last executing test programs: 4m55.984888158s ago: executing program 0 (id=144): r0 = openat$sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/vm/compact_memory\x00', 0x1, 0x0) io_setup(0x8, &(0x7f0000000080)=0x0) io_submit(r1, 0x1, &(0x7f0000000340)=[&(0x7f0000000100)={0x0, 0x0, 0x0, 0x1, 0x0, r0, &(0x7f0000000140)='-', 0x1}]) 4m55.262749379s ago: executing program 0 (id=149): syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x3000046, &(0x7f00000006c0)={[{@dioread_nolock}, {@noauto_da_alloc}, {@inlinecrypt}, {@i_version}, {@data_err_ignore}, {@barrier_val={'barrier', 0x3d, 0x9}}, {@data_err_ignore}, {@grpquota}, {@noblock_validity}, {@user_xattr}, {@resuid}, {@quota}]}, 0x1, 0x553, &(0x7f0000001080)="$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") r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x0, 0x0) ioctl$FS_IOC_ENABLE_VERITY(r0, 0x40086610, &(0x7f0000000140)={0x1, 0x0, 0x1000, 0x0, 0x0, 0x0, 0x0, 0x0}) 4m54.503003987s ago: executing program 0 (id=155): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$ETHTOOL_MSG_TSINFO_GET(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000080)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="31832abd7000000000001900a2a818000180140002"], 0x2c}, 0x1, 0x0, 0x0, 0x50}, 0x4886) 4m53.566766599s ago: executing program 0 (id=163): r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$TCSETSW2(r0, 0x402c542c, &(0x7f0000000080)={0x6b19, 0x1, 0xffff, 0x6, 0x7f, "3dff00", 0x4, 0x5}) ioctl$TIOCSTI(r0, 0x5412, &(0x7f0000000040)=0xff) 4m52.958867547s ago: executing program 0 (id=166): r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0) ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f00000002c0)=0x20) fcntl$setstatus(r0, 0x4, 0x2c00) 4m52.43882263s ago: executing program 0 (id=169): r0 = openat$comedi(0xffffffffffffff9c, &(0x7f0000000080)='/dev/comedi3\x00', 0x400, 0x0) ioctl$COMEDI_DEVCONFIG(r0, 0x40946400, 0x0) ioctl$COMEDI_DEVCONFIG(r0, 0x40946400, &(0x7f00000000c0)={'pcl726\x00', [0x4f27, 0x0, 0x10000, 0x4, 0x5, 0x5, 0x4, 0x7, 0x54c6cff3, 0xfd, 0x2, 0x1, 0x1, 0x1, 0x6, 0x101, 0x0, 0x7f, 0x3, 0x40000003, 0x89, 0xcaa3, 0x0, 0x20001e58, 0x3, 0xe66, 0x3, 0x8, 0x4086, 0x0, 0xfffffff8]}) 4m37.277237415s ago: executing program 32 (id=169): r0 = openat$comedi(0xffffffffffffff9c, &(0x7f0000000080)='/dev/comedi3\x00', 0x400, 0x0) ioctl$COMEDI_DEVCONFIG(r0, 0x40946400, 0x0) ioctl$COMEDI_DEVCONFIG(r0, 0x40946400, &(0x7f00000000c0)={'pcl726\x00', [0x4f27, 0x0, 0x10000, 0x4, 0x5, 0x5, 0x4, 0x7, 0x54c6cff3, 0xfd, 0x2, 0x1, 0x1, 0x1, 0x6, 0x101, 0x0, 0x7f, 0x3, 0x40000003, 0x89, 0xcaa3, 0x0, 0x20001e58, 0x3, 0xe66, 0x3, 0x8, 0x4086, 0x0, 0xfffffff8]}) 2m0.770791408s ago: executing program 4 (id=1212): io_uring_setup(0x7be2, &(0x7f0000000000)={0x0, 0x6e94, 0x4, 0x2, 0x125}) r0 = socket$inet6_sctp(0xa, 0x5, 0x84) ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f0000000040)={'netdevsim0\x00', &(0x7f0000000000)=@ethtool_pauseparam={0x3d}}) 2m0.264578845s ago: executing program 4 (id=1216): r0 = userfaultfd(0x801) ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000000000)={0xaa, 0x280}) ioctl$UFFDIO_WRITEPROTECT(r0, 0xc018aa06, &(0x7f00000000c0)={{&(0x7f000040a000/0x800000)=nil, 0x800000}, 0x1}) 1m59.992034116s ago: executing program 4 (id=1218): r0 = syz_genetlink_get_family_id$nbd(&(0x7f0000000040), 0xffffffffffffffff) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000001a80)={&(0x7f0000000240)={0x3c, r0, 0x1, 0xffffffff, 0xfffffffe, {}, [@NBD_ATTR_SOCKETS={0x4}, @NBD_ATTR_SIZE_BYTES={0xc, 0x2, 0x800000007fff}, @NBD_ATTR_DEAD_CONN_TIMEOUT={0xc, 0x8, 0x2}, @NBD_ATTR_TIMEOUT={0xc, 0x4, 0x6}]}, 0x3c}}, 0x24048040) 1m59.447468355s ago: executing program 4 (id=1220): syz_mount_image$erofs(&(0x7f0000000340), &(0x7f0000000580)='./file0\x00', 0x2000000, &(0x7f00000004c0)=ANY=[], 0x2, 0x222, &(0x7f0000000800)="$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") mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000180), 0x1204001, &(0x7f0000000080)={[{@lowerdir={'lowerdir', 0x3d, './file0'}, 0x3a}], [], 0x2f}) openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x40000, 0x0) 1m58.899227958s ago: executing program 4 (id=1225): r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140), 0xa00, 0x0) io_setup(0x8, &(0x7f0000004200)=0x0) io_submit(r1, 0x1, &(0x7f0000000880)=[&(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x1ff, r0, &(0x7f0000000200)="87", 0x1, 0x42e4}]) 1m58.451810921s ago: executing program 4 (id=1230): r0 = socket(0x10, 0x3, 0x0) setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0xc, &(0x7f0000000180)={0xffffff}, 0x10) write(r0, &(0x7f0000000000)="240000001a005f0214f9f407000904001f00000000000005000000000800040001000000", 0x24) 1m56.713921993s ago: executing program 33 (id=1230): r0 = socket(0x10, 0x3, 0x0) setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0xc, &(0x7f0000000180)={0xffffff}, 0x10) write(r0, &(0x7f0000000000)="240000001a005f0214f9f407000904001f00000000000005000000000800040001000000", 0x24) 6.253879805s ago: executing program 2 (id=1967): r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002000), 0x2, 0x0) syz_mount_image$fuse(&(0x7f0000002040), &(0x7f0000002080)='./file0\x00', 0x0, &(0x7f00000020c0)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}}, 0x0, 0x0, 0x0) r1 = fspick(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0) fsconfig$FSCONFIG_SET_STRING(r1, 0x1, &(0x7f0000000340)='upperdir', &(0x7f0000000380)='geneve1\x00', 0x0) 5.366209466s ago: executing program 3 (id=1972): r0 = syz_open_dev$vcsa(&(0x7f0000000000), 0x1, 0x109000) r1 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ppoll(&(0x7f0000000080)=[{r0, 0x8000}, {r1, 0x80}], 0x2, &(0x7f00000000c0)={0x0, 0x3938700}, 0x0, 0x0) dup3(r0, r1, 0x0) 5.013633185s ago: executing program 2 (id=1974): r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000080)=ANY=[@ANYBLOB="12010000000000105509147200ed0000000109022400010000000009040000030300000009210000000122050009058103"], 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io(r0, &(0x7f0000000000)={0x18, &(0x7f0000000040)=ANY=[@ANYBLOB="200617", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0}, 0x0) close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0) 4.929831746s ago: executing program 5 (id=1976): r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x18, 0x4, &(0x7f00000000c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000007b00000095"], &(0x7f0000000140)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x20, '\x00', 0x0, 0x2}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000480)={&(0x7f0000000280)='netlink_extack\x00', r1}, 0x10) sendmsg$nl_route(r0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000480)=@ipv6_deladdr={0x2c, 0x15, 0x1, 0x0, 0x0, {}, [@IFA_LOCAL={0x14, 0x2, @mcast2}]}, 0x2c}}, 0x0) 4.755389357s ago: executing program 3 (id=1977): r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) ioctl$VHOST_SET_VRING_BASE(r0, 0xaf01, 0x0) ioctl$DRM_IOCTL_MODE_ADDFB2(0xffffffffffffffff, 0xc06864b8, &(0x7f00000001c0)={0x0, 0xae, 0x3ff, 0x34325241, 0x2, [], [0x2b8, 0x2, 0x39f0, 0xfffffffc], [0x0, 0x0, 0x0, 0x10], [0x6]}) ioctl$VHOST_GET_VRING_ENDIAN(r0, 0x4028af11, &(0x7f00000001c0)) 4.434038395s ago: executing program 5 (id=1980): r0 = syz_io_uring_setup(0xcf, &(0x7f0000000200)={0x0, 0x0, 0x80, 0x0, 0x2d2}, &(0x7f0000000000)=0x0, &(0x7f00000001c0)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x4e, 0x2004, @fd_index=0x6, 0xfffffffffffffff9, 0x0, 0x0, 0x8, 0x0, {0x3}}) io_uring_enter(r0, 0x13e4, 0x0, 0x0, 0x0, 0x7) 4.182642966s ago: executing program 3 (id=1982): unshare(0x62000000) bpf$PROG_LOAD(0x5, 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000400)='ext4\x00', &(0x7f0000000440)='./file0\x00', 0x0, &(0x7f0000000480), 0x1, 0x3ce, &(0x7f00000004c0)="$eJzs3M9rHFUcAPDvTH7UpjUbQVD0EvFgpJif1lbxYE5e9KR48bQk6Q9ME2lWsCVCBc8FQdCrR/8A8dKDgtW/wKtHkUKQJN5XZndmMybZtJtuHNl8PvDIe/M2+97MY2bfPN57AZxakxHxVkQMRcRsRNTy42ke4k47ZJ/b3d5cykISzeZ7fyWRRMTO9uZS8V1J/vdc/gVTaUT6RRLPH1Luxq3bH9VXV1du5umZxo2PZzZu3X7l+o361ZWrK2sLC/Pzly/OXnrtct/O9evNdz/84fe3d765M/5Mfbl2N6vv+TyvfB79MhmTnWuy3+v9LqxiT5TiyXCFFQEA4Ehp3vcfbvX/azEUe523Wtz9udLKAQAAAH3RbBZ/AQAAgMGVePcHAACAAVfMA9jZ3lwqQoXTEfiPbS1GxES7/Yv13e2c4c6a3pF963v7aTIi/p76/uUsxAmtwwYAAAA4zX5cbG/8d3D8L41nS587GxFjxd5+fTS5L31w/Cd90OciKdlajHiztLfjbqn9cxNDeerJ1lDhSHLl+urKbESMR8RUjJzJ0nNHlDH+xh/3uuWVx/+ykJVfjAXm9XgwfObf/7Ncb9Qf55zZs/V5xHPDh7V/0hnzLe+TeRyfXfvyWre8h7c/J6n5bcRLh97/ezuXJkfvzzrTeh7MFE+Fg9bu3X+hW/nav1rZ/T92dPtPJOX9ejd6L+OD++d/65Z33Of/aPJ+q4Kj+bFP643GzbmI0eSdg8fne6/zoCquR3G9svafevHw3/+i/5fkv/3jpf2he/HTL7uXuuW5/6uVtf9yT/d/75GLv353oVv5j3b/v9qqzFR+RP/v4R61gaquJwAAAAAAAAD9kbbm9iXpdCeeptPT7Xm+T8dYurq+0bhwZf2TteX2HMCJGEmLmV610nzQufYy8k56fl96ISKeioivamdb6eml9dXlqk8eAAAATolzXd7/M38eZ7EHAAAA8P80UXUFAAAAgBPn/R8AAAAG2uPs6y8iIjKokaqfTAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACn2z8BAAD//yly2dE=") socket$inet6_icmp(0xa, 