last executing test programs: 13m35.5005465s ago: executing program 2 (id=1165): r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000100)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x10, 0x5ac, 0x26c, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x5, 0x0, {0x9, 0x21, 0x0, 0x2, 0x1, {0x22, 0x5}}, {{{0x9, 0x5, 0x81, 0x3, 0x0, 0x5}}}}}]}}]}}, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, &(0x7f00000000c0)={0x24, 0x0, 0x0, &(0x7f0000000000)={0x0, 0x22, 0x5, {[@main=@item_4={0x3, 0x0, 0x9, "4225c444"}]}}, 0x0}, 0x0) 13m32.99478599s ago: executing program 2 (id=1176): unshare(0x4020400) bpf$MAP_CREATE(0x0, &(0x7f0000000700)=ANY=[@ANYBLOB="0100000004000000e27f000001"], 0x50) bpf$PROG_LOAD(0x2, &(0x7f0000000380)={0x3, 0x3, 0x0, 0x0, 0x1f, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) 13m32.28799371s ago: executing program 2 (id=1181): ioprio_set$pid(0x2, 0x0, 0x0) r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000200), 0x4000000004002, 0x0) preadv2(r0, &(0x7f0000000400)=[{&(0x7f0000001540)=""/4096, 0x1000}], 0x46, 0x2, 0x80, 0x19) 13m31.44707784s ago: executing program 2 (id=1185): syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x3000046, &(0x7f00000004c0)={[{@dioread_nolock}, {@data_err_abort}, {@inlinecrypt}, {@oldalloc}, {@data_err_ignore}, {@delalloc}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x5c}}, {@grpquota}, {@noblock_validity}, {@user_xattr}, {@mb_optimize_scan={'mb_optimize_scan', 0x3d, 0x1}}, {@errors_remount}]}, 0x11, 0x592, &(0x7f0000001100)="$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") setxattr$system_posix_acl(&(0x7f0000002a00)='.\x00', &(0x7f0000002a40)='system.posix_acl_default\x00', &(0x7f0000002b40), 0x24, 0x0) open(&(0x7f0000000340)='./bus\x00', 0x143142, 0x0) 13m30.020470702s ago: executing program 2 (id=1190): r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0) ioctl$FS_IOC_FSSETXATTR(r0, 0x401c5820, &(0x7f0000000080)={0x8}) fstat(r0, &(0x7f0000000300)) 13m28.985981339s ago: executing program 2 (id=1194): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$tipc(&(0x7f0000000240), r0) sendmsg$TIPC_CMD_GET_BEARER_NAMES(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000400)={0x1c, r1, 0x1, 0x70bd25, 0x25dfdbfe}, 0x1c}, 0x1, 0x0, 0x0, 0x8810}, 0x4844) 13m13.627299746s ago: executing program 32 (id=1194): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$tipc(&(0x7f0000000240), r0) sendmsg$TIPC_CMD_GET_BEARER_NAMES(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000400)={0x1c, r1, 0x1, 0x70bd25, 0x25dfdbfe}, 0x1c}, 0x1, 0x0, 0x0, 0x8810}, 0x4844) 8m17.554878748s ago: executing program 3 (id=2586): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0xfffffffffffffe01, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0) sendmsg$NFT_BATCH(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000240)={{0x14}, [@NFT_MSG_NEWRULE={0x60, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x34, 0x4, 0x0, 0x1, [{0x30, 0x1, 0x0, 0x1, @target={{0xb}, @val={0x20, 0x2, 0x0, 0x1, [@NFTA_TARGET_NAME={0xa, 0x1, 'AUDIT\x00'}, @NFTA_TARGET_INFO={0x5, 0x3, '\x00'}, @NFTA_TARGET_REV={0x8}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x88}}, 0x0) 8m16.748104466s ago: executing program 3 (id=2580): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0) sendmsg$NFT_BATCH(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)={{0x14}, [@NFT_MSG_NEWRULE={0x54, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x28, 0x4, 0x0, 0x1, [{0x24, 0x1, 0x0, 0x1, @exthdr={{0xb}, @val={0x14, 0x2, 0x0, 0x1, [@NFTA_EXTHDR_OP={0x8, 0x6, 0x1, 0x0, 0x1}, @NFTA_EXTHDR_OFFSET={0x8, 0x3, 0x1, 0x0, 0x4}]}}}]}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}]}], {0x14}}, 0x7c}}, 0x0) 8m15.537706772s ago: executing program 3 (id=2584): syz_open_dev$cec(&(0x7f00000000c0), 0x0, 0x80000) socketpair(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) ioctl$SIOCSIFHWADDR(r0, 0x8b06, &(0x7f0000000140)={'wlan1\x00', @random="0100000000eb"}) 8m14.697013479s ago: executing program 3 (id=2590): mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0) mount$nfs4(&(0x7f0000000040)='/', &(0x7f0000000080)='./file0\x00', 0x0, 0x197841, 0x0) umount2(&(0x7f0000000100)='./file0\x00', 0x8) 8m13.589603814s ago: executing program 3 (id=2595): pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) vmsplice(r0, &(0x7f0000000280)=[{&(0x7f0000000040)="88", 0x1}], 0x1, 0x1) close(r1) 8m12.402097205s ago: executing program 3 (id=2600): move_pages(0x0, 0x1efe, &(0x7f0000000080), 0x0, &(0x7f0000000040), 0x0) mprotect(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x1) mount$tmpfs(0x0, 0x0, &(0x7f0000000140), 0x0, 0x0) 8m10.301640661s ago: executing program 33 (id=2600): move_pages(0x0, 0x1efe, &(0x7f0000000080), 0x0, &(0x7f0000000040), 0x0) mprotect(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x1) mount$tmpfs(0x0, 0x0, &(0x7f0000000140), 0x0, 0x0) 6m35.458383047s ago: executing program 0 (id=2976): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$fou(&(0x7f0000000a00), 0xffffffffffffffff) sendmsg$FOU_CMD_DEL(r0, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000ac0)={&(0x7f0000000a40)={0x20, r1, 0x3, 0x70bd29, 0x25dfdbfd, {}, [@FOU_ATTR_LOCAL_V4={0x8, 0x6, @local}, @FOU_ATTR_REMCSUM_NOPARTIAL={0x4}]}, 0x20}, 0x1, 0x0, 0x0, 0x45}, 0x0) 6m34.522491494s ago: executing program 0 (id=2979): syz_usb_connect(0x0, 0x24, &(0x7f0000000040)=ANY=[@ANYBLOB="120100004b41460860163209ea80010203010902120001000000080904"], 0x0) r0 = syz_open_dev$I2C(&(0x7f0000000000), 0x1, 0x2402) ioctl$I2C_RDWR(r0, 0x707, &(0x7f0000000180)={&(0x7f00000002c0)=[{0x8, 0x200, 0x0, 0x0}, {0xfff8, 0x10, 0x0, 0x0}], 0x2}) 6m31.695523833s ago: executing program 0 (id=2989): r0 = open(&(0x7f0000000280)='.\x00', 0x0, 0x0) fcntl$notify(r0, 0x402, 0x5) fcntl$notify(r0, 0x402, 0x0) 6m30.814365592s ago: executing program 0 (id=2993): syz_mount_image$hfsplus(&(0x7f0000000100), &(0x7f0000000080)='./file2\x00', 0x1000000, &(0x7f0000000000)={[{@umask={'umask', 0x3d, 0xe}}, {@nobarrier}, {}, {}, {@part={'part', 0x3d, 0x6}}, {@force}, {@nobarrier}, {@nls={'nls', 0x3d, 'cp863'}}]}, 0x44, 0x70b, &(0x7f0000000300)="$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") mkdirat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x4) mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f00000000c0)='binfmt_misc\x00', 0x8001, 0x0) 6m29.615839885s ago: executing program 0 (id=2999): r0 = io_uring_setup(0x19be, &(0x7f0000000000)={0x0, 0x709f, 0x8, 0x2, 0xeb}) mmap(&(0x7f0000000000/0x200000)=nil, 0x200000, 0x0, 0x32, 0x0, 0xffffd000) io_uring_register$IORING_UNREGISTER_PBUF_RING(r0, 0x17, &(0x7f00000001c0)={0x0, 0x0, 0x1}, 0x1) 6m28.302702032s ago: executing program 0 (id=3003): mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1) r0 = socket$packet(0x11, 0x2, 0x300) getsockopt$packet_int(r0, 0x107, 0xc, 0x0, &(0x7f0000002380)) 6m24.749796666s ago: executing program 34 (id=3003): mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1) r0 = socket$packet(0x11, 0x2, 0x300) getsockopt$packet_int(r0, 0x107, 0xc, 0x0, &(0x7f0000002380)) 3m26.212367178s ago: executing program 1 (id=3742): openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0) r0 = openat$binder_debug(0xffffffffffffff9c, &(0x7f0000000440)='/sys/kernel/debug/binder/stats\x00', 0x0, 0x0) read$FUSE(r0, &(0x7f0000006380)={0x2020}, 0x2020) 3m25.248558199s ago: executing program 1 (id=3746): r0 = syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0) ioctl$DRM_IOCTL_MODE_GETRESOURCES(r0, 0xc04064a0, &(0x7f0000000740)={0x0, 0x0, 0x0, &(0x7f0000000700)=[0x0], 0x0, 0x0, 0x0, 0x1}) ioctl$DRM_IOCTL_MODE_GETENCODER(r0, 0xc01464a6, &(0x7f0000000780)={r1}) 3m24.132286284s ago: executing program 1 (id=3751): r0 = socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'vlan1\x00', 0x0}) sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000580)={&(0x7f00000002c0)=@newlink={0x34, 0x10, 0x403, 0x70b528, 0x25dfdbfe, {0x0, 0x0, 0x0, r1, 0xa1, 0x108}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x4}}}]}, 0x34}, 0x1, 0xba01, 0x0, 0x4004}, 0x810) 3m23.060255089s ago: executing program 1 (id=3756): r0 = socket$inet(0x2, 0x3, 0x33) seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x7, 0x0, 0x0, 0xfffffffb}]}) getsockopt$inet_mreqsrc(r0, 0x0, 0x53, &(0x7f0000000000)={@dev, @local, @broadcast}, &(0x7f0000000040)=0x28) 3m21.837599499s ago: executing program 1 (id=3760): r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f00000001c0)=0x10) symlink(&(0x7f0000000080)='./file0\x00', &(0x7f0000002280)='./file0\x00') 3m20.784482541s ago: executing program 1 (id=3765): r0 = openat$tun(0xffffffffffffff9c, &(0x7f00000001c0), 0x42000, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000000)={'pim6reg1\x00', 0x2}) ioctl$TUNSETLINK(r0, 0x400454cd, 0x300) 3m5.469395947s ago: executing program 35 (id=3765): r0 = openat$tun(0xffffffffffffff9c, &(0x7f00000001c0), 0x42000, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000000)={'pim6reg1\x00', 0x2}) ioctl$TUNSETLINK(r0, 0x400454cd, 0x300) 2m28.738376666s ago: executing program 8 (id=3824): r0 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) ptrace(0x10, r0) waitid(0x0, r0, 0xffffffffffffffff, 0x2, 0x0) 2m26.993730947s ago: executing program 8 (id=3937): syz_mount_image$exfat(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0xa1080a, &(0x7f0000000100)=ANY=[@ANYBLOB='dmask=00000000000000000002621,utf8,umask=00000000000000000200000,namecase=1,discard,errors=remount-ro,umask=00000000000000000200004,umask=00000000000000000003377,namecase=1,utf8,iocharset=iso8859-4,allow_utime=00000000000000000000011,dmask=01777777777777777777770,errors=remount-ro,uid=', @ANYRES32=0x0, @ANYRES16, @ANYRESDEC, @ANYRES16=0x0, @ANYRES8=0x0, @ANYRES16=0x0, @ANYRES32=0x0, @ANYRES64, @ANYRES16=0x0, @ANYRESDEC], 0x21, 0x1508, &(0x7f0000001f80)="$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") symlinkat(&(0x7f0000000080)='.\x00', 0xffffffffffffff9c, &(0x7f0000000200)='./file0\x00') mount(0x0, &(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)='configfs\x00', 0x16, 0x0) 2m24.79379264s ago: executing program 8 (id=3944): mmap(&(0x7f0000ff4000/0xc000)=nil, 0xc000, 0x1000007, 0x20031, 0xffffffffffffffff, 0xffffe000) mlock(&(0x7f00007fe000/0x800000)=nil, 0x800000) remap_file_pages(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x7, 0xa85883aad88c8301) 2m23.835942337s ago: executing program 8 (id=3949): set_mempolicy(0x6, &(0x7f00000003c0)=0x8000000000000001, 0xe0) madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15) madvise(&(0x7f0000000000/0x600000)=nil, 0x60005f, 0x3) 2m21.038899695s ago: executing program 36 (id=3949): set_mempolicy(0x6, &(0x7f00000003c0)=0x8000000000000001, 0xe0) madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15) madvise(&(0x7f0000000000/0x600000)=nil, 0x60005f, 0x3) 8.925468448s ago: executing program 7 (id=4464): r0 = socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000040)={'lo\x00', 0x0}) sendmsg$nl_route_sched(r0, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f00000000c0)=@newqdisc={0x48, 0x24, 0x4ee4e6a52ff56541, 0x70bd2c, 0x0, {0x0, 0x0, 0x0, r1, {0x0, 0x5}, {0xfff1, 0xffff}}, [@qdisc_kind_options=@q_clsact={0xb}, @TCA_EGRESS_BLOCK={0x8, 0xe, 0xc993}, @TCA_INGRESS_BLOCK={0x8, 0xd, 0xdc000000}, @TCA_RATE={0x6, 0x5, {0x3, 0x80}}]}, 0x48}, 0x1, 0x0, 0x0, 0x4000810}, 0x4000000) 7.515513324s ago: executing program 7 (id=4469): r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='ns\x00') fchdir(r0) umount2(&(0x7f0000000040)='./cgroup\x00', 0x5) 7.312012388s ago: executing program 6 (id=4470): r0 = socket$nl_route(0x10, 0x3, 0x0) setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0xc, &(0x7f0000000040)={0x80}, 0x10) sendmsg$nl_route(r0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000007c0)=@ipv4_newroute={0x2c, 0x1a, 0x1, 0x3, 0x0, {0xa}, [@RTA_IP_PROTO={0x5, 0x1b, 0x11}, @RTA_UID={0x8}]}, 0x2c}}, 0x200000c0) 6.292136522s ago: executing program 7 (id=4475): r0 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000380), 0xffffffffffffffff) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$IPVS_CMD_FLUSH(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000100)=ANY=[@ANYBLOB="c4000000", @ANYRES16=r0, @ANYBLOB="01000000000000000000011500002c000280060002004e2000000800090010000000060002004e210000080007000101000006000f000700000008000400ff7fffff1400028008000600020000000800090008000000080004000200000060000180080009005600000007000600666f00000c0007002000000002000000080008000100000008000b00736970000600010002000000080005"], 0xc4}}, 0x4008800) 6.151025369s ago: executing program 6 (id=4476): timer_create(0xfffffffc, 0x0, &(0x7f0000000040)=0x0) timer_settime(r0, 0x1, &(0x7f000006b000)={{0x77359400}, {0x0, 0x9}}, 0x0) timer_settime(r0, 0x0, &(0x7f00000001c0)={{}, {0x0, 0x3938700}}, &(0x7f0000000300)) 5.156929045s ago: executing program 6 (id=4482): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x4000000) sendmsg$NFT_BATCH(r0, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000380)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a80000000060a010400000000000000000a0000010900010073797a310000000054000480500001800b00010074617267657400004000028008000240000000012c0003007339f2f10455afb9fdd672bad09dfb78c7699c74e891a0c700000000000000cb000000000000000008000100544545000900020073797a32"], 0xa8}, 0x1, 0x0, 0x0, 0x4000850}, 0x24000840) 5.107735418s ago: executing program 7 (id=4483): r0 = syz_open_dev$vim2m(&(0x7f0000000680), 0x8, 0x2) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x800007, 0x11, r0, 0x0) ioctl$vim2m_VIDIOC_DQBUF(r0, 0xc04c5611, 0x0) 4.856447676s ago: executing program 5 (id=4484): unshare(0x4000400) r0 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/cpuinfo\x00', 0x0, 0x0) pread64(r0, &(0x7f0000000000)=""/49, 0x31, 0x8) 4.469627762s ago: executing program 4 (id=4485): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$SEG6(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$SEG6_CMD_SETHMAC(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x2c, r1, 0x1, 0x70bd26, 0x25dfdbfd, {}, [@SEG6_ATTR_SECRETLEN={0x5, 0x5, 0x4}, @SEG6_ATTR_ALGID={0x5, 0x6, 0x8}, @SEG6_ATTR_HMACKEYID={0x8}]}, 0x2c}, 0x1, 0x0, 0x0, 0x10}, 0x400c0c4) 4.395090751s ago: executing program 9 (id=4486): r0 = syz_init_net_socket$rose(0xb, 0x5, 0x0) listen(r0, 0x0) listen(r0, 0x5) 4.348880336s ago: executing program 6 (id=4487): r0 = socket$inet_mptcp(0x2, 0x1, 0x106) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000300)='vxcan1\x00', 0x10) connect$inet(r0, &(0x7f0000000000)={0x2, 0xce22, @local}, 0x10) 4.174623411s ago: executing program 7 (id=4488): r0 = syz_usb_connect(0x0, 0x2d, &(0x7f0000000d00)=ANY=[@ANYBLOB="120100021982302013042360e5ec0102030109021b0001000060020904840001ee48b100090582"], 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, &(0x7f0000000400)={0x18, &(0x7f0000000140)={0x20, 0x3, 0x1, '\"'}, 0x0, 0x0, 0x0, 0x0}) 3.893478658s ago: executing program 5 (id=4489): bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000080)='contention_end\x00'}, 0x10) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x14, 0x4, 0x8, 0xda, 0x0, 0x1}, 0x48) bpf$BPF_GET_MAP_INFO(0x4, &(0x7f0000000100)={r0, 0x58, &(0x7f0000000080)}, 0x10) 3.567421525s ago: executing program 9 (id=4490): creat(&(0x7f0000000000)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x141) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000080)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a1d010000000000000000020000000900010073797a3000000000080002400000000098000000030a01020000000000000000020000000900010073797a30000000000900030073797a32000000006b00030091"], 0xfc}, 0x1, 0x0, 0x0, 0x40010}, 0x4000914) 3.493692798s ago: executing program 4 (id=4491): r0 = userfaultfd(0x1) ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000000080)) ioctl$UFFDIO_MOVE(r0, 0xc028aa05, &(0x7f0000000040)={&(0x7f0000333000/0x3000)=nil, &(0x7f0000b17000/0x2000)=nil, 0x3000, 0x1}) 3.184790602s ago: executing program 5 (id=4492): syz_mount_image$hfs(&(0x7f0000000840), &(0x7f0000000100)='./file0\x00', 0x2800000, &(0x7f0000000040)={[{@codepage={'codepage', 0x3d, 'ascii'}}, {@iocharset={'iocharset', 0x3d, 'cp950'}}, {@gid}, {@dir_umask={'dir_umask', 0x3d, 0xf1}}]}, 0x1, 0x2e6, &(0x7f0000000180)="$eJzs3c9u00oUx/HfOEmb/lGvb9urK3UDKlSCTUWBBYJFEMqWPSsENKlUERXRFgnYUBBLxAOw5xV4CDYgXgBWrHiA7oxmMnGdxnba0tgt/X6kRvZ4ZnxGY8dzLEEE4My60/z+8dpP+2ekiiqSbkqBpLpUlfSf/q8/29he3+60W3kdVVwL+2fUbWkG6qxutNOa2nauhRfavaqmk2VJZrBnHFEURbd/lB0ESufu/hSBNO7vQ3e8XnBco7IjnSs7hqIlJ9jsalfPNVNiOACAE8A//wP/mJh2RUZBIC35x/7pef7fWhhaZbeQQApzvTNQFOU2SDz/3eouMnZ+/3GH9vI9l2jZ40EvSzxIMLV9+2PqXll9C0wzLKt0sQQTa+tVLa++VivQGzW8RLV599nqXro9Q6JdTMlNc2T3VtPdye5o3Ipyv15Ia+ud9rjdSMTfi2DucGf8c+az+Wrum1Af1IrXf9XI2GlyMxXum6mgZuO/kt3jlGtla8kPrNFoBH1V/nUnWfBn8IaMsp6ekST77L0g2IkjyIvTnXtW/a8VuqNbGdJqLq1VGO9ltJrva1XxV8Ly6pNO7quU0egN0bw398yifumTmon1f2DjW1Lizsz7qjeupr8yuuMZS69ZdTXDgSfH3u1yPo7AGz/02CBlvS3L8E6PdEMzWy9ePq50Ou1Nu/EwZePp9KbxJbW3Umqd0W9UlFNHO3slkfUqig7aczTK4C8fa4f2+yMusbdPWmV7l8UlQdHTdFY2ml+Ud0EO3agnp7LMjSiSMg6N7HsKJ8iW6U26261qouyIUDC77jLd/M+t5P2qziUo9iPMWafnJ5nq63ElzuD6l4Kz7nPyUBncVHYGlzjj1Yyc0eVcFy5JFxOFRrlnDH2cfwnT1Dc94P0/AAAAAAAAAAAAAAAAAADAaVPEvzQoe4wAAAAAAAAAAAAAAAAAAAAAAJx2R/r937T/I979/m9YyO//AjgevwMAAP//cch3jQ==") r0 = open(&(0x7f00000001c0)='.