344.423837][ T5930] NILFS (loop2): discard dirty page: offset=4096, ino=6 [ 344.445974][ T5930] NILFS (loop2): discard dirty block: blocknr=39, size=1024 [ 344.454045][ T22] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 344.492316][ T4214] usb 1-1: New USB device found, idVendor=046d, idProduct=08dd, bcdDevice=ff.f4 [ 344.505889][ T5930] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024 [ 344.506593][ T4214] usb 1-1: New USB device strings: Mfr=8, Product=2, SerialNumber=3 [ 344.525794][ T5930] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024 [ 344.534691][ T5930] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024 [ 344.553309][ T4214] usb 1-1: Product: syz [ 344.593620][ T4214] usb 1-1: Manufacturer: syz [ 344.603503][ T4214] usb 1-1: SerialNumber: syz [ 344.628442][ T4214] usb 1-1: config 0 descriptor?? [ 344.646156][ T8187] loop1: detected capacity change from 0 to 32768 [ 344.707769][ T4214] gspca_main: gspca_zc3xx-2.14.0 probing 046d:08dd [ 344.719317][ T8187] BTRFS: device fsid 24c7a497-3402-47dd-bef8-82358f5f30e0 devid 1 transid 8 /dev/loop1 scanned by syz.1.1364 (8187) [ 344.795603][ T8187] BTRFS info (device loop1): first mount of filesystem 24c7a497-3402-47dd-bef8-82358f5f30e0 [ 344.836402][ T8187] BTRFS info (device loop1): using crc32c (crc32c-intel) checksum algorithm [ 344.861083][ T8187] BTRFS info (device loop1): using free space tree [ 344.879481][ T8204] loop2: detected capacity change from 0 to 256 [ 345.310323][ T8226] program syz.4.1372 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 345.446526][ T4214] gspca_zc3xx: reg_w_i err -71 [ 345.451984][ T4214] gspca_zc3xx: probe of 1-1:0.0 failed with error -71 [ 345.465857][ T8187] BTRFS info (device loop1): enabling ssd optimizations [ 345.610161][ T4214] usb 1-1: USB disconnect, device number 11 [ 345.876240][ T26] audit: type=1800 audit(1719995893.220:4222): pid=8187 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.1364" name="file1" dev="loop1" ino=260 res=0 errno=0 [ 346.023534][ T8236] loop4: detected capacity change from 0 to 2048 [ 346.031956][ T7892] BTRFS info (device loop1): last unmount of filesystem 24c7a497-3402-47dd-bef8-82358f5f30e0 [ 346.110185][ T8238] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1375'. [ 346.115837][ T8239] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 346.237636][ T8238] device bridge_slave_1 left promiscuous mode [ 346.275075][ T8238] bridge0: port 2(bridge_slave_1) entered disabled state [ 346.277437][ T8243] NILFS error (device loop4): nilfs_check_page: bad entry in directory #2: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, name_len=0 [ 346.337282][ T8238] bridge3: port 1(bridge_slave_1) entered blocking state [ 346.344577][ T8238] bridge3: port 1(bridge_slave_1) entered disabled state [ 346.353070][ T8238] device bridge_slave_1 entered promiscuous mode [ 346.368863][ T8243] Remounting filesystem read-only [ 346.411651][ T8243] NILFS error (device loop4): nilfs_check_page: bad entry in directory #2: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, name_len=0 [ 346.477660][ T8249] loop2: detected capacity change from 0 to 256 [ 346.514331][ T8249] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0x205ad3fc, utbl_chksum : 0xe619d30d) [ 346.576592][ T7968] NILFS (loop4): discard dirty page: offset=0, ino=6 [ 346.593787][ T7968] NILFS (loop4): discard dirty block: blocknr=35, size=1024 [ 346.635706][ T7968] NILFS (loop4): discard dirty block: blocknr=36, size=1024 [ 346.643059][ T7968] NILFS (loop4): discard dirty block: blocknr=37, size=1024 [ 346.685411][ T7968] NILFS (loop4): discard dirty block: blocknr=38, size=1024 [ 346.707961][ T7968] NILFS (loop4): discard dirty page: offset=4096, ino=6 [ 346.727652][ T7968] NILFS (loop4): discard dirty block: blocknr=39, size=1024 [ 346.735003][ T7968] NILFS (loop4): discard dirty block: blocknr=18446744073709551615, size=1024 [ 346.782117][ T8259] loop2: detected capacity change from 0 to 256 [ 346.797123][ T8261] program syz.0.1385 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 346.807946][ T7968] NILFS (loop4): discard dirty block: blocknr=18446744073709551615, size=1024 [ 346.826320][ T7968] NILFS (loop4): discard dirty block: blocknr=18446744073709551615, size=1024 [ 347.576127][ T8273] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1390'. [ 347.763368][ T8273] device bridge_slave_1 left promiscuous mode [ 347.812740][ T8273] bridge0: port 2(bridge_slave_1) entered disabled state [ 347.878712][ T8273] batman_adv: batadv0: Adding interface: bridge_slave_1 [ 347.965817][ T8273] batman_adv: batadv0: The MTU of interface bridge_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 348.019737][ T8273] batman_adv: batadv0: Interface activated: bridge_slave_1 [ 348.135241][ T8288] loop3: detected capacity change from 0 to 256 [ 348.137336][ T6297] bio_check_eod: 427 callbacks suppressed [ 348.137354][ T6297] syz.0.733: attempt to access beyond end of device [ 348.137354][ T6297] loop0: rw=524288, sector=57344, nr_sectors = 8 limit=40427 [ 348.163459][ T8288] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0x205ad3fc, utbl_chksum : 0xe619d30d) [ 348.210910][ T6297] syz.0.733: attempt to access beyond end of device [ 348.210910][ T6297] loop0: rw=0, sector=57344, nr_sectors = 8 limit=40427 [ 348.272587][ T3932] usb 3-1: new high-speed USB device number 16 using dummy_hcd [ 348.277624][ T6297] syz.0.733: attempt to access beyond end of device [ 348.277624][ T6297] loop0: rw=524288, sector=57344, nr_sectors = 8 limit=40427 [ 348.371406][ T6297] syz.0.733: attempt to access beyond end of device [ 348.371406][ T6297] loop0: rw=0, sector=57344, nr_sectors = 8 limit=40427 [ 348.389196][ T6297] syz.0.733: attempt to access beyond end of device [ 348.389196][ T6297] loop0: rw=524288, sector=57344, nr_sectors = 8 limit=40427 [ 348.443139][ T6297] syz.0.733: attempt to access beyond end of device [ 348.443139][ T6297] loop0: rw=0, sector=57344, nr_sectors = 8 limit=40427 [ 348.495446][ T6297] syz.0.733: attempt to access beyond end of device [ 348.495446][ T6297] loop0: rw=524288, sector=57344, nr_sectors = 8 limit=40427 [ 348.511329][ T8305] loop3: detected capacity change from 0 to 256 [ 348.533888][ T8302] Bluetooth: MGMT ver 1.22 [ 348.638702][ T6297] syz.0.733: attempt to access beyond end of device [ 348.638702][ T6297] loop0: rw=0, sector=57344, nr_sectors = 8 limit=40427 [ 348.712180][ T6297] syz.0.733: attempt to access beyond end of device [ 348.712180][ T6297] loop0: rw=524288, sector=57344, nr_sectors = 8 limit=40427 [ 348.730616][ T6297] syz.0.733: attempt to access beyond end of device [ 348.730616][ T6297] loop0: rw=0, sector=57344, nr_sectors = 8 limit=40427 [ 348.744276][ T3932] usb 3-1: Using ep0 maxpacket: 8 [ 348.751069][ T8306] loop4: detected capacity change from 0 to 1764 [ 349.022616][ T8306] iso9660: Corrupted directory entry in block 2 of inode 1920 [ 349.066255][ T3932] usb 3-1: New USB device found, idVendor=046d, idProduct=08dd, bcdDevice=ff.f4 [ 349.131294][ T3932] usb 3-1: New USB device strings: Mfr=8, Product=2, SerialNumber=3 [ 349.259920][ T3932] usb 3-1: Product: syz [ 349.455767][ T3932] usb 3-1: Manufacturer: syz [ 349.486042][ T3932] usb 3-1: SerialNumber: syz [ 349.536930][ T3932] usb 3-1: config 0 descriptor?? [ 349.578248][ T3932] gspca_main: gspca_zc3xx-2.14.0 probing 046d:08dd [ 349.659109][ T8318] loop1: detected capacity change from 0 to 256 [ 349.701682][ T8318] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x205ad3fc, utbl_chksum : 0xe619d30d) [ 350.103445][ T8337] loop3: detected capacity change from 0 to 2048 [ 350.167750][ T8337] loop3: p1 < > p2 < > p3 p4 < > [ 350.172856][ T8337] loop3: partition table partially beyond EOD, truncated [ 350.188543][ T8337] loop3: p1 start 2305 is beyond EOD, truncated [ 350.204296][ T8337] loop3: p2 start 4294902784 is beyond EOD, truncated [ 350.213297][ T8337] loop3: p3 start 4278191616 is beyond EOD, truncated [ 350.232756][ T3932] gspca_zc3xx: reg_w_i err -71 [ 350.237898][ T3932] gspca_zc3xx: probe of 3-1:0.0 failed with error -71 [ 350.245905][ T5540] usb 2-1: new high-speed USB device number 13 using dummy_hcd [ 350.256653][ T3932] usb 3-1: USB disconnect, device number 16 [ 350.322683][ T8345] loop4: detected capacity change from 0 to 512 [ 350.424547][ T8348] loop3: detected capacity change from 0 to 256 [ 350.449628][ T8348] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0x205ad3fc, utbl_chksum : 0xe619d30d) [ 350.470663][ T26] audit: type=1800 audit(1719995897.820:4223): pid=8349 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.1422" name="cgroup.controllers" dev="loop4" ino=1048708 res=0 errno=0 [ 350.492939][ T5540] usb 2-1: Using ep0 maxpacket: 8 [ 350.532197][ T26] audit: type=1804 audit(1719995897.820:4224): pid=8345 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.4.1422" name="/newroot/15/file0/cgroup.controllers" dev="loop4" ino=1048708 res=1 errno=0 [ 350.606122][ T5540] usb 2-1: config 0 has an invalid interface number: 1 but max is 0 [ 350.626230][ T5540] usb 2-1: config 0 has no interface number 0 [ 350.632651][ T5540] usb 2-1: config 0 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7 [ 350.666567][ T5540] usb 2-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22 [ 350.693623][ T5540] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 350.729991][ T5540] usb 2-1: config 0 descriptor?? [ 350.775883][ T5540] iowarrior 2-1:0.1: IOWarrior product=0x1512, serial= interface=1 now attached to iowarrior0 [ 351.004846][ T8369] xt_NFQUEUE: number of total queues is 0 [ 351.863341][ T8375] loop4: detected capacity change from 0 to 2048 [ 351.876213][ T8374] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1433'. [ 351.928602][ T8375] loop4: p1 < > p2 < > p3 p4 < > [ 351.934181][ T8375] loop4: partition table partially beyond EOD, truncated [ 351.947802][ T8375] loop4: p1 start 2305 is beyond EOD, truncated [ 351.954200][ T8375] loop4: p2 start 4294902784 is beyond EOD, truncated [ 351.963830][ T8374] device bridge_slave_1 left promiscuous mode [ 351.966020][ T8375] loop4: p3 start 4278191616 is beyond EOD, truncated [ 351.986713][ T8374] bridge0: port 2(bridge_slave_1) entered disabled state [ 351.998449][ T8374] bridge1: port 1(bridge_slave_1) entered blocking state [ 352.005714][ T8374] bridge1: port 1(bridge_slave_1) entered disabled state [ 352.017700][ T8374] device bridge_slave_1 entered promiscuous mode [ 352.139204][ T8385] loop2: detected capacity change from 0 to 512 [ 352.206951][ T8388] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration [ 352.259556][ T26] audit: type=1804 audit(1719995899.610:4225): pid=8385 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.1438" name="/newroot/208/file0/cgroup.controllers" dev="loop2" ino=1048710 res=1 errno=0 [ 352.291879][ T8389] loop3: detected capacity change from 0 to 2048 [ 352.307350][ T8389] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 352.667841][ T3932] usb 1-1: new high-speed USB device number 12 using dummy_hcd [ 352.678292][ T8405] xt_NFQUEUE: number of total queues is 0 [ 353.156767][ T6297] bio_check_eod: 465 callbacks suppressed [ 353.156840][ T6297] syz.0.733: attempt to access beyond end of device [ 353.156840][ T6297] loop0: rw=0, sector=57344, nr_sectors = 8 limit=40427 [ 353.273759][ T8246] usb 2-1: USB disconnect, device number 13 [ 353.424892][ T8246] iowarrior 2-1:0.1: I/O-Warror #0 now disconnected [ 353.471702][ T6297] syz.0.733: attempt to access beyond end of device [ 353.471702][ T6297] loop0: rw=524288, sector=57344, nr_sectors = 8 limit=40427 [ 353.486457][ T6297] syz.0.733: attempt to access beyond end of device [ 353.486457][ T6297] loop0: rw=0, sector=57344, nr_sectors = 8 limit=40427 [ 353.503434][ T6297] syz.0.733: attempt to access beyond end of device [ 353.503434][ T6297] loop0: rw=524288, sector=57344, nr_sectors = 8 limit=40427 [ 353.527908][ T6297] syz.0.733: attempt to access beyond end of device [ 353.527908][ T6297] loop0: rw=0, sector=57344, nr_sectors = 8 limit=40427 [ 353.565143][ T6297] syz.0.733: attempt to access beyond end of device [ 353.565143][ T6297] loop0: rw=524288, sector=57344, nr_sectors = 8 limit=40427 [ 353.603624][ T6297] syz.0.733: attempt to access beyond end of device [ 353.603624][ T6297] loop0: rw=0, sector=57344, nr_sectors = 8 limit=40427 [ 353.640836][ T6297] syz.0.733: attempt to access beyond end of device [ 353.640836][ T6297] loop0: rw=524288, sector=57344, nr_sectors = 8 limit=40427 [ 353.652099][ T8416] loop1: detected capacity change from 0 to 512 [ 353.670693][ T6297] syz.0.733: attempt to access beyond end of device [ 353.670693][ T6297] loop0: rw=0, sector=57344, nr_sectors = 8 limit=40427 [ 353.690028][ T6297] syz.0.733: attempt to access beyond end of device [ 353.690028][ T6297] loop0: rw=524288, sector=57344, nr_sectors = 8 limit=40427 [ 353.712491][ T3932] usb 1-1: Using ep0 maxpacket: 8 [ 353.745597][ T8416] EXT4-fs error (device loop1): ext4_orphan_get:1396: inode #15: comm syz.1.1452: casefold flag without casefold feature [ 353.774074][ T8416] EXT4-fs error (device loop1): ext4_xattr_inode_iget:404: inode #2: comm syz.1.1452: missing EA_INODE flag [ 353.804480][ T8416] EXT4-fs error (device loop1): ext4_xattr_inode_iget:409: comm syz.1.1452: error while reading EA inode 2 err=-117 [ 353.826402][ T8416] EXT4-fs (loop1): 1 orphan inode deleted [ 353.835508][ T8416] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 353.896671][ T8416] EXT4-fs warning (device loop1): __ext4fs_dirhash:270: inode #15: comm syz.1.1452: Siphash requires key [ 353.908082][ T8416] EXT4-fs warning (device loop1): __ext4fs_dirhash:270: inode #15: comm syz.1.1452: Siphash requires key [ 353.919551][ T8416] EXT4-fs warning (device loop1): __ext4fs_dirhash:270: inode #15: comm syz.1.1452: Siphash requires key [ 353.920400][ T8421] loop3: detected capacity change from 0 to 256 [ 353.953974][ T4217] usb 5-1: new high-speed USB device number 9 using dummy_hcd [ 353.999698][ T7892] EXT4-fs (loop1): unmounting filesystem. [ 354.212545][ T8424] loop1: detected capacity change from 0 to 512 [ 354.212541][ T3932] usb 1-1: New USB device found, idVendor=046d, idProduct=08dd, bcdDevice=ff.f4 [ 354.212572][ T3932] usb 1-1: New USB device strings: Mfr=8, Product=2, SerialNumber=3 [ 354.219159][ T4217] usb 5-1: Using ep0 maxpacket: 16 [ 354.236437][ T3932] usb 1-1: Product: syz [ 354.262109][ T3932] usb 1-1: Manufacturer: syz [ 354.279379][ T3932] usb 1-1: SerialNumber: syz [ 354.397881][ T3932] usb 1-1: config 0 descriptor?? [ 354.541295][ T3932] gspca_main: gspca_zc3xx-2.14.0 probing 046d:08dd [ 354.915780][ T26] audit: type=1804 audit(1719995902.230:4226): pid=8424 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.1454" name="/newroot/16/file0/cgroup.controllers" dev="loop1" ino=1048712 res=1 errno=0 [ 355.093692][ T26] audit: type=1326 audit(1719995902.440:4227): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8413 comm="syz.4.1451" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb2e1575b99 code=0x7ffc0000 [ 355.135229][ T26] audit: type=1326 audit(1719995902.440:4228): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8413 comm="syz.4.1451" exe="/root/syz-executor" sig=0 arch=c000003e syscall=280 compat=0 ip=0x7fb2e1575b99 code=0x7ffc0000 [ 355.145817][ T4217] usb 5-1: unable to get BOS descriptor or descriptor too short [ 355.165920][ T26] audit: type=1326 audit(1719995902.440:4229): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8413 comm="syz.4.1451" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb2e1575b99 code=0x7ffc0000 [ 355.166007][ T8429] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1455'. [ 355.195733][ T26] audit: type=1326 audit(1719995902.470:4230): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8413 comm="syz.4.1451" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb2e1575b99 code=0x7ffc0000 [ 355.206814][ T4217] usb 5-1: no configurations [ 355.245827][ T4217] usb 5-1: can't read configurations, error -22 [ 355.395967][ T3932] gspca_zc3xx: reg_w_i err -71 [ 355.401526][ T3932] gspca_zc3xx: probe of 1-1:0.0 failed with error -71 [ 355.425907][ T3932] usb 1-1: USB disconnect, device number 12 [ 355.462371][ T8437] tipc: Started in network mode [ 355.476527][ T8437] tipc: Node identity fe8000000000000000000000000000aa, cluster identity 4711 [ 355.497091][ T8437] tipc: Enabled bearer , priority 10 [ 355.839375][ T8444] loop4: detected capacity change from 0 to 1764 [ 355.868397][ T8444] iso9660: Corrupted directory entry in block 2 of inode 1920 [ 356.044726][ T8448] loop4: detected capacity change from 0 to 512 [ 356.108172][ T8448] EXT4-fs error (device loop4): ext4_orphan_get:1396: inode #15: comm syz.4.1464: casefold flag without casefold feature [ 356.128115][ T8448] EXT4-fs error (device loop4): ext4_xattr_inode_iget:404: inode #2: comm syz.4.1464: missing EA_INODE flag [ 356.173453][ T8448] EXT4-fs error (device loop4): ext4_xattr_inode_iget:409: comm syz.4.1464: error while reading EA inode 2 err=-117 [ 356.223237][ T8448] EXT4-fs (loop4): 1 orphan inode deleted [ 356.250831][ T8448] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 356.537804][ T8445] loop3: detected capacity change from 0 to 32768 [ 356.543855][ T8448] EXT4-fs warning (device loop4): __ext4fs_dirhash:270: inode #15: comm syz.4.1464: Siphash requires key [ 356.555802][ T8448] EXT4-fs warning (device loop4): __ext4fs_dirhash:270: inode #15: comm syz.4.1464: Siphash requires key [ 356.567108][ T8448] EXT4-fs warning (device loop4): __ext4fs_dirhash:270: inode #15: comm syz.4.1464: Siphash requires key [ 356.580907][ T8445] BTRFS: device fsid 24c7a497-3402-47dd-bef8-82358f5f30e0 devid 1 transid 8 /dev/loop3 scanned by syz.3.1463 (8445) [ 356.619021][ T4217] tipc: Node number set to 4269801642 [ 356.627826][ T8445] BTRFS info (device loop3): first mount of filesystem 24c7a497-3402-47dd-bef8-82358f5f30e0 [ 356.664580][ T8445] BTRFS info (device loop3): using crc32c (crc32c-intel) checksum algorithm [ 356.707030][ T8445] BTRFS info (device loop3): using free space tree [ 356.762153][ T7968] EXT4-fs (loop4): unmounting filesystem. [ 356.860361][ T8471] loop4: detected capacity change from 0 to 512 [ 356.925061][ T8471] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 356.962472][ T8445] BTRFS info (device loop3): enabling ssd optimizations [ 357.009383][ T8471] EXT4-fs error (device loop4): ext4_xattr_block_list:719: inode #15: comm syz.4.1467: corrupted xattr block 33 [ 357.051739][ T26] audit: type=1800 audit(1719995904.400:4231): pid=8445 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.1463" name="file1" dev="loop3" ino=260 res=0 errno=0 [ 357.130146][ T7992] BTRFS info (device loop3): last unmount of filesystem 24c7a497-3402-47dd-bef8-82358f5f30e0 [ 357.386927][ T7968] EXT4-fs (loop4): unmounting filesystem. [ 357.449168][ T8481] tmpfs: Bad value for 'mpol' [ 357.543954][ T8486] tipc: Started in network mode [ 357.572460][ T8486] tipc: Node identity fe8000000000000000000000000000aa, cluster identity 4711 [ 357.608335][ T8486] tipc: Enabled bearer , priority 10 [ 357.820345][ T8501] loop4: detected capacity change from 0 to 512 [ 357.857506][ T8501] EXT4-fs error (device loop4): ext4_orphan_get:1396: inode #15: comm syz.4.1478: casefold flag without casefold feature [ 357.875093][ T8501] EXT4-fs error (device loop4): ext4_xattr_inode_iget:404: inode #2: comm syz.4.1478: missing EA_INODE flag [ 357.942942][ T8478] usb 2-1: new high-speed USB device number 14 using dummy_hcd [ 357.953483][ T8506] xt_NFQUEUE: number of total queues is 0 [ 358.065956][ T4217] usb 1-1: new high-speed USB device number 13 using dummy_hcd [ 358.077025][ T8501] EXT4-fs error (device loop4): ext4_xattr_inode_iget:409: comm syz.4.1478: error while reading EA inode 2 err=-117 [ 358.151662][ T8501] EXT4-fs (loop4): 1 orphan inode deleted [ 358.212957][ T6297] bio_check_eod: 665 callbacks suppressed [ 358.213059][ T6297] syz.0.733: attempt to access beyond end of device [ 358.213059][ T6297] loop0: rw=524288, sector=57344, nr_sectors = 8 limit=40427 [ 358.258406][ T8501] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 358.356050][ T4217] usb 1-1: Using ep0 maxpacket: 16 [ 358.392678][ T6297] syz.0.733: attempt to access beyond end of device [ 358.392678][ T6297] loop0: rw=0, sector=57344, nr_sectors = 8 limit=40427 [ 358.456276][ T8501] EXT4-fs warning (device loop4): __ext4fs_dirhash:270: inode #15: comm syz.4.1478: Siphash requires key [ 358.467939][ T8501] EXT4-fs warning (device loop4): __ext4fs_dirhash:270: inode #15: comm syz.4.1478: Siphash requires key [ 358.479592][ T8501] EXT4-fs warning (device loop4): __ext4fs_dirhash:270: inode #15: comm syz.4.1478: Siphash requires key [ 358.602931][ T6297] syz.0.733: attempt to access beyond end of device [ 358.602931][ T6297] loop0: rw=524288, sector=57344, nr_sectors = 8 limit=40427 [ 358.617948][ T4217] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0 [ 358.662043][ T6297] syz.0.733: attempt to access beyond end of device [ 358.662043][ T6297] loop0: rw=0, sector=57344, nr_sectors = 8 limit=40427 [ 358.678205][ T6297] syz.0.733: attempt to access beyond end of device [ 358.678205][ T6297] loop0: rw=524288, sector=57344, nr_sectors = 8 limit=40427 [ 358.699808][ T6297] syz.0.733: attempt to access beyond end of device [ 358.699808][ T6297] loop0: rw=0, sector=57344, nr_sectors = 8 limit=40427 [ 358.731249][ T6297] syz.0.733: attempt to access beyond end of device [ 358.731249][ T6297] loop0: rw=524288, sector=57344, nr_sectors = 8 limit=40427 [ 358.745111][ T8246] tipc: Node number set to 4269801642 [ 358.758240][ T6297] syz.0.733: attempt to access beyond end of device [ 358.758240][ T6297] loop0: rw=0, sector=57344, nr_sectors = 8 limit=40427 [ 358.759218][ T7968] EXT4-fs (loop4): unmounting filesystem. [ 358.782474][ T6297] syz.0.733: attempt to access beyond end of device [ 358.782474][ T6297] loop0: rw=524288, sector=57344, nr_sectors = 8 limit=40427 [ 358.805304][ T6297] syz.0.733: attempt to access beyond end of device [ 358.805304][ T6297] loop0: rw=0, sector=57344, nr_sectors = 8 limit=40427 [ 358.916666][ T8478] usb 2-1: Using ep0 maxpacket: 16 [ 358.938181][ T4217] usb 1-1: New USB device found, idVendor=2040, idProduct=0264, bcdDevice=4e.d1 [ 358.958524][ T4217] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 358.980087][ T4217] usb 1-1: Product: syz [ 358.983325][ T26] audit: type=1326 audit(1719995906.330:4232): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8487 comm="syz.1.1473" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7f19975b99 code=0x7ffc0000 [ 358.984284][ T4217] usb 1-1: Manufacturer: syz [ 359.025411][ T26] audit: type=1326 audit(1719995906.360:4233): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8487 comm="syz.1.1473" exe="/root/syz-executor" sig=0 arch=c000003e syscall=280 compat=0 ip=0x7f7f19975b99 code=0x7ffc0000 [ 359.025579][ T8516] tmpfs: Bad value for 'mpol' [ 359.066044][ T26] audit: type=1326 audit(1719995906.360:4234): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8487 comm="syz.1.1473" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7f19975b99 code=0x7ffc0000 [ 359.075698][ T4217] usb 1-1: SerialNumber: syz [ 