last executing test programs: 2.503119175s ago: executing program 3 (id=4095): r0 = socket$inet6_mptcp(0xa, 0x1, 0x106) setsockopt$inet6_tcp_int(r0, 0x6, 0x2000000000000022, 0x0, 0x0) recvmmsg(r0, &(0x7f00000006c0), 0xf77e, 0x2, 0x0) 2.19994878s ago: executing program 1 (id=4100): socket$inet_tcp(0x2, 0x1, 0x0) r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000300)=ANY=[@ANYBLOB="5400000010000104050000000300000000000000", @ANYRES32=0x0, @ANYBLOB="0305000000000000340012800900010069706970000000002400028008000300ac1414aa08000100", @ANYRES32], 0x54}, 0x1, 0x0, 0x0, 0x20004800}, 0x4000000) 1.867213736s ago: executing program 2 (id=4103): r0 = socket(0x10, 0x3, 0x0) setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0xc, &(0x7f0000000780)={0x29e9c934, 0x3, 0x7f, 0x404}, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000400)=ANY=[@ANYBLOB="200000001600010a00e4000000000000020000000c00008008"], 0x20}, 0x1, 0x0, 0x0, 0x200c0801}, 0x0) 1.783399388s ago: executing program 1 (id=4104): mkdirat(0xffffffffffffffff, &(0x7f0000000340)='./bus\x00', 0x1db) madvise(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0xc) madvise(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0xd) 1.65490133s ago: executing program 2 (id=4106): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000001c0)=ANY=[@ANYBLOB="06000000040000000800000007"], 0x50) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000d000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$PROG_BIND_MAP(0xa, &(0x7f00000004c0)={r1}, 0xc) 1.452123994s ago: executing program 2 (id=4107): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$TIPC_NL_MEDIA_GET(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000200)={0x6c, r1, 0x1, 0x0, 0x0, {0x3}, [@TIPC_NLA_BEARER={0x58, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_UDP_OPTS={0x44, 0x4, {{0x20, 0x1, @in6={0xa, 0x4e20, 0x0, @dev={0xfe, 0x80, '\x00', 0x40}, 0xf8}}, {0x20, 0x2, @in6={0xa, 0x0, 0x0, @mcast2}}}}, @TIPC_NLA_BEARER_NAME={0xd, 0x1, @udp='udp:syz0\x00'}]}]}, 0x6c}}, 0x0) 1.447806904s ago: executing program 1 (id=4117): r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) ptrace(0x10, r0) process_vm_writev(r0, &(0x7f00000001c0)=[{&(0x7f0000000440)=""/4096, 0x1000}], 0x1, &(0x7f0000001800)=[{0x0}, {&(0x7f0000000280)=""/181, 0xb5}], 0x2, 0x0) 1.227179418s ago: executing program 1 (id=4110): r0 = socket$caif_stream(0x25, 0x1, 0x0) r1 = dup(r0) mount$9p_fd(0x0, &(0x7f00000001c0)='.\x00', &(0x7f0000000180), 0x0, &(0x7f0000000040)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r1}}) 1.148136909s ago: executing program 2 (id=4111): r0 = socket(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000080)={'ip6tnl0\x00', 0x0}) sendmsg$nl_route_sched(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000400)=@newqdisc={0x3c, 0x24, 0x3fe3aa0262d8c583, 0x70bd2f, 0x0, {0x0, 0x0, 0x0, r1, {0x0, 0xf}, {0xffff, 0xffff}, {0xfff1, 0xfff2}}, [@qdisc_kind_options=@q_fq_pie={{0xb}, {0xc, 0x8002, [@TCA_FQ_PIE_LIMIT={0x8, 0x3f, 0x7ffff7ff}]}}]}, 0x3c}}, 0x2000400c) 1.065512971s ago: executing program 0 (id=4112): bpf$ENABLE_STATS(0x20, 0x0, 0x0) r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x4, 0xe, &(0x7f0000000380)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x87}, 0x48) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={r0, 0x300f000, 0xe, 0x0, &(0x7f0000000e40)="0049c69d2786a4b8d3dce769c270", 0x0, 0xad27, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) 983.478863ms ago: executing program 4 (id=4113): sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000200)=ANY=[@ANYBLOB="3000000002060101000000000000000000000000010000000a000000090002008d001f106f194eb3050001"], 0x30}}, 0x0) r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000200)=ANY=[@ANYBLOB="300000001d00"], 0x30}}, 0x0) 902.668264ms ago: executing program 2 (id=4114): close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) r0 = socket$qrtr(0x2a, 0x2, 0x0) bind$qrtr(r0, &(0x7f0000001b00)={0x2a, 0x3, 0x7fff}, 0xc) 802.166145ms ago: executing program 2 (id=4115): r0 = syz_usb_connect(0x5, 0x207, &(0x7f0000009a00)=ANY=[@ANYBLOB="12011003a9372540f30c1010db26010203010902f50101030250070904"], &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0}) syz_usb_disconnect(r0) syz_usb_connect$midi(0x5, 0x24, &(0x7f0000000000)={{0x12, 0x1, 0x110, 0x0, 0x0, 0x0, 0x40, 0xe41, 0x4249, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x1, 0xa, 0x8, 0x3, "", {{{0x9, 0x4, 0x0, 0x0, 0x0, 0x1, 0x3, 0x20, 0xdb}}}}}]}}, &(0x7f0000000180)={0x0, 0x0, 0x59, &(0x7f00000000c0)=ANY=[@ANYBLOB="050f59"]}) 791.142536ms ago: executing program 0 (id=4116): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0x4002}) writev(r0, &(0x7f00000002c0)=[{&(0x7f00000003c0)="20ab8c66036b00000000000000000000000000c49ea61052d4a6dd99cc5990", 0x1f}], 0x1) 748.224447ms ago: executing program 4 (id=4118): rseq(&(0x7f00000004c0), 0x20, 0x0, 0x0) futex(&(0x7f000000cffc), 0x80000000000b, 0x0, 0x0, &(0x7f0000048000), 0x0) futex(&(0x7f000000cffc), 0xc, 0x1, 0x0, &(0x7f0000048000), 0x0) 710.568037ms ago: executing program 3 (id=4119): r0 = fanotify_init(0x200, 0x0) r1 = dup(r0) fanotify_mark(r0, 0x601, 0x4800107b, r1, 0x0) 637.424298ms ago: executing program 3 (id=4120): r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0) bind$bt_l2cap(r0, &(0x7f0000000200)={0x1f, 0x0, @none, 0x4, 0x2}, 0xe) getsockopt$bt_l2cap_L2CAP_OPTIONS(r0, 0x6, 0x1, 0x0, &(0x7f0000000100)) 549.51936ms ago: executing program 4 (id=4121): r0 = syz_open_procfs(0x0, &(0x7f0000000080)='fdinfo\x00') fchdir(r0) creat(&(0x7f00000000c0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0xae) 548.85336ms ago: executing program 0 (id=4122): r0 = io_uring_setup(0x2754, &(0x7f0000000080)={0x0, 0xfffffffc, 0x800, 0xfffffffe, 0x800001b4}) io_uring_register$IORING_REGISTER_BUFFERS_UPDATE(r0, 0x10, &(0x7f00000001c0)={0x2, 0x0, &(0x7f0000000140)=[{0x0}], 0x0, 0x1}, 0x20) io_uring_register$IORING_REGISTER_BUFFERS(r0, 0x0, &(0x7f00000002c0)=[{0x0}], 0x1) 439.324313ms ago: executing program 3 (id=4123): r0 = msgget$private(0x0, 0x1ba) msgctl$IPC_SET(r0, 0x1, &(0x7f0000000040)={{0x0, 0x0, 0x0, 0xffffffffffffffff, 0x1d9, 0xc}, 0x0, 0x0, 0x0, 0x6, 0x8001, 0x0, 0x0, 0xfffffffffffffffa, 0x0, 0x2, 0x0, 0x1}) msgctl$IPC_STAT(r0, 0x2, &(0x7f0000000200)=""/228) 439.145613ms ago: executing program 4 (id=4124): r0 = syz_init_net_socket$netrom(0x6, 0x5, 0x0) ioctl$int_in(r0, 0x5421, &(0x7f0000000000)=0xc0) connect$netrom(r0, &(0x7f0000000080)={{0x6, @null}, [@netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @bcast, @default, @default, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @null]}, 0x48) 416.171763ms ago: executing program 0 (id=4125): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000380), r0) sendmsg$IPVS_CMD_DEL_DAEMON(r0, &(0x7f0000000540)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000500)={&(0x7f00000003c0)={0x8c, r1, 0x603, 0x70bd2b, 0x25dfdbfe, {}, [@IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x2b6}, @IPVS_CMD_ATTR_SERVICE={0x24, 0x1, 0x0, 0x1, [@IPVS_SVC_ATTR_FWMARK={0x8}, @IPVS_SVC_ATTR_FWMARK={0x8, 0x5, 0x1}, @IPVS_SVC_ATTR_NETMASK={0x8}, @IPVS_SVC_ATTR_NETMASK={0x8, 0x9, 0x6}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x4}, @IPVS_CMD_ATTR_DEST={0x4}, @IPVS_CMD_ATTR_DAEMON={0x40, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_MCAST_PORT={0x6, 0x7, 0x4e20}, @IPVS_DAEMON_ATTR_STATE={0x8}, @IPVS_DAEMON_ATTR_SYNC_ID={0x8}, @IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6, 0x4, 0x1}, @IPVS_DAEMON_ATTR_MCAST_TTL={0x5, 0x8, 0x6}, @IPVS_DAEMON_ATTR_MCAST_GROUP6={0xffffffffffffffd6, 0x6, @loopback}]}]}, 0x8c}, 0x1, 0x0, 0x0, 0x400c001}, 0x4000040) 306.412395ms ago: executing program 3 (id=4126): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0) sendmsg$NFT_BATCH(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)={{0x14}, [@NFT_MSG_NEWRULE={0x70, 0x6, 0xa, 0x401, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x44, 0x4, 0x0, 0x1, [{0x40, 0x1, 0x0, 0x1, @byteorder={{0xe}, @val={0x2c, 0x2, 0x0, 0x1, [@NFTA_BYTEORDER_SREG={0x8}, @NFTA_BYTEORDER_DREG={0x8}, @NFTA_BYTEORDER_LEN={0x8}, @NFTA_BYTEORDER_OP={0x8}, @NFTA_BYTEORDER_SIZE={0x8}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x98}}, 0x0) 296.456795ms ago: executing program 4 (id=4127): syz_mount_image$hfs(&(0x7f0000000180), &(0x7f0000000000)='./file1\x00', 0x84, &(0x7f0000000300)=ANY=[], 0x8b, 0x2e7, &(0x7f00000003c0)="$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") openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x183341, 0x0) mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) 256.970255ms ago: executing program 1 (id=4128): sendmmsg$inet(0xffffffffffffffff, &(0x7f0000000300)=[{{&(0x7f00000002c0)={0x2, 0x4e23, @multicast1}, 0x10, 0x0}}], 0x1, 0x40000) r0 = syz_open_dev$evdev(&(0x7f0000000000), 0x3, 0x822b01) write$char_usb(r0, &(0x7f0000000040)="e2", 0x918) 227.795036ms ago: executing program 0 (id=4129): r0 = socket(0x10, 0x3, 0x4) setreuid(0xffffffffffffffff, 0xee01) sendmsg$nl_route_sched(r0, &(0x7f0000000000)={0x0, 0xa00, &(0x7f00000002c0)={&(0x7f0000000200)=@newqdisc={0x68, 0x14, 0xf0b, 0x70bd26, 0x0, {0x2, 0x0, 0x0, 0x0, {0x7, 0xa}, {0x1, 0xffe0}, {0xffe0, 0xa}}, [@TCA_STAB={0x44, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0xd4, 0x6, 0x200, 0xc, 0x1, 0x40000002, 0x7e, 0xffffffffffffffb8}}, {0x4}}, {{0x1c, 0x1, {0x0, 0x18, 0x7, 0xf, 0x0, 0x4, 0x9}}, {0x4}}]}]}, 0x68}, 0x1, 0x0, 0x0, 0x10000000}, 0x8080) 43.62752ms ago: executing program 1 (id=4130): r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) r1 = dup(r0) write$UHID_INPUT(r1, &(0x7f00000010c0)={0xb, {"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", 0x1000}}, 0x1006) 43.340609ms ago: executing program 3 (id=4131): bpf$BPF_BTF_LOAD(0x12, &(0x7f00000003c0)={&(0x7f0000000440)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x7c, 0x7c, 0x2, [@var, @func_proto={0x0, 0x6, 0x0, 0xd, 0x0, [{}, {0x2}, {}, {}, {0x1}, {}]}, @fwd, @volatile, @volatile, @volatile={0x0, 0x0, 0x0, 0x9, 0x6}]}}, 0x0, 0x96}, 0x28) r0 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000140)={&(0x7f00000001c0)=ANY=[@ANYBLOB="9feb010018000000000000000c0000000c000000020000000000000000000004"], 0x0, 0x26}, 0x28) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000500)={0x6, 0x7, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000851000000300000018000000", @ANYRES32, @ANYBLOB="00fffffff900000095000000000000009500000000000000"], &(0x7f0000000280)='GPL\x00', 0x5, 0xe2, &(0x7f00000002c0)=""/226, 0x0, 0x0, '\x00', 0x0, 0x25, r0, 0x8, 0x0, 0x0, 0x10, &(0x7f00000004c0), 0x2}, 0x80) 709.16µs ago: executing program 0 (id=4132): setuid(0xee01) r0 = socket(0x400000000010, 0x3, 0x0) ioctl$sock_SIOCETHTOOL(r0, 0x89f0, &(0x7f0000001440)={'bridge0\x00', &(0x7f0000000100)=@ethtool_ringparam={0x11}}) 0s ago: executing program 4 (id=4133): r0 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000500)={&(0x7f0000000240)=ANY=[@ANYBLOB="9feb010018000000000000000c0000000c00000002000000000000000000000604"], 0x0, 0x26}, 0x20) mmap(&(0x7f0000001000/0xc00000)=nil, 0xc00000, 0x2000009, 0x3032, 0xffffffffffffffff, 0x0) bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000340)={r0, 0x58, &(0x7f0000003fc0)}, 0xe) kernel console output (not intermixed with test programs): erofs: (device loop4): mounted with root inode @ nid 36. [ 225.122184][ T9563] JBD2: Ignoring recovery information on journal [ 225.311760][ T9563] ocfs2: Mounting device (7,2) on (node local, slot 0) with ordered data mode. [ 225.623523][ T4274] ocfs2: Unmounting device (7,2) on (node local) [ 226.000121][ T9630] (unnamed net_device) (uninitialized): option arp_validate: invalid value (18446744073491447809) [ 226.922438][ T9668] x_tables: ip_tables: DNAT target: used from hooks POSTROUTING, but only usable from PREROUTING/OUTPUT [ 227.087069][ T9672] netlink: 12296 bytes leftover after parsing attributes in process `syz.2.2442'. [ 227.108707][ T26] audit: type=1326 audit(1777926501.685:106): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9673 comm="syz.4.2443" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f801c59cdd9 code=0x7ffc0000 [ 227.120468][ T9672] netlink: 164 bytes leftover after parsing attributes in process `syz.2.2442'. [ 227.232209][ T26] audit: type=1326 audit(1777926501.725:107): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9673 comm="syz.4.2443" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f801c59cdd9 code=0x7ffc0000 [ 227.256442][ C0] vkms_vblank_simulate: vblank timer overrun [ 227.293954][ T26] audit: type=1326 audit(1777926501.725:108): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9673 comm="syz.4.2443" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f801c59cdd9 code=0x7ffc0000 [ 227.393176][ T9684] netlink: 28 bytes leftover after parsing attributes in process `syz.4.2450'. [ 227.397908][ T26] audit: type=1326 audit(1777926501.755:109): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9673 comm="syz.4.2443" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=282 compat=0 ip=0x7f801c59cdd9 code=0x7ffc0000 [ 227.426452][ C0] vkms_vblank_simulate: vblank timer overrun [ 227.471806][ T9684] netlink: 108 bytes leftover after parsing attributes in process `syz.4.2450'. [ 227.501330][ T9684] netlink: 28 bytes leftover after parsing attributes in process `syz.4.2450'. [ 227.511653][ T26] audit: type=1326 audit(1777926501.755:110): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9673 comm="syz.4.2443" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f801c59cdd9 code=0x7ffc0000 [ 227.576017][ T9684] netlink: 108 bytes leftover after parsing attributes in process `syz.4.2450'. [ 227.612389][ T9684] netlink: 84 bytes leftover after parsing attributes in process `syz.4.2450'. [ 227.654540][ T26] audit: type=1326 audit(1777926501.755:111): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9673 comm="syz.4.2443" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f801c59cdd9 code=0x7ffc0000 [ 227.702320][ T26] audit: type=1326 audit(1777926501.755:112): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9673 comm="syz.4.2443" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=436 compat=0 ip=0x7f801c59cdd9 code=0x7ffc0000 [ 227.726340][ C0] vkms_vblank_simulate: vblank timer overrun [ 227.738510][ T26] audit: type=1326 audit(1777926501.755:113): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9673 comm="syz.4.2443" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=231 compat=0 ip=0x7f801c59cdd9 code=0x7ffc0000 [ 228.266133][ T9721] loop4: detected capacity change from 0 to 512 [ 228.290251][ T9722] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2465'. [ 228.463494][ T9721] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 228.517686][ T9721] ext4 filesystem being mounted at /501/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 228.783973][ T4277] EXT4-fs (loop4): unmounting filesystem. [ 228.794005][ T9743] loop3: detected capacity change from 0 to 512 [ 228.852814][ T9743] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 228.888613][ T9743] EXT4-fs warning (device loop3): dx_probe:869: inode #2: comm syz.3.2476: Unimplemented hash flags: 0x0001 [ 228.902661][ T9743] EXT4-fs warning (device loop3): dx_probe:966: inode #2: comm syz.3.2476: Corrupt directory, running e2fsck is recommended [ 229.054342][ T4280] EXT4-fs (loop3): unmounting filesystem. [ 229.060424][ T9750] loop1: detected capacity change from 0 to 512 [ 229.123554][ T9750] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support! [ 229.172893][ T9754] loop0: detected capacity change from 0 to 128 [ 229.201388][ T9750] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 229.201908][ T9754] UDF-fs: error (device loop0): udf_read_tagged: read failed, block=256, location=256 [ 229.250715][ T9750] EXT4-fs error (device loop1): ext4_orphan_get:1431: comm syz.1.2479: bad orphan inode 131083 [ 229.381786][ T9750] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 229.581338][ T4273] EXT4-fs (loop1): unmounting filesystem. [ 229.706189][ T9766] netlink: 14 bytes leftover after parsing attributes in process `syz.4.2487'. [ 229.755437][ T9769] I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 229.782880][ T9769] FAT-fs (loop5): unable to read boot sector [ 230.262306][ T9756] loop3: detected capacity change from 0 to 32768 [ 230.401964][ T9756] ERROR: (device loop3): dbAllocNext: Corrupt dmap page [ 230.401964][ T9756] [ 230.456162][ T9756] ERROR: (device loop3): remounting filesystem as read-only [ 230.476404][ T9756] ialloc: diAlloc returned -5! [ 230.737787][ T9802] loop1: detected capacity change from 0 to 512 [ 230.956584][ T9802] Quota error (device loop1): do_check_range: Getting dqdh_next_free 256 out of range 0-7 [ 230.983935][ T9802] Quota error (device loop1): qtree_write_dquot: Error -117 occurred while creating quota [ 230.994831][ T9802] EXT4-fs error (device loop1): ext4_acquire_dquot:6841: comm syz.1.2505: Failed to acquire dquot type 1 [ 231.014036][ T9802] EXT4-fs error (device loop1): ext4_validate_block_bitmap:438: comm syz.1.2505: bg 0: block 495: padding at end of