\x00', 0x0, 0x0) getdents(r0, &(0x7f0000000280)=""/4096, 0x9005) 2.872599982s ago: executing program 9 (id=4493): r0 = socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000040)={'team0\x00', 0x0}) sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000100)=@newlink={0x5c, 0x10, 0xffffffffffffffff, 0x70bd27, 0x25dfdbfe, {0x0, 0x0, 0x0, 0x0, 0xc15}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0xc, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6, 0x1, 0x4}]}}}, @IFLA_LINK={0x8, 0x5, r1}, @IFLA_BROADCAST={0xa, 0x2, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x1}}, @IFLA_ADDRESS={0xa, 0x1, @local}]}, 0x5c}, 0x1, 0x0, 0x0, 0x28001}, 0x8000) 2.82805603s ago: executing program 6 (id=4494): mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0xa, 0x31, 0xffffffffffffffff, 0x0) madvise(&(0x7f0000000000/0xc00000)=nil, 0xc00304, 0x17) mlock(&(0x7f0000ffc000/0x4000)=nil, 0x4000) 2.642356916s ago: executing program 4 (id=4495): r0 = socket$kcm(0x23, 0x2, 0x0) sendmsg$sock(r0, &(0x7f0000000340)={0x0, 0x0, 0x0}, 0x0) sendmmsg$sock(r0, &(0x7f0000005080)=[{{0x0, 0x0, 0x0}}], 0x1, 0x40) 2.202159927s ago: executing program 5 (id=4496): r0 = socket$inet6(0x10, 0x2, 0x0) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000100)={0x2, &(0x7f0000000040)=[{0x48, 0x0, 0x0, 0xfffffffd}, {0x16}]}, 0x8) sendto$inet6(r0, &(0x7f00000002c0)="1c0000001200050f0c1000000049b23e9b200a00080001c000000001", 0x1c, 0x0, 0x0, 0x0) 1.747949378s ago: executing program 9 (id=4497): r0 = socket$kcm(0xa, 0x1, 0x106) ioctl$sock_kcm_SIOCKCMUNATTACH(r0, 0x80108906, 0x0) ioctl$sock_kcm_SIOCKCMATTACH(r0, 0x8906, 0x0) 1.668074677s ago: executing program 4 (id=4498): mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) getsockopt$inet_tcp_buf(r0, 0x6, 0x1a, 0x0, &(0x7f0000000040)) 1.0936725s ago: executing program 9 (id=4499): r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000440), 0x50) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x6, 0x11, &(0x7f0000000b00)=ANY=[@ANYBLOB="1802000063f9ffff00000000000000008500000041000000b7080000000000007b8af8ff00000000b7080000050000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b705000008000000850000001000000095"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r1, 0x11, 0x2100, 0x0, &(0x7f0000000100), 0x0, 0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x50) 1.093283245s ago: executing program 5 (id=4500): r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000080), 0x20605) ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r0, 0xc08c5332, &(0x7f0000000180)={0x80000001, 0x3, 0x0, 'queue1\x00', 0x8001}) writev(r0, &(0x7f0000000580)=[{&(0x7f0000000000)="218292", 0xfff6}], 0x2) 949.133598ms ago: executing program 4 (id=4501): r0 = openat$vicodec0(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0) r1 = epoll_create(0x1) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000040)={0x10000010}) 425.476503ms ago: executing program 7 (id=4502): r0 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_tx_ring(r0, 0x107, 0x18, &(0x7f0000000400)=@req3={0xc, 0x47, 0x8004, 0x4, 0x3, 0xffffffff, 0xfffe0}, 0x1c) recvmmsg(r0, &(0x7f0000004300)=[{{0x0, 0x0, &(0x7f0000002d40)=[{&(0x7f00000019c0)=""/4096, 0x1000}], 0x1}, 0x9}], 0x1, 0x0, 0x0) 390.697237ms ago: executing program 6 (id=4503): r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f0000000080), r0) sendmsg$NLBL_UNLABEL_C_STATICADDDEF(r0, &(0x7f00000002c0)={0x0, 0xfffc, &(0x7f0000000000)={&(0x7f0000000200)=ANY=[@ANYBLOB='D\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="410000000000000001000603000014000300060a0004090300f006e8ffffffffffff07000700263a0909140002"], 0x44}, 0x1, 0x1000000}, 0x0) 230.561253ms ago: executing program 5 (id=4504): r0 = socket(0x2, 0x80805, 0x0) sendmmsg$inet_sctp(r0, &(0x7f00000032c0)=[{&(0x7f0000000440)=@in={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, &(0x7f00000004c0)=[{&(0x7f0000000100)="03", 0x1}], 0x1}], 0x1, 0x0) sendmmsg$inet_sctp(r0, &(0x7f00000032c0)=[{&(0x7f00000000c0)=@in={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, &(0x7f0000000200)=[{&(0x7f0000000100)='a', 0x1}], 0x1f, &(0x7f0000000000)=ANY=[@ANYBLOB="2c0000008400000001000000000000000c"], 0x2c}], 0x1, 0x0) 124.185782ms ago: executing program 9 (id=4505): io_uring_setup(0x1b19, &(0x7f0000000000)={0x0, 0x7fb7, 0x20000, 0x3, 0x23f}) mprotect(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x4) bpf$OBJ_PIN_PROG(0x6, &(0x7f0000000000)=@o_path={0x0}, 0x18) 0s ago: executing program 4 (id=4506): r0 = syz_usb_connect(0x0, 0x2d, &(0x7f0000000000)=ANY=[@ANYBLOB="1201000041436120410e5150e8d5000000010902f98a5c01000000090401001186eee2000905821704"], 0x0) syz_usb_control_io$uac1(r0, 0x0, 0x0) syz_usb_ep_write$ath9k_ep1(r0, 0x82, 0xfffffffffffffddf, &(0x7f0000000040)=ANY=[]) kernel console output (not intermixed with test programs): 7.158005][T12979] NILFS (loop5): vblocknr = 23 has abnormal lifetime: start cno (= 4294967298) > current cno (= 3) [ 917.169364][T12979] NILFS error (device loop5): nilfs_bmap_propagate: broken bmap (inode number=4) [ 917.362623][T12979] Remounting filesystem read-only [ 917.778103][ T8770] NILFS (loop5): disposed unprocessed dirty file(s) when stopping log writer [ 919.587052][T12873] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 920.565059][T13009] loop5: detected capacity change from 0 to 512 [ 920.844418][T13009] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e002e028, mo2=0002] [ 920.858521][T13009] System zones: 0-2, 18-18, 34-34 [ 921.003097][T13009] EXT4-fs error (device loop5): ext4_mb_generate_buddy:1306: group 0, block bitmap and bg descriptor inconsistent: 42 vs 41 free clusters [ 921.092530][T13009] EXT4-fs (loop5): Remounting filesystem read-only [ 921.212178][T13009] EXT4-fs (loop5): 1 truncate cleaned up [ 921.220619][T13009] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 921.234141][T13009] ext4 filesystem being mounted at /355/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 921.249755][T12130] Quota error (device loop5): dquot_write_dquot: Can't write quota structure (error -30). Quota may get out of sync! [ 921.263222][T12130] EXT4-fs (loop5): Quota write (off=5120, len=1024) cancelled because transaction is not started [ 921.274320][T12130] Quota error (device loop5): write_blk: dquota write failed [ 921.282210][T12130] Quota error (device loop5): remove_free_dqentry: Can't write block (5) with free entries [ 921.295899][T12130] EXT4-fs (loop5): Quota write (off=5120, len=1024) cancelled because transaction is not started [ 921.308437][T12130] Quota error (device loop5): write_blk: dquota write failed [ 921.316043][T12130] Quota error (device loop5): free_dqentry: Can't move quota data block (5) to free list [ 921.327166][T12130] EXT4-fs (loop5): Quota write (off=8, len=24) cancelled because transaction is not started [ 921.338347][T12130] Quota error (device loop5): v2_write_file_info: Can't write info structure [ 921.347600][T12130] Quota error (device loop5): dquot_write_dquot: Can't write quota structure (error -30). Quota may get out of sync! [ 921.360744][T12130] Quota error (device loop5): do_check_range: Getting dqdh_entries 15 out of range 0-14 [ 921.785679][ T8770] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 922.953518][T12873] veth0_vlan: entered promiscuous mode [ 922.993770][T13030] loop1: detected capacity change from 0 to 512 [ 923.009333][ T5109] Bluetooth: hci0: command 0x0c1a tx timeout [ 923.077647][T12873] veth1_vlan: entered promiscuous mode [ 923.224114][T13030] EXT4-fs (loop1): mounted filesystem 00800000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 923.366373][T13030] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1306: group 0, block bitmap and bg descriptor inconsistent: 41 vs 39667 free clusters [ 923.652724][T12873] veth0_macvtap: entered promiscuous mode [ 923.751558][T12873] veth1_macvtap: entered promiscuous mode [ 923.783406][ T5816] EXT4-fs (loop1): unmounting filesystem 00800000-0000-0000-0000-000000000000. [ 924.043966][T12873] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 924.190154][T12873] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 924.294440][ T3764] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 924.357720][ T3764] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 924.435605][ T3764] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 924.535391][ T3764] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 926.258756][T13055] loop4: detected capacity change from 0 to 1024 [ 926.333798][T13055] EXT4-fs: inline encryption not supported [ 926.340276][T13055] EXT4-fs: Ignoring removed nobh option [ 926.340837][T13055] EXT4-fs: Ignoring removed mblk_io_submit option [ 926.582839][T13055] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 927.095350][ T5825] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 928.883811][T13089] loop5: detected capacity change from 0 to 64 [ 930.966943][T13112] loop5: detected capacity change from 0 to 64 [ 932.600068][T13129] netlink: 4 bytes leftover after parsing attributes in process `syz.4.3112'. [ 933.295956][T13138] loop6: detected capacity change from 0 to 128 [ 933.305496][ T4514] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 933.317035][ T4514] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 933.662500][ T4203] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 933.671919][ T4203] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 934.248308][T13144] loop5: detected capacity change from 0 to 1024 [ 934.460384][T13144] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 935.152264][ T8770] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 935.417106][ T792] usb 2-1: new high-speed USB device number 18 using dummy_hcd [ 935.680302][ T792] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x8E has invalid wMaxPacketSize 0 [ 935.690894][ T792] usb 2-1: config 0 interface 0 altsetting 0 bulk endpoint 0x8E has invalid maxpacket 0 [ 935.702171][ T792] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0xA has invalid wMaxPacketSize 0 [ 935.712444][ T792] usb 2-1: config 0 interface 0 altsetting 0 bulk endpoint 0xA has invalid maxpacket 0 [ 935.823553][T13164] netlink: 296 bytes leftover after parsing attributes in process `syz.7.3125'. [ 935.895553][ T792] usb 2-1: New USB device found, idVendor=05ab, idProduct=0301, bcdDevice= 1.00 [ 935.905330][ T792] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 935.913949][ T792] usb 2-1: Product: syz [ 935.919137][ T792] usb 2-1: Manufacturer: syz [ 935.923945][ T792] usb 2-1: SerialNumber: syz [ 936.098582][ T792] usb 2-1: config 0 descriptor?? [ 936.121895][ T792] ums-isd200 2-1:0.0: USB Mass Storage device detected [ 936.434571][ T792] scsi host1: usb-storage 2-1:0.0 [ 936.690658][ T792] usb 2-1: USB disconnect, device number 18 [ 937.886846][T13183] netlink: 300 bytes leftover after parsing attributes in process `syz.7.3133'. [ 937.896277][T13183] tipc: Invalid UDP bearer configuration [ 937.899783][T13183] tipc: Enabling of bearer rejected, failed to enable media [ 938.242209][T13185] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3134'. [ 938.443784][T13189] loop5: detected capacity change from 0 to 512 [ 938.532384][T13189] EXT4-fs: Ignoring removed orlov option [ 938.627445][T13189] EXT4-fs (loop5): mounting ext3 file system using the ext4 subsystem [ 938.740369][T13189] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8042c119, mo2=0002] [ 938.867363][T13189] EXT4-fs error (device loop5): ext4_iget_extra_inode:5073: inode #15: comm syz.5.3136: corrupted in-inode xattr: e_value size too large [ 938.950458][T13189] EXT4-fs error (device loop5): ext4_orphan_get:1396: comm syz.5.3136: couldn't read orphan inode 15 (err -117) [ 939.001543][T13189] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 939.264234][T13197] netlink: 36 bytes leftover after parsing attributes in process `syz.4.3140'. [ 939.322567][T13200] netlink: 36 bytes leftover after parsing attributes in process `syz.4.3140'. [ 939.702939][ T8770] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 940.309212][T13209] loop1: detected capacity change from 0 to 64 [ 941.242676][T13217] netlink: 56 bytes leftover after parsing attributes in process `syz.7.3147'. [ 941.252708][T13217] netlink: 8 bytes leftover after parsing attributes in process `syz.7.3147'. [ 941.631235][T13223] loop5: detected capacity change from 0 to 64 [ 942.321295][ T8770] hfs: node 4:3 still has 1 user(s)! [ 942.681804][T13232] netlink: 28 bytes leftover after parsing attributes in process `syz.7.3154'. [ 942.695797][T13232] netlink: 28 bytes leftover after parsing attributes in process `syz.7.3154'. [ 944.472019][T13250] tipc: Started in network mode [ 944.480517][T13250] tipc: Node identity 1eae066dc0c3, cluster identity 4711 [ 944.488951][T13250] tipc: Enabled bearer , priority 10 [ 944.590534][T13252] netlink: 48 bytes leftover after parsing attributes in process `syz.4.3164'. [ 945.606864][ T42] tipc: Node number set to 3731687021 [ 945.693507][T13264] loop7: detected capacity change from 0 to 128 [ 945.706974][T13263] netlink: 12 bytes leftover after parsing attributes in process `syz.5.3169'. [ 945.799191][T13264] UDF-fs: error (device loop7): udf_read_tagged: read failed, block=256, location=256 [ 945.911073][T13264] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 946.291740][T13260] loop4: detected capacity change from 0 to 4096 [ 946.383923][T13260] ntfs3(loop4): Different NTFS sector size (1024) and media sector size (512). [ 946.733255][T13260] ntfs3(loop4): Failed to load $Secure (-22). [ 946.740049][T13260] ntfs3(loop4): Failed to initialize $Secure (-22). [ 947.751311][T13276] nbd: must specify at least one socket [ 947.935782][T13278] loop5: detected capacity change from 0 to 64 [ 949.084063][T13291] loop4: detected capacity change from 0 to 8 [ 949.335657][T13293] netlink: 4 bytes leftover after parsing attributes in process `syz.7.3184'. [ 950.430753][T13305] loop6: detected capacity change from 0 to 256 [ 950.669736][T13305] exFAT-fs (loop6): failed to load upcase table (idx : 0x00010000, chksum : 0xd22393c8, utbl_chksum : 0xe619d30d) [ 950.900328][T13305] exFAT-fs (loop6): failed to exfat_utf8_to_utf16 (err : -22) nls len : 2 [ 952.628431][T13324] loop4: detected capacity change from 0 to 2048 [ 952.682635][T13324] EXT4-fs: Ignoring removed mblk_io_submit option [ 952.821273][T13324] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 952.956234][T13333] netdevsim netdevsim5 netdevsim0: entered promiscuous mode [ 952.967293][T13333] macsec1: entered promiscuous mode [ 952.973830][T13333] macsec1: entered allmulticast mode [ 952.979576][T13333] netdevsim netdevsim5 netdevsim0: entered allmulticast mode [ 953.063804][T13333] netdevsim netdevsim5 netdevsim0: left allmulticast mode [ 953.075834][T13333] netdevsim netdevsim5 netdevsim0: left promiscuous mode [ 953.121975][T13324] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.3198: bg 0: block 234: padding at end of block bitmap is not set [ 953.190651][T13324] EXT4-fs (loop4): Remounting filesystem read-only [ 953.652702][ T5825] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 955.168755][T13352] loop6: detected capacity change from 0 to 1024 [ 955.811790][ T3426] hfsplus: b-tree write err: -5, ino 4 [ 956.766015][T13370] netlink: 12 bytes leftover after parsing attributes in process `syz.1.3218'. [ 957.245414][T13372] loop6: detected capacity change from 0 to 2048 [ 957.410495][T13372] NILFS (loop6): broken superblock, retrying with spare superblock (blocksize = 1024) [ 957.521294][T13376] NILFS (loop6): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 958.074893][T13381] loop5: detected capacity change from 0 to 256 [ 958.119790][T13381] exfat: Deprecated parameter 'utf8' [ 958.135091][T13381] exfat: Deprecated parameter 'utf8' [ 958.142062][T13381] exfat: Deprecated parameter 'utf8' [ 958.299025][T13381] exFAT-fs (loop5): failed to load upcase table (idx : 0x00011f3f, chksum : 0x96b62a4c, utbl_chksum : 0xe619d30d) [ 958.907435][T13387] netlink: 'syz.4.3226': attribute type 5 has an invalid length. [ 958.915565][T13387] netlink: 24 bytes leftover after parsing attributes in process `syz.4.3226'. [ 959.299548][T13389] loop7: detected capacity change from 0 to 256 [ 961.153015][T13410] loop4: detected capacity change from 0 to 512 [ 961.259392][T13410] EXT4-fs: Ignoring removed orlov option [ 961.363444][T13410] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 961.505743][T13412] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3237'. [ 961.524076][T13410] EXT4-fs (loop4): orphan cleanup on readonly fs [ 961.585553][T13410] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.3236: bg 0: block 248: padding at end of block bitmap is not set [ 961.698956][T13410] Quota error (device loop4): write_blk: dquota write failed [ 961.707283][T13410] Quota error (device loop4): qtree_write_dquot: Error -117 occurred while creating quota [ 961.717920][T13410] EXT4-fs error (device loop4): ext4_acquire_dquot:6986: comm syz.4.3236: Failed to acquire dquot type 1 [ 961.847315][T13410] EXT4-fs (loop4): 1 truncate cleaned up [ 961.888092][T13410] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 962.254951][ T5825] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 962.831681][T13423] loop1: detected capacity change from 0 to 512 [ 963.049259][T13423] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e002e028, mo2=0002] [ 963.111693][T13423] System zones: 0-2, 18-18, 34-34 [ 963.264386][T13423] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1306: group 0, block bitmap and bg descriptor inconsistent: 42 vs 41 free clusters [ 963.344276][T13423] EXT4-fs (loop1): Remounting filesystem read-only [ 963.384983][T13423] EXT4-fs (loop1): 1 truncate cleaned up [ 963.396822][T13423] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 963.413002][ T3764] Quota error (device loop1): dquot_write_dquot: Can't write quota structure (error -30). Quota may get out of sync! [ 963.413242][T13423] ext4 filesystem being mounted at /676/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 963.427969][ T3764] EXT4-fs (loop1): Quota write (off=5120, len=1024) cancelled because transaction is not started [ 963.447626][ T3764] Quota error (device loop1): write_blk: dquota write failed [ 963.455290][ T3764] Quota error (device loop1): remove_free_dqentry: Can't write block (5) with free entries [ 963.465950][ T3764] EXT4-fs (loop1): Quota write (off=5120, len=1024) cancelled because transaction is not started [ 963.481433][ T3764] Quota error (device loop1): write_blk: dquota write failed [ 963.490582][ T3764] Quota error (device loop1): free_dqentry: Can't move quota data block (5) to free list [ 963.501362][ T3764] EXT4-fs (loop1): Quota write (off=8, len=24) cancelled because transaction is not started [ 963.511976][ T3764] Quota error (device loop1): v2_write_file_info: Can't write info structure [ 963.521327][ T3764] Quota error (device loop1): dquot_write_dquot: Can't write quota structure (error -30). Quota may get out of sync! [ 963.534489][ T3764] Quota error (device loop1): do_check_range: Getting dqdh_entries 15 out of range 0-14 [ 963.800566][T13437] netlink: 'syz.5.3246': attribute type 8 has an invalid length. [ 964.040544][T13440] netdevsim netdevsim6 netdevsim0: entered allmulticast mode [ 964.272099][ T5816] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 964.592126][T13441] loop4: detected capacity change from 0 to 2048 [ 964.714215][ T42] kernel write not supported for file /uinput (pid: 42 comm: kworker/1:1) [ 964.727819][T13441] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 967.224665][T13471] program syz.5.3263 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 