last executing test programs: 4.542257938s ago: executing program 3 (id=3705): r0 = socket$inet(0x2, 0x6, 0x0) setsockopt$sock_int(r0, 0x1, 0x2e, &(0x7f0000000180)=0x7b, 0x4) ppoll(&(0x7f0000000280)=[{r0, 0x4040}], 0x1, 0x0, 0x0, 0x0) 4.322845521s ago: executing program 3 (id=3708): syz_mount_image$vfat(&(0x7f0000001800), &(0x7f0000000080)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x8, &(0x7f0000000980)=ANY=[@ANYBLOB="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"], 0x1, 0x29d, &(0x7f0000000400)="$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") mount$cgroup(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x2010042, 0x0) mount$overlay(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0) 4.122507845s ago: executing program 3 (id=3713): r0 = syz_usb_connect(0x5, 0x207, &(0x7f0000009a00)=ANY=[@ANYBLOB="12011003a9372540f30c1010db26010203010902f50101030250070904"], &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0}) syz_usb_disconnect(r0) syz_usb_connect$midi(0x5, 0x24, &(0x7f0000000000)={{0x12, 0x1, 0x110, 0x0, 0x0, 0x0, 0x40, 0xe41, 0x4249, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x1, 0xa, 0x8, 0x3, "", {{{0x9, 0x4, 0x0, 0x0, 0x0, 0x1, 0x3, 0x20, 0xdb}}}}}]}}, &(0x7f0000000180)={0x0, 0x0, 0x59, &(0x7f00000000c0)=ANY=[@ANYBLOB="050f59"]}) 3.411956058s ago: executing program 0 (id=3725): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$devlink(&(0x7f0000000380), r0) sendmsg$DEVLINK_CMD_SB_TC_POOL_BIND_GET(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f00000003c0)={0x54, r1, 0x111, 0x70bd27, 0x25dfdbfd, {}, [{{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0x3, 0x2}}, {0xd5, 0xb, 0x9}, {0x6, 0x16, 0xfffa}, {0x5, 0x12, 0x1}}]}, 0x54}, 0x1, 0x0, 0x0, 0x804}, 0x20000) 3.31265409s ago: executing program 0 (id=3727): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000740)=@base={0x9, 0x4, 0x8, 0xb}, 0x50) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000f4751f2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b70300000000ff80850000002d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000440)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x24, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$PROG_BIND_MAP(0xa, &(0x7f0000000380)={r1}, 0xc) 3.246575431s ago: executing program 0 (id=3728): syz_mount_image$erofs(&(0x7f0000000400), &(0x7f0000000140)='./file1\x00', 0x1000801, &(0x7f0000000000)=ANY=[], 0x2, 0x1f3, &(0x7f0000000780)="$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") socket$inet_icmp_raw(0x2, 0x3, 0x1) syz_emit_vhci(&(0x7f0000000000)=ANY=[@ANYBLOB="040e04e04020"], 0x7) 2.939011587s ago: executing program 0 (id=3731): syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000180)='./file0\x00', 0x20044e, &(0x7f0000000340)={[{@minixdf}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x1ff}}, {@stripe}, {@noblock_validity}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x8}}]}, 0x3, 0x451, &(0x7f0000000f80)="$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") mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000180), 0x0, &(0x7f00000003c0)={[{@xino_auto}, {@lowerdir={'lowerdir', 0x3d, './file0'}, 0x3a}], [], 0x2f}) openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) 2.689478991s ago: executing program 0 (id=3734): r0 = memfd_create(&(0x7f0000000100)='+\x88\xc7s\x00\x00\x942nodev\x00\x00\x8cZ_Pv\x03\xa7\xc1\b\xec\x90Q\x85\x83\xcd\x16\xdcw\'\x8a\xe5N\x8c\x17\xfd\xc5\xad\xd5y\x15\x1fx\x17\f\xbc\xd1.\x8cA\x17\x86\xb7-j!Y\x92\xd9\xc4\r8\xd0\xc9X\xa7\x11\xa3\xf0\x8a*\xbc\x87\xcd\x1fl\xfc\xf3]\xb8\xbd\x02\v<\fl\xa6]\xa5\xfb\x05\xcb\x9c\xe2\xc8\x05\xa5\xa5\xeb\xa9\xef\xe3\xf1b\x81\xec\xac\xb6\x80\xd5\xf5S\x85\x06O\x05\xb8\xa1\x15\xcc\x17\xe8s\x95\x95B\xee_\x98\x91)\xe7\xa8+\x8c\xee\x83@q\x16\xcf3\x0f\x81\xa8\xa9`i\x01m:\xcc\x1c\xed<\xcfA3n\xfd\n>\x03\xae\f \xdbH\'\x05\x82\xdbLE\x14\xcdq\x1abcf\xdb8\xe9a\xa8\x00'/201, 0x2) fcntl$addseals(r0, 0x409, 0x12) mmap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x1000003, 0x11, r0, 0x0) 2.618931412s ago: executing program 4 (id=3735): r0 = openat$rtc(0xffffff9c, &(0x7f0000000040), 0xc2440, 0x0) ioctl$RTC_WKALM_SET(r0, 0x4028700f, &(0x7f0000000000)={0x1, 0x0, {0xf, 0x2f, 0x8, 0xf, 0x9, 0x2a5, 0x3, 0x69, 0xffffffffffffffff}}) ioctl$RTC_AIE_ON(r0, 0x7001) 2.416918486s ago: executing program 4 (id=3736): r0 = socket$caif_stream(0x25, 0x1, 0x0) r1 = dup(r0) mount$9p_fd(0x0, &(0x7f00000001c0)='.\x00', &(0x7f0000000180), 0x0, &(0x7f0000000040)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r1}}) 2.176114911s ago: executing program 0 (id=3738): mq_open(&(0x7f0000000380)='eth0\x00#\x13\xaeu\xe0\xfbu0*\xf3\x11i\xdd\xd9\xc6\x87\xde\xbf_\xa0\xf6\xdfk\xbf.\"\xa6\xc0#p\xcd\x1c/\xa6\xf2\xbcyL\x85a\xb5\xbb~+>\xbc\x93\xf8\xab\x9a3\x85l\x1d\x15\x11\x1a{@!2\xb6!\xae\xf79k\x90\x88\v8I$\xfdQ\x1d\x90=r\xd8\xc0\xd8\t/\x8dv\xb8\x93\xc3C\xae\x9dc\xd1T\xdd\x14\xd3A=z\xee\xbd/X\xbemOX)s\x94\xde\xbe_\v\x01\xbe\xeb\bLTrw\x88\x9e0\t\xc6\xe2\x9c\xed\\\xd8[\xc8\x04 \xf3\xac]V\x1d:\xfc\xc3\x9e\x02\ax\xef\xfe\x1c.TT\x01\x00\x00\x00a%\xdcQ\xb3CuT\xcc7\x8avs\xb2\a\xfe\xb3j*\xad\x18I\xcc\xe9\xaa{]\xef\xb7\xf2\xee*\xf95\bJt\xd0s\xc4\xaa\xc8\x13~\xb2\xf20\xbdf\xdb\xaeG\xe3\xfb\xef\x94\xef:Q\x1b\xe3\xa3\xa4}\xef`e\xcdL\xab\xdb\r\xf2y\x9fg1\xf4\t\x18i/!\x13\xf1,\x8cu\xaa\xbf~)\x94\x1b2\x93\x86\xe7\x9a\xf2j\xa8\x96\xa6\xa2\xfcN\x81\xafTh\xb3\x1bo:\xe8\vq7S\xe4H\xf3L\xa0\x9c\x97B\x12\x10\x9d\xaa\x7fq\x06\xb9(\xf6\x1c\x83\xb1J\xec\x926\xb5a0\xa0B\xae|\x00\x17\xc0\xa3\xd5\xf9\xaa\x98/\xa4v\xe4)I\xf3+[e\x95\x89\x99\xca\x8e\xc5\xd3\\T\xf0\x1a|5\xfff\xff\x99\xa4\xbb\x9e#oR\xa4\xf1\xba\x04c\xb3-\xf7R\xb85\xb5\xdb\xe9?\xfa/\xdf\xb4R\xbfx=\v_j\x8e\xb0\'\xf4\xe5\xff!\xe1\xbf\x82e\xb1\x9b\x8d\xf3L\t\xd21\x9cbwV\xc8\xcc\xe4\x96M_w\xbc\xdf9\b\r\xf6\x95\xae\xb5,\x92\x8c\xc0DQm\x80\xd1w\xa2\x1a\x12Z\xe5\xf4H\xf7D\n\x96J\x93\xfb\xf0$\x9f\xf7\xa2\xae$O\xa3\xb6\xf5\x98\xd3\v\x00\x86\xa5\x8b\x81\x04\xaf\x03s\xe5\x86>\x0e\xa6\xe6\x1aV\x17\x8b\xed\xa7\'\xd0\r_\xe8,XVR\x13\xe5%\xb9\x88\xb8W@D\'\x17A\xc8\x80\x02J\xd4V\x00wH(\xc5v\f\xc9\xb6\xdf..$\xe6P(_\xf1\'\xc1:\xa3\xcb\xd9\xd1\xc7\x13\x99Md\x1dc\xf1\'j\x03!\x13\xd1\xb8\xbf\xe6\xb2M\b/\rp\xa5\x00\x00\x00\x00', 0x40, 0x9, 0x0) seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x7, &(0x7f0000000240)={0x1, &(0x7f0000000200)=[{0x6, 0x1, 0x7, 0x7ffffffa}]}) mq_unlink(&(0x7f0000000340)='eth0\x00') 1.947191305s ago: executing program 32 (id=3738): mq_open(&(0x7f0000000380)='eth0\x00#\x13\xaeu\xe0\xfbu0*\xf3\x11i\xdd\xd9\xc6\x87\xde\xbf_\xa0\xf6\xdfk\xbf.\"\xa6\xc0#p\xcd\x1c/\xa6\xf2\xbcyL\x85a\xb5\xbb~+>\xbc\x93\xf8\xab\x9a3\x85l\x1d\x15\x11\x1a{@!2\xb6!\xae\xf79k\x90\x88\v8I$\xfdQ\x1d\x90=r\xd8\xc0\xd8\t/\x8dv\xb8\x93\xc3C\xae\x9dc\xd1T\xdd\x14\xd3A=z\xee\xbd/X\xbemOX)s\x94\xde\xbe_\v\x01\xbe\xeb\bLTrw\x88\x9e0\t\xc6\xe2\x9c\xed\\\xd8[\xc8\x04 \xf3\xac]V\x1d:\xfc\xc3\x9e\x02\ax\xef\xfe\x1c.TT\x01\x00\x00\x00a%\xdcQ\xb3CuT\xcc7\x8avs\xb2\a\xfe\xb3j*\xad\x18I\xcc\xe9\xaa{]\xef\xb7\xf2\xee*\xf95\bJt\xd0s\xc4\xaa\xc8\x13~\xb2\xf20\xbdf\xdb\xaeG\xe3\xfb\xef\x94\xef:Q\x1b\xe3\xa3\xa4}\xef`e\xcdL\xab\xdb\r\xf2y\x9fg1\xf4\t\x18i/!\x13\xf1,\x8cu\xaa\xbf~)\x94\x1b2\x93\x86\xe7\x9a\xf2j\xa8\x96\xa6\xa2\xfcN\x81\xafTh\xb3\x1bo:\xe8\vq7S\xe4H\xf3L\xa0\x9c\x97B\x12\x10\x9d\xaa\x7fq\x06\xb9(\xf6\x1c\x83\xb1J\xec\x926\xb5a0\xa0B\xae|\x00\x17\xc0\xa3\xd5\xf9\xaa\x98/\xa4v\xe4)I\xf3+[e\x95\x89\x99\xca\x8e\xc5\xd3\\T\xf0\x1a|5\xfff\xff\x99\xa4\xbb\x9e#oR\xa4\xf1\xba\x04c\xb3-\xf7R\xb85\xb5\xdb\xe9?\xfa/\xdf\xb4R\xbfx=\v_j\x8e\xb0\'\xf4\xe5\xff!\xe1\xbf\x82e\xb1\x9b\x8d\xf3L\t\xd21\x9cbwV\xc8\xcc\xe4\x96M_w\xbc\xdf9\b\r\xf6\x95\xae\xb5,\x92\x8c\xc0DQm\x80\xd1w\xa2\x1a\x12Z\xe5\xf4H\xf7D\n\x96J\x93\xfb\xf0$\x9f\xf7\xa2\xae$O\xa3\xb6\xf5\x98\xd3\v\x00\x86\xa5\x8b\x81\x04\xaf\x03s\xe5\x86>\x0e\xa6\xe6\x1aV\x17\x8b\xed\xa7\'\xd0\r_\xe8,XVR\x13\xe5%\xb9\x88\xb8W@D\'\x17A\xc8\x80\x02J\xd4V\x00wH(\xc5v\f\xc9\xb6\xdf..$\xe6P(_\xf1\'\xc1:\xa3\xcb\xd9\xd1\xc7\x13\x99Md\x1dc\xf1\'j\x03!\x13\xd1\xb8\xbf\xe6\xb2M\b/\rp\xa5\x00\x00\x00\x00', 0x40, 0x9, 0x0) seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x7, &(0x7f0000000240)={0x1, &(0x7f0000000200)=[{0x6, 0x1, 0x7, 0x7ffffffa}]}) mq_unlink(&(0x7f0000000340)='eth0\x00') 1.401726755s ago: executing program 2 (id=3745): mmap(&(0x7f0000000000/0x200000)=nil, 0x200000, 0x300000b, 0x204031, 0xffffffffffffffff, 0xec776000) r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0xe, 0x6, &(0x7f0000000000)=@framed={{0x5, 0x0, 0x0, 0x0, 0x0, 0x71, 0x11, 0x42}, [@func={0x85, 0x0, 0x1, 0x0, 0x2}, @call={0x85, 0x0, 0x0, 0x5}, @exit], {0x95, 0x0, 0x5a5}}, &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0xffffffffffffffff, 0x6}, 0x70) bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000100)={r0, 0xe0, &(0x7f0000000340)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, &(0x7f0000001b40), 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x47, 0x0}}, 0x10) 1.351967186s ago: executing program 4 (id=3746): r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffff, 0x4}, 0x6) recvmmsg(r0, &(0x7f0000000580)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) 1.345510736s ago: executing program 1 (id=3747): r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x1f, 0x11, &(0x7f0000000200)=ANY=[@ANYBLOB="18000000ffffffff000000000000000085000000a8000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b705000000000000850000007b00000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x1a, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000380)={r1, 0x0, 0x0, 0x0, &(0x7f0000000200), 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x50) 1.204765929s ago: executing program 2 (id=3748): close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) pipe(&(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) vmsplice(r0, &(0x7f00000004c0)=[{&(0x7f0000000340)="a0", 0x1}], 0x2be, 0x4) 1.162192099s ago: executing program 1 (id=3749): r0 = socket$inet_smc(0x2b, 0x1, 0x0) listen(r0, 0xffffffff) setsockopt$inet_tcp_int(r0, 0x6, 0x3, &(0x7f0000000000)=0x4, 0x4) 1.160428489s ago: executing program 4 (id=3750): syz_mount_image$exfat(&(0x7f0000002bc0), &(0x7f0000000080)='\xe9\x1fq\x89Y\x1e\x923aK\x00', 0x10000, &(0x7f0000000100)={[{@dmask={'dmask', 0x3d, 0x8001}}, {@dmask={'dmask', 0x3d, 0x6}}, {@uid={'uid', 0x3d, 0xee00}}, {@iocharset={'iocharset', 0x3d, 'iso8859-15'}}, {@fmask={'fmask', 0x3d, 0x1}}, {@namecase}, {@iocharset={'iocharset', 0x3d, 'iso8859-14'}}, {@namecase}, {@errors_remount}, {@errors_continue}]}, 0x1, 0x1533, &(0x7f0000006800)="$eJzs3AucTtX6OPDnWWvtMSS9TXIZ1lrP5k0uiyTJJUkuSZIkSW4JSZIjCYkht6QhCcllSC5DSC4Tk8b9fr8kJEmTJCG5Jev/mZi/OnX+55xfnfz+Z57v5/N+Zj2z3mftZ88z73733vPyTZehNRrVrNqAiOAPwYtfEgAgFgAGAsA1ABAAQNm4snEZ89klJvyxjbA/10PJV7oCdiVx/7M27n/Wxv3P2rj/WRv3P2vj/mdt3P+sjfvPWFa2eXr+a/mRdR98/z8r4/f//yLpJcd+sbbk9V0BYv7VFO7////wD+Ry//9rBf/Kk7j/WRv3P6uKvdIFsP8F+PWfFWT7hzPc/6yN+89YVvbLe8GxcOXvR//VD4j8J/8G4ntd/Clf+f38h/vPGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4z9Bc74yxQAZI6vdF2MMcYYY4wxxhj78/hsV7oCxhhjjDHGGGOM/echCJCgIIAYyAaxkB1ygACIyZy/FuLgOsgN10MeyAv5ID/EQwEoCBoMWCAIoRAUhijcAEXgRigKxaA4lAAHJaEU3ASl4WYoA7dAWbgVysFtUB4qQEWoBLdDZbgDqsCdUBXugmpQHWpATbgbasE9UBvuhTpwH9SF+6EePAD14UFoAA9BQ3gYGsEj0BgehSbQFJpBc2jxP8p/AXrAi9ATekEC9IY+8BL0hX7QHwbAQHgZBsErMBhehUQYAkPhNRgGr8NweANGwEgYBW/CaHgLxsBYGAfjIQkmwER4GybBOzAZpsBUmAbJMB1mwLswE2bBbHgP5sD7MBfmwXxYACnwASyERZAKH8Ji+AjSYAkshWWwHFbASlgFq2ENrIV1sB42wEbYBJthC2yFbbAddsBO+Bh2wSewG/bAXvgU9sFn/2b+6b/L74qAgAIFKlQYgzEYi7GYA3NgTsyJuTAXRjCCcRiHuTE35sE8mA/zYTzGY0EsiAYNEhIWwkIYxSgWwSJYFIticSyODh2WwlJYGm/GMlgGy2JZLIflsDxWwApYCSthZayMVbAKVsWqWA2rYQ2sgXfj3dgba2NtrIN1sC7Wzbw9hQ2wATbEhtgIG2FjbIxNsAk2w2bYAltgS2yJrbAVtsE22BbbYjtsh+2xPXbADtgRO2In7ISdsTN2wS7YFbtht/QXsgG+iC9iL6wmemMf7IN9MTFbfxyAA/BlHISv4Cv4KibiEByKr+Fr+DoOx1M44sJIHIWjsLJ4C8fgWCQxHpMwCSfiRJyEk3AyTsEpOA2TcTrOwBk4E2fhLHwP5+D7+D7Ow3m4AFMwBRfiIkzFVFyMpzENl+BSXIbLcQUux1W4GlfhWlyHa3EDbsBNuAm34BbchttwB+7Aj1EB4Ce4B/dgIu7Dfbgf9+MBPIAH8SCmYzoewkN4GA/jETyCR/EoHsPjeAKP40k8iafwNJ7BM3gOz+F5fC7+q4YfF1uTCCKDEkrEiBgRK2JFDpFD5BQ5RS6RS0RERMSJOJFb5BZ5RB6RT+QT8SJeFBQFhRFGkAgzjhQiKqKiiCgiioqiorgoLpxwopQoJUqL0qKMKCPKiltFOXGbKC8qiNaukqgkKos2roq4U1QVVUU1UV3UEDVFTVFL1BK1RW1RR9QRdUVdUU88IOqL3tgfHxIZnWkkhmBjMRSbiKZCXjpCtRTDsZVoLdqIJ8RIHIHtREvXXjwtOogx2FH8TYzFZ0VnMR67iOdFV9FNdBcviB6ilespeonJ2Fv0EdOwr+gn+osBYiZWF+/hnOw1xKsiUQwRQ8VrYgG+LoaLN8QIMVKMEm+K0eItMUaMFePEeJEkJoiJ4m0xSbwjJospYqqYJpLFdDFDvCtmillitnhPzBHvi7linpgvFogU8YFYKBaJVPGhWCw+EmliiVgqlonlYoVYKVaJ1WKNWCvWifVig9goNonNYovYKraJ7WKH2Ck+FrvEJ2K32CP2ik/FPvGZ2C8+FwfEF+Kg+FKki6/EIfG1OCy+EUfEt+Ko+E4cE8fFCfG9OCl+EKfEaXFGnBXnxI/ivPhJXBBegEQppJRKBjJGZpOxMrvMIa+SOWWQefyXcfI6mVteL/PIvDKfzC/jZQFZUGpppJUkQ1lIFpZReYMsIm+URWUxWVyWkE6WlKXkTbK0vFmWkbfIsvJWWU7eJsvLCrKirCRvl5XlHRIiF7dRTVaXNWRNebdMgHtkbXmvrCPvk3Xl/bKefEDWlw/KBvIh2VA+LBvJR2Rj+ahsIpvKZrK5bCEfky3l47KVbC3byCdkW/mkbCefku3l07KD9Jd+RZ6VneVzsot8XnaV3WR3+ZO8IL3sKXtJ6A2yj3xJ9pX9ZH85QA6UL8tB8hU5WL4qE+UQOVS+JofJ1+Vw+YYcIUfKUfJNOVq+JcfIsXKcHC+T5AQ5Ub4tJ8l35GQ5RU6V02SynC77X1pptpT/NP/t38kf/PPWN8nNcovcKrfJ7XKH3Ck/lrvkLrlb7pZ75V65T+6T++V+eUAekAflQZku0+UheUgeloflEXlEHpVH5TF5XJ6V38uT8gd5Sp6Wp+VZeU6ek+cv/QxAoRJKKqUCFaOyqViVXeVQV6mc6mqVS12jIupaFaeuU7nV9SqPyqvyqfwqXhVQBZVWRllFKlSFVGEVVTfgpV8YVVyVUE6VVKXUTf9OviqiblRFVbFf5WfWl/AP6muhWqiWqqVqpVqpNqqNaqvaqnaqnWqv2qsOqoPqqDqqTqqT6qw6qy6qi+qquqruqrvqoXqonqqnSlAJqo96SfVV/VR/NUANVC+LjH0YrAarRJWohqqhapgapoar4WqEGqFGqVFqtBqtxqgxapwap5JUkpqoJqpJapKarCarqWqqSlbJaoaaoWaqmWq2mq3mqDlqrpqr5qv5KkWlqIVqoUpVqWqxWqzS1BK1RC1Ty9QKtUKtUqvUGrVGrVPr1Aa1QaWpzWqz2qq2qu1qu9qpdqpdapfarXarvWqv2qf2qf1qvzqgDqiD6qBKV+nqkDqkDqvD6og6oo6qo+qYOqZOqBPqpDqpTqlT6ow6o86pc+q8Oq8uqAsZp32BCESgAhXEBDFBbBAb5AhyBDmDnEGuIFcQCSJBXBAX5A6uD/IEeYN8Qf4gPigQFAx0YAIbiEtNjwY3BEWCG4OiQbGgeFAicEHJoFRwU1A6uDkoE9wSlA1uDcoFtwXlgwpBxaBScHtQObgjqBLcGVQN7gqqBdWDGkHN4O6gVnBPUDu4N6gT3BfUDe4P6gUPBPWDB4MGwUNBw+DhoFHwSNA4eDRoEjQNmgXNgxZ/6vren8r7uOupe+kE3Vv30S/pvrqf7q8H6IH6ZT1Iv6IH61d1oh6ih+rX9DD9uh6u39Aj9Eg9Sr+pR+u39Bg9Vo/T43WSnqAn6rf1JP2Onqyn6Kl6mk7W0/UM/a6eqWfp2fo9PUe/r+fqeXq+XqBT9Ad6oV6kU/WHerH+SKfpJXqpXqaX6xV6pV6lV+s1eq1ep9frDXqj3qQ36y16q96mt+sdeqf+WO/Sn+jdeo/eqz/V+/Rner/+XB/QX+iD+kudrr/Sh/TX+rD+Rh/R3+qj+jt9TB/XZfT3+qT+QZ/Sp/UZfVaf0z/q8/onfUH7jJP7jLd3o4wyMSbGxJpYk8PkMDlNTpPL5DIREzFxJs7kNrlNHpPH5DP5TLyJNwVNQZOBDJlCppCJmqgpYoqYoqaoKW6KG2ecKWVKmdKmtCljypiypqwpZ8qZ8qa8qWgqmtvN7eYOc4e509xp7jJ3meqmuqlpappappapbWqbOqaOqWvqmnqmnqlv6psGpoFpaBqaRqaRaWwamyamiWlmmpkWpoVpaVqaVqaVaWPamLamrWln2pn2pr3pYDqYjqaj6WQ6mc6ms+liupiupqvpbrqbHqaH6Wl6mgSTYPqYPqav6Wv6m/5moBloBplBZrAZbBJNohlqhpphZpgZboabEWakGZVxomreMmPMWDPOjDdJJslMNBPNJDPJTDaTzVQz1SSbZDPDzDAzzUwz28w2c8wcM9fMNfPNfJNiUsxCs9CkmlSz2Cw2aSbNLDVLzXKz3Kw0K81qs9qsNWvNelhvNpqNZrPZbLaarWa72W52mp1ml9lldpvdZq/Za/aZfWa/2W8OmAPmoDlo0k26OWQOmcPmsDlijpij5qg5Zo6ZE+aEOWlOmlPmlDljzphzJu+l90tvYm12m8NeZXPaq20ue439+zifzW/jbQFb0Gqbx+b9VWystUVtMVvclrDOlrSl7E2/icvbCrairWRvt5XtHbbKb+Ja9h5b295r69j7bE1796/iuvZ+W88+YusjAtimtqFtbhvZR2xj+6htYpvaZra5bWuftO3sU7a9fdp2sM/8Jl5oF9nVdo1da9fZ3XaPPWPP2sP2G3vO/mh72l52oH3ZDrKv2MH2VZtoh/wmHmXftKPtW3aMHWvH2fG/iafaaTbZTrcz7Lt2pp31mzjFfmDn2FQ7186z8+2Cn+OMmlLth3ax/cim2QCW2mV2uV1hV9pV/7fWZXaD3Wg32V32E7vVbrPb7Q67M/NE2O6xe+2ndp/9zB6yX9sD9gt70B6x6farn+OM/Ttiv7VH7Xf2mD1uT9jv7Un7g8rMztj37+1P9oL1FggJSJKigGIoG8VSdspBV1FOuppy0TUUoWspjq6j3HQ95aG8lI/yUzwVoIKkyZAlopAKUWGK0g2UWV5xKkGOSlIpuolK081Uhm6hsnQrlaPbqDxVoIpUiW6nynQHVaE7qSrdRdWoOtWgmnQ31aJ7qDbdS3XoPqpL91M9eoDq04PUgB6ihvQwNaJHqDE9Sk2oKTWj5tSCHqOW9Di1otbUhp6gtvQktaOnqD09TR3oGepIf6NO9Cx1pueoCz1PXakbdacXqAe9SD2pFyVQb+pDL1Ff6kf9aQANpJdpEL1Cg+lVSqQhNJReo2H0Og2nN2gEjaRR9CaNprdoDI2lcTSekmgCTaS3aRK9Q5NpCk2laZRM02kGvUszaRbNpvdoDr1Pc2kezacFlEIf0EJaRKn0IS2mjyiNltBSWkbLaQWtpFW0mtbQWlpH62kDbaRNtJm20FbaRttpB+2kj2kXfUK7aQ/tpU9pH31G++lzOkBf0EH6ktLpKzpEX9Nh+oaO0Le+F31Hx+g4naDv6ST9QKfoNJ2hs3SOfqTz9BNdIE8QYihCGaowCGPCbGFsmD3MEV4V5gyvDnOF14SR8NowLrwuzB1eH+YJ84b5wvxhfFggLBjq0IQ2pDAMC4WFw2h4Q1gkvDEsGhYLi4clQheWDEuFN4Wlw5vDMuEtYdnw1rBceFtYPqwQPnJfpfD2sHJ4R1glvDOsGt4VVgurhzXCmuHdYa3wnrB2eG9YJ7wvLBPeH9YLHwjrhw+GDcKHwobhw2Gj8JGwcfho2CRsGjYLm4ctwsfCluHjYauwddgmvCpsGz4ZtgufCtuHT4cdwmd+nr9/Ueb8E7+ZTwh7h33Cl8KXQu/vlfOjC6Ip0Q+iC6OLoqnRD6OLox9F06JLokujy6LLoyuiK6Oroquja6Jro+ui66Mbohujm6Le18wGDp1w0ikXuBiXzcW67C6Hu8rldFe7XO4aF3HXujh3ncvtrnd5XF6Xz+V38a6AK+i0M846cqEr5Aq7qLvBFXE3uqKumCvuSjjnSrpSrrlr4Vq4lu5x18q1dm3cE+4J96R70j3lnnJPuw7uGdfR/c11cs+6zu4595x73nV13Vx394Lr4SbkuviaTHB9XB/X1/V1/V1/N9ANdIPcIDfYDXaJLtENdUPdMDfMDXfD3Qg3wo1yo9xoN9qNcWPcODfOJbkkN9FNdJPcJDfZTXZT3VSX7JLdDDfDzXQzXeVZF7cy18118918l+JS3EKXcc6Y6ha7xS7Npbmlbqlb7pa7lW6lW+1Wu7VurVvv1ruNbqPb7Da7rW6r2+62u51up9vldrnd/pqLi7p9br/b7w64A+6g+9Klu6/cIfe1O+y+cUfct+6o+84dc8fdCfe9O+l+cKfcaXfGnXXn3I/uvPvJXXDeJUUmRCZG3o5MirwTmRyZEpkamRZJjkyPzIi8G5kZmRWZHXkvMifyfmRuZF5kfmRBJCXyQWRhZFEkNfJhZHHko0haZElkaWRZZHlkRcT7AltDX8gX9lF/gy/ib/RFfTFf3Jfwzpf0pfxNvvTFutO8v9WX87f58r6Cr+gf9U18U9/MN/ct/GO+pX/ct/KtfRv/hG/rn/Tt/FO+vX/ad/DP+I7+b76Tf9Z39s/5Lv5539V38939C76Hf9H39L18gu/t+/iXfF/fz/f3A/xA/7If5F/xg/2rPtEP8UP9a36Yf90P92/4EX6kHxXzph+deYkM432Sn+An+rf9JP+On+yn+Kl+mk/20/0M/66f6Wf52f49P8e/7+f6eX6+X+BT/Ad+oV/kU/2HfrH/yKf5JZk3jf1Kv8qv9mv8Wr/Or/cb/Ea/yW/2W/xWv81v9zv8Tv+x3+U/8bv9Hr/Xf+r3+c/8fv+5P+C/8Af9lz7df+UP+a/9Yf+NP+K/9Uf9d/6YP+5P+O/9Sf+DP+VP+zP+rD/nf/Tn/U/+Av+bNcYYY4yxf8mEy0Px65mLt/N7/06O+MWT+wDA1dvyp/9yPuOMcn2ei+N+Ij424+vTvbo8lPmoVi0hIeHSc9MkBIXnAWT+JSjDzx89uBQvgTbwJLSH1lD6d+vvJ7qdo3+yfvRWgBy/yMkoKDO+vP7nAJjwO+s/9sSoheXCM3H/j/XnARQtfDknO1yOl0Cbn++vtIYy/6D+vC3/Sf3Zv0gCaPWLnJxwOb5cfyl4HJ6B9r96JmOMMcYYY4wxdlE/UbFT5vVn5ic+f+/6PF5dzskGl+N/dn3OGGOMMcYYY4yxK+/Zbt2feqx9+9ad/v1Blf9R1r88aAz/qZV58LsD7wEyv6MA4A8uCJAxkH/lXmz5S7aVeOml8/dTy8/6AP53tPLPGFzhAxNjjDHGGGPsT3f5pP/X31dXqiDGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYYywL+iv+O7ErvY+MMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcbYlfZ/AgAA//+1tfsI") r0 = openat$dir(0xffffffffffffff9c, &(0x7f00000002c0)='.