block bitmap is not set [ 231.030780][ T9802] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6180: Corrupt filesystem [ 231.048151][ T9802] EXT4-fs (loop1): 1 truncate cleaned up [ 231.061668][ T9802] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 231.081101][ T9802] ext4 filesystem being mounted at /506/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 231.214947][ T9802] Quota error (device loop1): do_check_range: Getting dqdh_next_free 256 out of range 0-7 [ 231.261902][ T9802] EXT4-fs error (device loop1): ext4_acquire_dquot:6841: comm syz.1.2505: Failed to acquire dquot type 1 [ 231.309496][ T9827] comedi comedi0: dt2801: I/O port conflict (0x3,2) [ 231.379741][ T9829] netlink: 'syz.0.2515': attribute type 4 has an invalid length. [ 231.443178][ T4273] EXT4-fs (loop1): unmounting filesystem. [ 231.456513][ T9829] netlink: 17 bytes leftover after parsing attributes in process `syz.0.2515'. [ 232.180405][ T9868] device bridge2 entered promiscuous mode [ 232.195338][ T9871] loop0: detected capacity change from 0 to 256 [ 232.282761][ T9871] FAT-fs (loop0): Directory bread(block 64) failed [ 232.318154][ T9874] loop4: detected capacity change from 0 to 64 [ 232.326755][ T9871] FAT-fs (loop0): Directory bread(block 65) failed [ 232.352586][ T9871] FAT-fs (loop0): Directory bread(block 66) failed [ 232.401834][ T9871] FAT-fs (loop0): Directory bread(block 67) failed [ 232.432341][ T9871] FAT-fs (loop0): Directory bread(block 68) failed [ 232.489143][ T9871] FAT-fs (loop0): Directory bread(block 69) failed [ 232.519499][ T9871] FAT-fs (loop0): Directory bread(block 70) failed [ 232.581587][ T9871] FAT-fs (loop0): Directory bread(block 71) failed [ 232.588272][ T9871] FAT-fs (loop0): Directory bread(block 72) failed [ 232.645528][ T9871] FAT-fs (loop0): Directory bread(block 73) failed [ 232.947975][ T9894] loop3: detected capacity change from 0 to 256 [ 233.033607][ T9894] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0xfcc0b04e, utbl_chksum : 0xe619d30d) [ 233.378629][ T9906] netlink: 12296 bytes leftover after parsing attributes in process `syz.1.2550'. [ 233.419267][ T9908] loop2: detected capacity change from 0 to 256 [ 233.478451][ T9906] netlink: 164 bytes leftover after parsing attributes in process `syz.1.2550'. [ 233.500519][ T9908] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0xf6e00961, utbl_chksum : 0xe619d30d) [ 233.785390][ T9922] netlink: 'syz.0.2559': attribute type 1 has an invalid length. [ 234.202550][ T9940] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2568'. [ 234.232023][ T9942] loop0: detected capacity change from 0 to 128 [ 234.256285][ T9938] loop3: detected capacity change from 0 to 4096 [ 234.265034][ T9942] hpfs: filesystem error: invalid number of hotfixes: 2066844986, used: 2066844985; already mounted read-only [ 234.308234][ T9942] hpfs: filesystem error: improperly stopped [ 234.338254][ T9942] hpfs: You really don't want any checks? You are crazy... [ 234.350834][ T9938] ntfs3: loop3: Mark volume as dirty due to NTFS errors [ 234.368202][ T9942] hpfs: hpfs_map_sector(): read error [ 234.391550][ T9942] hpfs: code page support is disabled [ 234.423050][ T9942] hpfs: hpfs_map_4sectors(): unaligned read [ 234.452600][ T9942] hpfs: hpfs_map_4sectors(): unaligned read [ 234.497797][ T9942] hpfs: filesystem error: unable to find root dir [ 234.542011][ T9950] sctp: [Deprecated]: syz.2.2573 (pid 9950) Use of int in max_burst socket option. [ 234.542011][ T9950] Use struct sctp_assoc_value instead [ 235.182419][ T9972] netlink: 48 bytes leftover after parsing attributes in process `syz.2.2584'. [ 235.545245][ T9956] loop1: detected capacity change from 0 to 32768 [ 235.573804][ T9956] (syz.1.2577,9956,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 235.599007][ T9956] (syz.1.2577,9956,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 235.685839][ T9956] (syz.1.2577,9956,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xbec99099, computed 0x3881d996. Applying ECC. [ 235.723979][ T9956] (syz.1.2577,9956,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0x93f628a2, computed 0x2aee8be5. Applying ECC. [ 235.742871][ T9956] JBD2: Ignoring recovery information on journal [ 235.881827][ T9962] loop4: detected capacity change from 0 to 40427 [ 235.900299][ T9962] F2FS-fs (loop4): Invalid Fs Meta Ino: node(0) meta(2) root(0) [ 235.913782][ T9956] (syz.1.2577,9956,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xbec99099, computed 0x3881d996. Applying ECC. [ 235.929198][ T9962] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock [ 235.954592][ T9956] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode. [ 235.957495][ T9962] F2FS-fs (loop4): invalid crc value [ 235.994869][ T9956] (syz.1.2577,9956,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0x93f628a2, computed 0x2aee8be5. Applying ECC. [ 236.019363][ T9962] F2FS-fs (loop4): Found nat_bits in checkpoint [ 236.061749][ T9956] (syz.1.2577,9956,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0x98842a5e, computed 0xe74db1cd. Applying ECC. [ 236.226159][ T9962] F2FS-fs (loop4): Try to recover 1th superblock, ret: 0 [ 236.280234][ T9962] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e4 [ 236.424172][ T4273] ocfs2: Unmounting device (7,1) on (node local) [ 236.650389][T10008] ieee802154 phy0 wpan0: encryption failed: -90 [ 236.938376][T10018] netlink: 'syz.1.2603': attribute type 4 has an invalid length. [ 237.171618][T10022] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined [ 237.392030][T10029] netlink: 16 bytes leftover after parsing attributes in process `syz.3.2609'. [ 237.401215][T10029] netlink: 16 bytes leftover after parsing attributes in process `syz.3.2609'. [ 237.500326][T10005] loop0: detected capacity change from 0 to 32768 [ 237.556952][T10005] (syz.0.2597,10005,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 237.625269][T10005] (syz.0.2597,10005,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 237.640735][T10037] loop1: detected capacity change from 0 to 16 [ 237.645572][T10012] loop4: detected capacity change from 0 to 32768 [ 237.692383][T10037] MTD: Attempt to mount non-MTD device "/dev/loop1" [ 237.699483][T10012] BTRFS: device fsid e0cb6322-611b-4325-acdf-015f79de3787 devid 1 transid 8 /dev/loop4 scanned by syz.4.2600 (10012) [ 237.730434][T10005] JBD2: Ignoring recovery information on journal [ 237.797435][T10012] BTRFS info (device loop4): first mount of filesystem e0cb6322-611b-4325-acdf-015f79de3787 [ 237.898042][T10012] BTRFS info (device loop4): using sha256 (sha256-avx2) checksum algorithm [ 237.955568][T10012] BTRFS info (device loop4): enabling ssd optimizations [ 237.981753][T10012] BTRFS info (device loop4): not using ssd optimizations [ 238.001564][T10012] BTRFS info (device loop4): turning off barriers [ 238.014133][T10005] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode. [ 238.051505][T10012] BTRFS info (device loop4): using free space tree [ 238.249089][T10005] (syz.0.2597,10005,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0x7dc2e7ff, computed 0xfdefcca9. Applying ECC. [ 238.291748][T10005] (syz.0.2597,10005,0):ocfs2_block_check_validate:416 ERROR: Fixed CRC32 failed: stored: 0x7dc2e7ff, computed 0xfdefcca9 [ 238.412184][T10005] (syz.0.2597,10005,1):ocfs2_read_quota_phys_block:160 ERROR: status = -5 [ 238.423448][T10005] (syz.0.2597,10005,1):ocfs2_quota_read:201 ERROR: status = -5 [ 238.431199][T10005] __quota_error: 1 callbacks suppressed [ 238.431213][T10005] Quota error (device loop0): find_tree_dqentry: Can't read quota tree block 2 [ 238.456578][T10005] Quota error (device loop0): qtree_read_dquot: Can't read quota structure for id 60929 [ 238.468160][T10005] (syz.0.2597,10005,1):ocfs2_acquire_dquot:878 ERROR: status = -5 [ 238.514097][ T26] audit: type=1326 audit(1777926513.095:114): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10078 comm="syz.2.2624" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb45419cdd9 code=0x7ffc0000 [ 238.550915][ T26] audit: type=1326 audit(1777926513.115:115): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10078 comm="syz.2.2624" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb45419cdd9 code=0x7ffc0000 [ 238.578819][ T4283] ocfs2: Unmounting device (7,0) on (node local) [ 238.648700][ T4277] BTRFS info (device loop4): last unmount of filesystem e0cb6322-611b-4325-acdf-015f79de3787 [ 238.661294][ T26] audit: type=1326 audit(1777926513.115:116): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10078 comm="syz.2.2624" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=5 compat=0 ip=0x7fb45419cdd9 code=0x7ffc0000 [ 238.800424][ T26] audit: type=1326 audit(1777926513.115:117): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10078 comm="syz.2.2624" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb45419cdd9 code=0x7ffc0000 [ 239.187147][T10096] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2633'. [ 239.402462][T10105] bond0: option active_slave: mode dependency failed, not supported in mode balance-rr(0) [ 239.769195][T10118] loop2: detected capacity change from 0 to 2048 [ 239.842428][T10118] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 239.941380][T10127] x_tables: unsorted entry at hook 1 [ 240.340132][T10135] loop2: detected capacity change from 0 to 4096 [ 240.423066][T10135] ntfs: volume version 3.1. [ 240.455758][T10135] ntfs: (device loop2): ntfs_lookup_inode_by_name(): Index entry out of bounds in directory inode 0x5. [ 240.499531][T10135] ntfs: (device loop2): check_windows_hibernation_status(): Failed to find inode number for hiberfil.sys. [ 240.510388][T10149] loop1: detected capacity change from 0 to 256 [ 240.571540][T10135] ntfs: (device loop2): load_system_files(): Failed to determine if Windows is hibernated. Mounting read-only. Run chkdsk. [ 240.639100][T10149] FAT-fs (loop1): Directory bread(block 64) failed [ 240.656410][T10135] ntfs: (device loop2): ntfs_read_locked_attr_inode(): Failed with error code -2 while reading attribute inode (mft_no 0x1a, type 0x80, name_len 4). Marking corrupt inode and base inode 0x1a as bad. Run chkdsk. [ 240.665434][T10149] FAT-fs (loop1): Directory bread(block 65) failed [ 240.768612][T10149] FAT-fs (loop1): Directory bread(block 66) failed [ 240.809064][T10149] FAT-fs (loop1): Directory bread(block 67) failed [ 240.846711][T10149] FAT-fs (loop1): Directory bread(block 68) failed [ 240.882347][T10149] FAT-fs (loop1): Directory bread(block 69) failed [ 240.889079][T10149] FAT-fs (loop1): Directory bread(block 70) failed [ 240.961621][T10149] FAT-fs (loop1): Directory bread(block 71) failed [ 240.968350][T10149] FAT-fs (loop1): Directory bread(block 72) failed [ 241.004179][T10149] FAT-fs (loop1): Directory bread(block 73) failed [ 241.399850][T10173] loop0: detected capacity change from 0 to 64 [ 241.704757][ T4281] Bluetooth: hci1: Malformed LE Event: 0x1d [ 242.129514][T10160] loop4: detected capacity change from 0 to 32768 [ 242.277613][T10160] XFS (loop4): Mounting V5 Filesystem [ 242.511049][T10160] XFS (loop4): Ending clean mount [ 242.607147][T10228] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2694'. [ 242.720469][ T4277] XFS (loop4): Unmounting Filesystem [ 242.810791][T10236] netlink: 'syz.3.2699': attribute type 46 has an invalid length. [ 242.831533][T10236] netlink: 16 bytes leftover after parsing attributes in process `syz.3.2699'. [ 243.321674][ T4320] usb 4-1: new full-speed USB device number 13 using dummy_hcd [ 243.527149][ T4320] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 243.549931][ T4320] usb 4-1: New USB device found, idVendor=0547, idProduct=2720, bcdDevice=af.55 [ 243.579744][ T4320] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 243.606057][ T4320] usb 4-1: Product: syz [ 243.616306][ T4320] usb 4-1: Manufacturer: syz [ 243.631179][ T4320] usb 4-1: SerialNumber: syz [ 243.655406][ T4320] usb 4-1: config 0 descriptor?? [ 243.682518][T10268] netlink: 24 bytes leftover after parsing attributes in process `syz.0.2714'. [ 243.877675][ T4320] cdc_subset: probe of 4-1:0.0 failed with error -22 [ 244.041610][ T4281] Bluetooth: hci0: command 0x2016 tx timeout [ 244.049102][T10278] loop0: detected capacity change from 0 to 128 [ 244.090692][ T4320] usb 4-1: USB disconnect, device number 13 [ 244.149728][T10278] Bad inode number on dev loop0: 32769 is out of range [ 244.173087][T10260] loop1: detected capacity change from 0 to 32768 [ 244.245843][T10260] JBD2: Ignoring recovery information on journal [ 244.346007][T10260] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode. [ 244.579415][ T4273] ocfs2: Unmounting device (7,1) on (node local) [ 245.337904][ T26] kauditd_printk_skb: 5 callbacks suppressed [ 245.337929][ T26] audit: type=1326 audit(1777926519.915:118): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10327 comm="syz.0.2743" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff05719cdd9 code=0x7ffc0000 [ 245.368324][ C1] vkms_vblank_simulate: vblank timer overrun [ 245.382061][ T26] audit: type=1326 audit(1777926519.925:119): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10327 comm="syz.0.2743" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff05719cdd9 code=0x7ffc0000 [ 245.406159][ C1] vkms_vblank_simulate: vblank timer overrun [ 245.470218][ T26] audit: type=1326 audit(1777926519.925:120): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10327 comm="syz.0.2743" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=305 compat=0 ip=0x7ff05719cdd9 code=0x7ffc0000 [ 245.491499][ T4320] usb 5-1: new high-speed USB device number 9 using dummy_hcd [ 245.520387][ T26] audit: type=1326 audit(1777926519.925:121): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10327 comm="syz.0.2743" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff05719cdd9 code=0x7ffc0000 [ 245.585247][ T26] audit: type=1326 audit(1777926519.925:122): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10327 comm="syz.0.2743" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff05719cdd9 code=0x7ffc0000 [ 245.717728][ T4320] usb 5-1: Using ep0 maxpacket: 16 [ 245.726789][ T4320] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 245.765292][ T4320] usb 5-1: config 0 has 0 interfaces, different from the descriptor's value: 1 [ 245.796037][ T4320] usb 5-1: New USB device found, idVendor=17ef, idProduct=721e, bcdDevice=de.06 [ 245.818939][ T4320] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 245.837970][ T4320] usb 5-1: Product: syz [ 245.858214][ T4320] usb 5-1: Manufacturer: syz [ 245.868335][ T4320] usb 5-1: SerialNumber: syz [ 245.900134][ T4320] r8152-cfgselector 5-1: config 0 descriptor?? [ 245.980030][T10318] loop2: detected capacity change from 0 to 32768 [ 246.107248][ T26] audit: type=1326 audit(1777926520.685:123): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10351 comm="syz.3.2755" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f777539cdd9 code=0x7ffc0000 [ 246.130601][ T4320] usbip-host 5-1: 5-1 is not in match_busid table... skip! [ 246.185384][ T26] audit: type=1326 audit(1777926520.685:124): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10351 comm="syz.3.2755" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f777539cdd9 code=0x7ffc0000 [ 246.221102][ T26] audit: type=1326 audit(1777926520.685:125): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10351 comm="syz.3.2755" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f777539cdd9 code=0x7ffc0000 [ 246.329278][ T26] audit: type=1326 audit(1777926520.695:126): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10351 comm="syz.3.2755" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=78 compat=0 ip=0x7f777539cdd9 code=0x7ffc0000 [ 246.387086][ T6751] usb 5-1: USB disconnect, device number 9 [ 246.451654][ T26] audit: type=1326 audit(1777926520.695:127): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10351 comm="syz.3.2755" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f777539cdd9 code=0x7ffc0000 [ 246.612238][T10364] netlink: 'syz.0.2761': attribute type 1 has an invalid length. [ 246.867333][T10374] netlink: 64138 bytes leftover after parsing attributes in process `syz.3.2766'. [ 247.434646][T10398] loop1: detected capacity change from 0 to 1024 [ 247.602834][T10404] loop2: detected capacity change from 0 to 256 [ 247.700197][T10404] FAT-fs (loop2): Directory bread(block 64) failed [ 247.718637][T10404] FAT-fs (loop2): Directory bread(block 65) failed [ 247.765289][T10404] FAT-fs (loop2): Directory bread(block 66) failed [ 247.795510][T10404] FAT-fs (loop2): Directory bread(block 67) failed [ 247.811181][T10404] FAT-fs (loop2): Directory bread(block 68) failed [ 247.834116][T10404] FAT-fs (loop2): Directory bread(block 69) failed [ 247.897527][T10404] FAT-fs (loop2): Directory bread(block 70) failed [ 247.955148][T10404] FAT-fs (loop2): Directory bread(block 71) failed [ 247.988555][T10404] FAT-fs (loop2): Directory bread(block 72) failed [ 248.026646][T10404] FAT-fs (loop2): Directory bread(block 73) failed [ 248.409973][T10431] syz.2.2795: vmalloc error: size 18446744073699066186, exceeds total