0x2, 0x3a) 3.942828544s ago: executing program 6 (id=1983): r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000000), 0x402, 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000007, 0x38011, r0, 0x0) r1 = openat$full(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) preadv2(r1, &(0x7f00000001c0)=[{0x0}, {&(0x7f0000001380)=""/116, 0x74}], 0x2, 0x0, 0x0, 0x0) 3.711300131s ago: executing program 5 (id=1984): close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) capset(&(0x7f0000000c00)={0x20080522}, &(0x7f0000000040)={0x0, 0x100000}) bind$inet6(r0, &(0x7f0000d84000)={0xa, 0x2}, 0x1c) 3.309013624s ago: executing program 5 (id=1986): bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="1800"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000580)=@base={0x5, 0x60, 0x43, 0x1}, 0x50) bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000600), &(0x7f0000001600), 0x1, r0}, 0x38) bpf$BPF_GET_PROG_INFO(0x15, &(0x7f0000000340)={r0, 0xe0, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff79, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2f, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0}}, 0x6f) 3.14871851s ago: executing program 6 (id=1987): madvise(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x16) userfaultfd(0x801) capset(&(0x7f0000000080)={0x20071026}, &(0x7f0000000040)) setpriority(0x1, 0x0, 0x1) 2.976172304s ago: executing program 1 (id=1988): r0 = socket$inet6(0xa, 0x2, 0x3a) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @mcast1, 0x6}, 0x1c) setsockopt$sock_linger(r0, 0x1, 0x3d, &(0x7f00000003c0)={0x1}, 0x8) sendto$inet6(r0, &(0x7f0000000100)="80000fdc2208a1ce", 0x8, 0x0, 0x0, 0x0) 2.951412829s ago: executing program 3 (id=1989): r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000b40), r0) ioctl$sock_SIOCGIFINDEX_802154(r0, 0x8933, &(0x7f0000000040)={'wpan0\x00', 0x0}) sendmsg$NL802154_CMD_NEW_SEC_DEVKEY(r0, &(0x7f0000000dc0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000340)={0x20, r1, 0x786b6295d7f1977, 0x70bd2d, 0x25dfdbfd, {}, [@NL802154_ATTR_IFINDEX={0x8, 0x3, r2}, @NL802154_ATTR_SEC_DEVKEY={0x4}]}, 0x20}, 0x1, 0x0, 0x0, 0x18001}, 0x40040) 2.742479216s ago: executing program 5 (id=1990): syz_mount_image$vfat(&(0x7f0000000100), &(0x7f00000001c0)='./bus\x00', 0x1000000, &(0x7f00000005c0)=ANY=[], 0x1, 0x126f, &(0x7f0000001600)="$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") write$binfmt_script(0xffffffffffffffff, 0x0, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0) pwrite64(r0, &(0x7f00000000c0)='a', 0x200000c1, 0x9000) 2.374802665s ago: executing program 2 (id=1991): r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, &(0x7f00000021c0)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}}, 0x0, 0x0, 0x0) read$FUSE(r0, &(0x7f0000000100)={0x2020, 0x0, 0x0}, 0x2020) write$FUSE_INIT(r0, &(0x7f0000002140)={0x50, 0x0, r1, {0x7, 0x8, 0x274acb08, 0x238d117e434e5558, 0x401, 0x5, 0x83, 0x0, 0xc00, 0x0, 0x150, 0xfff}}, 0x50) 2.328186919s ago: executing program 1 (id=1992): capset(&(0x7f0000000000)={0x20080522}, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x81, 0xffffffff}) mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5) r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$PIO_UNIMAP(r0, 0x4b67, &(0x7f0000001ec0)={0x0, 0x0}) 2.160138489s ago: executing program 3 (id=1993): r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000340), 0x0) ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r0, 0xc08c5332, &(0x7f00000001c0)={0xfffffffc, 0x5, 0x0, 'queue0\x00', 0x10000}) r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000080), 0x0) ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TIMER(r1, 0x40605346, &(0x7f0000000180)={0x0, 0x0, {0x2, 0x1}}) 1.956116763s ago: executing program 2 (id=1994): r0 = socket$pppl2tp(0x18, 0x1, 0x1) r1 = socket$inet6_udp(0xa, 0x2, 0x0) connect$pppl2tp(r0, &(0x7f0000000240)=@pppol2tpin6={0x18, 0x1, {0x0, r1, 0x9, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @rand_addr=' \x01\x00'}}}, 0x32) sendmmsg$inet(r0, &(0x7f0000001c00)=[{{&(0x7f0000000040)={0x2, 0x4e22, @initdev={0xac, 0x1e, 0x1, 0x0}}, 0x10, 0x0}}, {{&(0x7f0000000600)={0x2, 0x4e22, @initdev={0xac, 0x1e, 0x1, 0x0}}, 0x10, 0x0}}], 0x2, 0xc014) 1.894255477s ago: executing program 1 (id=1995): r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'veth1_macvtap\x00', 0x0}) r2 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f00000003c0)=ANY=[@ANYBLOB="5c00000010000305000000000000ffff00000000", @ANYRES32=0x0, @ANYBLOB="00000000000000002c0012800b0001006d616373656300001c000280050007000000000005000a0000000000050009000000000008000500", @ANYRES32=r1, @ANYBLOB='\b\x00\n\x00', @ANYRES32], 0x5c}}, 0x0) 1.867885736s ago: executing program 6 (id=1996): capset(&(0x7f0000000000)={0x20080522}, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x81, 0xffffffff}) syz_open_dev$dri(&(0x7f0000000100), 0x1f, 0x0) r0 = syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x20) ioctl$DRM_IOCTL_GEM_FLINK(r0, 0xc008640a, &(0x7f00000002c0)) 1.380154768s ago: executing program 2 (id=1997): r0 = socket$packet(0x11, 0x3, 0x300) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000040)={'vlan1\x00', 0x0}) setsockopt$packet_int(r0, 0x107, 0xf, &(0x7f0000000000)=0xf3f, 0x4) sendto$packet(r0, &(0x7f0000000300)="3f030300031b12000000000789e9aaa911d7c2ff070088a800008100642c", 0x1e, 0x0, &(0x7f00000000c0)={0x11, 0x0, r1, 0x1, 0x0, 0x6, @random="ff9900000300"}, 0x14) 1.297305649s ago: executing program 6 (id=1998): mknodat(0xffffffffffffff9c, &(0x7f0000000180)='./file5\x00', 0x61c0, 0x700) r0 = landlock_create_ruleset(&(0x7f0000000240)={0x1fff}, 0x18, 0x0) landlock_restrict_self(r0, 0x0) renameat2(0xffffffffffffff9c, &(0x7f0000000780)='./file5\x00', 0xffffffffffffff9c, &(0x7f00000007c0)='./file5\x00', 0x2) 1.26594536s ago: executing program 3 (id=1999): r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)=ANY=[@ANYBLOB="12010000000000106a05310300000000000109022400010000800009040002010300010009210000000122f80409058103"], 0x0) syz_usb_connect$uac1(0x5, 0x0, 0x0, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x1, [{0x2e, &(0x7f0000000180)=@string={0x2e, 0x3, "c5c3fe9130b6aa59064b467b209fba67e8aaecceb6c4b5710d5ccb340f7f651df809d4c91eea74ac82c4a25b"}}]}) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, &(0x7f0000000340)={0x24, 0x0, 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB="00220508"], 0x0}, 0x0) 1.12856067s ago: executing program 1 (id=2000): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000004300), 0x1, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1) ioctl$KVM_HYPERV_EVENTFD(r1, 0x4018aebd, &(0x7f0000000280)) 945.772807ms ago: executing program 6 (id=2001): unshare(0x24060400) r0 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000002ec0)=ANY=[@ANYBLOB="0300000004000000040000000a"], 0x48) syz_mount_image$ext4(&(0x7f0000000580)='ext4\x00', &(0x7f0000000040)='./bus\x00', 0x1008002, &(0x7f0000000bc0)={[{@grpquota}, {@delalloc}, {@resuid}, {@test_dummy_encryption}, {@dioread_nolock}, {@jqfmt_vfsold}, {@nomblk_io_submit}, {@noauto_da_alloc}]}, 0x1, 0x5e8, &(0x7f0000000f40)="$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") bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000000)={r0, 0x60, &(0x7f0000001100)}, 0x10) 636.832094ms ago: executing program 5 (id=2002): r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000080)=ANY=[@ANYBLOB="12010000000000105509147200ed0000000109022400010000000009040000030300000009210000000122050009058103"], 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io(r0, &(0x7f0000000000)={0x18, &(0x7f0000000040)=ANY=[@ANYBLOB="200617", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0}, 0x0) close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0) 636.723246ms ago: executing program 2 (id=2003): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000ed07449e000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000000008b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x35, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000080)='kfree\x00', r0, 0x0, 0x8}, 0x18) r1 = openat(0xffffffffffffff9c, &(0x7f0000000380)='./cgroup.cpu/cgroup.procs\x00', 0x60100, 0x30) preadv(r1, &(0x7f0000000180)=[{&(0x7f0000000100)=""/25, 0x19}], 0x1, 0x401, 0x2) 584.303988ms ago: executing program 1 (id=2004): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000040)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_JOIN_IBSS(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000580)={&(0x7f00000007c0)=ANY=[@ANYBLOB='\\\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="01012cbd7000140008002b00000008000300", @ANYRES32=r2, @ANYBLOB="040046000500340076000000080026"], 0x5c}}, 0x4804) 282.415764ms ago: executing program 6 (id=2005): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000001280)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000100), 0x237}, 0x48) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0) bpf$MAP_UPDATE_BATCH(0x1a, 0x0, 0x0) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000240)={r0, 0x1f00, 0x18, 0x19, &(0x7f00000007c0)="9f44948721919580684010a40566", 0x0, 0x7ff, 0x0, 0xb1, 0x0, &(0x7f0000000700)="389ceff69d08b0af1cc71b6262d50660bbaf31a7f8cd6a6f911beb65d5fe6b54bf21a66489121f24fefd198059288c9b735e1898e77a7469489a249292c02a72bc193a3008ebdbf4e9dd4ee8fcceef55402c913c8dd0ebece1330aaa93ece835c5044a246a5967e3acd7c950b3b19f351830e545eb9bc3a9c6dd22ce97f1f857cfe8b68a2370b69ea336006b589368f92deb68f3dfc6f2bfee09f8342da437fce5dcdf658e453e3132bb42067575318c39", &(0x7f0000000380)="8c5911c525f5cf4c4ecf207ad2ec", 0x0, 0x0, 0xffffffff}, 0x23) 0s ago: executing program 1 (id=2006): r0 = socket$netlink(0x10, 0x3, 0x0) r1 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) sendmsg$nl_route(r0, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000780)=@bridge_dellink={0x2c, 0x11, 0x5, 0x0, 0x25dfdbff, {0x7, 0x0, 0x0, r2}, [@IFLA_AF_SPEC={0xc, 0x1a, 0x0, 0x1, [@AF_INET={0x8, 0x5, 0x0, 0x1, {0x4, 0x8}}]}]}, 0x2c}, 0x1, 0x0, 0x0, 0x20002800}, 0x40004) kernel console output (not intermixed with test programs): 3935][ T7715] ext4 filesystem being mounted at /160/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 359.241087][ T7721] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 359.422098][ T7721] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a843c018, mo2=0002] [ 359.445887][ T5818] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 359.505785][ T7721] System zones: 0-2, 18-18, 34-34 [ 359.584430][ T7721] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 359.597878][ T7721] ext4 filesystem being mounted at /163/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 359.805155][ T7721] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 41 vs 39667 free clusters [ 360.166432][ T7742] loop5: detected capacity change from 0 to 1024 [ 360.352758][ T7742] hfsplus: bad catalog entry type [ 360.367539][ T5820] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 360.776142][ T1130] hfsplus: b-tree write err: -5, ino 4 [ 362.284434][ T7770] loop5: detected capacity change from 0 to 512 [ 362.407050][ T7770] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 362.518363][ T7770] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a843c018, mo2=0002] [ 362.625832][ T7770] System zones: 0-2, 18-18, 34-34 [ 362.812889][ T7770] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 362.828614][ T7770] ext4 filesystem being mounted at /75/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 363.059577][ T7770] EXT4-fs error (device loop5): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 41 vs 39667 free clusters [ 363.517885][ T6562] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 364.080629][ T7795] netlink: 4 bytes leftover after parsing attributes in process `syz.3.775'. [ 364.671164][ T7806] loop4: detected capacity change from 0 to 1024 [ 364.725968][ T7808] capability: warning: `syz.3.783' uses 32-bit capabilities (legacy support in use) [ 364.842324][ T7806] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 364.855271][ T7806] ext4 filesystem being mounted at /168/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 364.960035][ T7813] loop1: detected capacity change from 0 to 256 [ 365.057777][ T7813] exfat: Deprecated parameter 'namecase' [ 365.064200][ T7813] exfat: Deprecated parameter 'utf8' [ 365.271324][ T7813] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0xbe675ead, utbl_chksum : 0xe619d30d) [ 365.534101][ T5818] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 365.727492][ T7822] loop5: detected capacity change from 0 to 128 [ 365.764664][ T7822] UDF-fs: error (device loop5): udf_read_tagged: read failed, block=256, location=256 [ 365.795171][ T24] usb 4-1: new high-speed USB device number 6 using dummy_hcd [ 365.871903][ T7822] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 365.953997][ T7824] netlink: 76 bytes leftover after parsing attributes in process `syz.4.788'. [ 366.033384][ T24] usb 4-1: config 0 has an invalid interface number: 32 but max is 0 [ 366.043032][ T24] usb 4-1: config 0 has no interface number 0 [ 366.050174][ T24] usb 4-1: config 0 interface 32 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 366.061820][ T24] usb 4-1: config 0 interface 32 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 366.072255][ T24] usb 4-1: New USB device found, idVendor=046d, idProduct=c71b, bcdDevice= 0.00 [ 366.081601][ T24] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 366.301204][ T24] usb 4-1: config 0 descriptor?? [ 366.533688][ T7831] netlink: 'syz.1.793': attribute type 10 has an invalid length. [ 366.559951][ T7831] 8021q: adding VLAN 0 to HW filter on device team0 [ 366.577337][ T7829] comedi comedi3: comedi_test: 20263 microvolt, 5 microsecond waveform attached [ 366.746628][ T7831] bond0: (slave team0): Enslaving as an active interface with an up link [ 366.762486][ T24] logitech-djreceiver 0003:046D:C71B.0011: unknown main item tag 0x0 [ 366.771403][ T24] logitech-djreceiver 0003:046D:C71B.0011: unknown main item tag 0x0 [ 366.779847][ T24] logitech-djreceiver 0003:046D:C71B.0011: unknown main item tag 0x0 [ 366.788392][ T24] logitech-djreceiver 0003:046D:C71B.0011: unknown main item tag 0x0 [ 366.796942][ T24] logitech-djreceiver 0003:046D:C71B.0011: unknown main item tag 0x0 [ 366.805410][ T24] logitech-djreceiver 0003:046D:C71B.0011: unknown main item tag 0x0 [ 366.813736][ T24] logitech-djreceiver 0003:046D:C71B.0011: unknown main item tag 0x0 [ 366.863934][ T7831] netlink: 'syz.1.793': attribute type 10 has an invalid length. [ 366.918963][ T7831] bond0: (slave team0): Releasing backup interface [ 366.935076][ T11] usb 5-1: new high-speed USB device number 3 using dummy_hcd [ 366.956889][ T7831] bridge0: port 3(team0) entered blocking state [ 366.963637][ T7831] bridge0: port 3(team0) entered disabled state [ 366.970624][ T7831] team0: entered allmulticast mode [ 366.976161][ T7831] team_slave_0: entered allmulticast mode [ 366.982044][ T7831] team_slave_1: entered allmulticast mode [ 366.993063][ T7831] team0: entered promiscuous mode [ 366.998442][ T7831] team_slave_0: entered promiscuous mode [ 367.005395][ T7831] team_slave_1: entered promiscuous mode [ 367.020773][ T24] logitech-djreceiver 0003:046D:C71B.0011: hidraw0: USB HID v0.00 Device [HID 046d:c71b] on usb-dummy_hcd.3-1/input32 [ 367.076979][ T24] usb 4-1: USB disconnect, device number 6 [ 367.165223][ T11] usb 5-1: Using ep0 maxpacket: 32 [ 367.228862][ T11] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 367.240338][ T11] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 367.253949][ T11] usb 5-1: New USB device found, idVendor=1e7d, idProduct=2d51, bcdDevice= 0.00 [ 367.264393][ T11] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 367.488991][ T11] usb 5-1: config 0 descriptor?? [ 367.982211][ T11] koneplus 0003:1E7D:2D51.0012: invalid report_size 873089763 [ 367.990024][ T11] koneplus 0003:1E7D:2D51.0012: item 0 4 1 7 parsing failed [ 368.099946][ T11] koneplus 0003:1E7D:2D51.0012: parse failed [ 368.106535][ T11] koneplus 0003:1E7D:2D51.0012: probe with driver koneplus failed with error -22 [ 368.237574][ T11] usb 5-1: USB disconnect, device number 3 [ 368.272419][ T7848] netlink: 4 bytes leftover after parsing attributes in process `syz.3.798'. [ 368.578449][ T7846] fido_id[7846]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.3/usb4/report_descriptor': No such file or directory [ 369.219571][ T11] usb 4-1: new high-speed USB device number 7 using dummy_hcd [ 369.296607][ T7859] netlink: 'syz.2.803': attribute type 11 has an invalid length. [ 369.379959][ T7861] netlink: 16 bytes leftover after parsing attributes in process `syz.1.804'. [ 369.389333][ T7861] bond0: option resend_igmp: invalid value (18446744072065384451) [ 369.400913][ T7861] bond0: option resend_igmp: allowed values 0 - 255 [ 369.485104][ T11] usb 4-1: Using ep0 maxpacket: 32 [ 369.544413][ T11] usb 4-1: config 4 has an invalid interface number: 128 but max is 0 [ 369.553103][ T11] usb 4-1: config 4 has no interface