\x00', 0x0, 0x0) getdents64(r0, &(0x7f0000000c00)=""/4096, 0x1000) 1.038249581s ago: executing program 2 (id=3751): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$l2tp(&(0x7f0000000140), 0xffffffffffffffff) sendmsg$L2TP_CMD_TUNNEL_CREATE(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000240)={0x64, r1, 0x1, 0xffffffff, 0x400000, {}, [@L2TP_ATTR_PROTO_VERSION={0x5}, @L2TP_ATTR_CONN_ID={0x8, 0x9, 0x10000000}, @L2TP_ATTR_IP6_DADDR={0x14, 0x20, @ipv4={'\x00', '\xff\xff', @empty}}, @L2TP_ATTR_PEER_CONN_ID={0x8}, @L2TP_ATTR_IP6_SADDR={0x14, 0x1f, @empty}, @L2TP_ATTR_ENCAP_TYPE={0x6}, @L2TP_ATTR_UDP_ZERO_CSUM6_RX={0x5}]}, 0x64}, 0x1, 0x620b}, 0x0) 919.224914ms ago: executing program 3 (id=3752): r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x81000) unshare(0x22020600) mq_timedreceive(r0, 0x0, 0x0, 0x7, 0x0) 893.808124ms ago: executing program 1 (id=3753): r0 = fanotify_init(0x200, 0x0) r1 = dup(r0) fanotify_mark(r0, 0x601, 0x4800107b, r1, 0x0) 728.585937ms ago: executing program 2 (id=3754): r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/profiling', 0x0, 0x0) setresuid(0x0, 0xee01, 0x0) utimensat(r0, 0x0, &(0x7f0000000040)={{}, {0x0, 0x3ffffffe}}, 0x0) 643.235929ms ago: executing program 1 (id=3755): r0 = io_uring_setup(0x2754, &(0x7f0000000080)={0x0, 0xfffffffc, 0x800, 0xfffffffe, 0x800001b4}) io_uring_register$IORING_REGISTER_BUFFERS_UPDATE(r0, 0x10, &(0x7f00000001c0)={0x2, 0x0, &(0x7f0000000140)=[{0x0}], 0x0, 0x1}, 0x20) io_uring_register$IORING_REGISTER_BUFFERS(r0, 0x0, &(0x7f00000002c0)=[{0x0}], 0x1) 613.221899ms ago: executing program 3 (id=3756): syz_open_dev$vim2m(&(0x7f0000000200), 0x81, 0x2) r0 = syz_open_dev$radio(&(0x7f0000000000), 0xffffffffffffffff, 0x2) ioctl$VIDIOC_S_EXT_CTRLS(r0, 0xc0205648, &(0x7f00000001c0)={0x0, 0x1, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000040)={0xf0f041, 0x0, '\x00', @ptr}}) 587.05013ms ago: executing program 4 (id=3757): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0) sendmsg$NFT_BATCH(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000140)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x5}}, [@NFT_MSG_NEWRULE={0x5c, 0x6, 0xa, 0x401, 0x0, 0x0, {0xa, 0x0, 0x1}, [@NFTA_RULE_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_RULE_EXPRESSIONS={0x30, 0x4, 0x0, 0x1, [{0x2c, 0x1, 0x0, 0x1, @socket={{0xb}, @val={0x1c, 0x2, 0x0, 0x1, [@NFTA_SOCKET_DREG={0x8, 0x2, 0x1, 0x0, 0x8}, @NFTA_SOCKET_LEVEL={0x8, 0x3, 0xcb}, @NFTA_SOCKET_KEY={0x8, 0x1, 0x1, 0x0, 0x3}]}}}]}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x1}}}, 0x84}, 0x1, 0x0, 0x0, 0x4000850}, 0x24000000) 400.202433ms ago: executing program 2 (id=3758): r0 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000100), 0xffffffffffffffff) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$TIPC_NL_PEER_REMOVE(r1, &(0x7f0000001200)={0x0, 0x0, &(0x7f00000011c0)={&(0x7f0000001000)={0x38, r0, 0x1, 0x70bd2d, 0x25dfdbff, {}, [@TIPC_NLA_NET={0x24, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_NODEID={0xc, 0x3, 0x7}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0x9}, @TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0xffffffffc9de91c6}]}]}, 0x38}, 0x1, 0x0, 0x0, 0xc000}, 0x20000080) 376.246894ms ago: executing program 1 (id=3759): syz_mount_image$hfs(&(0x7f0000000180), &(0x7f0000000000)='./file1\x00', 0x84, &(0x7f0000000300)=ANY=[], 0x8b, 0x2e7, &(0x7f00000003c0)="$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") openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x183341, 0x0) mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) 227.102336ms ago: executing program 3 (id=3760): r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) r1 = dup(r0) write$UHID_INPUT(r1, &(0x7f0000001080)={0xc, {"a2e3ad214fc752f91b3e090987f70e06d038e7ff7fc6e5539b3264078b089b0e083860090890e0878f0f1ac6e7049b334c959b669a240d5b67f3988f7ef319520100ffe8d178708c523c921b1b5b31310d3b6d0936cd3b78070daa61d8e809ea882f5802b77f07227227b7ba67e0e78669a6f5c2a874e62a9ccdc0d31a0c9f318c0da1993bd160e233df4a62179c6f30e065cd5b91cd0ae193973735b36d5b1b63dd1c00305d3f46635eb016d5b1dda98e2d749be7bd1df1fb3b231fdc69c3090000000002335875271b286329d169934288fd789aa37d6e98b224fd44b65b31334ffc55cc82cd3ac32ecdb08ced6f9081b4dd0d8b38f3cd4498bee800490841bdb114f6b76383709d8f5c55432a909fda039aec54a1236e80f6a8abadea7662496bddbb42be6bfb2f17959d1fe90a56c71b1931870262f5e801119242ca026bfc821e7e7daf2451138e645bb80c617601000000be70de98ec76a9e40dad47f36fd9f7d0d42a4b5f1185ccdcf16ff46295d8a0fa17713c5802630933a9a34af674f3f39fe23491237c08822dec110911e893d0a8c4f677747abc360934b82910ff85bfd995083bba2987a67399eac427d145d595a40b9f6ff14ac488ec130fb3850a27af9544ae15a7e454dea05918b41243513f000000000000000a3621c56cea8d20fa911a0c41db6ebe8cac64f17679141d54b34bbc9980000000b3309603f1d4ab966203861b5b15a841f2b575a8bd0d780231c9c99a80002695104f674c2431dca141fae269cab70e9a66f3c3a9a63e9639e1f59c0ede26c6b5d74b078a5e15c31634e5ae098ce9ee70771aaa18119a867e1088334975e9f73483b6c82fa678ca14ffd9f9db2a7869d85864056526f889af43a6056080572286522449df466c632b3570243f989cce3803f465e41e610c2021d653a5520000008213b704a5000000000000008ef9f190bae97909507041d860420c5664b27921b14dc1db8892fd32d0ad7bc946813591ad8deff4b05f60cea0da7710a80000000000008000bea37ce0d0d4aa202f928f28381aab144a5d429a04a6a2b83c7068ae949ed06e288e810bac9c76600025e19c907f8ea2e2010000008271a1f5f8528f227e79c1389dbdfffe492f21579d2c15b8c70cdb1c332d86d87341432750861ec2bc3451edca194b221cfec4603d276bbaa1dfa6d4e38a48a76eafc9a9a0270e4c10d64cd5a62427264f2377fe763c43470833ac96c45f357cbbaba8f1b1fdcc7cbb61a7cdb9744ed7f9129aede2be21ccfdc4e9134f8684b3a4f354da9a795e96334e207dff70f1988037b2ed3aaf575c0b88d8f146684078416d59fdee5325928974d12dad99dac44c3f0008047096a44002bebc2420aed92fa9b6578b4779415d97b9a6d6d5495c118045651cf41c2fc48b778efa5ea5677747430af4162b987b80c3e001cd34e5c92f76cc4c24eeb8bc4e9ac2bed9e53803edf1a4ae3a9737d214060005ea6f1783e287b3bee96e3a726eafe2fdfaa78d1f48c13b64df07847754b8400daaa69bf5c8f4ceb360c7e658828163e2d25c4aa348561f927e88f63aa70e73a5e69b3df3495903f06572e1e007fa55a2999f596d067312f5779e8dbfdcf3427138f3d444d2639a10477f9bec4b0bbb6e3c04be68981f392203dd0ee3ef478e16dacfc5e3e03cf7ab8e3902f1b0ff034e00000000ca509383815b1b6fc6522d4e4fdc11a48cf42d48604675fde2b94cf00500a2690891abf8ab9c015073014d9e08d4338b8780bdecd436cf0541359bafffa45237f104b96210403b2de9efed496f42355bc7872c827467cfa5c478b095b68441a34cb51682a8ae4d24ad92f243941ed274549b79a7962fb385a882e8020f068bb87af8b90fd8f08876da865d258734dd73583df292892448039ef799cf0630becdbe6c4579b5561dc825ab829827945e020c1f67ee615feb6243378e0610060f02cca4e91b2f001edb3d78fb4b55668dda93ae62fccfcbb2b75a2183c46eb65ca8124e1b4da7fbb77ab2fc043aead87c32ab875ee7c2e7b7019c982cd3b43e4fb1a5fb135c0c7dcee8fe6516a328032f88c042891824659e9e01feffffffffffff83a2b210520106b8a358b50ab7a1fa89af9c251fe5294b3d1802d5676d95f160ec97b1ad94872cb2044642c37b4a6cc6c04effc1672db7e4b68d787d9a7a508ae54b3cd7369d75f2e8c77d95a3d361c040babb171607caac2a3559ad4f75465f49c0d0ae3716db6e00cb11db4a5fade2a57c10238e204a67737c3b42aa01b20f7694a00f16e2d0174035a2c22656dc00880acebdbe8ddbd7072f998d8ac2dfad2ba3a50200000045a45957f24d758ed024b3849c11d412a2a03b4047497022d9c30e23ef4df5c89644f48bb536f7945b59d7bcddff754413d135273ea8e75f22f216c6b9990ae71806f2c00b4025c48b75c0f73cdb9a7b8fa367b50028067e7f16f4dd569d462f4f19eacdb3ed70eeebb4483f8fd777d443e8b40426db6fe2907ac0ca3d2414442e8f3a154704b0e51bc664a137b26be719f4f7c9a5678a674dfc95df80b9ce375dd649c8c704e509bd88c8e63d8c7dd67071115c8982ba46af4d6adcc9f68a75b9397b035153faf463661c953fcad6f37525c1a0e94610dd94323f6c15d085197149bfd6655548cfd9c52c9711937f79abb1a124f1210465483cd3b2d78378cfb85ed82e7da0f6eb6d27df2ae455925d0f6f1ba571eba281f2a654fb39ddff3b484439ff158e7cd419e037f3e3ad038f2211f1033195563c7f93cd54b9094f226e783271e1e5a2a2c10712eab625d64931cd4ffe6738d97b9b5ef828ee9fb059fc01af0e79c1e14b1d25988c69a399567c1d93768f7971d31488b8658a20878b7c1dd7ba02fc42939dde3d4a3339a65d507dc59c51097b40517705da56e9ebf0afa53282bf86dbb58c548069ff6eb95aade7cc66d7bbef724779ca1f731b3346ff177050373d79ff7b3e7f9bc0c1b4b266a8878b90baaa039d3e3b63979ac3df6e6f4859afd50238c7547a39b60810938044ae185d2ba3e00a4e73676864ae090d81eaeecf1d0ab378dd4dd891e937c2ea5410e0513005000000000000003911fab964c271550027697b52160687461602f88df165d884b36ec2b6c25a2f33c715687e9d4afb96d6861aca47da73d6f3dd014e5c5ad8fe995754bd9cf32fce1e31919c4b2082fb84bed4b281769177c6d594f88a4facfd4c735a20307c737afae5136651b1b9bd522d60399473296b831dbd933d93994ba3064279b10ea0c5833f41f157ea2302993dbe433b1aa3a37684f4113c48859465c3b415c3432f81db8719539d5bf372aaaea1cc43a6c5cbe59758bfee2916580dac4b008e595f437491d87abed02cefcd9db53d94d02dae17b118e5d6787463183b4b87c105000000302a808d7f5251440613d17ca51055f2f416a44fe180d2d50c312cca7cb14a20dc331f57a9817139a206fc76957227ffff2de20a4b8e3737fbb40100000006376f799eba367e21f94ca598705f5dcb767d6f0900d6b0f6095e53c4c4234d0c1fbe434f6ab8f43c0013ee93b83946ee7759e89d7bdd1a32d7b311711b757fe43c06d21a35810d8fe98b27faea8aa12bc8716eefc5c97c45ac33eeec964c5214bc3a9359bdea1cccab94f15e36319cb34ebcacedb82c2ed3de5a8a8f0011e8f74e82d7ceec7dc808bf653639d7961939adfdeeeaff19d11efcafb6d546fef271e89d6cc2389e81ff58cefcce3fbf4625a7e7de40e42e07b34449e15e065cc7348663a52190202c7af288a4510de03dab19d26285eda89156d50dd385a602000000000000007007ad1519ad5470de3dd6d6080cafccf8a97406bb6b68a1f0c4549820a73c880f475f732ae00398e8bd1f4908b7807fb33b72685ec37a2d3f766413a60459516246e5a1d998a2017aef0948a68cf255315ab80dd349e891aef595dc4d470e8ac32a308e15fc37d06aeac289c0523f483e1ff7408c6087f1ab652f2ef91d4f2b01987b0f46da034e5c3f745a7ee8101a3934c54e24b48ec0275e2d0687dc746b0827cbf6529006c6b95f2722e58c05f752ce2125596e1cd7655b904801784c416b22f73d324678e2724f43f1fe687c7e8a60c28b82b6522fb5f6ffcdd56fed88935fcb75912d5ecd36dea3bca0b7427d8392c6289455e8f8d2ab2242729251ae233a9e02210e62df0546a74b333a1c48f95fd54acb5741259e8c5488efeee327415cc19451432c6f14c27693102a5bd84857cd6586fc5ca9a93eb0145fac0662ff86107f998a8ef7df8aa14046c55b03d3d47f88a8d60f7774a2ee08008897fb411a94b3c2fc5d5f0db42c0456ec015f08e5247d33ae2d35603ff8454c16f8342856935125102bb6ce431b63ee356b0c785f2f47b90e29389f22fc5b59a70efaea2bd40195af4486220d702e30bfc43c10ec23ea6283994a7dde4dcb61fea6b651fb1d62458d0741a12830052fcc460db043afe525629b40d7cee458e4cb5e930ed624806c43a006e39336d07c2b80c1c128ad2706f48261f7897484c297a1a6613bc18f5a38d442768af38041efe03d152ef95ff569e76db2391f4509d7f339d92fdb4a89364949da398000000000000000d80a4fe654578376e599aff3565b1d531f30912b9945030b81ea9935fd46edb44a78f615255490a4b621501f2a9e4d24624c4dac9274118c67584f5d374755534d7f68f679c4ff516a9c861a0e7e65868fcb2bf1cb9aea4e05df72279fdb0d2b9e935c5af3cf474bed79dfc248c1f5aea4b8b32c5d295e57079d0fe662a46b7f71cd47744db86c50b704c98ad90295c7b2c7439a2d78ccfa79b5fc2bff6bbf840262bf89394b3e0691953264d2700c838fa2c7b3425260f59554e502dcea39cb313b0000000000004ca7c12f45858d6284ca6270d6b2f0e58fded8a7b4a302a97bc641df07720ba2b26bbfcc807ca0abb1b44322269c21c5ec68cb068ea88067d905ea917bb03eefdaebdeabf2d0dce80997c915c8949de992587c2c1cde360500000000000000b77940b5f07722e47a08d367e5f84c96ec664b72934b99b3109af65d77e86abd6859cddf4bbae1f0930462df15fddbc48562ea3511a8065ef028cf12f14dcf6ebecd8d884836174faf1aa609e5f1ee1062dfa13bdc1fa7cfaadba85c72e9758f03a755d0be53f8d2a1df0d07b3d5bd3b01faffd0addbed2881a9700af561ac8c7e36bb2fc4c40e9c766c06817bb903729a7db6ff957697c9ede7885d94ffb0759be0daf60af93109eb1dee72e4363f51af62af6fb2a6df3bec89822a7a0b678058fa3fef86faec216eb6992162f8dcbf719c1484d2f9c55f4901203a9a8a2c3e51074b41bc10360a1a49700d1dfbf66d69f6fbaf506c8bcce8bb0d872a02238926407a4eddd5d000000000000000000000000000040000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000600", 0x1000}}, 0x1006) 226.487996ms ago: executing program 4 (id=3761): openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x20040, 0x0) r0 = syz_open_dev$sndctrl(&(0x7f0000000000), 0x458, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_NEXT_DEVICE(r0, 0xc10c5541, &(0x7f0000000040)) 216.456307ms ago: executing program 2 (id=3762): syz_mount_image$msdos(&(0x7f00000002c0), &(0x7f0000000280)='./file1\x00', 0x4, &(0x7f0000001200)=ANY=[@ANYBLOB="646973636172642c6e66732c6e6f646f74732c636865636b3d72656c617865642c6e6f646f74732c0021f58fa2b27a7840c3303948fff1a7d77303eef6445a12f0e6aabcfab0c82654982ea60657ab4360b13b86db6e5e408f42e7af10823a5df20edee1684dcbdcf52066f41691f46150dc8be496d3ab97e0c6b05c4e944e2ce375e2be4d56df55fc747dbd33975742ef0b71475624cd0fbbcb79ad3d7f60765f40a3afef95"], 0x1, 0x22d, &(0x7f0000000300)="$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") mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1) mkdir(&(0x7f0000000400)='./file0\x00', 0x0) 0s ago: executing program 1 (id=3763): mkdirat(0xffffffffffffffff, &(0x7f0000000340)='./bus\x00', 0x1db) madvise(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0xc) madvise(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0xd) kernel console output (not intermixed with test programs): ss `syz.2.2201'. [ 218.396958][ T9116] JBD2: Ignoring recovery information on journal [ 218.476681][ T9147] genirq: Flags mismatch irq 7. 00000000 (ttyS3) vs. 00000000 (at-a2150c) [ 218.557024][ T9116] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode. [ 218.735888][ T9154] sctp: [Deprecated]: syz.2.2207 (pid 9154) Use of int in max_burst socket option. [ 218.735888][ T9154] Use struct sctp_assoc_value instead [ 218.851126][ T9160] netlink: 'syz.3.2210': attribute type 4 has an invalid length. [ 218.881756][ T9160] netlink: 17 bytes leftover after parsing attributes in process `syz.3.2210'. [ 219.000135][ T4270] ocfs2: Unmounting device (7,0) on (node local) [ 219.075461][ T9166] netlink: 16 bytes leftover after parsing attributes in process `syz.2.2211'. [ 219.111117][ T9166] netlink: 16 bytes leftover after parsing attributes in process `syz.2.2211'. [ 219.479423][ T9182] netlink: 12296 bytes leftover after parsing attributes in process `syz.3.2220'. [ 219.542632][ T9182] netlink: 164 bytes leftover after parsing attributes in process `syz.3.2220'. [ 220.177461][ T9216] ieee802154 phy0 wpan0: encryption failed: -90 [ 220.236597][ T9218] loop0: detected capacity change from 0 to 128 [ 220.305984][ T9218] hpfs: filesystem error: invalid number of hotfixes: 2066844986, used: 2066844985; already mounted read-only [ 220.361257][ T9218] hpfs: filesystem error: improperly stopped [ 220.375096][ T9218] hpfs: You really don't want any checks? You are crazy... [ 220.389852][ T9221] netlink: 'syz.2.2240': attribute type 1 has an invalid length. [ 220.421386][ T9218] hpfs: hpfs_map_sector(): read error [ 220.423735][ T9225] loop3: detected capacity change from 0 to 256 [ 220.455788][ T9218] hpfs: code page support is disabled [ 220.461386][ T9218] hpfs: hpfs_map_4sectors(): unaligned read [ 220.484303][ T9218] hpfs: hpfs_map_4sectors(): unaligned read [ 220.516211][ T9225] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0xf6e00961, utbl_chksum : 0xe619d30d) [ 220.519503][ T9218] hpfs: filesystem error: unable to find root dir [ 220.861529][ T9235] IPv6: sit1: Disabled Multicast RS [ 221.070049][ T9244] netlink: 48 bytes leftover after parsing attributes in process `syz.1.2252'. [ 221.113545][ T9246] 9pnet_fd: p9_fd_create_tcp (9246): problem connecting socket to 127.0.0.1 [ 221.311743][ T9253] loop1: detected capacity change from 0 to 256 [ 221.398428][ T9253] FAT-fs (loop1): Directory bread(block 64) failed [ 221.415639][ T9253] FAT-fs (loop1): Directory bread(block 65) failed [ 221.422286][ T9253] FAT-fs (loop1): Directory bread(block 66) failed [ 221.494065][ T9253] FAT-fs (loop1): Directory bread(block 67) failed [ 221.536336][ T9253] FAT-fs (loop1): Directory bread(block 68) failed [ 221.543575][ T9253] FAT-fs (loop1): Directory bread(block 69) failed [ 221.567237][ T9253] FAT-fs (loop1): Directory bread(block 70) failed [ 221.583979][ T9253] FAT-fs (loop1): Directory bread(block 71) failed [ 221.613309][ T9253] FAT-fs (loop1): Directory bread(block 72) failed [ 221.638293][ T9253] FAT-fs (loop1): Directory bread(block 73) failed [ 221.816877][ T9266] bond0: option active_slave: mode dependency failed, not supported in mode balance-rr(0) [ 222.056440][ T9248] loop2: detected capacity change from 0 to 32768 [ 222.157203][ T9248] ERROR: (device loop2): dbAllocNext: Corrupt dmap page [ 222.157203][ T9248] [ 222.221710][ T9248] ERROR: (device loop2): remounting filesystem as read-only [ 222.265588][ T9248] ialloc: diAlloc returned -5! [ 222.950189][ T9301] netlink: 'syz.3.2281': attribute type 4 has an invalid length. [ 223.101522][ T9280] loop1: detected capacity change from 0 to 32768 [ 223.138062][ T9280] (syz.1.2270,9280,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 223.202136][ T9280] (syz.1.2270,9280,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 223.259453][ T9280] (syz.1.2270,9280,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xbec99099, computed 0x3881d996. Applying ECC. [ 223.302348][ T9280] (syz.1.2270,9280,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0x93f628a2, computed 0x2aee8be5. Applying ECC. [ 223.356015][ T9280] JBD2: Ignoring recovery information on journal [ 223.398718][ T9285] loop0: detected capacity change from 0 to 40427 [ 223.421640][ T9280] (syz.1.2270,9280,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xbec99099, computed 0x3881d996. Applying ECC. [ 223.454552][ T9285] F2FS-fs (loop0): Invalid Fs Meta Ino: node(0) meta(2) root(0) [ 223.481739][ T9280] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode. [ 223.509732][ T9285] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock [ 223.532075][ T9280] (syz.1.2270,9280,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0x93f628a2, computed 0x2aee8be5. Applying ECC. [ 223.548150][ T9285] F2FS-fs (loop0): invalid crc value [ 223.615085][ T9285] F2FS-fs (loop0): Found nat_bits in checkpoint [ 223.617138][ T9280] (syz.1.2270,9280,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0x98842a5e, computed 0xe74db1cd. Applying ECC. [ 223.819084][ T9285] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0 [ 223.838086][ T9285] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e4 [ 223.933569][ T9329] loop4: detected capacity change from 0 to 16 [ 223.979918][ T9329] MTD: Attempt to mount non-MTD device "/dev/loop4" [ 224.072355][ T4278] ocfs2: Unmounting device (7,1) on (node local) [ 224.703484][ T9345] netlink: 'syz.4.2301': attribute type 21 has an invalid length. [ 224.750980][ T9345] netlink: 164 bytes leftover after parsing attributes in process `syz.4.2301'. [ 224.911916][ T9327] loop3: detected capacity change from 0 to 32768 [ 224.993207][ T9327] JBD2: Ignoring recovery information on journal [ 225.081943][ T9327] ocfs2: Mounting device (7,3) on (node local, slot 0) with ordered data mode. [ 225.130054][ T9361] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined [ 225.381290][ T4274] ocfs2: Unmounting device (7,3) on (node local) [ 225.801484][ T9386] x_tables: unsorted entry at hook 1 [ 226.055378][ T4644] usb 4-1: new full-speed USB device number 7 using dummy_hcd [ 226.267931][ T4644] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 226.309570][ T4644] usb 4-1: New USB device found, idVendor=0547, idProduct=2720, bcdDevice=af.55 [ 226.332453][ T4644] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 226.344521][ T9409] tmpfs: Unknown parameter 'no' [ 226.356237][ T4644] usb 4-1: Product: syz [ 226.367110][ T4644] usb 4-1: Manufacturer: syz [ 226.379551][ T4644] usb 4-1: SerialNumber: syz [ 226.414231][ T4644] usb 4-1: config 0 descriptor?? [ 226.646071][ T4644] cdc_subset: probe of 4-1:0.0 failed with error -22 [ 226.865984][ T4644] usb 4-1: USB disconnect, device number 7 [ 226.919926][ T9422] loop1: detected capacity change from 0 to 4096 [ 226.986711][ T9422] ntfs: volume version 3.1. [ 227.001602][ T9422] ntfs: (device loop1): ntfs_lookup_inode_by_name(): Index entry out of bounds in directory inode 0x5. [ 227.041930][ T9422] ntfs: (device loop1): check_windows_hibernation_status(): Failed to find inode number for hiberfil.sys. [ 227.072603][ T9422] ntfs: (device loop1): load_system_files(): Failed to determine if Windows is hibernated. Mounting read-only. Run chkdsk. [ 227.116905][ T9422] ntfs: (device loop1): ntfs_read_locked_attr_inode(): Failed with error code -2 while reading attribute inode (mft_no 0x1a, type 0x80, name_len 4). Marking corrupt inode and base inode 0x1a as bad. Run chkdsk. [ 227.148186][ T9422] ntfs: (device loop1): load_and_init_usnjrnl(): Failed to load $UsnJrnl/$DATA/$Max attribute. [ 227.188565][ T9422] ntfs: (device loop1): load_system_files(): Failed to load $UsnJrnl. Will not be able to remount read-write. Run chkdsk. [ 227.223734][ T9435] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2344'. [ 227.273221][ T9422] ntfs: (device loop1): ntfs_lookup_inode_by_name(): Found already allocated name in phase 2. Please run chkdsk and if that doesn't find any errors please report you saw this message to linux-ntfs-dev@lists.sourceforge.net. [ 227.321701][ T9422] ntfs: (device loop1): ntfs_lookup_inode_by_name(): Corrupt directory. Aborting lookup. [ 227.333393][ T9422] ntfs: (device loop1): ntfs_lookup(): ntfs_lookup_ino_by_name() failed with error code 5. [ 227.679519][ T27] audit: type=1326 audit(1777926517.231:118): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9449 comm="syz.0.2351" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa2bbb9cdd9 code=0x7ffc0000 [ 227.944000][ T9460] loop2: detected capacity change from 0 to 2048 [ 227.979598][ T9460] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 228.004385][ T9466] loop3: detected capacity change from 0 to 128 [ 228.131830][ T9466] Bad inode number on dev loop3: 32769 is out of range [ 228.424884][ T9480] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2366'. [ 229.197705][ T9470] loop4: detected capacity change from 0 to 32768 [ 229.491151][ T9522] loop0: detected capacity change from 0 to 64 [ 229.845411][ T48] Bluetooth: hci1: command 0x2016 tx timeout [ 230.283846][ T9546] netlink: 'syz.4.2399': attribute type 46 has an invalid length. [ 230.318101][ T9546] netlink: 16 bytes leftover after parsing attributes in process `syz.4.2399'. [ 230.390241][ T9554] syz.1.2402: vmalloc error: size 18446744073699066186, exceeds total pages, mode:0xcc0(GFP_KERNEL), nodemask=(null),cpuset=syz1,mems_allowed=0-1 [ 230.513973][ T9554] CPU: 1 PID: 9554 Comm: syz.1.2402 Not tainted syzkaller #0 [ 230.521419][ T9554] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 230.531515][ T9554] Call Trace: [ 230.534829][ T9554] [ 230.537788][ T9554] dump_stack_lvl+0x188/0x24e [ 230.542555][ T9554] ? cpuset_print_current_mems_allowed+0x1b/0x360 [ 230.549002][ T9554] ? show_regs_print_info+0x12/0x12 [ 230.554242][ T9554] ? load_image+0x400/0x400 [ 230.558790][ T9554] ? cpuset_print_current_mems_allowed+0x1b/0x360 [ 230.565244][ T9554] ? cpuset_print_current_mems_allowed+0x2e3/0x360 [ 230.571769][ T9554] warn_alloc+0x242/0x330 [ 230.576122][ T9554] ? _end+0x683da14a/0x0 [ 230.580369][ T9554] ? zone_watermark_ok_safe+0x270/0x270 [ 230.585931][ T9554] __vmalloc_node_range+0x11e/0x13b0 [ 230.591305][ T9554] ? __mutex_trylock_common+0x155/0x260 [ 230.596858][ T9554] ? _end+0x683da14a/0x0 [ 230.601244][ T9554] ? trace_raw_output_contention_end+0xd0/0xd0 [ 230.607419][ T9554] ? rcu_is_watching+0x11/0xa0 [ 230.612209][ T9554] ? __mutex_lock+0x1ab/0xaf0 [ 230.616916][ T9554] ? free_vm_area+0x50/0x50 [ 230.621469][ T9554] ? dvb_demux_do_ioctl+0x313/0x530 [ 230.626766][ T9554] ? tomoyo_check_path_acl+0x1c0/0x1c0 [ 230.632234][ T9554] ? mutex_lock_nested+0x10/0x10 [ 230.637287][ T9554] ? _end+0x683da14a/0x0 [ 230.641536][ T9554] ? dvb_dmxdev_set_buffer_size+0xbe/0x1f0 [ 230.647353][ T9554] vmalloc+0x75/0x80 [ 230.651254][ T9554] ? dvb_dmxdev_set_buffer_size+0xbe/0x1f0 [ 230.657070][ T9554] ? _end+0x683da14a/0x0 [ 230.661320][ T9554] dvb_dmxdev_set_buffer_size+0xbe/0x1f0 [ 230.666980][ T9554] dvb_demux_do_ioctl+0x450/0x530 [ 230.672016][ T9554] ? _end+0x683da14a/0x0 [ 230.676268][ T9554] ? _end+0x683da14a/0x0 [ 230.680512][ T9554] dvb_usercopy+0x191/0x2b0 [ 230.685019][ T9554] ? _end+0x683da14a/0x0 [ 230.689268][ T9554] ? dvb_dmxdev_buffer_read+0x4c0/0x4c0 [ 230.694823][ T9554] ? dvb_generic_ioctl+0xb0/0xb0 [ 230.699788][ T9554] ? _end+0x683da14a/0x0 [ 230.704038][ T9554] ? _end+0x683da14a/0x0 [ 230.708294][ T9554] ? dvb_demux_poll+0x210/0x210 [ 230.713206][ T9554] ? _end+0x683da14a/0x0 [ 230.717450][ T9554] dvb_demux_ioctl+0x25/0x30 [ 230.722057][ T9554] __se_sys_ioctl+0xfa/0x170 [ 230.726665][ T9554] do_syscall_64+0x4c/0xa0 [ 230.731175][ T9554] ? clear_bhb_loop+0x60/0xb0 [ 230.735905][ T9554] ? clear_bhb_loop+0x60/0xb0 [ 230.740585][ T9554] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 230.746480][ T9554] RIP: 0033:0x7ff15e79cdd9 [ 230.750901][ T9554] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 230.770619][ T9554] RSP: 002b:00007ff15f5bc028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 230.779123][ T9554] RAX: ffffffffffffffda RBX: 00007ff15ea15fa0 RCX: 00007ff15e79cdd9 [ 230.787092][ T9554] RDX: ffffffffff60014a RSI: 0000000000006f2d RDI: 0000000000000003 [ 230.795060][ T9554] RBP: 00007ff15e832d69 R08: 0000000000000000 R09: 0000000000000000 [ 230.803031][ T9554] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 230.811093][ T9554] R13: 00007ff15ea16038 R14: 00007ff15ea15fa0 R15: 00007ffcc40bd868 [ 230.819081][ T9554] ? _end+0x683da14a/0x0 [ 230.823331][ T9554] [ 230.926063][ T9563] netlink: 132 bytes leftover after parsing attributes in process `syz.3.2407'. [ 231.073749][ T9569] netlink: 24 bytes leftover after parsing attributes in process `syz.3.2410'. [ 231.135101][ T9554] Mem-Info: [ 231.138370][ T9554] active_anon:9141 inactive_anon:0 isolated_anon:0 [ 231.138370][ T9554] active_file:1658 inactive_file:40374 isolated_file:0 [ 231.138370][ T9554] unevictable:768 dirty:394 writeback:0 [ 231.138370][ T9554] slab_reclaimable:21450 slab_unreclaimable:98187 [ 231.138370][ T9554] mapped:30319 shmem:3821 pagetables:705 [ 231.138370][ T9554] sec_pagetables:0 bounce:0 [ 231.138370][ T9554] kernel_misc_reclaimable:0 [ 231.138370][ T9554] free:1327533 free_pcp:9209 free_cma:0 [ 231.183588][ C0] vkms_vblank_simulate: vblank timer overrun [ 231.320064][ T9549] loop0: detected capacity change from 0 to 32768 [ 231.686191][ T9554] Node 0 active_anon:44064kB inactive_anon:0kB active_file:6632kB inactive_file:161592kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:121276kB dirty:1576kB writeback:0kB shmem:20248kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB kernel_stack:10976kB pagetables:2820kB sec_pagetables:0kB all_unreclaimable? no [ 231.756197][ T9554] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:204kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:1536kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB kernel_stack:16kB pagetables:0kB sec_pagetables:0kB all_unreclaimable? no [ 231.786834][ C0] vkms_vblank_simulate: vblank timer overrun [ 231.875358][ T9554] Node 0 DMA free:15296kB boost:0kB min:204kB low:252kB high:300kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 231.975378][ T9554] lowmem_reserve[]: 0 2527 2528 2528 2528 [ 231.981240][ T9554] Node 0 DMA32 free:1385952kB boost:0kB min:34692kB low:43364kB high:52036kB reserved_highatomic:0KB active_anon:41420kB inactive_anon:0kB active_file:6632kB inactive_file:161380kB unevictable:1536kB writepending:1600kB present:3129332kB managed:2592964kB mlocked:0kB bounce:0kB free_pcp:24088kB local_pcp:7512kB free_cma:0kB [ 232.131232][ T9554] lowmem_reserve[]: 0 0 1 1 1 [ 232.146519][ T9554] Node 0 Normal free:0kB boost:0kB min:16kB low:20kB high:24kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:1048576kB managed:1424kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 232.256082][ T9554] lowmem_reserve[]: 0 0 0 0 0 [ 232.275797][ T9554] Node 1 Normal free:3900932kB boost:0kB min:55192kB low:68988kB high:82784kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:204kB unevictable:1536kB writepending:0kB present:4194304kB managed:4117620kB mlocked:0kB bounce:0kB free_pcp:16320kB local_pcp:6016kB free_cma:0kB [ 232.334659][ T9583] loop2: detected capacity change from 0 to 32768 [ 232.477921][ T9554] lowmem_reserve[]: 0 0 0 0 0 [ 232.482716][ T9554] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 1*64kB (U) 1*128kB (U) 1*256kB (U) 1*512kB (U) 0*1024kB 1*2048kB (M) 3*4096kB (M) = 15296kB [ 232.529512][ T9583] XFS (loop2): Mounting V5 Filesystem [ 232.535381][ T9554] Node 0 DMA32: 605*4kB (UME) 547*8kB (UME) 176*16kB (UME) 174*32kB (UM) 219*64kB (UME) 35*128kB (UE) 40*256kB (UM) 17*512kB (UME) 9*1024kB (UME) 3*2048kB (UME) 321*4096kB (UM) = 1382796kB [ 232.555352][ T9554] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 232.573948][ T9554] Node 1 Normal: 219*4kB (U) 47*8kB (UE) 24*16kB (UME) 43*32kB (UME) 29*64kB (UME) 16*128kB (UME) 9*256kB (UM) 3*512kB (UME) 1*1024kB (U) 1*2048kB (E) 949*4096kB (M) = 3900932kB [ 232.592253][ T9554] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 232.602860][ T9554] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 232.615730][ T9554] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 232.630019][ T9554] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 232.639532][ T9554] 47185 total pagecache pages [ 232.644330][ T9554] 0 pages in swap cache [ 232.648587][ T9554] Free swap = 124472kB [ 232.652785][ T9554] Total swap = 124996kB [ 232.657420][ T9554] 2097051 pages RAM [ 232.661321][ T9554] 0 pages HighMem/MovableOnly [ 232.666683][ T9554] 415209 pages reserved [ 232.670968][ T9554] 0 pages cma reserved [ 232.758326][ T9583] XFS (loop2): Ending clean mount [ 233.013618][ T4283] XFS (loop2): Unmounting Filesystem [ 233.085625][ T14] usb 2-1: new high-speed USB device number 13 using dummy_hcd [ 233.132056][ T27] kauditd_printk_skb: 12 callbacks suppressed [ 233.132071][ T27] audit: type=1400 audit(1777926522.681:131): apparmor="DENIED" operation="stack_onexec" info="label not found" error=-22 profile="unconfined" name="&" pid=9634 comm="syz.4.2439" [ 233.275423][ T14] usb 2-1: Using ep0 maxpacket: 16 [ 233.283350][ T14] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 233.317036][ T14] usb 2-1: config 0 has 0 interfaces, different from the descriptor's value: 1 [ 233.346727][ T14] usb 2-1: New USB device found, idVendor=17ef, idProduct=721e, bcdDevice=de.06 [ 233.372410][ T14] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 233.384771][ T9643] loop4: detected capacity change from 0 to 1024 [ 233.392654][ T14] usb 2-1: Product: syz [ 233.402766][ T14] usb 2-1: Manufacturer: syz [ 233.423242][ T14] usb 2-1: SerialNumber: syz [ 233.435698][ T14] r8152-cfgselector 2-1: config 0 descriptor?? [ 233.650158][ T14] usbip-host 2-1: 2-1 is not in match_busid table... skip! [ 233.869114][ T9661] netlink: 'syz.3.2452': attribute type 1 has an invalid length. [ 233.889189][ T14] usb 2-1: USB disconnect, device number 13 [ 234.321696][ T4315] usb 3-1: new full-speed USB device number 10 using dummy_hcd [ 234.507919][ T9682] RDS: rds_bind could not find a transport for fc00::, load rds_tcp or rds_rdma? [ 234.542445][ T4315] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 234.583975][ T4315] usb 3-1: New USB device found, idVendor=06f8, idProduct=301b, bcdDevice=bb.39 [ 234.616322][ T4315] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 234.630834][ T4315] usb 3-1: Product: syz [ 234.635152][ T4315] usb 3-1: Manufacturer: syz [ 234.693556][ T4315] usb 3-1: SerialNumber: syz [ 234.713800][ T4315] usb 3-1: config 0 descriptor?? [ 234.716569][ T9691] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2465'. [ 234.757062][ T4315] gspca_main: gspca_pac7302-2.14.0 probing 06f8:301b [ 234.775881][ T9691] netlink: 36 bytes leftover after parsing attributes in process `syz.4.2465'. [ 235.016094][ T9704] netlink: 64138 bytes leftover after parsing attributes in process `syz.0.2470'. [ 235.173650][ T4315] gspca_pac7302: reg_w() failed i: 78 v: 00 error -71 [ 235.195946][ T4315] gspca_pac7302: probe of 3-1:0.0 failed with error -71 [ 235.262515][ T4315] usb 3-1: USB disconnect, device number 10 [ 235.834028][ T9735] loop3: detected capacity change from 0 to 4096 [ 235.912977][ T9743] loop4: detected capacity change from 0 to 128 [ 235.946724][ T9743] UDF-fs: error (device loop4): udf_read_tagged: read failed, block=256, location=256 [ 236.024617][ T9735] ntfs3: loop3: Mark volume as dirty due to NTFS errors [ 236.058423][ T9743] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 236.074889][ T9735] ntfs3: loop3: Failed to load $Extend. [ 236.155082][ T9750] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2489'. [ 236.241968][ T9750] netlink: 24 bytes leftover after parsing attributes in process `syz.2.2489'. [ 236.368040][ T9755] loop1: detected capacity change from 0 to 256 [ 236.383250][ T4274] ntfs3: loop3: ntfs_sync_fs r=9 failed, -22. [ 236.416088][ T4274] ntfs3: loop3: ntfs_evict_inode r=9 failed, -22. [ 236.486253][ T9755] FAT-fs (loop1): Directory bread(block 64) failed [ 236.515492][ T9755] FAT-fs (loop1): Directory bread(block 65) failed [ 236.563413][ T9755] FAT-fs (loop1): Directory bread(block 66) failed [ 236.608752][ T9755] FAT-fs (loop1): Directory bread(block 67) failed [ 236.675455][ T9755] FAT-fs (loop1): Directory bread(block 68) failed [ 236.684942][ T9755] FAT-fs (loop1): Directory bread(block 69) failed [ 236.725641][ T9755] FAT-fs (loop1): Directory bread(block 70) failed [ 236.767799][ T9755] FAT-fs (loop1): Directory bread(block 71) failed [ 236.774506][ T9755] FAT-fs (loop1): Directory bread(block 72) failed [ 236.822770][ T9755] FAT-fs (loop1): Directory bread(block 73) failed [ 236.994059][ T27] audit: type=1800 audit(1777926526.541:132): pid=9755 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.2491" name="file1" dev="loop1" ino=1048620 res=0 errno=0 [ 237.768323][ T9812] netlink: 40 bytes leftover after parsing attributes in process `syz.2.2514'. [ 238.149248][ T9830] pci 0000:00:05.0: vgaarb: changed VGA decodes: olddecodes=io+mem,decodes=io+mem:owns=io+mem [ 238.542654][ T9848] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2529'. [ 238.586426][ T9850] [U] [ 238.589672][ T9850] [U] [ 238.592426][ T9850] [U] [ 238.595144][ T9850] [U] [ 238.646120][ T9850] [U] [ 238.648878][ T9850] [U] [ 238.651592][ T9850] [U] [ 238.654290][ T9850] [U] [ 238.681306][ T9850] [U] [ 238.684059][ T9850] [U] [ 238.686768][ T9850] [U] [ 238.704590][ T9854] loop4: detected capacity change from 0 to 128 [ 238.730319][ T9853] xt_cgroup: path and classid specified [ 238.747382][ T9854] UDF-fs: error (device loop4): udf_read_tagged: read failed, block=256, location=256 [ 238.750163][ T9849] [U] [ 238.760472][ T4359] usb 1-1: new high-speed USB device number 13 using dummy_hcd [ 238.792488][ T9854] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 238.956487][ T4359] usb 1-1: Using ep0 maxpacket: 8 [ 238.999895][ T4359] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x8D has an invalid bInterval 42, changing to 9 [ 239.028467][ T4359] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0 [ 239.062774][ T4359] usb 1-1: config 0 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0 [ 239.107072][ T4359] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x8B has invalid maxpacket 12592, setting to 1024 [ 239.154513][ T4359] usb 1-1: config 0 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 1024 [ 239.183525][ T4359] usb 1-1: New USB device found, idVendor=05ac, idProduct=8215, bcdDevice=8f.58 [ 239.224129][ T4359] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 239.266283][ T4359] usb 1-1: config 0 descriptor?? [ 239.272551][ T9846] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22 [ 239.397715][ T9878] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2544'. [ 239.664828][ T9889] loop1: detected capacity change from 0 to 2048 [ 239.723758][ T4359] usb 1-1: USB disconnect, device number 13 [ 239.732394][ T48] Bluetooth: hci5: Opcode 0x0c03 failed: -19 [ 239.838524][ T9889] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 239.856163][ T9889] ext4 filesystem being mounted at /478/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 239.917798][ T9889] fscrypt (loop1, inode 14): Error -61 getting encryption context [ 240.034653][ T9903] netlink: 'syz.4.2553': attribute type 1 has an invalid length. [ 240.043457][ T4278] EXT4-fs (loop1): unmounting filesystem. [ 240.078602][ T9903] netlink: 112860 bytes leftover after parsing attributes in process `syz.4.2553'. [ 240.528855][ T9913] loop0: detected capacity change from 0 to 8192 [ 240.574075][ T9923] Invalid ELF header magic: != ELF [ 240.591299][ T9913] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 240.705505][ T9913] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 240.715111][ T9913] REISERFS (device loop0): using ordered data mode [ 240.755353][ T9913] reiserfs: using flush barriers [ 240.757552][ T9933] loop2: detected capacity change from 0 to 64 [ 240.771724][ T9913] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 240.862064][ T9935] loop1: detected capacity change from 0 to 64 [ 240.900891][ T9913] REISERFS (device loop0): checking transaction log (loop0) [ 241.022595][ T9913] REISERFS (device loop0): Using tea hash to sort names [ 241.044147][ T9913] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. [ 241.614309][ T9955] netlink: 'syz.3.2578': attribute type 3 has an invalid length. [ 241.655631][ T9961] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2577'. [ 241.683289][ T9961] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2577'. [ 241.708210][ T9961] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2577'. [ 241.747009][ T9961] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2577'. [ 241.784336][ T9961] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2577'. [ 241.822387][ T9961] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2577'. [ 241.843327][ T9961] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2577'. [ 241.862966][ T9961] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2577'. [ 241.898104][ T9961] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2577'. [ 241.920391][ T9961] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2577'. [ 241.944501][ T9961] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready [ 241.963029][ T9961] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 241.996781][ T9961] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 242.283169][ T9979] loop4: detected capacity change from 0 to 16 [ 242.325173][ T9979] MTD: Attempt to mount non-MTD device "/dev/loop4" [ 242.695508][ T9993] loop1: detected capacity change from 0 to 64 [ 242.770374][ T9996] batman_adv: batadv0: Interface activated: netdevsim0 [ 242.796919][ T9996] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check. [ 243.059350][T10004] netlink: 'syz.3.2600': attribute type 21 has an invalid length. [ 243.530464][ T9989] loop4: detected capacity change from 0 to 32768 [ 243.801084][ T9989] XFS (loop4): Mounting V5 Filesystem [ 243.886759][ T9989] XFS (loop4): Ending clean mount [ 243.912145][ T9989] XFS (loop4): Quotacheck needed: Please wait. [ 243.955411][T10046] program syz.0.2617 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 243.958408][T10048] netlink: 'syz.2.2618': attribute type 10 has an invalid length. [ 244.023162][T10046] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0 [ 244.055718][T10048] team0: Device veth1_vlan failed to register rx_handler [ 244.086348][ T9989] XFS (loop4): Quotacheck: Done. [ 244.307339][ T4282] XFS (loop4): Unmounting Filesystem [ 244.881676][T10044] loop1: detected capacity change from 0 to 32768 [ 244.924627][T10044] (syz.1.2616,10044,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 244.975145][T10074] autofs4:pid:10074:autofs_fill_super: called with bogus options [ 244.994401][T10044] (syz.1.2616,10044,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 245.064877][T10078] IPv6: sit1: Disabled Multicast RS [ 245.073545][T10044] JBD2: Ignoring recovery information on journal [ 245.159341][T10044] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode. [ 245.178842][T10084] __vm_enough_memory: pid: 10084, comm: syz.4.2635, no enough memory for the allocation [ 245.712202][T10094] loop3: detected capacity change from 0 to 4096 [ 245.715114][ T4278] ocfs2: Unmounting device (7,1) on (node local) [ 246.195591][ T4644] usb 3-1: new full-speed USB device number 11 using dummy_hcd [ 246.398320][ T4644] usb 3-1: config 0 has an invalid interface number: 84 but max is 0 [ 246.415565][ T4644] usb 3-1: config 0 has no interface number 0 [ 246.442844][ T4644] usb 3-1: config 0 interface 84 altsetting 253 endpoint 0x7 has invalid maxpacket 1279, setting to 64 [ 246.495772][ T4644] usb 3-1: config 0 interface 84 altsetting 253 endpoint 0x87 has an invalid bInterval 0, changing to 10 [ 246.516194][ T4644] usb 3-1: config 0 interface 84 altsetting 253 endpoint 0x87 has invalid wMaxPacketSize 0 [ 246.542729][ T4644] usb 