967.579497][T13476] loop4: detected capacity change from 0 to 1024 [ 968.082670][T13478] netlink: 774 bytes leftover after parsing attributes in process `syz.5.3265'. [ 968.402607][T12130] hfsplus: b-tree write err: -5, ino 4 [ 969.692052][T13491] loop5: detected capacity change from 0 to 4096 [ 969.733241][T13491] ntfs3(loop5): Different NTFS sector size (1024) and media sector size (512). [ 970.082806][T13491] ntfs3(loop5): ino=5, "/" ntfs_readdir [ 970.091919][T13491] ntfs3(loop5): Mark volume as dirty due to NTFS errors [ 970.873797][T13505] loop7: detected capacity change from 0 to 764 [ 971.017400][T13505] rock: corrupted directory entry. extent=32, offset=2044, size=237 [ 971.290079][T13509] veth1_macvtap: left promiscuous mode [ 971.295879][T13509] macsec0: entered promiscuous mode [ 971.439095][T13511] veth1_macvtap: entered promiscuous mode [ 971.446340][T13511] macsec0: left promiscuous mode [ 971.522809][T13512] netlink: 36 bytes leftover after parsing attributes in process `syz.1.3280'. [ 972.157452][ T1288] ieee802154 phy0 wpan0: encryption failed: -22 [ 972.164137][ T1288] ieee802154 phy1 wpan1: encryption failed: -22 [ 973.122051][T13523] loop6: detected capacity change from 0 to 1024 [ 973.332506][T13523] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 973.534955][T13523] EXT4-fs error (device loop6): ext4_xattr_inode_iget:441: inode #11: comm syz.6.3285: missing EA_INODE flag [ 973.565235][T13523] EXT4-fs (loop6): Remounting filesystem read-only [ 974.142998][T11938] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 974.345839][T13540] binder: 13539:13540 ioctl c018620c 80000100 returned -22 [ 975.760410][T13553] loop6: detected capacity change from 0 to 2048 [ 975.812676][ T30] audit: type=1326 audit(1768519536.784:141): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13554 comm="syz.5.3300" exe="/root/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7fb1539 code=0x0 [ 975.915004][T13553] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 976.980398][T13565] loop1: detected capacity change from 0 to 128 [ 977.067091][T13565] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 977.154006][T13565] ext4 filesystem being mounted at /688/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 977.471744][ T5816] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 978.454590][ T42] usb 2-1: new full-speed USB device number 19 using dummy_hcd [ 978.614297][T13584] loop7: detected capacity change from 0 to 64 [ 978.675714][ T42] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 978.690085][ T42] usb 2-1: New USB device found, idVendor=04d8, idProduct=c002, bcdDevice= 0.00 [ 978.699602][ T42] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 978.803405][ T42] usb 2-1: config 0 descriptor?? [ 979.283298][ T42] hid-picolcd 0003:04D8:C002.0027: unbalanced collection at end of report description [ 979.363229][ T42] hid-picolcd 0003:04D8:C002.0027: device report parse failed [ 979.374820][ T42] hid-picolcd 0003:04D8:C002.0027: probe with driver hid-picolcd failed with error -22 [ 979.490050][ T42] usb 2-1: USB disconnect, device number 19 [ 979.947667][T13592] netlink: 32 bytes leftover after parsing attributes in process `syz.5.3315'. [ 981.002166][T13600] loop5: detected capacity change from 0 to 1024 [ 981.136167][T13607] netlink: 4 bytes leftover after parsing attributes in process `syz.4.3321'. [ 984.268199][T13638] loop7: detected capacity change from 0 to 1024 [ 984.414354][T13639] loop4: detected capacity change from 0 to 1024 [ 984.570540][T13639] hfsplus: invalid length 32517 has been corrected to 255 [ 986.197072][T13655] loop6: detected capacity change from 0 to 512 [ 986.436600][T13660] loop1: detected capacity change from 0 to 512 [ 986.472189][T13660] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended [ 986.523170][T13655] EXT4-fs (loop6): 1 orphan inode deleted [ 986.534276][T13655] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 986.582518][ T4360] Quota error (device loop6): do_check_range: Getting dqdh_entries 15 out of range 0-14 [ 986.593353][ T4360] EXT4-fs error (device loop6): ext4_release_dquot:7022: comm kworker/u8:42: Failed to release dquot type 1 [ 986.687785][T13655] ext4 filesystem being mounted at /134/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 986.744340][T13660] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.3347: bg 0: block 64: padding at end of block bitmap is not set [ 986.858020][T13660] Quota error (device loop1): write_blk: dquota write failed [ 986.866351][T13660] Quota error (device loop1): qtree_write_dquot: Error -117 occurred while creating quota [ 986.880184][T13660] EXT4-fs error (device loop1): ext4_acquire_dquot:6986: comm syz.1.3347: Failed to acquire dquot type 0 [ 986.919743][T13660] EXT4-fs (loop1): 1 truncate cleaned up [ 986.933460][T13660] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 987.002476][T13666] comedi comedi3: 8255: I/O port conflict (0x404f26,4) [ 987.413012][T11938] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 987.679682][ T5816] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 990.093438][T13695] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3360'. [ 990.111770][ T42] usb 6-1: new high-speed USB device number 6 using dummy_hcd [ 990.299633][ T42] usb 6-1: Using ep0 maxpacket: 32 [ 990.345122][ T42] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 253, changing to 11 [ 990.359828][ T42] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 990.373170][ T42] usb 6-1: New USB device found, idVendor=046d, idProduct=c20a, bcdDevice= 0.00 [ 990.385665][ T42] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 990.573902][ T42] usb 6-1: config 0 descriptor?? [ 991.094073][ T42] logitech 0003:046D:C20A.0028: unknown main item tag 0x0 [ 991.104945][ T42] logitech 0003:046D:C20A.0028: unknown main item tag 0x0 [ 991.112538][ T42] logitech 0003:046D:C20A.0028: unknown main item tag 0x0 [ 991.123066][ T42] logitech 0003:046D:C20A.0028: unknown main item tag 0x0 [ 991.137346][ T42] logitech 0003:046D:C20A.0028: unknown main item tag 0x0 [ 991.144763][ T42] logitech 0003:046D:C20A.0028: unknown main item tag 0x0 [ 991.159182][ T42] logitech 0003:046D:C20A.0028: unknown main item tag 0x0 [ 991.381908][ T42] logitech 0003:046D:C20A.0028: hidraw0: USB HID v0.00 Device [HID 046d:c20a] on usb-dummy_hcd.5-1/input0 [ 991.397274][ T42] logitech 0003:046D:C20A.0028: no inputs found [ 991.515190][ T42] usb 6-1: USB disconnect, device number 6 [ 992.521580][T13711] fido_id[13711]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.5/usb6/report_descriptor': No such file or directory [ 993.015014][T13722] x_tables: ip_tables: recent.0 match: invalid size 216 (kernel) != (user) 4096 [ 993.842281][T13730] usb usb8: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK. [ 994.864950][T13741] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3381'. [ 996.732019][T13761] loop4: detected capacity change from 0 to 256 [ 998.240987][T13776] loop7: detected capacity change from 0 to 512 [ 998.285346][T13776] EXT4-fs (loop7): feature flags set on rev 0 fs, running e2fsck is recommended [ 998.494874][T13776] EXT4-fs error (device loop7): ext4_orphan_get:1391: inode #15: comm syz.7.3398: inode has both inline data and extents flags [ 998.627574][T13776] EXT4-fs error (device loop7): ext4_orphan_get:1396: comm syz.7.3398: couldn't read orphan inode 15 (err -117) [ 998.742554][T13776] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 999.353027][T12873] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 999.407788][T13790] loop6: detected capacity change from 0 to 256 [ 999.477590][T13790] exFAT-fs (loop6): failed to load upcase table (idx : 0x00010000, chksum : 0xf6e00961, utbl_chksum : 0xe619d30d) [ 999.904959][T13792] loop4: detected capacity change from 0 to 1024 [ 1000.228529][T13792] hfsplus: xattr searching failed [ 1001.362992][T13807] hugetlbfs: Bad value '.' for mount option 'nr_inodes' [ 1001.362992][T13807] [ 1001.850983][T13811] loop4: detected capacity change from 0 to 1024 [ 1002.106890][T13811] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1002.331464][T13811] EXT4-fs error (device loop4): ext4_xattr_inode_iget:441: inode #11: comm syz.4.3412: missing EA_INODE flag [ 1002.469671][T13811] EXT4-fs (loop4): Remounting filesystem read-only [ 1002.983080][ T5825] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1003.689939][T13835] loop5: detected capacity change from 0 to 64 [ 1004.933057][T13849] loop7: detected capacity change from 0 to 16 [ 1005.009799][T13849] erofs (device loop7): mounted with root inode @ nid 36. [ 1005.847390][T13855] loop5: detected capacity change from 0 to 512 [ 1005.886737][T13855] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode [ 1006.035169][T13855] EXT4-fs (loop5): 1 orphan inode deleted [ 1006.044564][T13855] EXT4-fs (loop5): 1 truncate cleaned up [ 1006.053378][T13855] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1006.251236][T13855] EXT4-fs error (device loop5): ext4_lookup:1785: inode #15: comm syz.5.3432: iget: bad extra_isize 46 (inode size 256) [ 1006.340193][T13855] EXT4-fs (loop5): Remounting filesystem read-only [ 1006.945057][ T8770] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1009.221756][T13881] loop7: detected capacity change from 0 to 4096 [ 1010.073280][T13894] loop1: detected capacity change from 0 to 2048 [ 1010.322998][T13899] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 1010.493841][T13894] NILFS (loop1): DAT doesn't have a block to manage vblocknr = 1970324836974592 [ 1010.506695][T13894] NILFS error (device loop1): nilfs_bmap_truncate: broken bmap (inode number=15) [ 1010.604378][T13894] Remounting filesystem read-only [ 1010.610123][T13894] NILFS (loop1): error -5 truncating bmap (ino=15) [ 1010.618133][T13894] syz.1.3450: attempt to access beyond end of device [ 1010.618133][T13894] loop1: rw=8388608, sector=2199023255622, nr_sectors = 2 limit=2048 [ 1010.633456][T13894] NILFS (loop1): I/O error reading meta-data file (ino=6, block-offset=0) [ 1011.127930][ T5816] NILFS (loop1): disposed unprocessed dirty file(s) when detaching log writer [ 1011.346989][T13903] MPI: mpi too large (113288 bits) [ 1011.938734][T13910] loop4: detected capacity change from 0 to 1024 [ 1012.129940][T13910] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=842c018, mo2=0002] [ 1012.163427][T13910] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1012.416106][T13910] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.3458: bg 0: block 88: padding at end of block bitmap is not set [ 1012.970923][ T5825] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1014.493075][T13939] loop4: detected capacity change from 0 to 256 [ 1014.559104][T13939] exfat: Deprecated parameter 'namecase' [ 1014.756930][T13939] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0x1cbb3694, utbl_chksum : 0xe619d30d) [ 1014.971973][T13939] exFAT-fs (loop4): error, in sector 160, dentry 5 should be unused, but 0xc1 [ 1016.635990][T13958] netlink: 'syz.6.3476': attribute type 12 has an invalid length. [ 1016.644379][T13958] netlink: 9472 bytes leftover after parsing attributes in process `syz.6.3476'. [ 1017.049753][ T42] usb 5-1: new full-speed USB device number 26 using dummy_hcd [ 1017.284529][ T42] usb 5-1: config 0 has an invalid interface number: 1 but max is 0 [ 1017.295928][ T42] usb 5-1: config 0 has no interface number 0 [ 1017.302931][ T42] usb 5-1: New USB device found, idVendor=0b48, idProduct=1005, bcdDevice=8c.1e [ 1017.315456][ T42] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1017.390756][ T42] usb 5-1: config 0 descriptor?? [ 1017.451869][ T42] usb 5-1: selecting invalid altsetting 1 [ 1017.463047][ T42] dvb_ttusb_budget: ttusb_init_controller: error [ 1017.469743][ T42] dvbdev: DVB: registering new adapter (Technotrend/Hauppauge Nova-USB) [ 1018.033258][ T42] DVB: Unable to find symbol cx22700_attach() [ 1018.522376][ T42] DVB: Unable to find symbol tda10046_attach() [ 1018.531973][ T42] dvb_ttusb_budget: no frontend driver found for device [0b48:1005] [ 1018.638370][ T42] usb 5-1: USB disconnect, device number 26 [ 1019.685872][T13984] netlink: 24 bytes leftover after parsing attributes in process `syz.7.3487'. [ 1019.784117][T13986] sch_tbf: burst 0 is lower than device veth1_virt_wifi mtu (1514) ! [ 1020.855967][T14000] loop7: detected capacity change from 0 to 256 [ 1021.021434][T14000] FAT-fs (loop7): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 1021.624644][T14005] loop1: detected capacity change from 0 to 512 [ 1021.665317][T14005] ext4: Unknown parameter 'fsmagic' [ 1022.193195][T14010] loop7: detected capacity change from 0 to 256 [ 1022.468212][ T30] audit: type=1800 audit(1768519842.400:142): pid=14010 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.7.3499" name="file1" dev="loop7" ino=1048825 res=0 errno=0 [ 1022.494152][T14010] FAT-fs (loop7): error, corrupted file size (i_pos 196, 2097152) [ 1022.506164][T14010] FAT-fs (loop7): Filesystem has been set read-only [ 1023.910776][T14027] loop1: detected capacity change from 0 to 512 [ 1024.079405][T14027] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1024.099573][T14027] ext4 filesystem being mounted at /726/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 1024.412519][T14017] loop6: detected capacity change from 0 to 8192 [ 1024.588608][ T5816] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1024.824182][T14035] loop4: detected capacity change from 0 to 1024 [ 1025.650629][T14042] loop5: detected capacity change from 0 to 128 [ 1025.823526][T14042] EXT4-fs (loop5): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 1025.960202][T14042] ext4 filesystem being mounted at /450/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 1026.726288][ T8770] EXT4-fs (loop5): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 1026.920815][T14054] loop6: detected capacity change from 0 to 64 [ 1027.127040][ T30] audit: type=1800 audit(1768519847.080:143): pid=14054 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.6.3518" name="file1" dev="loop6" ino=5 res=0 errno=0 [ 1027.558187][ T42] usb 2-1: new full-speed USB device number 20 using dummy_hcd [ 1027.581313][T14062] ptrace attach of "./syz-executor exec"[12873] was attempted by "\x22"[14062] [ 1027.679546][T13399] usb 6-1: new high-speed USB device number 7 using dummy_hcd [ 1027.804453][ T42] usb 2-1: config 0 has an invalid interface number: 1 but max is 0 [ 1027.816640][ T42] usb 2-1: config 0 has no interface number 0 [ 1027.823072][ T42] usb 2-1: New USB device found, idVendor=0b48, idProduct=1005, bcdDevice=8c.1e [ 1027.835598][ T42] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1027.879681][ T42] usb 2-1: config 0 descriptor?? [ 1027.911790][ T42] usb 2-1: selecting invalid altsetting 1 [ 1027.918362][ T42] dvb_ttusb_budget: ttusb_init_controller: error [ 1027.924868][ T42] dvbdev: DVB: registering new adapter (Technotrend/Hauppauge Nova-USB) [ 1027.967113][T13399] usb 6-1: Using ep0 maxpacket: 32 [ 1028.077352][T13399] usb 6-1: New USB device found, idVendor=0fe9, idProduct=d501, bcdDevice=23.50 [ 1028.087203][T13399] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1028.099156][T13399] usb 6-1: Product: syz [ 1028.103546][T13399] usb 6-1: Manufacturer: syz [ 1028.109524][T13399] usb 6-1: SerialNumber: syz [ 1028.329925][T13399] usb 6-1: config 0 descriptor?? [ 1028.404704][T13399] dvb-usb: found a 'DViCO FusionHDTV5 USB Gold' in warm state. [ 1028.414663][T13399] dvb-usb: bulk message failed: -22 (2/0) [ 1028.550415][T13399] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer. [ 1028.610086][ T42] DVB: Unable to find symbol cx22700_attach() [ 1028.679199][T13399] dvbdev: DVB: registering new adapter (DViCO FusionHDTV5 USB Gold) [ 1028.688090][T13399] usb 6-1: media controller created [ 1028.856177][T13399] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered. [ 1029.103830][ T42] DVB: Unable to find symbol tda10046_attach() [ 1029.114940][ T42] dvb_ttusb_budget: no frontend driver found for device [0b48:1005] [ 1029.233536][ T42] usb 2-1: USB disconnect, device number 20 [ 1029.379487][T13399] usb 6-1: selecting invalid altsetting 7 [ 1029.385463][T13399] cxusb: set interface failed [ 1029.390501][T13399] dvb-usb: bulk message failed: -22 (1/0) [ 1029.893999][T13399] DVB: Unable to find symbol lgdt330x_attach() [ 1029.900801][T13399] dvb-usb: no frontend was attached by 'DViCO FusionHDTV5 USB Gold' [ 1030.169901][T14078] loop1: detected capacity change from 0 to 2048 [ 1030.267668][T14078] EXT4-fs warning (device loop1): read_mmp_block:111: Error -117 while reading MMP block 64 [ 1030.511009][T14086] netlink: 52 bytes leftover after parsing attributes in process `syz.4.3528'. [ 1030.527730][T13399] rc_core: IR keymap rc-dvico-portable not found [ 1030.534477][T13399] Registered IR keymap rc-empty [ 1030.542918][T13399] rc rc0: DViCO FusionHDTV5 USB Gold as /devices/platform/dummy_hcd.5/usb6/6-1/rc/rc0 [ 1030.546229][T14067] Bluetooth: hci1: command 0x0406 tx timeout [ 1030.568609][T13399] input: DViCO FusionHDTV5 USB Gold as /devices/platform/dummy_hcd.5/usb6/6-1/rc/rc0/input22 [ 1030.875129][T13399] dvb-usb: schedule remote query interval to 100 msecs. [ 1030.882657][T13399] dvb-usb: DViCO FusionHDTV5 USB Gold successfully initialized and connected. [ 1030.987645][ T9] dvb-usb: bulk message failed: -22 (1/0) [ 1031.098479][ T9] dvb-usb: bulk message failed: -22 (1/0) [ 1031.148538][T13399] usb 6-1: USB disconnect, device number 7 [ 1031.755318][T13399] dvb-usb: DViCO FusionHDTV5 USB Gold successfully deinitialized and disconnected. [ 1032.757899][T14104] qrtr: Invalid version 0 [ 1033.397047][T14107] loop6: detected capacity change from 0 to 2048 [ 1033.488629][T14107] NILFS (loop6): broken superblock, retrying with spare superblock (blocksize = 1024) [ 1033.498883][T14107] NILFS (loop6): mounting unchecked fs [ 1033.644388][ T1288] ieee802154 phy0 wpan0: encryption failed: -22 [ 1033.651445][ T1288] ieee802154 phy1 wpan1: encryption failed: -22 [ 1033.798232][T14107] NILFS (loop6): recovery complete [ 1033.810574][T14114] NILFS (loop6): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 1033.918766][T14113] sch_tbf: burst 0 is lower than device ip6gre0 mtu (1448) ! [ 1036.867266][T14144] loop7: detected capacity change from 0 to 8 [ 1037.029546][ T42] usb 2-1: new high-speed USB device number 21 using dummy_hcd [ 1037.254920][ T6139] udevd[6139]: incorrect cramfs checksum on /dev/loop7 [ 