number 0 [ 369.559638][ T11] usb 4-1: config 4 interface 128 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 369.571078][ T11] usb 4-1: config 4 interface 128 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 369.581403][ T11] usb 4-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40 [ 369.591344][ T11] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 369.656153][ T11] hub 4-1:4.128: USB hub found [ 369.901027][ T11] hub 4-1:4.128: 2 ports detected [ 369.910784][ T11] hub 4-1:4.128: Using single TT (err -22) [ 370.336758][ T11] usb 4-1: USB disconnect, device number 7 [ 371.666482][ T7891] program syz.5.819 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 371.747359][ T7892] program syz.5.819 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 371.796725][ T7892] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0 [ 371.889377][ T7894] loop4: detected capacity change from 0 to 256 [ 371.930294][ T7884] loop1: detected capacity change from 0 to 4096 [ 371.976113][ T7894] exFAT-fs (loop4): failed to load upcase table (idx : 0x0000fe7f, chksum : 0x39626d3b, utbl_chksum : 0xe619d30d) [ 372.002416][ T7884] ntfs3(loop1): Different NTFS sector size (4096) and media sector size (512). [ 372.127312][ T7894] exFAT-fs (loop4): start_clu is invalid cluster(0x0) [ 372.256551][ T7884] ntfs3(loop1): ino=19, mi_enum_attr [ 372.268811][ T7884] ntfs3(loop1): Mark volume as dirty due to NTFS errors [ 372.892151][ T24] usb 3-1: new high-speed USB device number 6 using dummy_hcd [ 373.018920][ T7911] netlink: 'syz.4.829': attribute type 21 has an invalid length. [ 373.027390][ T7911] netlink: 36 bytes leftover after parsing attributes in process `syz.4.829'. [ 373.078246][ T7912] loop1: detected capacity change from 0 to 128 [ 373.102065][ T24] usb 3-1: New USB device found, idVendor=04f3, idProduct=0755, bcdDevice= 0.00 [ 373.112165][ T24] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 373.146298][ T24] usb 3-1: config 0 descriptor?? [ 373.235136][ T7912] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 373.356300][ T7912] ext4 filesystem being mounted at /165/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 373.704403][ T24] elan 0003:04F3:0755.0013: hidraw0: USB HID v1.01 Device [HID 04f3:0755] on usb-dummy_hcd.2-1/input0 [ 373.756885][ T5815] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 373.776057][ T7918] loop4: detected capacity change from 0 to 256 [ 373.838613][ T7918] exfat: Deprecated parameter 'utf8' [ 373.844428][ T7918] exfat: Deprecated parameter 'namecase' [ 373.851016][ T7918] exfat: Deprecated parameter 'namecase' [ 373.860108][ T7918] exfat: Deprecated parameter 'utf8' [ 373.902622][ T11] usb 3-1: USB disconnect, device number 6 [ 374.112187][ T7918] exFAT-fs (loop4): failed to load upcase table (idx : 0x00012153, chksum : 0xc9bffc20, utbl_chksum : 0xe619d30d) [ 374.139635][ T7921] netlink: 16 bytes leftover after parsing attributes in process `syz.3.832'. [ 374.149044][ T7921] bond0: option resend_igmp: invalid value (18446744072065384451) [ 374.157226][ T7921] bond0: option resend_igmp: allowed values 0 - 255 [ 374.224048][ T7924] loop5: detected capacity change from 0 to 128 [ 374.635502][ T7929] loop3: detected capacity change from 0 to 256 [ 374.669380][ T7927] loop1: detected capacity change from 0 to 256 [ 374.697939][ T7929] exfat: Deprecated parameter 'namecase' [ 374.704248][ T7929] exfat: Deprecated parameter 'utf8' [ 374.724183][ T7927] exfat: Deprecated parameter 'utf8' [ 374.732008][ T7927] exfat: Deprecated parameter 'utf8' [ 374.738011][ T7927] exfat: Deprecated parameter 'utf8' [ 374.743941][ T7927] exfat: Bad value for 'gid' [ 374.748927][ T7927] exfat: Bad value for 'gid' [ 374.882066][ T7929] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0xbe675ead, utbl_chksum : 0xe619d30d) [ 375.254459][ T7941] program syz.1.841 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 376.422936][ T7967] loop3: detected capacity change from 0 to 256 [ 376.425749][ T7966] option changes via remount are deprecated (pid=7964 comm=syz.4.855) [ 376.452117][ T7968] netlink: 'syz.1.856': attribute type 11 has an invalid length. [ 376.473771][ T7967] exFAT-fs (loop3): failed to load upcase table (idx : 0x000104d0, chksum : 0xda2184db, utbl_chksum : 0xe619d30d) [ 376.643772][ T7970] netlink: 'syz.5.867': attribute type 10 has an invalid length. [ 376.675945][ T7970] 8021q: adding VLAN 0 to HW filter on device team0 [ 376.692593][ T7970] bond0: (slave team0): Enslaving as an active interface with an up link [ 376.703544][ T7973] netlink: 'syz.5.867': attribute type 10 has an invalid length. [ 376.823557][ T7973] bond0: (slave team0): Releasing backup interface [ 376.926719][ T7973] bridge0: port 3(team0) entered blocking state [ 376.933421][ T7973] bridge0: port 3(team0) entered disabled state [ 376.940567][ T7973] team0: entered allmulticast mode [ 376.946053][ T7973] team_slave_0: entered allmulticast mode [ 376.951955][ T7973] team_slave_1: entered allmulticast mode [ 376.963402][ T7973] team0: entered promiscuous mode [ 376.968911][ T7973] team_slave_0: entered promiscuous mode [ 376.985099][ T7973] team_slave_1: entered promiscuous mode [ 378.011864][ T7998] loop5: detected capacity change from 0 to 512 [ 378.053950][ T7999] loop1: detected capacity change from 0 to 256 [ 378.083867][ T7998] EXT4-fs (loop5): Cannot turn on journaled quota: type 0: error -2 [ 378.092693][ T7998] EXT4-fs (loop5): Cannot turn on journaled quota: type 1: error -2 [ 378.180050][ T8003] loop2: detected capacity change from 0 to 256 [ 378.229834][ T7999] exFAT-fs (loop1): failed to load upcase table (idx : 0x0000fe7f, chksum : 0x39626d3b, utbl_chksum : 0xe619d30d) [ 378.247157][ T7998] EXT4-fs (loop5): 1 truncate cleaned up [ 378.255877][ T7998] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 378.276371][ T8003] exFAT-fs (loop2): failed to load upcase table (idx : 0x000104d0, chksum : 0xda2184db, utbl_chksum : 0xe619d30d) [ 378.444257][ T7999] exFAT-fs (loop1): start_clu is invalid cluster(0x0) [ 378.469861][ T7998] EXT4-fs (loop5): re-mounted 00000000-0000-0000-0000-000000000000. [ 378.736570][ T8009] netlink: 'syz.3.875': attribute type 10 has an invalid length. [ 378.762337][ T8009] 8021q: adding VLAN 0 to HW filter on device team0 [ 378.777845][ T8009] bond0: (slave team0): Enslaving as an active interface with an up link [ 378.793042][ T6562] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 378.876534][ T8009] netlink: 'syz.3.875': attribute type 10 has an invalid length. [ 378.936698][ T8009] bond0: (slave team0): Releasing backup interface [ 378.995053][ T8009] bridge0: port 3(team0) entered blocking state [ 379.001779][ T8009] bridge0: port 3(team0) entered disabled state [ 379.008756][ T8009] team0: entered allmulticast mode [ 379.014042][ T8009] team_slave_0: entered allmulticast mode [ 379.024299][ T8009] team_slave_1: entered allmulticast mode [ 379.036918][ T8009] team0: entered promiscuous mode [ 379.042207][ T8009] team_slave_0: entered promiscuous mode [ 379.049235][ T8009] team_slave_1: entered promiscuous mode [ 379.049705][ T8016] program syz.2.878 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 379.210334][ T8020] program syz.2.878 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 379.236609][ T8020] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0 [ 379.392740][ T8024] loop4: detected capacity change from 0 to 256 [ 379.402426][ T8024] exfat: Deprecated parameter 'utf8' [ 379.408227][ T8024] exfat: Deprecated parameter 'utf8' [ 379.414018][ T8024] exfat: Deprecated parameter 'utf8' [ 379.420620][ T8024] exfat: Bad value for 'gid' [ 379.425527][ T8024] exfat: Bad value for 'gid' [ 379.645555][ T8019] loop5: detected capacity change from 0 to 4096 [ 379.656833][ T8019] EXT4-fs: Ignoring removed mblk_io_submit option [ 379.682431][ T8019] EXT4-fs (loop5): Test dummy encryption mode enabled [ 379.833084][ T8019] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 380.032497][ T30] kauditd_printk_skb: 4 callbacks suppressed [ 380.032568][ T30] audit: type=1800 audit(1754408584.481:23): pid=8019 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.879" name="file1" dev="loop5" ino=15 res=0 errno=0 [ 380.139262][ T8038] loop3: detected capacity change from 0 to 64 [ 380.234490][ T8038] Trying to free block not in datazone [ 380.240746][ T8038] Trying to free block not in datazone [ 380.261579][ T8038] Trying to free block not in datazone [ 380.307600][ T6562] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 380.512748][ T8041] loop2: detected capacity change from 0 to 512 [ 380.614261][ T8041] EXT4-fs (loop2): Cannot