3-1: config 0 interface 84 has no altsetting 0 [ 246.550870][T10128] xt_SECMARK: only valid in 'mangle' or 'security' table, not 'raw' [ 246.559070][ T4644] usb 3-1: New USB device found, idVendor=2c7c, idProduct=0191, bcdDevice= f.05 [ 246.585808][ T4644] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 246.613568][ T4644] usb 3-1: config 0 descriptor?? [ 246.626483][T10105] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22 [ 246.657311][ T4644] option 3-1:0.84: GSM modem (1-port) converter detected [ 246.681397][T10130] loop0: detected capacity change from 0 to 512 [ 246.790015][T10130] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 246.833720][T10139] loop1: detected capacity change from 0 to 4096 [ 246.868029][T10130] ext4 filesystem being mounted at /525/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 246.897422][ T4644] usb 3-1: USB disconnect, device number 11 [ 246.905164][ T4644] option 3-1:0.84: device disconnected [ 247.091663][ T4270] EXT4-fs (loop0): unmounting filesystem. [ 247.242916][T10146] netlink: 'syz.4.2665': attribute type 10 has an invalid length. [ 247.272766][ T27] audit: type=1326 audit(1777926536.821:133): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10147 comm="syz.1.2666" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff15e79cdd9 code=0x7ffc0000 [ 247.281774][T10146] __nla_validate_parse: 64 callbacks suppressed [ 247.281793][T10146] netlink: 40 bytes leftover after parsing attributes in process `syz.4.2665'. [ 247.365742][ T27] audit: type=1326 audit(1777926536.821:134): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10147 comm="syz.1.2666" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff15e79cdd9 code=0x7ffc0000 [ 247.409689][T10146] netlink: 'syz.4.2665': attribute type 10 has an invalid length. [ 247.439098][T10146] netlink: 40 bytes leftover after parsing attributes in process `syz.4.2665'. [ 247.470727][ T27] audit: type=1326 audit(1777926536.851:135): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10147 comm="syz.1.2666" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff15e79cdd9 code=0x7ffc0000 [ 247.496052][ T27] audit: type=1326 audit(1777926536.851:136): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10147 comm="syz.1.2666" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff15e79cdd9 code=0x7ffc0000 [ 247.606689][ T27] audit: type=1326 audit(1777926536.861:137): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10147 comm="syz.1.2666" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=300 compat=0 ip=0x7ff15e79cdd9 code=0x7ffc0000 [ 247.690807][ T27] audit: type=1326 audit(1777926536.861:138): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10147 comm="syz.1.2666" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff15e79cdd9 code=0x7ffc0000 [ 247.763314][ T27] audit: type=1326 audit(1777926536.861:139): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10147 comm="syz.1.2666" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff15e79cdd9 code=0x7ffc0000 [ 247.813674][ T27] audit: type=1326 audit(1777926536.861:140): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10147 comm="syz.1.2666" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=436 compat=0 ip=0x7ff15e79cdd9 code=0x7ffc0000 [ 247.813717][ T27] audit: type=1326 audit(1777926536.861:141): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10147 comm="syz.1.2666" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=231 compat=0 ip=0x7ff15e79cdd9 code=0x7ffc0000 [ 247.920602][ T27] audit: type=1326 audit(1777926537.461:142): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10168 comm="syz.0.2675" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa2bbb9cdd9 code=0x7ffc0000 [ 247.974283][T10171] xt_bpf: check failed: parse error [ 248.188868][T10179] overlayfs: conflicting options: nfs_export=on,index=off [ 248.217543][T10177] loop0: detected capacity change from 0 to 4096 [ 248.256606][T10177] ntfs: volume version 3.1. [ 248.524842][T10191] netlink: 'syz.1.2685': attribute type 10 has an invalid length. [ 248.574572][T10191] netlink: 40 bytes leftover after parsing attributes in process `syz.1.2685'. [ 248.636478][T10191] team0: Device lo is loopback device. Loopback devices can't be added as a team port [ 248.656759][T10191] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 248.722390][T10196] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2688'. [ 248.752222][T10196] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2688'. [ 248.793195][T10196] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2688'. [ 248.837901][T10196] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2688'. [ 248.850871][T10198] netlink: 68 bytes leftover after parsing attributes in process `syz.0.2690'. [ 248.860705][T10196] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2688'. [ 248.884456][T10196] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2688'. [ 248.918950][T10196] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 248.931045][T10196] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready [ 248.952091][T10196] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 248.987764][T10196] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 249.074392][T10196] IPv6: ADDRCONF(NETDEV_CHANGE): bridge1: link becomes ready [ 249.761788][T10222] loop3: detected capacity change from 0 to 4096 [ 250.649751][T10260] loop1: detected capacity change from 0 to 256 [ 250.723383][T10260] exFAT-fs (loop1): failed to load upcase table (idx : 0x0001034b, chksum : 0x63107136, utbl_chksum : 0xe619d30d) [ 250.748924][T10234] loop2: detected capacity change from 0 to 32768 [ 250.906152][T10234] XFS (loop2): Mounting V5 filesystem in no-recovery mode. Filesystem will be inconsistent. [ 251.000574][T10234] XFS (loop2): Metadata corruption detected at xfs_dinode_verify+0x2d5/0x1110, inode 0x1803 dinode [ 251.092092][T10234] XFS (loop2): Unmount and run xfs_repair [ 251.134127][T10234] XFS (loop2): First 128 bytes of corrupted metadata buffer: [ 251.200025][T10234] 00000000: 49 4e 41 ed 03 01 00 00 00 00 00 00 00 00 00 00 INA............. [ 251.216484][T10280] loop0: detected capacity change from 0 to 512 [ 251.243327][T10234] 00000010: 00 00 00 02 00 00 00 00 00 00 00 00 00 00 00 00 ................ [ 251.278478][T10234] 00000020: 34 f7 58 68 a5 a5 b6 11 34 f7 58 68 a5 e2 bf 3d 4.Xh....4.Xh...= [ 251.305399][T10234] 00000030: 34 f7 58 68 a5 e2 bf 3d 00 00 00 00 00 00 00 20 4.Xh...=....... [ 251.324797][T10234] 00000040: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ [ 251.335560][T10234] 00000050: 00 00 00 02 00 00 00 00 00 00 00 00 ca e6 3d c1 ..............=. [ 251.366094][T10234] 00000060: ff ff ff ff 6e d0 e3 2d 00 00 00 00 00 00 00 04 ....n..-........ [ 251.373343][T10280] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 251.377092][T10234] 00000070: 00 00 00 03 00 00 00 10 00 00 00 00 00 00 00 06 ................ [ 251.509393][T10280] EXT4-fs error (device loop0): ext4_validate_block_bitmap:420: comm syz.0.2726: bg 0: bad block bitmap checksum [ 251.569165][ T4283] XFS (loop2): Unmounting Filesystem [ 251.584408][T10280] EXT4-fs error (device loop0): ext4_acquire_dquot:6841: comm syz.0.2726: Failed to acquire dquot type 0 [ 251.718480][ T4270] EXT4-fs (loop0): unmounting filesystem. [ 251.980261][T10306] xt_NFQUEUE: number of total queues is 0 [ 252.630929][T10333] __nla_validate_parse: 73 callbacks suppressed [ 252.630948][T10333] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2745'. [ 252.706011][T10333] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2745'. [ 252.745781][T10333] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2745'. [ 252.755445][T10333] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2745'. [ 252.785547][T10333] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2745'. [ 252.794867][T10333] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2745'. [ 252.826019][T10333] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2745'. [ 252.866281][T10333] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2745'. [ 252.885009][T10333] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2745'. [ 252.911427][T10333] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2745'. [ 252.937684][T10333] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready [ 252.961029][T10333] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 252.998355][T10333] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 253.204408][T10349] cgroup: none used incorrectly [ 253.663411][T10366] netlink: 'syz.4.2765': attribute type 1 has an invalid length. [ 253.885709][T10375] (unnamed net_device) (uninitialized): Unable to set peer notification delay as MII monitoring is disabled [ 254.346164][ T27] kauditd_printk_skb: 19 callbacks suppressed [ 254.346178][ T27] audit: type=1326 audit(1777926543.901:146): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10393 comm="syz.4.2779" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f416559cdd9 code=0x7ffc0000 [ 254.423972][T10398] loop0: detected capacity change from 0 to 128 [ 254.445434][ T27] audit: type=1326 audit(1777926543.931:147): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10393 comm="syz.4.2779" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f416559cdd9 code=0x7ffc0000 [ 254.467022][T10398] UDF-fs: error (device loop0): udf_read_tagged: read failed, block=256, location=256 [ 254.469616][ C1] vkms_vblank_simulate: vblank timer overrun [ 254.570763][T10398] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 254.634171][ T27] audit: type=1326 audit(1777926543.931:148): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10393 comm="syz.4.2779" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f416559cdd9 code=0x7ffc0000 [ 254.676616][T10401] xt_CT: No such helper "pptp" [ 254.765364][ T27] audit: type=1326 audit(1777926543.941:149): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10393 comm="syz.4.2779" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=111 compat=0 ip=0x7f416559cdd9 code=0x7ffc0000 [ 254.906108][ T27] audit: type=1326 audit(1777926543.941:150): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10393 comm="syz.4.2779" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f416559cdd9 code=0x7ffc0000 [ 254.930499][ C1] vkms_vblank_simulate: vblank timer overrun [ 255.024602][ T27] audit: type=1326 audit(1777926543.941:151): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10393 comm="syz.4.2779" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f416559cdd9 code=0x7ffc0000 [ 255.032108][T10414] loop0: detected capacity change from 0 to 1764 [ 255.049362][ C1] vkms_vblank_simulate: vblank timer overrun [ 255.114105][T10414] ISOFS: root inode is unusable. Disabling Rock Ridge and switching to Joliet. [ 255.155557][ T27] audit: type=1326 audit(1777926543.941:152): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10393 comm="syz.4.2779" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=436 compat=0 ip=0x7f416559cdd9 code=0x7ffc0000 [ 255.179733][ C1] vkms_vblank_simulate: vblank timer overrun [ 255.242796][T10414] iso9660: Corrupted directory entry in block 2 of inode 1920 [ 255.324619][ T27] audit: type=1326 audit(1777926543.941:153): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10393 comm="syz.4.2779" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=231 compat=0 ip=0x7f416559cdd9 code=0x7ffc0000 [ 255.348852][ C1] vkms_vblank_simulate: vblank timer overrun [ 255.608879][ T1277] ieee802154 phy0 wpan0: encryption failed: -22 [ 255.615334][ T1277] ieee802154 phy1 wpan1: encryption failed: -22 [ 255.965611][ T4641] usb 4-1: new full-speed USB device number 8 using dummy_hcd [ 255.981318][T10452] binder: 10450:10452 ioctl 40046210 0 returned -14 [ 256.182474][ T4641] usb 4-1: config 0 has an invalid interface number: 8 but max is 0 [ 256.204772][ T4641] usb 4-1: config 0 has no interface number 0 [ 256.229504][ T4641] usb 4-1: config 0 interface 8 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 10 [ 256.264708][ T4641] usb 4-1: config 0 interface 8 altsetting 0 endpoint 0x8F has invalid wMaxPacketSize 0 [ 256.312134][ T4641] usb 4-1: New USB device found, idVendor=0d8c, idProduct=000e, bcdDevice=8e.8f [ 256.321604][T10463] loop1: detected capacity change from 0 to 64 [ 256.372345][T10463] BFS-fs: bfs_fill_super(): loop1 is unclean, continuing [ 256.375077][ T4641] usb 4-1: New USB device strings: Mfr=0, Product=24, SerialNumber=3 [ 256.447464][ T4641] usb 4-1: Product: syz [ 256.475420][ T4641] usb 4-1: SerialNumber: syz [ 256.499432][ T4641] usb 4-1: config 0 descriptor?? [ 256.537710][ T4641] cm109 4-1:0.8: invalid payload size 0, expected 4 [ 256.568004][ T4641] input: CM109 USB driver as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.8/input/input13 [ 256.707464][T10467] loop2: detected capacity change from 0 to 4096 [ 256.714722][T10467] ntfs: (device loop2): parse_options(): Option utf8 is no longer supported, using option nls=utf8. Please use option nls=utf8 in the future and make sure utf8 is compiled either as a module or into the kernel. [ 256.735884][T10472] netlink: 'syz.1.2816': attribute type 10 has an invalid length. [ 256.901845][T10472] device veth0_vlan left promiscuous mode [ 256.924615][T10467] ntfs: volume version 3.1. [ 256.925996][ C1] cm109 4-1:0.8: cm109_urb_ctl_callback: usb_submit_urb (urb_irq) failed -90 [ 256.960742][T10472] device veth0_vlan entered promiscuous mode [ 256.973982][T10472] team0: Device veth0_vlan failed to register rx_handler [ 257.130529][T10472] syz.1.2816 (10472) used greatest stack depth: 20048 bytes left [ 257.155684][ T4641] usb 4-1: USB disconnect, device number 8 [ 257.195757][ T4641] cm109 4-1:0.8: cm109_toggle_buzzer_sync: usb_control_msg() failed -19 [ 257.264976][T10479] loop4: detected capacity change from 0 to 512 [ 257.421152][T10479] EXT4-fs (loop4): 1 truncate cleaned up [ 257.459530][T10479] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 257.535197][T10479] EXT4-fs error (device loop4): ext4_free_branches:1030: inode #13: comm syz.4.2820: invalid indirect mapped block 4294901760 (level 0) [ 257.552296][T10487] loop2: detected capacity change from 0 to 4096 [ 257.561290][T10487] ntfs3: loop2: Different NTFS' sector size (1024) and media sector size (512) [ 257.575112][T10479] EXT4-fs (loop4): Remounting filesystem read-only [ 257.588814][T10479] EXT4-fs error (device loop4): ext4_free_branches:1030: inode #13: comm syz.4.2820: invalid indirect mapped block 4294967295 (level 1) [ 257.608887][T10479] EXT4-fs (loop4): Remounting filesystem read-only [ 257.624602][T10487] ntfs3: loop2: Mark volume as dirty due to NTFS errors [ 257.655011][T10479] EXT4-fs error (device loop4): ext4_free_branches:1030: inode #13: comm syz.4.2820: invalid indirect mapped block 65535 (level 2) [ 257.657989][T10495] netlink: 'syz.1.2827': attribute type 2 has an invalid length. [ 257.685899][T10487] ntfs3: loop2: Failed to load $Extend. [ 257.721587][T10479] EXT4-fs (loop4): Remounting filesystem read-only [ 257.882040][ T4282] EXT4-fs (loop4): unmounting filesystem. [ 258.044826][T10504] loop3: detected capacity change from 0 to 256 [ 258.181066][T10504] FAT-fs (loop3): Directory bread(block 64) failed [ 258.210289][T10504] FAT-fs (loop3): Directory bread(block 65) failed [ 258.237118][T10504] FAT-fs (loop3): Directory bread(block 66) failed [ 258.269919][T10504] FAT-fs (loop3): Directory bread(block 67) failed [ 258.291986][T10504] FAT-fs (loop3): Directory bread(block 68) failed [ 258.319325][T10504] FAT-fs (loop3): Directory bread(block 69) failed [ 258.361844][T10504] FAT-fs (loop3): Directory bread(block 70) failed [ 258.385623][T10504] FAT-fs (loop3): Directory bread(block 71) failed [ 258.392307][T10504] FAT-fs (loop3): Directory bread(block 72) failed [ 258.448617][T10504] FAT-fs (loop3): Directory bread(block 73) failed [ 258.490581][T10504] Trying to write to read-only block-device loop3 [ 258.567013][T10522] netlink: 'syz.4.2840': attribute type 3 has an invalid length. [ 258.583179][T10504] Trying to write to read-only block-device loop3 [ 258.589627][T10522] __nla_validate_parse: 94 callbacks suppressed [ 258.589643][T10522] netlink: 199836 bytes leftover after parsing attributes in process `syz.4.2840'. [ 258.649328][ T27] audit: type=1800 audit(1777926548.201:154): pid=10504 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.2832" name="file1" dev="loop3" ino=1048622 res=0 errno=0 [ 258.670575][ C1] vkms_vblank_simulate: vblank timer overrun [ 258.706976][T10525] netlink: 32 bytes leftover after parsing attributes in process `syz.2.2842'. [ 258.792780][ T4274] Trying to write to read-only block-device loop3 [ 259.115003][T10543] netlink: 'syz.0.2851': attribute type 3 has an invalid length. [ 259.202663][T10546] netlink: 'syz.3.2852': attribute type 10 has an invalid length. [ 259.562169][T10557] netlink: 132 bytes leftover after parsing attributes in process `syz.3.2858'. [ 259.660232][T10559] loop1: detected capacity change from 0 to 764 [ 259.673806][T10561] netlink: 56 bytes leftover after parsing attributes in process `syz.0.2860'. [ 259.769648][T10537] syz.2.2849 (10537): drop_caches: 2 [ 259.787330][T10559] rock: directory entry would overflow storage [ 259.801541][T10559] rock: sig=0x4654, size=5, remaining=4 [ 260.112936][T10576] xt_TCPMSS: Only works on TCP SYN packets [ 260.114421][T10577] batman_adv: batadv0: adding TT local entry 66:ff:f2:fc:ff:ff to non-existent VLAN 815 [ 260.161573][T10577] batman_adv: batadv0: adding TT local entry 66:ff:f2:fc:ff:ff to non-existent VLAN 815 [ 260.195444][T10577] batman_adv: batadv0: adding TT local entry 66:ff:f2:fc:ff:ff to non-existent VLAN 815 [ 260.245760][T10577] batman_adv: batadv0: adding TT local entry 66:ff:f2:fc:ff:ff to non-existent VLAN 815 [ 260.296474][T10577] batman_adv: batadv0: adding TT local entry 66:ff:f2:fc:ff:ff to non-existent VLAN 815 [ 260.323635][T10577] batman_adv: batadv0: adding TT local entry 66:ff:f2:fc:ff:ff to non-existent VLAN 815 [ 260.340528][T10577] batman_adv: batadv0: adding TT local entry 66:ff:f2:fc:ff:ff to non-existent VLAN 815 [ 260.373885][T10577] batman_adv: batadv0: adding TT local entry 66:ff:f2:fc:ff:ff to non-existent VLAN 815 [ 260.390697][T10577] batman_adv: batadv0: adding TT local entry 66:ff:f2:fc:ff:ff to non-existent VLAN 815 [ 260.402587][T10577] batman_adv: batadv0: adding TT local entry 66:ff:f2:fc:ff:ff to non-existent VLAN 815 [ 260.665367][ T4359] usb 4-1: new high-speed USB device number 9 using dummy_hcd [ 260.778184][T10597] loop0: detected capacity change from 0 to 164 [ 260.810495][T10597] Unsupported NM flag settings (240) [ 260.855330][ T4359] usb 4-1: Using ep0 maxpacket: 32 [ 260.862485][ T4359] usb 4-1: config index 0 descriptor too short (expected 35577, got 27) [ 260.890789][ T4359] usb 4-1: config 1 has too many interfaces: 92, using maximum allowed: 32 [ 260.912667][ T4270] Unsupported NM flag settings (240) [ 260.920932][ T4359] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 92 [ 260.937566][ T4270] Unsupported NM flag settings (240) [ 260.944199][ T4359] usb 4-1: config 1 has no interface number 0 [ 260.953148][ T4270] Unsupported NM flag settings (240) [ 260.958861][ T4359] usb 4-1: config 1 interface 1 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0 [ 260.970811][ T4359] usb 4-1: config 1 interface 1 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 17 [ 260.984097][ T4359] usb 4-1: New USB device found, idVendor=0e41, idProduct=5051, bcdDevice=d5.e8 [ 260.993551][ T4359] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 261.016750][ T4359] snd_usb_pod 4-1:1.1: Line 6 Pocket POD found [ 261.047332][ T4270] Unsupported NM flag settings (240) [ 261.069547][ T4270] Unsupported NM flag settings (240) [ 261.094474][ T4270] Unsupported NM flag settings (240) [ 261.221869][ T4359] snd_usb_pod 4-1:1.1: invalid control EP [ 261.238022][ T4359] snd_usb_pod 4-1:1.1: cannot start listening: -22 [ 261.244806][ T4359] snd_usb_pod 4-1:1.1: Line 6 Pocket POD now disconnected [ 261.292517][ T4359] snd_usb_pod: probe of 4-1:1.1 failed with error -22 [ 261.373748][T10608] loop1: detected capacity change from 0 to 128 [ 261.384556][T10609] netlink: 'syz.2.2883': attribute type 27 has an invalid length. [ 261.411995][T10609] netlink: 164 bytes leftover after parsing attributes in process `syz.2.2883'. [ 261.438474][T10608] UDF-fs: error (device loop1): udf_read_tagged: read failed, block=256, location=256 [ 261.479134][ T4359] usb 4-1: USB disconnect, device number 9 [ 261.487371][T10608] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 261.702539][T10619] loop4: detected capacity change from 0 to 512 [ 261.762105][T10619] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 261.843793][T10619] EXT4-fs error (device loop4): ext4_quota_enable:7045: comm syz.4.2889: Bad quota inum: 2, type: 1 [ 261.907636][T10619] EXT4-fs warning (device loop4): ext4_enable_quotas:7093: Failed to enable quota tracking (type=1, err=-117, ino=2). Please run e2fsck to fix. [ 262.104911][T10630] loop2: detected capacity change from 0 to 256 [ 262.148666][ T4282] EXT4-fs (loop4): unmounting filesystem. [ 262.186200][ T27] audit: type=1326 audit(1777926551.741:155): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10632 comm="syz.3.2895" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fadbeb9cdd9 code=0x7ffc0000 [ 262.186614][T10630] FAT-fs (loop2): Directory bread(block 64) failed [ 262.295949][ T27] audit: type=1326 audit(1777926551.771:156): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10632 comm="syz.3.2895" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fadbeb9cdd9 code=0x7ffc0000 [ 262.384271][ T27] audit: type=1326 audit(1777926551.771:157): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10632 comm="syz.3.2895" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fadbeb9cdd9 code=0x7ffc0000 [ 262.425454][T10630] FAT-fs (loop2): Directory bread(block 65) failed [ 262.432366][T10630] FAT-fs (loop2): Directory bread(block 66) failed [ 262.452239][T10630] FAT-fs (loop2): Directory bread(block 67) failed [ 262.464289][ T27] audit: type=1326 audit(1777926551.771:158): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10632 comm="syz.3.2895" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fadbeb9cdd9 code=0x7ffc0000 [ 262.504137][T10630] FAT-fs (loop2): Directory bread(block 68) failed [ 262.515499][T10630] FAT-fs (loop2): Directory bread(block 69) failed [ 262.522169][T10630] FAT-fs (loop2): Directory bread(block 70) failed [ 262.541637][T10630] FAT-fs (loop2): Directory bread(block 71) failed [ 262.567001][ T27] audit: type=1326 audit(1777926551.771:159): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10632 comm="syz.3.2895" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fadbeb9cdd9 code=0x7ffc0000 [ 262.595670][T10630] FAT-fs (loop2): Directory bread(block 72) failed [ 262.612625][T10630] FAT-fs (loop2): Directory bread(block 73) failed [ 262.648451][T10645] syz.3.2901 (10645): /proc/10644/oom_adj is deprecated, please use /proc/10644/oom_score_adj instead. [ 262.652510][ T27] audit: type=1326 audit(1777926551.771:160): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10632 comm="syz.3.2895" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fadbeb9cdd9 code=0x7ffc0000 [ 262.790112][ T27] audit: type=1326 audit(1777926551.771:161): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10632 comm="syz.3.2895" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=436 compat=0 ip=0x7fadbeb9cdd9 code=0x7ffc0000 [ 262.866963][ T27] audit: type=1326 audit(1777926551.771:162): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10632 comm="syz.3.2895" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=231 compat=0 ip=0x7fadbeb9cdd9 code=0x7ffc0000 [ 263.129162][T10661] netlink: 'syz.2.2908': attribute type 3 has an invalid length. [ 263.137648][T10661] netlink: 'syz.2.2908': attribute type 3 has an invalid length. [ 263.622854][T10680] autofs4:pid:10680:autofs_fill_super: called with bogus options [ 263.645603][ T6196] usb 3-1: new full-speed USB device number 12 using dummy_hcd [ 263.837693][ T6196] usb 3-1: unable to get BOS descriptor or descriptor too short [ 263.863617][ T6196] usb 3-1: not running at top speed; connect to a high speed hub [ 263.902487][ T6196] usb 3-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 263.955344][ T6196] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 3 [ 263.978560][ T6196] usb 3-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40 [ 263.995379][ T6196] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 264.012602][ T6196] usb 3-1: Product: syz [ 264.027129][ T6196] usb 3-1: Manufacturer: syz [ 264.037696][ T6196] usb 3-1: SerialNumber: syz [ 264.286282][ T6196] usb 3-1: 0:1 : does not exist [ 264.291234][ T6196] usb 3-1: 0:2 : does not exist [ 264.339724][ T6196] usb 3-1: 6:0: failed to get current value for ch 0 (-22) [ 264.408923][ T6196] usb 3-1: USB disconnect, device number 12 [ 264.446586][T10681] loop3: detected capacity change from 0 to 32768 [ 264.515389][ T4349] I/O error, dev loop3, sector 32640 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 264.653040][ T4367] udevd[4367]: error opening ATTR{/sys/devices/platform/dummy_hcd.2/usb3/3-1/3-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 265.088145][T10713] netlink: 'syz.2.2934': attribute type 21 has an invalid length. [ 265.135366][T10713] netlink: 'syz.2.2934': attribute type 1 has an invalid length. [ 265.382075][T10726] loop2: detected capacity change from 0 to 1024 [ 265.527786][ T47] hfsplus: b-tree write err: -5, ino 25 [ 265.562704][ T47] hfsplus: b-tree write err: -5, ino 4 [ 265.575428][ T47] hfsplus: b-tree write err: -5, ino 2 [ 265.909515][T10741] loop3: detected capacity change from 0 to 2048 [ 266.003098][ T4367] I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 266.464183][T10723] loop1: detected capacity change from 0 to 32768 [ 266.484736][T10761] loop0: detected capacity change from 0 to 512 [ 266.626730][T10761] EXT4-fs error (device loop0): ext4_iget_extra_inode:4763: inode #15: comm syz.0.2956: corrupted in-inode xattr [ 266.665672][T10723] XFS (loop1): Mounting V5 Filesystem [ 266.708254][T10761] EXT4-fs error (device loop0): ext4_orphan_get:1410: comm syz.0.2956: couldn't read orphan inode 15 (err -117) [ 266.733983][T10761] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 266.827975][T10723] XFS (loop1): Ending clean mount [ 266.949874][ T4315] XFS (loop1): WARNING: Reset corrupted AGFL on AG 0. 1 blocks leaked. Please unmount and run xfs_repair. [ 267.036496][ T4270] EXT4-fs (loop0): unmounting filesystem. [ 267.048284][ T4278] XFS (loop1): Unmounting Filesystem [ 267.265393][ T4317] usb 3-1: new high-speed USB device number 13 using dummy_hcd [ 267.282143][T10788] loop4: detected capacity change from 0 to 256 [ 267.346920][T10791] netlink: 20 bytes leftover after parsing attributes in process `syz.0.2967'. [ 267.359415][T10788] FAT-fs (loop4): Directory bread(block 64) failed [ 267.374804][T10788] FAT-fs (loop4): Directory bread(block 65) failed [ 267.384409][T10791] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2967'. [ 267.408776][T10788] FAT-fs (loop4): Directory bread(block 66) failed [ 267.421739][T10788] FAT-fs (loop4): Directory bread(block 67) failed [ 267.428932][T10788] FAT-fs (loop4): Directory bread(block 68) failed [ 267.451084][T10788] FAT-fs (loop4): Directory bread(block 69) failed [ 267.460762][ T4317] usb 3-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08 [ 267.476356][ T4317] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 267.484410][ T4317] usb 3-1: Product: syz [ 267.495213][T10788] FAT-fs (loop4): Directory bread(block 70) failed [ 267.502156][T10788] FAT-fs (loop4): Directory bread(block 71) failed [ 267.515229][T10788] FAT-fs (loop4): Directory bread(block 72) failed [ 267.518126][T10794] RDS: rds_bind could not find a transport for 0:0:4::1, load rds_tcp or rds_rdma? [ 267.523684][ T4317] usb 3-1: Manufacturer: syz [ 267.545045][T10788] FAT-fs (loop4): Directory bread(block 73) failed [ 267.555348][ T4317] usb 3-1: SerialNumber: syz [ 267.578157][ T4317] usb 3-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested [ 267.639831][ T4317] usb 3-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008 [ 267.686681][ T27] audit: type=1800 audit(1777926557.241:163): pid=10788 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.2966" name="file1" dev="loop4" ino=1048624 res=0 errno=0 [ 268.130240][ T4315] usb 3-1: USB disconnect, device number 13 [ 268.275526][ T4641] usb 5-1: new high-speed USB device number 12 using dummy_hcd [ 268.502395][ T4641] usb 5-1: config index 0 descriptor too short (expected 39, got 27) [ 268.515778][ T4641] usb 5-1: config 0 interface 0 altsetting 251 endpoint 0x9 has invalid wMaxPacketSize 0 [ 268.535325][ T4641] usb 5-1: config 0 interface 0 has no altsetting 0 [ 268.575167][ T4641] usb 5-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b [ 268.594553][ T4641] usb 5-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2 [ 268.604673][ T4641] usb 5-1: Product: syz [ 268.614811][ T4641] usb 5-1: Manufacturer: syz [ 268.621259][ T4641] usb 5-1: SerialNumber: syz [ 268.655796][ T4641] usb 5-1: config 0 descriptor?? [ 268.666191][ T4641] hub 5-1:0.0: bad descriptor, ignoring hub [ 268.672148][ T4641] hub: probe of 5-1:0.0 failed with error -5 [ 268.711114][ T4641] usb 5-1: selecting invalid altsetting 0 [ 268.802665][T10830] usb usb7: usbfs: process 10830 (syz.2.2987) did not claim interface 0 before use [ 268.968589][ T4317] usb 3-1: Service connection timeout for: 256 [ 268.975383][ T4317] ath9k_htc 3-1:1.0: ath9k_htc: Unable to initialize HTC services [ 268.984023][ T4317] ath9k_htc: Failed to initialize the device [ 269.038171][ T4315] usb 3-1: ath9k_htc: USB layer deinitialized [ 269.077006][T10834] device veth0_macvtap left promiscuous mode [ 269.100530][T10820] loop3: detected capacity change from 0 to 32768 [ 269.108445][ T6196] usb 5-1: USB disconnect, device number 12 [ 269.156010][T10820] /dev/loop3: Can't open blockdev [ 269.187262][ T4349] I/O error, dev loop3, sector 32640 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 270.054076][T10857] loop3: detected capacity change from 0 to 4096 [ 270.119692][T10857] /dev/loop3: Can't open blockdev [ 270.268530][T10877] netlink: 88 bytes leftover after parsing attributes in process `syz.4.3006'. [ 270.738536][T10890] loop4: detected capacity change from 0 to 4096 [ 270.777298][T10890] ntfs3: loop4: Different NTFS' sector size (4096) and media sector size (512) [ 270.792394][T10896] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3014'. [ 270.915152][T10890] ntfs3: loop4: Mark volume as dirty due to NTFS errors [ 270.962131][T10890] ntfs3: loop4: Failed to load $Extend. [ 271.096496][ T27] audit: type=1326 audit(1777926560.651:164): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10905 comm="syz.3.3018" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fadbeb9cdd9 code=0x7ffc0000 [ 271.238970][ T27] audit: type=1326 audit(1777926560.681:165): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10905 comm="syz.3.3018" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fadbeb9cdd9 code=0x7ffc0000 [ 271.401057][ T27] audit: type=1326 audit(1777926560.681:166): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10905 comm="syz.3.3018" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fadbeb9cdd9 code=0x7ffc0000 [ 271.428939][T10921] loop0: detected capacity change from 0 to 256 [ 271.471662][T10918] loop1: detected capacity change from 0 to 1024 [ 271.528361][ T27] audit: type=1326 audit(1777926560.701:167): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10905 comm="syz.3.3018" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=198 compat=0 ip=0x7fadbeb9cdd9 code=0x7ffc0000 [ 271.532152][T10921] FAT-fs (loop0): Directory bread(block 64) failed [ 271.556348][T10924] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3026'. [ 271.624131][T10915] loop4: detected capacity change from 0 to 4096 [ 271.655650][T10924] netlink: 312 bytes leftover after parsing attributes in process `syz.2.3026'. [ 271.675508][ T27] audit: type=1326 audit(1777926560.701:168): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10905 comm="syz.3.3018" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fadbeb9cdd9 code=0x7ffc0000 [ 271.692155][T10921] FAT-fs (loop0): Directory bread(block 65) failed [ 271.742007][ T3932] device veth0_macvtap entered promiscuous mode [ 271.753013][T10915] ntfs3: loop4: Different NTFS' sector size (2048) and media sector size (512) [ 271.774647][T10921] FAT-fs (loop0): Directory bread(block 66) failed [ 271.835490][T10921] FAT-fs (loop0): Directory bread(block 67) failed [ 271.862511][ T27] audit: type=1326 audit(1777926560.701:169): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10905 comm="syz.3.3018" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fadbeb9cdd9 code=0x7ffc0000 [ 271.885578][T10921] FAT-fs (loop0): Directory bread(block 68) failed [ 271.895472][T10921] FAT-fs (loop0): Directory bread(block 69) failed [ 271.923771][T10921] FAT-fs (loop0): Directory bread(block 70) failed [ 271.960888][T10921] FAT-fs (loop0): Directory bread(block 71) failed [ 272.000343][T10921] FAT-fs (loop0): Directory bread(block 72) failed [ 272.026237][ T27] audit: type=1326 audit(1777926560.701:170): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10905 comm="syz.3.3018" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=436 compat=0 ip=0x7fadbeb9cdd9 code=0x7ffc0000 [ 272.031629][T10921] FAT-fs (loop0): Directory bread(block 73) failed [ 272.114457][T10930] loop1: detected capacity change from 0 to 2048 [ 272.121177][ T27] audit: type=1326 audit(1777926560.701:171): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10905 comm="syz.3.3018" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=231 compat=0 ip=0x7fadbeb9cdd9 code=0x7ffc0000 [ 272.190453][T10921] FAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 272.191426][T10935] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 272.824284][T10931] DRBG: could not allocate digest TFM handle: hmac(sha512) [ 272.996309][T10962] xt_CT: You must specify a L4 protocol and not use inversions on it [ 273.129469][T10972] loop3: detected capacity change from 0 to 256 [ 273.175734][ T4367] I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 273.489018][T10982] tmpfs: Bad value for 'mpol' [ 273.766593][T10994] netlink: 'syz.3.3050': attribute type 1 has an invalid length. [ 274.162947][ T27] audit: type=1326 audit(1777926563.711:172): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11005 comm="syz.4.3055" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f416559cdd9 code=0x7ffc0000 [ 274.232658][T10968] loop0: detected capacity change from 0 to 32768 [ 274.292848][ T27] audit: type=1326 audit(1777926563.761:173): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11005 comm="syz.4.3055" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f416559cdd9 code=0x7ffc0000 [ 274.319544][T10968] (syz.0.3038,10968,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 274.375551][ T27] audit: type=1326 audit(1777926563.761:174): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11005 comm="syz.4.3055" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f416559cdd9 code=0x7ffc0000 [ 274.435952][T10968] (syz.0.3038,10968,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 274.456382][T11008] loop3: detected capacity change from 0 to 4096 [ 274.463616][T11008] NILFS: invalid option "cp=0x00aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa": too large checkpoint number [ 274.525383][ T27] audit: type=1326 audit(1777926563.761:175): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11005 comm="syz.4.3055" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=98 compat=0 ip=0x7f416559cdd9 code=0x7ffc0000 [ 274.574026][T10968] JBD2: Ignoring recovery information on journal [ 274.593857][T11016] loop4: detected capacity change from 0 to 512 [ 274.623626][T10984] loop1: detected capacity change from 0 to 32768 [ 274.657730][T10984] __jfs_setxattr: xattr_size = 72, new_size = 12818 [ 274.731935][T11016] EXT4-fs (loop4): 1 truncate cleaned up [ 274.775157][T10968] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode. [ 274.786109][T11016] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 274.850074][ T27] audit: type=1326 audit(1777926563.761:176): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11005 comm="syz.4.3055" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f416559cdd9 code=0x7ffc0000 [ 274.878860][T11024] netlink: 3 bytes leftover after parsing attributes in process `syz.3.3061'. [ 274.955768][T11024] 0ªX¹¦À: renamed from caif0 [ 274.986547][ T27] audit: type=1326 audit(1777926563.761:177): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11005 comm="syz.4.3055" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f416559cdd9 code=0x7ffc0000 [ 275.041838][T11024] net_ratelimit: 5936 callbacks suppressed [ 275.041850][T11024] A link change request failed with some changes committed already. Interface 60ªX¹¦À may have been left with an inconsistent configuration, please check. [ 275.101943][ T4282] EXT4-fs (loop4): unmounting filesystem. [ 275.124848][ T27] audit: type=1326 audit(1777926563.761:178): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11005 comm="syz.4.3055" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f416559cdd9 code=0x7ffc0000 [ 275.271775][ T27] audit: type=1326 audit(1777926563.761:179): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11005 comm="syz.4.3055" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=436 compat=0 ip=0x7f416559cdd9 code=0x7ffc0000 [ 275.296137][ C1] vkms_vblank_simulate: vblank timer overrun [ 275.326194][ T4270] ocfs2: Unmounting device (7,0) on (node local) [ 275.453142][ T27] audit: type=1326 audit(1777926563.761:180): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11005 comm="syz.4.3055" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=231 compat=0 ip=0x7f416559cdd9 code=0x7ffc0000 [ 275.477397][ C1] vkms_vblank_simulate: vblank timer overrun [ 275.697922][T11044] netlink: 'syz.4.3070': attribute type 15 has an invalid length. [ 275.731662][T11046] loop1: detected capacity change from 0 to 512 [ 275.753827][T11044] netlink: 24 bytes leftover after parsing attributes in process `syz.4.3070'. [ 275.773614][T11046] EXT4-fs: Ignoring removed oldalloc option [ 275.811742][T11046] EXT4-fs: Ignoring removed nobh option [ 275.934603][T11053] loop2: detected capacity change from 0 to 8 [ 275.965670][T11046] EXT4-fs error (device loop1): ext4_xattr_inode_iget:401: inode #11: comm syz.1.3071: iget: bad extra_isize 90 (inode size 256) [ 276.023121][T11046] EXT4-fs (loop1): Remounting filesystem read-only [ 276.030580][T11046] EXT4-fs error (device loop1): ext4_xattr_inode_iget:406: comm syz.1.3071: error while reading EA inode 11 