1037.329347][ T42] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 1037.343968][ T42] usb 2-1: New USB device found, idVendor=0f30, idProduct=0111, bcdDevice= 0.00 [ 1037.353454][ T42] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1037.510819][ T42] usb 2-1: config 0 descriptor?? [ 1038.102181][ T42] pantherlord 0003:0F30:0111.0029: hidraw0: USB HID v0.00 Device [HID 0f30:0111] on usb-dummy_hcd.1-1/input0 [ 1038.114914][ T42] pantherlord 0003:0F30:0111.0029: no output reports found [ 1038.286963][ T42] usb 2-1: USB disconnect, device number 21 [ 1038.955706][T14160] bridge0: entered promiscuous mode [ 1039.235167][T14158] fido_id[14158]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.1/usb2/report_descriptor': No such file or directory [ 1039.693063][T14166] loop6: detected capacity change from 0 to 64 [ 1039.963219][T14166] syz.6.3565: attempt to access beyond end of device [ 1039.963219][T14166] loop6: rw=8388608, sector=268435468, nr_sectors = 2 limit=64 [ 1039.986069][T14166] Buffer I/O error on dev loop6, logical block 134217734, async page read [ 1039.998684][T14166] syz.6.3565: attempt to access beyond end of device [ 1039.998684][T14166] loop6: rw=8388608, sector=268435468, nr_sectors = 2 limit=64 [ 1040.017954][T14166] Buffer I/O error on dev loop6, logical block 134217734, async page read [ 1040.223235][T14171] loop5: detected capacity change from 0 to 1024 [ 1040.399734][T14171] hfsplus: walked past end of dir [ 1040.418835][T14173] tipc: Enabled bearer , priority 10 [ 1041.441538][T14175] loop4: detected capacity change from 0 to 4096 [ 1041.500010][T14175] ntfs3(loop4): Different NTFS sector size (4096) and media sector size (512). [ 1041.788990][T14175] ntfs3(loop4): ino=1a, mi_enum_attr [ 1041.794684][T14175] ntfs3(loop4): Mark volume as dirty due to NTFS errors [ 1041.847471][T14175] ntfs3(loop4): ino=1a, mi_enum_attr [ 1041.853061][T14175] ntfs3(loop4): Failed to initialize $Extend/$Reparse. [ 1043.067610][T14194] loop1: detected capacity change from 0 to 64 [ 1043.138720][T14194] BFS-fs: bfs_fill_super(): loop1 is unclean, continuing [ 1044.441180][T14210] loop1: detected capacity change from 0 to 256 [ 1044.533496][T14209] netlink: 96 bytes leftover after parsing attributes in process `syz.5.3586'. [ 1044.543751][T14209] netlink: 48 bytes leftover after parsing attributes in process `syz.5.3586'. [ 1044.593989][T14210] exfat: Deprecated parameter 'utf8' [ 1044.755893][T14210] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0xe3641a69, utbl_chksum : 0xe619d30d) [ 1046.163203][T14227] netlink: 16 bytes leftover after parsing attributes in process `syz.6.3593'. [ 1047.592536][T14241] loop7: detected capacity change from 0 to 256 [ 1047.762552][T14243] loop1: detected capacity change from 0 to 128 [ 1047.829395][T14243] hpfs: filesystem error: invalid number of hotfixes: 2066844986, used: 2066844985; already mounted read-only [ 1047.875503][T14241] exFAT-fs (loop7): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x3963664b, utbl_chksum : 0xe619d30d) [ 1047.922298][T14243] hpfs: filesystem error: improperly stopped [ 1047.928923][T14243] hpfs: filesystem error: warning: spare dnodes used, try chkdsk [ 1047.941033][T14243] hpfs: You really don't want any checks? You are crazy... [ 1048.003803][T14241] exFAT-fs (loop7): valid_size(150994954) is greater than size(10) [ 1048.020034][T14243] hpfs: hpfs_map_sector(): read error [ 1048.025714][T14243] hpfs: code page support is disabled [ 1048.044639][T14243] hpfs: hpfs_map_4sectors(): unaligned read [ 1048.054231][T14243] hpfs: hpfs_map_4sectors(): unaligned read [ 1048.068525][T14243] hpfs: filesystem error: unable to find root dir [ 1048.145592][T14243] hpfs: hpfs_map_4sectors(): unaligned read [ 1048.171566][T14243] hpfs: hpfs_map_sector(): read error [ 1048.985514][T14252] loop6: detected capacity change from 0 to 256 [ 1049.413213][T14252] FAT-fs (loop6): Directory bread(block 64) failed [ 1049.424082][T14252] FAT-fs (loop6): Directory bread(block 65) failed [ 1049.431544][T14252] FAT-fs (loop6): Directory bread(block 66) failed [ 1049.441539][T14252] FAT-fs (loop6): Directory bread(block 67) failed [ 1049.448793][T14252] FAT-fs (loop6): Directory bread(block 68) failed [ 1049.455539][T14252] FAT-fs (loop6): Directory bread(block 69) failed [ 1049.466097][T14252] FAT-fs (loop6): Directory bread(block 70) failed [ 1049.472994][T14252] FAT-fs (loop6): Directory bread(block 71) failed [ 1049.483019][T14252] FAT-fs (loop6): Directory bread(block 72) failed [ 1049.490222][T14252] FAT-fs (loop6): Directory bread(block 73) failed [ 1050.669571][T14263] loop1: detected capacity change from 0 to 1024 [ 1051.010980][T14263] hfsplus: keylen 65060 too large [ 1051.016606][T14263] hfsplus: xattr search failed [ 1051.860179][T14274] ptrace attach of "./syz-executor exec"[12873] was attempted by " [ 1052.078760][T14278] netlink: 8 bytes leftover after parsing attributes in process `syz.6.3618'. [ 1052.491989][T14282] syz.1.3617 (14282): /proc/14279/oom_adj is deprecated, please use /proc/14279/oom_score_adj instead. [ 1053.853387][T14296] A link change request failed with some changes committed already. Interface team0 may have been left with an inconsistent configuration, please check. [ 1054.663292][T14308] loop4: detected capacity change from 0 to 8 [ 1054.804028][T14308] SQUASHFS error: Unable to read directory block [629:46] [ 1055.208262][T14311] netlink: 4 bytes leftover after parsing attributes in process `syz.6.3633'. [ 1056.236823][T13399] usb 7-1: new full-speed USB device number 5 using dummy_hcd [ 1056.469240][T13399] usb 7-1: New USB device found, idVendor=044e, idProduct=120c, bcdDevice= 0.00 [ 1056.478772][T13399] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1056.529883][T13399] usb 7-1: config 0 descriptor?? [ 1056.835230][T14324] loop1: detected capacity change from 0 to 4096 [ 1056.931736][T14324] ntfs3(loop1): Different NTFS sector size (2048) and media sector size (512). [ 1057.118417][T13399] hid-alps 0003:044E:120C.002A: hidraw0: USB HID v0.06 Device [HID 044e:120c] on usb-dummy_hcd.6-1/input0 [ 1057.228172][T13399] usb 7-1: USB disconnect, device number 5 [ 1057.712199][T14324] ntfs3(loop1): failed to convert name for inode 1. [ 1057.719528][T14324] ntfs3(loop1): failed to convert name for inode a. [ 1057.819719][T14333] netlink: 8 bytes leftover after parsing attributes in process `syz.5.3643'. [ 1057.969803][T14331] fido_id[14331]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.6/usb7/report_descriptor': No such file or directory [ 1059.342494][T14345] loop6: detected capacity change from 0 to 512 [ 1059.553108][T14345] EXT4-fs warning (device loop6): dx_probe:846: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 1059.569532][T14345] EXT4-fs warning (device loop6): dx_probe:849: Enable large directory feature to access it [ 1059.580080][T14345] EXT4-fs warning (device loop6): dx_probe:934: inode #2: comm syz.6.3649: Corrupt directory, running e2fsck is recommended [ 1059.695998][T14345] EXT4-fs (loop6): Cannot turn on journaled quota: type 1: error -117 [ 1059.838646][T14345] EXT4-fs error (device loop6): ext4_iget_extra_inode:5073: inode #15: comm syz.6.3649: corrupted in-inode xattr: e_name out of bounds [ 1059.926985][T14345] EXT4-fs error (device loop6): ext4_orphan_get:1396: comm syz.6.3649: couldn't read orphan inode 15 (err -117) [ 1059.989555][T14345] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1060.720598][T11938] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1060.740948][T14359] loop7: detected capacity change from 0 to 256 [ 1061.013455][T14359] exFAT-fs (loop7): bogus allocation bitmap size(need : 2, cur : 256) [ 1063.162782][T14385] netlink: 4 bytes leftover after parsing attributes in process `syz.6.3665'. [ 1063.205322][T14386] geneve2: entered promiscuous mode [ 1065.111356][T14402] netlink: 8 bytes leftover after parsing attributes in process `syz.6.3676'. [ 1065.153847][T14404] loop5: detected capacity change from 0 to 256 [ 1065.429672][T14404] exFAT-fs (loop5): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x32e3664b, utbl_chksum : 0xe619d30d) [ 1066.474330][T14416] netlink: 8 bytes leftover after parsing attributes in process `syz.5.3682'. [ 1067.399597][T14422] loop1: detected capacity change from 0 to 64 [ 1067.509417][T14422] BFS-fs: bfs_fill_super(): loop1 is unclean, continuing [ 1068.722910][T14436] loop4: detected capacity change from 0 to 1024 [ 1069.587546][T14446] netlink: 8 bytes leftover after parsing attributes in process `syz.5.3695'. [ 1070.964720][ T42] hid-generic 0000:0000:0004.002B: unknown main item tag 0x0 [ 1070.972794][ T42] hid-generic 0000:0000:0004.002B: unknown main item tag 0x0 [ 1070.983634][ T42] hid-generic 0000:0000:0004.002B: unknown main item tag 0x0 [ 1070.991446][ T42] hid-generic 0000:0000:0004.002B: unknown main item tag 0x0 [ 1071.007401][ T42] hid-generic 0000:0000:0004.002B: unknown main item tag 0x0 [ 1071.015098][ T42] hid-generic 0000:0000:0004.002B: unknown main item tag 0x0 [ 1071.027204][ T42] hid-generic 0000:0000:0004.002B: unknown main item tag 0x0 [ 1071.034879][ T42] hid-generic 0000:0000:0004.002B: unknown main item tag 0x0 [ 1071.045865][ T42] hid-generic 0000:0000:0004.002B: unknown main item tag 0x0 [ 1071.053658][ T42] hid-generic 0000:0000:0004.002B: unknown main item tag 0x0 [ 1071.344509][ T42] hid-generic 0000:0000:0004.002B: hidraw0: HID v0.03 Device [syz1] on syz0 [ 1072.255792][T14469] fido_id[14469]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory [ 1072.347226][T14471] loop1: detected capacity change from 0 to 2048 [ 1072.554926][T14471] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 1074.429388][T14484] loop4: detected capacity change from 0 to 4096 [ 1074.507680][T14484] ntfs3(loop4): Different NTFS sector size (1024) and media sector size (512). [ 1074.861869][T14484] ntfs3(loop4): Failed to load $Extend (-22). [ 1074.868571][T14484] ntfs3(loop4): Failed to initialize $Extend. [ 1076.344398][T13399] usb 2-1: new high-speed USB device number 22 using dummy_hcd [ 1076.566687][T13399] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 129, changing to 11 [ 1076.578527][T13399] usb 2-1: New USB device found, idVendor=046d, idProduct=ca03, bcdDevice= 0.00 [ 1076.588186][T13399] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1076.717657][T13399] usb 2-1: config 0 descriptor?? [ 1077.029679][T14512] loop6: detected capacity change from 0 to 512 [ 1077.280795][T14512] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1077.294845][T14512] ext4 filesystem being mounted at /215/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 1077.339934][T13399] logitech 0003:046D:CA03.002C: hidraw0: USB HID v0.00 Device [HID 046d:ca03] on usb-dummy_hcd.1-1/input0 [ 1077.356751][T13399] logitech 0003:046D:CA03.002C: no inputs found [ 1077.503761][ T30] audit: type=1800 audit(1768519897.470:144): pid=14512 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.6.3726" name="file1" dev="loop6" ino=15 res=0 errno=0 [ 1077.558042][T13399] usb 2-1: USB disconnect, device number 22 [ 1077.957466][T11938] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1077.999635][T14521] netlink: 104 bytes leftover after parsing attributes in process `syz.5.3729'. [ 1078.522782][T14522] fido_id[14522]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.1/usb2/report_descriptor': No such file or directory [ 1078.856347][ T30] audit: type=1326 audit(1768519898.820:145): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14529 comm="syz.5.3732" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb1539 code=0x7ffc0000 [ 1079.047052][ T30] audit: type=1326 audit(1768519898.860:146): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14529 comm="syz.5.3732" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb1539 code=0x7ffc0000 [ 1079.070153][ T30] audit: type=1326 audit(1768519898.890:147): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14529 comm="syz.5.3732" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb1539 code=0x7ffc0000 [ 1079.096326][ T30] audit: type=1326 audit(1768519898.900:148): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14529 comm="syz.5.3732" exe="/root/syz-executor" sig=0 arch=40000003 syscall=430 compat=1 ip=0xf7fb1539 code=0x7ffc0000 [ 1079.120326][ T30] audit: type=1326 audit(1768519898.900:149): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14529 comm="syz.5.3732" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb1539 code=0x7ffc0000 [ 1079.143388][ T30] audit: type=1326 audit(1768519898.900:150): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14529 comm="syz.5.3732" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb1539 code=0x7ffc0000 [ 1079.166002][ T30] audit: type=1326 audit(1768519898.920:151): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14529 comm="syz.5.3732" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb1539 code=0x7ffc0000 [ 1079.192075][ T30] audit: type=1326 audit(1768519898.920:152): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14529 comm="syz.5.3732" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb1539 code=0x7ffc0000 [ 1079.215889][ T30] audit: type=1326 audit(1768519898.930:153): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14529 comm="syz.5.3732" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb1539 code=0x7ffc0000 [ 1080.875812][T14546] loop5: detected capacity change from 0 to 1024 [ 1081.063221][T14546] hfsplus: bad catalog entry type [ 1081.570408][T14555] loop6: detected capacity change from 0 to 8 [ 1081.792207][T14555] SQUASHFS error: Failed to read block 0x33c: -5 [ 1081.799278][T14555] SQUASHFS error: Unable to read metadata cache entry [33a] [ 1081.812690][T14555] SQUASHFS error: Unable to read inode 0xa7 [ 1082.085135][T14561] loop7: detected capacity change from 0 to 256 [ 1082.231250][T14560] loop4: detected capacity change from 0 to 1024 [ 1082.243063][T14560] EXT4-fs: Ignoring removed nomblk_io_submit option [ 1082.296990][T14560] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e855c01c, mo2=0003] [ 1082.318034][T14560] System zones: 0-1, 3-36 [ 1082.368512][T14560] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1082.681022][T14561] FAT-fs (loop7): Directory bread(block 64) failed [ 1082.688310][T14561] FAT-fs (loop7): Directory bread(block 65) failed [ 1082.690405][T14567] netlink: 20 bytes leftover after parsing attributes in process `syz.5.3750'. [ 1082.695428][T14561] FAT-fs (loop7): Directory bread(block 66) failed [ 1082.711163][T14561] FAT-fs (loop7): Directory bread(block 67) failed [ 1082.718317][T14561] FAT-fs (loop7): Directory bread(block 68) failed [ 1082.725042][T14561] FAT-fs (loop7): Directory bread(block 69) failed [ 1082.732277][T14561] FAT-fs (loop7): Directory bread(block 70) failed [ 1082.739846][T14561] FAT-fs (loop7): Directory bread(block 71) failed [ 1082.746901][T14561] FAT-fs (loop7): Directory bread(block 72) failed [ 1082.753720][T14561] FAT-fs (loop7): Directory bread(block 73) failed [ 1082.953792][ T5825] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1084.575440][T14584] loop5: detected capacity change from 0 to 512 [ 1084.662125][T14584] FAT-fs (loop5): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 1084.900842][T14583] loop7: detected capacity change from 0 to 2048 [ 1084.972218][T14583] UDF-fs: error (device loop7): udf_process_sequence: Primary Volume Descriptor not found! [ 1084.991685][T14584] FAT-fs (loop5): error, fat_get_cluster: invalid start cluster (i_pos 0, start 22000003) [ 1085.211329][T14583] UDF-fs: unknown compression code (0) [ 1085.219580][T14586] vivid-004: disconnect [ 1085.347520][T14585] vivid-004: reconnect [ 1089.084858][T14621] loop5: detected capacity change from 0 to 128 [ 1089.162819][T14621] EXT4-fs: Ignoring removed nobh option [ 1089.234872][T14621] EXT4-fs (loop5): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 1089.315699][T14621] ext4 filesystem being mounted at /509/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 1089.767845][ T8770] EXT4-fs (loop5): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 1090.133543][T14628] loop4: detected capacity change from 0 to 256 [ 1090.186179][T14628] exfat: Deprecated parameter 'namecase' [ 1090.377873][T14628] exFAT-fs (loop4): failed to load upcase table (idx : 0x00017f3e, chksum : 0x0b83170a, utbl_chksum : 0xe619d30d) [ 1094.492499][T14668] ip6gretap1: entered allmulticast mode [ 1095.042896][ T1288] ieee802154 phy0 wpan0: encryption failed: -22 [ 1095.050581][ T1288] ieee802154 phy1 wpan1: encryption failed: -22 [ 1095.137957][T14672] tipc: Started in network mode [ 1095.143165][T14672] tipc: Node identity aaaaaaaaaa1a, cluster identity 4711 [ 1095.155131][T14672] tipc: Enabled bearer , priority 0 [ 1096.270222][ T42] tipc: Node number set to 11578026 [ 1096.561935][T14684] loop7: detected capacity change from 0 to 1024 [ 1096.694244][T14684] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1097.335488][T12873] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1099.065276][T14712] RDS: rds_bind could not find a transport for fe80::, load rds_tcp or rds_rdma? [ 1100.383011][T14722] IPVS: ip_vs_edit_dest(): lower threshold is higher than upper threshold [ 1100.553358][T14720] loop7: detected capacity change from 0 to 2048 [ 1100.676669][T14720] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 1100.823640][ T30] kauditd_printk_skb: 4 callbacks suppressed [ 1100.823726][ T30] audit: type=1800 audit(1768519920.770:158): pid=14720 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.7.3820" name="file1" dev="loop7" ino=1367 res=0 errno=0 [ 1103.057866][T14067] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 1103.071046][T14067] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 1103.080541][T14067] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 1103.120768][T14067] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 1103.136713][T14067] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 1103.588749][T14744] loop4: detected capacity change from 0 to 1024 [ 1103.814021][ T30] audit: type=1804 audit(1768519923.780:159): pid=14747 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.4.3830" name="/newroot/774/file1/file1" dev="loop4" ino=20 res=1 errno=0 [ 1104.122914][ T3426] hfsplus: b-tree write err: -5, ino 4 [ 1105.277787][T14067] Bluetooth: hci2: command tx timeout [ 1105.312651][T14761] netlink: 8 bytes leftover after parsing attributes in process `syz.6.3838'. [ 