pages, mode:0xcc0(GFP_KERNEL), nodemask=(null),cpuset=syz2,mems_allowed=0-1 [ 248.582812][T10431] CPU: 1 PID: 10431 Comm: syz.2.2795 Not tainted syzkaller #0 [ 248.590348][T10431] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 248.600459][T10431] Call Trace: [ 248.603781][T10431] [ 248.606726][T10431] dump_stack_lvl+0x188/0x24e [ 248.611428][T10431] ? cpuset_print_current_mems_allowed+0x1b/0x360 [ 248.617854][T10431] ? show_regs_print_info+0x12/0x12 [ 248.623065][T10431] ? load_image+0x400/0x400 [ 248.627574][T10431] ? cpuset_print_current_mems_allowed+0x1b/0x360 [ 248.633991][T10431] ? cpuset_print_current_mems_allowed+0x2e3/0x360 [ 248.640497][T10431] warn_alloc+0x242/0x330 [ 248.644852][T10431] ? _end+0x683da14a/0x0 [ 248.649096][T10431] ? zone_watermark_ok_safe+0x270/0x270 [ 248.654661][T10431] __vmalloc_node_range+0x11e/0x13b0 [ 248.660037][T10431] ? __mutex_trylock_common+0x155/0x260 [ 248.665593][T10431] ? _end+0x683da14a/0x0 [ 248.669923][T10431] ? trace_raw_output_contention_end+0xd0/0xd0 [ 248.676102][T10431] ? rcu_is_watching+0x11/0xa0 [ 248.680876][T10431] ? __mutex_lock+0x1ab/0xaf0 [ 248.685559][T10431] ? free_vm_area+0x50/0x50 [ 248.690061][T10431] ? dvb_demux_do_ioctl+0x313/0x530 [ 248.695267][T10431] ? tomoyo_check_path_acl+0x1c0/0x1c0 [ 248.700731][T10431] ? mutex_lock_nested+0x10/0x10 [ 248.705709][T10431] ? _end+0x683da14a/0x0 [ 248.709967][T10431] ? dvb_dmxdev_set_buffer_size+0xbe/0x1f0 [ 248.715815][T10431] vmalloc+0x75/0x80 [ 248.719718][T10431] ? dvb_dmxdev_set_buffer_size+0xbe/0x1f0 [ 248.725532][T10431] ? _end+0x683da14a/0x0 [ 248.729786][T10431] dvb_dmxdev_set_buffer_size+0xbe/0x1f0 [ 248.735468][T10431] dvb_demux_do_ioctl+0x450/0x530 [ 248.740500][T10431] ? _end+0x683da14a/0x0 [ 248.744745][T10431] ? _end+0x683da14a/0x0 [ 248.749002][T10431] dvb_usercopy+0x191/0x2b0 [ 248.753517][T10431] ? _end+0x683da14a/0x0 [ 248.757760][T10431] ? dvb_dmxdev_buffer_read+0x4c0/0x4c0 [ 248.763312][T10431] ? dvb_generic_ioctl+0xb0/0xb0 [ 248.768291][T10431] ? _end+0x683da14a/0x0 [ 248.772539][T10431] ? _end+0x683da14a/0x0 [ 248.776787][T10431] ? dvb_demux_poll+0x210/0x210 [ 248.781644][T10431] ? _end+0x683da14a/0x0 [ 248.785888][T10431] dvb_demux_ioctl+0x25/0x30 [ 248.790484][T10431] __se_sys_ioctl+0xfa/0x170 [ 248.795085][T10431] do_syscall_64+0x4c/0xa0 [ 248.799506][T10431] ? clear_bhb_loop+0x60/0xb0 [ 248.804185][T10431] ? clear_bhb_loop+0x60/0xb0 [ 248.808875][T10431] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 248.814791][T10431] RIP: 0033:0x7fb45419cdd9 [ 248.819217][T10431] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 248.838914][T10431] RSP: 002b:00007fb4550b1028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 248.847330][T10431] RAX: ffffffffffffffda RBX: 00007fb454415fa0 RCX: 00007fb45419cdd9 [ 248.855298][T10431] RDX: ffffffffff60014a RSI: 0000000000006f2d RDI: 0000000000000003 [ 248.863285][T10431] RBP: 00007fb454232d69 R08: 0000000000000000 R09: 0000000000000000 [ 248.871254][T10431] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 248.879220][T10431] R13: 00007fb454416038 R14: 00007fb454415fa0 R15: 00007ffc3b98ad38 [ 248.887202][T10431] ? _end+0x683da14a/0x0 [ 248.891459][T10431] [ 248.894493][ C1] vkms_vblank_simulate: vblank timer overrun [ 249.091932][T10431] Mem-Info: [ 249.095137][T10431] active_anon:6315 inactive_anon:58 isolated_anon:0 [ 249.095137][T10431] active_file:1590 inactive_file:40466 isolated_file:0 [ 249.095137][T10431] unevictable:768 dirty:232 writeback:0 [ 249.095137][T10431] slab_reclaimable:21453 slab_unreclaimable:98662 [ 249.095137][T10431] mapped:30281 shmem:1363 pagetables:650 [ 249.095137][T10431] sec_pagetables:0 bounce:0 [ 249.095137][T10431] kernel_misc_reclaimable:0 [ 249.095137][T10431] free:1323920 free_pcp:8476 free_cma:0 [ 249.195510][T10452] loop4: detected capacity change from 0 to 2048 [ 249.230972][T10452] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 249.247555][T10431] Node 0 active_anon:26460kB inactive_anon:232kB active_file:6360kB inactive_file:161664kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:121124kB dirty:928kB writeback:0kB shmem:4916kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB kernel_stack:11176kB pagetables:2800kB sec_pagetables:0kB all_unreclaimable? no [ 249.393235][T10431] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:200kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:1536kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB kernel_stack:16kB pagetables:0kB sec_pagetables:0kB all_unreclaimable? no [ 249.423721][ C1] vkms_vblank_simulate: vblank timer overrun [ 249.498925][T10431] Node 0 DMA free:15360kB boost:0kB min:204kB low:252kB high:300kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 249.526054][ C1] vkms_vblank_simulate: vblank timer overrun [ 249.635712][T10431] lowmem_reserve[]: 0 2527 2528 2528 2528 [ 249.661810][T10431] Node 0 DMA32 free:1388340kB boost:0kB min:34692kB low:43364kB high:52036kB reserved_highatomic:0KB active_anon:25260kB inactive_anon:232kB active_file:6360kB inactive_file:161664kB unevictable:1536kB writepending:928kB present:3129332kB managed:2592964kB mlocked:0kB bounce:0kB free_pcp:13604kB local_pcp:5464kB free_cma:0kB [ 249.692387][ C1] vkms_vblank_simulate: vblank timer overrun [ 249.751574][T10431] lowmem_reserve[]: 0 0 1 1 1 [ 249.756375][T10431] Node 0 Normal free:0kB boost:0kB min:16kB low:20kB high:24kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:1048576kB managed:1424kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 249.811809][T10431] lowmem_reserve[]: 0 0 0 0 0 [ 249.825662][T10431] Node 1 Normal free:3891224kB boost:0kB min:55192kB low:68988kB high:82784kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:200kB unevictable:1536kB writepending:0kB present:4194304kB managed:4117620kB mlocked:0kB bounce:0kB free_pcp:21696kB local_pcp:17280kB free_cma:0kB [ 249.917646][T10431] lowmem_reserve[]: 0 0 0 0 0 [ 249.925343][T10431] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB [ 249.946399][T10431] Node 0 DMA32: 209*4kB (ME) 672*8kB (UME) 475*16kB (UME) 220*32kB (UME) 411*64kB (UME) 86*128kB (UME) 42*256kB (UM) 37*512kB (UM) 10*1024kB (UME) 4*2048kB (ME) 313*4096kB (UM) = 1388340kB [ 250.010218][T10431] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 250.057770][T10431] Node 1 Normal: 270*4kB (UE) 52*8kB (UME) 28*16kB (UME) 78*32kB (UME) 29*64kB (UME) 7*128kB (UM) 2*256kB (U) 3*512kB (UME) 1*1024kB (E) 1*2048kB (E) 947*4096kB (M) = 3891224kB [ 250.091041][T10431] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 250.112520][T10431] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 250.123767][T10431] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 250.140119][T10431] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 250.164133][T10431] 43038 total pagecache pages [ 250.169061][T10431] 58 pages in swap cache [ 250.177161][T10431] Free swap = 124216kB [ 250.197211][T10431] Total swap = 124996kB [ 250.204025][T10431] 2097051 pages RAM [ 250.218555][T10431] 0 pages HighMem/MovableOnly [ 250.227181][T10431] 415209 pages reserved [ 250.231986][T10490] netlink: 132 bytes leftover after parsing attributes in process `syz.4.2821'. [ 250.238491][T10431] 0 pages cma reserved [ 250.396939][T10492] RDS: rds_bind could not find a transport for fc00::, load rds_tcp or rds_rdma? [ 250.607848][T10504] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2829'. [ 250.623755][T10504] netlink: 36 bytes leftover after parsing attributes in process `syz.0.2829'. [ 250.969289][T10518] netlink: 40 bytes leftover after parsing attributes in process `syz.3.2837'. [ 250.997527][T10510] loop4: detected capacity change from 0 to 8192 [ 251.024125][T10510] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 251.057757][T10510] REISERFS (device loop4): found reiserfs format "3.5" with non-standard journal [ 251.077165][T10510] REISERFS (device loop4): using ordered data mode [ 251.110844][T10510] reiserfs: using flush barriers [ 251.187646][T10510] REISERFS (device loop4): journal params: device loop4, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 251.286505][T10510] REISERFS (device loop4): checking transaction log (loop4) [ 251.344038][T10510] REISERFS (device loop4): Using tea hash to sort names [ 251.366101][T10510] REISERFS (device loop4): Created .reiserfs_priv - reserved for xattr storage. [ 251.397334][T10508] loop2: detected capacity change from 0 to 32768 [ 251.503000][T10508] (syz.2.2832,10508,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 251.598097][T10508] (syz.2.2832,10508,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 251.761495][T10508] JBD2: Ignoring recovery information on journal [ 251.863252][T10543] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2848'. [ 251.920021][T10508] ocfs2: Mounting device (7,2) on (node local, slot 0) with ordered data mode. [ 251.971486][ T4358] usb 1-1: new full-speed USB device number 9 using dummy_hcd [ 252.163441][ T4358] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 252.188572][ T4358] usb 1-1: New USB device found, idVendor=06f8, idProduct=301b, bcdDevice=bb.39 [ 252.249783][ T4358] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 252.254438][T10555] pci 0000:00:05.0: vgaarb: changed VGA decodes: olddecodes=io+mem,decodes=io+mem:owns=io+mem [ 252.285636][ T4358] usb 1-1: Product: syz [ 252.289863][ T4358] usb 1-1: Manufacturer: syz [ 252.321670][ T4358] usb 1-1: SerialNumber: syz [ 252.351650][ T4358] usb 1-1: config 0 descriptor?? [ 252.369161][ T4358] gspca_main: gspca_pac7302-2.14.0 probing 06f8:301b [ 252.420764][ T4274] ocfs2: Unmounting device (7,2) on (node local) [ 252.649756][T10561] loop4: detected capacity change from 0 to 4096 [ 252.739200][T10561] ntfs3: loop4: Mark volume as dirty due to NTFS errors [ 252.785167][ T4358] gspca_pac7302: reg_w() failed i: 78 v: 00 error -71 [ 252.796313][T10561] ntfs3: loop4: Failed to load $Extend. [ 252.806320][ T4358] gspca_pac7302: probe of 1-1:0.0 failed with error -71 [ 252.861772][ T4358] usb 1-1: USB disconnect, device number 9 [ 252.896961][T10572] xt_cgroup: path and classid specified [ 252.994639][T10574] netlink: 'syz.1.2859': attribute type 21 has an invalid length. [ 252.995398][T10576] loop2: detected capacity change from 0 to 128 [ 253.051822][ T4277] ntfs3: loop4: ntfs_sync_fs r=9 failed, -22. [ 253.068887][ T4277] ntfs3: loop4: ntfs_evict_inode r=9 failed, -22. [ 253.078041][T10576] UDF-fs: error (device loop2): udf_read_tagged: read failed, block=256, location=256 [ 253.139649][T10576] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 253.590601][T10595] Invalid ELF header magic: != ELF [ 254.065397][T10613] netlink: 'syz.1.2872': attribute type 1 has an invalid length. [ 254.083683][T10613] netlink: 112860 bytes leftover after parsing attributes in process `syz.1.2872'. [ 254.439211][T10629] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2879'. [ 254.741173][T10642] loop2: detected capacity change from 0 to 128 [ 254.751894][T10639] [U] [ 254.755172][T10639] [U] [ 254.757879][T10639] [U] [ 254.760588][T10639] [U] [ 254.795881][T10642] UDF-fs: error (device loop2): udf_read_tagged: read failed, block=256, location=256 [ 254.807924][T10639] [U] [ 254.810677][T10639] [U] [ 254.813395][T10639] [U] [ 254.816202][T10639] [U] [ 254.848191][T10642] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 254.848504][T10639] [U] [ 254.859753][T10639] [U] [ 254.862467][T10639] [U] [ 254.992486][T10638] [U] [ 255.184061][T10617] loop4: detected capacity change from 0 to 32768 [ 255.262462][T10656] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2889'. [ 255.272691][T10656] netlink: 24 bytes leftover after parsing attributes in process `syz.0.2889'. [ 255.335562][T10617] XFS (loop4): Mounting V5 filesystem in no-recovery mode. Filesystem will be inconsistent. [ 255.489775][T10617] XFS (loop4): Metadata corruption detected at xfs_dinode_verify+0x2d5/0x1110, inode 0x1803 dinode [ 255.506662][T10617] XFS (loop4): Unmount and run xfs_repair [ 255.513859][T10617] XFS (loop4): First 128 bytes of corrupted metadata buffer: [ 255.521363][T10617] 00000000: 49 4e 41 ed 03 01 00 00 00 00 00 00 00 00 00 00 INA............. [ 255.537950][T10617] 00000010: 00 00 00 02 00 00 00 00 00 00 00 00 00 00 00 00 ................ [ 255.565382][T10617] 00000020: 34 f7 58 68 a5 a5 b6 11 34 f7 58 68 a5 e2 bf 3d 4.Xh....4.Xh...= [ 255.625821][T10617] 00000030: 34 f7 58 68 a5 e2 bf 3d 00 00 00 00 00 00 00 20 4.Xh...=....... [ 255.689612][T10617] 00000040: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ [ 255.723820][ T1277] ieee802154 phy0 wpan0: encryption failed: -22 [ 255.730217][ T1277] ieee802154 phy1 wpan1: encryption failed: -22 [ 255.742333][T10617] 00000050: 00 00 00 02 00 00 00 00 00 00 00 00 ca e6 3d c1 ..............=. [ 255.780521][T10617] 00000060: ff ff ff ff 6e d0 e3 2d 00 00 00 00 00 00 00 04 ....n..-........ [ 255.821794][T10617] 00000070: 00 00 00 03 00 00 00 10 00 00 00 00 00 00 00 06 ................ [ 255.971755][ T4277] XFS (loop4): Unmounting Filesystem [ 256.381636][ T4358] usb 2-1: new high-speed USB device number 11 using dummy_hcd [ 256.548176][T10710] loop3: detected capacity change from 0 to 64 [ 256.561525][ T4358] usb 2-1: Using ep0 maxpacket: 8 [ 256.568390][ T4358] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x8D has an invalid bInterval 42, changing to 9 [ 256.613550][ T4358] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0 [ 256.650755][ T4358] usb 2-1: config 0 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0 [ 256.665435][T10714] loop2: detected capacity change from 0 to 64 [ 256.687343][ T4358] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x8B has invalid maxpacket 12592, setting to 1024 [ 256.720364][ T4358] usb 2-1: config 0 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 1024 [ 256.746968][ T4358] usb 2-1: New USB device found, idVendor=05ac, idProduct=8215, bcdDevice=8f.58 [ 256.766517][ T4358] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 256.798110][ T4358] usb 2-1: config 0 descriptor?? [ 256.818420][T10692] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22 [ 257.313582][ T4358] usb 2-1: USB disconnect, device number 11 [ 257.322656][ T4281] Bluetooth: hci5: Opcode 0x0c03 failed: -19 [ 257.336593][T10732] loop4: detected capacity change from 0 to 2048 [ 257.408047][T10732] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 257.460891][T10732] ext4 filesystem being mounted at /569/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 257.507795][T10732] fscrypt (loop4, inode 14): Error -61 getting encryption context [ 257.615865][ T4277] EXT4-fs (loop4): unmounting filesystem. [ 258.053887][T10764] loop3: detected capacity change from 0 to 128 [ 258.098856][T10764] UDF-fs: error (device loop3): udf_read_tagged: read failed, block=256, location=256 [ 258.151656][T10764] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 258.241813][T10771] loop2: detected capacity change from 0 to 16 [ 258.258568][T10771] MTD: Attempt to mount non-MTD device "/dev/loop2" [ 258.324951][T10773] netlink: 'syz.1.2939': attribute type 3 has an invalid length. [ 258.345822][T10775] autofs4:pid:10775:autofs_fill_super: called with bogus options [ 258.617581][T10785] loop1: detected capacity change from 0 to 64 [ 258.627972][T10788] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check. [ 258.811524][ T4358] usb 3-1: new full-speed USB device number 11 using dummy_hcd [ 259.013424][ T4358] usb 3-1: config 0 has an invalid interface number: 84 but max is 0 [ 259.039208][ T4358] usb 3-1: config 0 has no interface number 0 [ 259.055933][ T4358] usb 3-1: config 0 interface 84 altsetting 253 endpoint 0x7 has invalid maxpacket 1279, setting to 64 [ 259.107749][ T4358] usb 3-1: config 0 interface 84 altsetting 253 endpoint 0x87 has an invalid bInterval 0, changing to 10 [ 259.108386][T10807] IPv6: sit1: Disabled Multicast RS [ 259.138494][ T4358] usb 3-1: config 0 interface 84 altsetting 253 endpoint 0x87 has invalid wMaxPacketSize 0 [ 259.150444][ T4358] usb 3-1: config 0 interface 84 has no altsetting 0 [ 259.196086][ T4358] usb 3-1: New USB device found, idVendor=2c7c, idProduct=0191, bcdDevice= f.05 [ 259.227515][ T4358] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 259.255678][ T4358] usb 3-1: config 0 descriptor?? [ 259.282473][T10781] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22 [ 259.291510][ T4358] option 3-1:0.84: GSM modem (1-port) converter detected [ 259.469536][T10816] loop0: detected capacity change from 0 to 4096 [ 259.517178][ T4320] usb 3-1: USB disconnect, device number 11 [ 259.538726][ T4320] option 3-1:0.84: device disconnected [ 259.702048][T10825] No source specified [ 259.857255][T10830] program syz.0.2968 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 259.913821][T10830] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0 [ 260.150255][T10839] netlink: 'syz.1.2972': attribute type 10 has an invalid length. [ 260.910112][T10861] loop3: detected capacity change from 0 to 4096 [ 261.020210][T10871] __vm_enough_memory: pid: 10871, comm: syz.0.2988, no enough