last executing test programs: 3m40.269033143s ago: executing program 3 (id=486): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000280)={0x18, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="180100002100000000000000000000008500000075000000a50000002300000095"], &(0x7f00000000c0)='GPL\x00'}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000001c0)='mmap_lock_acquire_returned\x00', r0, 0x0, 0x4}, 0x18) munmap(&(0x7f0000001000/0x3000)=nil, 0x3000) 3m38.47861477s ago: executing program 3 (id=491): r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$TCSETS(r0, 0x5402, 0x0) ioctl$TIOCSSOFTCAR(r0, 0x541a, &(0x7f0000000000)) 3m37.55919816s ago: executing program 3 (id=493): r0 = creat(&(0x7f0000000240)='./file0\x00', 0x0) pipe2$9p(&(0x7f0000001900)={0xffffffffffffffff}, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r0}, 0x2c, {[], [], 0x6b}}) 3m35.871400495s ago: executing program 3 (id=496): syz_mount_image$hfsplus(&(0x7f0000000100), &(0x7f0000000080)='./file1\x00', 0x80, &(0x7f0000000400)={[{@nodecompose}, {@creator={'creator', 0x3d, "ca2f02ad"}}, {@gid}, {@force}, {@umask={'umask', 0x3d, 0x18000000}}, {@gid}, {@nls={'nls', 0x3d, 'macceltic'}}]}, 0x44, 0x6fd, &(0x7f0000000500)="$eJzs3U1sHGf9B/DvrNcbbyq57nv/fyHFakQEDSR2TEmQkAgVQjlUKBKXXk3iNFacNLJdlESIuEDhCCeUQw9FKBx6Qj0gFXFAlDMSEleUeyTuEQcWzeysvV6/rRs7TsLnI83OMzPPy29+eWb2LdYG+J917u2MrqTIueNv3Si3792dWbh3d+Zqr5zkUJJG0uyuUlxLis+Ss+ku+b9yZ91dsdU4b9z/9MNjdz6e6W4166Wq39iu3ZrONiOs1Esmk4zU611qbtXfhby5ob/bu+q6WI27TNjRXuLgoHU2WNlN8yGuW+BxdzsZGd1k/0RyOMlY/Tog9d2h8YjD23O7ussBAADAY2iYN+fPPsiD3Mj4IwgHAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAnhpFMtJdVUujV55M0fv9/1a9r9RqHXC82/vKDsc/uPSIAgEAAAAAAACAffFJ/cX9kQd5kBsZ7+3vFNV3/q9VGy9Wj8/kvSxlLos5kRuZzXKWs5jpZHS8r8PWjdnl5cXpjS1/nbJlp9O5Xbc8lWRiQ8tTWwTa2OMTBwAAAAAAAICn009yLuMHHQQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAPQrkpHuqlpe7JUn0mgmGUvSKuutJH/qlZ9kfz7oAAAAAGCf9b15Hy/+0y10iuo9/8vV+/6xvJdrWc58lrOQuVysPgvoNmz8fWVm4d7dmavlsrHvb/9r16E0kozk/S1GnqpqvLTa4ly+m+/neCZzPouZzw8zm+XMZTLt8iQymyIT7e6nFxO9ODeP9+y6rfODsR0Z2H61iqSdS5mvYjuRC610PzapzqEc89W+0f7QSgZGfL/MTvGt2pA5upikXZd/VX8uU+s8O2Qf+2OiOvPR1YxMlbmvs/Hc9rnf5TwZHGk6jXLuVGl/cW2UcnNwpF7Of7CbnB/ursbKh5+vz/le2+VHaYOZOJVGPfuSl9fn/PoX7zy/vvGX//GX85cb165cvrR0fB9P6WFM7lRhtFcYzMRMXyZe2X721ZlYKDOxMnwmRgd3jA3bcn+16mxUt6Ih75bfqUqzea1vCr6bi5nL6UxlOmcylW/kVGZWZ1i5vLQur82Zq+tzUl1rjY33t/Y2wR/9Ul+lX+xQ+dEq8/JcX17773QT1bF6z9lfZqpv9j2//ezb9bNAOf7/1+VyjJ+uPuM8DtZlor4396J7YftM/KZTPi4tXLuyeHn2+pDjHavX5WX7wfp782+Hj3rw2X0vlPOlvOM2q60qJ+3efCmPvbAa7fp8tepvXLrtGhuOvbR6bCLjmc/3trxSW/VruI09dY+90n/sn2t3zlb9+qZ3bN2rnLybhepVyMazBeCxcvj1w632/fbf2h+1f9a+3H5r7M1DZw59oZXRvzb/OPL7xu8a3yxez0f5ccYPOlIAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHgaLN28dWV2YWFucbWQscE9D1toDY7VSTJE8zR2rHP3meHCyESy/VhFXWjt7bk/iYV2Bvb0fmHpYXv+ZPt/99ZDB19sMp/3uFDmYU867HS6Sa32dEZ20bzZa7V5nWaWxnJltmhucnUfWrsKMnFlduHfnXXN2+m7ZICn3Mnlq9dPLt289dX5q7PvzL0zd+3UmdNnTs98ffprJy/NL8xNdR8POkpgPyzdvDWyye4Nv3QLAAAAAAAAAAAAPD7q//2//Ln/mKG5Q53W4tLmIx951KcKAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAPKHOvZ3RlRSZnjoxVW7fuzuzUC698lrNZpJGkuJHSfFZcjbdJRN93RVbjfPG/U8/PHbn45m1vpq9+o3t2g1npV4ymWSkXu/s0CbdbOzvQl9/K58rvGL1DMuEHe0lDg7afwMAAP//6lP2Ew==") syz_mount_image$vfat(&(0x7f0000000280), &(0x7f00000002c0)='./file0\x00', 0x10000, 0xffffffffffffffff, 0x0, 0x0, 0x0) mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000040)='devtmpfs\x00', 0x0, 0x0) 3m34.641298804s ago: executing program 3 (id=501): r0 = socket$inet6_mptcp(0xa, 0x1, 0x106) setsockopt$inet6_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000140)='nv\x00', 0x3) getsockopt$inet6_tcp_buf(r0, 0x6, 0x1a, 0x0, &(0x7f0000000180)) 3m34.065091392s ago: executing program 3 (id=505): syz_mount_image$msdos(&(0x7f0000000240), &(0x7f0000000280)='./file0\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB="636865636b3d7374726963742c6e6f646f74732c6e6f646f74732c6e6f646f74732c6e6f646f74732c007db9b87a3b22e5cdbfd3408bf7f26c6f9e2e5a33a3de79757cd012da0fa08b018021308de4ff8e18c85136d66ca70f9e0202d9f4ae6ea8be44247a411f017b3641e72534ed28887e107245165398cb2190b1c94e503b9496f8a547d22bd1f5389f7d4c9888f5cf2358d4258a2647e5563c5bf7447ab02ee8751259a8c6ee852e305393a69052893580c4820d1ce2dcfccf9b1f8250ea0de206b8ef12366ebe20bc74087f57f579b70bd08afcf902e41a55b58f624e5ce5a03cf74baddfb64769c330584e79449ff96c074b0065a305dd039b056c50c00d1d6a"], 0x1, 0x236, &(0x7f0000000000)="$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") mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1) timerfd_settime(0xffffffffffffffff, 0x2, &(0x7f0000000180)={{}, {0x77359400}}, 0x0) 3m32.044998278s ago: executing program 32 (id=505): syz_mount_image$msdos(&(0x7f0000000240), &(0x7f0000000280)='./file0\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB="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"], 0x1, 0x236, &(0x7f0000000000)="$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") mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1) timerfd_settime(0xffffffffffffffff, 0x2, &(0x7f0000000180)={{}, {0x77359400}}, 0x0) 2m16.622506011s ago: executing program 1 (id=882): socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={0xffffffffffffffff}) recvmmsg(r0, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0) connect$unix(r0, &(0x7f0000000300)=@abs={0x0, 0x0, 0x4e21}, 0x6e) 2m15.004411775s ago: executing program 1 (id=878): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000001c0)={'syzkaller0\x00', 0x2}) ioctl$TUNSETLINK(r0, 0x400454cd, 0x30a) 2m14.156774055s ago: executing program 1 (id=883): r0 = socket$igmp(0x2, 0x3, 0x2) setsockopt$inet_int(r0, 0x0, 0xf, &(0x7f0000000080)=0x2, 0x4) bind$inet(r0, &(0x7f00000000c0)={0x2, 0x4e23, @empty}, 0x2d) 2m13.273541025s ago: executing program 1 (id=887): r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000002540), 0x2, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000140)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000040)={0xffffffffffffffff}, 0x13f, 0x4}}, 0x20) write$RDMA_USER_CM_CMD_RESOLVE_ADDR(r0, &(0x7f0000000280)={0x15, 0x110, 0xfa00, {r1, 0x0, 0x0, 0x30, 0x0, @in={0x1b, 0xfffc, @rand_addr=0x64010102}, @ib={0x1b, 0x0, 0x0, {}, 0x0, 0x1, 0x4}}}, 0x118) 2m12.443563111s ago: executing program 1 (id=891): r0 = open(&(0x7f0000000300)='.\x00', 0x2000, 0x0) ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f00000001c0)=0x10) mknodat$loop(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0x1000, 0x1) 2m11.233820565s ago: executing program 1 (id=906): syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000280)='./mnt\x00', 0x2000c16, &(0x7f0000000040)={[{@nobh}, {@usrjquota}]}, 0xff, 0x240, &(0x7f00000002c0)="$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") r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='cgroup.controllers\x00', 0x275a, 0x0) fsetxattr(r0, &(0x7f0000000000)=@known='security.selinux\x00', &(0x7f0000000080)='@\x00', 0x7c8, 0x0) 1m55.791080889s ago: executing program 33 (id=906): syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000280)='./mnt\x00', 0x2000c16, &(0x7f0000000040)={[{@nobh}, {@usrjquota}]}, 0xff, 0x240, &(0x7f00000002c0)="$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") r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='cgroup.controllers\x00', 0x275a, 0x0) fsetxattr(r0, &(0x7f0000000000)=@known='security.selinux\x00', &(0x7f0000000080)='@\x00', 0x7c8, 0x0) 1m25.148934167s ago: executing program 2 (id=1079): sendmsg$inet(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000180)=[{&(0x7f00000001c0)="5c00000012", 0x5}], 0x1, 0x0, 0x1f, 0x1f00c00e}, 0x0) r0 = fanotify_init(0x1, 0x1000) writev(r0, &(0x7f00000005c0)=[{&(0x7f00000001c0)="84", 0x8}, {0x0}], 0x2) 1m24.602252477s ago: executing program 2 (id=1092): r0 = socket(0x10, 0x3, 0x0) setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0xc, &(0x7f0000000040)={0x5}, 0x10) sendmsg$nl_route(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000000)=@ipv6_getroute={0x1c, 0x1a, 0xb01, 0x0, 0x0, {0x2, 0x0, 0x0, 0x0, 0xfd}}, 0x1c}}, 0x40004040) 1m23.997128643s ago: executing program 2 (id=1083): r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000000)='./binderfs/binder0\x00', 0x1802, 0x0) r1 = epoll_create1(0x0) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f00000000c0)) 1m23.396790241s ago: executing program 2 (id=1086): syz_mount_image$exfat(&(0x7f0000000080), &(0x7f0000000000)='./file0\x00', 0x800, &(0x7f0000000480)={[{@iocharset={'iocharset', 0x3d, 'iso8859-15'}}, {@umask={'umask', 0x3d, 0x3}}, {@keep_last_dots}, {}, {@umask={'umask', 0x3d, 0x7f}}, {@discard}, {@fmask={'fmask', 0x3d, 0x8}}, {@utf8}, {@iocharset={'iocharset', 0x3d, 'macinuit'}}, {@allow_utime={'allow_utime', 0x3d, 0xce38}}]}, 0x1, 0x1528, &(0x7f00000037c0)="$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") mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0) mount$bind(&(0x7f0000000040)='.\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x2a05004, 0x0) 1m22.476960849s ago: executing program 2 (id=1095): r0 = msgget$private(0x0, 0x0) msgrcv(r0, &(0x7f0000002380)={0x0, ""/2}, 0xa, 0x2, 0x1000) msgsnd(r0, &(0x7f00000023c0)={0x2, "e22af767ff4e91b9c9a05ee00b6e4a83290fcf75c12fd08ef1"}, 0x21, 0x800) 1m21.753161943s ago: executing program 2 (id=1100): openat$apparmor_thread_current(0xffffff9c, &(0x7f00000004c0), 0x2, 0x0) exit(0x0) syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00') 1m19.761068096s ago: executing program 34 (id=1100): openat$apparmor_thread_current(0xffffff9c, &(0x7f00000004c0), 0x2, 0x0) exit(0x0) syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00') 1m4.859790156s ago: executing program 6 (id=1175): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0) sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000005c0)={{0x14}, [@NFT_MSG_NEWRULE={0x78, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2, 0x0, 0xfffe}, [@NFTA_RULE_EXPRESSIONS={0x4c, 0x4, 0x0, 0x1, [{0x28, 0x1, 0x0, 0x1, @fib={{0x8}, @val={0x1c, 0x2, 0x0, 0x1, [@NFTA_FIB_FLAGS={0x8, 0x3, 0x1, 0x0, 0x6}, @NFTA_FIB_RESULT={0x8, 0x2, 0x1, 0x0, 0x2}, @NFTA_FIB_DREG={0x8, 0x1, 0x1, 0x0, 0x9}]}}}, {0x20, 0x1, 0x0, 0x1, @ct={{0x7}, @val={0x14, 0x2, 0x0, 0x1, [@NFTA_CT_KEY={0x8, 0x2, 0x1, 0x0, 0x11}, @NFTA_CT_SREG={0x8, 0x4, 0x1, 0x0, 0xc}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x5}}}, 0xa0}, 0x1, 0x0, 0x0, 0x840}, 0x0) 1m4.233399029s ago: executing program 6 (id=1179): r0 = socket(0x10, 0x3, 0x0) setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0xc, &(0x7f0000000180)={0x80000020}, 0x10) sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)=ANY=[@ANYBLOB="300000001a00010000000000000000001c000000000000000000000014"], 0x30}}, 0x0) 1m3.589629659s ago: executing program 6 (id=1182): r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB="18000000240001030000000000000000010000000400ae"], 0x18}, 0x1, 0x0, 0x0, 0x8001}, 0x4000) recvmmsg(r0, &(0x7f0000002c00)=[{{0x0, 0x0, 0x0}, 0x200001}, {{0x0, 0x0, 0x0}, 0x2046}, {{0x0, 0x0, 0x0}, 0x401}, {{0x0, 0x0, 0x0}, 0x101}, {{0x0, 0x0, 0x0}, 0x40}, {{0x0, 0x0, 0x0}, 0x409}, {{0x0, 0x0, &(0x7f0000000600)=[{&(0x7f0000000540)=""/130, 0x82}, {&(0x7f00000007c0)=""/4112, 0x1010}, {&(0x7f0000006080)=""/4085, 0xff5}, {&(0x7f00000000c0)=""/115, 0x70}, {&(0x7f0000000040)=""/96, 0x71}, {&(0x7f0000000340)=""/75, 0x4b}, {&(0x7f0000000240)=""/98, 0x62}, {&(0x7f00000003c0)=""/100, 0x64}, {&(0x7f0000001800)=""/203, 0xc8}, {&(0x7f0000000440)=""/67, 0x43}], 0xa}, 0x4d9}, {{0x0, 0xa, 0x0}, 0x8}], 0x8, 0x0, 0x0) 1m2.540477848s ago: executing program 6 (id=1189): syz_mount_image$erofs(&(0x7f0000000340), &(0x7f0000000580)='./file0\x00', 0x2000000, &(0x7f00000004c0)=ANY=[], 0x2, 0x222, &(0x7f0000000800)="$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") mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000180), 0x1204001, &(0x7f00000011c0)={[{@lowerdir={'lowerdir', 0x3d, '.'}, 0x3a}], [], 0x2f}) listxattr(&(0x7f0000000140)='./file0\x00', 0x0, 0x0) 1m1.67295035s ago: executing program 6 (id=1192): syz_mount_image$udf(&(0x7f0000000c40), &(0x7f0000000c80)='./file1\x00', 0x2818c02, &(0x7f0000002580)=ANY=[], 0x1, 0xc3b, &(0x7f0000001940)="$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") r0 = openat(0xffffffffffffff9c, &(0x7f00000001c0)='./file0/file0\x00', 0x4842, 0x0) writev(r0, &(0x7f0000000a40)=[{0x0}, {&(0x7f0000000e00)='t', 0x2fd200}, {0x0}, {&(0x7f0000001000)="d6", 0x20c00}], 0x21) 1m1.080507954s ago: executing program 6 (id=1196): r0 = openat$vnet(0xffffffffffffff9c, &(0x7f0000000140), 0x2, 0x0) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4001af83, &(0x7f00000000c0)) ioctl$VHOST_SET_OWNER(r0, 0xaf01, 0x0) 57.872303919s ago: executing program 35 (id=1196): r0 = openat$vnet(0xffffffffffffff9c, &(0x7f0000000140), 0x2, 0x0) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4001af83, &(0x7f00000000c0)) ioctl$VHOST_SET_OWNER(r0, 0xaf01, 0x0) 6.363506574s ago: executing program 8 (id=1477): r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f00000000c0)={0x0, 0x18, 0xfa00, {0x1, &(0x7f0000000040)={0xffffffffffffffff}, 0x13f, 0x4}}, 0x20) write$RDMA_USER_CM_CMD_BIND(r0, &(0x7f00000001c0)={0x14, 0x88, 0xfa00, {r1, 0x1c, 0x0, @in6={0xa, 0x4e20, 0x5d6, @loopback, 0xf}}}, 0x90) 5.952796634s ago: executing program 8 (id=1479): syz_mount_image$vfat(&(0x7f0000000ec0), &(0x7f0000000180)='./file2\x00', 0x420c, &(0x7f0000003240)=ANY=[], 0x6, 0x360, &(0x7f0000000b00)="$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") setsockopt$XDP_RX_RING(0xffffffffffffffff, 0x11b, 0x2, 0x0, 0x0) mount(&(0x7f0000000040)=@loop={'/dev/loop', 0x0}, &(0x7f0000000080)='.\x00', &(0x7f0000000000)='nilfs2\x00', 0x1810410, 0x0) 5.929316442s ago: executing program 4 (id=1480): syz_mount_image$hfsplus(&(0x7f0000000000), &(0x7f0000000400)='./file0\x00', 0x0, &(0x7f0000000c40)={[{@umask={'umask', 0x3d, 0x3}}, {@uid}, {}, {@uid}, {@nls={'nls', 0x3d, 'iso8859-5'}}, {@part={'part', 0x3d, 0x200006}}]}, 0x1, 0x6eb, &(0x7f0000000440)="$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") r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x0) getdents64(r0, &(0x7f0000001f80)=""/4098, 0x1002) 5.811995624s ago: executing program 7 (id=1481): syz_mount_image$ext4(&(0x7f0000000440)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x200000, &(0x7f0000001c40)={[{@dioread_nolock}, {@norecovery}, {@resgid}, {@nojournal_checksum}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {@nodelalloc}, {@errors_remount}, {@grpid}, {@auto_da_alloc_val={'auto_da_alloc', 0x3d, 0x343}}, {@grpid}, {@barrier_val={'barrier', 0x3d, 0x7}}, {@nombcache}], [{@subj_user={'subj_user', 0x3d, '('}}, {@obj_user={'obj_user', 0x3d, 'uid>'}}, {@uid_gt}, {@appraise_type}]}, 0xfd, 0x588, &(0x7f0000000680)="$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") setreuid(0xffffffffffffffff, 0xee00) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0) 5.45368482s ago: executing program 0 (id=1482): syz_mount_image$ext4(&(0x7f0000000d80)='ext4\x00', &(0x7f0000000cc0)='./bus\x00', 0x21081e, &(0x7f0000000280)={[{@mb_optimize_scan}, {@mb_optimize_scan={'mb_optimize_scan', 0x3d, 0x1}}, {@stripe={'stripe', 0x3d, 0x9}}]}, 0x1, 0x4fa, &(0x7f00000005c0)="$eJzs3c9vG1kdAPCvnThx0uwmu+wBEOyW3YWCqjqJuxut9gDLCSFUCdEjSG1I3CiKHUexU5rQQ3rmikQlTnDkD+DcE3cuCG5cygGJHxGoQeLg1YwnqZvaTdQkdhR/PtJo3ps39fe9pvNe/U3iF8DQuhoRuxExFhF3I2I6u57LjvisfST3Pdt7uLS/93ApF63W7X/l0vbkWnT8mcSV7DWLEfGj70X8NPdy3Mb2ztpitVrZzOqzzdrGbGN758ZqbXGlslJZL5cX5hfmPrn5cfnMxvpebSwrffXpH3e/9fOkW1PZlc5xnKX20AuHcRKjEfGD8wg2ACPZeMYG3RFeSz4i3o6I99PnfzpG0q8mAHCZtVrT0ZrurAMAl10+zYHl8qUsFzAV+Xyp1M7hvROT+Wq90bx+r761vtzOlc1EIX9vtVqZy3KFM1HIJfX5tPy8Xj5SvxkRb0XEL8cn0nppqV5dHuR/fABgiF05sv7/d7y9/gMAl1xx0B0AAPrO+g8Aw8f6DwDDx/oPAMOnvf5PDLobAEAfef8PAMPH+g8AQ+WHt24lR2s/+/zr5fvbW2v1+zeWK421Um1rqbRU39wordTrK+ln9tSOe71qvb4x/1FsPZj59kajOdvY3rlTq2+tN++kn+t9p1JI79rtw8gAgF7eeu/JX3LJivzpRHpEx14OhYH2DDhv+UF3ABiYkUF3ABgYu33B8DrFe3zpAbgkumzR+4Jit18QarVarfPrEnDOrn1J/h+GVUf+308Bw5CR/4fhJf8Pw6vVyp10z/846Y0AwMUmxw/0+P7/29n5d9k3B36yfPSOx+fZKwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAALjYDvb/LWV7gU9FPl8qRbwRETNRyN1brVbmIuLNiPjzeGE8qc8PuM8AwGnl/57L9v+6Nv3h1AtN7145LI5FxM9+fftXDxabzc0/RYzl/j1+cL35OLte7n/vAYDjHazT6bnjjfyzvYdLB0c/+/OP70ZEsR1/f28s9g/jj8Zoei5GISIm/5PL6m25jtzFaew+iogvdht/LqbSHEh759Oj8ZPYb/Q1fv6F+Pm0rX1O/i6+cAZ9gWHzJJl/Puv2/OXjanru/vwX0xnq9LL5L3mppf10Dnwe/2D+G+kx/109aYyP/vD9dmni5bZHEV8ejTiIvd8x/xzEz/WI/+EJ4//1K+++36ut9ZuIa9E9fmes2WZtY7axvXNjtba4UlmprJfLC/MLc5/c/Lg8m+aoZ3uvBv/89PqbvdqS8U/2iF88ZvxfP+H4f/v/uz/+2ivif/ODbvHz8c4r4idr4jdOGH9x8vfFXm1J/OUe4z/u63/9hPGf/m3npW3DAYDBaWzvrC1Wq5VNBYWLX0j+yV6AbnQtfKdfscaie9MvPmg/00eaWq3XitVrxjiLrBtwERw+9BHxv0F3BgAAAAAAAAAAAAAA6Kofv7E06DECAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABweX0eAAD//19xzyM=") r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='.\x00', 0x0, 0x0) quotactl_fd$Q_GETNEXTQUOTA(r0, 0xffffffff80000901, 0x0, &(0x7f0000009fc0)) 5.453445354s ago: executing program 5 (id=1483): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFQNL_MSG_CONFIG(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="280000000203010400000000ffffffff000000000800010001"], 0x28}}, 0x0) sendmsg$NFQNL_MSG_VERDICT(r0, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000240)={0x14, 0x1, 0x3, 0x101}, 0x14}}, 0x0) 5.23786469s ago: executing program 8 (id=1484): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000080), r0) sendmsg$ETHTOOL_MSG_LINKMODES_SET(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010026bd7000fddbdf25050000000c00018008000100", @ANYBLOB="1400038004000400"], 0x3c}}, 0x4044094) 4.960750067s ago: executing program 5 (id=1485): r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x9, @loopback, 0x4040006}, 0x1c) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x4e22, 0x7, @ipv4={'\x00', '\xff\xff', @empty}, 0x106}, 0x1c) 4.836627761s ago: executing program 7 (id=1486): bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xf, 0x10, &(0x7f0000000200)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000810000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32, @ANYBLOB="0000000000000000b70500000800000085000000a50000009500000000000000d2f352401dbec0de562488909e9ba24589fcd92f0da3452edf7990dcc0a4b251e96e5a71b3db2d57a2e380370fc9496cc64cfb84f83f1e2eb3bdf217b8a286"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_device, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r0 = syz_open_dev$tty1(0xc, 0x4, 0x2) ioctl$PIO_UNISCRNMAP(r0, 0x4b6a, &(0x7f00000000c0)) 4.633587511s ago: executing program 4 (id=1487): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0xc0c4}, 0x10) sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000200000a88000000060a0b040000000000000000020000035c000480580001800a000100696e6e6572000000480002800800024000000084080003400000000a0800044000000008080001400000000024000580090001006d6574610000000014000280080002400000002007fb01400000000c0900010073797a30000000000900020073797a32"], 0xb0}, 0x1, 0x0, 0x0, 0x200000c4}, 0x4040) 4.600041456s ago: executing program 5 (id=1488): r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000000)='./binderfs/binder0\x00', 0x1802, 0x0) r1 = epoll_create1(0x0) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f00000000c0)) 4.482840676s ago: executing program 8 (id=1489): syz_mount_image$exfat(&(0x7f0000000080), &(0x7f0000000000)='./file0\x00', 0x800, &(0x7f0000000480)={[{@iocharset={'iocharset', 0x3d, 'iso8859-15'}}, {@umask={'umask', 0x3d, 0x3}}, {@keep_last_dots}, {}, {@umask={'umask', 0x3d, 0x7f}}, {@discard}, {@fmask={'fmask', 0x3d, 0x8}}, {@utf8}, {@iocharset={'iocharset', 0x3d, 'macinuit'}}, {@allow_utime={'allow_utime', 0x3d, 0xce38}}]}, 0x1, 0x1528, &(0x7f00000037c0)="$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") mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0) mount$bind(&(0x7f0000000040)='.