1105.604115][T14757] loop4: detected capacity change from 0 to 2048 [ 1105.769399][T14757] NILFS (loop4): broken superblock, retrying with spare superblock (blocksize = 1024) [ 1105.779419][T14757] NILFS (loop4): mounting unchecked fs [ 1105.962717][T14757] NILFS (loop4): recovery complete [ 1106.028827][T14768] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 1106.497532][T14770] netlink: 'syz.5.3841': attribute type 4 has an invalid length. [ 1106.560964][T14739] chnl_net:caif_netlink_parms(): no params data found [ 1107.330009][T14067] Bluetooth: hci2: command tx timeout [ 1107.507637][T14777] netlink: 204 bytes leftover after parsing attributes in process `syz.4.3844'. [ 1107.517900][T14777] netlink: 72 bytes leftover after parsing attributes in process `syz.4.3844'. [ 1107.527589][T14777] netlink: 16 bytes leftover after parsing attributes in process `syz.4.3844'. [ 1107.909803][T14779] loop5: detected capacity change from 0 to 1024 [ 1108.583747][ T4299] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1108.671184][ T3426] hfsplus: b-tree write err: -5, ino 4 [ 1108.796649][T14787] loop4: detected capacity change from 0 to 512 [ 1108.852247][T14787] EXT4-fs: Ignoring removed orlov option [ 1108.875563][ T4299] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1108.917281][T14787] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 1109.039975][T14787] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a84ec018, mo2=0003] [ 1109.109850][ T4299] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1109.152091][T14787] System zones: 1-2, 4-12, 8-8 [ 1109.171495][T14787] EXT4-fs error (device loop4): ext4_orphan_get:1391: inode #15: comm syz.4.3848: iget: bad i_size value: 38620345925642 [ 1109.213365][T14787] EXT4-fs error (device loop4): ext4_orphan_get:1396: comm syz.4.3848: couldn't read orphan inode 15 (err -117) [ 1109.276685][T14787] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1109.418599][T14067] Bluetooth: hci2: command tx timeout [ 1109.471224][ T4299] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1109.629533][T14739] bridge0: port 1(bridge_slave_0) entered blocking state [ 1109.637525][T14739] bridge0: port 1(bridge_slave_0) entered disabled state [ 1109.645465][T14739] bridge_slave_0: entered allmulticast mode [ 1109.655822][T14739] bridge_slave_0: entered promiscuous mode [ 1110.048884][T14739] bridge0: port 2(bridge_slave_1) entered blocking state [ 1110.056723][T14739] bridge0: port 2(bridge_slave_1) entered disabled state [ 1110.064608][T14739] bridge_slave_1: entered allmulticast mode [ 1110.079332][T14739] bridge_slave_1: entered promiscuous mode [ 1110.170723][ T4299] bridge_slave_1: left allmulticast mode [ 1110.177956][ T4299] bridge_slave_1: left promiscuous mode [ 1110.184853][ T4299] bridge0: port 2(bridge_slave_1) entered disabled state [ 1110.199570][ T5825] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1110.248123][ T4299] bridge_slave_0: left allmulticast mode [ 1110.254111][ T4299] bridge_slave_0: left promiscuous mode [ 1110.264743][ T4299] bridge0: port 1(bridge_slave_0) entered disabled state [ 1110.310368][T14800] sg_read: process 1124 (syz.5.3853) changed security contexts after opening file descriptor, this is not allowed. [ 1111.497861][T14067] Bluetooth: hci2: command tx timeout [ 1111.815425][ T4299] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 1111.901009][ T4299] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 1111.948513][ T4299] bond0 (unregistering): Released all slaves [ 1112.309887][T14813] loop6: detected capacity change from 0 to 256 [ 1112.393400][T14813] exfat: Deprecated parameter 'namecase' [ 1112.407594][T14813] exFAT-fs (loop6): Medium has reported failures. Some data may be lost. [ 1112.552408][T14813] exFAT-fs (loop6): failed to load upcase table (idx : 0x00010000, chksum : 0x7f1fc68d, utbl_chksum : 0xe619d30d) [ 1112.555145][T14739] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 1112.824296][T14739] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 1113.269410][ T4299] hsr_slave_0: left promiscuous mode [ 1113.291700][ T4299] hsr_slave_1: left promiscuous mode [ 1113.299983][ T4299] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 1113.307830][ T4299] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 1113.399447][ T4299] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 1113.409397][ T4299] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 1113.473568][T14818] loop4: detected capacity change from 0 to 1024 [ 1113.558385][ T4299] veth1_macvtap: left promiscuous mode [ 1113.564137][ T4299] veth0_macvtap: left promiscuous mode [ 1113.570294][ T4299] veth1_vlan: left promiscuous mode [ 1113.575898][ T4299] veth0_vlan: left promiscuous mode [ 1114.231332][ T3736] hfsplus: b-tree write err: -5, ino 4 [ 1114.933877][ T4299] team0 (unregistering): Port device team_slave_1 removed [ 1115.072490][ T4299] team0 (unregistering): Port device team_slave_0 removed [ 1115.800790][T14739] team0: Port device team_slave_0 added [ 1115.913371][T14739] team0: Port device team_slave_1 added [ 1116.138395][ T30] audit: type=1326 audit(1768519936.100:160): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14832 comm="syz.7.3869" exe="/root/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7f84539 code=0x0 [ 1116.325331][T14739] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 1116.337249][T14739] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 1116.371071][T14739] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 1116.395943][ T4299] IPVS: stop unused estimator thread 0... [ 1116.587585][T14739] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 1116.594965][T14739] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 1116.624629][T14739] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 1116.988814][T14739] hsr_slave_0: entered promiscuous mode [ 1117.001970][T14739] hsr_slave_1: entered promiscuous mode [ 1117.011301][T14739] debugfs: 'hsr0' already exists in 'hsr' [ 1117.017408][T14739] Cannot create hsr debugfs directory [ 1117.024714][ T9] usb 7-1: new high-speed USB device number 6 using dummy_hcd [ 1117.219779][ T9] usb 7-1: Using ep0 maxpacket: 32 [ 1117.261241][ T9] usb 7-1: config 0 has an invalid interface number: 1 but max is 0 [ 1117.269833][ T9] usb 7-1: config 0 has no interface number 0 [ 1117.364974][ T9] usb 7-1: New USB device found, idVendor=8086, idProduct=9500, bcdDevice=b6.d8 [ 1117.374662][ T9] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1117.383189][ T9] usb 7-1: Product: syz [ 1117.392234][ T9] usb 7-1: Manufacturer: syz [ 1117.397258][ T9] usb 7-1: SerialNumber: syz [ 1117.538152][ T9] usb 7-1: config 0 descriptor?? [ 1117.577730][ T9] usb 7-1: dvb_usb_v2: found a 'Intel CE9500 reference design' in warm state [ 1117.586938][ T9] usb 7-1: selecting invalid altsetting 1 [ 1117.598368][ T9] usb 7-1: dvb_usb_ce6230: usb_set_interface() failed=-22 [ 1117.702616][ T9] usb 7-1: dvb_usb_v2: will pass the complete MPEG2 transport stream to the software demuxer [ 1117.714084][ T9] dvbdev: DVB: registering new adapter (Intel CE9500 reference design) [ 1117.722970][ T9] usb 7-1: media controller created [ 1117.918948][ T9] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered. [ 1118.849727][T14839] usb 7-1: dvb_usb_ce6230: usb_control_msg() failed=-110 [ 1118.996918][ T9] usb 7-1: dvb_usb_ce6230: usb_control_msg() failed=-71 [ 1119.004257][ T9] zl10353_read_register: readreg error (reg=127, ret==-71) [ 1119.017835][ T9] usb 7-1: dvb_usb_ce6230: usb_set_interface() failed=-71 [ 1119.148060][T14851] loop5: detected capacity change from 0 to 512 [ 1119.284798][T14851] EXT4-fs (loop5): 1 truncate cleaned up [ 1119.293890][T14851] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1119.392575][T14739] netdevsim netdevsim8 netdevsim0: renamed from eth0 [ 1119.508241][T14739] netdevsim netdevsim8 netdevsim1: renamed from eth1 [ 1119.644534][T14739] netdevsim netdevsim8 netdevsim2: renamed from eth2 [ 1119.661139][ T9] usb 7-1: USB disconnect, device number 6 [ 1119.699865][ T6021] udevd[6021]: setting mode of /dev/bus/usb/007/006 to 020664 failed: No such file or directory [ 1119.773770][ T6021] udevd[6021]: setting owner of /dev/bus/usb/007/006 to uid=0, gid=0 failed: No such file or directory [ 1119.811033][T14739] netdevsim netdevsim8 netdevsim3: renamed from eth3 [ 1119.988901][T14857] ALSA: mixer_oss: invalid OSS volume '' [ 1120.165535][ T8770] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1120.440978][T14860] tipc: Enabled bearer , priority 10 [ 1121.208229][T14866] netlink: 92 bytes leftover after parsing attributes in process `syz.7.3881'. [ 1121.563551][T14739] 8021q: adding VLAN 0 to HW filter on device bond0 [ 1121.720413][T14739] 8021q: adding VLAN 0 to HW filter on device team0 [ 1121.815803][ T59] bridge0: port 1(bridge_slave_0) entered blocking state [ 1121.823462][ T59] bridge0: port 1(bridge_slave_0) entered forwarding state [ 1121.915576][ T59] bridge0: port 2(bridge_slave_1) entered blocking state [ 1121.923197][ T59] bridge0: port 2(bridge_slave_1) entered forwarding state [ 1122.883650][T14876] loop4: detected capacity change from 0 to 256 [ 1123.060691][T14876] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0x5441951d, utbl_chksum : 0xe619d30d) [ 1123.269702][ T30] audit: type=1800 audit(1768519943.230:161): pid=14876 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.3884" name="file1" dev="loop4" ino=1048900 res=0 errno=0 [ 1123.855945][T14739] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 1123.980385][ T5441] usb 7-1: new high-speed USB device number 7 using dummy_hcd [ 1124.170722][ T5441] usb 7-1: Using ep0 maxpacket: 8 [ 1124.273868][ T5441] usb 7-1: New USB device found, idVendor=047d, idProduct=5003, bcdDevice=2f.8c [ 1124.287229][ T5441] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1124.295475][ T5441] usb 7-1: Product: syz [ 1124.303090][ T5441] usb 7-1: Manufacturer: syz [ 1124.308014][ T5441] usb 7-1: SerialNumber: syz [ 1124.438051][ T5441] usb 7-1: config 0 descriptor?? [ 1124.485967][ T5441] gspca_main: se401-2.14.0 probing 047d:5003 [ 1124.930663][ T5441] gspca_se401: Bayer format not supported! [ 1125.141034][ T9] usb 7-1: USB disconnect, device number 7 [ 1125.343844][T14893] loop4: detected capacity change from 0 to 256 [ 1125.546016][T14893] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0x4f8593fa, utbl_chksum : 0xe619d30d) [ 1126.634512][T14739] veth0_vlan: entered promiscuous mode [ 1126.730175][T14739] veth1_vlan: entered promiscuous mode [ 1127.088146][T14739] veth0_macvtap: entered promiscuous mode [ 1127.170898][T14739] veth1_macvtap: entered promiscuous mode [ 1127.332226][T14739] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 1127.432212][T14739] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 1127.540175][ T1072] netdevsim netdevsim8 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 1127.586180][ T1072] netdevsim netdevsim8 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 1127.652807][ T1072] netdevsim netdevsim8 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 1127.710978][ T1072] netdevsim netdevsim8 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 1129.322389][ T5441] usb 7-1: new high-speed USB device number 8 using dummy_hcd [ 1129.618694][ T5441] usb 7-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3 [ 1129.631175][ T5441] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1129.692665][ T5441] usb 7-1: config 0 descriptor?? [ 1129.715403][ T5441] cp210x 7-1:0.0: cp210x converter detected [ 1130.004820][ T42] kernel write not supported for file task/333/net/sockstat (pid: 42 comm: kworker/1:1) [ 1130.381180][ T5441] cp210x 7-1:0.0: failed to get vendor val 0x000e size 678: -71 [ 1130.395384][ T5441] cp210x 7-1:0.0: GPIO initialisation failed: -71 [ 1130.509681][ T5441] usb 7-1: cp210x converter now attached to ttyUSB0 [ 1130.608674][ T5441] usb 7-1: USB disconnect, device number 8 [ 1130.682009][ T5441] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0 [ 1130.693045][ T5441] cp210x 7-1:0.0: device disconnected [ 1134.361769][ T5441] usb 6-1: new high-speed USB device number 8 using dummy_hcd [ 1134.582425][ T5441] usb 6-1: Using ep0 maxpacket: 8 [ 1134.642482][ T5441] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 1134.659766][ T5441] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 1134.670125][ T5441] usb 6-1: New USB device found, idVendor=046a, idProduct=0027, bcdDevice= 0.00 [ 1134.682759][ T5441] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1134.771354][ T5441] usb 6-1: config 0 descriptor?? [ 1134.782653][ T42] usb 5-1: new high-speed USB device number 27 using dummy_hcd [ 1134.971520][ T42] usb 5-1: Using ep0 maxpacket: 8 [ 1135.039485][ T42] usb 5-1: unable to get BOS descriptor or descriptor too short [ 1135.123884][ T42] usb 5-1: config index 0 descriptor too short (expected 51, got 18) [ 1135.135603][ T42] usb 5-1: config 4 has an invalid interface number: 30 but max is 0 [ 1135.144213][ T42] usb 5-1: config 4 has no interface number 0 [ 1135.153735][ T42] usb 5-1: config 4 interface 30 has no altsetting 0 [ 1135.183207][ T42] usb 5-1: string descriptor 0 read error: -22 [ 1135.193580][ T42] usb 5-1: New USB device found, idVendor=9022, idProduct=d484, bcdDevice=ff.88 [ 1135.206899][ T42] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1135.275620][ T42] dvb-usb: found a 'TeVii S482 (tuner 2)' in warm state. [ 1135.286328][ T42] dw2102: su3000_power_ctrl: 1, initialized 0 [ 1135.292910][ T42] dvb-usb: bulk message failed: -22 (2/0) [ 1135.343657][ T5441] hid_parser_main: 91 callbacks suppressed [ 1135.343770][ T5441] cherry 0003:046A:0027.002D: unknown main item tag 0x0 [ 1135.360255][ T5441] cherry 0003:046A:0027.002D: unknown main item tag 0x6 [ 1135.370722][ T5441] cherry 0003:046A:0027.002D: unknown main item tag 0x5 [ 1135.378057][ T5441] cherry 0003:046A:0027.002D: unknown main item tag 0x4 [ 1135.385301][ T5441] cherry 0003:046A:0027.002D: unknown main item tag 0x0 [ 1135.395608][ T5441] cherry 0003:046A:0027.002D: unknown main item tag 0x0 [ 1135.402961][ T5441] cherry 0003:046A:0027.002D: unknown main item tag 0x0 [ 1135.419238][ T5441] cherry 0003:046A:0027.002D: unknown main item tag 0x0 [ 1135.431595][ T5441] cherry 0003:046A:0027.002D: unknown main item tag 0x0 [ 1135.438961][ T5441] cherry 0003:046A:0027.002D: unknown main item tag 0x0 [ 1135.446206][ T5441] cherry 0003:046A:0027.002D: unknown global tag 0xd [ 1135.453215][ T5441] cherry 0003:046A:0027.002D: item 0 4 1 13 parsing failed [ 1135.491557][ T42] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer. [ 1135.507373][ T42] dvbdev: DVB: registering new adapter (TeVii S482 (tuner 2)) [ 1135.525195][ T42] usb 5-1: media controller created [ 1135.530716][ T42] dvb-usb: bulk message failed: -22 (6/0) [ 1135.539779][ T42] dw2102: i2c transfer failed. [ 1135.544753][ T42] dvb-usb: bulk message failed: -22 (6/0) [ 1135.550745][ T42] dw2102: i2c transfer failed. [ 1135.555675][ T42] dvb-usb: bulk message failed: -22 (6/0) [ 1135.565152][ T42] dw2102: i2c transfer failed. [ 1135.570298][ T42] dvb-usb: bulk message failed: -22 (6/0) [ 1135.576200][ T42] dw2102: i2c transfer failed. [ 1135.584706][ T42] dvb-usb: bulk message failed: -22 (6/0) [ 1135.590728][ T42] dw2102: i2c transfer failed. [ 1135.595668][ T42] dvb-usb: bulk message failed: -22 (6/0) [ 1135.604712][ T42] dw2102: i2c transfer failed. [ 1135.609922][ T42] dvb-usb: MAC address: 02:02:02:02:02:02 [ 1135.660658][ T5441] cherry 0003:046A:0027.002D: probe with driver cherry failed with error -22 [ 1135.863433][ T42] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered. [ 1135.898147][ T5441] usb 6-1: USB disconnect, device number 8 [ 1136.478126][ T42] dvb-usb: bulk message failed: -22 (3/0) [ 1136.484195][ T42] dw2102: command 0x0e transfer failed. [ 1136.493191][ T42] dvb-usb: bulk message failed: -22 (3/0) [ 1136.499212][ T42] dw2102: command 0x0e transfer failed. [ 1136.659190][ T4299] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1136.670359][ T4299] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1136.811769][ T42] dvb-usb: bulk message failed: -22 (3/0) [ 1136.821485][ T42] dw2102: command 0x0e transfer failed. [ 1136.827447][ T42] dvb-usb: bulk message failed: -22 (3/0) [ 1136.833340][ T42] dw2102: command 0x0e transfer failed. [ 1136.842306][ T42] dvb-usb: bulk message failed: -22 (1/0) [ 1136.853827][ T42] dw2102: command 0x51 transfer failed. [ 1136.864078][ T42] dvb-usb: bulk message failed: -22 (5/0) [ 1136.870122][ T42] dw2102: i2c probe for address 0x68 failed. [ 1136.876293][ T42] dvb-usb: bulk message failed: -22 (5/0) [ 1136.885498][ T42] dw2102: i2c probe for address 0x69 failed. [ 1136.891798][ T42] dvb-usb: bulk message failed: -22 (5/0) [ 1136.900800][ T42] dw2102: i2c probe for address 0x6a failed. [ 1136.907053][ T42] dw2102: probing for demodulator failed. Is the external power switched on? [ 1136.916911][ T42] dvb-usb: no frontend was attached by 'TeVii S482 (tuner 2)' [ 1137.021041][ T3764] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1137.032336][ T3764] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1137.736628][ T42] rc_core: IR keymap rc-tt-1500 not found [ 1137.742668][ T42] Registered IR keymap rc-empty [ 1137.755351][ T42] rc rc0: TeVii S482 (tuner 2) as /devices/platform/dummy_hcd.4/usb5/5-1/rc/rc0 [ 1137.775578][ T42] input: TeVii S482 (tuner 2) as /devices/platform/dummy_hcd.4/usb5/5-1/rc/rc0/input23 [ 1137.989894][ T42] dvb-usb: schedule remote query interval to 250 msecs. [ 1137.997424][ T42] dw2102: su3000_power_ctrl: 0, initialized 1 [ 1138.003689][ T42] dvb-usb: TeVii S482 (tuner 2) successfully initialized and connected. [ 1138.121319][ T42] usb 5-1: USB disconnect, device number 27 [ 1138.720905][ T42] dvb-usb: TeVii S482 (tuner 2) successfully deinitialized and disconnected. [ 1139.682113][ T9] usb 6-1: new high-speed USB device number 9 using dummy_hcd [ 1139.939885][ T9] usb 6-1: config index 0 descriptor too short (expected 23569, got 27) [ 1139.948899][ T9] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 1139.995722][ T9] usb 6-1: New USB device found, idVendor=03eb, idProduct=0002, bcdDevice=ba.c0 [ 1140.008919][ T9] usb 6-1: New USB device strings: Mfr=5, Product=0, SerialNumber=0 [ 1140.021054][ T9] usb 6-1: Manufacturer: syz [ 1140.146693][ T9] usb 6-1: config 0 descriptor?? [ 1140.405389][T15018] loop8: detected capacity change from 0 to 256 [ 