359.089129][ T8478] usb 2-1: unable to get BOS descriptor or descriptor too short [ 359.110160][ T8478] usb 2-1: no configurations [ 359.112041][ T4217] usb 1-1: config 0 descriptor?? [ 359.119408][ T8478] usb 2-1: can't read configurations, error -22 [ 359.144648][ T26] audit: type=1326 audit(1719995906.370:4235): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8487 comm="syz.1.1473" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7f19975b99 code=0x7ffc0000 [ 359.177899][ T4217] em28xx 1-1:0.0: New device syz syz @ 480 Mbps (2040:0264, interface 0, class 0) [ 359.193072][ T4217] em28xx 1-1:0.0: DVB interface 0 found: bulk [ 359.330362][ T8524] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1487'. [ 359.463344][ T8530] xt_CT: You must specify a L4 protocol and not use inversions on it [ 359.520176][ T8532] loop4: detected capacity change from 0 to 512 [ 359.550763][ T8532] EXT4-fs error (device loop4): ext4_orphan_get:1396: inode #15: comm syz.4.1491: casefold flag without casefold feature [ 359.576219][ T8532] EXT4-fs error (device loop4): ext4_xattr_inode_iget:404: inode #2: comm syz.4.1491: missing EA_INODE flag [ 359.601723][ T8532] EXT4-fs error (device loop4): ext4_xattr_inode_iget:409: comm syz.4.1491: error while reading EA inode 2 err=-117 [ 359.640924][ T8532] EXT4-fs (loop4): 1 orphan inode deleted [ 359.651496][ T8532] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 359.708446][ T8532] EXT4-fs warning (device loop4): __ext4fs_dirhash:270: inode #18: comm syz.4.1491: Siphash requires key [ 359.720894][ T8532] EXT4-fs warning (device loop4): __ext4fs_dirhash:270: inode #18: comm syz.4.1491: Siphash requires key [ 359.732205][ T8532] EXT4-fs warning (device loop4): __ext4fs_dirhash:270: inode #18: comm syz.4.1491: Siphash requires key [ 359.735803][ T5539] usb 4-1: new high-speed USB device number 11 using dummy_hcd [ 359.813270][ T7968] EXT4-fs (loop4): unmounting filesystem. [ 359.836020][ T4217] em28xx 1-1:0.0: unknown em28xx chip ID (227) [ 359.925230][ T8544] tmpfs: Bad value for 'mpol' [ 359.995901][ T5539] usb 4-1: Using ep0 maxpacket: 8 [ 360.265153][ T8552] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1500'. [ 360.277182][ T5539] usb 4-1: config 0 has an invalid interface number: 1 but max is 0 [ 360.285429][ T5539] usb 4-1: config 0 has no interface number 0 [ 360.302422][ T5539] usb 4-1: config 0 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7 [ 360.692495][ T4217] em28xx 1-1:0.0: reading from i2c device at 0xa0 failed (error=-5) [ 360.766083][ T5539] usb 4-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22 [ 360.818715][ T4217] em28xx 1-1:0.0: board has no eeprom [ 360.880256][ T8556] xt_CT: You must specify a L4 protocol and not use inversions on it [ 360.954174][ T5539] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 360.966058][ T5539] usb 4-1: config 0 descriptor?? [ 361.015856][ T5539] iowarrior 4-1:0.1: IOWarrior product=0x1512, serial= interface=1 now attached to iowarrior0 [ 361.041769][ T8562] random: crng reseeded on system resumption [ 361.050948][ T8561] loop2: detected capacity change from 0 to 256 [ 361.067388][ T4217] em28xx 1-1:0.0: Identified as PCTV tripleStick (292e) (card=94) [ 361.087357][ T4217] em28xx 1-1:0.0: dvb set to bulk mode. [ 361.117745][ T4217] usb 1-1: USB disconnect, device number 13 [ 361.124326][ T4217] em28xx 1-1:0.0: Disconnecting em28xx [ 361.168837][ T5539] em28xx 1-1:0.0: Binding DVB extension [ 361.340817][ T5539] em28xx 1-1:0.0: Registering input extension [ 361.394736][ T4217] em28xx 1-1:0.0: Closing input extension [ 361.409711][ T8576] tmpfs: Bad value for 'mpol' [ 361.463792][ T4217] em28xx 1-1:0.0: Freeing device [ 361.540966][ T8582] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1513'. [ 361.723499][ T8587] xt_CT: You must specify a L4 protocol and not use inversions on it [ 361.854351][ T27] INFO: task syz.0.733:6258 blocked for more than 143 seconds. [ 361.872257][ T27] Not tainted 6.1.96-syzkaller #0 [ 361.891811][ T27] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 361.907784][ T27] task:syz.0.733 state:D stack:23168 pid:6258 ppid:5943 flags:0x00004004 [ 361.925131][ T27] Call Trace: [ 361.942636][ T27] [ 361.948623][ T27] __schedule+0x142d/0x4550 [ 361.954390][ T27] ? __sched_text_start+0x8/0x8 [ 361.962981][ T27] ? blk_check_plugged+0x250/0x250 [ 361.983553][ T27] ? _raw_spin_lock_irq+0xdb/0x110 [ 361.988817][ T27] ? do_raw_spin_unlock+0x137/0x8a0 [ 361.994154][ T27] schedule+0xbf/0x180 [ 362.021109][ T27] rwsem_down_write_slowpath+0xea1/0x14b0 [ 362.027158][ T27] ? rwsem_down_write_slowpath+0x9e3/0x14b0 [ 362.033319][ T27] ? down_write_killable_nested+0x90/0x90 [ 362.041314][ T27] ? read_lock_is_recursive+0x10/0x10 [ 362.046809][ T27] ? rwsem_write_trylock+0x166/0x210 [ 362.052191][ T27] ? clear_nonspinnable+0x60/0x60 [ 362.057368][ T27] f2fs_balance_fs+0x4fb/0x6c0 [ 362.062184][ T27] ? page_private_dummy+0x130/0x130 [ 362.067506][ T27] ? f2fs_commit_atomic_write+0x14f0/0x14f0 [ 362.074174][ T27] ? do_raw_spin_lock+0x14a/0x370 [ 362.081607][ T27] ? do_raw_spin_unlock+0x137/0x8a0 [ 362.091793][ T27] ? folio_unlock+0x122/0x2f0 [ 362.098902][ T27] f2fs_write_single_data_page+0x1336/0x1f90 [ 362.104964][ T27] ? f2fs_i_compr_blocks_update+0x150/0x150 [ 362.115465][ T27] ? folio_clear_dirty_for_io+0x7f4/0xcf0 [ 362.123875][ T27] ? mlock_page_drain_local+0x75/0x490 [ 362.133973][ T27] ? mlock_page_drain_local+0x75/0x490 [ 362.142199][ T27] ? mlock_page_drain_local+0x288/0x490 [ 362.145741][ T8478] usb 2-1: new high-speed USB device number 16 using dummy_hcd [ 362.154569][ T27] f2fs_write_data_pages+0x1ceb/0x3a70 [ 362.163559][ T27] ? f2fs_read_data_folio+0x350/0x350 [ 362.175170][ T27] ? __folio_memcg_unlock+0xfd/0x120 [ 362.183040][ T27] ? __lock_acquire+0x125b/0x1f80 [ 362.192687][ T27] ? f2fs_read_data_folio+0x350/0x350 [ 362.200625][ T27] do_writepages+0x3a2/0x670 [ 362.205369][ T27] ? __writepage+0x120/0x120 [ 362.214636][ T27] ? filemap_fdatawrite_wbc+0x116/0x180 [ 362.222592][ T27] ? __lock_acquire+0x1f80/0x1f80 [ 362.232196][ T27] ? do_raw_spin_unlock+0x137/0x8a0 [ 362.239767][ T27] ? wbc_attach_and_unlock_inode+0x53f/0x550 [ 362.251579][ T27] filemap_fdatawrite_wbc+0x121/0x180 [ 362.261693][ T27] file_write_and_wait_range+0x1ca/0x2b0 [ 362.271947][ T27] ? __filemap_set_wb_err+0x270/0x270 [ 362.281201][ T27] f2fs_do_sync_file+0x69d/0x1c00 [ 362.291021][ T27] ? f2fs_sync_file+0x160/0x160 [ 362.298284][ T27] ? __up_read+0x690/0x690 [ 362.302794][ T27] ? f2fs_sync_file+0xe5/0x160 [ 362.312398][ T27] f2fs_file_write_iter+0x720/0x2980 [ 362.320172][ T27] ? f2fs_file_read_iter+0xd70/0xd70 [ 362.325521][ T27] ? rcu_read_lock_any_held+0xb3/0x160 [ 362.341877][ T27] vfs_write+0x7ae/0xba0 [ 362.348617][ T27] ? file_end_write+0x250/0x250 [ 362.353554][ T27] ? __fget_files+0x28/0x4a0 [ 362.362777][ T27] ? __fget_files+0x435/0x4a0 [ 362.372187][ T27] ? __fdget_pos+0x2ba/0x360 [ 362.382457][ T27] ? ksys_write+0x77/0x2c0 [ 362.389260][ T27] ksys_write+0x19c/0x2c0 [ 362.393643][ T27] ? print_irqtrace_events+0x210/0x210 [ 362.403773][ T27] ? __ia32_sys_read+0x80/0x80 [ 362.410933][ T27] ? syscall_enter_from_user_mode+0x2e/0x230 [ 362.421702][ T27] ? lockdep_hardirqs_on+0x94/0x130 [ 362.429267][ T27] ? syscall_enter_from_user_mode+0x2e/0x230 [ 362.435352][ T27] do_syscall_64+0x3b/0xb0 [ 362.444447][ T27] ? clear_bhb_loop+0x45/0xa0 [ 362.451546][ T27] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 362.462495][ T27] RIP: 0033:0x7f3b45375b99 [ 362.469319][ T27] RSP: 002b:00007f3b461e2048 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 362.480574][ T27] RAX: ffffffffffffffda RBX: 00007f3b45503f60 RCX: 00007f3b45375b99 [ 362.490183][ T27] RDX: 0000000000200600 RSI: 0000000020000400 RDI: 0000000000000005 [ 362.498455][ T27] RBP: 00007f3b453e4a7a R08: 0000000000000000 R09: 0000000000000000 [ 362.506765][ T27] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 362.514793][ T27] R13: 000000000000000b R14: 00007f3b45503f60 R15: 00007fff90a366a8 [ 362.522922][ T27] [ 362.525977][ T8478] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 362.526303][ T27] [ 362.526303][ T27] Showing all locks held in the system: [ 362.550690][ T8478] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 362.555322][ T27] 1 lock held by rcu_tasks_kthre/12: [ 362.566559][ T27] #0: ffffffff8d12ae90 (rcu_tasks.tasks_gp_mutex){+.+.}-{3:3}, at: rcu_tasks_one_gp+0x29/0xe30 [ 362.577404][ T27] 1 lock held by rcu_tasks_trace/13: [ 362.582104][ T8478] usb 2-1: New USB device found, idVendor=0926, idProduct=3333, bcdDevice= 0.40 [ 362.582820][ T27] #0: ffffffff8d12b690 (rcu_tasks_trace.tasks_gp_mutex){+.+.}-{3:3}, at: rcu_tasks_one_gp+0x29/0xe30 [ 362.606600][ T27] 1 lock held by khungtaskd/27: [ 362.611607][ T27] #0: ffffffff8d12acc0 (rcu_read_lock){....}-{1:2}, at: debug_show_all_locks+0x51/0x290 [ 362.622027][ T27] 2 locks held by getty/3304: [ 362.622564][ T8478] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 362.626900][ T27] #0: ffff88807ef00098 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x21/0x70 [ 362.649388][ T27] #1: ffffc900031262f0 (&ldata->atomic_read_lock){+.+.}-{3:3}, at: n_tty_read+0x6a7/0x1db0 [ 362.656622][ T8478] usb 2-1: config 0 descriptor?? [ 362.684348][ T4217] usb 4-1: USB disconnect, device number 11 [ 362.696690][ T27] 3 locks held by kworker/u4:6/3650: [ 362.708560][ T4217] iowarrior 4-1:0.1: I/O-Warror #0 now disconnected [ 362.723220][ T27] 4 locks held by kworker/u4:8/4101: [ 362.743981][ T27] #0: ffff888144a66138 ((wq_completion)writeback){+.+.}-{0:0}, at: process_one_work+0x7a9/0x11d0 [ 362.762954][ T27] #1: ffffc900128f7d20 ((work_completion)(&(&wb->dwork)->work)){+.+.}-{0:0}, at: process_one_work+0x7a9/0x11d0 [ 362.779022][ T27] #2: ffff88807985c0e0 (&type->s_umount_key#82){++++}-{3:3}, at: trylock_super+0x1b/0xf0 [ 362.790105][ T27] #3: ffff88805e851140 (&sbi->gc_lock){+.+.}-{3:3}, at: f2fs_balance_fs+0x4fb/0x6c0 [ 362.800316][ T27] 3 locks held by kworker/1:9/4217: [ 362.805558][ T27] #0: ffff8881446a4538 ((wq_completion)usb_hub_wq){+.+.}-{0:0}, at: process_one_work+0x7a9/0x11d0 [ 362.823659][ T27] #1: ffffc90012effd20 ((work_completion)(&hub->events)){+.+.}-{0:0}, at: process_one_work+0x7a9/0x11d0 [ 362.842346][ T27] #2: ffff8881457cd190 (&dev->mutex){....}-{3:3}, at: hub_event+0x1fe/0x5730 [ 362.853422][ T27] 4 locks held by syz.0.733/6258: [ 362.865185][ T27] #0: ffff888075d92d68 (&f->f_pos_lock){+.+.}-{3:3}, at: __fdget_pos+0x2ba/0x360 [ 362.874697][ T27] #1: ffff88807985c460 (sb_writers#24){.+.+}-{0:0}, at: vfs_write+0x269/0xba0 [ 362.904092][ T27] #2: ffff88805e850128 (&sbi->writepages){+.+.}-{3:3}, at: f2fs_write_data_pages+0x33f3/0x3a70 [ 362.921964][ T27] #3: ffff88805e851140 (&sbi->gc_lock){+.+.}-{3:3}, at: f2fs_balance_fs+0x4fb/0x6c0 [ 362.934412][ T27] 7 locks held by syz.0.733/6297: [ 362.946234][ T27] 5 locks held by kworker/0:20/8478: [ 362.951692][ T27] #0: ffff8881446a4538 ((wq_completion)usb_hub_wq){+.+.}-{0:0}, at: process_one_work+0x7a9/0x11d0 [ 362.975745][ T27] #1: ffffc9000331fd20 ((work_completion)(&hub->events)){+.+.}-{0:0}, at: process_one_work+0x7a9/0x11d0 [ 362.995515][ T27] #2: ffff888022880190 (&dev->mutex){....}-{3:3}, at: hub_event+0x1fe/0x5730 [ 363.004589][ T27] #3: ffff88805a353190 (&dev->mutex){....}-{3:3}, at: __device_attach+0x8a/0x570 [ 363.020649][ T27] #4: ffff88805a351118 (&dev->mutex){....}-{3:3}, at: __device_attach+0x8a/0x570 [ 363.031467][ T27] 2 locks held by dhcpcd/8601: [ 363.042095][ T27] #0: ffff888077daa130 (sk_lock-AF_PACKET){+.+.}-{0:0}, at: packet_do_bind+0x32/0xd00 [ 363.061579][ T27] #1: ffffffff8d1302b8 (rcu_state.exp_mutex){+.