\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x2a05004, 0x0) 4.192506338s ago: executing program 0 (id=1490): r0 = open(&(0x7f0000000000)='./file0\x00', 0x8060, 0x1a0) fcntl$setlease(r0, 0x400, 0x0) fcntl$getflags(r0, 0x401) 4.137238067s ago: executing program 7 (id=1491): r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/cpu_byteorder', 0x200800, 0x8) unshare(0x2a020480) copy_file_range(r0, 0x0, 0xffffffffffffffff, 0x0, 0x1, 0x0) 3.929551031s ago: executing program 5 (id=1492): r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_IPV6_DSTOPTS(r0, 0x29, 0x3b, &(0x7f00000004c0)=ANY=[], 0x10) setsockopt$inet6_opts(r0, 0x29, 0x3b, 0x0, 0x0) 3.852967439s ago: executing program 4 (id=1493): capset(&(0x7f0000000880)={0x19980330}, &(0x7f00000008c0)={0x7, 0xffff, 0x6, 0x80, 0x7, 0x5}) r0 = socket$inet_udp(0x2, 0x2, 0x0) bind$inet(r0, &(0x7f0000000440)={0x2, 0x4, @loopback}, 0x10) 3.597949835s ago: executing program 0 (id=1494): rseq(&(0x7f0000000240)={0x0, 0x0, 0x0, 0x6}, 0x20, 0x0, 0x0) futex_waitv(&(0x7f0000000180)=[{0x0, &(0x7f0000000000), 0x2}], 0x1, 0x0, 0x0, 0x0) futex(&(0x7f0000000140), 0x5, 0x0, 0x0, &(0x7f0000000000), 0x0) 3.562014772s ago: executing program 8 (id=1495): r0 = socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000300)={'bridge_slave_1\x00', 0x0}) sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=@bridge_newvlan={0x18, 0x70, 0x239, 0x70bd2a, 0x25dfdbfb, {0x7, 0x0, 0x0, r1}}, 0x18}, 0x1, 0x0, 0x0, 0x800}, 0x0) 3.405648151s ago: executing program 7 (id=1496): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$tipc(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$TIPC_CMD_SHOW_LINK_STATS(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000080)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="0180000000000000000001000000000000000b00000000030014"], 0x28}}, 0x40000) 3.299735844s ago: executing program 5 (id=1497): r0 = syz_open_dev$I2C(&(0x7f0000000000), 0x0, 0x0) ioctl$I2C_PEC(r0, 0x708, 0x3) ioctl$I2C_SMBUS(r0, 0x720, &(0x7f0000000040)={0x0, 0x12, 0x2, &(0x7f00000000c0)={0x17, "15cd4618ecd24eb02d463039bb13939527ba77c362b25406bfef063d00"}}) 3.128811285s ago: executing program 4 (id=1498): close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x202400, 0x0) landlock_add_rule$LANDLOCK_RULE_PATH_BENEATH(r0, 0x1, 0x0, 0x0) 2.873145287s ago: executing program 8 (id=1499): openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0) r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000000c0)='fdinfo/3\x00') read$eventfd(r0, &(0x7f0000000080), 0x8) 2.851654563s ago: executing program 0 (id=1509): r0 = socket$can_bcm(0x1d, 0x2, 0x2) connect$can_bcm(r0, &(0x7f0000000040), 0x10) sendmsg(r0, &(0x7f0000000380)={&(0x7f0000000080)=@l2tp6={0x1d, 0x0, 0x2000000, @ipv4}, 0x80, &(0x7f0000000340)=[{&(0x7f0000000100)="751edb18dbf46e8f09d97e5bbd402d11fea33f21e2", 0x15}, {&(0x7f00000001c0)="da", 0x1}, {&(0x7f0000000240)="6d5f67af894fc09d550067b675507cd5556770418b1b34525a6becaa1a13b103508a04d5cd215b761cd584cddde2539d4d275745d349805bf16f7bd8010d7104086c0e743d76d4de754ad1714e562adea566098cbd4bb4b351de0ed58f1361f6920b4598be11b9f546e6ba23ba5075072ef9d7362c255f7797866066f2697c324aa5dc055389df4d7725ef8f4e391c9bcbc80b7a9397f3f484ddc09076e854b1ee0569277a48abb91df8c3d57555dd4ed07a395e7c78444c971401bb04a219d661d01158a497c68330c7a8878ad272b2fd9915717c58efd568017a16947f3145cc2d", 0x22}], 0x3}, 0x0) 834.699987ms ago: executing program 36 (id=1499): openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0) r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000000c0)='fdinfo/3\x00') read$eventfd(r0, &(0x7f0000000080), 0x8) 818.809336ms ago: executing program 0 (id=1501): r0 = socket(0x10, 0x3, 0x0) setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0xc, &(0x7f0000000980)={0x6}, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=ANY=[@ANYBLOB="1c0000005a00010000000000040000000a00000008"], 0x1c}}, 0x8000) 792.453571ms ago: executing program 7 (id=1502): r0 = socket$inet6(0xa, 0x800000000000002, 0x0) setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000200)=0x62ea, 0x4) sendto$inet6(r0, 0x0, 0x97, 0x24000800, &(0x7f0000000000)={0xa, 0x4e22, 0x0, @local}, 0x1c) 760.369146ms ago: executing program 5 (id=1503): syz_mount_image$ext4(&(0x7f0000000240)='ext4\x00', &(0x7f0000000b80)='./file0\x00', 0x1008002, &(0x7f0000000d00)={[{@grpjquota}]}, 0x3, 0x5ee, &(0x7f00000012c0)="$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") fsopen(&(0x7f0000000040)='tmpfs\x00', 0x1) rmdir(&(0x7f0000000000)='./file0\x00') 756.644306ms ago: executing program 4 (id=1504): write$sndseq(0xffffffffffffffff, &(0x7f00000006c0)=[{0xe, 0x7e, 0xe, 0xfd, @time={0x2, 0x100001}, {}, {0xe1, 0xfd}, @connect={{0x81, 0x2}, {0xd, 0x10}}}], 0x1c) r0 = fanotify_init(0x8, 0x80000) write$binfmt_elf64(r0, &(0x7f00000006c0)=ANY=[@ANYBLOB="7f454c4622"], 0x18) 419.638µs ago: executing program 7 (id=1505): syz_mount_image$ext4(&(0x7f0000000540)='ext4\x00', &(0x7f0000000580)='./file0\x00', 0x0, &(0x7f00000005c0), 0x1, 0x538, &(0x7f0000000600)="$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") inotify_add_watch(0xffffffffffffffff, 0x0, 0x60000726) openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x101042, 0x15) 139.111µs ago: executing program 0 (id=1506): syz_mount_image$hfsplus(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x4040, &(0x7f0000000a80)=ANY=[@ANYBLOB='force,decompose,nls=cp857,uid=', @ANYRESHEX=0xee01, @ANYBLOB="2c6e6f626172726965722c706172743d3078303030303030303030303030303030342c0029da224046557ecb65ded5c50ad3a6a30bc9ff1a3ebc851290177bba8d57fc514869fde9ff0cd99031aef2250bd32f6fe7dffcc4d843c5398f85b2162d81bd51c7ad5d6c6ec22b4391379123720a07da3c987a8779b03b21db3c6542040ee5b3167521a1f384b80673a5e56ff56bf5523200000000079a42c04c9e8f94e57cdc0e3adfa978c6d4d7f05fa88ead40f3ec2bf6239d4c40d4496fb2ded06d4900"/206], 0x20, 0x6fe, &(0x7f0000002100)="$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") syz_mount_image$vfat(&(0x7f0000000140), &(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x802053, 0x0, 0xfc, 0x0, &(0x7f00000000c0)) rmdir(&(0x7f00000000c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00') 0s ago: executing program 4 (id=1507): bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x6, 0x4, 0x8, 0x8}, 0x48) r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000700000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000fcffffffb703000008000000b704000000a40000850000000100000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) kernel console output (not intermixed with test programs): detected capacity change from 0 to 1024 [ 331.634630][ T6899] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.402: bg 0: block 361: padding at end of block bitmap is not set [ 331.679256][ T6899] EXT4-fs (loop4): Remounting filesystem read-only [ 331.709215][ T6899] EXT4-fs (loop4): 1 truncate cleaned up [ 331.766306][ T6905] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 331.805463][ T6899] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000007 ro without journal. Quota mode: none. [ 331.946125][ T6910] netlink: 156 bytes leftover after parsing attributes in process `syz.3.407'. [ 332.118255][ T6914] loop1: detected capacity change from 0 to 256 [ 332.213793][ T6899] System zones: 1-12 [ 332.218108][ T6899] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000000007. [ 332.355964][ T6914] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0xbe675ead, utbl_chksum : 0xe619d30d) [ 332.404760][ T5805] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 332.593165][ T5809] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000007. [ 333.227556][ T6920] loop2: detected capacity change from 0 to 2048 [ 333.442164][ T6925] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 333.683178][ T6925] NILFS (loop2): vblocknr = 23 has abnormal lifetime: start cno (= 4294967298) > current cno (= 3) [ 333.695611][ T6925] NILFS error (device loop2): nilfs_bmap_propagate: broken bmap (inode number=4) [ 333.889666][ T6925] Remounting filesystem read-only [ 334.203441][ T5105] Bluetooth: hci4: command 0x0406 tx timeout [ 334.210029][ T5105] Bluetooth: hci1: command 0x0406 tx timeout [ 334.218934][ T5105] Bluetooth: hci2: command 0x0406 tx timeout [ 334.225594][ T5105] Bluetooth: hci3: command 0x0406 tx timeout [ 335.131319][ T6935] loop2: detected capacity change from 0 to 2048 [ 335.189645][ T6935] EXT4-fs: Ignoring removed mblk_io_submit option [ 335.278732][ T6940] loop1: detected capacity change from 0 to 512 [ 335.385301][ T6935] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 335.574856][ T6935] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.416: bg 0: block 234: padding at end of block bitmap is not set [ 335.624795][ T6940] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 335.638257][ T6940] ext4 filesystem being mounted at /84/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 335.675456][ T6935] EXT4-fs (loop2): Remounting filesystem read-only [ 335.748021][ T6935] overlayfs: failed to verify upper root origin [ 335.929390][ T6940] EXT4-fs error (device loop1): ext4_do_update_inode:5653: inode #2: comm syz.1.419: corrupted inode contents [ 335.997304][ T6940] EXT4-fs error (device loop1): ext4_dirty_inode:6538: inode #2: comm syz.1.419: mark_inode_dirty error [ 336.113487][ T6940] EXT4-fs error (device loop1): ext4_do_update_inode:5653: inode #2: comm syz.1.419: corrupted inode contents [ 336.275781][ T6940] EXT4-fs error (device loop1): __ext4_ext_dirty:206: inode #2: comm syz.1.419: mark_inode_dirty error [ 336.298090][ T5805] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 336.837741][ T5816] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 336.894522][ T6953] loop4: detected capacity change from 0 to 64 [ 338.926987][ T6981] 2q>wv: renamed from lo (while UP) [ 340.172969][ T5858] usb 3-1: new high-speed USB device number 4 using dummy_hcd [ 340.408216][ T5858] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 340.421115][ T5858] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 340.434346][ T5858] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 340.448926][ T5858] usb 3-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 340.458547][ T5858] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 340.581349][ T5858] usb 3-1: config 0 descriptor?? [ 340.786861][ T7001] loop4: detected capacity change from 0 to 1024 [ 340.868309][ T7001] EXT4-fs: Ignoring removed nobh option [ 340.875157][ T7001] EXT4-fs: Ignoring removed bh option [ 341.084760][ T7007] loop3: detected capacity change from 0 to 128 [ 341.101661][ T7007] FAT-fs (loop3): Invalid FSINFO signature: 0x00fffff8, 0x00000000 (sector = 1) [ 341.105559][ T7001] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 341.130085][ T5858] plantronics 0003:047F:FFFF.0008: reserved main item tag 0xe [ 341.138781][ T5858] plantronics 0003:047F:FFFF.0008: unknown main item tag 0x0 [ 341.335443][ T5858] plantronics 0003:047F:FFFF.0008: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.2-1/input0 [ 341.456102][ T5858] usb 3-1: USB disconnect, device number 4 [ 341.722977][ T5809] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 342.465652][ T7021] loop2: detected capacity change from 0 to 256 [ 343.001035][ T7015] loop3: detected capacity change from 0 to 4096 [ 343.086211][ T7015] ntfs3(loop3): Different NTFS sector size (1024) and media sector size (512). [ 343.233297][ T5858] usb 1-1: new high-speed USB device number 4 using dummy_hcd [ 343.524659][ T5858] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 343.536190][ T5858] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 343.546448][ T5858] usb 1-1: New USB device found, idVendor=10c4, idProduct=ea90, bcdDevice= 0.00 [ 343.555903][ T5858] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 343.808103][ T5858] usb 1-1: config 0 descriptor?? [ 344.275478][ T7028] fido_id[7028]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.2/usb3/report_descriptor': No such file or directory [ 344.360593][ T5858] cp2112 0003:10C4:EA90.0009: unknown main item tag 0x0 [ 344.517308][ T5858] cp2112 0003:10C4:EA90.0009: hidraw0: USB HID v0.00 Device [HID 10c4:ea90] on usb-dummy_hcd.0-1/input0 [ 344.615887][ T5858] cp2112 0003:10C4:EA90.0009: error requesting version [ 344.718811][ T5858] cp2112 0003:10C4:EA90.0009: probe with driver cp2112 failed with error -71 [ 344.865300][ T5858] usb 1-1: USB disconnect, device number 4 [ 346.030186][ T7050] loop0: detected capacity change from 0 to 256 [ 346.136972][ T7050] exfat: Deprecated parameter 'namecase' [ 346.281549][ T7046] fido_id[7046]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.0/usb1/report_descriptor': No such file or directory [ 346.433308][ T7050] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0x5441951d, utbl_chksum : 0xe619d30d) [ 347.886944][ T7069] tipc: Started in network mode [ 347.892416][ T7069] tipc: Node identity 00000000000000000000000000000001, cluster identity 4711 [ 347.907581][ T7069] tipc: New replicast peer: fe80:0000:0000:0000:0000:0000:0000:00bb [ 347.919310][ T7069] tipc: Enabled bearer , priority 10 [ 348.978680][ T7073] loop0: detected capacity change from 0 to 4096 [ 349.042880][ T5858] tipc: Node number set to 1 [ 349.153691][ T7082] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 349.283334][ T7073] NILFS error (device loop0): nilfs_find_entry: dir 2 size 34359742464 exceeds block count 1 [ 349.378738][ T7073] Remounting filesystem read-only [ 349.388284][ T7083] NILFS (loop0): the device already has a read-only mount. [ 349.695709][ T7081] loop2: detected capacity change from 0 to 4096 [ 349.755255][ T7087] netlink: 8 bytes leftover after parsing attributes in process `syz.1.481'. [ 349.881017][ T7089] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 350.946648][ T7099] sp0: Synchronizing with TNC [ 354.944996][ T7120] loop0: detected capacity change from 0 to 64 [ 355.320992][ T7123] loop3: detected capacity change from 0 to 1024 [ 356.091377][ T4697] hfsplus: b-tree write err: -5, ino 4 [ 356.422145][ T4237] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 356.491519][ T7137] loop4: detected capacity change from 0 to 256 [ 356.521227][ T7137] exFAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 356.532683][ T7137] exFAT-fs (loop4): Medium has reported failures. Some data may be lost. [ 356.645739][ T4237] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 356.671515][ T7137] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0xe5674ec2, utbl_chksum : 0xe619d30d) [ 356.880476][ T4237] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 357.067680][ T4237] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 357.327760][ T4237] bridge_slave_1: left allmulticast mode [ 357.333856][ T4237] bridge_slave_1: left promiscuous mode [ 357.340868][ T4237] bridge0: port 2(bridge_slave_1) entered disabled state [ 357.366931][ T4237] bridge_slave_0: left allmulticast mode [ 357.373310][ T4237] bridge_slave_0: left promiscuous mode [ 357.380116][ T4237] bridge0: port 1(bridge_slave_0) entered disabled state [ 357.814553][ T1289] ieee802154 phy0 wpan0: encryption failed: -22 [ 357.821330][ T1289] ieee802154 phy1 wpan1: encryption failed: -22 [ 357.998089][ T4237] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 358.021045][ T4237] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 358.069788][ T4237] bond0 (unregistering): Released all slaves [ 358.280104][ T4237] tipc: Disabling bearer [ 358.286589][ T4237] tipc: Left network mode [ 358.580382][ T4237] hsr_slave_0: left promiscuous mode [ 358.603878][ T4237] hsr_slave_1: left promiscuous mode [ 358.612280][ T4237] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 358.620568][ T4237] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 358.661213][ T4237] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 358.669482][ T4237] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 358.824447][ T7147] netlink: 8 bytes leftover after parsing attributes in process `syz.4.510'. [ 358.838747][ T4237] veth1_macvtap: left promiscuous mode [ 358.844830][ T4237] veth0_macvtap: left promiscuous mode [ 358.851104][ T4237] veth1_vlan: left promiscuous mode [ 358.860940][ T4237] veth0_vlan: left promiscuous mode [ 358.870298][ T7148] process 'syz.0.507' launched '/dev/fd/3' with NULL argv: empty string added [ 358.903082][ T7144] loop1: detected capacity change from 0 to 1024 [ 359.461517][ T5095] hfsplus: b-tree write err: -5, ino 4 [ 360.173952][ T4237] team0 (unregistering): Port device team_slave_1 removed [ 360.259512][ T5806] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 360.307873][ T7158] netlink: 'syz.2.514': attribute type 178 has an invalid length. [ 360.318365][ T5806] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 360.329270][ T5806] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 360.345673][ T4237] team0 (unregistering): Port device team_slave_0 removed [ 360.513251][ T5806] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 360.528324][ T5806] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 361.785501][ T7176] loop4: detected capacity change from 0 to 64 [ 361.812436][ T7155] chnl_net:caif_netlink_parms(): no params data found [ 361.970686][ T7176] overlayfs: upper fs needs to support d_type. [ 362.062322][ T7176] overlayfs: upper fs does not support RENAME_WHITEOUT. [ 