err=-117 [ 276.063027][T11046] EXT4-fs (loop1): Remounting filesystem read-only [ 276.080131][T11046] EXT4-fs warning (device loop1): ext4_expand_extra_isize_ea:2800: Unable to expand inode 15. Delete some EAs or run e2fsck. [ 276.150718][T11046] EXT4-fs error (device loop1): ext4_xattr_inode_iget:401: inode #11: comm syz.1.3071: iget: bad extra_isize 90 (inode size 256) [ 276.231901][T11046] EXT4-fs (loop1): Remounting filesystem read-only [ 276.257000][T11046] EXT4-fs error (device loop1): ext4_xattr_inode_iget:406: comm syz.1.3071: error while reading EA inode 11 err=-117 [ 276.346359][T11046] EXT4-fs (loop1): Remounting filesystem read-only [ 276.375119][T11046] EXT4-fs error (device loop1): ext4_xattr_inode_iget:401: inode #18: comm syz.1.3071: iget: bad extra_isize 90 (inode size 256) [ 276.425363][T11046] EXT4-fs (loop1): Remounting filesystem read-only [ 276.465413][T11046] EXT4-fs error (device loop1): ext4_xattr_inode_iget:406: comm syz.1.3071: error while reading EA inode 18 err=-117 [ 276.490633][T11046] EXT4-fs (loop1): Remounting filesystem read-only [ 276.554366][T11046] EXT4-fs error (device loop1): ext4_xattr_inode_iget:401: inode #18: comm syz.1.3071: iget: bad extra_isize 90 (inode size 256) [ 276.580819][T11046] EXT4-fs (loop1): Remounting filesystem read-only [ 276.615693][T11046] EXT4-fs error (device loop1): ext4_xattr_inode_iget:406: comm syz.1.3071: error while reading EA inode 18 err=-117 [ 276.663642][T11046] EXT4-fs (loop1): Remounting filesystem read-only [ 276.689711][T11046] EXT4-fs (loop1): 1 orphan inode deleted [ 276.702580][T11046] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 276.762418][T11046] EXT4-fs error (device loop1): __ext4_iget:5102: inode #14: block 1886221359: comm syz.1.3071: invalid block [ 276.863247][T11046] EXT4-fs (loop1): Remounting filesystem read-only [ 276.931449][T11086] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3089'. [ 276.948421][ T4278] EXT4-fs (loop1): unmounting filesystem. [ 277.018097][T11088] x_tables: duplicate underflow at hook 3 [ 277.053290][T11090] netlink: 12 bytes leftover after parsing attributes in process `syz.2.3092'. [ 277.225740][T11098] netlink: 48 bytes leftover after parsing attributes in process `syz.4.3094'. [ 277.534861][T11107] loop3: detected capacity change from 0 to 4096 [ 277.539968][T11113] loop0: detected capacity change from 0 to 16 [ 277.560626][T11107] /dev/loop3: Can't open blockdev [ 277.596578][T11113] erofs: (device loop0): mounted with root inode @ nid 36. [ 277.664497][T11113] erofs: (device loop0): z_erofs_read_folio: failed to read, err [-117] [ 278.126151][ T27] audit: type=1326 audit(1777926567.681:181): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11134 comm="syz.4.3112" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f416559cdd9 code=0x7ffc0000 [ 278.794511][T11162] loop4: detected capacity change from 0 to 1024 [ 279.124752][T11174] loop0: detected capacity change from 0 to 164 [ 279.513335][T11181] loop2: detected capacity change from 0 to 4096 [ 279.578569][T11191] overlayfs: conflicting options: metacopy=on,redirect_dir=nofollow [ 279.587107][T11181] ntfs3: loop2: Different NTFS' sector size (4096) and media sector size (512) [ 279.757360][T11181] ntfs3: loop2: failed to convert "c46c" to cp860 [ 279.906440][T11197] loop1: detected capacity change from 0 to 4096 [ 279.946305][T11197] __ntfs_warning: 3 callbacks suppressed [ 279.946319][T11197] ntfs: (device loop1): parse_options(): Option utf8 is no longer supported, using option nls=utf8. Please use option nls=utf8 in the future and make sure utf8 is compiled either as a module or into the kernel. [ 279.972481][ C1] vkms_vblank_simulate: vblank timer overrun [ 280.045986][T11206] bond0: (slave bond_slave_1): Error: Device is in use and cannot be enslaved [ 280.149718][T11197] ntfs: volume version 3.1. [ 280.393109][T11216] loop2: detected capacity change from 0 to 1024 [ 280.648214][ T75] hfsplus: b-tree write err: -5, ino 25 [ 280.654052][ T75] hfsplus: b-tree write err: -5, ino 4 [ 280.700626][ T75] hfsplus: b-tree write err: -5, ino 2 [ 280.730650][ T75] hfsplus: b-tree write err: -5, ino 23 [ 280.857422][T11228] netlink: 28 bytes leftover after parsing attributes in process `syz.2.3158'. [ 280.877401][T11203] loop3: detected capacity change from 0 to 32768 [ 280.920982][T11203] /dev/loop3: Can't open blockdev [ 280.945411][ T4315] usb 2-1: new high-speed USB device number 14 using dummy_hcd [ 280.983095][T11230] netlink: 12 bytes leftover after parsing attributes in process `syz.4.3160'. [ 281.127110][ T4315] usb 2-1: config 0 has an invalid interface number: 69 but max is 0 [ 281.175135][ T4315] usb 2-1: config 0 has no interface number 0 [ 281.196234][T11220] loop0: detected capacity change from 0 to 32768 [ 281.208637][ T4315] usb 2-1: config 0 interface 69 altsetting 0 bulk endpoint 0x8 has invalid maxpacket 1023 [ 281.286337][ T4315] usb 2-1: config 0 interface 69 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7 [ 281.368203][ T4315] usb 2-1: New USB device found, idVendor=0c4b, idProduct=0100, bcdDevice=d7.ca [ 281.405337][ T4315] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 281.433732][ T4315] usb 2-1: Product: syz [ 281.443858][ T4315] usb 2-1: Manufacturer: syz [ 281.475228][ T4315] usb 2-1: SerialNumber: syz [ 281.494568][ T4315] usb 2-1: config 0 descriptor?? [ 281.524568][T11224] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22 [ 281.524876][T11220] XFS (loop0): Mounting V5 Filesystem [ 281.539521][ T4315] cyberjack 2-1:0.69: Reiner SCT Cyberjack USB card reader converter detected [ 281.589244][ T4315] usb 2-1: Reiner SCT Cyberjack USB card reader converter now attached to ttyUSB0 [ 281.690964][T11220] XFS (loop0): Ending clean mount [ 281.739225][T11220] XFS (loop0): Metadata CRC error detected at xfs_inobt_read_verify+0x3a/0xd0, xfs_finobt block 0x10 [ 281.815418][T11220] XFS (loop0): Unmount and run xfs_repair [ 281.821392][T11220] XFS (loop0): First 128 bytes of corrupted metadata buffer: [ 281.846132][T11220] 00000000: 46 49 42 33 00 00 00 01 ff ff ff ff ff ff ff ff FIB3............ [ 281.864242][T11220] 00000010: 00 00 00 00 00 00 00 10 00 00 00 01 00 00 00 10 ................ [ 281.881016][T11257] loop3: detected capacity change from 0 to 4096 [ 281.894251][T11220] 00000020: d7 dc 42 4e 79 90 42 cb 9f 91 9c b7 20 0a 10 1d ..BNy.B..... ... [ 281.914059][T11257] /dev/loop3: Can't open blockdev [ 281.919422][T11220] 00000030: 00 00 00 00 0f 8d d2 a2 00 00 18 00 00 00 40 37 ..............@7 [ 281.948226][T11220] 00000040: ff ff ff ff ff ff fe 00 00 00 00 00 00 00 00 00 ................ [ 281.977864][T11220] 00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ [ 281.988598][ T6196] usb 2-1: USB disconnect, device number 14 [ 282.005660][ T6196] cyberjack ttyUSB0: Reiner SCT Cyberjack USB card reader converter now disconnected from ttyUSB0 [ 282.023187][T11220] 00000060: 00 00 00 00 00 f0 00 00 00 00 00 00 00 00 00 00 ................ [ 282.053127][ T6196] cyberjack 2-1:0.69: device disconnected [ 282.061482][T11220] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ [ 282.082919][T11220] XFS (loop0): metadata I/O error in "xfs_btree_read_buf_block+0x1db/0x2d0" at daddr 0x10 len 4 error 74 [ 282.111908][T11220] XFS (loop0): Failed to initialize disk quotas. [ 282.161618][T11268] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 282.225485][ T4315] usb 5-1: new high-speed USB device number 13 using dummy_hcd [ 282.287917][T11268] EXT4-fs error (device loop2): ext4_validate_block_bitmap:438: comm syz.2.3173: bg 0: block 384: padding at end of block bitmap is not set [ 282.350912][T11268] EXT4-fs (loop2): Remounting filesystem read-only [ 282.384429][T11268] EXT4-fs error (device loop2) in ext4_mb_clear_bb:6180: Corrupt filesystem [ 282.404574][T11268] EXT4-fs (loop2): Remounting filesystem read-only [ 282.413774][ T4270] XFS (loop0): Unmounting Filesystem [ 282.415582][ T4315] usb 5-1: Using ep0 maxpacket: 32 [ 282.431480][ T4315] usb 5-1: config 0 has an invalid interface number: 136 but max is 0 [ 282.436135][T11268] EXT4-fs error (device loop2): ext4_clear_blocks:883: inode #11: comm syz.2.3173: attempt to clear invalid blocks 983260 len 1 [ 282.440607][ T4315] usb 5-1: config 0 has no interface number 0 [ 282.459336][ T4315] usb 5-1: config 0 interface 136 altsetting 0 bulk endpoint 0xA has invalid maxpacket 32 [ 282.469676][ T4315] usb 5-1: config 0 interface 136 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 224 [ 282.487295][T11268] EXT4-fs (loop2): Remounting filesystem read-only [ 282.497129][ T4315] usb 5-1: New USB device found, idVendor=10cf, idProduct=8063, bcdDevice=d1.d2 [ 282.519363][T11268] EXT4-fs error (device loop2): __ext4_get_inode_loc:4520: comm syz.2.3173: Invalid inode table block 0 in block_group 0 [ 282.554899][ T4315] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 282.558919][T11268] EXT4-fs (loop2): Remounting filesystem read-only [ 282.591293][T11268] EXT4-fs error (device loop2) in ext4_reserve_inode_write:5952: Corrupt filesystem [ 282.625330][ T4315] usb 5-1: Product: syz [ 282.630237][T11268] EXT4-fs (loop2): Remounting filesystem read-only [ 282.635527][ T4315] usb 5-1: Manufacturer: syz [ 282.648899][T11268] EXT4-fs error (device loop2) in ext4_orphan_del:303: Corrupt filesystem [ 282.659881][ T4315] usb 5-1: SerialNumber: syz [ 282.683049][ T4315] usb 5-1: config 0 descriptor?? [ 282.697988][T11262] raw-gadget.1 gadget.4: fail, usb_ep_enable returned -22 [ 282.702389][T11268] EXT4-fs (loop2): Remounting filesystem read-only [ 282.719568][T11262] raw-gadget.1 gadget.4: fail, usb_ep_enable returned -22 [ 282.724102][ T27] audit: type=1326 audit(1777926572.271:185): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11276 comm="syz.1.3178" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff15e79cdd9 code=0x7ffc0000 [ 282.766501][T11268] EXT4-fs error (device loop2): __ext4_get_inode_loc:4520: comm syz.2.3173: Invalid inode table block 0 in block_group 0 [ 282.796136][ T4315] comedi comedi5: driver 'vmk80xx' has successfully auto-configured 'K8061 (VM140)'. [ 282.805590][ T27] audit: type=1326 audit(1777926572.301:186): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11276 comm="syz.1.3178" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff15e79cdd9 code=0x7ffc0000 [ 282.835035][T11268] EXT4-fs (loop2): Remounting filesystem read-only [ 282.855577][T11268] EXT4-fs error (device loop2) in ext4_reserve_inode_write:5952: Corrupt filesystem [ 282.875788][T11268] EXT4-fs (loop2): Remounting filesystem read-only [ 282.904366][T11268] EXT4-fs error (device loop2): ext4_truncate:4325: inode #11: comm syz.2.3173: mark_inode_dirty error [ 282.935035][ T27] audit: type=1326 audit(1777926572.341:187): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11276 comm="syz.1.3178" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=99 compat=0 ip=0x7ff15e79cdd9 code=0x7ffc0000 [ 282.975507][T11268] EXT4-fs (loop2): Remounting filesystem read-only [ 282.983527][T11268] EXT4-fs error (device loop2) in ext4_process_orphan:345: Corrupt filesystem [ 283.015835][ T27] audit: type=1326 audit(1777926572.341:188): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11276 comm="syz.1.3178" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff15e79cdd9 code=0x7ffc0000 [ 283.050819][T11268] EXT4-fs (loop2): Remounting filesystem read-only [ 283.085450][T11268] EXT4-fs (loop2): 1 truncate cleaned up [ 283.091249][T11268] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 283.135961][ T27] audit: type=1326 audit(1777926572.341:189): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11276 comm="syz.1.3178" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff15e79cdd9 code=0x7ffc0000 [ 283.158610][ T6196] usb 5-1: USB disconnect, device number 13 [ 283.187433][T11286] syz.0.3177: vmalloc error: size 70368744185856, exceeds total pages, mode:0xcc0(GFP_KERNEL), nodemask=(null),cpuset=syz0,mems_allowed=0-1 [ 283.203724][T11287] set_capacity_and_notify: 1 callbacks suppressed [ 283.203741][T11287] loop1: detected capacity change from 0 to 1764 [ 283.260470][T11286] CPU: 1 PID: 11286 Comm: syz.0.3177 Not tainted syzkaller #0 [ 283.265649][T11268] EXT4-fs error (device loop2): __ext4_get_inode_loc:4520: comm syz.2.3173: Invalid inode table block 0 in block_group 0 [ 283.267968][T11286] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 283.268021][T11286] Call Trace: [ 283.268030][T11286] [ 283.268039][T11286] dump_stack_lvl+0x188/0x24e [ 283.297693][T11286] ? cpuset_print_current_mems_allowed+0x1b/0x360 [ 283.308811][T11286] ? show_regs_print_info+0x12/0x12 [ 283.314121][T11286] ? load_image+0x400/0x400 [ 283.318649][T11286] ? cpuset_print_current_mems_allowed+0x1b/0x360 [ 283.325159][T11286] ? cpuset_print_current_mems_allowed+0x2e3/0x360 [ 283.331666][T11286] warn_alloc+0x242/0x330 [ 283.336098][T11286] ? zone_watermark_ok_safe+0x270/0x270 [ 283.341668][T11286] __vmalloc_node_range+0x11e/0x13b0 [ 283.346958][T11286] ? __mutex_trylock_common+0x155/0x260 [ 283.352594][T11286] ? trace_raw_output_contention_end+0xd0/0xd0 [ 283.358757][T11286] ? rcu_is_watching+0x11/0xa0 [ 283.363534][T11286] ? __mutex_lock+0x1ab/0xaf0 [ 283.368230][T11286] ? free_vm_area+0x50/0x50 [ 283.372743][T11286] ? dvb_demux_do_ioctl+0x313/0x530 [ 283.377958][T11286] ? tomoyo_check_path_acl+0x1c0/0x1c0 [ 283.383425][T11286] ? mutex_lock_nested+0x10/0x10 [ 283.388463][T11286] ? dvb_dmxdev_set_buffer_size+0xbe/0x1f0 [ 283.394286][T11286] vmalloc+0x75/0x80 [ 283.398233][T11286] ? dvb_dmxdev_set_buffer_size+0xbe/0x1f0 [ 283.404096][T11286] dvb_dmxdev_set_buffer_size+0xbe/0x1f0 [ 283.409960][T11286] dvb_demux_do_ioctl+0x450/0x530 [ 283.415099][T11286] dvb_usercopy+0x191/0x2b0 [ 283.419626][T11286] ? dvb_dmxdev_buffer_read+0x4c0/0x4c0 [ 283.425197][T11286] ? dvb_generic_ioctl+0xb0/0xb0 [ 283.430163][T11286] ? dvb_demux_poll+0x210/0x210 [ 283.435024][T11286] dvb_demux_ioctl+0x25/0x30 [ 283.439619][T11286] __se_sys_ioctl+0xfa/0x170 [ 283.444301][T11286] do_syscall_64+0x4c/0xa0 [ 283.448737][T11286] ? clear_bhb_loop+0x60/0xb0 [ 283.453595][T11286] ? clear_bhb_loop+0x60/0xb0 [ 283.458279][T11286] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 283.464197][T11286] RIP: 0033:0x7fa2bbb9cdd9 [ 283.468625][T11286] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 283.488250][T11286] RSP: 002b:00007fa2bc9f9028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 283.496779][T11286] RAX: ffffffffffffffda RBX: 00007fa2bbe15fa0 RCX: 00007fa2bbb9cdd9 [ 283.504755][T11286] RDX: 0000400000002000 RSI: 0000000000006f2d RDI: 0000000000000003 [ 283.512838][T11286] RBP: 00007fa2bbc32d69 R08: 0000000000000000 R09: 0000000000000000 [ 283.520904][T11286] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 283.528978][T11286] R13: 00007fa2bbe16038 R14: 00007fa2bbe15fa0 R15: 00007ffd551d5678 [ 283.536984][T11286] [ 283.566749][T11268] EXT4-fs (loop2): Remounting filesystem read-only [ 283.617045][T11286] Mem-Info: [ 283.623175][ T4283] EXT4-fs (loop2): unmounting filesystem. [ 283.655435][T11286] active_anon:6790 inactive_anon:0 isolated_anon:0 [ 283.655435][T11286] active_file:11157 inactive_file:40537 isolated_file:0 [ 283.655435][T11286] unevictable:768 dirty:429 writeback:0 [ 283.655435][T11286] slab_reclaimable:21479 slab_unreclaimable:98489 [ 283.655435][T11286] mapped:30332 shmem:1654 pagetables:720 [ 283.655435][T11286] sec_pagetables:0 bounce:0 [ 283.655435][T11286] kernel_misc_reclaimable:0 [ 283.655435][T11286] free:1316937 free_pcp:11120 free_cma:0 [ 283.710291][T11286] Node 0 active_anon:26960kB inactive_anon:0kB active_file:44624kB inactive_file:161944kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:121328kB dirty:1712kB writeback:0kB shmem:5080kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB kernel_stack:11068kB pagetables:2680kB sec_pagetables:0kB all_unreclaimable? no [ 283.817387][T11286] Node 1 active_anon:0kB inactive_anon:0kB active_file:4kB inactive_file:204kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:4kB dirty:4kB writeback:0kB shmem:1536kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB kernel_stack:16kB pagetables:0kB sec_pagetables:0kB all_unreclaimable? no [ 283.866346][T11286] Node 0 DMA free:15296kB boost:0kB min:204kB low:252kB high:300kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 283.871418][T11295] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3186'. [ 283.894177][T11286] lowmem_reserve[]: 0 2527 2528 2528 2528 [ 283.930576][T11286] Node 0 DMA32 free:1354824kB boost:0kB min:34692kB low:43364kB high:52036kB reserved_highatomic:0KB active_anon:25884kB inactive_anon:0kB active_file:44624kB inactive_file:161912kB unevictable:1536kB writepending:1728kB present:3129332kB managed:2592964kB mlocked:0kB bounce:0kB free_pcp:26016kB local_pcp:10972kB free_cma:0kB [ 284.015621][T11286] lowmem_reserve[]: 0 0 1 1 1 [ 284.030439][T11286] Node 0 Normal free:0kB boost:0kB min:16kB low:20kB high:24kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:1048576kB managed:1424kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 284.057467][ C0] vkms_vblank_simulate: vblank timer overrun [ 284.087471][T11286] lowmem_reserve[]: 0 0 0 0 0 [ 284.092380][T11286] Node 1 Normal free:3897376kB boost:0kB min:55192kB low:68988kB high:82784kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:4kB inactive_file:204kB unevictable:1536kB writepending:4kB present:4194304kB managed:4117620kB mlocked:0kB bounce:0kB free_pcp:19904kB local_pcp:10016kB free_cma:0kB [ 284.122387][ C0] vkms_vblank_simulate: vblank timer overrun [ 284.175946][T11286] lowmem_reserve[]: 0 0 0 0 0 [ 284.211875][T11286] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 1*64kB (U) 1*128kB (U) 1*256kB (U) 1*512kB (U) 0*1024kB 1*2048kB (M) 3*4096kB (M) = 15296kB [ 284.261949][T11286] Node 0 DMA32: 515*4kB (UME) 1326*8kB (UME) 447*16kB (UME) 217*32kB (UME) 309*64kB (UME) 69*128kB (UME) 37*256kB (UM) 21*512kB (UME) 13*1024kB (UME) 8*2048kB (UME) 305*4096kB (UM) = 1354572kB [ 284.351423][T11286] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 284.385477][T11286] Node 1 Normal: 220*4kB (UM) 48*8kB (UME) 23*16kB (UE) 42*32kB (UME) 28*64kB (UME) 17*128kB (UME) 11*256kB (UM) 3*512kB (UME) 1*1024kB (U) 1*2048kB (E) 948*4096kB (M) = 3897376kB [ 284.403722][ C0] vkms_vblank_simulate: vblank timer overrun [ 284.468406][T11286] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 284.493665][T11286] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 284.543978][T11286] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 284.597324][T11286] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 284.615138][T11286] 53417 total pagecache pages [ 284.625305][T11286] 0 pages in swap cache [ 284.629574][T11286] Free swap = 124472kB [ 284.640067][T11322] loop2: detected capacity change from 0 to 256 [ 284.646721][T11286] Total swap = 124996kB [ 284.650938][T11286] 2097051 pages RAM [ 284.659789][T11311] loop3: detected capacity change from 0 to 8192 [ 284.665099][T11286] 0 pages HighMem/MovableOnly [ 284.675240][T11286] 415209 pages reserved [ 284.680416][T11286] 0 pages cma reserved [ 284.744544][ T4367] I/O error, dev loop3, sector 8064 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 284.766171][T11322] FAT-fs (loop2): Directory bread(block 64) failed [ 284.772768][T11322] FAT-fs (loop2): Directory bread(block 65) failed [ 284.814559][T11324] loop1: detected capacity change from 0 to 512 [ 284.831516][T11322] FAT-fs (loop2): Directory