+.}-{3:3}, at: synchronize_rcu_expedited+0x4f0/0x930 [ 363.072961][ T27] 2 locks held by dhcpcd/8602: [ 363.079821][ T27] #0: ffff888021ff4130 (sk_lock-AF_PACKET){+.+.}-{0:0}, at: packet_do_bind+0x32/0xd00 [ 363.089652][ T27] #1: ffffffff8d1302b8 (rcu_state.exp_mutex){+.+.}-{3:3}, at: synchronize_rcu_expedited+0x360/0x930 [ 363.101414][ T27] [ 363.125306][ T27] ============================================= [ 363.125306][ T27] [ 363.138420][ T27] NMI backtrace for cpu 1 [ 363.140425][ T8478] keytouch 0003:0926:3333.000B: fixing up Keytouch IEC report descriptor [ 363.142778][ T27] CPU: 1 PID: 27 Comm: khungtaskd Not tainted 6.1.96-syzkaller #0 [ 363.142802][ T27] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024 [ 363.142815][ T27] Call Trace: [ 363.142823][ T27] [ 363.142833][ T27] dump_stack_lvl+0x1e3/0x2cb [ 363.171165][ T8478] input: HID 0926:3333 as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/0003:0926:3333.000B/input/input25 [ 363.172406][ T27] ? preempt_schedule_thunk+0x16/0x18 [ 363.172450][ T27] ? nf_tcp_handle_invalid+0x642/0x642 [ 363.202419][ T27] ? panic+0x764/0x764 [ 363.206541][ T27] ? vprintk_emit+0x622/0x740 [ 363.211275][ T27] ? printk_sprint+0x490/0x490 [ 363.216176][ T27] ? nmi_cpu_backtrace+0x252/0x560 [ 363.221335][ T27] nmi_cpu_backtrace+0x4e1/0x560 [ 363.226314][ T27] ? nmi_trigger_cpumask_backtrace+0x3f0/0x3f0 [ 363.232498][ T27] ? _printk+0xd1/0x111 [ 363.236678][ T27] ? panic+0x764/0x764 [ 363.240768][ T27] ? __wake_up_klogd+0xcc/0x100 [ 363.245647][ T27] ? panic+0x764/0x764 [ 363.249750][ T27] ? nmi_trigger_cpumask_backtrace+0xe2/0x3f0 [ 363.255859][ T27] ? arch_trigger_cpumask_backtrace+0x10/0x10 [ 363.261964][ T27] nmi_trigger_cpumask_backtrace+0x1b0/0x3f0 [ 363.264652][ T6297] bio_check_eod: 1062 callbacks suppressed [ 363.264671][ T6297] syz.0.733: attempt to access beyond end of device [ 363.264671][ T6297] loop0: rw=524288, sector=57344, nr_sectors = 8 limit=40427 [ 363.267975][ T27] watchdog+0xf88/0xfd0 [ 363.268013][ T27] ? watchdog+0x1f8/0xfd0 [ 363.268046][ T27] kthread+0x28d/0x320 [ 363.274803][ T6297] syz.0.733: attempt to access beyond end of device [ 363.274803][ T6297] loop0: rw=0, sector=57344, nr_sectors = 8 limit=40427 [ 363.287615][ T27] ? hungtask_pm_notify+0x50/0x50 [ 363.287645][ T27] ? kthread_blkcg+0xd0/0xd0 [ 363.287666][ T27] ret_from_fork+0x1f/0x30 [ 363.287709][ T27] [ 363.295050][ T6297] syz.0.733: attempt to access beyond end of device [ 363.295050][ T6297] loop0: rw=524288, sector=57344, nr_sectors = 8 limit=40427 [ 363.296221][ C1] vkms_vblank_simulate: vblank timer overrun [ 363.297079][ T27] Sending NMI from CPU 1 to CPUs 0: [ 363.302187][ T6297] syz.0.733: attempt to access beyond end of device [ 363.302187][ T6297] loop0: rw=0, sector=57344, nr_sectors = 8 limit=40427 [ 363.314415][ C0] NMI backtrace for cpu 0 [ 363.314425][ C0] CPU: 0 PID: 6297 Comm: syz.0.733 Not tainted 6.1.96-syzkaller #0 [ 363.314443][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024 [ 363.314452][ C0] RIP: 0010:__lock_acquire+0x5ce/0x1f80 [ 363.314481][ C0] Code: 00 31 db 48 81 c3 b9 00 00 00 48 89 d8 48 c1 e8 03 0f b6 04 10 84 c0 0f 85 f7 11 00 00 48 8b 44 24 20 49 8d 84 c5 e0 0a 00 00 <48> 89 44 24 20 40 84 ed 0f 84 f9 03 00 00 0f b6 1b 41 0f b6 04 17 [ 363.314495][ C0] RSP: 0018:ffffc90000007900 EFLAGS: 00000046 [ 363.314510][ C0] RAX: ffff88801ff56538 RBX: ffffffff901921d9 RCX: ffffffff816a727a [ 363.314522][ C0] RDX: dffffc0000000000 RSI: ffff88801ff56420 RDI: ffffffff9049c220 [ 363.314535][ C0] RBP: 0000000000000002 R08: dffffc0000000000 R09: fffffbfff2093845 [ 363.314546][ C0] R10: 0000000000000000 R11: dffffc0000000001 R12: ffff88801ff56418 [ 363.314558][ C0] R13: ffff88801ff55940 R14: ffff88801ff56558 R15: 1ffff11003feacab [ 363.314570][ C0] FS: 00007f3b461a06c0(0000) GS:ffff8880b9800000(0000) knlGS:0000000000000000 [ 363.314602][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 363.314615][ C0] CR2: 00005564c41c9600 CR3: 000000006812e000 CR4: 00000000003506f0 [ 363.314630][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 363.314640][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 363.314651][ C0] Call Trace: [ 363.314656][ C0] [ 363.314661][ C0] ? nmi_cpu_backtrace+0x3de/0x560 [ 363.314689][ C0] ? read_lock_is_recursive+0x10/0x10 [ 363.314715][ C0] ? nmi_trigger_cpumask_backtrace+0x3f0/0x3f0 [ 363.314750][ C0] ? nmi_cpu_backtrace_handler+0x8/0x10 [ 363.314777][ C0] ? nmi_handle+0x12e/0x440 [ 363.314803][ C0] ? nmi_handle+0x25/0x440 [ 363.314827][ C0] ? __lock_acquire+0x5ce/0x1f80 [ 363.314851][ C0] ? default_do_nmi+0x62/0x150 [ 363.314869][ C0] ? exc_nmi+0xa8/0x100 [ 363.314885][ C0] ? end_repeat_nmi+0x16/0x31 [ 363.314912][ C0] ? __lock_acquire+0x54a/0x1f80 [ 363.314943][ C0] ? __lock_acquire+0x5ce/0x1f80 [ 363.314967][ C0] ? __lock_acquire+0x5ce/0x1f80 [ 363.314992][ C0] ? __lock_acquire+0x5ce/0x1f80 [ 363.315016][ C0] [ 363.315021][ C0] [ 363.315033][ C0] lock_acquire+0x1f8/0x5a0 [ 363.315056][ C0] ? debug_object_deactivate+0x63/0x380 [ 363.315085][ C0] ? read_lock_is_recursive+0x10/0x10 [ 363.315119][ C0] _raw_spin_lock_irqsave+0xd1/0x120 [ 363.315140][ C0] ? debug_object_deactivate+0x63/0x380 [ 363.315164][ C0] ? _raw_spin_lock+0x40/0x40 [ 363.315186][ C0] ? do_raw_spin_lock+0x14a/0x370 [ 363.315206][ C0] debug_object_deactivate+0x63/0x380 [ 363.315233][ C0] detach_timer+0x26/0x380 [ 363.315253][ C0] __run_timers+0x60c/0x890 [ 363.315277][ C0] ? detach_timer+0x380/0x380 [ 363.315299][ C0] ? print_irqtrace_events+0x210/0x210 [ 363.315326][ C0] ? seqcount_lockdep_reader_access+0x1bd/0x220 [ 363.315353][ C0] run_timer_softirq+0x63/0xf0 [ 363.315371][ C0] handle_softirqs+0x2ee/0xa40 [ 363.315400][ C0] ? __irq_exit_rcu+0x157/0x240 [ 363.315427][ C0] ? do_softirq+0x240/0x240 [ 363.315451][ C0] ? hrtimer_interrupt+0x76b/0x980 [ 363.315473][ C0] ? irqtime_account_irq+0xd0/0x1e0 [ 363.315492][ C0] __irq_exit_rcu+0x157/0x240 [ 363.315517][ C0] ? irq_exit_rcu+0x20/0x20 [ 363.315547][ C0] irq_exit_rcu+0x5/0x20 [ 363.315571][ C0] sysvec_apic_timer_interrupt+0x91/0xb0 [ 363.315590][ C0] [ 363.315595][ C0] [ 363.315600][ C0] asm_sysvec_apic_timer_interrupt+0x16/0x20 [ 363.315631][ C0] RIP: 0010:vprintk_emit+0x4fa/0x740 [ 363.315658][ C0] Code: 21 e3 0f 85 ad 01 00 00 e8 63 98 1c 00 44 8b 24 24 4d 85 ff 75 07 e8 55 98 1c 00 eb 06 e8 4e 98 1c 00 fb 48 c7 c7 c0 6e 00 8d <31> f6 ba 01 00 00 00 31 c9 41 b8 01 00 00 00 45 31 c9 41 56 e8 ad [ 363.315673][ C0] RSP: 0018:ffffc9000340e6a0 EFLAGS: 00000246 [ 363.315686][ C0] RAX: ffffffff816dfb82 RBX: 0000000000000000 RCX: 0000000000040000 [ 363.315698][ C0] RDX: ffffc9000abd2000 RSI: 000000000003ffff RDI: ffffffff8d006ec0 [ 363.315711][ C0] RBP: ffffc9000340e790 R08: ffffffff816dfb5f R09: fffffbfff2093872 [ 363.315724][ C0] R10: 0000000000000000 R11: dffffc0000000001 R12: 0000000000000067 [ 363.315735][ C0] R13: dffffc0000000000 R14: ffffffff816df9d0 R15: 0000000000000200 [ 363.315748][ C0] ? vprintk_emit+0x340/0x740 [ 363.315774][ C0] ? vprintk_emit+0x4cf/0x740 [ 363.315798][ C0] ? vprintk_emit+0x4f2/0x740 [ 363.315827][ C0] ? printk_sprint+0x490/0x490 [ 363.315862][ C0] ? _raw_spin_unlock_irqrestore+0xd9/0x130 [ 363.315883][ C0] ? _raw_spin_unlock+0x40/0x40 [ 363.315906][ C0] _printk+0xd1/0x111 [ 363.315924][ C0] ? panic+0x764/0x764 [ 363.315949][ C0] ? bio_alloc_bioset+0x97f/0x11b0 [ 363.315968][ C0] submit_bio_noacct+0xfef/0x18f0 [ 363.315999][ C0] f2fs_submit_page_read+0x25d/0x580 [ 363.316018][ C0] f2fs_get_read_data_page+0x58b/0x8c0 [ 363.316038][ C0] ? f2fs_get_block+0x1b0/0x1b0 [ 363.316058][ C0] ? f2fs_get_node_info+0x1b7/0x12c0 [ 363.316081][ C0] f2fs_get_lock_data_page+0x4e/0xe0 [ 363.316098][ C0] do_garbage_collect+0x390c/0x81f0 [ 363.316150][ C0] ? f2fs_gc+0x32a0/0x32a0 [ 363.316172][ C0] ? get_victim_by_default+0x6893/0x6ff0 [ 363.316194][ C0] ? mark_lock+0x9a/0x340 [ 363.316224][ C0] ? f2fs_gc+0xef4/0x32a0 [ 363.316247][ C0] ? __lock_acquire+0x1f80/0x1f80 [ 363.316275][ C0] ? up_write+0x19d/0x580 [ 363.316294][ C0] ? get_ckpt_valid_blocks+0x260/0x260 [ 363.316311][ C0] ? __up_read+0x690/0x690 [ 363.316334][ C0] f2fs_gc+0x1169/0x32a0 [ 363.316371][ C0] ? f2fs_start_bidx_of_node+0x370/0x370 [ 363.316403][ C0] ? rwsem_write_trylock+0x166/0x210 [ 363.316431][ C0] f2fs_balance_fs+0x506/0x6c0 [ 363.316454][ C0] ? f2fs_commit_atomic_write+0x14f0/0x14f0 [ 363.316476][ C0] ? __up_read+0x2b9/0x690 [ 363.316497][ C0] ? folio_unlock+0x122/0x2f0 [ 363.316524][ C0] f2fs_map_blocks+0x2871/0x3ab0 [ 363.316556][ C0] ? f2fs_do_map_lock+0x70/0x70 [ 363.316580][ C0] expand_inode_data+0x56d/0xaf0 [ 363.316603][ C0] ? f2fs_insert_range+0x3c0/0x3c0 [ 363.316617][ C0] ? file_modified_flags+0x3e1/0x480 [ 363.316646][ C0] ? rcu_read_lock_any_held+0xb3/0x160 [ 363.316670][ C0] f2fs_fallocate+0x44a/0x9f0 [ 363.316696][ C0] vfs_fallocate+0x547/0x6b0 [ 363.316720][ C0] do_vfs_ioctl+0x222c/0x2a90 [ 363.316737][ C0] ? __x64_compat_sys_ioctl+0x80/0x80 [ 363.316752][ C0] ? __lock_acquire+0x1f80/0x1f80 [ 363.316774][ C0] ? lockdep_hardirqs_on+0x94/0x130 [ 363.316793][ C0] ? __kmem_cache_free+0x25c/0x3c0 [ 363.316833][ C0] ? tomoyo_path_number_perm+0x68a/0x7f0 [ 363.316852][ C0] ? tomoyo_path_number_perm+0x1f2/0x7f0 [ 363.316870][ C0] ? tomoyo_check_path_acl+0x1c0/0x1c0 [ 363.316907][ C0] ? __fget_files+0x28/0x4a0 [ 363.316930][ C0] ? __fget_files+0x28/0x4a0 [ 363.316949][ C0] ? __fget_files+0x435/0x4a0 [ 363.316964][ C0] ? __fget_files+0x28/0x4a0 [ 363.316981][ C0] ? bpf_lsm_file_ioctl+0x5/0x10 [ 363.316998][ C0] ? security_file_ioctl+0x7d/0xa0 [ 363.317014][ C0] __se_sys_ioctl+0x81/0x160 [ 363.317040][ C0] do_syscall_64+0x3b/0xb0 [ 363.317062][ C0] ? clear_bhb_loop+0x45/0xa0 [ 363.317085][ C0] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 363.317107][ C0] RIP: 0033:0x7f3b45375b99 [ 363.317120][ C0] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 363.317132][ C0] RSP: 002b:00007f3b461a0048 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 363.317148][ C0] RAX: ffffffffffffffda RBX: 00007f3b45504110 RCX: 00007f3b45375b99 [ 363.317160][ C0] RDX: 00000000200000c0 RSI: 0000000040305828 RDI: 0000000000000004 [ 363.317170][ C0] RBP: 00007f3b453e4a7a R08: 0000000000000000 R09: 0000000000000000 [ 363.317181][ C0] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 363.317192][ C0] R13: 000000000000006e R14: 00007f3b45504110 R15: 00007fff90a366a8 [ 363.317209][ C0] [ 363.343086][ T27] Kernel panic - not syncing: hung_task: blocked tasks [ 363.343105][ T27] CPU: 1 PID: 27 Comm: khungtaskd Not tainted 6.1.96-syzkaller #0 [ 363.343127][ T27] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024 [ 363.343140][ T27] Call Trace: [ 363.343148][ T27] [ 363.343159][ T27] dump_stack_lvl+0x1e3/0x2cb [ 363.343207][ T27] ? nf_tcp_handle_invalid+0x642/0x642 [ 363.343240][ T27] ? panic+0x764/0x764 [ 363.343264][ T27] ? llist_add_batch+0x160/0x1d0 [ 363.343297][ T27] ? vscnprintf+0x59/0x80 [ 363.343326][ T27] panic+0x318/0x764 [ 363.343350][ T27] ? nmi_trigger_cpumask_backtrace+0x2c1/0x3f0 [ 363.343386][ T27] ? memcpy_page_flushcache+0xfc/0xfc [ 363.343415][ T27] ? nmi_trigger_cpumask_backtrace+0x2c1/0x3f0 [ 363.343449][ T27] ? nmi_trigger_cpumask_backtrace+0x33a/0x3f0 [ 363.343485][ T27] ? nmi_trigger_cpumask_backtrace+0x33f/0x3f0 [ 363.343523][ T27] watchdog+0xfc7/0xfd0 [ 363.343558][ T27] ? watchdog+0x1f8/0xfd0 [ 363.343589][ T27] kthread+0x28d/0x320 [ 363.343608][ T27] ? hungtask_pm_notify+0x50/0x50 [ 363.343635][ T27] ? kthread_blkcg+0xd0/0xd0 [ 363.343657][ T27] ret_from_fork+0x1f/0x30 [ 363.343700][ T27] [ 363.348780][ T27] Kernel Offset: disabled [ 364.262980][ T27] Rebooting in 86400 seconds..