memory for the allocation [ 261.083933][T10873] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2989'. [ 261.109062][T10837] loop4: detected capacity change from 0 to 32768 [ 261.160908][T10877] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2990'. [ 261.170738][T10877] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2990'. [ 261.181375][T10877] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2990'. [ 261.275099][T10877] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2990'. [ 261.302093][T10877] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2990'. [ 261.318241][T10837] XFS (loop4): Mounting V5 Filesystem [ 261.374996][T10877] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2990'. [ 261.384970][T10877] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2990'. [ 261.394515][T10877] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2990'. [ 261.412023][T10877] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2990'. [ 261.424205][T10877] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready [ 261.425329][T10837] XFS (loop4): Ending clean mount [ 261.438913][T10877] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 261.492027][T10877] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 261.506994][T10837] XFS (loop4): Quotacheck needed: Please wait. [ 261.638732][T10893] loop0: detected capacity change from 0 to 4096 [ 261.655485][T10837] XFS (loop4): Quotacheck: Done. [ 261.870889][ T4277] XFS (loop4): Unmounting Filesystem [ 262.679296][T10926] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready [ 262.704508][T10926] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 262.727413][T10926] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 263.374000][T10952] xt_SECMARK: only valid in 'mangle' or 'security' table, not 'raw' [ 263.735074][T10966] xt_bpf: check failed: parse error [ 263.747823][ T26] kauditd_printk_skb: 5 callbacks suppressed [ 263.747837][ T26] audit: type=1326 audit(1777926538.325:133): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10964 comm="syz.2.3028" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb45419cdd9 code=0x7ffc0000 [ 263.891987][ T26] audit: type=1326 audit(1777926538.365:134): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10964 comm="syz.2.3028" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=117 compat=0 ip=0x7fb45419cdd9 code=0x7ffc0000 [ 263.948504][T10977] overlayfs: conflicting options: nfs_export=on,index=off [ 263.986272][ T26] audit: type=1326 audit(1777926538.375:135): auid=4294967295 uid=60928 gid=0 ses=4294967295 subj=unconfined pid=10964 comm="syz.2.3028" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb45419cdd9 code=0x7ffc0000 [ 264.080991][ T26] audit: type=1326 audit(1777926538.375:136): auid=4294967295 uid=60928 gid=0 ses=4294967295 subj=unconfined pid=10964 comm="syz.2.3028" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb45419cdd9 code=0x7ffc0000 [ 264.110154][T10978] loop4: detected capacity change from 0 to 4096 [ 264.120082][T10978] ntfs: (device loop4): check_mft_mirror(): $MFT and $MFTMirr (record 1) do not match. Run ntfsfix or chkdsk. [ 264.133350][T10982] loop3: detected capacity change from 0 to 512 [ 264.147927][T10978] ntfs: (device loop4): load_system_files(): $MFTMirr does not match $MFT. Mounting read-only. Run ntfsfix and/or chkdsk. [ 264.192006][ T26] audit: type=1326 audit(1777926538.775:137): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10985 comm="syz.0.3038" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff05719cdd9 code=0x7ffc0000 [ 264.198390][T10982] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 264.225858][T10982] ext4 filesystem being mounted at /627/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 264.232106][T10978] ntfs: (device loop4): ntfs_read_locked_inode(): First extent of $DATA attribute has non zero lowest_vcn. [ 264.261591][T10978] ntfs: (device loop4): ntfs_read_locked_inode(): Failed with error code -5. Marking corrupt inode 0xa as bad. Run chkdsk. [ 264.342679][T10978] ntfs: (device loop4): load_and_init_upcase(): Failed to load $UpCase from the volume. Using default. [ 264.392032][T10978] ntfs: volume version 3.1. [ 264.468438][ T4280] EXT4-fs (loop3): unmounting filesystem. [ 264.947783][T11011] loop3: detected capacity change from 0 to 512 [ 265.042923][T11011] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 265.161064][T11011] EXT4-fs error (device loop3): ext4_validate_block_bitmap:420: comm syz.3.3051: bg 0: bad block bitmap checksum [ 265.249263][T11011] EXT4-fs error (device loop3): ext4_acquire_dquot:6841: comm syz.3.3051: Failed to acquire dquot type 0 [ 265.295074][T11022] netlink: 'syz.4.3053': attribute type 1 has an invalid length. [ 265.359499][T11016] loop0: detected capacity change from 0 to 32768 [ 265.376841][ T4280] EXT4-fs (loop3): unmounting filesystem. [ 265.439834][T11016] (syz.0.3052,11016,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 265.508104][T11016] (syz.0.3052,11016,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 265.612812][T11016] (syz.0.3052,11016,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xbec99099, computed 0x3881d996. Applying ECC. [ 265.613363][T11016] (syz.0.3052,11016,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0x93f628a2, computed 0x2aee8be5. Applying ECC. [ 265.614251][T11016] JBD2: Ignoring recovery information on journal [ 265.714061][T11016] (syz.0.3052,11016,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xbec99099, computed 0x3881d996. Applying ECC. [ 265.714556][T11016] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode. [ 265.716591][T11016] (syz.0.3052,11016,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0x93f628a2, computed 0x2aee8be5. Applying ECC. [ 265.718657][T11016] (syz.0.3052,11016,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0x98842a5e, computed 0xe74db1cd. Applying ECC. [ 265.783659][T11016] (syz.0.3052,11016,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0x1cec3d0f, computed 0xd2ffbdfe. Applying ECC. [ 265.841885][T11016] (syz.0.3052,11016,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0x2c7b5077, computed 0x4d558a87. Applying ECC. [ 265.842082][T11016] (syz.0.3052,11016,0):ocfs2_block_check_validate:416 ERROR: Fixed CRC32 failed: stored: 0x2c7b5077, computed 0x5d2751af [ 265.842114][T11016] (syz.0.3052,11016,0):ocfs2_read_quota_phys_block:160 ERROR: status = -5 [ 265.842186][T11016] (syz.0.3052,11016,0):ocfs2_quota_read:201 ERROR: status = -5 [ 265.842282][T11016] (syz.0.3052,11016,0):ocfs2_acquire_dquot:878 ERROR: status = -5 [ 265.843879][T11016] (syz.0.3052,11016,0):ocfs2_mknod:314 ERROR: status = -5 [ 265.844021][T11016] (syz.0.3052,11016,0):ocfs2_mknod:502 ERROR: status = -5 [ 265.844109][T11016] (syz.0.3052,11016,0):ocfs2_mkdir:659 ERROR: status = -5 [ 266.029447][ T4283] ocfs2: Unmounting device (7,0) on (node local) [ 267.031379][T11064] xt_CT: No such helper "pptp" [ 267.629132][T11096] xt_NFQUEUE: number of total queues is 0 [ 267.833679][T11103] __nla_validate_parse: 147 callbacks suppressed [ 267.833695][T11103] netlink: 60 bytes leftover after parsing attributes in process `syz.0.3092'. [ 268.235055][T11118] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3100'. [ 268.308368][T11122] netlink: 84 bytes leftover after parsing attributes in process `syz.4.3102'. [ 268.349427][T11122] netlink: 84 bytes leftover after parsing attributes in process `syz.4.3102'. [ 268.854129][T11147] loop3: detected capacity change from 0 to 1764 [ 268.870277][T11149] netlink: 'syz.2.3114': attribute type 10 has an invalid length. [ 268.899362][T11147] ISOFS: root inode is unusable. Disabling Rock Ridge and switching to Joliet. [ 268.975121][T11147] iso9660: Corrupted directory entry in block 2 of inode 1920 [ 269.069843][T11149] device veth0_vlan left promiscuous mode [ 269.086742][T11149] device veth0_vlan entered promiscuous mode [ 269.125586][T11149] team0: Device veth0_vlan failed to register rx_handler [ 269.281305][T11156] netlink: 136 bytes leftover after parsing attributes in process `syz.3.3117'. [ 269.341791][T11158] loop1: detected capacity change from 0 to 256 [ 269.342783][T11160] loop0: detected capacity change from 0 to 64 [ 269.373533][T11160] BFS-fs: bfs_fill_super(): loop0 is unclean, continuing [ 269.389951][T11158] exFAT-fs (loop1): failed to load upcase table (idx : 0x0001034b, chksum : 0x63107136, utbl_chksum : 0xe619d30d) [ 269.923137][T11171] netlink: 'syz.2.3125': attribute type 1 has an invalid length. [ 270.070525][T11178] cgroup: none used incorrectly [ 270.171786][ T6746] usb 4-1: new high-speed USB device number 14 using dummy_hcd [ 270.187352][T11168] loop1: detected capacity change from 0 to 4096 [ 270.225307][T11168] __ntfs_warning: 28 callbacks suppressed [ 270.225322][T11168] ntfs: (device loop1): parse_options(): Option utf8 is no longer supported, using option nls=utf8. Please use option nls=utf8 in the future and make sure utf8 is compiled either as a module or into the kernel. [ 270.251520][ C0] vkms_vblank_simulate: vblank timer overrun [ 270.298443][T11186] binder: 11185:11186 ioctl 40046210 0 returned -14 [ 270.364640][ T6746] usb 4-1: Using ep0 maxpacket: 32 [ 270.380668][ T6746] usb 4-1: config index 0 descriptor too short (expected 35577, got 27) [ 270.419788][ T6746] usb 4-1: config 1 has too many interfaces: 92, using maximum allowed: 32 [ 270.449337][T11168] ntfs: volume version 3.1. [ 270.457165][ T6746] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 92 [ 270.470959][ T6746] usb 4-1: config 1 has no interface number 0 [ 270.494889][T11189] loop4: detected capacity change from 0 to 128 [ 270.514989][T11190] netlink: 28 bytes leftover after parsing attributes in process `syz.0.3133'. [ 270.516596][ T6746] usb 4-1: config 1 interface 1 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0 [ 270.575657][T11190] netlink: 28 bytes leftover after parsing attributes in process `syz.0.3133'. [ 270.590464][T11189] UDF-fs: error (device loop4): udf_read_tagged: read failed, block=256, location=256 [ 270.606250][T11190] netlink: 28 bytes leftover after parsing attributes in process `syz.0.3133'. [ 270.611209][ T6746] usb 4-1: config 1 interface 1 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 17 [ 270.645428][T11190] netlink: 28 bytes leftover after parsing attributes in process `syz.0.3133'. [ 270.649573][T11189] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 270.671482][ T6746] usb 4-1: New USB device found, idVendor=0e41, idProduct=5051, bcdDevice=d5.e8 [ 270.692846][ T6746] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 270.701073][T11190] netlink: 28 bytes leftover after parsing attributes in process `syz.0.3133'. [ 270.766841][ T6746] snd_usb_pod 4-1:1.1: Line 6 Pocket POD found [ 270.966620][ T6746] snd_usb_pod 4-1:1.1: invalid control EP [ 270.977114][ T6746] snd_usb_pod 4-1:1.1: cannot start listening: -22 [ 271.006562][ T6746] snd_usb_pod 4-1:1.1: Line 6 Pocket POD now disconnected [ 271.045849][ T6746] snd_usb_pod: probe of 4-1:1.1 failed with error -22 [ 271.182140][ T6746] usb 4-1: USB disconnect, device number 14 [ 271.239218][T11184] loop2: detected capacity change from 0 to 32768 [ 271.394829][T11184] XFS (loop2): Mounting V5 filesystem in no-recovery mode. Filesystem will be inconsistent. [ 271.517636][T11184] XFS (loop2): Metadata corruption detected at xfs_dinode_verify+0x2d5/0x1110, inode 0x1803 dinode [ 271.577631][T11184] XFS (loop2): Unmount and run xfs_repair [ 271.584712][T11184] XFS (loop2): First 128 bytes of corrupted metadata buffer: [ 271.592318][T11184] 00000000: 49 4e 41 ed 03 01 00 00 00 00 00 00 00 00 00 00 INA............. [ 271.602474][T11184] 00000010: 00 00 00 02 00 00 00 00 00 00 00 00 00 00 00 00 ................ [ 271.619946][T11184] 00000020: 34 f7 58 68 a5 a5 b6 11 34 f7 58 68 a5 e2 bf 3d 4.Xh....4.Xh...= [ 271.639120][T11184] 00000030: 34 f7 58 68 a5 e2 bf 3d 00 00 00 00 00 00 00 20 4.Xh...=....... [ 271.653374][T11184] 00000040: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ [ 271.672897][T11184] 00000050: 00 00 00 02 00 00 00 00 00 00 00 00 ca e6 3d c1 ..............=. [ 271.697812][T11184] 00000060: ff ff ff ff 6e d0 e3 2d 00 00 00 00 00 00 00 04 ....n..-........ [ 271.717134][T11184] 00000070: 00 00 00 03 00 00 00 10 00 00 00 00 00 00 00 06 ................ [ 271.873698][ T4274] XFS (loop2): Unmounting Filesystem [ 272.673519][T11256] netlink: 'syz.2.3163': attribute type 3 has an invalid length. [ 272.754687][T11260] (unnamed net_device) (uninitialized): Unable to set peer notification delay as MII monitoring is disabled [ 273.309783][T11280] batman_adv: batadv0: adding TT local entry 66:ff:f2:fc:ff:ff to non-existent VLAN 815 [ 273.331763][T11284] netlink: 'syz.4.3177': attribute type 3 has an invalid length. [ 273.392829][T11280] batman_adv: batadv0: adding TT local entry 66:ff:f2:fc:ff:ff to non-existent VLAN 815 [ 273.499239][T11280] batman_adv: batadv0: adding TT local entry 66:ff:f2:fc:ff:ff to non-existent VLAN 815 [ 273.502222][T11288] loop4: detected capacity change from 0 to 512 [ 273.540104][T11280] batman_adv: batadv0: adding TT local entry 66:ff:f2:fc:ff:ff to non-existent VLAN 815 [ 273.573270][T11288] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 273.588342][T11280] batman_adv: batadv0: adding TT local entry 66:ff:f2:fc:ff:ff to non-existent VLAN 815 [ 273.617286][T11286] loop3: detected capacity change from 0 to 4096 [ 273.623845][T11280] batman_adv: batadv0: adding TT local entry 66:ff:f2:fc:ff:ff to non-existent VLAN 815 [ 273.633843][T11280] batman_adv: batadv0: adding TT local entry 66:ff:f2:fc:ff:ff to non-existent VLAN 815 [ 273.644073][T11280] batman_adv: batadv0: adding TT local entry 66:ff:f2:fc:ff:ff to non-existent VLAN 815 [ 273.645689][T11286] ntfs3: loop3: Different NTFS' sector size (1024) and media sector size (512) [ 273.654393][T11280] batman_adv: batadv0: adding TT local entry 66:ff:f2:fc:ff:ff to non-existent VLAN 815 [ 273.673093][T11280] batman_adv: batadv0: adding TT local entry 66:ff:f2:fc:ff:ff to non-existent VLAN 815 [ 273.715331][T11288] EXT4-fs error (device loop4): ext4_quota_enable:7045: comm syz.4.3179: Bad quota inum: 2, type: 1 [ 273.767959][T11288] EXT4-fs warning (device loop4): ext4_enable_quotas:7093: Failed to enable quota tracking (type=1, err=-117, ino=2). Please run e2fsck to fix. [ 273.769439][T11286] ntfs3: loop3: Mark volume as dirty due to NTFS errors [ 273.861069][T11286] ntfs3: loop3: Failed to load $Extend. [ 274.196561][ T4277] EXT4-fs (loop4): unmounting filesystem. [ 274.585914][T11272] loop1: detected capacity change from 0 to 32768 [ 274.619583][T11272] (syz.1.3168,11272,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 274.702297][T11272] (syz.1.3168,11272,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 274.834743][T11317] loop4: detected capacity change from 0 to 128 [ 274.917103][T11317] UDF-fs: error (device loop4): udf_read_tagged: read failed, block=256, location=256 [ 274.949500][T11272] JBD2: Ignoring recovery information on journal [ 275.033379][T11317] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 275.152728][T11272] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode. [ 275.771160][T11345] loop3: detected capacity change from 0 to 512 [ 275.807662][T11345] /dev/loop3: Can't open blockdev [ 275.950307][ T4273] ocfs2: Unmounting device (7,1) on (node local) [ 275.971038][T11349] xt_TCPMSS: Only works on TCP SYN packets [ 276.201581][ C0] ip6_tunnel: ip6gretap1 xmit: Local address not yet configured! [ 276.219590][ T26] audit: type=1326 audit(1777926550.795:153): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11356 comm="syz.4.3212" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f801c59cdd9 code=0x7ffc0000 [ 276.303455][ T26] audit: type=1326 audit(1777926550.825:154): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11356 comm="syz.4.3212" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f801c59cdd9 code=0x7ffc0000 [ 276.361563][ T7] usb 1-1: new full-speed USB device number 10 using dummy_hcd [ 276.425926][ T26] audit: type=1326 audit(1777926550.825:155): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11356 comm="syz.4.3212" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f801c59cdd9 code=0x7ffc0000 [ 276.511691][ T26] audit: type=1326 audit(1777926550.825:156): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11356 comm="syz.4.3212" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f801c59cdd9 code=0x7ffc0000 [ 276.553600][ T7] usb 1-1: unable to get BOS descriptor or descriptor too short [ 276.575229][ T7] usb 1-1: not running at top speed; connect to a high speed hub [ 276.605431][ T7] usb 1-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 276.615676][ T26] audit: type=1326 audit(1777926550.825:157): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11356 comm="syz.4.3212" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f801c59cdd9 code=0x7ffc0000 [ 276.615714][ T26] audit: type=1326 audit(1777926550.825:158): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11356 