bread(block 66) failed [ 284.852508][T11322] FAT-fs (loop2): Directory bread(block 67) failed [ 284.911859][T11322] FAT-fs (loop2): Directory bread(block 68) failed [ 284.935933][T11324] EXT4-fs (loop1): mounting ext2 file system using the ext4 subsystem [ 284.964323][T11322] FAT-fs (loop2): Directory bread(block 69) failed [ 285.062206][T11324] EXT4-fs error (device loop1): ext4_orphan_get:1405: inode #15: comm syz.1.3200: iget: bogus i_mode (5) [ 285.074939][T11322] FAT-fs (loop2): Directory bread(block 70) failed [ 285.144635][T11322] FAT-fs (loop2): Directory bread(block 71) failed [ 285.175659][T11324] EXT4-fs error (device loop1): ext4_orphan_get:1410: comm syz.1.3200: couldn't read orphan inode 15 (err -117) [ 285.190092][T11322] FAT-fs (loop2): Directory bread(block 72) failed [ 285.222783][T11322] FAT-fs (loop2): Directory bread(block 73) failed [ 285.244300][T11324] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 285.263643][T11324] ext2 filesystem being mounted at /595/file2 supports timestamps until 2038-01-19 (0x7fffffff) [ 285.382389][T11324] EXT4-fs error (device loop1): ext4_add_entry:2486: inode #2: comm syz.1.3200: Directory hole found for htree leaf block 0 [ 285.743036][ T4278] EXT4-fs (loop1): unmounting filesystem. [ 286.073313][T11364] netlink: 20 bytes leftover after parsing attributes in process `syz.3.3214'. [ 286.217380][T11367] loop4: detected capacity change from 0 to 4096 [ 286.263277][T11367] ntfs3: loop4: Different NTFS' sector size (4096) and media sector size (512) [ 286.347374][T11367] ntfs3: loop4: Mark volume as dirty due to NTFS errors [ 286.577930][T11383] netlink: 'syz.1.3223': attribute type 1 has an invalid length. [ 286.585780][T11383] netlink: 12 bytes leftover after parsing attributes in process `syz.1.3223'. [ 286.644347][T11387] loop2: detected capacity change from 0 to 2048 [ 286.743510][T11387] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 286.851373][T11387] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 286.893344][T11387] ext4 filesystem being mounted at /632/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 286.999884][ T27] audit: type=1400 audit(1777926576.551:190): apparmor="DENIED" operation="setprocattr" info="fscreate" error=-22 profile="unconfined" pid=11401 comm="syz.0.3229" [ 287.029560][T11387] Quota error (device loop2): find_tree_dqentry: Cycle in quota tree detected: block 2 index 0 [ 287.085710][T11387] Quota error (device loop2): qtree_read_dquot: Can't read quota structure for id 0 [ 287.123854][T11387] EXT4-fs error (device loop2): ext4_acquire_dquot:6841: comm syz.2.3224: Failed to acquire dquot type 0 [ 287.381557][ T4283] EXT4-fs (loop2): unmounting filesystem. [ 288.496127][ T4641] usb 2-1: new high-speed USB device number 15 using dummy_hcd [ 288.620582][T11467] loop3: detected capacity change from 0 to 128 [ 288.673227][T11467] UDF-fs: error (device loop3): udf_read_tagged: read failed, block=256, location=256 [ 288.727624][ T4641] usb 2-1: config 220 has an invalid interface number: 76 but max is 2 [ 288.763120][ T4641] usb 2-1: config 220 has an invalid descriptor of length 0, skipping remainder of the config [ 288.783067][T11467] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 288.819847][ T4641] usb 2-1: config 220 has no interface number 2 [ 288.845388][ T4641] usb 2-1: config 220 interface 1 altsetting 5 has 0 endpoint descriptors, different from the interface descriptor's value: 12 [ 288.935388][ T4641] usb 2-1: config 220 interface 0 has no altsetting 0 [ 288.956970][ T4641] usb 2-1: config 220 interface 76 has no altsetting 0 [ 288.979872][ T4641] usb 2-1: config 220 interface 1 has no altsetting 0 [ 289.019754][ T4641] usb 2-1: New USB device found, idVendor=8086, idProduct=0b07, bcdDevice=6c.b9 [ 289.039889][T11474] loop0: detected capacity change from 0 to 4096 [ 289.046464][ T4641] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 289.046492][ T4641] usb 2-1: Product: syz [ 289.046507][ T4641] usb 2-1: Manufacturer: syz [ 289.046521][ T4641] usb 2-1: SerialNumber: syz [ 289.137560][T11474] ntfs3: loop0: Different NTFS' sector size (4096) and media sector size (512) [ 289.237029][T11474] ntfs3: loop0: Mark volume as dirty due to NTFS errors [ 289.280180][ T4641] usb 2-1: selecting invalid altsetting 0 [ 289.313479][ T4641] usb 2-1: Found UVC 7.01 device syz (8086:0b07) [ 289.355361][ T4641] usb 2-1: No valid video chain found. [ 289.417966][ T4641] usb 2-1: selecting invalid altsetting 0 [ 289.423782][ T4641] usbtest: probe of 2-1:220.1 failed with error -22 [ 289.505548][ T4641] usb 2-1: USB disconnect, device number 15 [ 289.890271][T11511] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3281'. [ 290.018544][T11518] bond0: (slave lo): enslaved VLAN challenged slave. Adding VLANs will be blocked as long as it is part of bond. [ 290.075491][T11518] bond0: (slave lo): Error: Device can not be enslaved while up [ 290.582681][T11542] x_tables: unsorted underflow at hook 3 [ 290.770796][T11546] loop4: detected capacity change from 0 to 2048 [ 290.841822][T11546] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 291.305928][T11537] loop0: detected capacity change from 0 to 32768 [ 291.329467][T11567] loop3: detected capacity change from 0 to 16 [ 291.364180][T11567] /dev/loop3: Can't open blockdev [ 291.423463][T11537] JBD2: Ignoring recovery information on journal [ 291.539093][T11537] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode. [ 291.707973][T11537] OCFS2: ERROR (device loop0): int ocfs2_validate_gd_self(struct super_block *, struct buffer_head *, int): Group descriptor #17056 has bit count 2061 but max bitmap bits of 2048 [ 291.783990][T11537] On-disk corruption discovered. Please run fsck.ocfs2 once the filesystem is unmounted. [ 291.784470][T11579] device wlan0 entered promiscuous mode [ 291.830623][T11537] OCFS2: File system is now read-only. [ 291.840502][T11585] netlink: 36 bytes leftover after parsing attributes in process `syz.2.3313'. [ 291.892148][T11537] (syz.0.3292,11537,0):ocfs2_search_chain:1761 ERROR: status = -30 [ 291.893215][T11585] device vlan0 entered promiscuous mode [ 291.911303][T11537] (syz.0.3292,11537,0):ocfs2_search_chain:1871 ERROR: status = -30 [ 291.957965][T11537] (syz.0.3292,11537,0):ocfs2_claim_suballoc_bits:1950 ERROR: status = -30 [ 291.958324][ T4641] usb 4-1: new high-speed USB device number 10 using dummy_hcd [ 291.967440][T11537] (syz.0.3292,11537,0):ocfs2_claim_suballoc_bits:1993 ERROR: status = -30 [ 291.983331][T11537] (syz.0.3292,11537,0):ocfs2_claim_new_inode:2226 ERROR: status = -30 [ 291.992245][T11537] (syz.0.3292,11537,0):ocfs2_claim_new_inode:2241 ERROR: status = -30 [ 292.003212][T11587] device netdevsim0 entered promiscuous mode [ 292.038774][T11587] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check. [ 292.063638][T11537] (syz.0.3292,11537,0):ocfs2_mknod_locked:639 ERROR: status = -30 [ 292.072049][T11537] (syz.0.3292,11537,0):ocfs2_symlink:1941 ERROR: status = -30 [ 292.116480][T11537] (syz.0.3292,11537,0):ocfs2_symlink:2065 ERROR: status = -30 [ 292.225296][ T4641] usb 4-1: New USB device found, idVendor=200c, idProduct=100b, bcdDevice= 0.40 [ 292.233537][ T4270] ocfs2: Unmounting device (7,0) on (node local) [ 292.240108][ T4641] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 292.249906][ T4641] usb 4-1: Product: syz [ 292.254181][ T4641] usb 4-1: Manufacturer: syz [ 292.259476][ T4641] usb 4-1: SerialNumber: syz [ 292.491367][ T4641] usb 4-1: unit 5 not found! [ 292.506529][ T4641] usb 4-1: unit 102 not found! [ 292.545535][ T4641] usb 4-1: USB disconnect, device number 10 [ 292.617177][ T4367] udevd[4367]: error opening ATTR{/sys/devices/platform/dummy_hcd.3/usb4/4-1/4-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 292.884116][T11612] IPv6: Can't replace route, no match found [ 293.372655][T11631] usb usb8: usbfs: process 11631 (syz.0.3337) did not claim interface 0 before use [ 293.612791][T11645] netlink: 'syz.1.3343': attribute type 1 has an invalid length. [ 293.707198][T11648] netlink: 36 bytes leftover after parsing attributes in process `syz.2.3346'. [ 293.739769][T11650] netlink: 'syz.3.3345': attribute type 1 has an invalid length. [ 294.032199][ T27] audit: type=1326 audit(1777926583.581:191): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11661 comm="syz.0.3351" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa2bbb9cdd9 code=0x7ffc0000 [ 294.115412][ T27] audit: type=1326 audit(1777926583.611:192): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11661 comm="syz.0.3351" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa2bbb9cdd9 code=0x7ffc0000 [ 294.206236][ T27] audit: type=1326 audit(1777926583.611:193): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11661 comm="syz.0.3351" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa2bbb9cdd9 code=0x7ffc0000 [ 294.288955][ T27] audit: type=1326 audit(1777926583.621:194): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11661 comm="syz.0.3351" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=113 compat=0 ip=0x7fa2bbb9cdd9 code=0x7ffc0000 [ 294.415342][ T27] audit: type=1326 audit(1777926583.621:195): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11661 comm="syz.0.3351" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa2bbb9cdd9 code=0x7ffc0000 [ 294.421647][T11674] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3359'. [ 294.521669][ T27] audit: type=1326 audit(1777926583.621:196): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11661 comm="syz.0.3351" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa2bbb9cdd9 code=0x7ffc0000 [ 294.663053][ T27] audit: type=1326 audit(1777926583.621:197): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11661 comm="syz.0.3351" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=436 compat=0 ip=0x7fa2bbb9cdd9 code=0x7ffc0000 [ 294.684288][T11646] loop4: detected capacity change from 0 to 32768 [ 294.782647][ T27] audit: type=1326 audit(1777926583.621:198): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11661 comm="syz.0.3351" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=231 compat=0 ip=0x7fa2bbb9cdd9 code=0x7ffc0000 [ 294.841978][T11646] XFS (loop4): Mounting V5 Filesystem [ 295.036642][T11646] XFS (loop4): Ending clean mount [ 295.087533][T11646] XFS (loop4): WARNING: Reset corrupted AGFL on AG 0. 1 blocks leaked. Please unmount and run xfs_repair. [ 295.391773][ T4282] XFS (loop4): Unmounting Filesystem [ 295.894898][T11737] loop0: detected capacity change from 0 to 1024 [ 296.252287][ T4458] hfsplus: b-tree write err: -5, ino 8 [ 296.491036][T11725] loop1: detected capacity change from 0 to 40427 [ 296.515065][T11725] F2FS-fs (loop1): build fault injection attr: rate: 14, type: 0x3ffff [ 296.543570][T11725] F2FS-fs (loop1): build fault injection attr: rate: 0, type: 0x724 [ 296.591240][T11725] F2FS-fs (loop1): invalid crc value [ 296.654615][T11725] F2FS-fs (loop1): Found nat_bits in checkpoint [ 296.783609][T11725] F2FS-fs (loop1) : inject page alloc in f2fs_grab_cache_page of f2fs_ra_meta_pages+0x432/0xa20 [ 296.897973][T11725] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5 [ 297.011153][T11725] F2FS-fs (loop1) : inject page alloc in f2fs_grab_cache_page of f2fs_new_node_page+0x12a/0x910 [ 297.214029][T11776] loop0: detected capacity change from 0 to 2048 [ 297.223345][T11747] loop3: detected capacity change from 0 to 32768 [ 297.296077][ T4367] I/O error, dev loop3, sector 32640 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 297.319552][T11776] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 297.939204][T11798] loop3: detected capacity change from 0 to 512 [ 297.940708][T11800] netlink: 'syz.2.3415': attribute type 3 has an invalid length. [ 297.958193][T11798] /dev/loop3: Can't open blockdev [ 297.990775][T11800] netlink: 'syz.2.3415': attribute type 3 has an invalid length. [ 298.035560][T11800] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3415'. [ 298.311768][ T27] audit: type=1326 audit(1777926587.861:199): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11809 comm="syz.1.3420" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff15e79cdd9 code=0x7ffc0000 [ 298.353302][T11813] netlink: 'syz.2.3421': attribute type 27 has an invalid length. [ 298.385388][ T27] audit: type=1326 audit(1777926587.901:200): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11809 comm="syz.1.3420" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=7 compat=0 ip=0x7ff15e79cdd9 code=0x7ffc0000 [ 298.410310][T11816] netlink: 'syz.0.3422': attribute type 12 has an invalid length. [ 298.541642][T11820] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3424'. [ 298.802170][T11834] loop0: detected capacity change from 0 to 16 [ 298.849562][T11834] erofs: (device loop0): mounted with root inode @ nid 36. [ 298.897660][T11834] erofs: (device loop0): z_erofs_readahead: readahead error at page 2 @ nid 89 [ 298.951419][T11834] erofs: (device loop0): z_erofs_do_map_blocks: invalid logical cluster 0 at nid 89 [ 299.011111][T11834] erofs: (device loop0): z_erofs_readahead: readahead error at page 0 @ nid 89 [ 299.050446][ T48] erofs: (device loop0): z_erofs_lz4_decompress_mem: failed to decompress 6887 in[4096, 0] out[7424] [ 299.062666][T11834] erofs: (device loop0): z_erofs_do_map_blocks: invalid logical cluster 0 at nid 89 [ 299.097166][T11846] netlink: 20 bytes leftover after parsing attributes in process `syz.4.3435'. [ 299.134595][T11834] erofs: (device loop0): z_erofs_read_folio: failed to read, err [-117] [ 299.177658][ T27] kauditd_printk_skb: 2 callbacks suppressed [ 299.177671][ T27] audit: type=1800 audit(1777926588.731:203): pid=11834 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.3431" name="file3" dev="loop0" ino=89 res=0 errno=0 [ 299.618316][T11870] netlink: 196 bytes leftover after parsing attributes in process `syz.0.3449'. [ 299.650507][T11870] ksmbd: Daemon and kernel module version mismatch. ksmbd: 0, kernel module: 1. User-space ksmbd should terminate. [ 299.953049][T11878] loop3: detected capacity change from 0 to 4096 [ 300.006696][T11878] /dev/loop3: Can't open blockdev [ 300.038692][T11878] /dev/loop3: Can't open blockdev [ 300.183824][T11895] loop1: detected capacity change from 0 to 512 [ 300.307422][T11895] EXT4-fs error (device loop1): ext4_xattr_inode_iget:401: inode #12: comm syz.1.3460: missing EA_INODE flag [ 300.335674][T11895] EXT4-fs error (device loop1): ext4_xattr_inode_iget:406: comm syz.1.3460: error while reading EA inode 12 err=-117 [ 300.396132][T11895] EXT4-fs (loop1): 1 orphan inode deleted [ 300.401932][T11895] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 300.631451][ T4278] EXT4-fs (loop1): unmounting filesystem. [ 300.906333][T11923] loop4: detected capacity change from 0 to 2048 [ 300.983590][T11923] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 301.066853][T11937] loop3: detected capacity change from 0 to 64 [ 301.357071][T11944] netlink: 'syz.1.3483': attribute type 1 has an invalid length. [ 301.364857][T11944] netlink: 228 bytes leftover after parsing attributes in process `syz.1.3483'. [ 301.617375][T11955] loop1: detected capacity change from 0 to 256 [ 301.753427][T11955] exFAT-fs (loop1): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x190b464b, utbl_chksum : 0xe619d30d) [ 301.826116][ T27] audit: type=1800 audit(1777926591.371:204): pid=11923 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.3473" name="file1" dev="loop4" ino=15 res=0 errno=0 [ 301.977012][ T4282] EXT4-fs (loop4): unmounting filesystem. [ 302.329302][T11953] loop0: detected capacity change from 0 to 32768 [ 302.381227][T11953] JBD2: Ignoring recovery information on journal [ 302.452699][T11952] loop3: detected capacity change from 0 to 32768 [ 302.527968][ T4349] I/O error, dev loop3, sector 32640 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 302.564688][T11953] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode. [ 302.789808][ T4270] ocfs2: Unmounting device (7,0) on (node local) [ 303.317814][T11965] loop4: detected capacity change from 0 to 32768 [ 303.443192][T11965] jfs_strtoUCS: char2uni returned -22. [ 303.461667][T11965] charset = cp869, char = 0x83 [ 303.519396][T11993] loop1: detected capacity change from 0 to 1024 [ 303.566334][T11993] EXT4-fs: inline encryption not supported [ 303.648080][T11997] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3507'. [ 303.656724][T11993] EXT4-fs error (device loop1): ext4_free_blocks:6220: comm syz.1.3505: Freeing blocks not in datazone - block = 0, count = 4096 [ 303.686533][T11993] EXT4-fs (loop1): Remounting filesystem read-only [ 303.744326][T11993] EXT4-fs error (device loop1): ext4_read_inode_bitmap:140: comm syz.1.3505: Invalid inode bitmap blk 0 in block_group 0 [ 303.767630][T11993] EXT4-fs (loop1): Remounting filesystem read-only [ 303.783810][T11993] EXT4-fs error (device loop1) in ext4_free_inode:362: Corrupt filesystem [ 303.793067][T11993] EXT4-fs (loop1): Remounting filesystem read-only [ 303.803555][T11993] EXT4-fs (loop1): 1 orphan inode deleted [ 303.809791][T11993] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 303.883850][T11993] EXT4-fs error (device loop1): ext4_search_dir:1549: inode #2: block 16: comm syz.1.3505: bad entry in directory: inode out of bounds - offset=44, inode=40, rec_len=16, size=1024 fake=0 [ 303.993853][T11993] EXT4-fs (loop1): Remounting filesystem read-only [ 304.138655][ T4278] EXT4-fs (loop1): unmounting filesystem. [ 304.453776][T12021] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3518'. [ 304.640014][ T48] Bluetooth: hci3: unexpected event 0x04 length: 245 > 10 [ 304.709131][T12003] loop4: detected capacity change from 0 to 32768 [ 304.905403][T12003] XFS (loop4): Mounting V5 Filesystem [ 304.991245][ T4349] I/O error, dev loop3, sector 32640 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 305.050084][T12003] XFS (loop4): Ending clean mount [ 305.089287][T12048] llcp: llcp_sock_recvmsg: Recv datagram failed state 4 -11 0 [ 305.245163][ T4282] XFS (loop4): Unmounting Filesystem [ 306.177976][T12079] set_capacity_and_notify: 1 callbacks suppressed [ 306.177992][T12079] loop0: detected capacity change from 0 to 2048 [ 306.227207][T12079] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 306.311864][T12089] loop4: detected capacity change from 0 to 512 [ 306.382044][T12089] EXT4-fs (loop4): Cannot turn on journaled quota: type 0: error -2 [ 306.408998][T12089] EXT4-fs (loop4): Cannot turn on journaled quota: type 1: error -2 [ 306.433181][T12089] EXT4-fs (loop4): 1 truncate cleaned up [ 306.445588][T12089] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 306.546355][T12089] EXT4-fs: group quota file already specified [ 306.645588][ T4275] Bluetooth: hci3: command 0x0409 tx timeout [ 306.665465][ T4282] EXT4-fs (loop4): unmounting filesystem. [ 307.200253][T12120] loop1: detected capacity change from 0 to 2048 [ 307.301935][T12120] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 307.476081][ T4644] usb 3-1: new full-speed USB device number 14 using dummy_hcd [ 307.690140][ T4644] usb 3-1: unable to get BOS descriptor or descriptor too short [ 307.710358][ T4644] usb 3-1: not running at top speed; connect to a high speed hub [ 307.748340][T12138] loop3: detected capacity change from 0 to 512 [ 307.769239][ T4644] usb 3-1: config 249 has an invalid interface number: 203 but max is 0 [ 307.776455][T12138] /dev/loop3: Can't open blockdev [ 307.813505][ T4644] usb 3-1: config 249 has an