362.069961][ T7176] overlayfs: failed to set xattr on upper [ 362.076368][ T7176] overlayfs: ...falling back to redirect_dir=nofollow. [ 362.083852][ T7176] overlayfs: ...falling back to index=off. [ 362.089850][ T7176] overlayfs: ...falling back to uuid=null. [ 362.096295][ T7176] overlayfs: NFS export requires "index=on", falling back to nfs_export=off. [ 362.421425][ T5809] Trying to free block not in datazone [ 362.466292][ T5809] Trying to free block not in datazone [ 362.553228][ T5809] Trying to free block not in datazone [ 362.603184][ T5806] Bluetooth: hci0: command tx timeout [ 363.259829][ T7155] bridge0: port 1(bridge_slave_0) entered blocking state [ 363.273104][ T7155] bridge0: port 1(bridge_slave_0) entered disabled state [ 363.280895][ T7155] bridge_slave_0: entered allmulticast mode [ 363.291418][ T7155] bridge_slave_0: entered promiscuous mode [ 363.304410][ T7178] loop1: detected capacity change from 0 to 8192 [ 363.321398][ T7155] bridge0: port 2(bridge_slave_1) entered blocking state [ 363.329435][ T7155] bridge0: port 2(bridge_slave_1) entered disabled state [ 363.337986][ T7155] bridge_slave_1: entered allmulticast mode [ 363.348176][ T7155] bridge_slave_1: entered promiscuous mode [ 363.476150][ T7193] loop2: detected capacity change from 0 to 64 [ 363.614016][ T7155] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 363.697503][ T7155] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 363.838420][ T7197] loop4: detected capacity change from 0 to 256 [ 364.102099][ T7155] team0: Port device team_slave_0 added [ 364.200744][ T7155] team0: Port device team_slave_1 added [ 364.316994][ T7199] netlink: 8 bytes leftover after parsing attributes in process `syz.2.532'. [ 364.561958][ T7155] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 364.562052][ T7155] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 364.562223][ T7155] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 364.618926][ T7155] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 364.619017][ T7155] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 364.619190][ T7155] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 364.661349][ T7202] 8021q: VLANs not supported on ipvlan0 [ 364.686809][ T5806] Bluetooth: hci0: command tx timeout [ 364.976767][ T7206] netlink: 4 bytes leftover after parsing attributes in process `syz.2.534'. [ 365.066736][ T7155] hsr_slave_0: entered promiscuous mode [ 365.080534][ T7155] hsr_slave_1: entered promiscuous mode [ 366.140413][ T7221] capability: warning: `syz.2.541' uses deprecated v2 capabilities in a way that may be insecure [ 366.499971][ T7155] netdevsim netdevsim5 netdevsim0: renamed from eth0 [ 366.526828][ T7155] netdevsim netdevsim5 netdevsim1: renamed from eth1 [ 366.594965][ T7155] netdevsim netdevsim5 netdevsim2: renamed from eth2 [ 366.673967][ T7155] netdevsim netdevsim5 netdevsim3: renamed from eth3 [ 366.696453][ T7224] netlink: 20 bytes leftover after parsing attributes in process `syz.4.543'. [ 366.763465][ T5806] Bluetooth: hci0: command tx timeout [ 367.220637][ T7234] netlink: 304 bytes leftover after parsing attributes in process `syz.4.546'. [ 367.554296][ T7239] loop2: detected capacity change from 0 to 256 [ 367.791015][ T7242] netlink: 4 bytes leftover after parsing attributes in process `syz.4.549'. [ 367.909565][ T7155] 8021q: adding VLAN 0 to HW filter on device bond0 [ 368.143310][ T7155] 8021q: adding VLAN 0 to HW filter on device team0 [ 368.250560][ T4237] bridge0: port 1(bridge_slave_0) entered blocking state [ 368.258343][ T4237] bridge0: port 1(bridge_slave_0) entered forwarding state [ 368.344626][ T4237] bridge0: port 2(bridge_slave_1) entered blocking state [ 368.352337][ T4237] bridge0: port 2(bridge_slave_1) entered forwarding state [ 368.448062][ T7248] loop2: detected capacity change from 0 to 128 [ 368.575322][ T7250] usb usb8: usbfs: process 7250 (syz.4.553) did not claim interface 7 before use [ 368.699586][ T7248] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 368.843474][ T7248] ext4 filesystem being mounted at /114/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 368.854602][ T5806] Bluetooth: hci0: command tx timeout [ 369.185462][ T1713] usb 2-1: new full-speed USB device number 3 using dummy_hcd [ 369.340346][ T5805] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 369.393919][ T1713] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10 [ 369.410366][ T1713] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 369.464225][ T1713] usb 2-1: New USB device found, idVendor=060b, idProduct=700a, bcdDevice= 0.00 [ 369.475541][ T1713] usb 2-1: New USB device strings: Mfr=2, Product=0, SerialNumber=0 [ 369.484410][ T1713] usb 2-1: Manufacturer: syz [ 369.534204][ T1713] usb 2-1: config 0 descriptor?? [ 370.479633][ T1713] cougar 0003:060B:700A.000A: unknown main item tag 0x0 [ 370.487204][ T1713] cougar 0003:060B:700A.000A: unknown main item tag 0x0 [ 370.494777][ T1713] cougar 0003:060B:700A.000A: unknown main item tag 0x0 [ 370.502156][ T1713] cougar 0003:060B:700A.000A: unknown main item tag 0x0 [ 370.510156][ T1713] cougar 0003:060B:700A.000A: unknown main item tag 0x0 [ 370.603213][ T1713] cougar 0003:060B:700A.000A: hidraw0: USB HID v0.00 Device [syz] on usb-dummy_hcd.1-1/input0 [ 370.624538][ T1713] usb 2-1: USB disconnect, device number 3 [ 371.111580][ T7155] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 371.857107][ T7282] loop4: detected capacity change from 0 to 128 [ 371.958523][ T7282] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 371.988541][ T7282] ext4 filesystem being mounted at /112/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 372.186833][ T5809] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 372.855523][ T7299] loop0: detected capacity change from 0 to 1024 [ 372.959228][ T7299] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 372.973387][ T7299] ext4 filesystem being mounted at /122/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 373.541096][ T5815] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 373.780919][ T7309] loop4: detected capacity change from 0 to 1024 [ 373.795097][ T7155] veth0_vlan: entered promiscuous mode [ 373.982396][ T7155] veth1_vlan: entered promiscuous mode [ 374.184226][ T7315] [U] N{st3 )Lbo7UюNQʈ tQZ4s [ 374.324302][ T5095] hfsplus: b-tree write err: -5, ino 4 [ 374.385880][ T7155] veth0_macvtap: entered promiscuous mode [ 374.517381][ T7155] veth1_macvtap: entered promiscuous mode [ 374.769299][ T7155] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 374.857785][ T7155] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 374.875148][ T5858] usb 3-1: new high-speed USB device number 5 using dummy_hcd [ 374.994985][ T3694] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 375.028207][ T3694] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 375.213261][ T5858] usb 3-1: Using ep0 maxpacket: 16 [ 375.255722][ T4288] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 375.296464][ T5858] usb 3-1: New USB device found, idVendor=061d, idProduct=c020, bcdDevice=9c.15 [ 375.305990][ T5858] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 375.314867][ T5858] usb 3-1: Product: syz [ 375.319257][ T5858] usb 3-1: Manufacturer: syz [ 375.324654][ T5858] usb 3-1: SerialNumber: syz [ 375.352470][ T4288] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 375.370706][ T5858] usb 3-1: config 0 descriptor?? [ 375.399686][ T5858] ssu100 3-1:0.0: Quatech SSU-100 USB to Serial Driver converter detected [ 375.885060][ T7329] netlink: 8 bytes leftover after parsing attributes in process `syz.1.583'. [ 376.085041][ T5858] ssu100 3-1:0.0: probe with driver ssu100 failed with error -71 [ 376.142224][ T5858] usb 3-1: USB disconnect, device number 5 [ 376.503193][ T7335] netlink: 'syz.1.586': attribute type 11 has an invalid length. [ 376.974374][ T7338] netlink: 'syz.4.587': attribute type 1 has an invalid length. [ 378.896828][ T7358] loop1: detected capacity change from 0 to 22 [ 379.009387][ T7358] romfs: Mounting image 'rom 637cf1fa' through the block layer [ 379.874136][ T7369] loop1: detected capacity change from 0 to 22 [ 379.918999][ T7368] loop4: detected capacity change from 0 to 256 [ 379.923000][ T7369] romfs: Mounting image 'rom 637cf1fa' through the block layer [ 379.958214][ T7368] exFAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 379.969696][ T7368] exFAT-fs (loop4): Medium has reported failures. Some data may be lost. [ 380.080843][ T7368] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d) [ 380.596687][ T7374] netlink: 32 bytes leftover after parsing attributes in process `syz.1.599'. [ 381.222061][ T7379] loop1: detected capacity change from 0 to 256 [ 381.323642][ T7379] exFAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 381.334780][ T7379] exFAT-fs (loop1): Medium has reported failures. Some data may be lost. [ 381.508621][ T7379] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0xe5674ec2, utbl_chksum : 0xe619d30d) [ 383.021881][ T7395] loop0: detected capacity change from 0 to 1024 [ 383.073817][ T4928] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 383.081908][ T4928] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 383.254412][ T7395] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 383.267828][ T7395] ext4 filesystem being mounted at /130/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 383.291863][ T4237] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 383.300424][ T4237] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 383.443956][ T7395] EXT4-fs (loop0): resizing filesystem from 512 to 0 blocks [ 383.451536][ T7395] EXT4-fs warning (device loop0): ext4_resize_fs:2042: can't shrink FS - resize aborted [ 383.515623][ T7401] loop1: detected capacity change from 0 to 256 [ 383.575414][ T7401] exfat: Deprecated parameter 'utf8' [ 383.755902][ T7401] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x4d7dfc9d, utbl_chksum : 0xe619d30d) [ 383.871369][ T5815] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 384.230109][ T7406] loop4: detected capacity change from 0 to 1024 [ 384.453326][ T7406] hfsplus: bad catalog entry type [ 384.500416][ T7412] loop1: detected capacity change from 0 to 512 [ 384.558626][ T7412] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 384.594334][ T7412] EXT4-fs (loop1): orphan cleanup on readonly fs [ 384.676472][ T7412] EXT4-fs warning (device loop1): ext4_enable_quotas:7168: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix. [ 384.745828][ T7412] EXT4-fs (loop1): Cannot turn on quotas: error -22 [ 384.794268][ T4697] hfsplus: b-tree write err: -5, ino 4 [ 384.836039][ T7412] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.613: bg 0: block 40: padding at end of block bitmap is not set [ 384.892942][ T7412] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6657: Corrupt filesystem [ 384.984351][ T7412] EXT4-fs (loop1): 1 truncate cleaned up [ 384.993037][ T7412] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 385.136081][ T7412] EXT4-fs error (device loop1): ext4_xattr_block_list:762: inode #16: comm syz.1.613: corrupted xattr block 31: invalid header [ 385.184588][ T7419] EXT4-fs error (device loop1): ext4_get_link:106: inode #16: comm syz.1.613: bad symlink. [ 385.462134][ T5816] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 386.092865][ T1713] usb 2-1: new high-speed USB device number 4 using dummy_hcd [ 386.295698][ T1713] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 386.313088][ T1713] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 386.325271][ T1713] usb 2-1: New USB device found, idVendor=18d1, idProduct=9400, bcdDevice= 0.00 [ 386.334861][ T1713] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 386.447643][ T1713] usb 2-1: config 0 descriptor?? [ 386.684304][ T5859] usb 6-1: new high-speed USB device number 2 using dummy_hcd [ 386.906826][ T5859] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 386.922691][ T5859] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 386.935581][ T5859] usb 6-1: New USB device found, idVendor=1e7d, idProduct=30d4, bcdDevice= 0.00 [ 386.945875][ T5859] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 386.967516][ T1713] stadia 0003:18D1:9400.000B: item fetching failed at offset 2/5 [ 387.044648][ T1713] stadia 0003:18D1:9400.000B: parse failed [ 387.051324][ T1713] stadia 0003:18D1:9400.000B: probe with driver stadia failed with error -22 [ 387.075349][ T5859] usb 6-1: config 0 descriptor?? [ 387.153443][ T1713] usb 2-1: USB disconnect, device number 4 [ 387.239955][ T7447] loop4: detected capacity change from 0 to 64 [ 387.580267][ T5859] arvo 0003:1E7D:30D4.000C: item fetching failed at offset 6/7 [ 387.637829][ T5859] arvo 0003:1E7D:30D4.000C: parse failed [ 387.644492][ T5859] arvo 0003:1E7D:30D4.000C: probe with driver arvo failed with error -22 [ 387.782280][ T1713] usb 6-1: USB disconnect, device number 2 [ 388.046922][ T7454] netlink: 156 bytes leftover after parsing attributes in process `syz.4.632'. [ 388.800686][ T7463] loop0: detected capacity change from 0 to 736 [ 389.167045][ T7463] rock: directory entry would overflow storage [ 389.179801][ T7463] rock: sig=0x3b10, size=4, remaining=3 [ 389.277494][ T7467] loop4: detected capacity change from 0 to 2048 [ 389.435047][ T7467] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 389.668541][ T7473] loop1: detected capacity change from 0 to 2048 [ 389.747755][ T7473] NILFS (loop1): broken superblock, retrying with spare superblock (blocksize = 1024) [ 389.906031][ T5809] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 389.923134][ T7483] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 389.998853][ T7482] loop5: detected capacity change from 0 to 512 [ 390.175820][ T7482] EXT4-fs (loop5): revision level too high, forcing read-only mode [ 390.184531][ T7482] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e040e018, mo2=0002] [ 390.260712][ T7482] System zones: 0-1, 15-15, 18-18, 34-34 [ 390.268997][ T7482] EXT4-fs (loop5): orphan cleanup on readonly fs [ 390.276090][ T7482] Quota error (device loop5): v2_read_header: Failed header read: expected=8 got=0 [ 390.286110][ T7482] EXT4-fs warning (device loop5): ext4_enable_quotas:7168: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix. [ 390.301399][ T7482] EXT4-fs (loop5): Cannot turn on quotas: error -22 [ 390.322356][ T7482] EXT4-fs (loop5): 1 truncate cleaned up [ 390.331131][ T7482] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 390.377509][ T7482] fscrypt (loop5, inode 16): Error -61 getting encryption context [ 390.390305][ T7482] fscrypt (loop5, inode 16): Error -61 getting encryption context [ 390.390489][ T7480] loop2: detected capacity change from 0 to 4096 [ 390.421918][ T7480] ntfs3(loop2): Different NTFS sector size (4096) and media sector size (512). [ 390.724455][ T7480] ntfs3(loop2): ino=1a, mi_enum_attr [ 390.730091][ T7480] ntfs3(loop2): Mark volume as dirty due to NTFS errors [ 390.754165][ T7480] ntfs3(loop2): ino=1a, mi_enum_attr [ 390.759749][ T7480] ntfs3(loop2): Failed to initialize $Extend/$Reparse. [ 390.801619][ T7155] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 391.747074][ T7502] loop5: detected capacity change from 0 to 256 [ 391.976059][ T7502] exFAT-fs (loop5): failed to load upcase table (idx : 0x00010000, chksum : 0x5441951d, utbl_chksum : 0xe619d30d) [ 392.690961][ T7512] loop0: detected capacity change from 0 to 128 [ 392.815385][ T7512] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 393.615537][ T7528] loop2: detected capacity change from 0 to 128 [ 394.036515][ T7532] loop0: detected capacity change from 0 to 256 [ 394.140534][ T7535] netlink: 8 bytes leftover after parsing attributes in process `syz.5.669'. [ 394.151267][ T7535] netlink: 'syz.5.669': attribute type 30 has an invalid length. [ 394.159696][ T7535] netlink: 12 bytes leftover after parsing attributes in process `syz.5.669'. [ 394.415153][ T30] audit: type=1400 audit(1755160408.380:8): apparmor="DENIED" operation="stack_onexec" class="file" info="label not found" error=-2 profile="unconfined" name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loop1: detected capacity change from 0 to 1024 [ 395.407127][ T7552] loop5: detected capacity change from 0 to 2048 [ 395.461799][ T85] ip6_tunnel: ip6tnl1 xmit: Local address not yet configured! [ 395.470332][ T85] ip6_tunnel: ip6tnl1 xmit: Local address not yet configured! [ 395.493562][ T5860] ip6_tunnel: ip6tnl1 xmit: Local address not yet configured! [ 395.613441][ T1713] ip6_tunnel: ip6tnl1 xmit: Local address not yet configured! [ 395.639896][ T7556] loop0: detected capacity change from 0 to 128 [ 395.695258][ T7552] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 396.203150][ T7155] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 396.284126][ T1713] ip6_tunnel: ip6tnl1 xmit: Local address not yet configured! [ 396.387823][ T7565] loop1: detected capacity change from 0 to 1024 [ 396.418829][ T7569] netlink: 'syz.2.684': attribute type 1 has an invalid length. [ 396.627197][ T7572] netlink: 8 bytes leftover after parsing attributes in process `syz.0.687'. [ 397.276410][ T7581] loop0: detected capacity change from 0 to 512 [ 397.311491][ T7577] loop2: detected capacity change from 0 to 2048 [ 397.368593][ T7577] NILFS (loop2): broken superblock, retrying with spare superblock (blocksize = 1024) [ 397.379010][ T7577] NILFS (loop2): mounting unchecked fs [ 397.521578][ T7577] NILFS (loop2): recovery complete [ 397.601606][ T7587] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 397.859692][ T7589] loop1: detected capacity change from 0 to 256 [ 398.453541][ T7594] loop4: detected capacity change from 0 to 1024 [ 399.021957][ T5095] hfsplus: b-tree write err: -5, ino 4 [ 399.189943][ T7604] netlink: 52 bytes leftover after parsing attributes in process `syz.5.700'. [ 399.481737][ T7606] devpts: Bad value for 'max' [ 399.563472][ C1] ip6_tunnel: ip6tnl1 xmit: Local address not yet configured! [ 399.879560][ T7612] loop0: detected capacity change from 0 to 128 [ 399.950995][ T7612] EXT4-fs (loop0): mounting ext2 file system using the ext4 subsystem [ 400.089912][ T7612] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 400.220799][ T7612] ext2 filesystem being mounted at /151/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 400.609189][ T7626] netlink: 8 bytes leftover after parsing attributes in process `syz.1.707'. [ 400.905536][ T5815] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 401.516415][ T7639] loop4: detected capacity change from 0 to 128 [ 401.583324][ T7639] FAT-fs (loop4): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 401.658672][ T7639] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 401.683097][ T1713] usb 1-1: new full-speed USB device number 5 using dummy_hcd [ 401.899891][ T1713] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 1023, setting to 64 [ 401.911739][ T1713] usb 1-1: New USB device found, idVendor=04f3, idProduct=0755, bcdDevice= 0.00 [ 401.925630][ T1713] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 402.077394][ T1713] usb 1-1: config 0 descriptor?? [ 402.090124][ T7638] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22 [ 402.395080][ T5095] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 402.654258][ T1713] elan 0003:04F3:0755.000D: unknown main item tag 0x0 [ 402.661431][ T1713] elan 0003:04F3:0755.000D: item fetching failed at offset 3/5 [ 402.762367][ T1713] elan 0003:04F3:0755.000D: Hid Parse failed [ 402.769646][ T1713] elan 0003:04F3:0755.000D: probe with driver elan failed with error -22 [ 402.899876][ T5859] usb 1-1: USB disconnect, device number 5 [ 403.991223][ T7662] loop5: detected capacity change from 0 to 512 [ 404.188234][ T7662] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 404.205859][ T7662] ext4 filesystem being mounted at /24/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 405.089365][ T7155] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 405.631477][ T7688] netlink: 16098 bytes leftover after parsing attributes in process `syz.1.735'. [ 407.817868][ T7711] loop0: detected capacity change from 0 to 1024 [ 407.847652][ T7711] EXT4-fs: Ignoring removed bh option [ 407.853991][ T7711] EXT4-fs: inline encryption not supported [ 407.899017][ T7711] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 408.269225][ T7711] EXT4-fs error (device loop0): ext4_map_blocks:778: inode #3: block 2: comm syz.0.756: lblock 2 mapped to illegal pblock 2 (length 1) [ 408.283303][ C1] ip6_tunnel: ip6tnl1 xmit: Local address not yet configured! [ 408.356183][ T7711] Quota error (device loop0): qtree_write_dquot: dquota write failed [ 408.365063][ T7711] EXT4-fs error (device loop0): ext4_map_blocks:778: inode #3: block 48: comm syz.0.756: lblock 0 mapped to illegal pblock 48 (length 1) [ 408.483661][ T7711] Quota error (device loop0): v2_write_file_info: Can't write info structure [ 408.493993][ T7711] EXT4-fs error (device loop0): ext4_acquire_dquot:6933: comm syz.0.756: Failed to acquire dquot type 0 [ 408.593150][ T7711] EXT4-fs error (device loop0) in ext4_reserve_inode_write:6334: Corrupt filesystem [ 408.683218][ T7711] EXT4-fs error (device loop0): ext4_evict_inode:254: inode #11: comm syz.0.756: mark_inode_dirty error [ 408.757964][ T7711] EXT4-fs warning (device loop0): ext4_evict_inode:257: couldn't mark inode dirty (err -117) [ 408.768934][ T7711] EXT4-fs (loop0): 1 orphan inode deleted [ 408.777633][ T7711] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 408.791425][ T5095] EXT4-fs error (device loop0): ext4_map_blocks:778: inode #3: block 1: comm kworker/u8:25: lblock 1 mapped to illegal pblock 1 (length 1) [ 408.880287][ T5095] Quota error (device loop0): remove_tree: Can't read quota data block 1 [ 408.894040][ T5095] EXT4-fs error (device loop0): ext4_release_dquot:6969: comm kworker/u8:25: Failed to release dquot type 0 [ 408.917465][ T7711] EXT4-fs error (device loop0): ext4_map_blocks:778: inode #2: block 16: comm syz.0.756: lblock 0 mapped to illegal pblock 16 (length 1) [ 409.081751][ T7729] loop1: detected capacity change from 0 to 512 [ 409.399753][ T5815] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 409.414659][ T5815] EXT4-fs error (device loop0): __ext4_get_inode_loc:4861: comm syz-executor: Invalid inode table block 1 in block_group 0 [ 409.437985][ T7729] FAT-fs (loop1): error, fat_bmap_cluster: request beyond EOF (i_pos 2306) [ 409.457243][ T7729] FAT-fs (loop1): Filesystem has been set read-only [ 409.522902][ T5815] EXT4-fs error (device loop0) in ext4_reserve_inode_write:6334: Corrupt filesystem [ 409.559570][ T5815] EXT4-fs error (device loop0): ext4_quota_off:7217: inode #3: comm syz-executor: mark_inode_dirty error [ 409.903444][ T7736] loop4: detected capacity change from 0 to 512 [ 410.024966][ T7736] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none. [ 410.187726][ T7736] EXT4-fs warning (device loop4): dx_probe:837: inode #2: comm syz.4.758: Unimplemented hash flags: 0x0001 [ 410.204940][ T7736] EXT4-fs warning (device loop4): dx_probe:934: inode #2: comm syz.4.758: Corrupt directory, running e2fsck is recommended [ 410.799916][ T5809] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 411.352250][ T7753] loop2: detected capacity change from 0 to 2048 [ 411.569244][ T7759] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 412.798463][ T7772] loop0: detected capacity change from 0 to 128 [ 413.271989][ T7776] loop4: detected capacity change from 0 to 1024 [ 413.576598][ T7780] loop0: detected capacity change from 0 to 16 [ 413.633920][ T7780] erofs (device loop0): mounted with root inode @ nid 36. [ 413.778502][ T30] audit: type=1400 audit(1755160427.750:9): apparmor="DENIED" operation="change_profile" class="file" info="label not found" error=-2 profile="unconfined" name=3A2F2F26333F9B9D8B pid=7779 comm="syz.0.777" [ 414.656759][ T7793] loop0: detected capacity change from 0 to 256 [ 414.687616][ T7793] exfat: Deprecated parameter 'namecase' [ 414.867639][ T7793] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0x5441951d, utbl_chksum : 0xe619d30d) [ 415.208015][ T7798] loop2: detected capacity change from 0 to 2048 [ 415.430624][ T7798] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 416.071619][ T7808] loop1: detected capacity change from 0 to 64 [ 416.172876][ T7806] loop0: detected capacity change from 0 to 512 [ 416.376347][ T7806] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 416.390117][ T7806] ext4 filesystem being mounted at /164/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 416.584450][ T7806] EXT4-fs error (device loop0): ext4_do_update_inode:5653: inode #2: comm syz.0.789: corrupted inode contents [ 416.659341][ T7806] EXT4-fs error (device loop0): ext4_dirty_inode:6538: inode #2: comm syz.0.789: mark_inode_dirty error [ 416.744400][ T7806] EXT4-fs error (device loop0): ext4_do_update_inode:5653: inode #2: comm syz.0.789: corrupted inode contents [ 416.808316][ T7806] EXT4-fs error (device loop0): __ext4_ext_dirty:206: inode #2: comm syz.0.789: mark_inode_dirty error [ 417.320763][ T5815] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 417.976336][ T7835] loop5: detected capacity change from 0 to 16 [ 418.064339][ T7835] erofs (device loop5): mounted with root inode @ nid 36. [ 418.313692][ T7837] loop0: detected capacity change from 0 to 64 [ 419.196501][ T1289] ieee802154 phy0 wpan0: encryption failed: -22 [ 419.203665][ T1289] ieee802154 phy1 wpan1: encryption failed: -22 [ 419.467615][ T5859] usb 2-1: new high-speed USB device number 5 using dummy_hcd [ 419.570233][ T7852] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration [ 419.727917][ T5859] usb 2-1: Using ep0 maxpacket: 16 [ 419.751835][ T5859] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 419.767350][ T5859] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 3 [ 419.929607][ T5859] usb 2-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40 [ 419.944424][ T5859] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 419.953937][ T5859] usb 2-1: Product: syz [ 419.958442][ T5859] usb 2-1: Manufacturer: syz [ 419.963563][ T5859] usb 2-1: SerialNumber: syz [ 420.340615][ T5859] usb 2-1: 0:2 : does not exist [ 420.477829][ T5859] usb 2-1: 5:0: failed to get current value for ch 0 (-22) [ 420.688596][ T5859] usb 2-1: USB disconnect, device number 5 [ 420.870530][ T7861] loop2: detected capacity change from 0 to 2048 [ 420.903835][ T7865] netlink: 8 bytes leftover after parsing attributes in process `syz.5.812'. [ 420.998980][ T7861] NILFS (loop2): broken superblock, retrying with spare superblock (blocksize = 1024) [ 421.139922][ T7868] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 422.138060][ T7877] sp0: Synchronizing with TNC [ 422.379414][ T7871] loop5: detected capacity change from 0 to 4096 [ 422.608143][ T7883] NILFS (loop5): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 422.712427][ T7871] NILFS error (device loop5): nilfs_find_entry: dir 2 size 34359742464 exceeds block count 1 [ 422.811371][ T7871] Remounting filesystem read-only [ 423.150652][ T7880] loop1: detected capacity change from 0 to 4096 [ 423.454337][ T7889] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 423.659449][ T7891] Zero length message leads to an empty skb [ 424.201908][ T7896] loop5: detected capacity change from 0 to 512 [ 424.379633][ T7896] EXT4-fs (loop5): can't mount with data=, fs mounted w/o journal [ 425.466647][ T7911] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 425.563164][ C1] ip6_tunnel: ip6tnl1 xmit: Local address not yet configured! [ 426.165702][ T7919] A link change request failed with some changes committed already. Interface team0 may have been left with an inconsistent configuration, please check. [ 426.819666][ T7927] loop1: detected capacity change from 0 to 128 [ 426.878364][ T7927] UDF-fs: error (device loop1): udf_read_tagged: read failed, block=256, location=256 [ 426.910939][ T7929] netlink: 8 bytes leftover after parsing attributes in process `syz.2.840'. [ 426.924985][ T7929] netlink: 4 bytes leftover after parsing attributes in process `syz.2.840'. [ 427.496954][ T7933] loop5: detected capacity change from 0 to 256 [ 427.580514][ T7933] exfat: Deprecated parameter 'namecase' [ 427.739185][ T7933] exFAT-fs (loop5): failed to load upcase table (idx : 0x00010000, chksum : 0x5441951d, utbl_chksum : 0xe619d30d) [ 427.818497][ T7937] loop2: detected capacity change from 0 to 512 [ 427.954055][ T7941] netlink: 32 bytes leftover after parsing attributes in process `syz.1.847'. [ 427.966628][ T7937] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 427.989175][ T7937] ext4 filesystem being mounted at /167/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 428.142320][ T7937] EXT4-fs error (device loop2): ext4_empty_dir:3090: inode #12: block 32: comm syz.2.845: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=3, rec_len=0, size=2048 fake=0 [ 428.201192][ T7937] EXT4-fs warning (device loop2): ext4_empty_dir:3093: inode #12: comm syz.2.845: directory missing '.' [ 428.478695][ T5805] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 430.380503][ T7955] loop4: detected capacity change from 0 to 8192 [ 431.890193][ T7975] netdevsim netdevsim5 netdevsim0: entered promiscuous mode [ 431.902911][ T7975] macvtap1: entered promiscuous mode [ 431.909808][ T7975] macvtap1: entered allmulticast mode [ 431.919894][ T7975] netdevsim netdevsim5 netdevsim0: entered allmulticast mode [ 432.810006][ T7980] netlink: 12 bytes leftover after parsing attributes in process `syz.1.865'. [ 433.488095][ T7986] loop4: detected capacity change from 0 to 1024 [ 434.820182][ T7998] loop4: detected capacity change from 0 to 2048 [ 434.914381][ T7998] NILFS (loop4): broken superblock, retrying with spare superblock (blocksize = 1024) [ 435.060136][ T8003] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 435.329886][ T8004] loop2: detected capacity change from 0 to 1024 [ 435.380490][ T8004] EXT4-fs: Ignoring removed orlov option [ 435.391404][ T8004] EXT4-fs: Ignoring removed nomblk_io_submit option [ 435.521938][ T8004] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 436.049937][ T5805] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 436.722076][ T8023] loop2: detected capacity change from 0 to 64 [ 436.834629][ T8025] loop5: detected capacity change from 0 to 256 [ 436.903413][ T8025] exFAT-fs (loop5): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 436.918900][ T8025] exFAT-fs (loop5): Medium has reported failures. Some data may be lost. [ 437.255105][ T8025] exFAT-fs (loop5): failed to load upcase table (idx : 0x0000ff98, chksum : 0xc64c1d22, utbl_chksum : 0xe619d30d) [ 437.899327][ T8035] sctp: [Deprecated]: syz.4.889 (pid 8035) Use of struct sctp_assoc_value in delayed_ack socket option. [ 437.899327][ T8035] Use struct sctp_sack_info instead [ 438.329234][ T8037] dummy0: entered allmulticast mode [ 438.350746][ T8036] dummy0: left allmulticast mode [ 439.122184][ T8048] warning: `syz.0.895' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211 [ 439.992435][ T8054] loop4: detected capacity change from 0 to 1024 [ 440.133593][ T8053] loop5: detected capacity change from 0 to 2048 [ 440.189732][ T8053] NILFS (loop5): broken superblock, retrying with spare superblock (blocksize = 1024) [ 440.219347][ T8054] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 440.362454][ T8062] NILFS (loop5): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 440.509792][ T5809] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 443.222259][ T8084] Bluetooth: MGMT ver 1.23 [ 443.892356][ T8085] loop4: detected capacity change from 0 to 4096 [ 445.141819][ T8097] loop0: detected capacity change from 0 to 256 [ 445.312724][ T8097] exFAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 445.328577][ T8097] exFAT-fs (loop0): Medium has reported failures. Some data may be lost. [ 445.578038][ T8097] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d) [ 445.881750][ T8103] netlink: 8 bytes leftover after parsing attributes in process `syz.4.920'. [ 445.895626][ T8099] loop5: detected capacity change from 0 to 2048 [ 445.931736][ T8099] UDF-fs: error (device loop5): udf_read_tagged: read failed, block=2365, location=2365 [ 445.960473][ T8099] UDF-fs: error (device loop5): udf_read_tagged: tag checksum failed, block 99: 0x27 != 0x4d [ 445.962149][ T8099] UDF-fs: error (device loop5): udf_read_tagged: tag checksum failed, block 160: 0xd2 != 0xd4 [ 445.997692][ T8099] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 447.427985][ T8110] loop4: detected capacity change from 0 to 1024 [ 447.701920][ T8110] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 447.715583][ T8110] ext4 filesystem being mounted at /196/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 447.829954][ T8110] EXT4-fs (loop4): resizing filesystem from 512 to 0 blocks [ 447.842097][ T8110] EXT4-fs warning (device loop4): ext4_resize_fs:2042: can't shrink FS - resize aborted [ 448.316032][ T5809] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 448.346921][ T8122] loop5: detected capacity change from 0 to 1024 [ 448.509628][ T8122] hfsplus: bad catalog entry type [ 448.633709][ T8119] loop2: detected capacity change from 0 to 4096 [ 448.680409][ T8119] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (16), stripe is disabled [ 448.739362][ T8119] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 449.118362][ T5805] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 449.162090][ T8126] loop4: detected capacity change from 0 to 64 [ 450.921115][ T8143] loop2: detected capacity change from 0 to 128 [ 451.041600][ T8143] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 451.824723][ T8149] loop5: detected capacity change from 0 to 256 [ 452.206193][ T8153] devtmpfs: Cannot disable swap on remount [ 452.264449][ T8149] FAT-fs (loop5): Directory bread(block 64) failed [ 452.271375][ T8149] FAT-fs (loop5): Directory bread(block 65) failed [ 452.283630][ T8149] FAT-fs (loop5): Directory bread(block 66) failed [ 452.290486][ T8149] FAT-fs (loop5): Directory bread(block 67) failed [ 452.302127][ T8149] FAT-fs (loop5): Directory bread(block 68) failed [ 452.313482][ T8149] FAT-fs (loop5): Directory bread(block 69) failed [ 452.320493][ T8149] FAT-fs (loop5): Directory bread(block 70) failed [ 452.328222][ T8149] FAT-fs (loop5): Directory bread(block 71) failed [ 452.335368][ T8149] FAT-fs (loop5): Directory bread(block 72) failed [ 452.342122][ T8149] FAT-fs (loop5): Directory bread(block 73) failed [ 453.230019][ T8160] loop4: detected capacity change from 0 to 22 [ 453.247639][ T8160] romfs: Mounting image 'rom 637cf1fa' through the block layer [ 453.388246][ T8162] x_tables: ip6_tables: quota.0 match: invalid size 24 (kernel) != (user) 144 [ 455.363826][ T8183] loop0: detected capacity change from 0 to 1024 [ 455.388467][ T8186] netlink: 'syz.2.957': attribute type 3 has an invalid length. [ 455.397066][ T8186] netlink: 'syz.2.957': attribute type 1 has an invalid length. [ 455.405347][ T8186] netlink: 193500 bytes leftover after parsing attributes in process `syz.2.957'. [ 455.439685][ T8183] EXT4-fs: Ignoring removed orlov option [ 455.464035][ T8183] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 455.609942][ T8183] EXT4-fs error (device loop0): ext4_ext_check_inode:523: inode #11: comm syz.0.955: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 32512(32512) [ 455.730296][ T8183] EXT4-fs error (device loop0): ext4_orphan_get:1397: comm syz.0.955: couldn't read orphan inode 11 (err -117) [ 455.769573][ T8183] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 456.009934][ T8183] EXT4-fs error (device loop0): ext4_read_block_bitmap_nowait:483: comm syz.0.955: Invalid block bitmap block 0 in block_group 0 [ 456.074256][ T8183] Quota error (device loop0): write_blk: dquota write failed [ 456.082082][ T8183] Quota error (device loop0): qtree_write_dquot: Error -117 occurred while creating quota [ 456.092735][ T8183] EXT4-fs error (device loop0): ext4_acquire_dquot:6933: comm syz.0.955: Failed to acquire dquot type 0 [ 456.203494][ T8192] loop2: detected capacity change from 0 to 8 [ 456.317035][ T8194] loop4: detected capacity change from 0 to 256 [ 456.568271][ T5807] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 456.587176][ T5807] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 456.606892][ T5807] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 456.630339][ T5807] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 456.668445][ T5807] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 456.778550][ T5815] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 456.789421][ T5095] Quota error (device loop0): do_check_range: Getting block 0 out of range 1-8 [ 456.803657][ T5095] EXT4-fs error (device loop0): ext4_release_dquot:6969: comm kworker/u8:25: Failed to release dquot type 0 [ 456.885278][ T8194] FAT-fs (loop4): Directory bread(block 64) failed [ 456.892206][ T8194] FAT-fs (loop4): Directory