comm="syz.4.3212" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f801c59cdd9 code=0x7ffc0000 [ 276.615741][ T26] audit: type=1326 audit(1777926550.825:159): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11356 comm="syz.4.3212" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=436 compat=0 ip=0x7f801c59cdd9 code=0x7ffc0000 [ 276.615768][ T26] audit: type=1326 audit(1777926550.825:160): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11356 comm="syz.4.3212" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=231 compat=0 ip=0x7f801c59cdd9 code=0x7ffc0000 [ 276.624220][T11371] __nla_validate_parse: 17 callbacks suppressed [ 276.624240][T11371] netlink: 32 bytes leftover after parsing attributes in process `syz.1.3207'. [ 276.640667][ C0] vkms_vblank_simulate: vblank timer overrun [ 276.707690][T11374] autofs4:pid:11374:autofs_fill_super: called with bogus options [ 276.752628][ T7] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 3 [ 276.773020][ T7] usb 1-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40 [ 276.782594][ T7] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 276.801628][ T7] usb 1-1: Product: syz [ 276.805879][ T7] usb 1-1: Manufacturer: syz [ 276.810483][ T7] usb 1-1: SerialNumber: syz [ 277.045907][ T7] usb 1-1: 0:1 : does not exist [ 277.061080][ T7] usb 1-1: 0:2 : does not exist [ 277.097526][ T7] usb 1-1: 6:0: failed to get current value for ch 0 (-22) [ 277.130455][T11385] loop4: detected capacity change from 0 to 256 [ 277.174148][ T7] usb 1-1: USB disconnect, device number 10 [ 277.208169][T11390] netlink: 56 bytes leftover after parsing attributes in process `syz.2.3226'. [ 277.241818][T11385] FAT-fs (loop4): Directory bread(block 64) failed [ 277.248511][T11385] FAT-fs (loop4): Directory bread(block 65) failed [ 277.278896][T11385] FAT-fs (loop4): Directory bread(block 66) failed [ 277.301569][T11385] FAT-fs (loop4): Directory bread(block 67) failed [ 277.328660][T11385] FAT-fs (loop4): Directory bread(block 68) failed [ 277.345949][T11385] FAT-fs (loop4): Directory bread(block 69) failed [ 277.369878][T11393] netlink: 'syz.1.3229': attribute type 27 has an invalid length. [ 277.385734][T11385] FAT-fs (loop4): Directory bread(block 70) failed [ 277.405069][T11385] FAT-fs (loop4): Directory bread(block 71) failed [ 277.416838][T11393] netlink: 164 bytes leftover after parsing attributes in process `syz.1.3229'. [ 277.427036][ T4410] udevd[4410]: error opening ATTR{/sys/devices/platform/dummy_hcd.0/usb1/1-1/1-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 277.441294][T11385] FAT-fs (loop4): Directory bread(block 72) failed [ 277.456355][T11385] FAT-fs (loop4): Directory bread(block 73) failed [ 277.585401][ T26] audit: type=1800 audit(1777926552.165:161): pid=11385 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.3225" name="file1" dev="loop4" ino=1048626 res=0 errno=0 [ 277.681709][ T6751] usb 4-1: new high-speed USB device number 15 using dummy_hcd [ 277.898873][ T6751] usb 4-1: config 0 has no interfaces? [ 277.908969][ T6751] usb 4-1: New USB device found, idVendor=0bda, idProduct=8153, bcdDevice=e2.3d [ 277.938568][ T6751] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 277.960395][T11413] loop1: detected capacity change from 0 to 164 [ 277.967445][ T6751] usb 4-1: Product: syz [ 277.976619][ T6751] usb 4-1: Manufacturer: syz [ 277.981309][ T6751] usb 4-1: SerialNumber: syz [ 277.994978][ T6751] r8152-cfgselector 4-1: config 0 descriptor?? [ 278.069283][T11413] Unsupported NM flag settings (240) [ 278.196824][T11417] loop0: detected capacity change from 0 to 1024 [ 278.214880][ T4273] Unsupported NM flag settings (240) [ 278.220757][ T6751] usbip-host 4-1: 4-1 is not in match_busid table... skip! [ 278.232446][ T4273] Unsupported NM flag settings (240) [ 278.237996][ T4273] Unsupported NM flag settings (240) [ 278.268760][ T4273] Unsupported NM flag settings (240) [ 278.292680][ T4273] Unsupported NM flag settings (240) [ 278.311837][ T4273] Unsupported NM flag settings (240) [ 278.420656][ T49] hfsplus: b-tree write err: -5, ino 25 [ 278.426555][ T49] hfsplus: b-tree write err: -5, ino 4 [ 278.436174][ T6751] usb 4-1: USB disconnect, device number 15 [ 278.451565][ T49] hfsplus: b-tree write err: -5, ino 2 [ 278.630530][T11406] loop2: detected capacity change from 0 to 32768 [ 278.795891][T11440] syz.1.3249 (11440): /proc/11439/oom_adj is deprecated, please use /proc/11439/oom_score_adj instead. [ 278.830404][T11406] XFS (loop2): Mounting V5 Filesystem [ 278.844418][T11443] loop4: detected capacity change from 0 to 256 [ 278.941250][T11406] XFS (loop2): Torn write (CRC failure) detected at log block 0x30. Truncating head block from 0x51. [ 278.977935][T11406] XFS (loop2): Starting recovery (logdev: internal) [ 278.982303][T11443] FAT-fs (loop4): Directory bread(block 64) failed [ 278.991154][T11443] FAT-fs (loop4): Directory bread(block 65) failed [ 279.017620][T11406] XFS (loop2): Ending recovery (logdev: internal) [ 279.047839][T11406] XFS (loop2): AG 0: Corrupt btree 5 pointer at level 1 index 0. [ 279.073293][T11443] FAT-fs (loop4): Directory bread(block 66) failed [ 279.077782][T11406] XFS (loop2): Failed to initialize disk quotas. [ 279.094324][T11443] FAT-fs (loop4): Directory bread(block 67) failed [ 279.101068][T11443] FAT-fs (loop4): Directory bread(block 68) failed [ 279.152513][T11406] XFS (loop2): AG 0: Corrupt btree 5 pointer at level 1 index 0. [ 279.191587][T11443] FAT-fs (loop4): Directory bread(block 69) failed [ 279.198272][T11443] FAT-fs (loop4): Directory bread(block 70) failed [ 279.260437][T11443] FAT-fs (loop4): Directory bread(block 71) failed [ 279.300612][T11443] FAT-fs (loop4): Directory bread(block 72) failed [ 279.342071][T11443] FAT-fs (loop4): Directory bread(block 73) failed [ 279.369403][ T4274] XFS (loop2): Unmounting Filesystem [ 279.431636][T11459] netlink: 20 bytes leftover after parsing attributes in process `syz.1.3257'. [ 279.495571][T11459] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3257'. [ 279.857949][T11471] usb usb7: usbfs: process 11471 (syz.3.3264) did not claim interface 0 before use [ 280.400037][T11491] net_ratelimit: 2265 callbacks suppressed [ 280.400055][T11491] A link change request failed with some changes committed already. Interface veth1_to_bond may have been left with an inconsistent configuration, please check. [ 281.164775][T11519] netlink: 'syz.3.3288': attribute type 3 has an invalid length. [ 281.229492][T11519] netlink: 'syz.3.3288': attribute type 3 has an invalid length. [ 281.421079][T11527] device veth0_macvtap left promiscuous mode [ 281.643005][T11535] loop2: detected capacity change from 0 to 4096 [ 281.936371][T11545] netlink: 'syz.1.3299': attribute type 21 has an invalid length. [ 281.987350][T11545] netlink: 'syz.1.3299': attribute type 1 has an invalid length. [ 282.276699][T11558] IPv6: ADDRCONF(NETDEV_CHANGE): lo: link becomes ready [ 282.328077][T11558] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 282.352975][T11564] loop4: detected capacity change from 0 to 1024 [ 282.763097][T11581] loop3: detected capacity change from 0 to 512 [ 282.770328][T11581] /dev/loop3: Can't open blockdev [ 283.594952][T11610] RDS: rds_bind could not find a transport for 0:0:4::1, load rds_tcp or rds_rdma? [ 284.204013][ T3933] device veth0_macvtap entered promiscuous mode [ 284.478053][T11637] netlink: 88 bytes leftover after parsing attributes in process `syz.2.3338'. [ 284.744183][T11644] loop4: detected capacity change from 0 to 256 [ 284.900571][T11579] syz.1.3314 (11579): drop_caches: 2 [ 284.948843][T11644] FAT-fs (loop4): Directory bread(block 64) failed [ 284.961477][ T6746] usb 4-1: new high-speed USB device number 16 using dummy_hcd [ 284.977238][T11644] FAT-fs (loop4): Directory bread(block 65) failed [ 284.998917][T11644] FAT-fs (loop4): Directory bread(block 66) failed [ 285.020826][T11644] FAT-fs (loop4): Directory bread(block 67) failed [ 285.046359][T11644] FAT-fs (loop4): Directory bread(block 68) failed [ 285.063498][T11644] FAT-fs (loop4): Directory bread(block 69) failed [ 285.091701][T11644] FAT-fs (loop4): Directory bread(block 70) failed [ 285.119913][ T26] audit: type=1326 audit(1777926559.695:162): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11656 comm="syz.2.3345" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb45419cdd9 code=0x7ffc0000 [ 285.151694][T11644] FAT-fs (loop4): Directory bread(block 71) failed [ 285.179919][T11644] FAT-fs (loop4): Directory bread(block 72) failed [ 285.189582][ T6746] usb 4-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08 [ 285.218182][ T6746] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 285.226534][ T26] audit: type=1326 audit(1777926559.695:163): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11656 comm="syz.2.3345" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb45419cdd9 code=0x7ffc0000 [ 285.246713][T11644] FAT-fs (loop4): Directory bread(block 73) failed [ 285.257606][ T6746] usb 4-1: Product: syz [ 285.281601][ T6746] usb 4-1: Manufacturer: syz [ 285.286279][ T6746] usb 4-1: SerialNumber: syz [ 285.309473][T11644] FAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 285.332770][T11662] loop2: detected capacity change from 0 to 256 [ 285.351222][ T6746] usb 4-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested [ 285.359584][ T26] audit: type=1326 audit(1777926559.695:164): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11656 comm="syz.2.3345" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb45419cdd9 code=0x7ffc0000 [ 285.359623][ T26] audit: type=1326 audit(1777926559.695:165): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11656 comm="syz.2.3345" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=198 compat=0 ip=0x7fb45419cdd9 code=0x7ffc0000 [ 285.359654][ T26] audit: type=1326 audit(1777926559.695:166): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11656 comm="syz.2.3345" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb45419cdd9 code=0x7ffc0000 [ 285.359683][ T26] audit: type=1326 audit(1777926559.695:167): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11656 comm="syz.2.3345" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb45419cdd9 code=0x7ffc0000 [ 285.359714][ T26] audit: type=1326 audit(1777926559.695:168): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11656 comm="syz.2.3345" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=436 compat=0 ip=0x7fb45419cdd9 code=0x7ffc0000 [ 285.518151][T11662] syz.2.3347: attempt to access beyond end of device [ 285.518151][T11662] loop2: rw=0, sector=272, nr_sectors = 4 limit=256 [ 285.562071][T11666] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3349'. [ 285.597266][T11666] netlink: 312 bytes leftover after parsing attributes in process `syz.1.3349'. [ 285.611742][T11662] FAT-fs (loop2): error, fat_free: invalid cluster chain (i_pos 198) [ 285.619892][ T6746] usb 4-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008 [ 285.626073][T11662] FAT-fs (loop2): Filesystem has been set read-only [ 285.681563][T11662] FAT-fs (loop2): error, fat_free: invalid cluster chain (i_pos 198) [ 286.052008][ T26] audit: type=1326 audit(1777926559.695:169): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11656 comm="syz.2.3345" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=231 compat=0 ip=0x7fb45419cdd9 code=0x7ffc0000 [ 286.080892][T11677] loop4: detected capacity change from 0 to 2048 [ 286.122948][ T6751] usb 4-1: USB disconnect, device number 16 [ 286.232952][T11686] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 286.264619][T11677] NILFS error (device loop4): nilfs_bmap_lookup_contig: broken bmap (inode number=16) [ 286.283663][ T4353] usb 3-1: new high-speed USB device number 12 using dummy_hcd [ 286.326358][T11677] Remounting filesystem read-only [ 286.341269][T11677] NILFS error (device loop4): nilfs_bmap_lookup_contig: broken bmap (inode number=16) [ 286.363007][T11677] NILFS error (device loop4): nilfs_bmap_lookup_contig: broken bmap (inode number=16) [ 286.392087][T11677] NILFS error (device loop4): nilfs_bmap_lookup_contig: broken bmap (inode number=16) [ 286.421913][T11677] NILFS error (device loop4): nilfs_bmap_lookup_contig: broken bmap (inode number=16) [ 286.488994][T11677] NILFS error (device loop4): nilfs_bmap_lookup_contig: broken bmap (inode number=16) [ 286.505937][ T4353] usb 3-1: config index 0 descriptor too short (expected 39, got 27) [ 286.521187][T11677] NILFS error (device loop4): nilfs_bmap_lookup_contig: broken bmap (inode number=16) [ 286.521764][ T4353] usb 3-1: config 0 interface 0 altsetting 251 endpoint 0x9 has invalid wMaxPacketSize 0 [ 286.572118][T11677] NILFS error (device loop4): nilfs_bmap_lookup_contig: broken bmap (inode number=16) [ 286.578724][ T4353] usb 3-1: config 0 interface 0 has no altsetting 0 [ 286.604785][ T4353] usb 3-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b [ 286.625440][ T4353] usb 3-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2 [ 286.647984][ T4353] usb 3-1: Product: syz [ 286.661735][ T26] audit: type=1800 audit(1777926561.235:170): pid=11677 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.3355" name="file2" dev="loop4" ino=16 res=0 errno=0 [ 286.699312][ T4353] usb 3-1: Manufacturer: syz [ 286.714230][T11677] syz.4.3355 (11677) used greatest stack depth: 19760 bytes left [ 286.714966][ T4353] usb 3-1: SerialNumber: syz [ 286.754087][ T4353] usb 3-1: config 0 descriptor?? [ 286.791127][ T4353] hub 3-1:0.0: bad descriptor, ignoring hub [ 286.801559][ T4353] hub: probe of 3-1:0.0 failed with error -5 [ 286.816923][ T4353] usb 3-1: selecting invalid altsetting 0 [ 286.874804][T11701] loop0: detected capacity change from 0 to 4096 [ 286.909606][T11701] NILFS: invalid option "cp=0x00aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa": too large checkpoint number [ 286.931625][ T6746] usb 4-1: Service connection timeout for: 256 [ 286.937960][ T6746] ath9k_htc 4-1:1.0: ath9k_htc: Unable to initialize HTC services [ 286.992281][ T6746] ath9k_htc: Failed to initialize the device [ 286.998574][ T6751] usb 4-1: ath9k_htc: USB layer deinitialized [ 287.080768][T11707] netlink: 3 bytes leftover after parsing attributes in process `syz.4.3365'. [ 287.154382][T11711] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3366'. [ 287.161981][T11707] 0ªX¹¦À: renamed from caif0 [ 287.202280][T11707] A link change request failed with some changes committed already. Interface 60ªX¹¦À may have been left with an inconsistent configuration, please check. [ 287.267464][T11709] loop3: detected capacity change from 0 to 4096 [ 287.312565][T11709] /dev/loop3: Can't open blockdev [ 287.411927][ T6746] usb 3-1: USB disconnect, device number 12 [ 287.478392][T11718] tmpfs: Bad value for 'mpol' [ 287.758893][T11729] netlink: 'syz.3.3376': attribute type 12 has an invalid length. [ 287.794873][T11729] netlink: 120 bytes leftover after parsing attributes in process `syz.3.3376'. [ 287.870447][T11733] netlink: 'syz.4.3378': attribute type 15 has an invalid length. [ 287.898976][T11733] netlink: 24 bytes leftover after parsing attributes in process `syz.4.3378'. [ 288.149745][ T26] audit: type=1326 audit(1777926562.725:171): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11742 comm="syz.1.3385" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa66f59cdd9 code=0x7ffc0000 [ 288.156132][T11745] loop3: detected capacity change from 0 to 512 [ 288.173894][ C1] vkms_vblank_simulate: vblank timer overrun [ 288.258241][T11747] loop2: detected capacity change from 0 to 2048 [ 288.265831][T11745] /dev/loop3: Can't open blockdev [ 288.342917][T11753] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 288.691626][T11763] netlink: 12 bytes leftover after parsing attributes in process `syz.1.3392'. [ 288.844613][T11767] x_tables: duplicate underflow at hook 3 [ 289.081519][ T6751] usb 5-1: new high-speed USB device number 10 using dummy_hcd [ 289.264265][ T6751] usb 5-1: config index 0 descriptor too short (expected 39, got 27) [ 289.287701][ T6751] usb 5-1: config 0 interface 0 altsetting 251 endpoint 0x9 has invalid wMaxPacketSize 0 [ 289.341724][ T6751] usb 5-1: config 0 interface 0 has no altsetting 0 [ 289.356569][T11787] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3404'. [ 289.380889][ T6751] usb 5-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b [ 289.417641][ T6751] usb 5-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2 [ 289.436120][ T6751] usb 5-1: Product: syz [ 289.440345][ T6751] usb 5-1: Manufacturer: syz [ 289.456457][ T6751] usb 5-1: SerialNumber: syz [ 289.492125][ T6751] usb 5-1: config 0 descriptor?? [ 289.528037][ T6751] hub 5-1:0.0: bad descriptor, ignoring hub [ 289.541509][ T6751] hub: probe of 5-1:0.0 failed with error -5 [ 289.593223][ T6751] usb 5-1: selecting invalid altsetting 0 [ 289.751924][T11759] syz.0.3389 (11759): drop_caches: 2 [ 289.827129][ T4353] usb 5-1: USB disconnect, device number 10 [ 290.184020][T11808] loop2: detected capacity change from 0 to 4096 [ 290.242892][T11808] ntfs3: loop2: Different NTFS' sector size (2048) and media sector size (512) [ 290.275196][T11817] netlink: 12 bytes leftover after parsing attributes in process `syz.3.3418'. [ 290.393708][T11820] device vlan0 entered promiscuous mode [ 291.282353][T11852] overlayfs: conflicting options: metacopy=on,redirect_dir=nofollow [ 291.337598][ T7712] usb 4-1: new high-speed USB device number 17 using dummy_hcd [ 291.428655][T11856] loop2: detected capacity change from 0 to 1024 [ 291.456075][T11828] loop0: detected capacity change from 0 to 32768 [ 291.471336][T11854] loop4: detected capacity change from 0 to 4096 [ 291.509366][T11828] XFS (loop0): Mounting V5 Filesystem [ 291.541562][ T7712] usb 4-1: Using ep0 maxpacket: 32 [ 291.551333][ T7712] usb 4-1: config 0 has an invalid interface number: 136 but max is 0 [ 291.572321][ T7712] usb 4-1: config 0 has no interface number 0 [ 291.578728][ T7712] usb 4-1: config 0 interface 136 altsetting 0 bulk endpoint 0xA has invalid maxpacket 32 [ 291.599299][ T7712] usb 4-1: config 0 interface 136 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 224 [ 291.642757][ T7712] usb 4-1: New USB device found, idVendor=10cf, idProduct=8063, bcdDevice=d1.d2 [ 291.662216][ T7712] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 291.695123][ T7712] usb 4-1: Product: syz [ 291.699654][ T7712] usb 4-1: Manufacturer: syz [ 291.736574][ T7712] usb 4-1: SerialNumber: syz [ 291.762444][T11828] XFS (loop0): Ending clean mount [ 291.782275][ T7712] usb 4-1: config 0 descriptor?? [ 291.787842][T11844] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22 [ 291.801730][T11844] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22 [ 291.849741][ T7712] comedi comedi5: driver 'vmk80xx' has successfully auto-configured 'K8061 (VM140)'. [ 291.911725][T11871] netlink: 'syz.2.3441': attribute type 1 has an invalid length. [ 291.938538][ T4353] XFS (loop0): WARNING: Reset corrupted AGFL on AG 0. 