invalid descriptor of length 0, skipping remainder of the config [ 307.844850][ T4644] usb 3-1: config 249 has no interface number 0 [ 307.872051][ T4644] usb 3-1: config 249 interface 203 altsetting 184 endpoint 0x81 has invalid wMaxPacketSize 0 [ 307.903781][ T4644] usb 3-1: config 249 interface 203 altsetting 184 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 307.942001][ T4644] usb 3-1: config 249 interface 203 has no altsetting 0 [ 307.974352][ T4644] usb 3-1: New USB device found, idVendor=0411, idProduct=0012, bcdDevice=90.39 [ 307.991777][ T4644] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 308.009524][ T4644] usb 3-1: Product: syz [ 308.013747][ T4644] usb 3-1: Manufacturer: syz [ 308.018878][ T4644] usb 3-1: SerialNumber: syz [ 308.056438][T12144] tipc: Started in network mode [ 308.061768][T12144] tipc: Node identity , cluster identity 4711 [ 308.085675][T12125] loop4: detected capacity change from 0 to 32768 [ 308.131538][T12125] BTRFS: device fsid e0cb6322-611b-4325-acdf-015f79de3787 devid 1 transid 8 /dev/loop4 scanned by syz.4.3562 (12125) [ 308.196218][ T27] audit: type=1800 audit(1777926597.751:205): pid=12120 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.3558" name="file1" dev="loop1" ino=15 res=0 errno=0 [ 308.216288][T12125] BTRFS info (device loop4): first mount of filesystem e0cb6322-611b-4325-acdf-015f79de3787 [ 308.251877][ T4644] rtl8150 3-1:249.203: couldn't find required endpoints [ 308.280029][ T4644] rtl8150: probe of 3-1:249.203 failed with error -5 [ 308.296815][T12125] BTRFS info (device loop4): using sha256 (sha256-avx2) checksum algorithm [ 308.326471][T12125] BTRFS info (device loop4): enabling ssd optimizations [ 308.339459][ T4644] usb 3-1: USB disconnect, device number 14 [ 308.372737][T12125] BTRFS info (device loop4): not using ssd optimizations [ 308.396783][T12125] BTRFS info (device loop4): turning off barriers [ 308.404008][T12125] BTRFS info (device loop4): use no compression [ 308.435647][T12125] BTRFS info (device loop4): using free space tree [ 308.525217][ T4278] EXT4-fs (loop1): unmounting filesystem. [ 308.626565][ T4282] BTRFS info (device loop4): last unmount of filesystem e0cb6322-611b-4325-acdf-015f79de3787 [ 309.264298][T12184] usb 1-1: new high-speed USB device number 14 using dummy_hcd [ 309.457173][T12184] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 309.479032][T12184] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 309.515331][T12184] usb 1-1: New USB device found, idVendor=056a, idProduct=030c, bcdDevice= 0.00 [ 309.544973][T12184] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 309.584562][T12184] usb 1-1: config 0 descriptor?? [ 309.813543][T12216] loop3: detected capacity change from 0 to 256 [ 309.835678][ T4317] usb 3-1: new high-speed USB device number 15 using dummy_hcd [ 309.858259][T12216] /dev/loop3: Can't open blockdev [ 309.864674][T12218] netlink: 24 bytes leftover after parsing attributes in process `syz.1.3594'. [ 309.914934][T12218] nbd: must specify a size in bytes for the device [ 310.055463][ T4317] usb 3-1: Using ep0 maxpacket: 16 [ 310.063028][ T4317] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 310.095466][T12184] wacom 0003:056A:030C.0001: hidraw0: USB HID v0.06 Device [HID 056a:030c] on usb-dummy_hcd.0-1/input0 [ 310.107470][ T4317] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 310.133840][ T4317] usb 3-1: New USB device found, idVendor=1fd2, idProduct=6007, bcdDevice= 0.00 [ 310.173440][T12222] loop1: detected capacity change from 0 to 16 [ 310.185476][ T4317] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 310.207327][T12222] erofs: (device loop1): mounted with root inode @ nid 36. [ 310.226076][ T4317] usb 3-1: config 0 descriptor?? [ 310.239740][T12222] erofs: (device loop1): z_erofs_extent_lookback: invalid lookback distance 0 @ nid 36 [ 310.279674][ T4359] usb 1-1: USB disconnect, device number 14 [ 310.282536][T12222] syz.1.3596: attempt to access beyond end of device [ 310.282536][T12222] loop1: rw=0, sector=288, nr_sectors = 8 limit=16 [ 310.362392][T12222] erofs: (device loop1): z_erofs_read_folio: failed to read, err [-117] [ 310.424374][T12223] fido_id[12223]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.0/usb1/report_descriptor': No such file or directory [ 310.497289][T12227] Bluetooth: MGMT ver 1.22 [ 310.657979][ T4317] hid-multitouch 0003:1FD2:6007.0002: bogus close delimiter [ 310.673815][ T4317] hid-multitouch 0003:1FD2:6007.0002: item 0 1 2 10 parsing failed [ 310.700437][ T4317] hid-multitouch: probe of 0003:1FD2:6007.0002 failed with error -22 [ 310.794560][T12236] trusted_key: encrypted_key: key trusted:s)’yz not found [ 310.881325][T12239] loop3: detected capacity change from 0 to 512 [ 310.882684][ T4317] usb 3-1: USB disconnect, device number 15 [ 310.920076][T12239] /dev/loop3: Can't open blockdev [ 311.351471][T12259] Bluetooth: MGMT ver 1.22 [ 311.813658][T12273] loop1: detected capacity change from 0 to 2048 [ 311.902960][T12273] [EXT4 FS bs=4096, gc=1, bpg=524288, ipg=32, mo=a840c018, mo2=0002] [ 311.956041][T12273] System zones: 0-4 [ 311.981021][T12273] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 312.026021][T12273] ext4 filesystem being mounted at /677/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 312.097466][T12273] fs-verity: sha256 using implementation "sha256-avx2" [ 312.123224][T12273] fs-verity (loop1, inode 18): fs-verity keyring is empty, rejecting signed file! [ 312.236083][ T4278] EXT4-fs (loop1): unmounting filesystem. [ 312.415210][T12302] genirq: Flags mismatch irq 7. 00000000 (ttyS3) vs. 00000000 (at-a2150c) [ 312.565579][ T48] Bluetooth: hci0: command 0x0c1a tx timeout [ 312.571788][ T4275] Bluetooth: hci0: Opcode 0x0c1a failed: -110 [ 312.982332][T12324] L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details. [ 313.453006][T12344] device ipvlan2 entered promiscuous mode [ 313.794324][T12358] program syz.2.3658 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 314.141570][T12368] loop1: detected capacity change from 0 to 1024 [ 314.187080][T12368] hfsplus: Filesystem was not cleanly unmounted, running fsck.hfsplus is recommended. mounting read-only. [ 314.202034][T12370] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3663'. [ 314.326620][T12372] loop3: detected capacity change from 0 to 256 [ 314.383854][T12372] /dev/loop3: Can't open blockdev [ 314.457672][T12374] loop4: detected capacity change from 0 to 64 [ 314.546611][T12374] MINIX-fs: mounting file system with errors, running fsck is recommended [ 314.628945][T12379] netlink: 16 bytes leftover after parsing attributes in process `syz.3.3668'. [ 314.667810][T12374] MINIX-fs warning: remounting fs with errors, running fsck is recommended [ 314.695202][T12379] device ipip0 entered promiscuous mode [ 314.997420][T12390] tipc: Started in network mode [ 315.024314][T12390] tipc: Node identity fe80000000000000000000000000004, cluster identity 4711 [ 315.054802][T12390] tipc: Enabled bearer , priority 10 [ 315.205852][T12185] usb 5-1: new high-speed USB device number 14 using dummy_hcd [ 315.352886][T12403] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3679'. [ 315.384609][T12403] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3679'. [ 315.404297][T12403] netlink: 'syz.2.3679': attribute type 12 has an invalid length. [ 315.422926][T12185] usb 5-1: Using ep0 maxpacket: 32 [ 315.432992][T12185] usb 5-1: New USB device found, idVendor=1d50, idProduct=60a1, bcdDevice=a1.4f [ 315.457876][T12185] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 315.480799][T12185] usb 5-1: Product: syz [ 315.496993][T12185] usb 5-1: Manufacturer: syz [ 315.504282][T12407] loop3: detected capacity change from 0 to 1024 [ 315.505600][T12185] usb 5-1: SerialNumber: syz [ 315.551487][T12185] usb 5-1: config 0 descriptor?? [ 315.589794][T12407] /dev/loop3: Can't open blockdev [ 315.653371][ T4367] I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 315.719562][T12413] loop0: detected capacity change from 0 to 64 [ 315.980675][T12185] airspy 5-1:0.0: usb_control_msg() failed -71 request 0a [ 316.013994][T12185] airspy 5-1:0.0: Could not detect board [ 316.035104][T12185] airspy: probe of 5-1:0.0 failed with error -71 [ 316.072628][T12185] usb 5-1: USB disconnect, device number 14 [ 316.168801][T12184] tipc: Node number set to 4269801536 [ 316.267422][T12429] loop1: detected capacity change from 0 to 16 [ 316.284937][T12429] erofs: (device loop1): mounted with root inode @ nid 36. [ 316.387747][T12433] loop0: detected capacity change from 0 to 2048 [ 316.456119][T12433] [EXT4 FS bs=4096, gc=1, bpg=524288, ipg=32, mo=a840c018, mo2=0002] [ 316.464360][T12433] System zones: 0-4 [ 316.486510][T12433] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 316.496033][T12433] ext4 filesystem being mounted at /742/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 316.531408][T12433] fs-verity (loop0, inode 18): fs-verity keyring is empty, rejecting signed file! [ 316.740083][T12448] netlink: 'syz.3.3700': attribute type 28 has an invalid length. [ 316.757409][ T4270] EXT4-fs (loop0): unmounting filesystem. [ 316.798867][T12450] netlink: 16 bytes leftover after parsing attributes in process `syz.1.3701'. [ 317.048268][ T1277] ieee802154 phy0 wpan0: encryption failed: -22 [ 317.054768][ T1277] ieee802154 phy1 wpan1: encryption failed: -22 [ 317.117704][T12466] loop3: detected capacity change from 0 to 128 [ 317.313677][T12472] netlink: 'syz.1.3711': attribute type 4 has an invalid length. [ 317.381234][T12472] netlink: 'syz.1.3711': attribute type 3 has an invalid length. [ 317.416261][T12472] netlink: 153952 bytes leftover after parsing attributes in process `syz.1.3711'. [ 317.665682][T12184] usb 4-1: new high-speed USB device number 11 using dummy_hcd [ 317.724677][T12490] netlink: 12 bytes leftover after parsing attributes in process `syz.4.3720'. [ 317.867896][T12184] usb 4-1: unable to get BOS descriptor or descriptor too short [ 317.879568][T12184] usb 4-1: config 3 has an invalid descriptor of length 0, skipping remainder of the config [ 317.906952][T12184] usb 4-1: New USB device found, idVendor=0cf3, idProduct=1010, bcdDevice=26.db [ 317.926834][T12184] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 317.959061][T12184] usb 4-1: Product: syz [ 317.967783][T12184] usb 4-1: Manufacturer: syz [ 317.979461][T12184] usb 4-1: SerialNumber: syz [ 318.024115][T12501] netlink: 24 bytes leftover after parsing attributes in process `syz.0.3725'. [ 318.045864][T12185] usb 2-1: new high-speed USB device number 16 using dummy_hcd [ 318.197123][T12507] loop0: detected capacity change from 0 to 16 [ 318.237294][T12185] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 318.250785][T12507] erofs: (device loop0): check_layout_compatibility: unidentified incompatible feature a50000, please upgrade kernel version [ 318.277280][T12185] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 318.289603][T12185] usb 2-1: New USB device found, idVendor=056a, idProduct=030c, bcdDevice= 0.00 [ 318.303584][T12185] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 318.315208][T12185] usb 2-1: config 0 descriptor?? [ 318.347898][ T4275] Bluetooth: hci0: unexpected event for opcode 0x2040 [ 318.523289][T12513] loop0: detected capacity change from 0 to 512 [ 318.543821][T12513] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 318.581094][T12513] EXT4-fs (loop0): 1 truncate cleaned up [ 318.602223][T12513] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 318.655235][T12513] overlayfs: "xino" feature enabled using 3 upper inode bits. [ 318.746256][T12185] wacom 0003:056A:030C.0003: hidraw0: USB HID v0.06 Device [HID 056a:030c] on usb-dummy_hcd.1-1/input0 [ 318.876862][T12520] rtc_cmos 00:00: Alarms can be up to one day in the future [ 318.896705][T12520] rtc_cmos 00:00: Alarms can be up to one day in the future [ 318.916044][T12184] usb 4-1: reset high-speed USB device number 11 using dummy_hcd [ 318.957013][ T4359] usb 2-1: USB disconnect, device number 16 [ 319.051092][T12521] fido_id[12521]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.1/usb2/report_descriptor': No such file or directory [ 319.118642][ T4270] EXT4-fs (loop0): unmounting filesystem. [ 319.127761][T12184] usb 4-1: device firmware changed [ 319.207766][T12184] usb 4-1: USB disconnect, device number 11 [ 319.241536][ T75] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 319.385677][T12184] usb 4-1: new high-speed USB device number 12 using dummy_hcd [ 319.400325][ T75] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 319.484830][ T75] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 319.559508][T12530] usb usb8: check_ctrlrecip: process 12530 (syz.2.3741) requesting ep 01 but needs 81 [ 319.598457][T12184] usb 4-1: config 3 has an invalid descriptor of length 0, skipping remainder of the config [ 319.626823][T12184] usb 4-1: New USB device found, idVendor=0cf3, idProduct=1010, bcdDevice=26.db [ 319.628982][ T75] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 319.646612][T12184] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 319.646647][T12184] usb 4-1: Product: syz [ 319.646663][T12184] usb 4-1: Manufacturer: syz [ 319.646677][T12184] usb 4-1: SerialNumber: syz [ 320.135049][ T4271] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 320.146348][ T4271] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 320.159352][ T4271] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 320.168179][ T4271] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 320.188698][ T4271] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 320.196511][ T4271] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 320.341629][T12549] loop4: detected capacity change from 0 to 256 [ 320.370420][T12549] exfat: Deprecated parameter 'namecase' [ 320.393468][T12549] exfat: Deprecated parameter 'namecase' [ 320.525987][T12549] exFAT-fs (loop4): failed to load upcase table (idx : 0x0001fe89, chksum : 0xc374f927, utbl_chksum : 0xe619d30d) [ 320.741675][T12184] usb 4-1: USB disconnect, device number 12 [ 320.920202][T12568] vivid-000: disconnect [ 320.977478][T12565] vivid-000: reconnect [ 321.091408][T12575] loop1: detected capacity change from 0 to 64 [ 321.200870][T12575] hfs: hfs: Invalid key length: 94 [ 321.353855][ T4458] ------------[ cut here ]------------ [ 321.359821][ T4458] kernel BUG at fs/hfs/inode.c:449! [ 321.407407][ T4458] invalid opcode: 0000 [#1] PREEMPT SMP KASAN [ 321.413535][ T4458] CPU: 0 PID: 4458 Comm: kworker/u4:7 Not tainted syzkaller #0 [ 321.421154][ T4458] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 321.431229][ T4458] Workqueue: writeback wb_workfn (flush-7:1) [ 321.437254][ T4458] RIP: 0010:hfs_write_inode+0xa1a/0xa20 [ 321.442821][ T4458] Code: 87 ff e9 09 fe ff ff 44 89 f1 80 e1 07 80 c1 03 38 c1 0f 8c 54 fe ff ff 4c 89 f7 e8 b0 0a 87 ff e9 47 fe ff ff e8 76 fe 35 ff <0f> 0b 0f 1f 40 00 55 41 57 41 56 41 54 53 48 89 fb 49 bf 00 00 00 [ 321.462885][ T4458] RSP: 0018:ffffc90004e173a0 EFLAGS: 00010293 [ 321.469153][ T4458] RAX: ffffffff824c76da RBX: ffff8880589b4f98 RCX: ffff88802d4d3b80 [ 321.477159][ T4458] RDX: 0000000000000000 RSI: ffffffff8cd25620 RDI: 0000000000000000 [ 321.485234][ T4458] RBP: ffffc90004e17530 R08: ffff88802d4d3b80 R09: 0000000000000003 [ 321.493233][ T4458] R10: 0000000000000004 R11: 0000000000000000 R12: dffffc0000000000 [ 321.501310][ T4458] R13: 1ffff920009c2e78 R14: 0000000000000000 R15: ffff8880589b4f58 [ 321.509280][ T4458] FS: 0000000000000000(0000) GS:ffff8880b8e00000(0000) knlGS:0000000000000000 [ 321.518212][ T4458] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 321.524795][ T4458] CR2: 000000110c25749b CR3: 000000005a988000 CR4: 00000000003506f0 [ 321.532794][ T4458] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 321.540770][ T4458] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 321.548743][ T4458] Call Trace: [ 321.552014][ T4458] [ 321.555026][ T4458] ? hfs_inode_write_fork+0x1a0/0x1a0 [ 321.560402][ T4458] ? __writeback_single_inode+0x4ae/0x1160 [ 321.566233][ T4458] ? __rwlock_init+0x140/0x140 [ 321.571006][ T4458] __writeback_single_inode+0x75b/0x1160 [ 321.576657][ T4458] writeback_sb_inodes+0xb30/0x1850 [ 321.581929][ T4458] ? queue_io+0x5a0/0x5a0 [ 321.586296][ T4458] ? rcu_is_watching+0x11/0xa0 [ 321.591283][ T4458] wb_writeback+0x482/0xd50 [ 321.595816][ T4458] ? percpu_ref_tryget+0x250/0x250 [ 321.601153][ T4458] ? lockdep_hardirqs_on_prepare+0x409/0x770 [ 321.607689][ T4458] ? _raw_spin_unlock_irq+0x1f/0x40 [ 321.613622][ T4458] wb_workfn+0x423/0xee0 [ 321.617885][ T4458] ? inode_wait_for_writeback+0x220/0x220 [ 321.623979][ T4458] ? lockdep_hardirqs_on_prepare+0x409/0x770 [ 321.630062][ T4458] ? read_lock_is_recursive+0x10/0x10 [ 321.635529][ T4458] ? _raw_spin_unlock_irqrestore+0xc1/0x120 [ 321.641439][ T4458] ? _raw_spin_unlock+0x40/0x40 [ 321.646341][ T4458] ? _raw_spin_unlock_irq+0x1f/0x40 [ 321.651575][ T4458] ? process_one_work+0x7b0/0x1160 [ 321.656953][ T4458] process_one_work+0x8a2/0x1160 [ 321.661891][ T4458] ? worker_detach_from_pool+0x240/0x240 [ 321.667524][ T4458] ? _raw_spin_lock_irq+0xb7/0xf0 [ 321.672548][ T4458] ? _raw_spin_lock_irqsave+0x100/0x100 [ 321.678130][ T4458] ? kthread_data+0x4b/0xc0 [ 321.682637][ T4458] worker_thread+0xaa2/0x1270 [ 321.687325][ T4458] ? __kthread_parkme+0x162/0x1c0 [ 321.692363][ T4458] kthread+0x29d/0x330 [ 321.696457][ T4458] ? worker_clr_flags+0x1a0/0x1a0 [ 321.701474][ T4458] ? kthread_blkcg+0xd0/0xd0 [ 321.706054][ T4458] ret_from_fork+0x1f/0x30 [ 321.710475][ T4458] [ 321.713493][ T4458] Modules linked in: [ 321.753750][T12592] netlink: 'syz.2.3764': attribute type 21 has an invalid length. [ 321.783767][T12592] netlink: 24 bytes leftover after parsing attributes in process `syz.2.3764'. [ 321.829832][ T4458] ---[ end trace 0000000000000000 ]--- [ 321.837493][ T4458] RIP: 0010:hfs_write_inode+0xa1a/0xa20 [ 321.855479][ T4458] Code: 87 ff e9 09 fe ff ff 44 89 f1 80 e1 07 80 c1 03 38 c1 0f 8c 54 fe ff ff 4c 89 f7 e8 b0 0a 87 ff e9 47 fe ff ff e8 76 fe 35 ff <0f> 0b 0f 1f 40 00 55 41 57 41 56 41 54 53 48 89 fb 49 bf 00 00 00 [ 321.880291][T12540] chnl_net:caif_netlink_parms(): no params data found [ 321.906265][ T4458] RSP: 0018:ffffc90004e173a0 EFLAGS: 00010293 [ 321.912518][ T4458] RAX: ffffffff824c76da RBX: ffff8880589b4f98 RCX: ffff88802d4d3b80 [ 321.923565][ T4458] RDX: 0000000000000000 RSI: ffffffff8cd25620 RDI: 0000000000000000 [ 321.932322][ T4458] RBP: ffffc90004e17530 R08: ffff88802d4d3b80 R09: 0000000000000003 [ 321.945610][ T4458] R10: 0000000000000004 R11: 0000000000000000 R12: dffffc0000000000 [ 321.953818][ T4458] R13: 1ffff920009c2e78 R14: 0000000000000000 R15: ffff8880589b4f58 [ 321.969136][ T4458] FS: 0000000000000000(0000) GS:ffff8880b8e00000(0000) knlGS:0000000000000000 [ 321.987910][ T4458] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 321.993797][T12540] bridge0: port 1(bridge_slave_0) entered blocking state [ 321.994858][ T4458] CR2: 00007fe5737c4286 CR3: 00000000743e8000 CR4: 00000000003506f0 [ 322.003159][T12540] bridge0: port 1(bridge_slave_0) entered disabled state [ 322.011673][ T4458] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 322.019900][T12540] device bridge_slave_0 entered promiscuous mode [ 322.029346][ T4458] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 322.043878][ T4458] Kernel panic - not syncing: Fatal exception [ 322.050097][ T4458] Kernel Offset: disabled [ 322.054563][ T4458] Rebooting in 86400 seconds..