turn on journaled quota: type 0: error -2 [ 380.622848][ T8041] EXT4-fs (loop2): Cannot turn on journaled quota: type 1: error -2 [ 380.668216][ T8041] EXT4-fs (loop2): 1 truncate cleaned up [ 380.676397][ T8041] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 380.747071][ T8045] loop4: detected capacity change from 0 to 4096 [ 380.805753][ T8041] EXT4-fs (loop2): re-mounted 00000000-0000-0000-0000-000000000000. [ 380.904987][ T8050] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 381.001207][ T8045] NILFS error (device loop4): nilfs_bmap_lookup_contig: broken bmap (inode number=12) [ 381.066402][ T5810] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 381.085299][ T8045] Remounting filesystem read-only [ 381.359022][ T8057] ieee802154 phy0 wpan0: encryption failed: -22 [ 381.367017][ T5818] NILFS (loop4): disposed unprocessed dirty file(s) when detaching log writer [ 381.575279][ T8061] option changes via remount are deprecated (pid=8059 comm=syz.1.898) [ 381.926695][ T8060] loop3: detected capacity change from 0 to 4096 [ 381.954343][ T8060] ntfs3(loop3): Different NTFS sector size (4096) and media sector size (512). [ 382.210847][ T8060] ntfs3(loop3): ino=19, mi_enum_attr [ 382.216915][ T8060] ntfs3(loop3): Mark volume as dirty due to NTFS errors [ 382.245220][ T24] usb 2-1: new high-speed USB device number 7 using dummy_hcd [ 382.246487][ T8075] netlink: 4 bytes leftover after parsing attributes in process `syz.2.904'. [ 382.448971][ T24] usb 2-1: Using ep0 maxpacket: 16 [ 382.481442][ T24] usb 2-1: config 0 interface 0 altsetting 2 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 382.493533][ T24] usb 2-1: config 0 interface 0 altsetting 2 endpoint 0x81 has invalid wMaxPacketSize 0 [ 382.509712][ T24] usb 2-1: config 0 interface 0 has no altsetting 0 [ 382.518781][ T24] usb 2-1: New USB device found, idVendor=0458, idProduct=0138, bcdDevice= 0.00 [ 382.528251][ T24] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 382.635423][ T24] usb 2-1: config 0 descriptor?? [ 383.067762][ T24] kye 0003:0458:0138.0014: unknown main item tag 0x0 [ 383.075307][ T24] kye 0003:0458:0138.0014: unknown main item tag 0x0 [ 383.082393][ T24] kye 0003:0458:0138.0014: unknown main item tag 0x0 [ 383.089478][ T24] kye 0003:0458:0138.0014: unknown main item tag 0x0 [ 383.096519][ T24] kye 0003:0458:0138.0014: unknown main item tag 0x0 [ 383.103466][ T24] kye 0003:0458:0138.0014: unknown main item tag 0x0 [ 383.110686][ T24] kye 0003:0458:0138.0014: unknown main item tag 0x0 [ 383.126293][ T24] kye 0003:0458:0138.0014: unknown main item tag 0x0 [ 383.133265][ T24] kye 0003:0458:0138.0014: unknown main item tag 0x0 [ 383.144470][ T24] kye 0003:0458:0138.0014: unknown main item tag 0x0 [ 383.155605][ T24] kye 0003:0458:0138.0014: unexpected long global item [ 383.245334][ T24] kye 0003:0458:0138.0014: parse failed [ 383.251429][ T24] kye 0003:0458:0138.0014: probe with driver kye failed with error -22 [ 383.275305][ T24] usb 2-1: USB disconnect, device number 7 [ 383.293154][ T8087] loop2: detected capacity change from 0 to 16 [ 383.350963][ T8087] erofs (device loop2): mounted with root inode @ nid 36. [ 384.045592][ T8099] MPI: mpi too large (30216 bits) [ 384.837573][ T8103] loop5: detected capacity change from 0 to 4096 [ 384.884559][ T8103] ntfs3(loop5): Different NTFS sector size (4096) and media sector size (512). [ 385.132611][ T8103] ntfs3(loop5): ino=19, mi_enum_attr [ 385.142206][ T8103] ntfs3(loop5): Mark volume as dirty due to NTFS errors [ 385.297776][ T50] Bluetooth: hci4: command 0x0406 tx timeout [ 386.005543][ T8134] vim2m vim2m.0: vidioc_s_fmt queue busy [ 386.475976][ T8145] loop3: detected capacity change from 0 to 256 [ 386.557553][ T8145] exfat: Deprecated parameter 'utf8' [ 386.713599][ T8145] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0x36e00b20, utbl_chksum : 0xe619d30d) [ 386.875348][ T8153] loop1: detected capacity change from 0 to 16 [ 386.930796][ T8153] erofs (device loop1): mounted with root inode @ nid 36. [ 387.090357][ T8151] loop2: detected capacity change from 0 to 4096 [ 387.103499][ T8151] ntfs3(loop2): Different NTFS sector size (4096) and media sector size (512). [ 387.302838][ T8156] loop5: detected capacity change from 0 to 1024 [ 387.356685][ T8151] ntfs3(loop2): ino=19, mi_enum_attr [ 387.362307][ T8151] ntfs3(loop2): Mark volume as dirty due to NTFS errors [ 387.738092][ T1142] hfsplus: b-tree write err: -5, ino 4 [ 388.110692][ C0] hrtimer: interrupt took 218630 ns [ 388.169675][ T8173] loop2: detected capacity change from 0 to 512 [ 388.257992][ T8173] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none. [ 388.295429][ T8169] loop1: detected capacity change from 0 to 4096 [ 388.316728][ T8178] loop5: detected capacity change from 0 to 512 [ 388.365665][ T8173] EXT4-fs warning (device loop2): dx_probe:837: inode #2: comm syz.2.952: Unimplemented hash flags: 0x0001 [ 388.377718][ T8173] EXT4-fs warning (device loop2): dx_probe:934: inode #2: comm syz.2.952: Corrupt directory, running e2fsck is recommended [ 388.425257][ T8178] EXT4-fs (loop5): Cannot turn on journaled quota: type 0: error -2 [ 388.429638][ T8173] EXT4-fs error (device loop2): ext4_readdir:264: inode #2: block 3: comm syz.2.952: path /205/file0: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=4294967295, rec_len=7, size=1024 fake=0 [ 388.447075][ T8181] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 388.471074][ T8178] EXT4-fs (loop5): 1 truncate cleaned up [ 388.479542][ T8178] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 388.591672][ T8169] NILFS error (device loop1): nilfs_bmap_lookup_contig: broken bmap (inode number=12) [ 388.632849][ T8169] Remounting filesystem read-only [ 388.890424][ T6562] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 388.918061][ T5815] NILFS (loop1): disposed unprocessed dirty file(s) when detaching log writer [ 389.132907][ T5810] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 389.322445][ T8195] loop3: detected capacity change from 0 to 16 [ 389.390403][ T8195] erofs (device loop3): mounted with root inode @ nid 36. [ 389.591250][ T8189] loop5: detected capacity change from 0 to 4096 [ 389.686713][ T8198] NILFS (loop5): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 389.777065][ T8189] NILFS error (device loop5): nilfs_bmap_lookup_contig: broken bmap (inode number=12) [ 389.803605][ T8189] Remounting filesystem read-only [ 389.905347][ T6562] NILFS (loop5): disposed unprocessed dirty file(s) when detaching log writer [ 390.025886][ T24] usb 2-1: new high-speed USB device number 8 using dummy_hcd [ 390.188061][ T24] usb 2-1: Using ep0 maxpacket: 8 [ 390.247077][ T24] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 390.258789][ T24] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 390.268940][ T24] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 390.270767][ T8202] loop4: detected capacity change from 0 to 4096 [ 390.283464][ T24] usb 2-1: New USB device found, idVendor=1e71, idProduct=170e, bcdDevice= 0.00 [ 390.304411][ T24] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 390.308479][ T8202] ntfs3(loop4): Different NTFS sector size (4096) and media sector size (512). [ 390.373397][ T8212] netlink: 20 bytes leftover after parsing attributes in process `syz.2.967'. [ 390.514327][ T24] usb 2-1: config 0 descriptor?? [ 390.682867][ T8202] ntfs3(loop4): ino=19, mi_enum_attr [ 390.688695][ T8202] ntfs3(loop4): Mark volume as dirty due to NTFS errors [ 390.967172][ T24] hid (null): unknown global tag 0xe [ 390.992571][ T24] nzxt-kraken2 0003:1E71:170E.0015: unknown global tag 0xe [ 391.009189][ T24] nzxt-kraken2 0003:1E71:170E.0015: item 0 4 1 14 parsing failed [ 391.084557][ T24] nzxt-kraken2 0003:1E71:170E.0015: hid parse failed with -22 [ 391.092992][ T24] nzxt-kraken2 0003:1E71:170E.0015: probe with driver nzxt-kraken2 failed with error -22 [ 391.217171][ T24] usb 2-1: USB disconnect, device number 8 [ 391.375241][ T30] audit: type=1326 audit(1754408595.821:24): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8224 comm="syz.2.976" exe="/root/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf70ae539 code=0x0 [ 391.861869][ T5814] Bluetooth: hci4: Malformed LE Event: 0x0d [ 392.069339][ T8239] loop4: detected capacity change from 0 to 1024 [ 392.145465][ T11] usb 6-1: new high-speed USB device number 4 using dummy_hcd [ 392.315993][ T11] usb 6-1: Using ep0 maxpacket: 16 [ 392.347773][ T11] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 392.359107][ T11] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x81 has invalid wMaxPacketSize 0 [ 392.369207][ T11] usb 