1 blocks leaked. Please unmount and run xfs_repair. [ 292.009020][ T4283] XFS (loop0): Unmounting Filesystem [ 292.051949][ T5246] usb 4-1: USB disconnect, device number 17 [ 292.287241][ T26] kauditd_printk_skb: 7 callbacks suppressed [ 292.287254][ T26] audit: type=1326 audit(1777926566.865:179): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11881 comm="syz.1.3447" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa66f59cdd9 code=0x7ffc0000 [ 292.401466][ T26] audit: type=1326 audit(1777926566.865:180): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11881 comm="syz.1.3447" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa66f59cdd9 code=0x7ffc0000 [ 292.507617][ T26] audit: type=1326 audit(1777926566.905:181): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11881 comm="syz.1.3447" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=445 compat=0 ip=0x7fa66f59cdd9 code=0x7ffc0000 [ 292.567148][ T26] audit: type=1326 audit(1777926566.905:182): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11881 comm="syz.1.3447" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa66f59cdd9 code=0x7ffc0000 [ 292.612537][T11889] loop1: detected capacity change from 0 to 4096 [ 292.641057][ T26] audit: type=1326 audit(1777926566.905:183): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11881 comm="syz.1.3447" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa66f59cdd9 code=0x7ffc0000 [ 292.752910][T11889] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 292.918236][ T4273] EXT4-fs (loop1): unmounting filesystem. [ 293.282524][T11915] netlink: 48 bytes leftover after parsing attributes in process `syz.1.3461'. [ 293.362785][T11910] loop2: detected capacity change from 0 to 4096 [ 293.370103][T11910] ntfs: (device loop2): parse_options(): Option utf8 is no longer supported, using option nls=utf8. Please use option nls=utf8 in the future and make sure utf8 is compiled either as a module or into the kernel. [ 293.384968][T11916] loop3: detected capacity change from 0 to 4096 [ 293.409228][T11886] loop4: detected capacity change from 0 to 32768 [ 293.463893][T11916] /dev/loop3: Can't open blockdev [ 293.490241][T11910] ntfs: volume version 3.1. [ 293.523660][T11886] XFS (loop4): Mounting V5 Filesystem [ 293.651252][T11886] XFS (loop4): Ending clean mount [ 293.695415][ T7] XFS (loop4): Metadata CRC error detected at xfs_inobt_read_verify+0x3a/0xd0, xfs_finobt block 0x10 [ 293.761818][ T7] XFS (loop4): Unmount and run xfs_repair [ 293.767621][ T7] XFS (loop4): First 128 bytes of corrupted metadata buffer: [ 293.846729][ T7] 00000000: 46 49 42 33 00 00 00 01 ff ff ff ff ff ff ff ff FIB3............ [ 293.897475][ T7] 00000010: 00 00 00 00 00 00 00 10 00 00 00 01 00 00 00 10 ................ [ 293.931454][ T7] 00000020: d7 dc 42 4e 79 90 42 cb 9f 91 9c b7 20 0a 10 1d ..BNy.B..... ... [ 293.970863][ T7] 00000030: 00 00 00 00 0f 8d d2 a2 00 00 18 00 00 00 40 37 ..............@7 [ 293.983776][T11927] loop1: detected capacity change from 0 to 8192 [ 294.017064][ T7] 00000040: ff ff ff ff ff ff fe 00 00 00 00 00 00 00 00 00 ................ [ 294.059183][T11927] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 294.124802][ T7] 00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ [ 294.179704][ T7] 00000060: 00 00 00 00 00 f0 00 00 00 00 00 00 00 00 00 00 ................ [ 294.191699][T11927] REISERFS (device loop1): found reiserfs format "3.6" with non-standard journal [ 294.222060][T11927] REISERFS (device loop1): using ordered data mode [ 294.233090][ T7] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ [ 294.260024][T11927] REISERFS (device loop1): journal params: device loop1, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 294.280218][T11886] XFS (loop4): metadata I/O error in "xfs_btree_read_buf_block+0x1db/0x2d0" at daddr 0x10 len 4 error 74 [ 294.302326][T11886] XFS (loop4): Failed to initialize disk quotas. [ 294.312413][T11927] REISERFS (device loop1): checking transaction log (loop1) [ 294.349005][T11927] REISERFS (device loop1): Using r5 hash to sort names [ 294.435666][T11927] REISERFS warning (device loop1): vs-13060 reiserfs_update_sd_size: stat data of object [1 2 0x0 SD] (nlink == 1) not found (pos 2) [ 294.532770][T11927] REISERFS (device loop1): Created .reiserfs_priv - reserved for xattr storage. [ 294.582353][ T4277] XFS (loop4): Unmounting Filesystem [ 294.805930][T11957] loop0: detected capacity change from 0 to 512 [ 294.880712][T11957] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 294.973064][T11957] EXT4-fs error (device loop0): ext4_validate_block_bitmap:438: comm syz.0.3477: bg 0: block 384: padding at end of block bitmap is not set [ 295.096690][T11957] EXT4-fs (loop0): Remounting filesystem read-only [ 295.151237][T11957] EXT4-fs error (device loop0) in ext4_mb_clear_bb:6180: Corrupt filesystem [ 295.192561][T11957] EXT4-fs (loop0): Remounting filesystem read-only [ 295.199244][T11957] EXT4-fs error (device loop0): ext4_clear_blocks:883: inode #11: comm syz.0.3477: attempt to clear invalid blocks 983260 len 1 [ 295.271943][T11957] EXT4-fs (loop0): Remounting filesystem read-only [ 295.292367][T11957] EXT4-fs error (device loop0): __ext4_get_inode_loc:4520: comm syz.0.3477: Invalid inode table block 0 in block_group 0 [ 295.341712][T11957] EXT4-fs (loop0): Remounting filesystem read-only [ 295.348303][T11957] EXT4-fs error (device loop0) in ext4_reserve_inode_write:5952: Corrupt filesystem [ 295.358639][T11957] EXT4-fs (loop0): Remounting filesystem read-only [ 295.380546][T11957] EXT4-fs error (device loop0) in ext4_orphan_del:303: Corrupt filesystem [ 295.441999][T11957] EXT4-fs (loop0): Remounting filesystem read-only [ 295.446005][T11976] loop3: detected capacity change from 0 to 164 [ 295.448568][T11957] EXT4-fs error (device loop0): __ext4_get_inode_loc:4520: comm syz.0.3477: Invalid inode table block 0 in block_group 0 [ 295.495674][T11980] netlink: 20 bytes leftover after parsing attributes in process `syz.1.3485'. [ 295.512190][T11957] EXT4-fs (loop0): Remounting filesystem read-only [ 295.528232][T11957] EXT4-fs error (device loop0) in ext4_reserve_inode_write:5952: Corrupt filesystem [ 295.553796][T11957] EXT4-fs (loop0): Remounting filesystem read-only [ 295.570597][T11957] EXT4-fs error (device loop0): ext4_truncate:4325: inode #11: comm syz.0.3477: mark_inode_dirty error [ 295.608529][T11957] EXT4-fs (loop0): Remounting filesystem read-only [ 295.641589][T11957] EXT4-fs error (device loop0) in ext4_process_orphan:345: Corrupt filesystem [ 295.657557][T11982] loop1: detected capacity change from 0 to 512 [ 295.678009][T11957] EXT4-fs (loop0): Remounting filesystem read-only [ 295.685638][T11982] EXT4-fs: Ignoring removed oldalloc option [ 295.711512][T11982] EXT4-fs: Ignoring removed nobh option [ 295.711551][T11957] EXT4-fs (loop0): 1 truncate cleaned up [ 295.728205][T11957] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 295.828714][T11957] EXT4-fs error (device loop0): __ext4_get_inode_loc:4520: comm syz.0.3477: Invalid inode table block 0 in block_group 0 [ 295.961964][T11982] EXT4-fs error (device loop1): ext4_xattr_inode_iget:401: inode #11: comm syz.1.3486: iget: bad extra_isize 90 (inode size 256) [ 295.991472][T11957] EXT4-fs (loop0): Remounting filesystem read-only [ 296.028137][T11982] EXT4-fs (loop1): Remounting filesystem read-only [ 296.041130][T11992] loop4: detected capacity change from 0 to 8 [ 296.055244][T11982] EXT4-fs error (device loop1): ext4_xattr_inode_iget:406: comm syz.1.3486: error while reading EA inode 11 err=-117 [ 296.061121][T11973] loop2: detected capacity change from 0 to 32768 [ 296.090392][T11982] EXT4-fs (loop1): Remounting filesystem read-only [ 296.118954][T11982] EXT4-fs warning (device loop1): ext4_expand_extra_isize_ea:2800: Unable to expand inode 15. Delete some EAs or run e2fsck. [ 296.142739][T11973] __jfs_setxattr: xattr_size = 72, new_size = 12818 [ 296.166845][T11982] EXT4-fs error (device loop1): ext4_xattr_inode_iget:401: inode #11: comm syz.1.3486: iget: bad extra_isize 90 (inode size 256) [ 296.198768][ T4283] EXT4-fs (loop0): unmounting filesystem. [ 296.249011][T11982] EXT4-fs (loop1): Remounting filesystem read-only [ 296.278323][T11982] EXT4-fs error (device loop1): ext4_xattr_inode_iget:406: comm syz.1.3486: error while reading EA inode 11 err=-117 [ 296.369942][T11982] EXT4-fs (loop1): Remounting filesystem read-only [ 296.390219][T11982] EXT4-fs error (device loop1): ext4_xattr_inode_iget:401: inode #18: comm syz.1.3486: iget: bad extra_isize 90 (inode size 256) [ 296.482426][T11982] EXT4-fs (loop1): Remounting filesystem read-only [ 296.489066][T11982] EXT4-fs error (device loop1): ext4_xattr_inode_iget:406: comm syz.1.3486: error while reading EA inode 18 err=-117 [ 296.546005][T11982] EXT4-fs (loop1): Remounting filesystem read-only [ 296.558977][T11982] EXT4-fs error (device loop1): ext4_xattr_inode_iget:401: inode #18: comm syz.1.3486: iget: bad extra_isize 90 (inode size 256) [ 296.574863][T12006] erofs: (device loop3): mounted with root inode @ nid 36. [ 296.627011][T11982] EXT4-fs (loop1): Remounting filesystem read-only [ 296.644507][T12006] erofs: (device loop3): z_erofs_read_folio: failed to read, err [-117] [ 296.671709][T11982] EXT4-fs error (device loop1): ext4_xattr_inode_iget:406: comm syz.1.3486: error while reading EA inode 18 err=-117 [ 296.761512][T11982] EXT4-fs (loop1): Remounting filesystem read-only [ 296.768270][T11982] EXT4-fs (loop1): 1 orphan inode deleted [ 296.801480][T11982] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 297.011882][T11982] EXT4-fs error (device loop1): __ext4_iget:5102: inode #14: block 1886221359: comm syz.1.3486: invalid block [ 297.098411][T11982] EXT4-fs (loop1): Remounting filesystem read-only [ 297.279281][ T4273] EXT4-fs (loop1): unmounting filesystem. [ 297.965954][T12053] netlink: 28 bytes leftover after parsing attributes in process `syz.1.3513'. [ 298.093158][T12018] set_capacity_and_notify: 1 callbacks suppressed [ 298.093174][T12018] loop3: detected capacity change from 0 to 32768 [ 298.182752][T12061] loop0: detected capacity change from 0 to 256 [ 298.219002][ T4410] I/O error, dev loop3, sector 32640 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 298.266186][T12057] loop2: detected capacity change from 0 to 4096 [ 298.302945][T12057] ntfs3: loop2: Different NTFS' sector size (4096) and media sector size (512) [ 298.365176][T12061] FAT-fs (loop0): Directory bread(block 64) failed [ 298.428768][T12061] FAT-fs (loop0): Directory bread(block 65) failed [ 298.438341][T12057] ntfs3: loop2: Mark volume as dirty due to NTFS errors [ 298.472264][T12061] FAT-fs (loop0): Directory bread(block 66) failed [ 298.528258][T12061] FAT-fs (loop0): Directory bread(block 67) failed [ 298.558247][T12061] FAT-fs (loop0): Directory bread(block 68) failed [ 298.582685][T12061] FAT-fs (loop0): Directory bread(block 69) failed [ 298.589451][T12061] FAT-fs (loop0): Directory bread(block 70) failed [ 298.596564][T12061] FAT-fs (loop0): Directory bread(block 71) failed [ 298.604705][T12061] FAT-fs (loop0): Directory bread(block 72) failed [ 298.622986][T12069] netlink: 20 bytes leftover after parsing attributes in process `syz.1.3520'. [ 298.635618][T12061] FAT-fs (loop0): Directory bread(block 73) failed [ 298.641540][ T7] usb 5-1: new high-speed USB device number 11 using dummy_hcd [ 298.833377][ T7] usb 5-1: config 0 has an invalid interface number: 69 but max is 0 [ 298.847779][ T7] usb 5-1: config 0 has no interface number 0 [ 298.874232][ T7] usb 5-1: config 0 interface 69 altsetting 0 bulk endpoint 0x8 has invalid maxpacket 1023 [ 298.904813][ T7] usb 5-1: config 0 interface 69 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7 [ 298.944122][ T7] usb 5-1: New USB device found, idVendor=0c4b, idProduct=0100, bcdDevice=d7.ca [ 298.971515][ T7] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 299.000040][ T7] usb 5-1: Product: syz [ 299.010198][ T7] usb 5-1: Manufacturer: syz [ 299.021497][ T7] usb 5-1: SerialNumber: syz [ 299.061827][ T7] usb 5-1: config 0 descriptor?? [ 299.067782][T12067] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22 [ 299.113665][ T7] cyberjack 5-1:0.69: Reiner SCT Cyberjack USB card reader converter detected [ 299.161764][ T7] usb 5-1: Reiner SCT Cyberjack USB card reader converter now attached to ttyUSB0 [ 299.550816][ T7712] usb 5-1: USB disconnect, device number 11 [ 299.581335][ T7712] cyberjack ttyUSB0: Reiner SCT Cyberjack USB card reader converter now disconnected from ttyUSB0 [ 299.650207][ T7712] cyberjack 5-1:0.69: device disconnected [ 299.852155][ T26] audit: type=1326 audit(1777926574.435:184): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12107 comm="syz.1.3539" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa66f59cdd9 code=0x7ffc0000 [ 299.997807][ T26] audit: type=1326 audit(1777926574.475:185): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12107 comm="syz.1.3539" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=99 compat=0 ip=0x7fa66f59cdd9 code=0x7ffc0000 [ 300.131490][ T26] audit: type=1326 audit(1777926574.475:186): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12107 comm="syz.1.3539" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa66f59cdd9 code=0x7ffc0000 [ 300.281833][ T26] audit: type=1326 audit(1777926574.475:187): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12107 comm="syz.1.3539" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa66f59cdd9 code=0x7ffc0000 [ 300.461493][ T26] audit: type=1400 audit(1777926574.675:188): apparmor="DENIED" operation="setprocattr" info="fscreate" error=-22 profile="unconfined" pid=12118 comm="syz.1.3544" [ 300.544035][ T52] block nbd4: Attempted send on invalid socket [ 300.550666][ T52] I/O error, dev nbd4, sector 2 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 300.581532][T12133] vxfs: unable to read disk superblock at 1 [ 300.589078][ T93] block nbd4: Attempted send on invalid socket [ 300.595621][ T93] I/O error, dev nbd4, sector 16 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 300.615517][T12133] vxfs: unable to read disk superblock at 8 [ 300.661366][T12133] vxfs: can't find superblock. [ 300.693432][T12141] netlink: 'syz.3.3553': attribute type 1 has an invalid length. [ 300.701297][T12141] netlink: 12 bytes leftover after parsing attributes in process `syz.3.3553'. [ 300.904312][T12147] loop1: detected capacity change from 0 to 1764 [ 300.981624][ T7712] usb 3-1: new high-speed USB device number 13 using dummy_hcd [ 301.183478][ T7712] usb 3-1: config 220 has an invalid interface number: 76 but max is 2 [ 301.202316][ T7712] usb 3-1: config 220 has an invalid descriptor of length 0, skipping remainder of the config [ 301.233431][ T7712] usb 3-1: config 220 has no interface number 2 [ 301.264824][ T7712] usb 3-1: config 220 interface 1 altsetting 5 has 0 endpoint descriptors, different from the interface descriptor's value: 12 [ 301.333857][ T7712] usb 3-1: config 220 interface 0 has no altsetting 0 [ 301.340717][ T7712] usb 3-1: config 220 interface 76 has no altsetting 0 [ 301.418041][ T7712] usb 3-1: config 220 interface 1 has no altsetting 0 [ 301.436765][T12172] loop0: detected capacity change from 0 to 512 [ 