1140.535196][T15018] exfat: Deprecated parameter 'utf8' [ 1140.541319][T15018] exfat: Deprecated parameter 'namecase' [ 1140.551220][T15018] exfat: Deprecated parameter 'namecase' [ 1140.557443][T15018] exfat: Deprecated parameter 'utf8' [ 1140.722704][ T9] rc_core: IR keymap rc-hauppauge not found [ 1140.732203][ T9] Registered IR keymap rc-empty [ 1140.747174][ T9] rc rc0: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.5/usb6/6-1/6-1:0.0/rc/rc0 [ 1140.764655][ T9] input: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.5/usb6/6-1/6-1:0.0/rc/rc0/input24 [ 1140.852165][T15018] exFAT-fs (loop8): failed to load upcase table (idx : 0x00012153, chksum : 0x6a70c931, utbl_chksum : 0xe619d30d) [ 1140.866284][T15018] exFAT-fs (loop8): failed to test first cluster bit of root dir(5) [ 1141.030689][ C0] igorplugusb 6-1:0.0: receive overflow invalid: 165 [ 1141.131900][T15018] exFAT-fs (loop8): start_clu is invalid cluster(0x400) [ 1141.281687][ T42] usb 6-1: USB disconnect, device number 9 [ 1142.711019][T12130] netdevsim netdevsim8 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1143.069773][T12130] netdevsim netdevsim8 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1143.301442][T12130] netdevsim netdevsim8 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1143.551030][T12130] netdevsim netdevsim8 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1144.170933][T12130] bridge_slave_1: left allmulticast mode [ 1144.177239][T12130] bridge_slave_1: left promiscuous mode [ 1144.185214][T12130] bridge0: port 2(bridge_slave_1) entered disabled state [ 1144.254638][T12130] bridge_slave_0: left allmulticast mode [ 1144.263991][T12130] bridge_slave_0: left promiscuous mode [ 1144.270869][T12130] bridge0: port 1(bridge_slave_0) entered disabled state [ 1144.987822][T12130] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 1145.014119][T12130] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 1145.048897][T12130] bond0 (unregistering): Released all slaves [ 1145.607068][T12130] hsr_slave_0: left promiscuous mode [ 1145.659927][T12130] hsr_slave_1: left promiscuous mode [ 1145.668809][T12130] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 1145.679574][T12130] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 1145.747510][T12130] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 1145.762765][T12130] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 1145.899987][T12130] veth1_macvtap: left promiscuous mode [ 1145.905736][T12130] veth0_macvtap: left promiscuous mode [ 1145.912124][T12130] veth1_vlan: left promiscuous mode [ 1145.920848][T12130] veth0_vlan: left promiscuous mode [ 1146.304164][T15051] loop7: detected capacity change from 0 to 512 [ 1146.537799][T15051] EXT4-fs (loop7): encrypted files will use data=ordered instead of data journaling mode [ 1146.825369][T15051] EXT4-fs (loop7): 1 truncate cleaned up [ 1146.833868][T15051] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1147.609007][ T5820] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 1147.622883][ T5820] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 1147.633595][ T5820] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 1147.733774][ T5820] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 1147.809462][ T5820] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 1147.840280][T12130] team0 (unregistering): Port device team_slave_1 removed [ 1147.970496][T12130] team0 (unregistering): Port device team_slave_0 removed [ 1148.073124][T12873] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1148.533243][T15066] netlink: 16 bytes leftover after parsing attributes in process `syz.6.3960'. [ 1148.939069][T15064] loop4: detected capacity change from 0 to 4096 [ 1149.294719][T15064] ntfs3(loop4): ino=3, ntfs_set_state failed, -22. [ 1149.302158][T15064] ntfs3(loop4): Failed to initialize $Extend/$ObjId. [ 1150.071966][ T4360] ntfs3(loop4): ino=3, ntfs3_write_inode failed, -22. [ 1150.120992][ T5825] ntfs3(loop4): ino=3, ntfs_set_state failed, -22. [ 1150.132939][ T5825] ntfs3(loop4): Mark volume as dirty due to NTFS errors [ 1150.141227][ T5825] ntfs3(loop4): ino=3, ntfs_set_state failed, -22. [ 1150.156939][T14067] Bluetooth: hci2: command tx timeout [ 1150.232249][T13436] ntfs3(loop4): ino=3, ntfs3_write_inode failed, -22. [ 1150.362712][T15061] chnl_net:caif_netlink_parms(): no params data found [ 1150.547818][T15080] veth0_to_bond: entered allmulticast mode [ 1151.840338][T15095] loop5: detected capacity change from 0 to 256 [ 1151.919045][T15095] exfat: Deprecated parameter 'namecase' [ 1151.925343][T15095] exfat: Deprecated parameter 'utf8' [ 1152.172894][T15095] exFAT-fs (loop5): failed to load upcase table (idx : 0x00010000, chksum : 0x36dfe6b4, utbl_chksum : 0xe619d30d) [ 1152.222185][T14067] Bluetooth: hci2: command tx timeout [ 1152.760309][T15101] netdevsim netdevsim7 netdevsim0: entered promiscuous mode [ 1152.771195][T15101] macsec1: entered promiscuous mode [ 1152.859172][T15101] netdevsim netdevsim7 netdevsim0: left promiscuous mode [ 1152.983258][T15061] bridge0: port 1(bridge_slave_0) entered blocking state [ 1152.991160][T15061] bridge0: port 1(bridge_slave_0) entered disabled state [ 1153.003437][T15061] bridge_slave_0: entered allmulticast mode [ 1153.013715][T15061] bridge_slave_0: entered promiscuous mode [ 1153.072647][T15104] tipc: Enabled bearer , priority 10 [ 1153.213574][T15061] bridge0: port 2(bridge_slave_1) entered blocking state [ 1153.230248][T15061] bridge0: port 2(bridge_slave_1) entered disabled state [ 1153.238285][T15061] bridge_slave_1: entered allmulticast mode [ 1153.251666][T15061] bridge_slave_1: entered promiscuous mode [ 1153.687332][T15061] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 1153.816251][T15061] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 1154.287206][T14067] Bluetooth: hci2: command tx timeout [ 1154.340266][T15061] team0: Port device team_slave_0 added [ 1154.393311][T15061] team0: Port device team_slave_1 added [ 1154.898999][T15061] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 1154.906162][T15061] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 1154.937612][T15061] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 1155.128600][T15061] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 1155.135914][T15061] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 1155.165627][T15061] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 1155.341912][T15124] netlink: 80 bytes leftover after parsing attributes in process `syz.5.3983'. [ 1155.698754][T15061] hsr_slave_0: entered promiscuous mode [ 1155.709698][T15061] hsr_slave_1: entered promiscuous mode [ 1155.722136][T15061] debugfs: 'hsr0' already exists in 'hsr' [ 1155.730476][T15061] Cannot create hsr debugfs directory [ 1156.367058][T14067] Bluetooth: hci2: command tx timeout [ 1156.481740][ T1288] ieee802154 phy0 wpan0: encryption failed: -22 [ 1156.488654][ T1288] ieee802154 phy1 wpan1: encryption failed: -22 [ 1157.144536][T15142] ieee802154 phy0 wpan0: encryption failed: -22 [ 1157.688651][T15146] loop7: detected capacity change from 0 to 128 [ 1157.837993][T15146] FAT-fs (loop7): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 1157.947576][T15146] netlink: 8 bytes leftover after parsing attributes in process `syz.7.3993'. [ 1157.959859][T15146] netlink: 20 bytes leftover after parsing attributes in process `syz.7.3993'. [ 1158.078091][T15061] netdevsim netdevsim9 netdevsim0: renamed from eth0 [ 1158.239818][T15061] netdevsim netdevsim9 netdevsim1: renamed from eth1 [ 1158.341110][T15061] netdevsim netdevsim9 netdevsim2: renamed from eth2 [ 1158.520651][T15061] netdevsim netdevsim9 netdevsim3: renamed from eth3 [ 1159.712839][T15163] netlink: 64 bytes leftover after parsing attributes in process `syz.5.4000'. [ 1160.107060][T15061] 8021q: adding VLAN 0 to HW filter on device bond0 [ 1160.404147][T15061] 8021q: adding VLAN 0 to HW filter on device team0 [ 1160.623700][ T4514] bridge0: port 1(bridge_slave_0) entered blocking state [ 1160.631581][ T4514] bridge0: port 1(bridge_slave_0) entered forwarding state [ 1160.735347][T15172] netlink: 8 bytes leftover after parsing attributes in process `syz.6.4003'. [ 1160.793765][ T4514] bridge0: port 2(bridge_slave_1) entered blocking state [ 1160.801467][ T4514] bridge0: port 2(bridge_slave_1) entered forwarding state [ 1162.743926][T15188] loop5: detected capacity change from 0 to 64 [ 1162.901339][T15192] netlink: 8 bytes leftover after parsing attributes in process `syz.4.4012'. [ 1163.430676][T15061] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 1163.731579][T15197] netlink: 348 bytes leftover after parsing attributes in process `syz.4.4014'. [ 1164.821872][T15207] netlink: 8 bytes leftover after parsing attributes in process `syz.5.4018'. [ 1165.294499][T15213] program syz.6.4019 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 1165.604477][T15215] netlink: 220 bytes leftover after parsing attributes in process `syz.5.4021'. [ 1165.618847][T15215] netlink: 8 bytes leftover after parsing attributes in process `syz.5.4021'. [ 1166.371825][T15218] loop6: detected capacity change from 0 to 1024 [ 1166.420159][T15218] EXT4-fs: Ignoring removed nobh option [ 1166.512210][T15218] EXT4-fs (loop6): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 1166.591978][T15061] veth0_vlan: entered promiscuous mode [ 1166.685767][T15218] EXT4-fs error (device loop6): ext4_ext_check_inode:523: inode #11: comm syz.6.4023: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 32512(32512) [ 1166.823824][T15061] veth1_vlan: entered promiscuous mode [ 1166.841907][T15218] EXT4-fs error (device loop6): ext4_orphan_get:1396: comm syz.6.4023: couldn't read orphan inode 11 (err -117) [ 1166.874209][T15226] netlink: 36 bytes leftover after parsing attributes in process `syz.5.4025'. [ 1166.941508][T15227] IPVS: sync thread started: state = BACKUP, mcast_ifn = vcan0, syncid = 0, id = 0 [ 1167.003969][T15218] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1167.278278][T15218] EXT4-fs error (device loop6): ext4_read_block_bitmap_nowait:483: comm syz.6.4023: Invalid block bitmap block 0 in block_group 0 [ 1167.382319][T15061] veth0_macvtap: entered promiscuous mode [ 1167.418959][T15218] Quota error (device loop6): write_blk: dquota write failed [ 1167.426943][T15218] Quota error (device loop6): qtree_write_dquot: Error -117 occurred while creating quota [ 1167.441524][T15218] EXT4-fs error (device loop6): ext4_acquire_dquot:6986: comm syz.6.4023: Failed to acquire dquot type 0 [ 1167.455212][T15061] veth1_macvtap: entered promiscuous mode [ 1167.801799][T15061] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 1167.964218][T15061] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 1168.032234][ T4203] EXT4-fs error (device loop6): __ext4_get_inode_loc:4830: comm kworker/u8:39: Invalid inode table block 8589934593 in block_group 0 [ 1168.119322][ T4203] netdevsim netdevsim9 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 1168.122132][T11938] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1168.145398][ T59] netdevsim netdevsim9 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 1168.232268][ T59] netdevsim netdevsim9 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 1168.301245][ T3764] netdevsim netdevsim9 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 1169.070686][T15239] loop4: detected capacity change from 0 to 764 [ 1169.099401][T15241] loop6: detected capacity change from 0 to 256 [ 1169.447956][T15241] exFAT-fs (loop6): failed to load upcase table (idx : 0x00010000, chksum : 0xfcc0b04e, utbl_chksum : 0xe619d30d) [ 1172.508873][T15264] loop6: detected capacity change from 0 to 4096 [ 1173.115003][T15264] ntfs3(loop6): Mark volume as dirty due to NTFS errors [ 1173.541822][T15280] [U]  [ 1173.544824][T15280] [U] K{ [ 1173.548716][T15280] [U] t 1ŠFfˊ`GJgo/mC [ 1173.556137][T15280] [U] tؖ/,~Ĝj}8'o1"7-JQKWq5c%"H12YX``+(!(z'tXlnIgjݭp~7!" (5Ob̓J [ 1173.575360][T15280] [U] k\&}66XHX .`a$40|϶9ި U4Vbz}wMTQΦr 4 [ 1173.586728][T15280] [U] ".h6"k[J4In[Z(C|T]z{3c=x4w)\TXJSH{q;칢t+gd.˂>ywUhfNhl]S2\g%O&z)'pul_< ذ`ұT;_"(u{7j2X /'cIHcճV=Ai%wEs RjgrhIa6-DV i"n Asc~48c*OO5/J~wvK+3Y)Mvyq潀DTrOtpem%fejA5T_-X~^aaۂq [ 1173.631068][T15280] [U] +wG?]'a: )' B>tf/<'U'hi.+]e.-ɿ%>2`^U8F.63+A«g3p6:^0tv'EtYCnrϩnPj ;Z8!\Aʖ2$­wi.#/Bai`4jdy@zgW5˿B ٜNy"vI2 [ 1173.658215][T15280] [U] T_K5tYJ9c$brLNul 9w|G"ʃ%C؝q 3qN^HP*$ .7yӱ2 [ 1173.669850][T15280] [U] ? h*37鍾^#Q"0~ (oX Lb,'v=CSGS0ւ`ه=1(p#2DO*Ƀ [ 1173.684981][T15280] [U] sgGud-{|&2Lc_!`oz֥B%>rwSsH"yA4O.Y䏄RTԶB[+/<>{q_՝LX8U{Z)7?rR;crhײڣ1>)Măt(aϝ}9ڥJ*Mќġ'Lq DW=|q ÆW;5Ž!dBx`/E`ƦMX"\ [ 1173.966228][T15280] [U] {; ٘_o2)o.2W2yx_ HPϱSD:]{ [ 1173.979561][T15280] [U] I,> 51^1N4oǶ'0?֒i9w._.WaV`)Zc6GiӹaXL[F*OW)+'\n[K@2Ǭp"^` [ 1173.996214][T15280] [U] 22Ʃx?0;3u [ 1174.003926][T15280] [U] ޜsObx8W4(~/KUԖoQe+G-ygY_>v3.hә]̈́2)D, D~d+w; A\FPȘ|$)KؐIɿkYT^R癵A=#ܜ aet1ݯ4K.e"RS|s:>p r"z#P!KY"}FN84hޱosߙ̫%Dlwm [ 1174.035850][T15280] [U] [['xn' ,mr/1D=!Dx91BwRlfKZ#` l؛˜b~m [ 1174.046841][T15280] [U] L>d+d"5h3<iR=F^fnvDOIO:U>Y [ 1174.056007][T15280] [U] 'B6v20瞥׌"t8{9FW]쩍 [ 1174.065655][T15280] [U] 72uC6τI]8ctۨQSkYI |V'TV/g$[ 9kh`"}[^=0]%̂TF_v4C [ 1174.081519][T15280] [U] ec [ 1174.084848][T15280] [U] |<:^3$7nK~-@?/mtl۾Iw@g~t{P+$jp| IRipm Y 8tV,l, [ 1174.275810][T15278] [U] K)0~ʪiP'fzr @B]5{ʼ'8ƥFUTqUdǩK;70c[yYCذmL8T͚5rxW xoQhVi'8L [ 1174.567441][T15067] usb 6-1: new high-speed USB device number 10 using dummy_hcd [ 1174.756836][T15067] usb 6-1: Using ep0 maxpacket: 8 [ 1174.804903][T15067] usb 6-1: config 0 interface 0 altsetting 5 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 1174.819523][T15067] usb 6-1: config 0 interface 0 altsetting 5 endpoint 0x81 has invalid wMaxPacketSize 0 [ 1174.832923][T15067] usb 6-1: config 0 interface 0 has no altsetting 0 [ 1174.843771][T15067] usb 6-1: New USB device found, idVendor=1038, idProduct=1410, bcdDevice= 0.00 [ 1174.854449][T15067] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1175.079868][T15067] usb 6-1: config 0 descriptor?? [ 1175.623304][T15067] steelseries 0003:1038:1410.002E: unknown main item tag 0x0 [ 1175.631244][T15067] steelseries 0003:1038:1410.002E: unknown main item tag 0x0 [ 1175.642200][T15067] steelseries 0003:1038:1410.002E: unknown main item tag 0x0 [ 1175.657024][T15067] steelseries 0003:1038:1410.002E: unknown main item tag 0x0 [ 1175.666281][T15067] steelseries 0003:1038:1410.002E: unknown main item tag 0x0 [ 1175.716038][T15067] steelseries 0003:1038:1410.002E: missing HID_OUTPUT_REPORT 0 [ 1176.025632][T15067] usb 6-1: USB disconnect, device number 10 [ 1176.584302][T15305] IPVS: stopping master sync thread 8892 ... [ 1176.912108][ T150] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1176.923404][ T150] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1177.338683][ T3006] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1177.349913][ T3006] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1177.401034][T15309] netlink: 68 bytes leftover after parsing attributes in process `syz.7.4054'. [ 1178.242389][T15316] loop6: detected capacity change from 0 to 2048 [ 1178.376497][T15316] UDF-fs: error (device loop6): udf_read_tagged: tag version 0x0000 != 0x0002 || 0x0003, block 0 [ 1178.471744][T15316] UDF-fs: warning (device loop6): udf_load_vrs: No anchor found [ 1178.479806][T15316] UDF-fs: Scanning with blocksize 512 failed [ 1178.581981][T15316] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 1178.939545][T15324] loop9: detected capacity change from 0 to 512 [ 1178.991306][T15324] EXT4-fs: Ignoring removed nobh option [ 1179.048975][T15324] EXT4-fs (loop9): encrypted files will use data=ordered instead of data journaling mode [ 1179.214621][T15324] EXT4-fs (loop9): 1 truncate cleaned up [ 1179.227190][T15324] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1179.307505][T15328] netlink: 36 bytes leftover after parsing attributes in process `syz.7.4061'. [ 1179.430760][T15318] loop4: detected capacity change from 0 to 4096 [ 1179.991718][T15318] ntfs3(loop4): MFT: r=19, expect seq=1 instead of a48d! [ 1180.002641][T15318] ntfs3(loop4): Mark volume as dirty due to NTFS errors [ 1180.125857][T15061] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1181.482888][T15344] sch_tbf: burst 240 is lower than device lo mtu (65550) ! [ 1182.458681][T15349] loop9: detected capacity change from 0 to 2048 [ 1182.557890][T15349] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none. [ 1182.790983][T15357] loop4: detected capacity change from 0 to 256 [ 1183.143440][T15061] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1183.807557][T15364] netlink: 60 bytes leftover after parsing attributes in process `syz.7.4078'. [ 1183.901116][T15366] netlink: 60 bytes leftover after parsing attributes in process `syz.7.4078'. [ 1184.034330][T15368] loop4: detected capacity change from 0 to 1024 [ 1185.433860][T15380] loop4: detected capacity change from 0 to 512 [ 1185.471385][T15382] netlink: 4 bytes leftover after parsing attributes in process `syz.5.4085'. [ 1185.553320][T15382] netlink: 4 bytes leftover after parsing attributes in process `syz.5.4085'. [ 1185.572477][T15380] EXT4-fs: Ignoring removed i_version option [ 1185.579016][T15380] EXT4-fs: Ignoring removed bh option [ 1185.822896][T15380] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1185.930129][T15380] ext4 filesystem being mounted at /837/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 1186.211175][T15392] gretap0: entered promiscuous mode [ 1186.219864][T15392] vlan3: entered promiscuous mode [ 1186.679292][ T5825] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1187.242501][T15397] netlink: 16255 bytes leftover after parsing attributes in process `syz.6.4091'. [ 1187.884830][T15402] loop4: detected capacity change from 0 to 764 [ 1188.070987][T15402] rock: directory entry would overflow storage [ 1188.077556][T15402] rock: sig=0x5245, size=8, remaining=5 [ 1188.206152][T15405] [U] [ 1191.879791][T15441] lo speed is unknown, defaulting to 1000 [ 1191.886038][T15441] lo speed is unknown, defaulting to 1000 [ 1191.893675][T15441] lo speed is unknown, defaulting to 1000 [ 1191.917953][T15441] iwpm_register_pid: Unable to send a nlmsg (client = 2) [ 1191.977372][T15441] infiniband syz2: RDMA CMA: cma_listen_on_dev, error -98 [ 1192.129430][T15441] lo speed is unknown, defaulting to 1000 [ 1192.145371][T15441] lo speed is unknown, defaulting to 1000 [ 1192.158045][T15441] lo speed is unknown, defaulting