6-1: config 0 interface 0 has no altsetting 0 [ 392.375857][ T1130] hfsplus: b-tree write err: -5, ino 4 [ 392.376323][ T11] usb 6-1: New USB device found, idVendor=0458, idProduct=0138, bcdDevice= 0.00 [ 392.390798][ T11] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 392.401220][ T8242] loop3: detected capacity change from 0 to 1024 [ 392.422785][ T11] usb 6-1: config 0 descriptor?? [ 392.555069][ T8244] loop2: detected capacity change from 0 to 256 [ 392.860106][ T8244] FAT-fs (loop2): Directory bread(block 64) failed [ 392.870522][ T8244] FAT-fs (loop2): Directory bread(block 65) failed [ 392.877644][ T8244] FAT-fs (loop2): Directory bread(block 66) failed [ 392.884356][ T8244] FAT-fs (loop2): Directory bread(block 67) failed [ 392.891360][ T8244] FAT-fs (loop2): Directory bread(block 68) failed [ 392.898278][ T8244] FAT-fs (loop2): Directory bread(block 69) failed [ 392.905302][ T8244] FAT-fs (loop2): Directory bread(block 70) failed [ 392.912011][ T8244] FAT-fs (loop2): Directory bread(block 71) failed [ 392.918983][ T8244] FAT-fs (loop2): Directory bread(block 72) failed [ 392.925914][ T8244] FAT-fs (loop2): Directory bread(block 73) failed [ 392.932970][ T11] hid_parser_main: 74 callbacks suppressed [ 392.933068][ T11] kye 0003:0458:0138.0016: unknown main item tag 0x0 [ 392.950346][ T11] kye 0003:0458:0138.0016: unknown main item tag 0x0 [ 392.958355][ T11] kye 0003:0458:0138.0016: unknown main item tag 0x0 [ 392.965495][ T11] kye 0003:0458:0138.0016: unknown main item tag 0x0 [ 392.972478][ T11] kye 0003:0458:0138.0016: unknown main item tag 0x0 [ 392.981733][ T11] kye 0003:0458:0138.0016: unknown main item tag 0x0 [ 392.988865][ T11] kye 0003:0458:0138.0016: unknown main item tag 0x0 [ 392.995908][ T11] kye 0003:0458:0138.0016: unknown main item tag 0x0 [ 393.002825][ T11] kye 0003:0458:0138.0016: unknown main item tag 0x0 [ 393.011815][ T11] kye 0003:0458:0138.0016: unknown main item tag 0x0 [ 393.023926][ T11] kye 0003:0458:0138.0016: unexpected long global item [ 393.129484][ T11] kye 0003:0458:0138.0016: parse failed [ 393.135849][ T11] kye 0003:0458:0138.0016: probe with driver kye failed with error -22 [ 393.273410][ T11] usb 6-1: USB disconnect, device number 4 [ 393.505874][ T8256] fuse: Bad value for 'group_id' [ 393.511007][ T8256] fuse: Bad value for 'group_id' [ 393.681840][ T8259] loop2: detected capacity change from 0 to 512 [ 393.721920][ T8259] EXT4-fs (loop2): Cannot turn on journaled quota: type 0: error -2 [ 393.731404][ T5814] Bluetooth: hci2: Malformed LE Event: 0x0d [ 393.760806][ T8259] EXT4-fs (loop2): 1 truncate cleaned up [ 393.772195][ T8259] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 393.895463][ T24] usb 4-1: new high-speed USB device number 8 using dummy_hcd [ 394.070175][ T5810] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 394.080295][ T24] usb 4-1: Using ep0 maxpacket: 8 [ 394.090754][ T24] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 394.102753][ T24] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 394.113737][ T24] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 394.127301][ T24] usb 4-1: New USB device found, idVendor=1e71, idProduct=170e, bcdDevice= 0.00 [ 394.137266][ T24] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 394.226636][ T24] usb 4-1: config 0 descriptor?? [ 394.615818][ T5865] usb 5-1: new high-speed USB device number 4 using dummy_hcd [ 394.706861][ T24] hid (null): unknown global tag 0xe [ 394.737703][ T24] nzxt-kraken2 0003:1E71:170E.0017: unknown global tag 0xe [ 394.749296][ T24] nzxt-kraken2 0003:1E71:170E.0017: item 0 4 1 14 parsing failed [ 394.786670][ T24] nzxt-kraken2 0003:1E71:170E.0017: hid parse failed with -22 [ 394.803937][ T24] nzxt-kraken2 0003:1E71:170E.0017: probe with driver nzxt-kraken2 failed with error -22 [ 394.820279][ T5865] usb 5-1: Using ep0 maxpacket: 8 [ 394.850122][ T5865] usb 5-1: config 0 has an invalid interface number: 52 but max is 0 [ 394.858734][ T5865] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 394.869325][ T5865] usb 5-1: config 0 has no interface number 0 [ 394.875764][ T5865] usb 5-1: config 0 interface 52 altsetting 1 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 394.888982][ T5865] usb 5-1: config 0 interface 52 has no altsetting 0 [ 394.937718][ T24] usb 4-1: USB disconnect, device number 8 [ 394.990560][ T5865] usb 5-1: New USB device found, idVendor=06cb, idProduct=0003, bcdDevice=e8.00 [ 395.006023][ T5865] usb 5-1: New USB device strings: Mfr=22, Product=0, SerialNumber=0 [ 395.014337][ T5865] usb 5-1: Manufacturer: syz [ 395.029717][ T8282] loop5: detected capacity change from 0 to 256 [ 395.053709][ T5865] usb 5-1: config 0 descriptor?? [ 395.078172][ T5865] hub 5-1:0.52: bad descriptor, ignoring hub [ 395.084374][ T5865] hub 5-1:0.52: probe with driver hub failed with error -5 [ 395.243785][ T8282] FAT-fs (loop5): Directory bread(block 64) failed [ 395.251009][ T8282] FAT-fs (loop5): Directory bread(block 65) failed [ 395.258126][ T8282] FAT-fs (loop5): Directory bread(block 66) failed [ 395.265130][ T8282] FAT-fs (loop5): Directory bread(block 67) failed [ 395.272105][ T8282] FAT-fs (loop5): Directory bread(block 68) failed [ 395.279005][ T8282] FAT-fs (loop5): Directory bread(block 69) failed [ 395.286070][ T8282] FAT-fs (loop5): Directory bread(block 70) failed [ 395.292913][ T8282] FAT-fs (loop5): Directory bread(block 71) failed [ 395.296292][ T8284] loop2: detected capacity change from 0 to 16 [ 395.300064][ T8282] FAT-fs (loop5): Directory bread(block 72) failed [ 395.307069][ T8282] FAT-fs (loop5): Directory bread(block 73) failed [ 395.348274][ T8284] erofs (device loop2): mounted with root inode @ nid 36. [ 395.358547][ T5865] input: syz as /devices/platform/dummy_hcd.4/usb5/5-1/5-1:0.52/input/input10 [ 395.677063][ T5865] usb 5-1: USB disconnect, device number 4 [ 395.960430][ T8293] loop3: detected capacity change from 0 to 512 [ 396.038235][ T8293] EXT4-fs (loop3): Cannot turn on journaled quota: type 0: error -2 [ 396.062719][ T8293] EXT4-fs (loop3): 1 truncate cleaned up [ 396.071007][ T8293] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 396.219899][ T5820] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 396.565738][ T8302] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1011'. [ 396.579499][ T8303] loop4: detected capacity change from 0 to 1024 [ 396.720381][ T8309] loop2: detected capacity change from 0 to 1024 [ 397.065916][ T35] hfsplus: b-tree write err: -5, ino 8 [ 397.120844][ T1142] hfsplus: b-tree write err: -5, ino 4 [ 397.169602][ T8313] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1017'. [ 397.179651][ T8313] tipc: New replicast peer: fe80:0000:0000:0000:0000:0000:0000:0000 [ 397.191028][ T8313] tipc: Enabled bearer , priority 10 [ 397.374144][ T8319] nbd: must specify at least one socket [ 397.376964][ T11] usb 6-1: new high-speed USB device number 5 using dummy_hcd [ 397.565224][ T11] usb 6-1: Using ep0 maxpacket: 8 [ 397.581786][ T11] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 397.593291][ T11] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 397.603474][ T11] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 397.621229][ T11] usb 6-1: New USB device found, idVendor=1e71, idProduct=170e, bcdDevice= 0.00 [ 397.631192][ T11] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 397.704658][ T11] usb 6-1: config 0 descriptor?? [ 397.914238][ T30] audit: type=1800 audit(1754408602.351:25): pid=8327 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.1024" name="SYSV00000000" dev="hugetlbfs" ino=0 res=0 errno=0 [ 398.152682][ T8332] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1026'. [ 398.202843][ T11] hid (null): unknown global tag 0xe [ 398.235614][ T8333] mkiss: ax0: crc mode is auto. [ 398.255702][ T11] nzxt-kraken2 0003:1E71:170E.0018: unknown global tag 0xe [ 398.263155][ T11] nzxt-kraken2 0003:1E71:170E.0018: item 0 4 1 14 parsing failed [ 398.316387][ T5870] tipc: Node number set to 4294246401 [ 398.350224][ T11] nzxt-kraken2 0003:1E71:170E.0018: hid parse failed with -22 [ 398.358726][ T11] nzxt-kraken2 0003:1E71:170E.0018: probe with driver nzxt-kraken2 failed with error -22 [ 398.422262][ T11] usb 6-1: USB disconnect, device number 5 [ 398.599438][ T8337] loop3: detected capacity change from 0 to 1024 [ 398.654261][ T30] audit: type=1326 audit(1754408603.101:26): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8338 comm="syz.1.1030" exe="/root/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7fc1539 code=0x0 [ 398.915868][ T35] hfsplus: b-tree write err: -5, ino 8 [ 399.973358][ T8352] loop5: detected capacity change