301.458453][ T7712] usb 3-1: New USB device found, idVendor=8086, idProduct=0b07, bcdDevice=6c.b9 [ 301.491335][T12172] EXT4-fs (loop0): mounting ext2 file system using the ext4 subsystem [ 301.509614][ T7712] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 301.550163][ T7712] usb 3-1: Product: syz [ 301.623752][ T7712] usb 3-1: Manufacturer: syz [ 301.628448][ T7712] usb 3-1: SerialNumber: syz [ 301.638389][T12172] EXT4-fs error (device loop0): ext4_orphan_get:1405: inode #15: comm syz.0.3566: iget: bogus i_mode (5) [ 301.731227][T12172] EXT4-fs error (device loop0): ext4_orphan_get:1410: comm syz.0.3566: couldn't read orphan inode 15 (err -117) [ 301.772538][T12172] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 301.821687][T12172] ext2 filesystem being mounted at /750/file2 supports timestamps until 2038-01-19 (0x7fffffff) [ 301.920935][ T7712] usb 3-1: selecting invalid altsetting 0 [ 301.947291][T12172] EXT4-fs error (device loop0): ext4_add_entry:2486: inode #2: comm syz.0.3566: Directory hole found for htree leaf block 0 [ 301.963119][ T7712] usb 3-1: Found UVC 7.01 device syz (8086:0b07) [ 301.969532][ T7712] usb 3-1: No valid video chain found. [ 302.032276][ T7712] usb 3-1: selecting invalid altsetting 0 [ 302.048297][ T7712] usbtest: probe of 3-1:220.1 failed with error -22 [ 302.097521][ T7712] usb 3-1: USB disconnect, device number 13 [ 302.223623][ T4283] EXT4-fs (loop0): unmounting filesystem. [ 302.635034][T12204] loop4: detected capacity change from 0 to 4096 [ 302.658047][T12215] loop0: detected capacity change from 0 to 128 [ 302.673800][T12204] ntfs3: loop4: Different NTFS' sector size (4096) and media sector size (512) [ 302.697832][T12215] UDF-fs: error (device loop0): udf_read_tagged: read failed, block=256, location=256 [ 302.753771][T12215] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 302.836993][T12204] ntfs3: loop4: failed to convert "c46c" to cp1255 [ 303.193223][T12231] loop4: detected capacity change from 0 to 2048 [ 303.251191][T12231] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 303.294913][T12231] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 303.345889][T12231] ext4 filesystem being mounted at /692/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 303.406710][T12231] Quota error (device loop4): find_tree_dqentry: Cycle in quota tree detected: block 2 index 0 [ 303.458823][T12231] Quota error (device loop4): qtree_read_dquot: Can't read quota structure for id 0 [ 303.464091][T12240] netlink: 6 bytes leftover after parsing attributes in process `syz.3.3595'. [ 303.516691][T12231] EXT4-fs error (device loop4): ext4_acquire_dquot:6841: comm syz.4.3591: Failed to acquire dquot type 0 [ 303.703428][T12246] loop2: detected capacity change from 0 to 2048 [ 303.731365][ T4277] EXT4-fs (loop4): unmounting filesystem. [ 303.758154][T12246] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 303.875344][T12225] loop1: detected capacity change from 0 to 32768 [ 303.992572][T12225] JBD2: Ignoring recovery information on journal [ 304.170338][T12225] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode. [ 304.371495][T12225] OCFS2: ERROR (device loop1): int ocfs2_validate_gd_self(struct super_block *, struct buffer_head *, int): Group descriptor #17056 has bit count 2061 but max bitmap bits of 2048 [ 304.471994][T12225] On-disk corruption discovered. Please run fsck.ocfs2 once the filesystem is unmounted. [ 304.500090][T12225] OCFS2: File system is now read-only. [ 304.507387][T12225] (syz.1.3588,12225,1):ocfs2_search_chain:1761 ERROR: status = -30 [ 304.543418][T12225] (syz.1.3588,12225,1):ocfs2_search_chain:1871 ERROR: status = -30 [ 304.559340][T12225] (syz.1.3588,12225,1):ocfs2_claim_suballoc_bits:1950 ERROR: status = -30 [ 304.586068][T12225] (syz.1.3588,12225,1):ocfs2_claim_suballoc_bits:1993 ERROR: status = -30 [ 304.632361][T12225] (syz.1.3588,12225,1):ocfs2_claim_new_inode:2226 ERROR: status = -30 [ 304.659339][T12225] (syz.1.3588,12225,1):ocfs2_claim_new_inode:2241 ERROR: status = -30 [ 304.701268][T12225] (syz.1.3588,12225,1):ocfs2_mknod_locked:639 ERROR: status = -30 [ 304.722867][T12225] (syz.1.3588,12225,1):ocfs2_symlink:1941 ERROR: status = -30 [ 304.750441][T12225] (syz.1.3588,12225,1):ocfs2_symlink:2065 ERROR: status = -30 [ 304.793055][T12278] x_tables: unsorted underflow at hook 3 [ 304.820834][ T4273] ocfs2: Unmounting device (7,1) on (node local) [ 304.846894][ T5246] usb 1-1: new high-speed USB device number 11 using dummy_hcd [ 305.055853][ T5246] usb 1-1: New USB device found, idVendor=200c, idProduct=100b, bcdDevice= 0.40 [ 305.099968][ T5246] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 305.139353][ T5246] usb 1-1: Product: syz [ 305.149473][ T5246] usb 1-1: Manufacturer: syz [ 305.166559][ T5246] usb 1-1: SerialNumber: syz [ 305.421664][ T5246] usb 1-1: unit 5 not found! [ 305.426395][ T5246] usb 1-1: unit 102 not found! [ 305.492449][ T5246] usb 1-1: USB disconnect, device number 11 [ 305.701730][T12313] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3630'. [ 305.772565][ T4410] udevd[4410]: error opening ATTR{/sys/devices/platform/dummy_hcd.0/usb1/1-1/1-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 305.868848][T12319] netlink: 36 bytes leftover after parsing attributes in process `syz.4.3635'. [ 306.122930][T12333] netlink: 12 bytes leftover after parsing attributes in process `syz.0.3638'. [ 306.308051][T12341] IPv6: Can't replace route, no match found [ 306.793982][T12365] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3654'. [ 306.805019][T12364] loop3: detected capacity change from 0 to 8 [ 306.825655][T12364] MTD: Attempt to mount non-MTD device "/dev/loop3" [ 306.858119][ T4410] udevd[4410]: incorrect cramfs checksum on /dev/loop3 [ 307.732243][T12397] device wlan0 entered promiscuous mode [ 307.931083][T12409] netlink: 'syz.0.3678': attribute type 1 has an invalid length. [ 308.107922][T12418] netlink: 36 bytes leftover after parsing attributes in process `syz.4.3682'. [ 309.409175][T12478] netlink: 'syz.4.3712': attribute type 1 has an invalid length. [ 309.848841][T12499] loop0: detected capacity change from 0 to 512 [ 309.876841][T12502] device netdevsim0 entered promiscuous mode [ 309.890356][T12502] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check. [ 309.916835][T12503] loop1: detected capacity change from 0 to 1024 [ 309.920402][T12499] EXT4-fs error (device loop0): ext4_xattr_inode_iget:401: inode #12: comm syz.0.3720: missing EA_INODE flag [ 309.950536][T12499] EXT4-fs error (device loop0): ext4_xattr_inode_iget:406: comm syz.0.3720: error while reading EA inode 12 err=-117 [ 310.002611][T12499] EXT4-fs (loop0): 1 orphan inode deleted [ 310.008465][T12499] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 310.099093][ T4283] EXT4-fs (loop0): unmounting filesystem. [ 310.156763][T12509] usb usb8: usbfs: process 12509 (syz.3.3725) did not claim interface 0 before use [ 310.263649][ T11] hfsplus: b-tree write err: -5, ino 8 [ 310.632972][T12519] loop3: detected capacity change from 0 to 4096 [ 310.640262][T12519] /dev/loop3: Can't open blockdev [ 311.319699][T12557] libceph: resolve '0..' (ret=-3): failed [ 312.036099][T12590] loop0: detected capacity change from 0 to 2048 [ 312.118776][T12590] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 312.171159][T12592] loop4: detected capacity change from 0 to 4096 [ 312.272098][T12583] loop3: detected capacity change from 0 to 32768 [ 312.283106][T12583] /dev/loop3: Can't open blockdev [ 312.297839][T12592] ntfs3: loop4: Mark volume as dirty due to NTFS errors [ 312.361056][T12592] ntfs3: loop4: Failed to load $MFT. [ 312.505404][T12609] netlink: 'syz.3.3772': attribute type 12 has an invalid length. [ 312.795341][ T26] audit: type=1800 audit(1777926587.375:189): pid=12590 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.3767" name="file1" dev="loop0" ino=15 res=0 errno=0 [ 313.002357][ T4283] EXT4-fs (loop0): unmounting filesystem. [ 313.314170][T12631] loop4: detected capacity change from 0 to 64 [ 313.408762][T12633] loop0: detected capacity change from 0 to 2048 [ 313.506136][T12633] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 313.795459][T12616] loop3: detected capacity change from 0 to 32768 [ 314.248402][T12653] netlink: 'syz.1.3793': attribute type 3 has an invalid length. [ 314.294814][T12653] netlink: 'syz.1.3793': attribute type 3 has an invalid length. [ 314.303759][T12655] loop0: detected capacity change from 0 to 256 [ 314.305245][T12657] netlink: 'syz.4.3795': attribute type 27 has an invalid length. [ 314.321672][T12653] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3793'. [ 314.399701][T12655] exFAT-fs (loop0): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x190b464b, utbl_chksum : 0xe619d30d) [ 314.581596][T12661] netlink: 'syz.1.3797': attribute type 1 has an invalid length. [ 314.625940][T12661] netlink: 228 bytes leftover after parsing attributes in process `syz.1.3797'. [ 314.931699][ T5246] usb 5-1: new full-speed USB device number 12 using dummy_hcd [ 315.123778][ T5246] usb 5-1: unable to get BOS descriptor or descriptor too short [ 315.153315][ T5246] usb 5-1: not running at top speed; connect to a high speed hub [ 315.182745][ T5246] usb 5-1: config 249 has an invalid interface number: 203 but max is 0 [ 315.191151][ T5246] usb 5-1: config 249 has an invalid descriptor of length 0, skipping remainder of the config [ 315.221596][ T5246] usb 5-1: config 249 has no interface number 0 [ 315.238027][ T5246] usb 5-1: config 249 interface 203 altsetting 184 endpoint 0x81 has invalid wMaxPacketSize 0 [ 315.259122][ T5246] usb 5-1: config 249 interface 203 altsetting 184 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 315.291487][ T5246] usb 5-1: config 249 interface 203 has no altsetting 0 [ 315.322531][ T5246] usb 5-1: New USB device found, idVendor=0411, idProduct=0012, bcdDevice=90.39 [ 315.342905][ T5246] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 315.362066][ T5246] usb 5-1: Product: syz [ 315.366304][ T5246] usb 5-1: Manufacturer: syz [ 315.370927][ T5246] usb 5-1: SerialNumber: syz [ 315.629330][ T5246] rtl8150 5-1:249.203: couldn't find required endpoints [ 315.640282][ T5246] rtl8150: probe of 5-1:249.203 failed with error -5 [ 315.669828][T12709] loop3: detected capacity change from 0 to 16 [ 315.671804][ T5246] usb 5-1: USB disconnect, device number 12 [ 315.750694][T12709] /dev/loop3: Can't open blockdev [ 316.030072][ T26] audit: type=1326 audit(1777926590.605:190): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12715 comm="syz.3.3820" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f777539cdd9 code=0x7ffc0000 [ 316.081522][ T26] audit: type=1326 audit(1777926590.635:191): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12715 comm="syz.3.3820" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f777539cdd9 code=0x7ffc0000 [ 316.147653][ T26] audit: type=1326 audit(1777926590.635:192): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12715 comm="syz.3.3820" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=7 compat=0 ip=0x7f777539cdd9 code=0x7ffc0000 [ 316.271875][ T26] audit: type=1326 audit(1777926590.645:193): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12715 comm="syz.3.3820" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f777539cdd9 code=0x7ffc0000 [ 316.351622][ T26] audit: type=1326 audit(1777926590.645:194): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12715 comm="syz.3.3820" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f777539cdd9 code=0x7ffc0000 [ 316.368027][T12706] loop1: detected capacity change from 0 to 32768 [ 316.406770][T12710] loop0: detected capacity change from 0 to 32768 [ 316.466062][T12706] BTRFS: device fsid e0cb6322-611b-4325-acdf-015f79de3787 devid 1 transid 8 /dev/loop1 scanned by syz.1.3815 (12706) [ 316.534824][T12710] JBD2: Ignoring recovery information on journal [ 316.548493][T12706] BTRFS info (device loop1): first mount of filesystem e0cb6322-611b-4325-acdf-015f79de3787 [ 316.571633][T12706] BTRFS info (device loop1): using sha256 (sha256-avx2) checksum algorithm [ 316.601737][T12706] BTRFS info (device loop1): enabling ssd optimizations [ 316.608775][T12706] BTRFS info (device loop1): not using ssd optimizations [ 316.620186][T12731] loop3: detected capacity change from 0 to 512 [ 316.628372][T12731] /dev/loop3: Can't open blockdev [ 316.721706][T12706] BTRFS info (device loop1): turning off barriers [ 316.738833][T12706] BTRFS info (device loop1): use no compression [ 316.749239][T12710] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode. [ 316.761688][T12706] BTRFS info (device loop1): using free space tree [ 316.980707][T12710] OCFS2: ERROR (device loop0): int ocfs2_validate_gd_self(struct super_block *, struct buffer_head *, int): Group descriptor #17056 has bit count 2061 but max bitmap bits of 2048 [ 317.047958][T12710] On-disk corruption discovered. Please run fsck.ocfs2 once the filesystem is unmounted. [ 317.071647][T12710] OCFS2: File system is now read-only. [ 317.077182][T12710] (syz.0.3814,12710,0):ocfs2_search_chain:1761 ERROR: status = -30 [ 317.100292][T12710] (syz.0.3814,12710,1):ocfs2_search_chain:1871 ERROR: status = -30 [ 317.166598][ T1277] ieee802154 phy0 wpan0: encryption failed: -22 [ 317.172994][ T1277] ieee802154 phy1 wpan1: encryption failed: -22 [ 317.197779][T12710] (syz.0.3814,12710,1):ocfs2_claim_suballoc_bits:1950 ERROR: status = -30 [ 317.269253][T12710] (syz.0.3814,12710,1):ocfs2_claim_suballoc_bits:1993 ERROR: status = -30 [ 317.299097][T12710] (syz.0.3814,12710,1):ocfs2_claim_new_inode:2226 ERROR: status = -30 [ 317.329324][ T4273] BTRFS info (device loop1): last unmount of filesystem e0cb6322-611b-4325-acdf-015f79de3787 [ 317.353154][T12710] (syz.0.3814,12710,1):ocfs2_claim_new_inode:2241 ERROR: status = -30 [ 317.371530][T12710] (syz.0.3814,12710,1):ocfs2_mknod_locked:639 ERROR: status = -30 [ 317.387538][T12724] loop4: detected capacity change from 0 to 32768 [ 317.456023][T12710] (syz.0.3814,12710,1):ocfs2_symlink:1941 ERROR: status = -30 [ 317.510171][T12710] (syz.0.3814,12710,0):ocfs2_symlink:2065 ERROR: status = -30 [ 317.544919][T12724] XFS (loop4): Mounting V5 Filesystem [ 317.590680][T12770] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3835'. [ 317.670735][T12724] XFS (loop4): Ending clean mount [ 317.685908][ T4283] ocfs2: Unmounting device (7,0) on (node local) [ 317.755656][T12724] XFS (loop4): WARNING: Reset corrupted AGFL on AG 0. 1 blocks leaked. Please unmount and run xfs_repair. [ 318.055547][T12780] netlink: 20 bytes leftover after parsing attributes in process `syz.0.3836'. [ 318.119144][ T4277] XFS (loop4): Unmounting Filesystem [ 318.203685][T12784] netlink: 196 bytes leftover after parsing attributes in process `syz.3.3839'. [ 318.231607][T12784] ksmbd: Daemon and kernel module version mismatch. ksmbd: 0, kernel module: 1. User-space ksmbd should terminate. [ 319.137360][T12818] llcp: llcp_sock_recvmsg: Recv datagram failed state 4 -11 0 [ 319.179383][T12816] loop1: detected capacity change from 0 to 1024 [ 319.432792][ T4350] hfsplus: b-tree write err: -5, ino 25 [ 319.438568][ T4350] hfsplus: b-tree write err: -5, ino 4 [ 319.463776][ T4350] hfsplus: b-tree write err: -5, ino 2 [ 319.599759][T12834] netlink: 'syz.4.3862': attribute type 298 has an invalid length. [ 319.724599][T12840] loop3: detected capacity change from 0 to 1024 [ 319.770430][T12840] EXT4-fs: inline encryption not supported [ 319.802505][T12840] /dev/loop3: Can't open blockdev [ 320.631753][T12880] loop3: detected capacity change from 0 to 1024 [ 320.681623][ T4355] usb 1-1: new high-speed USB device number 12 using dummy_hcd [ 320.705238][ T4410] I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 320.897041][ T4355] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 320.923711][ T4355] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 320.964044][ T4355] usb 1-1: New USB device found, idVendor=056a, idProduct=030c, bcdDevice= 0.00 [ 321.004514][ T4355] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 321.059630][ T4355] usb 1-1: config 0 descriptor?? [ 321.527776][ T4355] wacom 0003:056A:030C.0001: hidraw0: USB HID v0.06 Device [HID 056a:030c] on usb-dummy_hcd.0-1/input0 [ 321.733177][ T4355] usb 1-1: USB disconnect, device number 12 [ 321.874640][T12910] fido_id[12910]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.0/usb1/report_descriptor': No such file or directory [ 322.143723][T12903] loop4: detected capacity change from 0 to 32768 [ 322.194007][T12903] [ 322.194007][T12903] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 322.194007][T12903] [ 322.423628][ T4350] [ 322.423628][ T4350] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 322.423628][ T4350] [ 322.458149][T12933] loop3: detected capacity change from 0 to 128 [ 322.464765][ T4350] [ 322.464765][ T4350] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 322.464765][ T4350] [ 322.492484][T12933] /dev/loop3: Can't open blockdev [ 322.511843][ T4277] [ 322.511843][ T4277] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 