to 1000 [ 1192.203135][T15441] lo speed is unknown, defaulting to 1000 [ 1192.215394][T15441] lo speed is unknown, defaulting to 1000 [ 1193.259985][T15455] hsr0: entered promiscuous mode [ 1193.270043][T15455] macsec1: entered promiscuous mode [ 1193.405578][T15457] netlink: 20 bytes leftover after parsing attributes in process `syz.4.4117'. [ 1193.418365][T15457] netlink: 'syz.4.4117': attribute type 6 has an invalid length. [ 1194.482243][T15467] loop7: detected capacity change from 0 to 128 [ 1194.673326][T15467] EXT4-fs (loop7): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 1194.815168][T15467] ext4 filesystem being mounted at /200/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 1195.067174][ T5441] usb 10-1: new high-speed USB device number 2 using dummy_hcd [ 1195.314893][ T5441] usb 10-1: Using ep0 maxpacket: 8 [ 1195.357380][ T5441] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 1195.372220][ T5441] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 1195.385357][ T5441] usb 10-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 1195.402469][ T5441] usb 10-1: New USB device found, idVendor=1e71, idProduct=170e, bcdDevice= 0.00 [ 1195.412340][ T5441] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1195.507501][ T5441] usb 10-1: config 0 descriptor?? [ 1195.545776][T12873] EXT4-fs (loop7): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 1196.105010][ T5441] nzxt-kraken2 0003:1E71:170E.002F: unknown main item tag 0x0 [ 1196.116112][ T5441] nzxt-kraken2 0003:1E71:170E.002F: unknown main item tag 0x0 [ 1196.130315][ T5441] nzxt-kraken2 0003:1E71:170E.002F: unknown main item tag 0x0 [ 1196.143988][ T5441] nzxt-kraken2 0003:1E71:170E.002F: unknown main item tag 0x0 [ 1196.156252][ T5441] nzxt-kraken2 0003:1E71:170E.002F: item fetching failed at offset 4/5 [ 1196.314701][ T5441] nzxt-kraken2 0003:1E71:170E.002F: hid parse failed with -22 [ 1196.323776][ T5441] nzxt-kraken2 0003:1E71:170E.002F: probe with driver nzxt-kraken2 failed with error -22 [ 1196.514177][ T5441] usb 10-1: USB disconnect, device number 2 [ 1197.479386][T15490] loop7: detected capacity change from 0 to 164 [ 1197.620490][T15490] Unable to read rock-ridge attributes [ 1197.881744][T15490] Unable to read rock-ridge attributes [ 1198.298365][T15497] loop9: detected capacity change from 0 to 256 [ 1198.348705][T15497] exfat: Deprecated parameter 'namecase' [ 1198.355397][T15497] exfat: Deprecated parameter 'utf8' [ 1198.582194][T15497] exFAT-fs (loop9): failed to load upcase table (idx : 0x00010000, chksum : 0x36dfe6b4, utbl_chksum : 0xe619d30d) [ 1199.054725][ T5441] usb 5-1: new full-speed USB device number 28 using dummy_hcd [ 1199.322699][ T5441] usb 5-1: config 0 has an invalid interface number: 168 but max is 0 [ 1199.334370][ T5441] usb 5-1: config 0 has no interface number 0 [ 1199.341058][ T5441] usb 5-1: New USB device found, idVendor=05ab, idProduct=0060, bcdDevice=11.06 [ 1199.353407][ T5441] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1199.515711][ T5441] usb 5-1: config 0 descriptor?? [ 1199.829506][T15499] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 1199.844071][T15499] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 1199.890891][T14067] Bluetooth: hci4: adv larger than maximum supported [ 1199.891236][T14067] Bluetooth: hci4: Malformed LE Event: 0x0d [ 1199.909647][ T5441] usb 5-1: string descriptor 0 read error: -71 [ 1199.929911][ T5441] usb-storage 5-1:0.168: USB Mass Storage device detected [ 1200.044332][ T5441] usb-storage 5-1:0.168: Quirks match for vid 05ab pid 0060: 2 [ 1200.191920][ T5441] usb 5-1: USB disconnect, device number 28 [ 1200.260124][T15513] netem: change failed [ 1200.724067][T15509] loop9: detected capacity change from 0 to 4096 [ 1202.340611][T15526] netlink: 8 bytes leftover after parsing attributes in process `syz.9.4148'. [ 1202.445020][T15529] loop5: detected capacity change from 0 to 256 [ 1203.173731][T15529] FAT-fs (loop5): IO charset ut not found [ 1205.219770][T15067] usb 7-1: new high-speed USB device number 9 using dummy_hcd [ 1205.406887][T15548] loop9: detected capacity change from 0 to 4096 [ 1205.420012][T15067] usb 7-1: Using ep0 maxpacket: 8 [ 1205.460010][T15067] usb 7-1: config 1 has 1 interface, different from the descriptor's value: 7 [ 1205.461429][ T5441] usb 6-1: new high-speed USB device number 11 using dummy_hcd [ 1205.530888][T15067] usb 7-1: New USB device found, idVendor=082d, idProduct=0100, bcdDevice=70.4b [ 1205.543722][T15067] usb 7-1: New USB device strings: Mfr=44, Product=2, SerialNumber=3 [ 1205.556002][T15067] usb 7-1: Product: syz [ 1205.561604][T15067] usb 7-1: Manufacturer: syz [ 1205.571344][T15067] usb 7-1: SerialNumber: syz [ 1205.710581][ T5441] usb 6-1: too many endpoints for config 0 interface 0 altsetting 0: 33, using maximum allowed: 30 [ 1205.724995][ T5441] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 253, changing to 11 [ 1205.741533][ T5441] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 33 [ 1205.758954][ T5441] usb 6-1: New USB device found, idVendor=09da, idProduct=001a, bcdDevice= 0.00 [ 1205.772609][ T5441] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1205.856266][ T5441] usb 6-1: config 0 descriptor?? [ 1206.073278][T15067] usb 7-1: Handspring Visor / Palm OS: port 13, is for unknown use [ 1206.081865][T15067] usb 7-1: Handspring Visor / Palm OS: port 0, is for Generic use [ 1206.093191][T15067] usb 7-1: Handspring Visor / Palm OS: Number of ports: 2 [ 1206.312133][ T5441] usbhid 6-1:0.0: can't add hid device: -71 [ 1206.319191][ T5441] usbhid 6-1:0.0: probe with driver usbhid failed with error -71 [ 1206.339691][T15067] usb 7-1: palm_os_3_probe - error -71 getting bytes available request [ 1206.349653][T15067] visor 7-1:1.0: Handspring Visor / Palm OS converter detected [ 1206.409661][T15548] ntfs3(loop9): failed to convert "046c" to maccroatian [ 1206.445428][ T5441] usb 6-1: USB disconnect, device number 11 [ 1206.488388][T15067] usb 7-1: Handspring Visor / Palm OS converter now attached to ttyUSB0 [ 1206.511342][T15562] netlink: 4 bytes leftover after parsing attributes in process `syz.7.4165'. [ 1206.588945][T15067] usb 7-1: Handspring Visor / Palm OS converter now attached to ttyUSB1 [ 1206.696764][T15067] usb 7-1: USB disconnect, device number 9 [ 1206.727339][T15067] visor ttyUSB0: Handspring Visor / Palm OS converter now disconnected from ttyUSB0 [ 1206.817519][T15067] visor ttyUSB1: Handspring Visor / Palm OS converter now disconnected from ttyUSB1 [ 1206.831071][T15067] visor 7-1:1.0: device disconnected [ 1208.074378][T15571] vlan2: entered promiscuous mode [ 1208.085297][T15571] netdevsim netdevsim6 netdevsim0: entered promiscuous mode [ 1208.095128][T15571] vlan2: entered allmulticast mode [ 1208.509150][T15067] usb 5-1: new high-speed USB device number 29 using dummy_hcd [ 1208.769592][T15067] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 1208.780637][T15067] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 1208.797484][T15067] usb 5-1: New USB device found, idVendor=1020, idProduct=0006, bcdDevice= 0.00 [ 1208.807006][T15067] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1208.944757][T15067] usb 5-1: config 0 descriptor?? [ 1209.079697][T15581] netlink: 'syz.5.4174': attribute type 1 has an invalid length. [ 1209.480400][T15067] belkin 0003:1020:0006.0030: item fetching failed at offset 0/3 [ 1209.596776][T15067] belkin 0003:1020:0006.0030: parse failed [ 1209.603089][T15067] belkin 0003:1020:0006.0030: probe with driver belkin failed with error -22 [ 1209.783260][T15067] usb 5-1: USB disconnect, device number 29 [ 1209.947002][T15586] netlink: 8 bytes leftover after parsing attributes in process `syz.9.4176'. [ 1209.960640][T15586] netlink: 8 bytes leftover after parsing attributes in process `syz.9.4176'. [ 1211.423714][T15600] loop4: detected capacity change from 0 to 512 [ 1211.685577][T15600] EXT4-fs error (device loop4): ext4_xattr_inode_iget:437: comm syz.4.4183: Parent and EA inode have the same ino 15 [ 1211.721700][T15600] EXT4-fs (loop4): 1 orphan inode deleted [ 1211.733328][T15600] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1212.417240][ T5825] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1212.645168][T15614] 9p: p9: multiple sources not supported [ 1215.397541][T15644] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check. [ 1216.180296][T15649] tipc: Enabling of bearer rejected, media not registered [ 1216.850236][ T5820] Bluetooth: hci2: command 0x0405 tx timeout [ 1217.315360][T15664] loop9: detected capacity change from 0 to 512 [ 1217.353477][T15664] EXT4-fs: Ignoring removed bh option [ 1217.405004][T15664] EXT4-fs (loop9): encrypted files will use data=ordered instead of data journaling mode [ 1217.525173][T15664] EXT4-fs error (device loop9): ext4_read_block_bitmap_nowait:483: comm syz.9.4213: Invalid block bitmap block 0 in block_group 0 [ 1217.652406][T15664] EXT4-fs error (device loop9) in ext4_mb_clear_bb:6689: Corrupt filesystem [ 1217.760053][T15664] EXT4-fs error (device loop9): ext4_clear_blocks:876: inode #11: comm syz.9.4213: attempt to clear invalid blocks 983261 len 1 [ 1217.866752][T15664] EXT4-fs error (device loop9): __ext4_get_inode_loc:4830: comm syz.9.4213: Invalid inode table block 0 in block_group 0 [ 1217.916095][ T1288] ieee802154 phy0 wpan0: encryption failed: -22 [ 1217.925905][ T1288] ieee802154 phy1 wpan1: encryption failed: -22 [ 1217.984926][T15664] EXT4-fs error (device loop9) in ext4_reserve_inode_write:6298: Corrupt filesystem [ 1218.010117][T15664] EXT4-fs error (device loop9) in ext4_orphan_del:303: Corrupt filesystem [ 1218.021987][T15664] EXT4-fs error (device loop9): __ext4_get_inode_loc:4830: comm syz.9.4213: Invalid inode table block 0 in block_group 0 [ 1218.055610][T15664] EXT4-fs error (device loop9) in ext4_reserve_inode_write:6298: Corrupt filesystem [ 1218.133256][T15664] EXT4-fs error (device loop9): ext4_truncate:4635: inode #11: comm syz.9.4213: mark_inode_dirty error [ 1218.181658][T15664] EXT4-fs error (device loop9) in ext4_process_orphan:345: Corrupt filesystem [ 1218.237360][T15664] EXT4-fs error (device loop9): __ext4_get_inode_loc:4830: comm syz.9.4213: Invalid inode table block 0 in block_group 0 [ 1218.320766][T15664] EXT4-fs (loop9): 1 truncate cleaned up [ 1218.329458][T15664] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1219.096189][T15061] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1219.541913][T15680] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 1219.564671][ T42] lo speed is unknown, defaulting to 1000 [ 1219.622067][T15678] loop7: detected capacity change from 0 to 1024 [ 1219.759762][T15678] hfsplus: request for non-existent node 3 in B*Tree [ 1219.767358][T15678] hfsplus: request for non-existent node 3 in B*Tree [ 1219.954495][T15683] loop5: detected capacity change from 0 to 1024 [ 1220.601495][ T59] hfsplus: b-tree write err: -5, ino 4 [ 1221.428210][T15696] loop7: detected capacity change from 0 to 1024 [ 1221.514399][T15696] EXT4-fs: Ignoring removed nomblk_io_submit option [ 1221.603179][ T42] usb 6-1: new high-speed USB device number 12 using dummy_hcd [ 1221.672353][T15696] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1221.857357][ T42] usb 6-1: Using ep0 maxpacket: 32 [ 1221.930900][ T42] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 1221.944912][ T42] usb 6-1: config 0 interface 0 altsetting 16 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 1221.960650][ T42] usb 6-1: config 0 interface 0 altsetting 16 endpoint 0x81 has invalid wMaxPacketSize 0 [ 1221.971086][ T42] usb 6-1: config 0 interface 0 altsetting 16 has 1 endpoint descriptor, different from the interface descriptor's value: 5 [ 1221.987451][ T42] usb 6-1: config 0 interface 0 has no altsetting 0 [ 1221.994368][ T42] usb 6-1: New USB device found, idVendor=044f, idProduct=b65d, bcdDevice= 0.00 [ 1222.004044][ T42] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1222.093018][T15705] netlink: 64138 bytes leftover after parsing attributes in process `syz.4.4229'. [ 1222.125389][ T42] usb 6-1: config 0 descriptor?? [ 1222.245595][T15694] loop6: detected capacity change from 0 to 4096 [ 1222.320893][T15694] ntfs3(loop6): Different NTFS sector size (4096) and media sector size (512). [ 1222.500447][T12873] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1222.634523][ T42] hid-thrustmaster 0003:044F:B65D.0031: unknown main item tag 0x0 [ 1222.645874][ T42] hid-thrustmaster 0003:044F:B65D.0031: unknown main item tag 0x0 [ 1222.661233][ T42] hid-thrustmaster 0003:044F:B65D.0031: unknown main item tag 0x0 [ 1222.674070][ T42] hid-thrustmaster 0003:044F:B65D.0031: unknown main item tag 0x0 [ 1222.682339][ T42] hid-thrustmaster 0003:044F:B65D.0031: unknown main item tag 0x0 [ 1222.904375][T15694] ntfs3(loop6): Mark volume as dirty due to NTFS errors [ 1222.954973][ T42] hid-thrustmaster 0003:044F:B65D.0031: hidraw0: USB HID v0.00 Device [HID 044f:b65d] on usb-dummy_hcd.5-1/input0 [ 1222.977471][ T42] hid-thrustmaster 0003:044F:B65D.0031: Wrong number of endpoints? [ 1222.987842][ C1] hid-thrustmaster 0003:044F:B65D.0031: URB to get model id failed with error -71 [ 1223.028113][T15694] ntfs3(loop6): ino=1a, mi_enum_attr [ 1223.037630][T15694] ntfs3(loop6): Failed to initialize $Extend/$ObjId. [ 1223.175444][T15694] ntfs3(loop6): ino=5, "/" ntfs_readdir [ 1223.184750][ T42] usb 6-1: USB disconnect, device number 12 [ 1224.453857][T15718] loop5: detected capacity change from 0 to 128 [ 1224.525248][T15718] FAT-fs (loop5): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 1224.542270][T15715] fido_id[15715]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.5/usb6/report_descriptor': No such file or directory [ 1226.318053][T15737] loop7: detected capacity change from 0 to 256 [ 1226.372024][T15737] exfat: Deprecated parameter 'namecase' [ 1226.378735][T15737] exfat: Deprecated parameter 'namecase' [ 1226.384946][T15737] exfat: Deprecated parameter 'namecase' [ 1226.483182][T15737] exFAT-fs (loop7): Medium has reported failures. Some data may be lost. [ 1226.605548][T15737] exFAT-fs (loop7): failed to load upcase table (idx : 0x00010000, chksum : 0x7f1fc68d, utbl_chksum : 0xe619d30d) [ 1227.293333][T15745] loop5: detected capacity change from 0 to 128 [ 1230.010416][ T5169] udevd[5169]: worker [6021] terminated by signal 33 (Unknown signal 33) [ 1230.044368][ T5169] udevd[5169]: worker [6021] failed while handling '/devices/virtual/block/loop5' [ 1230.120380][T15769] loop7: detected capacity change from 0 to 1024 [ 1230.188380][T15771] netlink: 8 bytes leftover after parsing attributes in process `syz.6.4260'. [ 1230.612986][T15775] netlink: 28 bytes leftover after parsing attributes in process `syz.4.4262'. [ 1230.991606][T15779] loop6: detected capacity change from 0 to 22 [ 1231.125883][T15779] romfs: Mounting image 'rom 637cf1fa' through the block layer [ 1231.987673][T15067] usb 5-1: new high-speed USB device number 30 using dummy_hcd [ 1232.194700][T15067] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 1232.205457][T15067] usb 5-1: New USB device found, idVendor=046d, idProduct=c71f, bcdDevice= 0.00 [ 1232.215066][T15067] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1232.358772][T15067] usb 5-1: config 0 descriptor?? [ 1232.871209][T15067] logitech-djreceiver 0003:046D:C71F.0032: item fetching failed at offset 5/7 [ 1232.935410][T15067] logitech-djreceiver 0003:046D:C71F.0032: logi_dj_probe: parse failed [ 1232.944389][T15067] logitech-djreceiver 0003:046D:C71F.0032: probe with driver logitech-djreceiver failed with error -22 [ 1233.102094][T15067] usb 5-1: USB disconnect, device number 30 [ 1233.368424][T15797] netlink: 32 bytes leftover after parsing attributes in process `syz.6.4273'. [ 1234.232731][T15803] loop7: detected capacity change from 0 to 256 [ 1236.308895][T15821] loop5: detected capacity change from 0 to 512 [ 1236.403466][T15821] EXT4-fs (loop5): ext4_check_descriptors: Checksum for group 0 failed (57259!