bread(block 65) failed [ 456.900374][ T8194] FAT-fs (loop4): Directory bread(block 66) failed [ 456.907413][ T8194] FAT-fs (loop4): Directory bread(block 67) failed [ 456.914600][ T8194] FAT-fs (loop4): Directory bread(block 68) failed [ 456.921352][ T8194] FAT-fs (loop4): Directory bread(block 69) failed [ 456.928743][ T8194] FAT-fs (loop4): Directory bread(block 70) failed [ 456.935653][ T8194] FAT-fs (loop4): Directory bread(block 71) failed [ 456.942898][ T8194] FAT-fs (loop4): Directory bread(block 72) failed [ 456.949635][ T8194] FAT-fs (loop4): Directory bread(block 73) failed [ 457.202157][ T8199] netlink: 44 bytes leftover after parsing attributes in process `syz.2.961'. [ 458.843231][ C1] ip6_tunnel: ip6tnl1 xmit: Local address not yet configured! [ 458.931844][ T5807] Bluetooth: hci5: command tx timeout [ 459.158159][ T8195] chnl_net:caif_netlink_parms(): no params data found [ 460.003882][ T8224] loop4: detected capacity change from 0 to 256 [ 460.081492][ T8224] exfat: Deprecated parameter 'namecase' [ 460.369768][ T8224] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0x1a9973fb, utbl_chksum : 0xe619d30d) [ 461.017103][ T5807] Bluetooth: hci5: command tx timeout [ 461.310807][ T1142] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 461.500260][ T1142] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 461.756791][ T8243] overlayfs: option "uuid=on" requires an upper fs, falling back to uuid=null. [ 462.101011][ T1142] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 462.149613][ T8195] bridge0: port 1(bridge_slave_0) entered blocking state [ 462.157815][ T8195] bridge0: port 1(bridge_slave_0) entered disabled state [ 462.168948][ T8195] bridge_slave_0: entered allmulticast mode [ 462.194385][ T8195] bridge_slave_0: entered promiscuous mode [ 462.294406][ T1142] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 462.318228][ T8245] loop0: detected capacity change from 0 to 64 [ 462.361286][ T8195] bridge0: port 2(bridge_slave_1) entered blocking state [ 462.369339][ T8195] bridge0: port 2(bridge_slave_1) entered disabled state [ 462.377950][ T8195] bridge_slave_1: entered allmulticast mode [ 462.397567][ T8195] bridge_slave_1: entered promiscuous mode [ 462.969877][ T8195] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 463.003202][ T1142] bridge_slave_1: left allmulticast mode [ 463.012045][ T1142] bridge_slave_1: left promiscuous mode [ 463.020396][ T1142] bridge0: port 2(bridge_slave_1) entered disabled state [ 463.083777][ T5807] Bluetooth: hci5: command tx timeout [ 463.130511][ T1142] bridge_slave_0: left allmulticast mode [ 463.137561][ T1142] bridge_slave_0: left promiscuous mode [ 463.144706][ T1142] bridge0: port 1(bridge_slave_0) entered disabled state [ 463.665226][ T8257] netlink: 4 bytes leftover after parsing attributes in process `syz.4.986'. [ 463.704539][ T8257] netlink: 4 bytes leftover after parsing attributes in process `syz.4.986'. [ 463.985217][ T8260] netlink: 108 bytes leftover after parsing attributes in process `syz.5.987'. [ 463.995732][ T8260] netlink: 8 bytes leftover after parsing attributes in process `syz.5.987'. [ 464.485658][ T8266] loop2: detected capacity change from 0 to 256 [ 464.914980][ T1142] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 465.000653][ T1142] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 465.054969][ T1142] bond0 (unregistering): Released all slaves [ 465.173244][ T5807] Bluetooth: hci5: command tx timeout [ 465.317378][ T8266] FAT-fs (loop2): Directory bread(block 64) failed [ 465.325064][ T8266] FAT-fs (loop2): Directory bread(block 65) failed [ 465.332041][ T8266] FAT-fs (loop2): Directory bread(block 66) failed [ 465.339284][ T8266] FAT-fs (loop2): Directory bread(block 67) failed [ 465.346830][ T8266] FAT-fs (loop2): Directory bread(block 68) failed [ 465.359288][ T8266] FAT-fs (loop2): Directory bread(block 69) failed [ 465.367857][ T8266] FAT-fs (loop2): Directory bread(block 70) failed [ 465.374846][ T8266] FAT-fs (loop2): Directory bread(block 71) failed [ 465.381828][ T8266] FAT-fs (loop2): Directory bread(block 72) failed [ 465.389103][ T8266] FAT-fs (loop2): Directory bread(block 73) failed [ 465.506438][ T8195] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 466.042895][ T8195] team0: Port device team_slave_0 added [ 466.308156][ T8195] team0: Port device team_slave_1 added [ 466.399633][ T8284] loop2: detected capacity change from 0 to 512 [ 466.429107][ T1142] hsr_slave_0: left promiscuous mode [ 466.460220][ T1142] hsr_slave_1: left promiscuous mode [ 466.469273][ T1142] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 466.477484][ T1142] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 466.534217][ T1142] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 466.542131][ T1142] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 466.603534][ T8284] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 466.624632][ T1142] veth1_macvtap: left promiscuous mode [ 466.630501][ T1142] veth0_macvtap: left promiscuous mode [ 466.637603][ T1142] veth1_vlan: left promiscuous mode [ 466.643313][ T1142] veth0_vlan: left promiscuous mode [ 466.924605][ T8284] EXT4-fs (loop2): re-mounted 00000000-0000-0000-0000-000000000000. [ 467.020033][ T8290] netlink: 72 bytes leftover after parsing attributes in process `syz.0.999'. [ 467.347867][ T8293] loop5: detected capacity change from 0 to 128 [ 467.431655][ T8293] FAT-fs (loop5): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 467.571557][ T8293] FAT-fs (loop5): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 467.588785][ T5805] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 467.637317][ T1142] team0 (unregistering): Port device team_slave_1 removed [ 467.718521][ T1142] team0 (unregistering): Port device team_slave_0 removed [ 467.929179][ T8297] loop0: detected capacity change from 0 to 22 [ 467.989051][ T8297] romfs: Mounting image 'rom 637cf1fa' through the block layer [ 467.996621][ T8299] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1004'. [ 468.334151][ T8295] loop4: detected capacity change from 0 to 4096 [ 468.359702][ T4288] FAT-fs (loop5): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 468.702000][ T8302] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1005'. [ 468.828253][ T8303] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1006'. [ 468.881659][ T8303] IPVS: Error joining to the multicast group [ 468.912931][ T8195] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 468.920330][ T8195] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 468.953199][ T8195] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 469.114075][ T8195] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 469.121345][ T8195] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 469.154517][ T8195] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 469.371045][ T8195] hsr_slave_0: entered promiscuous mode [ 469.382272][ T8195] hsr_slave_1: entered promiscuous mode [ 469.392207][ T8195] debugfs: 'hsr0' already exists in 'hsr' [ 469.398382][ T8195] Cannot create hsr debugfs directory [ 470.121289][ T8315] loop5: detected capacity change from 0 to 512 [ 470.296388][ T8315] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback. [ 470.309992][ T8315] ext4 filesystem being mounted at /90/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 470.469556][ T8195] netdevsim netdevsim6 netdevsim0: renamed from eth0 [ 470.584043][ T8195] netdevsim netdevsim6 netdevsim1: renamed from eth1 [ 470.650447][ T8195] netdevsim netdevsim6 netdevsim2: renamed from eth2 [ 470.734812][ T8195] netdevsim netdevsim6 netdevsim3: renamed from eth3 [ 470.904687][ T8327] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1016'. [ 470.914449][ T8327] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1016'. [ 470.963881][ T7155] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000d40000. [ 471.031274][ T8328] loop4: detected capacity change from 0 to 256 [ 471.445031][ T8323] loop2: detected capacity change from 0 to 4096 [ 471.461083][ T8330] loop5: detected capacity change from 0 to 8 [ 472.073645][ T8195] 8021q: adding VLAN 0 to HW filter on device bond0 [ 472.132066][ T8323] ntfs3(loop2): failed to convert "0080" to koi8-ru [ 472.143208][ T8335] loop4: detected capacity change from 0 to 256 [ 472.179359][ T8323] ntfs3(loop2): failed to convert name for inode 1e. [ 472.233182][ T8195] 8021q: adding VLAN 0 to HW filter on device team0 [ 472.244904][ T8323] ntfs3(loop2): ino=1f, mi_enum_attr [ 472.245420][ T8338] vhci_hcd vhci_hcd.0: pdev(5) rhport(0) sockfd(3) [ 472.250451][ T8323] ntfs3(loop2): Mark volume as dirty due to NTFS errors [ 472.257037][ T8338] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed) [ 472.257808][ T8338] vhci_hcd vhci_hcd.0: Device attached [ 472.356382][ T4237] bridge0: port 1(bridge_slave_0) entered blocking state [ 472.364231][ T4237] bridge0: port 1(bridge_slave_0) entered forwarding state [ 472.381434][ T4237] bridge0: port 2(bridge_slave_1) entered blocking state [ 472.389306][ T4237] bridge0: port 2(bridge_slave_1) entered forwarding state [ 472.426826][ T8339] vhci_hcd: connection closed [ 472.462970][ T3694] vhci_hcd: stop threads [ 472.472842][ T3694] vhci_hcd: release socket [ 472.477441][ T3694] vhci_hcd: disconnect device [ 474.247305][ T8351] loop2: detected capacity change from 0 to 8192 [ 474.358740][ T8351] FAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 474.383472][ T8362] loop0: detected capacity change from 0 to 128 [ 474.497692][ T8362] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: writeback. [ 474.538020][ T8362] ext4 filesystem being mounted at /216/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 474.730576][ T8195] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 474.768147][ T8362] EXT4-fs (loop0): re-mounted 76b65be2-f6da-4727-8c75-0525a5b65a09 ro. [ 474.846066][ T8369] EXT4-fs (loop0): re-mounted 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w. [ 474.911758][ T8368] loop4: detected capacity change from 0 to 2048 [ 475.092930][ T8368] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 475.223929][ T5815] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 475.309560][ T8373] bridge0: entered promiscuous mode [ 475.324688][ T8373] bridge0: port 3(macsec1) entered blocking state [ 475.332021][ T8373] bridge0: port 3(macsec1) entered disabled state [ 475.339674][ T8373] macsec1: entered allmulticast mode [ 475.345520][ T8373] bridge0: entered allmulticast mode [ 475.376349][ T8373] macsec1: left allmulticast mode [ 475.381655][ T8373] bridge0: left allmulticast mode [ 475.423542][ T8373] bridge0: left promiscuous mode [ 476.418922][ T1713] usb 3-1: new high-speed USB device number 6 using dummy_hcd [ 476.441652][ T5865] usb 1-1: new high-speed USB device number 6 using dummy_hcd [ 476.636642][ T5865] usb 1-1: Using ep0 maxpacket: 16 [ 476.664108][ T8394] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1040'. [ 476.677646][ T1713] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 476.691406][ T1713] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 476.701886][ T1713] usb 3-1: New USB device found, idVendor=0d8c, idProduct=0022, bcdDevice= 0.00 [ 476.711470][ T1713] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 476.733016][ T5865] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 476.745306][ T5865] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 476.756304][ T5865] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 476.771272][ T5865] usb 1-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00 [ 476.780923][ T5865] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 476.846219][ T1713] usb 3-1: config 0 descriptor?? [ 476.886709][ T5865] usb 1-1: config 0 descriptor?? [ 477.364146][ T5865] microsoft 0003:045E:07DA.000E: item 0 4 0 11 parsing failed [ 477.398121][ T1713] cm6533_jd 0003:0D8C:0022.000F: unbalanced collection at end of report description [ 477.412279][ T5865] microsoft 0003:045E:07DA.000E: parse failed [ 477.419516][ T5865] microsoft 0003:045E:07DA.000E: probe with driver microsoft failed with error -22 [ 477.460802][ T1713] cm6533_jd 0003:0D8C:0022.000F: parse failed [ 477.467865][ T1713] cm6533_jd 0003:0D8C:0022.000F: probe with driver cm6533_jd failed with error -22 [ 477.536516][ T8195] veth0_vlan: entered promiscuous mode [ 477.593123][ T1713] usb 1-1: USB disconnect, device number 6 [ 477.638958][ T5865] usb 3-1: USB disconnect, device number 6 [ 477.675180][ T8195] veth1_vlan: entered promiscuous mode [ 477.962339][ T8195] veth0_macvtap: entered promiscuous mode [ 478.022027][ T8195] veth1_macvtap: entered promiscuous mode [ 478.031002][ T8402] loop5: detected capacity change from 0 to 1024 [ 478.134300][ T8195] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 478.233219][ T8195] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 478.265615][ T8402] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 478.294890][ T4928] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 478.355722][ T4928] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 478.445701][ T4288] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 478.503111][ T4288] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 478.865012][ T7155] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 480.551645][ T8439] loop2: detected capacity change from 0 to 128 [ 480.641551][ T1289] ieee802154 phy0 wpan0: encryption failed: -22 [ 480.649079][ T1289] ieee802154 phy1 wpan1: encryption failed: -22 [ 480.658723][ T8439] UDF-fs: error (device loop2): udf_read_tagged: read failed, block=256, location=256 [ 480.936678][ T8439] UDF-fs: error (device loop2): udf_bitmap_new_block: bitmap for partition 0 corrupted (block 264 marked as free, partition length is 40) [ 481.237449][ T8441] loop5: detected capacity change from 0 to 4096 [ 481.407333][ T8441] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 481.570797][ T8453] netlink: 44 bytes leftover after parsing attributes in process `syz.0.1062'. [ 481.580562][ T8453] netlink: 'syz.0.1062': attribute type 6 has an invalid length. [ 481.589022][ T8453] netlink: 'syz.0.1062': attribute type 5 has an invalid length. [ 481.597317][ T8453] netlink: 'syz.0.1062': attribute type 4 has an invalid length. [ 481.608496][ T8441] EXT4-fs: inline encryption not supported [ 481.614956][ T8441] EXT4-fs: Ignoring removed mblk_io_submit option [ 481.623011][ T8441] EXT4-fs: Can't set or change test_dummy_encryption on remount [ 481.927916][ T8446] loop4: detected capacity change from 0 to 4096 [ 482.066400][ T7155] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 482.561735][ T8446] ntfs3(loop4): failed to convert name for inode 1e. [ 482.578583][ T8446] ntfs3(loop4): ino=1f, mi_enum_attr [ 482.683540][ T5806] Bluetooth: hci0: command 0x0406 tx timeout [ 483.519387][ T8477] loop2: detected capacity change from 0 to 256 [ 483.565453][ T5858] usb 6-1: new high-speed USB device number 3 using dummy_hcd [ 483.666793][ T8477] exFAT-fs (loop2): failed to load upcase table (idx : 0x00011f41, chksum : 0xf6e84b2e, utbl_chksum : 0xe619d30d) [ 483.807762][ T5858] usb 6-1: config 0 interface 0 altsetting 2 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 483.825360][ T5858] usb 6-1: config 0 interface 0 has no altsetting 0 [ 483.832298][ T5858] usb 6-1: New USB device found, idVendor=046d, idProduct=c29c, bcdDevice= 0.00 [ 483.842173][ T5858] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 483.900292][ T5858] usb 6-1: config 0 descriptor?? [ 484.373637][ T5858] logitech 0003:046D:C29C.0010: hidraw0: USB HID v1.01 Device [HID 046d:c29c] on usb-dummy_hcd.5-1/input0 [ 484.466477][ T8486] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1074'. [ 484.552128][ T5858] logitech 0003:046D:C29C.0010: no inputs found [ 484.611425][ T5858] usb 6-1: USB disconnect, device number 3 [ 484.930026][ T8492] sp0: Synchronizing with TNC [ 485.507888][ T4697] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 485.516119][ T4697] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 485.599779][ T8500] loop0: detected capacity change from 0 to 512 [ 485.720097][ T4288] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 485.737598][ T4288] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 485.806451][ T8500] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 485.824723][ T8500] ext4 filesystem being mounted at /229/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 486.274014][ T5815] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 487.438747][ T8527] loop2: detected capacity change from 0 to 256 [ 487.481799][ T8527] exfat: Deprecated parameter 'utf8' [ 487.638224][ T8527] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0x36dfe6b4, utbl_chksum : 0xe619d30d) [ 487.846308][ T8529] loop5: detected capacity change from 0 to 1024 [ 487.861049][ T8533] loop4: detected capacity change from 0 to 128 [ 488.011076][ T8529] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 488.024101][ T8529] ext4 filesystem being mounted at /109/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 488.133834][ T8538] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm ext4lazyinit: bg 0: block 400: padding at end of block bitmap is not set [ 488.183015][ T8538] EXT4-fs (loop5): Remounting filesystem read-only [ 488.557926][ T7155] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 488.649735][ T4237] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 488.988263][ T4237] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 489.198845][ T4237] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 489.406274][ T4237] netdevsim netdevsim2 netdevsim0 (unregistering): left allmulticast mode [ 489.516959][ T4237] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 489.847046][ T4237] bridge_slave_1: left allmulticast mode [ 489.853477][ T4237] bridge_slave_1: left promiscuous mode [ 489.860253][ T4237] bridge0: port 2(bridge_slave_1) entered disabled state [ 489.883856][ T4237] bridge_slave_0: left allmulticast mode [ 489.889753][ T4237] bridge_slave_0: left promiscuous mode [ 489.896891][ T4237] bridge0: port 1(bridge_slave_0) entered disabled state [ 490.663819][ T4237] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 490.691567][ T4237] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 490.708403][ T4237] bond0 (unregistering): Released all slaves [ 491.124829][ T8554] pim6reg: entered allmulticast mode [ 491.605299][ T4237] hsr_slave_0: left promiscuous mode [ 491.622950][ T8560] loop4: detected capacity