322.511843][ T4277] [ 322.532452][ T107] [ 322.532452][ T107] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 322.532452][ T107] [ 322.551866][ T8477] I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 322.601565][ T4277] [ 322.601565][ T4277] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 322.601565][ T4277] [ 323.016386][T12947] loop3: detected capacity change from 0 to 2048 [ 323.106133][T12947] /dev/loop3: Can't open blockdev [ 323.416211][T12952] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3920'. [ 324.047393][T12984] tipc: Started in network mode [ 324.071854][T12984] tipc: Node identity , cluster identity 4711 [ 324.377227][T12966] loop4: detected capacity change from 0 to 32768 [ 324.446150][T12966] JBD2: Ignoring recovery information on journal [ 324.483732][T12998] Bluetooth: MGMT ver 1.22 [ 324.568007][T12966] ocfs2: Mounting device (7,4) on (node local, slot 0) with ordered data mode. [ 324.611657][T13001] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3940'. [ 324.885533][ T4277] ocfs2: Unmounting device (7,4) on (node local) [ 324.887127][T13007] L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details. [ 325.049805][T12989] loop3: detected capacity change from 0 to 32768 [ 325.877749][T13035] loop3: detected capacity change from 0 to 1024 [ 326.017380][T13039] loop1: detected capacity change from 0 to 64 [ 326.075876][T13039] MINIX-fs: mounting file system with errors, running fsck is recommended [ 326.145772][T13043] loop3: detected capacity change from 0 to 64 [ 326.186363][T13039] MINIX-fs warning: remounting fs with errors, running fsck is recommended [ 326.214268][T13021] loop4: detected capacity change from 0 to 32768 [ 326.299321][T13021] jfs_strtoUCS: char2uni returned -22. [ 326.321473][T13021] charset = cp869, char = 0x83 [ 326.552518][T13055] Bluetooth: MGMT ver 1.22 [ 326.650794][T13060] loop0: detected capacity change from 0 to 16 [ 326.704432][T13060] MTD: Attempt to mount non-MTD device "/dev/loop0" [ 327.137495][T13075] /dev/loop3: Can't open blockdev [ 327.628085][T13086] device ipvlan2 entered promiscuous mode [ 327.832324][T13061] set_capacity_and_notify: 1 callbacks suppressed [ 327.832341][T13061] loop4: detected capacity change from 0 to 32768 [ 327.850467][T13096] trusted_key: encrypted_key: key trusted:s)’yz not found [ 328.068609][T13101] loop1: detected capacity change from 0 to 256 [ 328.215241][T13101] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x9059ffb0, utbl_chksum : 0xe619d30d) [ 328.602270][ T4281] Bluetooth: hci0: Opcode 0x0c1a failed: -110 [ 328.611247][ T4281] Bluetooth: hci0: command 0x0c1a tx timeout [ 328.809505][T13120] loop3: detected capacity change from 0 to 2048 [ 328.819350][T13122] tipc: Started in network mode [ 328.843272][T13122] tipc: Node identity fe80000000000000000000000000004, cluster identity 4711 [ 328.870251][T13122] tipc: Enabled bearer , priority 10 [ 328.892574][ T8477] I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 329.248955][T13139] netlink: 8 bytes leftover after parsing attributes in process `syz.1.4006'. [ 329.331518][T13139] netlink: 4 bytes leftover after parsing attributes in process `syz.1.4006'. [ 329.350797][T13139] netlink: 'syz.1.4006': attribute type 12 has an invalid length. [ 329.897661][ T4355] tipc: Node number set to 4269801536 [ 330.148031][T13177] loop1: detected capacity change from 0 to 1024 [ 330.187793][T13181] loop0: detected capacity change from 0 to 64 [ 330.218525][T13177] hfsplus: Filesystem was not cleanly unmounted, running fsck.hfsplus is recommended. mounting read-only. [ 330.259063][T13181] syz.0.4026: attempt to access beyond end of device [ 330.259063][T13181] loop0: rw=0, sector=412, nr_sectors = 2 limit=64 [ 330.282396][ T5246] usb 3-1: new high-speed USB device number 14 using dummy_hcd [ 330.347687][T13181] Trying to free block not in datazone [ 330.453649][T13184] syz.0.4026: attempt to access beyond end of device [ 330.453649][T13184] loop0: rw=0, sector=412, nr_sectors = 2 limit=64 [ 330.477815][T13186] loop4: detected capacity change from 0 to 2048 [ 330.492361][ T5246] usb 3-1: Using ep0 maxpacket: 16 [ 330.501537][T13184] Buffer I/O error on dev loop0, logical block 206, async page read [ 330.509986][ T5246] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 330.523530][T13186] UDF-fs: error (device loop4): udf_read_tagged: tag checksum failed, block 99: 0x27 != 0x4d [ 330.535216][ T26] audit: type=1800 audit(1777926605.115:195): pid=13184 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.4026" name="file1" dev="loop0" ino=5 res=0 errno=0 [ 330.559813][T13188] program syz.3.4030 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 330.598408][ T5246] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 330.606587][T13186] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 330.642272][ T5246] usb 3-1: New USB device found, idVendor=1fd2, idProduct=6007, bcdDevice= 0.00 [ 330.695463][ T5246] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 330.784651][ T5246] usb 3-1: config 0 descriptor?? [ 330.901208][T13194] netlink: 16 bytes leftover after parsing attributes in process `syz.0.4032'. [ 330.945439][T13194] device ipip0 entered promiscuous mode [ 331.214980][ T5246] hid-multitouch 0003:1FD2:6007.0002: bogus close delimiter [ 331.232514][ T5246] hid-multitouch 0003:1FD2:6007.0002: item 0 1 2 10 parsing failed [ 331.268179][ T5246] hid-multitouch: probe of 0003:1FD2:6007.0002 failed with error -22 [ 331.342813][T13211] rtc_cmos 00:00: Alarms can be up to one day in the future [ 331.382271][T13211] rtc_cmos 00:00: Alarms can be up to one day in the future [ 331.445452][ T5246] usb 3-1: USB disconnect, device number 14 [ 331.484716][T13213] netlink: 'syz.0.4042': attribute type 4 has an invalid length. [ 331.511848][T13213] netlink: 'syz.0.4042': attribute type 3 has an invalid length. [ 331.541705][T13213] netlink: 153952 bytes leftover after parsing attributes in process `syz.0.4042'. [ 331.833467][T13221] loop4: detected capacity change from 0 to 4096 [ 331.862253][T13221] ntfs3: loop4: Different NTFS' sector size (1024) and media sector size (512) [ 331.927643][T13221] ntfs3: loop4: Mark volume as dirty due to NTFS errors [ 331.981571][ T5246] usb 1-1: new full-speed USB device number 13 using dummy_hcd [ 332.192810][ T5246] usb 1-1: New USB device found, idVendor=09c0, idProduct=0203, bcdDevice=d3.43 [ 332.211524][ T5246] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 332.242969][ T5246] usb 1-1: config 0 descriptor?? [ 332.254071][ T5246] dvb-usb: found a 'Genpix SkyWalker-1 DVB-S receiver' in warm state. [ 332.632071][ T952] usb 3-1: new high-speed USB device number 15 using dummy_hcd [ 332.655520][ T5246] dvb-usb: This USB2.0 device cannot be run on a USB1.1 port. (it lacks a hardware PID filter) [ 332.676902][ T5246] dvb-usb: Genpix SkyWalker-1 DVB-S receiver error while loading driver (-19) [ 332.798054][T13259] tipc: MTU too low for tipc bearer [ 332.820498][T13258] netlink: 16 bytes leftover after parsing attributes in process `syz.3.4062'. [ 332.832032][ T952] usb 3-1: Using ep0 maxpacket: 32 [ 332.843231][ T952] usb 3-1: New USB device found, idVendor=1d50, idProduct=60a1, bcdDevice=a1.4f [ 332.869010][ T952] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 332.888126][ T952] usb 3-1: Product: syz [ 332.898264][ T952] usb 3-1: Manufacturer: syz [ 332.913859][ T952] usb 3-1: SerialNumber: syz [ 332.932404][ T5246] usb 1-1: USB disconnect, device number 13 [ 332.939083][ T952] usb 3-1: config 0 descriptor?? [ 332.986764][T13265] loop3: detected capacity change from 0 to 64 [ 333.008652][T13263] loop4: detected capacity change from 0 to 2048 [ 333.071042][T13263] NILFS (loop4): broken superblock, retrying with spare superblock (blocksize = 1024) [ 333.167424][T13268] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 333.219594][T13270] loop3: detected capacity change from 0 to 64 [ 333.363850][ T952] airspy 3-1:0.0: usb_control_msg() failed -71 request 0a [ 333.389028][ T952] airspy 3-1:0.0: Could not detect board [ 333.412097][ T952] airspy: probe of 3-1:0.0 failed with error -71 [ 333.467238][ T952] usb 3-1: USB disconnect, device number 15 [ 333.722126][T13285] loop3: detected capacity change from 0 to 16 [ 333.728857][T13287] netlink: 'syz.1.4077': attribute type 28 has an invalid length. [ 333.753639][T13285] /dev/loop3: Can't open blockdev [ 333.854288][T13290] netlink: 24 bytes leftover after parsing attributes in process `syz.4.4078'. [ 334.220035][T13306] loop1: detected capacity change from 0 to 16 [ 334.257604][T13306] erofs: (device loop1): check_layout_compatibility: unidentified incompatible feature a50000, please upgrade kernel version [ 334.317904][ T4281] Bluetooth: hci1: unexpected event for opcode 0x2040 [ 334.481855][ T5246] usb 1-1: new high-speed USB device number 14 using dummy_hcd [ 334.525346][T13316] netlink: 'syz.2.4090': attribute type 21 has an invalid length. [ 334.541831][T13316] netlink: 24 bytes leftover after parsing attributes in process `syz.2.4090'. [ 334.583496][T13319] tipc: Started in network mode [ 334.601547][T13319] tipc: Node identity fe80000000000000000000000000004, cluster identity 4711 [ 334.635306][T13319] tipc: Enabled bearer , priority 10 [ 334.701999][ T5246] usb 1-1: Using ep0 maxpacket: 16 [ 334.709128][ T5246] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 334.748061][ T5246] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 334.785738][ T5246] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 334.806507][ T5246] usb 1-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00 [ 334.840058][ T5246] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 334.870031][ T5246] usb 1-1: config 0 descriptor?? [ 334.880451][T13330] netlink: 12 bytes leftover after parsing attributes in process `syz.1.4098'. [ 334.980121][T13329] loop4: detected capacity change from 0 to 4096 [ 335.149092][T13334] netlink: 16 bytes leftover after parsing attributes in process `syz.1.4100'. [ 335.186756][ T4277] ntfs3: loop4: ntfs_evict_inode r=5 failed, -22. [ 335.210307][T13334] device ipip0 entered promiscuous mode [ 335.224647][ T4277] ntfs3: loop4: Mark volume as dirty due to NTFS errors [ 335.292498][ T5246] microsoft 0003:045E:07DA.0003: unknown main item tag 0x0 [ 335.299793][ T5246] microsoft 0003:045E:07DA.0003: ignoring exceeding usage max [ 335.351823][ T5246] microsoft 0003:045E:07DA.0003: ignoring exceeding usage max [ 335.359366][ T5246] microsoft 0003:045E:07DA.0003: unknown main item tag 0x5 [ 335.432463][ T5246] microsoft 0003:045E:07DA.0003: No inputs registered, leaving [ 335.475584][ T5246] microsoft 0003:045E:07DA.0003: hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.0-1/input0 [ 335.527246][ T5246] microsoft 0003:045E:07DA.0003: no inputs found [ 335.551867][ T5246] microsoft 0003:045E:07DA.0003: could not initialize ff, continuing anyway [ 335.601961][ T5246] usb 1-1: USB disconnect, device number 14 [ 335.761851][ T952] tipc: Node number set to 4269801536 [ 335.773643][T13346] fido_id[13346]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.0/usb1/report_descriptor': No such file or directory [ 335.870981][T13353] tipc: Started in network mode [ 335.891625][T13353] tipc: Node identity fe80000000000000000000000000004, cluster identity 4711 [ 335.942534][T13353] tipc: Enabled bearer , priority 10 [ 336.027413][T13357] loop4: detected capacity change from 0 to 1024 [ 336.207034][ T56] hfsplus: b-tree write err: -5, ino 25 [ 336.214726][ T56] hfsplus: b-tree write err: -5, ino 4 [ 336.232274][ T56] hfsplus: b-tree write err: -5, ino 2 [ 336.742308][ T952] usb 3-1: new high-speed USB device number 16 using dummy_hcd [ 336.864306][T13388] netlink: 20 bytes leftover after parsing attributes in process `syz.0.4125'. [ 336.953690][ T952] usb 3-1: unable to get BOS descriptor or descriptor too short [ 336.987874][ T952] usb 3-1: config 3 has an invalid descriptor of length 0, skipping remainder of the config [ 337.013259][ T952] usb 3-1: New USB device found, idVendor=0cf3, idProduct=1010, bcdDevice=26.db [ 337.024283][T13391] loop4: detected capacity change from 0 to 64 [ 337.031820][ T6751] tipc: Node number set to 4269801536 [ 337.037260][ T952] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 337.047093][ T952] usb 3-1: Product: syz [ 337.070217][ T952] usb 3-1: Manufacturer: syz [ 337.078121][T13391] hfs: hfs: Invalid key length: 94 [ 337.089937][ T952] usb 3-1: SerialNumber: syz [ 337.192728][ T4348] ------------[ cut here ]------------ [ 337.198262][ T4348] kernel BUG at fs/hfs/inode.c:449! [ 337.218659][ T4348] invalid opcode: 0000 [#1] PREEMPT SMP KASAN [ 337.224786][ T4348] CPU: 0 PID: 4348 Comm: kworker/u4:7 Not tainted syzkaller #0 [ 337.232441][ T4348] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 337.243216][ T4348] Workqueue: writeback wb_workfn (flush-7:4) [ 337.249234][ T4348] RIP: 0010:hfs_write_inode+0xa1a/0xa20 [ 337.254811][ T4348] Code: 87 ff e9 09 fe ff ff 44 89 f1 80 e1 07 80 c1 03 38 c1 0f 8c 54 fe ff ff 4c 89 f7 e8 b0 0a 87 ff e9 47 fe ff ff e8 76 fe 35 ff <0f> 0b 0f 1f 40 00 55 41 57 41 56 41 54 53 48 89 fb 49 bf 00 00 00 [ 337.274438][ T4348] RSP: 0018:ffffc900041b73a0 EFLAGS: 00010293 [ 337.280525][ T4348] RAX: ffffffff824c76da RBX: ffff8880534abc18 RCX: ffff888027231dc0 [ 337.289044][ T4348] RDX: 0000000000000000 RSI: ffffffff8cd25620 RDI: 0000000000000000 [ 337.297030][ T4348] RBP: ffffc900041b7530 R08: ffff888027231dc0 R09: 0000000000000003 [ 337.305005][ T4348] R10: 0000000000000004 R11: 0000000000000000 R12: dffffc0000000000 [ 337.313012][ T4348] R13: 1ffff92000836e78 R14: 0000000000000000 R15: ffff8880534abbd8 [ 337.320992][ T4348] FS: 0000000000000000(0000) GS:ffff8880b8e00000(0000) knlGS:0000000000000000 [ 337.330209][ T4348] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 337.330225][ T4348] CR2: 00007fa67034da08 CR3: 000000005bc35000 CR4: 00000000003506f0 [ 337.330239][ T4348] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 337.330248][ T4348] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 337.360714][ T4348] Call Trace: [ 337.363988][ T4348] [ 337.366910][ T4348] ? hfs_inode_write_fork+0x1a0/0x1a0 [ 337.372284][ T4348] ? __writeback_single_inode+0x4ae/0x1160 [ 337.378124][ T4348] ? __rwlock_init+0x140/0x140 [ 337.382894][ T4348] __writeback_single_inode+0x75b/0x1160 [ 337.388617][ T4348] writeback_sb_inodes+0xb30/0x1850 [ 337.393845][ T4348] ? queue_io+0x5a0/0x5a0 [ 337.398195][ T4348] ? rcu_is_watching+0x11/0xa0 [ 337.402974][ T4348] wb_writeback+0x482/0xd50 [ 337.407474][ T4348] ? percpu_ref_tryget+0x250/0x250 [ 337.412587][ T4348] ? lockdep_hardirqs_on_prepare+0x409/0x770 [ 337.418569][ T4348] ? _raw_spin_unlock_irq+0x1f/0x40 [ 337.423797][ T4348] wb_workfn+0x423/0xee0 [ 337.428175][ T4348] ? inode_wait_for_writeback+0x220/0x220 [ 337.428207][ T4348] ? lockdep_hardirqs_on_prepare+0x409/0x770 [ 337.428231][ T4348] ? read_lock_is_recursive+0x10/0x10 [ 337.428254][ T4348] ? _raw_spin_unlock_irq+0x1f/0x40 [ 337.428273][ T4348] ? process_one_work+0x7b0/0x1160 [ 337.428292][ T4348] process_one_work+0x8a2/0x1160 [ 337.428314][ T4348] ? worker_detach_from_pool+0x240/0x240 [ 337.428334][ T4348] ? _raw_spin_lock_irq+0xb7/0xf0 [ 337.428351][ T4348] ? _raw_spin_lock_irqsave+0x100/0x100 [ 337.428369][ T4348] ? kthread_data+0x4b/0xc0 [ 337.428393][ T4348] worker_thread+0xaa2/0x1270 [ 337.428416][ T4348] ? __kthread_parkme+0x162/0x1c0 [ 337.428439][ T4348] kthread+0x29d/0x330 [ 337.428452][ T4348] ? worker_clr_flags+0x1a0/0x1a0 [ 337.428469][ T4348] ? kthread_blkcg+0xd0/0xd0 [ 337.428485][ T4348] ret_from_fork+0x1f/0x30 [ 337.428509][ T4348] [ 337.428530][ T4348] Modules linked in: [ 337.513000][ T4348] ---[ end trace 0000000000000000 ]--- [ 337.541478][ T4348] RIP: 0010:hfs_write_inode+0xa1a/0xa20 [ 337.547266][ T4348] Code: 87 ff e9 09 fe ff ff 44 89 f1 80 e1 07 80 c1 03 38 c1 0f 8c 54 fe ff ff 4c 89 f7 e8 b0 0a 87 ff e9 47 fe ff ff e8 76 fe 35 ff <0f> 0b 0f 1f 40 00 55 41 57 41 56 41 54 53 48 89 fb 49 bf 00 00 00 [ 337.568395][ T4348] RSP: 0018:ffffc900041b73a0 EFLAGS: 00010293 [ 337.576649][ T4348] RAX: ffffffff824c76da RBX: ffff8880534abc18 RCX: ffff888027231dc0 [ 337.585202][ T4348] RDX: 0000000000000000 RSI: ffffffff8cd25620 RDI: 0000000000000000 [ 337.593348][ T4348] RBP: ffffc900041b7530 R08: ffff888027231dc0 R09: 0000000000000003 [ 337.602211][ T4348] R10: 0000000000000004 R11: 0000000000000000 R12: dffffc0000000000 [ 337.610236][ T4348] R13: 1ffff92000836e78 R14: 0000000000000000 R15: ffff8880534abbd8 [ 337.618308][ T4348] FS: 0000000000000000(0000) GS:ffff8880b8e00000(0000) knlGS:0000000000000000 [ 337.627272][ T4348] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 337.633892][ T4348] CR2: 00007fb454541000 CR3: 00000000302d2000 CR4: 00000000003506f0 [ 337.644942][ T4348] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 337.653030][ T4348] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 337.661210][ T4348] Kernel panic - not syncing: Fatal exception [ 337.667750][ T4348] Kernel Offset: disabled [ 337.672092][ T4348] Rebooting in 86400 seconds..