=33349) [ 1236.500429][T15825] netlink: 12 bytes leftover after parsing attributes in process `syz.6.4286'. [ 1236.525545][T15821] EXT4-fs (loop5): orphan cleanup on readonly fs [ 1236.627337][T15821] EXT4-fs error (device loop5): ext4_read_block_bitmap_nowait:517: comm syz.5.4285: Block bitmap for bg 0 marked uninitialized [ 1236.755081][T15821] EXT4-fs error (device loop5) in ext4_mb_clear_bb:6689: Corrupt filesystem [ 1236.858347][T15821] EXT4-fs (loop5): 1 orphan inode deleted [ 1236.869842][T15821] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none. [ 1236.951213][T15821] EXT4-fs (loop5): warning: mounting fs with errors, running e2fsck is recommended [ 1237.034027][T15821] EXT4-fs (loop5): re-mounted 00000000-0000-0000-0000-000000000000 r/w. [ 1237.135583][T15821] EXT4-fs error (device loop5): ext4_read_block_bitmap_nowait:517: comm syz.5.4285: Block bitmap for bg 0 marked uninitialized [ 1237.257951][T15833] loop6: detected capacity change from 0 to 512 [ 1237.379543][T15833] EXT4-fs: Ignoring removed oldalloc option [ 1237.496725][T15833] EXT4-fs error (device loop6): ext4_orphan_get:1417: comm syz.6.4290: bad orphan inode 15 [ 1237.523146][T15833] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1237.802813][ T8770] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1237.981587][T11938] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1241.135523][T15871] loop9: detected capacity change from 0 to 1024 [ 1241.222626][T15871] EXT4-fs: Ignoring removed nomblk_io_submit option [ 1241.423701][T15871] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e855c01c, mo2=0003] [ 1241.531042][T15871] System zones: 0-1, 3-36 [ 1241.600430][T15871] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1242.289665][T15061] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1242.317179][ T30] audit: type=1326 audit(1768520062.260:162): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15882 comm="syz.6.4312" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf706d539 code=0x7ffc0000 [ 1242.342966][ T30] audit: type=1326 audit(1768520062.260:163): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15882 comm="syz.6.4312" exe="/root/syz-executor" sig=0 arch=40000003 syscall=192 compat=1 ip=0xf706d539 code=0x7ffc0000 [ 1242.369123][ T30] audit: type=1326 audit(1768520062.260:164): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15882 comm="syz.6.4312" exe="/root/syz-executor" sig=0 arch=40000003 syscall=125 compat=1 ip=0xf706d539 code=0x7ffc0000 [ 1242.396584][ T30] audit: type=1326 audit(1768520062.280:165): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15882 comm="syz.6.4312" exe="/root/syz-executor" sig=0 arch=40000003 syscall=175 compat=1 ip=0xf706d539 code=0x7ffc0000 [ 1242.425766][ T30] audit: type=1326 audit(1768520062.290:166): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15882 comm="syz.6.4312" exe="/root/syz-executor" sig=0 arch=40000003 syscall=435 compat=1 ip=0xf7208b00 code=0x7ffc0000 [ 1242.454319][ T30] audit: type=1326 audit(1768520062.290:167): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15882 comm="syz.6.4312" exe="/root/syz-executor" sig=0 arch=40000003 syscall=175 compat=1 ip=0xf706d539 code=0x7ffc0000 [ 1242.480008][ T30] audit: type=1326 audit(1768520062.290:168): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15882 comm="syz.6.4312" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf706d539 code=0x7ffc0000 [ 1242.507316][ T30] audit: type=1326 audit(1768520062.290:169): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15882 comm="syz.6.4312" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf706d539 code=0x7ffc0000 [ 1242.536770][ T30] audit: type=1326 audit(1768520062.360:170): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15882 comm="syz.6.4312" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf706d539 code=0x7ffc0000 [ 1242.563543][ T30] audit: type=1326 audit(1768520062.360:171): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15882 comm="syz.6.4312" exe="/root/syz-executor" sig=0 arch=40000003 syscall=192 compat=1 ip=0xf706d539 code=0x7ffc0000 [ 1243.585054][T15898] IPVS: sync thread started: state = BACKUP, mcast_ifn = vcan0, syncid = 0, id = 0 [ 1245.361704][T15912] mkiss: ax0: crc mode is auto. [ 1249.587734][T15958] netlink: 8 bytes leftover after parsing attributes in process `syz.7.4346'. [ 1251.580910][ T30] kauditd_printk_skb: 27 callbacks suppressed [ 1251.581003][ T30] audit: type=1326 audit(1768520071.550:199): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15979 comm="syz.6.4356" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf706d539 code=0x7ffc0000 [ 1251.618509][ T30] audit: type=1326 audit(1768520071.550:200): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15979 comm="syz.6.4356" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf706d539 code=0x7ffc0000 [ 1251.909360][ T30] audit: type=1326 audit(1768520071.640:201): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15979 comm="syz.6.4356" exe="/root/syz-executor" sig=0 arch=40000003 syscall=239 compat=1 ip=0xf706d539 code=0x7ffc0000 [ 1251.935058][ T30] audit: type=1326 audit(1768520071.640:202): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15979 comm="syz.6.4356" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf706d539 code=0x7ffc0000 [ 1251.964375][ T30] audit: type=1326 audit(1768520071.640:203): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15979 comm="syz.6.4356" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf706d539 code=0x7ffc0000 [ 1252.203967][T15984] loop5: detected capacity change from 0 to 1764 [ 1252.303297][T15984] ISOFS: root inode is unusable. Disabling Rock Ridge and switching to Joliet. [ 1253.350113][T15994] loop7: detected capacity change from 0 to 256 [ 1253.395845][T15994] exfat: Deprecated parameter 'namecase' [ 1253.402552][T15994] exfat: Deprecated parameter 'utf8' [ 1253.559617][T15998] netlink: 8 bytes leftover after parsing attributes in process `syz.5.4364'. [ 1253.623320][T15994] exFAT-fs (loop7): failed to load upcase table (idx : 0x00012366, chksum : 0x6ab66362, utbl_chksum : 0xe619d30d) [ 1253.824087][T15994] exFAT-fs (loop7): error, in sector 161, dentry 16 should be unused, but 0xff [ 1253.837695][T15994] exFAT-fs (loop7): Filesystem has been set read-only [ 1254.069936][T16005] netlink: 108 bytes leftover after parsing attributes in process `syz.6.4366'. [ 1254.079628][T16005] netlink: 8 bytes leftover after parsing attributes in process `syz.6.4366'. [ 1255.891439][T16024] netlink: 20 bytes leftover after parsing attributes in process `syz.4.4375'. [ 1256.740371][T16032] loop9: detected capacity change from 0 to 64 [ 1257.183387][T16038] ip6tnl2: entered allmulticast mode [ 1257.493341][T16040] netlink: 8 bytes leftover after parsing attributes in process `syz.7.4383'. [ 1259.597134][T16061] lo speed is unknown, defaulting to 1000 [ 1262.024246][T16082] tipc: Bearer : already 2 bearers with priority 10 [ 1262.032757][T16082] tipc: Bearer : trying with adjusted priority [ 1262.044344][T16082] tipc: Enabled bearer , priority 9 [ 1264.057448][ T5441] usb 10-1: new high-speed USB device number 3 using dummy_hcd [ 1264.274053][ T5441] usb 10-1: Using ep0 maxpacket: 16 [ 1264.305513][ T5441] usb 10-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 1264.305676][ T5441] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7 [ 1264.305849][ T5441] usb 10-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 3 [ 1264.314430][ T5441] usb 10-1: New USB device found, idVendor=2040, idProduct=b138, bcdDevice= 1.42 [ 1264.314602][ T5441] usb 10-1: New USB device strings: Mfr=4, Product=0, SerialNumber=0 [ 1264.314736][ T5441] usb 10-1: Manufacturer: syz [ 1264.334470][ T5441] usb 10-1: config 0 descriptor?? [ 1264.660438][T16107] lo speed is unknown, defaulting to 1000 [ 1265.612330][T16113] loop4: detected capacity change from 0 to 1024 [ 1266.398087][ T3426] hfsplus: b-tree write err: -5, ino 4 [ 1267.028199][T15067] usb 10-1: USB disconnect, device number 3 [ 1267.947721][T16130] use of bytesused == 0 is deprecated and will be removed in the future, [ 1267.959805][T16130] use the actual size instead. [ 1268.851954][T16140] netlink: 4 bytes leftover after parsing attributes in process `syz.4.4429'. [ 1268.861353][T16140] netlink: 348 bytes leftover after parsing attributes in process `syz.4.4429'. [ 1268.873939][T16140] netlink: 4 bytes leftover after parsing attributes in process `syz.4.4429'. [ 1268.883249][T16140] netlink: 348 bytes leftover after parsing attributes in process `syz.4.4429'. [ 1268.896026][T16140] netlink: 4 bytes leftover after parsing attributes in process `syz.4.4429'. [ 1269.505671][T16140] netlink: 4 bytes leftover after parsing attributes in process `syz.4.4429'. [ 1269.516570][T16140] netlink: 348 bytes leftover after parsing attributes in process `syz.4.4429'. [ 1269.531403][T16140] netlink: 4 bytes leftover after parsing attributes in process `syz.4.4429'. [ 1269.541514][T16140] netlink: 348 bytes leftover after parsing attributes in process `syz.4.4429'. [ 1269.558370][T16140] netlink: 4 bytes leftover after parsing attributes in process `syz.4.4429'. [ 1270.605872][T16153] loop6: detected capacity change from 0 to 2048 [ 1270.763814][T16157] loop4: detected capacity change from 0 to 8 [ 1270.958305][T16153] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1271.195888][ T5820] Bluetooth: hci2: command 0x0405 tx timeout [ 1272.434277][T16170] loop5: detected capacity change from 0 to 128 [ 1272.640995][T16173] loop7: detected capacity change from 0 to 1024 [ 1272.678221][T16170] FAT-fs (loop5): error, fat_bmap_cluster: request beyond EOF (i_pos 52) [ 1272.687458][T16170] FAT-fs (loop5): error, fat_bmap_cluster: request beyond EOF (i_pos 52) [ 1272.696149][T16170] FAT-fs (loop5): error, fat_bmap_cluster: request beyond EOF (i_pos 52) [ 1272.708532][T16170] FAT-fs (loop5): error, fat_bmap_cluster: request beyond EOF (i_pos 52) [ 1272.717433][T16170] FAT-fs (loop5): error, fat_bmap_cluster: request beyond EOF (i_pos 52) [ 1272.731332][T16170] FAT-fs (loop5): error, fat_bmap_cluster: request beyond EOF (i_pos 52) [ 1272.744481][T16170] FAT-fs (loop5): error, fat_bmap_cluster: request beyond EOF (i_pos 52) [ 1272.753337][T16170] FAT-fs (loop5): error, fat_bmap_cluster: request beyond EOF (i_pos 52) [ 1272.762457][T16170] FAT-fs (loop5): error, fat_bmap_cluster: request beyond EOF (i_pos 52) [ 1272.777560][T16170] FAT-fs (loop5): error, fat_bmap_cluster: request beyond EOF (i_pos 52) [ 1272.786245][T16170] FAT-fs (loop5): error, fat_bmap_cluster: request beyond EOF (i_pos 52) [ 1272.795737][T16170] FAT-fs (loop5): error, fat_bmap_cluster: request beyond EOF (i_pos 52) [ 1272.804639][T16170] FAT-fs (loop5): error, fat_bmap_cluster: request beyond EOF (i_pos 52) [ 1272.816565][T16170] FAT-fs (loop5): error, fat_bmap_cluster: request beyond EOF (i_pos 52) [ 1272.825231][T16170] FAT-fs (loop5): error, fat_bmap_cluster: request beyond EOF (i_pos 52) [ 1272.839719][T16170] FAT-fs (loop5): error, fat_bmap_cluster: request beyond EOF (i_pos 52) [ 1272.852989][T16170] FAT-fs (loop5): error, fat_bmap_cluster: request beyond EOF (i_pos 52) [ 1272.969975][T16170] FAT-fs (loop5): error, fat_bmap_cluster: request beyond EOF (i_pos 52) [ 1272.979358][T16170] FAT-fs (loop5): error, fat_bmap_cluster: request beyond EOF (i_pos 52) [ 1272.991447][T16170] FAT-fs (loop5): error, fat_bmap_cluster: request beyond EOF (i_pos 52) [ 1273.000812][T16170] FAT-fs (loop5): error, fat_bmap_cluster: request beyond EOF (i_pos 52) [ 1273.015981][T16170] FAT-fs (loop5): error, fat_bmap_cluster: request beyond EOF (i_pos 52) [ 1273.024770][T16170] FAT-fs (loop5): error, fat_bmap_cluster: request beyond EOF (i_pos 52) [ 1273.043256][T16170] FAT-fs (loop5): error, fat_bmap_cluster: request beyond EOF (i_pos 52) [ 1273.086717][ T30] audit: type=1800 audit(1768520093.020:204): pid=16170 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.5.4441" name="file1" dev="loop5" ino=1048924 res=0 errno=0 [ 1273.549423][ T4203] hfsplus: b-tree write err: -5, ino 4 [ 1274.112303][T16183] loop7: detected capacity change from 0 to 8 [ 1274.227038][T16160] EXT4-fs error (device loop6): ext4_validate_block_bitmap:432: comm ext4lazyinit: bg 0: block 2: invalid block bitmap [ 1275.938963][T16197] loop7: detected capacity change from 0 to 2048 [ 1276.130719][T16197] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 1277.696830][T16215] loop5: detected capacity change from 0 to 64 [ 1277.753088][T16215] BFS-fs: bfs_fill_super(): loop5 is unclean, continuing [ 1278.097698][T16219] lo speed is unknown, defaulting to 1000 [ 1278.697594][T16225] netlink: 4 bytes leftover after parsing attributes in process `syz.5.4465'. [ 1278.922307][T16228] xt_limit: Overflow, try lower: 271964/0 [ 1279.441428][ T1288] ieee802154 phy0 wpan0: encryption failed: -22 [ 1279.448260][ T1288] ieee802154 phy1 wpan1: encryption failed: -22 [ 1281.056845][T16246] netlink: 32 bytes leftover after parsing attributes in process `syz.7.4475'. [ 1281.077473][T12875] IPVS: starting estimator thread 0... [ 1281.210524][T16253] IPVS: using max 192 ests per chain, 9600 per kthread [ 1283.814180][T16284] loop5: detected capacity change from 0 to 64 [ 1284.431623][T16287] team_slave_0: entered promiscuous mode [ 1284.437780][T16287] team_slave_1: entered promiscuous mode [ 1286.940958][T16308] ===================================================== [ 1286.951759][T16308] BUG: KMSAN: kernel-infoleak in _copy_to_iter+0xef3/0x33f0 [ 1286.964006][T16308] _copy_to_iter+0xef3/0x33f0 [ 1286.973442][T16308] __skb_datagram_iter+0x196/0x12c0 [ 1286.979150][T16308] skb_copy_datagram_iter+0x5b/0x1e0 [ 1286.984692][T16308] packet_recvmsg+0xe2b/0x24e0 [ 1286.992787][T16308] sock_recvmsg+0x2df/0x390 [ 1286.997749][T16308] ____sys_recvmsg+0x193/0x610 [ 1287.002751][T16308] ___sys_recvmsg+0x20b/0x850 [ 1287.010749][T16308] do_recvmmsg+0x50b/0xdf0 [ 1287.015517][T16308] __sys_recvmmsg+0xf3/0x460 [ 1287.020464][T16308] __ia32_compat_sys_recvmmsg_time32+0x102/0x1b0 [ 1287.030270][T16308] ia32_sys_call+0x2935/0x4340 [ 1287.035293][T16308] __do_fast_syscall_32+0x154/0x320 SYZFAIL: failed to recv rpc fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor) [ 1287.043096][T16308] do_fast_syscall_32+0x38/0x80 [ 1287.052177][T16308] do_SYSENTER_32+0x1f/0x30 [ 1287.057595][T16308] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 1287.068774][T16308] [ 1287.071215][T16308] Uninit was created at: [ 1287.075758][T16308] kmem_cache_alloc_node_noprof+0x9e7/0x17a0 [ 1287.086506][T16308] kmalloc_reserve+0x13c/0x4b0 [ 1287.091525][T16308] __alloc_skb+0x805/0x1040 [ 1287.096258][T16308] tipc_buf_acquire+0x4c/0x230 [ 1287.104480][T16308] tipc_disc_create+0x12f/0x870 [ 1287.109718][T16308] __tipc_nl_bearer_enable+0x1f61/0x2a00 [ 1287.115570][T16308] tipc_nl_compat_doit+0x67b/0xa10 [ 1287.124090][T16308] tipc_nl_compat_recv+0x1007/0x1670 [ 1287.129810][T16308] genl_family_rcv_msg_doit+0x338/0x3f0 [ 1287.137886][T16308] genl_rcv_msg+0xacf/0xc10 [ 1287.142708][T16308] netlink_rcv_skb+0x54d/0x680 [ 1287.151475][T16308] genl_rcv+0x41/0x60 [ 1287.155664][T16308] netlink_unicast+0xf04/0x12b0 [ 1287.161454][T16308] netlink_sendmsg+0x10b3/0x1250 [ 1287.175291][T16308] __sock_sendmsg+0x333/0x3d0 [ 1287.182205][T16308] ____sys_sendmsg+0x7f5/0xcf0 [ 1287.190483][T16308] ___sys_sendmsg+0x271/0x3b0 [ 1287.195402][T16308] __sys_sendmsg+0x1aa/0x300 [ 1287.200389][T16308] __ia32_compat_sys_sendmsg+0xa4/0x100 [ 1287.206229][T16308] ia32_sys_call+0x35f2/0x4340 [ 1287.214778][T16308] __do_fast_syscall_32+0x154/0x320 [ 1287.220353][T16308] do_fast_syscall_32+0x38/0x80 [ 1287.225481][T16308] do_SYSENTER_32+0x1f/0x30 [ 1287.233548][T16308] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 1287.242478][T16308] [ 1287.244915][T16308] Bytes 4-5 of 120 are uninitialized [ 1287.254699][T16308] Memory access of size 120 starts at ffff8881288c3d24 [ 1287.261823][T16308] Data copied to user address 00000000800019cc [ 1287.275493][T16308] [ 1287.279450][T16308] CPU: 1 UID: 0 PID: 16308 Comm: syz.7.4502 Tainted: G L syzkaller #0 PREEMPT(none) [ 1287.293727][T16308] Tainted: [L]=SOFTLOCKUP [ 1287.298298][T16308] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 1287.311616][T16308] ===================================================== [ 1287.318840][T16308] Disabling lock debugging due to kernel taint [ 1287.325120][T16308] Kernel panic - not syncing: kmsan.panic set ... [ 1287.331694][T16308] CPU: 1 UID: 0 PID: 16308 Comm: syz.7.4502 Tainted: G B L syzkaller #0 PREEMPT(none) [ 1287.342956][T16308] Tainted: [B]=BAD_PAGE, [L]=SOFTLOCKUP [ 1287.348709][T16308] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 1287.358912][T16308] Call Trace: [ 1287.362329][T16308] [ 1287.365383][T16308] __dump_stack+0x26/0x30 [ 1287.369960][T16308] dump_stack_lvl+0x50/0x1c0 [ 1287.374770][T16308] ? dump_stack+0x12/0x25 [ 1287.379325][T16308] dump_stack+0x1e/0x25 [ 1287.383701][T16308] vpanic+0x435/0xd30 [ 1287.388022][T16308] panic+0x15d/0x160 [ 1287.392205][T16308] kmsan_report+0x31c/0x320 [ 1287.396960][T16308] ? kmsan_internal_check_memory+0x16c/0x230 [ 1287.403184][T16308] ? kmsan_copy_to_user+0xf1/0x190 [ 1287.408538][T16308] ? _copy_to_iter+0xef3/0x33f0 [ 1287.413602][T16308] ? __skb_datagram_iter+0x196/0x12c0 [ 1287.419223][T16308] ? skb_copy_datagram_iter+0x5b/0x1e0 [ 1287.424933][T16308] ? packet_recvmsg+0xe2b/0x24e0 [ 1287.430091][T16308] ? sock_recvmsg+0x2df/0x390 [ 1287.434956][T16308] ? ____sys_recvmsg+0x193/0x610 [ 1287.440141][T16308] ? ___sys_recvmsg+0x20b/0x850 [ 1287.445233][T16308] ? do_recvmmsg+0x50b/0xdf0 [ 1287.450067][T16308] ? __sys_recvmmsg+0xf3/0x460 [ 1287.455072][T16308] ? __ia32_compat_sys_recvmmsg_time32+0x102/0x1b0 [ 1287.461853][T16308] ? ia32_sys_call+0x2935/0x4340 [ 1287.467048][T16308] ? __do_fast_syscall_32+0x154/0x320 [ 1287.472686][T16308] ? do_fast_syscall_32+0x38/0x80 [ 1287.477979][T16308] ? do_SYSENTER_32+0x1f/0x30 [ 1287.482834][T16308] ? entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 1287.489646][T16308] ? kmsan_get_metadata+0xfb/0x160 [ 1287.495030][T16308] ? kmsan_get_metadata+0xfb/0x160 [ 1287.500396][T16308] ? kmsan_internal_set_shadow_origin+0x7a/0x110 [ 1287.506994][T16308] ? kmsan_get_metadata+0xfb/0x160 [ 1287.512360][T16308] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 1287.518466][T16308] kmsan_internal_check_memory+0x16c/0x230 [ 1287.524540][T16308] kmsan_copy_to_user+0xf1/0x190 [ 1287.529914][T16308] _copy_to_iter+0xef3/0x33f0 [ 1287.534838][T16308] ? do_user_addr_fault+0x1a14/0x2550 [ 1287.540553][T16308] __skb_datagram_iter+0x196/0x12c0 [ 1287.546012][T16308] ? packet_recvmsg+0x3d1/0x24e0 [ 1287.551137][T16308] ? filter_irq_stacks+0x49/0x190 [ 1287.556388][T16308] ? __pfx_simple_copy_to_iter+0x10/0x10 [ 1287.562319][T16308] skb_copy_datagram_iter+0x5b/0x1e0 [ 1287.567864][T16308] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 1287.573955][T16308] packet_recvmsg+0xe2b/0x24e0 [ 1287.578982][T16308] ? __pfx_packet_recvmsg+0x10/0x10 [ 1287.584455][T16308] sock_recvmsg+0x2df/0x390 [ 1287.589173][T16308] ____sys_recvmsg+0x193/0x610 [ 1287.594180][T16308] ? import_iovec+0xb0/0xe0 [ 1287.598925][T16308] ? get_compat_msghdr+0x670/0x740 [ 1287.604328][T16308] ___sys_recvmsg+0x20b/0x850 [ 1287.609260][T16308] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 1287.615368][T16308] ? __fget_files+0x3b4/0x4a0 [ 1287.620301][T16308] ? __fget_files+0x3b9/0x4a0 [ 1287.625239][T16308] ? kmsan_get_metadata+0xfb/0x160 [ 1287.630612][T16308] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 1287.636706][T16308] do_recvmmsg+0x50b/0xdf0 [ 1287.641402][T16308] ? stack_depot_save_flags+0x35/0x790 [ 1287.647097][T16308] ? kmsan_get_metadata+0xfb/0x160 [ 1287.652500][T16308] __sys_recvmmsg+0xf3/0x460 [ 1287.657355][T16308] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 1287.663442][T16308] __ia32_compat_sys_recvmmsg_time32+0x102/0x1b0 [ 1287.670095][T16308] ia32_sys_call+0x2935/0x4340 [ 1287.675126][T16308] __do_fast_syscall_32+0x154/0x320 [ 1287.680614][T16308] do_fast_syscall_32+0x38/0x80 [ 1287.685736][T16308] do_SYSENTER_32+0x1f/0x30 [ 1287.690422][T16308] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 1287.696989][T16308] RIP: 0023:0xf7f84539 [ 1287.701212][T16308] Code: 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 [ 1287.721035][T16308] RSP: 002b:00000000f547655c EFLAGS: 00000206 ORIG_RAX: 0000000000000151 [ 1287.729664][T16308] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080004300 [ 1287.737884][T16308] RDX: 0000000000000001 RSI: 0000000000000000 RDI: 0000000000000000 [ 1287.746006][T16308] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 1287.754130][T16308] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000 [ 1287.762260][T16308] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 1287.770513][T16308] [ 1287.774288][T16308] Kernel Offset: disabled [ 1287.778694][T16308] Rebooting in 86400 seconds..