change from 0 to 2048 [ 491.625421][ T4237] hsr_slave_1: left promiscuous mode [ 491.641705][ T4237] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 491.649628][ T4237] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 491.704770][ T8560] loop4: p1 < > p3 p4 < > [ 491.743333][ T8560] loop4: p3 start 4284289 is beyond EOD, truncated [ 491.776631][ T4237] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 491.791716][ T4237] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 491.935652][ T4237] veth1_macvtap: left promiscuous mode [ 491.941463][ T4237] veth0_macvtap: left promiscuous mode [ 491.948244][ T4237] veth1_vlan: left promiscuous mode [ 491.954118][ T4237] veth0_vlan: left promiscuous mode [ 492.154779][ T5806] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 492.165170][ T5806] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 492.187422][ T5806] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 492.215089][ T5806] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 492.227663][ T5806] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 492.891927][ T8564] loop6: detected capacity change from 0 to 4096 [ 492.999165][ T4237] team0 (unregistering): Port device team_slave_1 removed [ 493.050107][ T4237] team0 (unregistering): Port device team_slave_0 removed [ 493.425701][ T8576] loop0: detected capacity change from 0 to 1024 [ 493.854315][ T8576] hfsplus: extend alloc file! (16384,256,150995124) [ 494.084312][ T8564] ntfs3(loop6): Mark volume as dirty due to NTFS errors [ 494.336211][ T8584] loop4: detected capacity change from 0 to 512 [ 494.444276][ T5806] Bluetooth: hci1: command tx timeout [ 494.452022][ T8584] EXT4-fs error (device loop4): ext4_xattr_inode_iget:433: comm syz.4.1116: Parent and EA inode have the same ino 15 [ 494.488107][ T8584] EXT4-fs (loop4): Remounting filesystem read-only [ 494.495409][ T8584] EXT4-fs (loop4): 1 orphan inode deleted [ 494.503923][ T8584] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 494.655809][ T8195] ntfs3(loop6): ino=9, ntfs_sync_fs failed, -22. [ 494.924338][ T8569] chnl_net:caif_netlink_parms(): no params data found [ 494.968119][ T5809] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 494.985308][ T8594] loop0: detected capacity change from 0 to 512 [ 495.092722][ T8594] EXT4-fs error (device loop0): ext4_get_branch:178: inode #11: block 4294967295: comm syz.0.1120: invalid block [ 495.149888][ T8594] EXT4-fs (loop0): Remounting filesystem read-only [ 495.167300][ T8594] EXT4-fs (loop0): 2 truncates cleaned up [ 495.176086][ T8594] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 495.541660][ T5815] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 496.523546][ T5806] Bluetooth: hci1: command tx timeout [ 496.778432][ T8569] bridge0: port 1(bridge_slave_0) entered blocking state [ 496.787173][ T8569] bridge0: port 1(bridge_slave_0) entered disabled state [ 496.801131][ T8569] bridge_slave_0: entered allmulticast mode [ 496.811444][ T8569] bridge_slave_0: entered promiscuous mode [ 496.945691][ T8569] bridge0: port 2(bridge_slave_1) entered blocking state [ 496.953937][ T8569] bridge0: port 2(bridge_slave_1) entered disabled state [ 496.961796][ T8569] bridge_slave_1: entered allmulticast mode [ 496.973024][ T8569] bridge_slave_1: entered promiscuous mode [ 497.468611][ T8629] loop0: detected capacity change from 0 to 256 [ 497.505370][ T8628] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1134'. [ 497.537093][ T8569] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 497.643610][ T8569] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 497.678074][ T8629] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0x1a9973fb, utbl_chksum : 0xe619d30d) [ 498.064473][ T8569] team0: Port device team_slave_0 added [ 498.089510][ T8569] team0: Port device team_slave_1 added [ 498.460050][ T8569] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 498.468380][ T8569] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 498.495708][ T8569] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 498.598357][ T8569] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 498.605900][ T8569] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 498.613777][ T5806] Bluetooth: hci1: command tx timeout [ 498.636900][ T8569] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 498.917705][ T8569] hsr_slave_0: entered promiscuous mode [ 498.928929][ T8569] hsr_slave_1: entered promiscuous mode [ 498.938488][ T8569] debugfs: 'hsr0' already exists in 'hsr' [ 498.949450][ T8569] Cannot create hsr debugfs directory [ 499.032825][ T1649] usb 1-1: new high-speed USB device number 7 using dummy_hcd [ 499.230382][ T1649] usb 1-1: config 1 contains an unexpected descriptor of type 0x2, skipping [ 499.239512][ T1649] usb 1-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 499.253894][ T1649] usb 1-1: config 1 has 2 interfaces, different from the descriptor's value: 3 [ 499.264435][ T1649] usb 1-1: config 1 has no interface number 1 [ 499.270887][ T1649] usb 1-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 0 [ 499.437800][ T1649] usb 1-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40 [ 499.447389][ T1649] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 499.459659][ T1649] usb 1-1: Product: syz [ 499.465481][ T1649] usb 1-1: Manufacturer: syz [ 499.470301][ T1649] usb 1-1: SerialNumber: syz [ 499.798511][ T8655] loop4: detected capacity change from 0 to 128 [ 499.803249][ T1649] usb 1-1: Failed to set altset [ 499.810205][ T1649] usb 1-1: 0:2: cannot create sequencer device [ 499.855211][ T1649] usb 1-1: Failed to set altset [ 499.928597][ T1649] snd-usb-audio 1-1:1.2: probe with driver snd-usb-audio failed with error -71 [ 499.944891][ T1649] usb 1-1: USB disconnect, device number 7 [ 500.269058][ T8569] netdevsim netdevsim7 netdevsim0: renamed from eth0 [ 500.344945][ T8569] netdevsim netdevsim7 netdevsim1: renamed from eth1 [ 500.388940][ T8658] netlink: 8 bytes leftover after parsing attributes in process `syz.6.1146'. [ 500.399591][ T8658] netlink: 8 bytes leftover after parsing attributes in process `syz.6.1146'. [ 500.436854][ T8569] netdevsim netdevsim7 netdevsim2: renamed from eth2 [ 500.497932][ T8569] netdevsim netdevsim7 netdevsim3: renamed from eth3 [ 500.686380][ T5806] Bluetooth: hci1: command tx timeout [ 500.739805][ T30] audit: type=1326 audit(1755160514.680:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8661 comm="syz.4.1148" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe6539 code=0x7ffc0000 [ 500.883103][ T30] audit: type=1326 audit(1755160514.740:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8661 comm="syz.4.1148" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe6539 code=0x7ffc0000 [ 500.909155][ T30] audit: type=1326 audit(1755160514.780:12): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8661 comm="syz.4.1148" exe="/root/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf7fe6539 code=0x7ffc0000 [ 500.933864][ T30] audit: type=1326 audit(1755160514.780:13): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8661 comm="syz.4.1148" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe6539 code=0x7ffc0000 [ 500.957924][ T30] audit: type=1326 audit(1755160514.780:14): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8661 comm="syz.4.1148" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe6539 code=0x7ffc0000 [ 500.980631][ T30] audit: type=1326 audit(1755160514.800:15): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8661 comm="syz.4.1148" exe="/root/syz-executor" sig=0 arch=40000003 syscall=181 compat=1 ip=0xf7fe6539 code=0x7ffc0000 [ 501.006692][ T30] audit: type=1326 audit(1755160514.800:16): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8661 comm="syz.4.1148" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe6539 code=0x7ffc0000 [ 501.560473][ T8569] 8021q: adding VLAN 0 to HW filter on device bond0 [ 501.775182][ T8569] 8021q: adding VLAN 0 to HW filter on device team0 [ 501.957398][ T85] bridge0: port 1(bridge_slave_0) entered blocking state [ 501.965191][ T85] bridge0: port 1(bridge_slave_0) entered forwarding state [ 502.088603][ T85] bridge0: port 2(bridge_slave_1) entered blocking state [ 502.096672][ T85] bridge0: port 2(bridge_slave_1) entered forwarding state [ 502.467558][ T1649] usb 7-1: new full-speed USB device number 2 using dummy_hcd [ 502.697514][ T1649] usb 7-1: config 0 has an invalid interface number: 1 but max is 0 [ 502.706158][ T1649] usb 7-1: config 0 has no interface number 0 [ 502.713338][ T1649] usb 7-1: New USB device found, idVendor=0b48, idProduct=1005, bcdDevice=8c.1e [ 502.722874][ T1649] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 502.840470][ T1649] usb 7-1: config 0 descriptor?? [ 502.878622][ T1649] usb 7-1: selecting invalid altsetting 1 [ 502.885732][ T1649] dvb_ttusb_budget: ttusb_init_controller: error [ 502.892251][ T1649] dvbdev: DVB: registering new adapter (Technotrend/Hauppauge Nova-USB) [ 503.519438][ T1649] DVB: Unable to find symbol cx22700_attach() [ 504.071190][ T1649] DVB: Unable to find symbol tda10046_attach() [ 504.079798][ T1649] dvb_ttusb_budget: no frontend driver found for device [0b48:1005] [ 504.171459][ T1649] usb 7-1: USB disconnect, device number 2 [ 504.397684][ T8700] loop0: detected capacity change from 0 to 2048 [ 504.448332][ T30] audit: type=1800 audit(1755160518.410:17): pid=8707 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.1166" name="#681" dev="tmpfs" ino=681 res=0 errno=0 [ 504.502318][ T8700] NILFS (loop0): broken superblock, retrying with spare superblock (blocksize = 1024) [ 504.513208][ T8700] NILFS (loop0): mounting unchecked fs [ 504.568990][ T8569] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 504.683843][ T8700] NILFS (loop0): recovery complete [ 504.715665][ T8709] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 507.404335][ T8569] veth0_vlan: entered promiscuous mode [ 507.530853][ T8569] veth1_vlan: entered promiscuous mode [ 507.880667][ T8569] veth0_macvtap: entered promiscuous mode [ 507.997235][ T8569] veth1_macvtap: entered promiscuous mode [ 508.009698][ T8753] loop0: detected capacity change from 0 to 512 [ 508.066789][ T8753] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 508.240157][ T8569] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 508.264684][ T8759] loop6: detected capacity change from 0 to 16 [ 508.278374][ T8569] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 508.309324][ T8753] EXT4-fs error (device loop0): ext4_iget_extra_inode:5104: inode #15: comm syz.0.1186: corrupted in-inode xattr: overlapping e_value [ 508.354450][ T8759] erofs (device loop6): mounted with root inode @ nid 36. [ 508.394439][ T4928] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 508.426107][ T8753] EXT4-fs error (device loop0): ext4_orphan_get:1397: comm syz.0.1186: couldn't read orphan inode 15 (err -117) [ 508.433540][ T4928] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 508.515666][ T8753] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 508.531818][ T4928] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 508.585276][ T4928] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 508.649839][ T8753] EXT4-fs error (device loop0): ext4_empty_dir:3081: inode #2: comm syz.0.1186: invalid size [ 509.047288][ T5815] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 509.498990][ T4928] netdevsim netdevsim6 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 509.719860][ T4928] netdevsim netdevsim6 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 509.837669][ T4928] netdevsim netdevsim6 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 510.059409][ T4928] netdevsim netdevsim6 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 510.543870][ T4928] bridge_slave_1: left allmulticast mode [ 510.549791][ T4928] bridge_slave_1: left promiscuous mode [ 510.556936][ T4928] bridge0: port 2(bridge_slave_1) entered disabled state [ 510.627953][ T4928] bridge_slave_0: left allmulticast mode [ 510.635573][ T4928] bridge_slave_0: left promiscuous mode [ 510.642635][ T4928] bridge0: port 1(bridge_slave_0) entered disabled state [ 510.771855][ T8773] loop4: detected capacity change from 0 to 8192 [ 510.870736][ T8773] FAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 510.994719][ T8773] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1194'. [ 511.281127][ T4928] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 511.316427][ T4928] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 511.352350][ T4928] bond0 (unregistering): Released all slaves [ 512.160340][ T4928] hsr_slave_0: left promiscuous mode [ 512.169944][ T4928] hsr_slave_1: left promiscuous mode [ 512.181846][ T4928] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 512.189647][ T4928] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 512.238255][ T4928] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 512.246004][ T4928] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 512.291925][ T4928] veth1_macvtap: left promiscuous mode [ 512.299898][ T4928] veth0_macvtap: left promiscuous mode [ 512.306251][ T4928] veth1_vlan: left promiscuous mode [ 512.311829][ T4928] veth0_vlan: left promiscuous mode [ 513.264652][ T4928] team0 (unregistering): Port device team_slave_1 removed [ 513.366647][ T4928] team0 (unregistering): Port device team_slave_0 removed [ 514.164968][ T5807] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 514.181352][ T5807] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 514.191818][ T5807] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 514.236082][ T5807] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 514.252369][ T5807] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 515.168185][ T8807] loop0: detected capacity change from 0 to 1024 [ 515.330633][ T8807] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 515.345095][ T8807] ext4 filesystem being mounted at /258/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 515.458563][ T8807] EXT4-fs error (device loop0): ext4_readdir:264: inode #2: block 16: comm syz.0.1207: path /258/file1: bad entry in directory: rec_len is smaller than minimal - offset=876, inode=0, rec_len=0, size=1024 fake=0 [ 515.485652][ T8807] EXT4-fs (loop0): Remounting filesystem read-only [ 515.499905][ T8818] loop4: detected capacity change from 0 to 512 [ 515.616604][ T8796] chnl_net:caif_netlink_parms(): no params data found [ 515.623161][ T8818] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a846e02c, mo2=0002] [ 515.682256][ T8818] System zones: 1-12 [ 515.721598][ T8818] EXT4-fs error (device loop4): dx_probe:791: inode #2: comm syz.4.1209: Directory hole found for htree index block 0 [ 515.757609][ T5815] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 515.832704][ T8818] EXT4-fs (loop4): Remounting filesystem read-only [ 515.874987][ T8818] EXT4-fs (loop4): Cannot turn on journaled quota: type 0: error -117 [ 515.894124][ T8818] EXT4-fs (loop4): Cannot turn on journaled quota: type 1: error -117 [ 515.905276][ T8818] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 516.061274][ T8823] loop5: detected capacity change from 0 to 64 [ 516.090711][ T8825] lo speed is unknown, defaulting to 1000 [ 516.098156][ T8825] lo speed is unknown, defaulting to 1000 [ 516.106141][ T8825] lo speed is unknown, defaulting to 1000 [ 516.127779][ T8825] iwpm_register_pid: Unable to send a nlmsg (client = 2) [ 516.183884][ T8825] infiniband syz2: RDMA CMA: cma_listen_on_dev, error -98 [ 516.260907][ T8825] lo speed is unknown, defaulting to 1000 [ 516.270897][ T8825] lo speed is unknown, defaulting to 1000 [ 516.280523][ T8825] lo speed is unknown, defaulting to 1000 [ 516.288104][ T5807] Bluetooth: hci3: command tx timeout [ 516.290143][ T8825] lo speed is unknown, defaulting to 1000 [ 516.303482][ T8825] lo speed is unknown, defaulting to 1000 [ 516.405814][ T5809] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 517.175160][ T4697] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 517.185845][ T4697] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 517.492342][ T8796] bridge0: port 1(bridge_slave_0) entered blocking state [ 517.500202][ T8796] bridge0: port 1(bridge_slave_0) entered disabled state [ 517.508721][ T8796] bridge_slave_0: entered allmulticast mode [ 517.519109][ T8796] bridge_slave_0: entered promiscuous mode [ 517.547041][ T3694] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 517.555361][ T3694] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 517.653399][ T8796] bridge0: port 2(bridge_slave_1) entered blocking state [ 517.661045][ T8796] bridge0: port 2(bridge_slave_1) entered disabled state [ 517.669194][ T8796] bridge_slave_1: entered allmulticast mode [ 517.720384][ T8796] bridge_slave_1: entered promiscuous mode [ 517.744087][ T8843] sp0: Synchronizing with TNC [ 517.769656][ T8844] sp0: Found TNC [ 517.809137][ T8840] [U] ` [ 517.951558][ T8796] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 518.013881][ T8796] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 518.086155][ T8846] loop4: detected capacity change from 0 to 1024 [ 518.211854][ T8846] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 518.225628][ T8846] ext4 filesystem being mounted at /270/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 518.365985][ T8846] EXT4-fs error (device loop4): ext4_readdir:264: inode #2: block 16: comm syz.4.1218: path /270/file1: bad entry in directory: rec_len is smaller than minimal - offset=876, inode=0, rec_len=0, size=1024 fake=0 [ 518.366671][ T8852] option changes via remount are deprecated (pid=8849 comm=syz.7.1103) [ 518.414374][ T5807] Bluetooth: hci3: command tx timeout [ 518.445540][ T8846] EXT4-fs (loop4): Remounting filesystem read-only [ 518.486694][ T8796] team0: Port device team_slave_0 added [ 518.525018][ T8796] team0: Port device team_slave_1 added [ 518.697837][ T8796] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 518.711405][ T8796] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 518.741242][ T8796] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 518.789089][ T5809] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 518.830680][ T8796] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 518.838721][ T8796] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 518.865303][ T8796] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 519.307549][ T8796] hsr_slave_0: entered promiscuous mode [ 519.327933][ T8796] hsr_slave_1: entered promiscuous mode [ 519.337524][ T8796] debugfs: 'hsr0' already exists in 'hsr' [ 519.343837][ T8796] Cannot create hsr debugfs directory [ 519.502951][ T1649] usb 8-1: new high-speed USB device number 2 using dummy_hcd [ 519.705865][ T1649] usb 8-1: config 220 has an invalid interface number: 76 but max is 2 [ 519.714647][ T1649] usb 8-1: config 220 contains an unexpected descriptor of type 0x2, skipping [ 519.724527][ T1649] usb 8-1: config 220 has an invalid descriptor of length 13, skipping remainder of the config [ 519.738263][ T1649] usb 8-1: config 220 has no interface number 2 [ 519.746016][ T1649] usb 8-1: config 220 interface 1 altsetting 5 has 0 endpoint descriptors, different from the interface descriptor's value: 12 [ 519.759573][ T1649] usb 8-1: config 220 interface 0 has no altsetting 0 [ 519.766939][ T1649] usb 8-1: config 220 interface 76 has no altsetting 0 [ 519.774163][ T1649] usb 8-1: config 220 interface 1 has no altsetting 0 [ 519.856220][ T1649] usb 8-1: New USB device found, idVendor=8086, idProduct=0b07, bcdDevice=6c.b9 [ 519.865939][ T1649] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 519.874491][ T1649] usb 8-1: Product: syz [ 519.878872][ T1649] usb 8-1: Manufacturer: syz [ 519.884064][ T1649] usb 8-1: SerialNumber: syz [ 520.176000][ T1649] usb 8-1: selecting invalid altsetting 0 [ 520.184656][ T1649] usb 8-1: Found UVC 7.01 device syz (8086:0b07) [ 520.191394][ T1649] usb 8-1: No valid video chain found. [ 520.208116][ T8870] loop5: detected capacity change from 0 to 256 [ 520.302997][ T1649] usb 8-1: selecting invalid altsetting 0 [ 520.309114][ T1649] usbtest 8-1:220.1: probe with driver usbtest failed with error -22 [ 520.388800][ T8870] exFAT-fs (loop5): failed to load upcase table (idx : 0x00010000, chksum : 0x905a013b, utbl_chksum : 0xe619d30d) [ 520.443290][ T1649] usb 8-1: USB disconnect, device number 2 [ 520.458842][ T5807] Bluetooth: hci3: command tx timeout [ 520.472360][ T8874] loop0: detected capacity change from 0 to 128 [ 520.493583][ T8874] UDF-fs: error (device loop0): udf_read_tagged: read failed, block=256, location=256 [ 520.520801][ T8874] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 520.741004][ T8796] netdevsim netdevsim8 netdevsim0: renamed from eth0 [ 520.816661][ T8796] netdevsim netdevsim8 netdevsim1: renamed from eth1 [ 520.885655][ T8796] netdevsim netdevsim8 netdevsim2: renamed from eth2 [ 520.979192][ T8796] netdevsim netdevsim8 netdevsim3: renamed from eth3 [ 521.425579][ T5859] usb 6-1: new high-speed USB device number 4 using dummy_hcd [ 521.699614][ T5859] usb 6-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7 [ 521.711512][ T5859] usb 6-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47 [ 521.722034][ T5859] usb 6-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d [ 521.732062][ T5859] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 521.832016][ T8885] loop7: detected capacity change from 0 to 512 [ 521.884061][ T8879] raw-gadget.0 gadget.5: fail, usb_ep_enable returned -22 [ 521.904322][ T5859] usb 6-1: Quirk or no altset; falling back to MIDI 1.0 [ 521.909796][ T8885] EXT4-fs: Ignoring removed nomblk_io_submit option [ 521.950506][ T8885] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support! [ 521.964651][ T8885] EXT4-fs (loop7): encrypted files will use data=ordered instead of data journaling mode [ 522.117753][ T8885] EXT4-fs (loop7): 1 truncate cleaned up [ 522.126573][ T8885] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 522.304028][ T8885] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 522.346795][ T8796] 8021q: adding VLAN 0 to HW filter on device bond0 [ 522.407780][ T5867] usb 6-1: USB disconnect, device number 4 [ 522.523118][ T5807] Bluetooth: hci3: command tx timeout [ 522.536637][ T8796] 8021q: adding VLAN 0 to HW filter on device team0 [ 522.621548][ T85] bridge0: port 1(bridge_slave_0) entered blocking state [ 522.629392][ T85] bridge0: port 1(bridge_slave_0) entered forwarding state [ 522.687241][ T85] bridge0: port 2(bridge_slave_1) entered blocking state [ 522.695053][ T85] bridge0: port 2(bridge_slave_1) entered forwarding state [ 523.411255][ T8901] loop0: detected capacity change from 0 to 16 [ 523.460532][ T8901] erofs (device loop0): mounted with root inode @ nid 36. [ 523.573978][ T8901] syz.0.1240: attempt to access beyond end of device [ 523.573978][ T8901] loop0: rw=524288, sector=8, nr_sectors = 24 limit=16 [ 523.680102][ T8901] erofs (device loop0): invalid de[0].nameoff 0 @ nid 89 [ 523.900272][ T8909] loop7: detected capacity change from 0 to 512 [ 523.919593][ T8909] EXT4-fs: Ignoring removed nomblk_io_submit option [ 523.930684][ T8909] EXT4-fs: Ignoring removed nomblk_io_submit option [ 523.961367][ T8909] EXT4-fs (loop7): mounting ext3 file system using the ext4 subsystem [ 524.055757][ T8909] EXT4-fs (loop7): Cannot turn on journaled quota: type 0: error -2 [ 524.064988][ T8909] EXT4-fs (loop7): Cannot turn on journaled quota: type 1: error -2 [ 524.111277][ T8909] EXT4-fs (loop7): 1 truncate cleaned up [ 524.119914][ T8909] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 524.138648][ T1649] usb 5-1: new high-speed USB device number 6 using dummy_hcd [ 524.218892][ T8909] EXT4-fs error (device loop7): ext4_map_blocks:778: inode #2: block 4: comm syz.7.1243: lblock 0 mapped to illegal pblock 4 (length 1) [ 524.272105][ T8909] EXT4-fs (loop7): Remounting filesystem read-only [ 524.323866][ T1649] usb 5-1: Using ep0 maxpacket: 32 [ 524.345726][ T1649] usb 5-1: New USB device found, idVendor=055f, idProduct=d001, bcdDevice=88.92 [ 524.355368][ T1649] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 524.411930][ T1649] usb 5-1: config 0 descriptor?? [ 524.458720][ T1649] gspca_main: nw80x-2.14.0 probing 055f:d001 [ 524.487813][ T8917] loop5: detected capacity change from 0 to 764 [ 524.620016][ T8917] rock: directory entry would overflow storage [ 524.627038][ T8917] rock: sig=0x4654, size=5, remaining=4 [ 524.727060][ T8569] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 525.045177][ T8796] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 525.073337][ T1649] gspca_nw80x: reg_w err -71 [ 525.078452][ T1649] nw80x 5-1:0.0: probe with driver nw80x failed with error -71 [ 525.107745][ T1649] usb 5-1: USB disconnect, device number 6 [ 525.136101][ T8921] loop0: detected capacity change from 0 to 512 [ 525.315221][ T8921] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 525.328921][ T8921] ext4 filesystem being mounted at /271/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 525.865950][ T5815] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 526.583107][ T5867] usb 5-1: new high-speed USB device number 7 using dummy_hcd [ 526.683361][ C1] ip6_tunnel: ip6tnl1 xmit: Local address not yet configured! [ 526.806915][ T5867] usb 5-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xE8, changing to 0x88 [ 526.819016][ T5867] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x88 has an invalid bInterval 0, changing to 7 [ 526.830519][ T5867] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0xA has invalid wMaxPacketSize 0 [ 526.948185][ T5867] usb 5-1: New USB device found, idVendor=1781, idProduct=0938, bcdDevice=9b.49 [ 526.958055][ T5867] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 526.966900][ T5867] usb 5-1: Product: syz [ 526.971300][ T5867] usb 5-1: Manufacturer: syz [ 526.976297][ T5867] usb 5-1: SerialNumber: syz [ 526.994733][ T5867] usb 5-1: config 0 descriptor?? [ 527.026293][ T5867] iguanair 5-1:0.0: probe with driver iguanair failed with error -12 [ 527.045719][ T8947] loop0: detected capacity change from 0 to 256 [ 527.281867][ T5867] usb 5-1: USB disconnect, device number 7 [ 527.477522][ T8796] veth0_vlan: entered promiscuous mode [ 527.634408][ T8796] veth1_vlan: entered promiscuous mode [ 527.934977][ T8796] veth0_macvtap: entered promiscuous mode [ 528.051209][ T8796] veth1_macvtap: entered promiscuous mode [ 528.110746][ T8955] loop7: detected capacity change from 0 to 1024 [ 528.248439][ T8951] loop5: detected capacity change from 0 to 4096 [ 528.292275][ T8796] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 528.352812][ T8955] hfsplus: bad catalog entry type [ 528.359477][ T8796] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 528.505940][ T85] netdevsim netdevsim8 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 528.539807][ T85] netdevsim netdevsim8 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 528.573599][ T85] netdevsim netdevsim8 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 528.644929][ T4237] netdevsim netdevsim8 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 528.747932][ T85] hfsplus: b-tree write err: -5, ino 4 [ 528.942692][ T8964] loop0: detected capacity change from 0 to 256 [ 529.774790][ T8971] netlink: 12 bytes leftover after parsing attributes in process `syz.7.1266'. [ 530.375830][ T8980] loop7: detected capacity change from 0 to 256 [ 530.494229][ T30] audit: type=1326 audit(1755160544.470:18): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8981 comm="syz.0.1271" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf705e539 code=0x7ffc0000 [ 530.517259][ T30] audit: type=1326 audit(1755160544.470:19): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8981 comm="syz.0.1271" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf705e539 code=0x7ffc0000 [ 530.544102][ T30] audit: type=1326 audit(1755160544.510:20): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8981 comm="syz.0.1271" exe="/root/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf705e539 code=0x7ffc0000 [ 530.567138][ T30] audit: type=1326 audit(1755160544.510:21): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8981 comm="syz.0.1271" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf705e539 code=0x7ffc0000 [ 530.592395][ T30] audit: type=1326 audit(1755160544.530:22): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8981 comm="syz.0.1271" exe="/root/syz-executor" sig=0 arch=40000003 syscall=379 compat=1 ip=0xf705e539 code=0x7ffc0000 [ 530.615928][ T30] audit: type=1326 audit(1755160544.530:23): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8981 comm="syz.0.1271" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf705e539 code=0x7ffc0000 [ 530.638497][ T30] audit: type=1326 audit(1755160544.600:24): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8982 comm="syz.4.1272" exe="/root/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7fe6539 code=0x0 [ 531.940220][ T5860] Process accounting resumed [ 532.032246][ T9002] loop4: detected capacity change from 0 to 1024 [ 532.213649][ T9003] Process accounting resumed [ 532.584408][ T1142] hfsplus: b-tree write err: -5, ino 4 [ 532.697411][ T9008] loop0: detected capacity change from 0 to 4096 [ 532.775056][ T9008] EXT4-fs (loop0): Test dummy encryption mode enabled [ 532.885485][ T9008] [EXT4 FS bs=4096, gc=1, bpg=524288, ipg=32, mo=a842c018, mo2=0003] [ 532.954540][ T9008] System zones: 0-5 [ 533.020206][ T9008] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 533.500845][ T5815] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 534.082301][ T9032] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1288'. [ 534.092891][ T9032] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1288'. [ 534.102019][ T9032] netlink: 'syz.0.1288': attribute type 6 has an invalid length. [ 534.926225][ T9044] loop0: detected capacity change from 0 to 1024 [ 535.074988][ T9044] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 535.473246][ T4288] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 535.481542][ T4288] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 535.663631][ T4697] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 535.671875][ T4697] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 535.782106][ T5815] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 536.040306][ T9059] netlink: 'syz.7.1301': attribute type 1 has an invalid length. [ 536.344762][ T9065] loop0: detected capacity change from 0 to 256 [ 536.600894][ T9065] FAT-fs (loop0): Directory bread(block 64) failed [ 536.608797][ T9065] FAT-fs (loop0): Directory bread(block 65) failed [ 536.616390][ T9065] FAT-fs (loop0): Directory bread(block 66) failed [ 536.629216][ T9065] FAT-fs (loop0): Directory bread(block 67) failed [ 536.638153][ T9065] FAT-fs (loop0): Directory bread(block 68) failed [ 536.645126][ T9065] FAT-fs (loop0): Directory bread(block 69) failed [ 536.652072][ T9065] FAT-fs (loop0): Directory bread(block 70) failed [ 536.659521][ T9065] FAT-fs (loop0): Directory bread(block 71) failed [ 536.666654][ T9065] FAT-fs (loop0): Directory bread(block 72) failed [ 536.673601][ T9065] FAT-fs (loop0): Directory bread(block 73) failed [ 538.194256][ T9091] loop4: detected capacity change from 0 to 512 [ 538.385368][ T9091] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 538.398571][ T9091] ext4 filesystem being mounted at /292/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 539.034372][ T5809] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 539.098334][ T9105] loop5: detected capacity change from 0 to 512 [ 539.245151][ T9105] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a843c02c, mo2=0102] [ 539.313615][ T9105] System zones: 1-12 [ 539.378920][ T9105] EXT4-fs error (device loop5): ext4_xattr_inode_iget:442: comm syz.5.1319: error while reading EA inode 32 err=-116 [ 539.433546][ T9105] EXT4-fs (loop5): Remounting filesystem read-only [ 539.440815][ T9105] EXT4-fs warning (device loop5): ext4_expand_extra_isize_ea:2848: Unable to expand inode 15. Delete some EAs or run e2fsck. [ 539.454506][ T9105] EXT4-fs warning (device loop5): ext4_evict_inode:257: couldn't mark inode dirty (err -30) [ 539.465296][ T9105] EXT4-fs (loop5): 1 orphan inode deleted [ 539.473852][ T9105] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 539.570177][ T9115] loop4: detected capacity change from 0 to 8 [ 539.705335][ T9115] SQUASHFS error: lzo decompression failed, data probably corrupt [ 539.709368][ T9107] loop8: detected capacity change from 0 to 4096 [ 539.713786][ T9115] SQUASHFS error: Failed to read block 0x91: -5 [ 539.726887][ T9115] SQUASHFS error: Unable to read metadata cache entry [8f] [ 539.734744][ T9115] SQUASHFS error: Unable to read inode 0x11f [ 539.932281][ T7155] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 540.259333][ T9107] ntfs3(loop8): ino=1a, mi_enum_attr [ 540.265235][ T9107] ntfs3(loop8): Mark volume as dirty due to NTFS errors [ 540.533407][ T5860] usb 6-1: new high-speed USB device number 5 using dummy_hcd [ 540.751145][ T5860] usb 6-1: config 0 has an invalid interface number: 33 but max is 0 [ 540.760114][ T5860] usb 6-1: config 0 has no interface number 0 [ 540.768378][ T5860] usb 6-1: New USB device found, idVendor=24cf, idProduct=59e4, bcdDevice= 9.43 [ 540.784296][ T5860] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 540.905751][ T5860] usb 6-1: config 0 descriptor?? [ 540.947137][ T5860] usb-storage 6-1:0.33: USB Mass Storage device detected [ 541.149325][ T5860] usb 6-1: USB disconnect, device number 5 [ 541.639476][ T9144] netlink: 'syz.4.1335': attribute type 11 has an invalid length. [ 541.654508][ T9144] netlink: 204 bytes leftover after parsing attributes in process `syz.4.1335'. [ 541.858094][ T9146] loop8: detected capacity change from 0 to 128 [ 542.023542][ T9146] FAT-fs (loop8): Directory bread(block 32) failed [ 542.030461][ T9146] FAT-fs (loop8): Directory bread(block 33) failed [ 542.038858][ T9146] FAT-fs (loop8): Directory bread(block 34) failed [ 542.084853][ T9146] FAT-fs (loop8): Directory bread(block 35) failed [ 542.095519][ T1289] ieee802154 phy0 wpan0: encryption failed: -22 [ 542.095823][ T1289] ieee802154 phy1 wpan1: encryption failed: -22 [ 542.115304][ T9146] FAT-fs (loop8): Directory bread(block 36) failed [ 542.122066][ T9146] FAT-fs (loop8): Directory bread(block 37) failed [ 542.129227][ T9146] FAT-fs (loop8): Directory bread(block 38) failed [ 542.136188][ T9146] FAT-fs (loop8): Directory bread(block 39) failed [ 542.143400][ T9146] FAT-fs (loop8): Directory bread(block 40) failed [ 542.150250][ T9146] FAT-fs (loop8): Directory bread(block 41) failed [ 542.351702][ T9146] syz.8.1336: attempt to access beyond end of device [ 542.351702][ T9146] loop8: rw=524288, sector=4108, nr_sectors = 4 limit=128 [ 542.373731][ T9146] syz.8.1336: attempt to access beyond end of device [ 542.373731][ T9146] loop8: rw=0, sector=4108, nr_sectors = 4 limit=128 [ 542.392690][ T30] audit: type=1800 audit(1755160556.360:25): pid=9146 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.8.1336" name="file1" dev="loop8" ino=1048720 res=0 errno=0 [ 542.412336][ T9146] syz.8.1336: attempt to access beyond end of device [ 542.412336][ T9146] loop8: rw=0, sector=4108, nr_sectors = 4 limit=128 [ 542.437939][ T9151] loop4: detected capacity change from 0 to 1024 [ 542.451488][ T9146] FAT-fs (loop8): error, fat_free: invalid cluster chain (i_pos 196) [ 542.466805][ T9146] FAT-fs (loop8): Filesystem has been set read-only [ 542.622717][ T30] audit: type=1800 audit(1755160556.590:26): pid=9151 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.1339" name="file1" dev="loop4" ino=20 res=0 errno=0 [ 542.896887][ T4288] hfsplus: b-tree write err: -5, ino 4 [ 543.676406][ T5860] usb 6-1: new high-speed USB device number 6 using dummy_hcd [ 543.915760][ T5860] usb 6-1: config 0 interface 0 altsetting 1 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 543.927630][ T5860] usb 6-1: config 0 interface 0 altsetting 1 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 543.940990][ T5860] usb 6-1: config 0 interface 0 has no altsetting 0 [ 543.948077][ T5860] usb 6-1: New USB device found, idVendor=06cb, idProduct=73f6, bcdDevice= 0.00 [ 543.958172][ T5860] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 543.972912][ T9170] netlink: 12 bytes leftover after parsing attributes in process `syz.8.1347'. [ 544.108237][ T5860] usb 6-1: config 0 descriptor?? [ 544.626472][ T5860] itetech 0003:06CB:73F6.0011: hidraw0: USB HID v0.01 Device [HID 06cb:73f6] on usb-dummy_hcd.5-1/input0 [ 544.760729][ T5860] usb 6-1: USB disconnect, device number 6 [ 545.155362][ T9185] loop0: detected capacity change from 0 to 1024 [ 545.186342][ T9185] EXT4-fs: Ignoring removed nobh option [ 545.326742][ T9185] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 545.668347][ T9197] loop7: detected capacity change from 0 to 16 [ 545.715628][ T9197] erofs (device loop7): mounted with root inode @ nid 36. [ 545.788500][ T5815] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 546.328208][ T9204] loop7: detected capacity change from 0 to 512 [ 546.510598][ T9204] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 546.525648][ T9204] ext4 filesystem being mounted at /38/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 547.047450][ T8569] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 547.493940][ T9224] netlink: 'syz.8.1369': attribute type 2 has an invalid length. [ 547.649993][ T9227] loop5: detected capacity change from 0 to 1024 [ 547.894527][ T30] audit: type=1804 audit(1755160561.840:27): pid=9230 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.5.1370" name="/newroot/175/file0/file1" dev="loop5" ino=20 res=1 errno=0 [ 548.183297][ T9236] loop0: detected capacity change from 0 to 8 [ 548.319318][ T4288] hfsplus: b-tree write err: -5, ino 4 [ 549.385087][ T9254] tipc: Started in network mode [ 549.390373][ T9254] tipc: Node identity fe80000000000000000000000000002a, cluster identity 4711 [ 549.403635][ T9254] tipc: Enabled bearer , priority 10 [ 549.473779][ T9258] loop0: detected capacity change from 0 to 64 [ 549.578685][ T9250] loop4: detected capacity change from 0 to 2364 [ 550.011030][ T9260] loop7: detected capacity change from 0 to 512 [ 550.065726][ T9260] FAT-fs (loop7): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 550.523293][ T5859] tipc: Node number set to 4269801514 [ 551.816660][ T9288] loop5: detected capacity change from 0 to 64 [ 551.954879][ T9293] netlink: 20 bytes leftover after parsing attributes in process `syz.8.1402'. [ 552.435992][ T9290] loop7: detected capacity change from 0 to 4096 [ 552.567965][ T9303] NILFS (loop7): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 552.581623][ T9301] loop5: detected capacity change from 0 to 512 [ 554.765282][ T9331] loop4: detected capacity change from 0 to 164 [ 554.887721][ T9317] loop0: detected capacity change from 0 to 8192 [ 554.981316][ T9334] netlink: 8 bytes leftover after parsing attributes in process `syz.7.1421'. [ 555.021588][ T9317] FAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 555.753660][ T9343] loop8: detected capacity change from 0 to 512 [ 555.810184][ T9343] EXT4-fs: Ignoring removed nobh option [ 555.843117][ T9343] EXT4-fs (loop8): Test dummy encryption mode enabled [ 555.991297][ T9343] EXT4-fs error (device loop8): __ext4_iget:5464: inode #11: block 1: comm syz.8.1426: invalid block [ 556.031298][ T30] audit: type=1326 audit(1755160570.000:28): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9346 comm="syz.0.1425" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf705e539 code=0x7ffc0000 [ 556.054588][ T30] audit: type=1326 audit(1755160570.000:29): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9346 comm="syz.0.1425" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf705e539 code=0x7ffc0000 [ 556.110377][ T30] audit: type=1326 audit(1755160570.060:30): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9346 comm="syz.0.1425" exe="/root/syz-executor" sig=0 arch=40000003 syscall=431 compat=1 ip=0xf705e539 code=0x7ffc0000 [ 556.135223][ T30] audit: type=1326 audit(1755160570.060:31): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9346 comm="syz.0.1425" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf705e539 code=0x7ffc0000 [ 556.159067][ T30] audit: type=1326 audit(1755160570.060:32): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9346 comm="syz.0.1425" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf705e539 code=0x7ffc0000 [ 556.189467][ T9343] EXT4-fs error (device loop8): ext4_orphan_get:1397: comm syz.8.1426: couldn't read orphan inode 11 (err -117) [ 556.251444][ T9343] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 556.572872][ T5860] usb 8-1: new high-speed USB device number 3 using dummy_hcd [ 556.626290][ T8796] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 556.778869][ T5860] usb 8-1: Using ep0 maxpacket: 32 [ 556.845742][ T5860] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 556.857368][ T5860] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 556.867912][ T5860] usb 8-1: New USB device found, idVendor=20bc, idProduct=5500, bcdDevice= 0.00 [ 556.877525][ T5860] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 556.982746][ T5860] usb 8-1: config 0 descriptor?? [ 557.050654][ T9365] loop8: detected capacity change from 0 to 64 [ 557.398462][ T9367] loop0: detected capacity change from 0 to 1024 [ 557.458120][ T5860] betop 0003:20BC:5500.0012: item fetching failed at offset 7/11 [ 557.527833][ T5860] betop 0003:20BC:5500.0012: parse failed [ 557.534352][ T5860] betop 0003:20BC:5500.0012: probe with driver betop failed with error -22 [ 557.703952][ T5865] usb 8-1: USB disconnect, device number 3 [ 558.724867][ T9384] support for the xor transformation has been removed. [ 558.919306][ T9386] netlink: 24 bytes leftover after parsing attributes in process `syz.8.1444'. [ 560.192857][ T9407] loop0: detected capacity change from 0 to 512 [ 560.366433][ T9407] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback. [ 560.379772][ T9407] ext4 filesystem being mounted at /312/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 560.402829][ T9411] loop5: detected capacity change from 0 to 256 [ 560.753779][ T5815] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000d40000. [ 560.815178][ T9420] bridge0: entered promiscuous mode [ 560.830867][ T9420] bridge0: port 3(macsec1) entered blocking state [ 560.838060][ T9420] bridge0: port 3(macsec1) entered disabled state [ 560.847906][ T9420] macsec1: entered allmulticast mode [ 560.853822][ T9420] bridge0: entered allmulticast mode [ 560.874146][ T9420] macsec1: left allmulticast mode [ 560.879432][ T9420] bridge0: left allmulticast mode [ 560.964534][ T9420] bridge0: left promiscuous mode [ 560.987432][ T9412] loop7: detected capacity change from 0 to 4096 [ 561.767639][ T9412] ntfs3(loop7): failed to convert "0080" to koi8-ru [ 561.829275][ T9412] ntfs3(loop7): failed to convert name for inode 1e. [ 561.873395][ T9412] ntfs3(loop7): ino=1f, mi_enum_attr [ 561.878982][ T9412] ntfs3(loop7): Mark volume as dirty due to NTFS errors [ 562.468364][ T9434] loop4: detected capacity change from 0 to 4096 [ 562.580295][ T9441] openvswitch: netlink: nsh attr 0 has unexpected len 252 expected 0 [ 562.589077][ T9441] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 562.676282][ T9434] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 562.725056][ T9437] loop0: detected capacity change from 0 to 4096 [ 562.772876][ T9434] EXT4-fs: inline encryption not supported [ 562.779160][ T9434] EXT4-fs: Ignoring removed mblk_io_submit option [ 562.787543][ T9434] EXT4-fs: Can't set or change test_dummy_encryption on remount [ 563.009064][ T9447] netlink: 24 bytes leftover after parsing attributes in process `syz.7.1466'. [ 563.119118][ T5809] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 563.589423][ T9437] ntfs3(loop0): failed to convert name for inode 1e. [ 563.612921][ T9437] ntfs3(loop0): ino=1f, mi_enum_attr [ 563.976869][ T9453] loop4: detected capacity change from 0 to 1024 [ 564.031539][ T9456] loop7: detected capacity change from 0 to 512 [ 564.116248][ T9453] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 564.167258][ T9456] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 564.301614][ T9456] EXT4-fs (loop7): re-mounted 00000000-0000-0000-0000-000000000000. [ 564.665521][ T5809] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 564.729515][ T8569] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 564.834905][ T9470] loop8: detected capacity change from 0 to 128 [ 564.975911][ T9470] /dev/loop8: Can't open blockdev [ 565.266293][ T9477] netlink: 12 bytes leftover after parsing attributes in process `syz.5.1483'. [ 565.336904][ T9475] loop4: detected capacity change from 0 to 1024 [ 565.386270][ T9473] loop7: detected capacity change from 0 to 1024 [ 565.426443][ T9478] loop0: detected capacity change from 0 to 512 [ 565.485039][ T9475] hfsplus: bad catalog entry type [ 565.520757][ T9473] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 565.644098][ T9478] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 565.657398][ T9478] ext4 filesystem being mounted at /316/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 565.750975][ T8569] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 565.897075][ T4697] hfsplus: b-tree write err: -5, ino 4 [ 566.306986][ T9493] loop8: detected capacity change from 0 to 256 [ 566.345992][ T5815] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 566.363209][ T9493] exfat: Deprecated parameter 'utf8' [ 566.390400][ T9494] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1487'. [ 566.546022][ T9493] exFAT-fs (loop8): failed to load upcase table (idx : 0x00010000, chksum : 0x36dfe6b4, utbl_chksum : 0xe619d30d) [ 567.544356][ T4237] netdevsim netdevsim8 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 567.809068][ T4237] netdevsim netdevsim8 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 568.011039][ T4237] netdevsim netdevsim8 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 568.209064][ T4237] netdevsim netdevsim8 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 568.493100][ T4237] bridge_slave_1: left allmulticast mode [ 568.499280][ T4237] bridge_slave_1: left promiscuous mode [ 568.506532][ T4237] bridge0: port 2(bridge_slave_1) entered disabled state [ 568.523668][ T4237] bridge_slave_0: left allmulticast mode [ 568.529745][ T4237] bridge_slave_0: left promiscuous mode [ 568.537017][ T4237] bridge0: port 1(bridge_slave_0) entered disabled state [ 569.115836][ T4237] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 569.158663][ T4237] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 569.176116][ T4237] bond0 (unregistering): Released all slaves [ 569.593504][ T4237] hsr_slave_0: left promiscuous mode [ 569.636466][ T4237] hsr_slave_1: left promiscuous mode [ 569.645787][ T4237] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 569.653813][ T4237] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 569.667190][ T4237] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 569.675175][ T4237] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 569.727298][ T4237] veth1_macvtap: left promiscuous mode [ 569.733498][ T4237] veth0_macvtap: left promiscuous mode [ 569.739484][ T4237] veth1_vlan: left promiscuous mode [ 569.745706][ T4237] veth0_vlan: left promiscuous mode [ 570.189962][ T9520] loop5: detected capacity change from 0 to 1024 [ 570.372790][ T9520] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 570.876729][ T9520] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 571.069096][ T9528] loop0: detected capacity change from 0 to 1024 [ 571.087478][ T9520] EXT4-fs warning (device loop5): empty_inline_dir:1749: bad inline directory (dir #12) - no `..' [ 571.120446][ T9530] loop7: detected capacity change from 0 to 1024 [ 571.173239][ T4237] team0 (unregistering): Port device team_slave_1 removed [ 571.288665][ T9530] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 571.301590][ T9530] ext4 filesystem being mounted at /62/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 571.361920][ T4237] team0 (unregistering): Port device team_slave_0 removed [ 571.365507][ T9528] ===================================================== [ 571.376969][ T9528] BUG: KMSAN: uninit-value in hfsplus_delete_cat+0x1195/0x13d0 [ 571.385045][ T9528] hfsplus_delete_cat+0x1195/0x13d0 [ 571.390770][ T9528] hfsplus_rmdir+0x13c/0x310 [ 571.395892][ T9528] vfs_rmdir+0x5b6/0x800 [ 571.400388][ T9528] do_rmdir+0x7d6/0xdc0 [ 571.405253][ T9528] __ia32_sys_rmdir+0x70/0xa0 [ 571.410230][ T9528] ia32_sys_call+0x32c4/0x4310 [ 571.415782][ T9528] __do_fast_syscall_32+0xb0/0x150 [ 571.421155][ T9528] do_fast_syscall_32+0x38/0x80 [ 571.427149][ T9528] do_SYSENTER_32+0x1f/0x30 [ 571.432370][ T9528] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 571.444736][ T9528] [ 571.447211][ T9528] Uninit was stored to memory at: [ 571.454351][ T9528] hfsplus_create_cat+0x18fb/0x1910 [ 571.459801][ T9528] hfsplus_mknod+0x208/0x560 [ 571.464842][ T9528] hfsplus_mkdir+0x5a/0x80 [ 571.469491][ T9528] vfs_mkdir+0x4ea/0x850 [ 571.476077][ T9528] do_mkdirat+0x41a/0xf30 [ 571.480721][ T9528] __ia32_sys_mkdirat+0xc1/0x140 [ 571.486620][ T9528] ia32_sys_call+0x1951/0x4310 [ 571.491571][ T9528] __do_fast_syscall_32+0xb0/0x150 [ 571.497172][ T9528] do_fast_syscall_32+0x38/0x80 [ 571.502271][ T9528] do_SYSENTER_32+0x1f/0x30 [ 571.508311][ T9528] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 571.515196][ T9528] [ 571.517710][ T9528] Uninit was stored to memory at: [ 571.523338][ T9528] hfsplus_create_cat+0x18fb/0x1910 [ 571.529215][ T9528] hfsplus_fill_super+0x211d/0x2730 [ 571.535050][ T9528] get_tree_bdev_flags+0x6e3/0x920 [ 571.540424][ T9528] get_tree_bdev+0x38/0x50 [ 571.550596][ T9528] hfsplus_get_tree+0x35/0x40 [ 571.557242][ T9528] vfs_get_tree+0xb0/0x5c0 [ 571.562086][ T9528] do_new_mount+0x733/0x1420 [ 571.567257][ T9528] path_mount+0x6db/0x1e90 [ 571.571928][ T9528] __se_sys_mount+0x6eb/0x7d0 [ 571.577130][ T9528] __ia32_sys_mount+0xe2/0x150 [ 571.582133][ T9528] ia32_sys_call+0x2c16/0x4310 [ 571.587342][ T9528] __do_fast_syscall_32+0xb0/0x150 [ 571.593091][ T9528] do_fast_syscall_32+0x38/0x80 [ 571.598172][ T9528] do_SYSENTER_32+0x1f/0x30 [ 571.603083][ T9528] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 571.609661][ T9528] SYZFAIL: failed to recv rpc fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor) [ 571.612081][ T9528] Uninit was created at: [ 571.616890][ T9528] __alloc_frozen_pages_noprof+0x689/0xf00 [ 571.623219][ T9528] alloc_pages_mpol+0x328/0x860 [ 571.629496][ T9528] alloc_frozen_pages_noprof+0xf7/0x200 [ 571.635601][ T9528] allocate_slab+0x24d/0x1220 [ 571.640487][ T9528] ___slab_alloc+0x1024/0x34e0 [ 571.650840][ T9528] kmem_cache_alloc_lru_noprof+0x922/0xed0 [ 571.658826][ T9528] hfsplus_alloc_inode+0x5a/0xd0 [ 571.664234][ T9528] alloc_inode+0x8a/0x4a0 [ 571.668796][ T9528] iget_locked+0x239/0x12d0 [ 571.673763][ T9528] hfsplus_iget+0x5c/0xb80 [ 571.678448][ T9528] hfsplus_btree_open+0x128/0x1cf0 [ 571.687911][ T9528] hfsplus_fill_super+0x1161/0x2730 [ 571.693596][ T9528] get_tree_bdev_flags+0x6e3/0x920 [ 571.699113][ T9528] get_tree_bdev+0x38/0x50 [ 571.704070][ T9528] hfsplus_get_tree+0x35/0x40 [ 571.708946][ T9528] vfs_get_tree+0xb0/0x5c0 [ 571.714877][ T9528] do_new_mount+0x733/0x1420 [ 571.719696][ T9528] path_mount+0x6db/0x1e90 [ 571.724572][ T9528] __se_sys_mount+0x6eb/0x7d0 [ 571.729487][ T9528] __ia32_sys_mount+0xe2/0x150 [ 571.734689][ T9528] ia32_sys_call+0x2c16/0x4310 [ 571.739646][ T9528] __do_fast_syscall_32+0xb0/0x150 [ 571.745357][ T9528] do_fast_syscall_32+0x38/0x80 [ 571.755997][ T9528] do_SYSENTER_32+0x1f/0x30 [ 571.760759][ T9528] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 571.769258][ T9528] [ 571.771724][ T9528] CPU: 1 UID: 0 PID: 9528 Comm: syz.0.1506 Not tainted 6.17.0-rc1-syzkaller-00038-g0cc53520e68b #0 PREEMPT(none) [ 571.784576][ T9528] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 571.795358][ T9528] ===================================================== [ 571.802689][ T9528] Disabling lock debugging due to kernel taint [ 571.809058][ T9528] Kernel panic - not syncing: kmsan.panic set ... [ 571.815639][ T9528] CPU: 1 UID: 0 PID: 9528 Comm: syz.0.1506 Tainted: G B 6.17.0-rc1-syzkaller-00038-g0cc53520e68b #0 PREEMPT(none) [ 571.829618][ T9528] Tainted: [B]=BAD_PAGE [ 571.833902][ T9528] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 571.844234][ T9528] Call Trace: [ 571.847804][ T9528] [ 571.850852][ T9528] __dump_stack+0x26/0x30 [ 571.855422][ T9528] dump_stack_lvl+0x53/0x270 [ 571.860255][ T9528] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 571.866315][ T9528] dump_stack+0x1e/0x25 [ 571.870707][ T9528] vpanic+0x361/0xc50 [ 571.874943][ T9528] panic+0x15d/0x160 [ 571.879128][ T9528] kmsan_report+0x31c/0x320 [ 571.883853][ T9528] ? __msan_warning+0x1b/0x30 [ 571.888812][ T9528] ? hfsplus_delete_cat+0x1195/0x13d0 [ 571.894423][ T9528] ? hfsplus_rmdir+0x13c/0x310 [ 571.899421][ T9528] ? vfs_rmdir+0x5b6/0x800 [ 571.904057][ T9528] ? do_rmdir+0x7d6/0xdc0 [ 571.908679][ T9528] ? __ia32_sys_rmdir+0x70/0xa0 [ 571.913792][ T9528] ? ia32_sys_call+0x32c4/0x4310 [ 571.918917][ T9528] ? __do_fast_syscall_32+0xb0/0x150 [ 571.924561][ T9528] ? do_fast_syscall_32+0x38/0x80 [ 571.929815][ T9528] ? do_SYSENTER_32+0x1f/0x30 [ 571.934757][ T9528] ? entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 571.941501][ T9528] ? kmsan_get_metadata+0xfb/0x160 [ 571.946847][ T9528] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 571.952909][ T9528] ? hfsplus_bnode_dump+0x50a/0x560 [ 571.958375][ T9528] ? kmsan_get_metadata+0xfb/0x160 [ 571.963726][ T9528] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 571.969799][ T9528] ? hfsplus_brec_remove+0x92f/0xa60 [ 571.975512][ T9528] ? kmsan_get_metadata+0xfb/0x160 [ 571.980884][ T9528] __msan_warning+0x1b/0x30 [ 571.985682][ T9528] hfsplus_delete_cat+0x1195/0x13d0 [ 571.991493][ T9528] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 571.997559][ T9528] ? kmsan_get_metadata+0xfb/0x160 [ 572.002994][ T9528] hfsplus_rmdir+0x13c/0x310 [ 572.007835][ T9528] ? __pfx_hfsplus_rmdir+0x10/0x10 [ 572.013180][ T9528] vfs_rmdir+0x5b6/0x800 [ 572.017682][ T9528] do_rmdir+0x7d6/0xdc0 [ 572.022115][ T9528] __ia32_sys_rmdir+0x70/0xa0 [ 572.027127][ T9528] ia32_sys_call+0x32c4/0x4310 [ 572.032188][ T9528] __do_fast_syscall_32+0xb0/0x150 [ 572.037639][ T9528] ? irqentry_exit_to_user_mode+0x82/0xa0 [ 572.043618][ T9528] do_fast_syscall_32+0x38/0x80 [ 572.048717][ T9528] do_SYSENTER_32+0x1f/0x30 [ 572.053466][ T9528] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 572.060047][ T9528] RIP: 0023:0xf705e539 [ 572.064279][ T9528] Code: 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 [ 572.084127][ T9528] RSP: 002b:00000000f544e55c EFLAGS: 00000206 ORIG_RAX: 0000000000000028 [ 572.092782][ T9528] RAX: ffffffffffffffda RBX: 00000000800000c0 RCX: 0000000000000000 [ 572.100943][ T9528] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 572.109096][ T9528] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 572.117230][ T9528] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000 [ 572.125364][ T9528] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 572.133974][ T9528] [ 572.137446][ T9528] Kernel Offset: disabled [ 572.141833][ T9528] Rebooting in 86400 seconds..