from 0 to 4096 [ 400.663732][ T8365] loop4: detected capacity change from 0 to 4096 [ 400.697075][ T8365] EXT4-fs: Ignoring removed mblk_io_submit option [ 400.747236][ T8365] EXT4-fs (loop4): Test dummy encryption mode enabled [ 400.861623][ T8365] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 401.066005][ T11] Process accounting resumed [ 401.095288][ T5865] usb 2-1: new high-speed USB device number 9 using dummy_hcd [ 401.156213][ T8365] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000000000 ro. [ 401.258168][ T5865] usb 2-1: Using ep0 maxpacket: 32 [ 401.299287][ T5865] usb 2-1: New USB device found, idVendor=0c72, idProduct=000d, bcdDevice=27.9b [ 401.309112][ T5865] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 401.317530][ T5865] usb 2-1: Product: syz [ 401.321889][ T5865] usb 2-1: Manufacturer: syz [ 401.326785][ T5865] usb 2-1: SerialNumber: syz [ 401.359098][ T5865] usb 2-1: config 0 descriptor?? [ 401.414268][ T5818] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 402.025221][ T5865] peak_usb 2-1:0.0 can0: unable to request usb[type=2 value=5] err=-71 [ 402.131921][ T5865] peak_usb 2-1:0.0: probe with driver peak_usb failed with error -71 [ 402.192032][ T5865] usb 2-1: USB disconnect, device number 9 [ 402.231276][ T8398] loop3: detected capacity change from 0 to 256 [ 402.261135][ T8398] exfat: Deprecated parameter 'utf8' [ 402.386358][ T8398] exFAT-fs (loop3): error, data size is invalid(34359738378) [ 402.495016][ T8400] loop2: detected capacity change from 0 to 4096 [ 402.859484][ T8405] loop5: detected capacity change from 0 to 1024 [ 403.015555][ T8405] hfsplus: invalid extended attribute record [ 404.381235][ T8438] loop2: detected capacity change from 0 to 1024 [ 404.491287][ T8438] hfsplus: invalid extended attribute record [ 404.670236][ T8443] loop3: detected capacity change from 0 to 512 [ 404.688160][ T8443] EXT4-fs: Ignoring removed i_version option [ 404.719055][ T8443] EXT4-fs (loop3): Test dummy encryption mode enabled [ 404.729053][ T8443] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support! [ 404.743213][ T8443] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 404.841745][ T8443] EXT4-fs error (device loop3): ext4_orphan_get:1418: comm syz.3.1077: bad orphan inode 131083 [ 404.856113][ T8443] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 405.216134][ T5820] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 405.506936][ T8460] netlink: 'syz.3.1085': attribute type 10 has an invalid length. [ 405.516197][ T8460] team0: left allmulticast mode [ 405.521221][ T8460] team_slave_0: left allmulticast mode [ 405.527308][ T8460] team_slave_1: left allmulticast mode [ 405.532946][ T8460] team0: left promiscuous mode [ 405.538037][ T8460] team_slave_0: left promiscuous mode [ 405.554667][ T8460] team_slave_1: left promiscuous mode [ 405.562526][ T8460] bridge0: port 3(team0) entered disabled state [ 405.627932][ T8460] batman_adv: batadv0: Adding interface: team0 [ 405.634364][ T8460] batman_adv: batadv0: The MTU of interface team0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 405.666791][ T8460] batman_adv: batadv0: Not using interface team0 (retrying later): interface not active [ 405.776414][ T8460] netlink: 'syz.3.1085': attribute type 10 has an invalid length. [ 405.784667][ T8460] netlink: 2 bytes leftover after parsing attributes in process `syz.3.1085'. [ 405.794369][ T8460] team0: entered promiscuous mode [ 405.800155][ T8460] team_slave_0: entered promiscuous mode [ 405.807236][ T8460] team_slave_1: entered promiscuous mode [ 405.821252][ T8460] 8021q: adding VLAN 0 to HW filter on device team0 [ 405.829187][ T8460] batman_adv: batadv0: Interface activated: team0 [ 405.835936][ T8460] batman_adv: batadv0: Interface deactivated: team0 [ 405.842770][ T8460] batman_adv: batadv0: Removing interface: team0 [ 405.878352][ T8460] bridge0: port 3(team0) entered blocking state [ 405.878773][ T8460] bridge0: port 3(team0) entered disabled state [ 405.879400][ T8460] team0: entered allmulticast mode [ 405.879512][ T8460] team_slave_0: entered allmulticast mode [ 405.879601][ T8460] team_slave_1: entered allmulticast mode [ 405.885552][ T8460] bridge0: port 3(team0) entered blocking state [ 405.885968][ T8460] bridge0: port 3(team0) entered forwarding state [ 406.356425][ T8477] Bluetooth: MGMT ver 1.23 [ 406.687881][ T8480] loop3: detected capacity change from 0 to 64 [ 406.801497][ T30] audit: type=1800 audit(1754408611.251:27): pid=8480 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.1096" name="file1" dev="loop3" ino=5 res=0 errno=0 [ 407.328991][ T8494] process 'syz.4.1101' launched './file1' with NULL argv: empty string added [ 407.402229][ T8495] loop5: detected capacity change from 0 to 1024 [ 407.482563][ T8495] hfsplus: bad catalog entry type [ 407.738516][ T4414] hfsplus: b-tree write err: -5, ino 4 [ 407.947312][ T8505] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1106'. [ 407.958122][ T8505] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1106'. [ 408.063670][ T8510] netlink: 'syz.3.1110': attribute type 2 has an invalid length. [ 408.071967][ T8510] netlink: 199836 bytes leftover after parsing attributes in process `syz.3.1110'. [ 408.902250][ T8524] loop1: detected capacity change from 0 to 256 [ 408.938537][ T8524] exfat: Deprecated parameter 'utf8' [ 409.103096][ T8524] exFAT-fs (loop1): error, data size is invalid(34359738378) [ 409.664594][ T8544] loop2: detected capacity change from 0 to 512 [ 409.683012][ T8544] EXT4-fs: Ignoring removed i_version option [ 409.693266][ T8544] EXT4-fs (loop2): Test dummy encryption mode enabled [ 409.700985][ T8544] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 409.800864][ T8544] EXT4-fs error (device loop2): ext4_orphan_get:1418: comm syz.2.1124: bad orphan inode 131083 [ 409.824328][ T8544] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 410.261209][ T5810] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 410.377075][ T8555] loop3: detected capacity change from 0 to 128 [ 410.696925][ T8560] RDS: rds_bind could not find a transport for fe80::, load rds_tcp or rds_rdma? [ 411.327033][ T8576] netlink: 'syz.4.1142': attribute type 1 has an invalid length. [ 411.336232][ T8576] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1142'. [ 411.345505][ T8576] nbd: illegal input index 65544 [ 411.838257][ T8587] loop1: detected capacity change from 0 to 512 [ 411.885750][ T8589] netlink: 'syz.4.1147': attribute type 7 has an invalid length. [ 411.900935][ T8589] netlink: 'syz.4.1147': attribute type 8 has an invalid length. [ 411.953479][ T8587] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 412.144089][ T8587] EXT4-fs (loop1): re-mounted 00000000-0000-0000-0000-000000000000. [ 412.285156][ T8598] netlink: 'syz.2.1150': attribute type 10 has an invalid length. [ 412.311257][ T8598] batman_adv: batadv0: Adding interface: team0 [ 412.318820][ T8598] batman_adv: batadv0: The MTU of interface team0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 412.348721][ T8598] batman_adv: batadv0: Not using interface team0 (retrying later): interface not active [ 412.376037][ T8598] netlink: 'syz.2.1150': attribute type 10 has an invalid length. [ 412.376676][ T11] usb 4-1: new high-speed USB device number 9 using dummy_hcd [ 412.384125][ T8598] netlink: 2 bytes leftover after parsing attributes in process `syz.2.1150'. [ 412.409350][ T8598] team0: entered promiscuous mode [ 412.414563][ T8598] team_slave_0: entered promiscuous mode [ 412.421583][ T8598] team_slave_1: entered promiscuous mode [ 412.439143][ T8598] 8021q: adding VLAN 0 to HW filter on device team0 [ 412.450776][ T8598] batman_adv: batadv0: Interface activated: team0 [ 412.457544][ T8598] batman_adv: batadv0: Interface deactivated: team0 [ 412.464285][ T8598] batman_adv: batadv0: Removing interface: team0 [ 412.500453][ T8598] bridge0: port 3(team0) entered blocking state [ 412.514882][ T8598] bridge0: port 3(team0) entered disabled state [ 412.521839][ T8598] team0: entered allmulticast mode [ 412.527391][ T8598] team_slave_0: entered allmulticast mode [ 412.533304][ T8598] team_slave_1: entered allmulticast mode [ 412.547601][ T8598] bridge0: port 3(team0) entered blocking state [ 412.554366][ T8598] bridge0: port 3(team0) entered forwarding state [ 412.557725][ T5815] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 412.585812][ T11] usb 4-1: Using ep0 maxpacket: 32 [ 412.651073][ T11] usb 4-1: New USB device found, idVendor=0c72, idProduct=000d, bcdDevice=27.9b [ 412.660580][ T11] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 412.668876][ T11] usb 4-1: Product: syz [ 412.673206][ T11] usb 4-1: Manufacturer: syz [ 412.678475][ T11] usb 4-1: SerialNumber: syz [ 412.688476][ T11] usb 4-1: config 0 descriptor?? [ 413.057801][ T5870] usb 2-1: new high-speed USB device number 10 using dummy_hcd [ 413.245449][ T5870] usb 2-1: Using ep0 maxpacket: 16 [ 413.278865][ T5870] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 78, changing to 10 [ 413.291322][ T5870] usb 2-1: New USB device found, idVendor=04d8, idProduct=00df, bcdDevice= 0.00 [ 413.302390][ T5870] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 413.364499][ T11] peak_usb 4-1:0.0 can0: unable to request usb[type=2 value=5] err=-71 [ 413.407595][ T5870] usb 2-1: config 0 descriptor?? [ 413.470061][ T11] peak_usb 4-1:0.0: probe with driver peak_usb failed with error -71 [ 413.544086][ T11] usb 4-1: USB disconnect, device number 9 [ 413.784200][ T8617] loop2: detected capacity change from 0 to 512 [ 413.819619][ T8617] EXT4-fs: Ignoring removed orlov option [ 413.842375][ T8617] EXT4-fs (loop2): mounting ext3 file system using the ext4 subsystem [ 413.863595][ T5870] hid (null): bogus close delimiter [ 413.885249][ T5870] mcp2200 0003:04D8:00DF.0019: bogus close delimiter [ 413.892220][ T5870] mcp2200 0003:04D8:00DF.0019: item 0 4 2 10 parsing failed [ 413.912578][ T5870] mcp2200 0003:04D8:00DF.0019: can't parse reports [ 413.919720][ T5870] mcp2200 0003:04D8:00DF.0019: probe with driver mcp2200 failed with error -22 [ 413.953648][ T8617] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8042c119, mo2=0002] [ 413.990750][ T1290] ieee802154 phy0 wpan0: encryption failed: -22 [ 413.997552][ T1290] ieee802154 phy1 wpan1: encryption failed: -22 [ 414.023305][ T8617] EXT4-fs error (device loop2): ext4_iget_extra_inode:5104: inode #15: comm syz.2.1160: corrupted in-inode xattr: e_value size too large [ 414.070597][ T5870] usb 2-1: USB disconnect, device number 10 [ 414.092065][ T8617] EXT4-fs error (device loop2): ext4_orphan_get:1397: comm syz.2.1160: couldn't read orphan inode 15 (err -117) [ 414.138305][ T8617] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 414.426820][ T5810] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 414.725102][ T5865] usb 5-1: new high-speed USB device number 5 using dummy_hcd [ 414.932303][ T5865] usb 5-1: config 0 interface 0 has no altsetting 0 [ 414.939388][ T5865] usb 5-1: New USB device found, idVendor=0c12, idProduct=0005, bcdDevice= 0.00 [ 414.948882][ T5865] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 415.008472][ T8639] loop1: detected capacity change from 0 to 64 [ 415.036056][ T5865] usb 5-1: config 0 descriptor?? [ 415.103437][ T8641] loop2: detected capacity change from 0 to 256 [ 415.492013][ T5865] zeroplus 0003:0C12:0005.001A: item fetching failed at offset 0/3 [ 415.574434][ T5865] zeroplus 0003:0C12:0005.001A: parse failed [ 415.590256][ T5865] zeroplus 0003:0C12:0005.001A: probe with driver zeroplus failed with error -22 [ 415.694564][ T5865] usb 5-1: USB disconnect, device number 5 [ 416.010642][ T8653] syz_tun: entered promiscuous mode [ 416.016593][ T8653] macvtap1: entered promiscuous mode [ 416.039687][ T8652] loop3: detected capacity change from 0 to 512 [ 416.156656][ T8652] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 416.169975][ T8652] ext4 filesystem being mounted at /248/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 416.421559][ T8652] EXT4-fs error (device loop3): ext4_xattr_block_find:1869: inode #15: comm syz.3.1175: corrupted xattr block 33: invalid ea_ino [ 416.471845][ T8652] EXT4-fs (loop3): Remounting filesystem read-only [ 416.479876][ T8662] program syz.5.1179 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 416.580487][ T8658] loop2: detected capacity change from 0 to 8192 [ 416.731087][ T8659] loop1: detected capacity change from 0 to 4096 [ 416.789646][ T5820] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 416.829835][ T4414] EXT4-fs (loop3): Quota write (off=5120, len=1024) cancelled because transaction is not started [ 416.841464][ T4414] Quota error (device loop3): write_blk: dquota write failed [ 416.847846][ T8659] ntfs3(loop1): try to read out of volume at offset 0x3fffffc0c00 [ 416.849164][ T4414] Quota error (device loop3): remove_free_dqentry: Can't write block (5) with free entries [ 416.857915][ T8659] ntfs3(loop1): try to read out of volume at offset 0x3fffffc0c00 [ 416.867118][ T4414] EXT4-fs (loop3): Quota write (off=5120, len=1024) cancelled because transaction is not started [ 416.867251][ T4414] Quota error (device loop3): write_blk: dquota write failed [ 416.876126][ T8659] ntfs3(loop1): try to read out of volume at offset 0x3fffffc0c00 [ 416.885879][ T4414] Quota error (device loop3): free_dqentry: Can't move quota data block (5) to free list [ 416.886267][ T4414] EXT4-fs (loop3): Quota write (off=8, len=24) cancelled because transaction is not started [ 416.893658][ T8659] ntfs3(loop1): try to read out of volume at offset 0x3fffffc0c00 [ 416.902114][ T4414] Quota error (device loop3): v2_write_file_info: Can't write info structure [ 416.944088][ T8659] ntfs3(loop1): try to read out of volume at offset 0x3fffffc1c00 [ 416.952497][ T8659] ntfs3(loop1): try to read out of volume at offset 0x3fffffc2c00 [ 416.960829][ T8659] ntfs3(loop1): try to read out of volume at offset 0x3fffffc4c00 [ 416.969078][ T8659] ntfs3(loop1): try to read out of volume at offset 0x3fffffc8c00 [ 416.978902][ T8659] ntfs3(loop1): try to read out of volume at offset 0x3fffffd0c00 [ 416.987195][ T8659] ntfs3(loop1): try to read out of volume at offset 0x3fffffe0c00 [ 417.093070][ T8670] netlink: 'syz.5.1181': attribute type 1 has an invalid length. [ 417.412359][ T8674] loop3: detected capacity change from 0 to 16 [ 417.478482][ T8674] erofs (device loop3): mounted with root inode @ nid 36. [ 417.588940][ T8676] trusted_key: encrypted_key: key trusted:syz not found [ 417.622576][ T8674] erofs (device loop3): readahead error at folio 6 @ nid 36 [ 417.644295][ T8674] erofs (device loop3): readahead error at folio 4 @ nid 36 [ 417.655116][ T8674] erofs (device loop3): invalid logical cluster 0 at nid 36 [ 417.662612][ T8674] erofs (device loop3): readahead error at folio 0 @ nid 36 [ 417.671090][ T8674] syz.3.1183: attempt to access beyond end of device [ 417.671090][ T8674] loop3: rw=524288, sector=296, nr_sectors = 16 limit=16 [ 417.685787][ T8674] syz.3.1183: attempt to access beyond end of device [ 417.685787][ T8674] loop3: rw=524288, sector=1049264, nr_sectors = 16 limit=16 [ 417.700422][ T8674] syz.3.1183: attempt to access beyond end of device [ 417.700422][ T8674] loop3: rw=524288, sector=8, nr_sectors = 16 limit=16 [ 417.714481][ T8674] syz.3.1183: attempt to access beyond end of device [ 417.714481][ T8674] loop3: rw=524288, sector=720, nr_sectors = 16 limit=16 [ 417.737076][ T8674] erofs (device loop3): invalid logical cluster 0 at nid 36 [ 417.744988][ T8674] syz.3.1183: attempt to access beyond end of device [ 417.744988][ T8674] loop3: rw=0, sector=296, nr_sectors = 8 limit=16 [ 417.758575][ T8674] erofs (device loop3): read error -5 @ 0 of nid 36 [ 417.765942][ T8674] erofs (device loop3): failed to readdir of logical block 0 of nid 36 [ 417.816029][ T8678] netlink: 'syz.2.1184': attribute type 4 has an invalid length. [ 417.823971][ T8678] netlink: 17 bytes leftover after parsing attributes in process `syz.2.1184'. [ 418.174558][ T8684] loop5: detected capacity change from 0 to 512 [ 418.231079][ T8684] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 418.326825][ T8684] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback. [ 418.341909][ T8684] ext4 filesystem being mounted at /160/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 418.438451][ T8693] loop4: detected capacity change from 0 to 16 [ 418.897505][ T6562] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000d40000. [ 419.619858][ T8704] loop3: detected capacity change from 0 to 4096 [ 419.662051][ T8704] ntfs3(loop3): Different NTFS sector size (4096) and media sector size (512). [ 419.903722][ T8704] ntfs3(loop3): ino=19, mi_enum_attr [ 419.909725][ T8704] ntfs3(loop3): Mark volume as dirty due to NTFS errors [ 420.179864][ T8722] netlink: 'syz.4.1206': attribute type 2 has an invalid length. [ 420.191473][ T8722] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1206'. [ 420.885545][ T8737] loop2: detected capacity change from 0 to 512 [ 420.926227][ T8737] EXT4-fs: Ignoring removed orlov option [ 420.975548][ T8737] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 421.122558][ T8737] EXT4-fs (loop2): 1 orphan inode deleted [ 421.128862][ T8737] EXT4-fs (loop2): 1 truncate cleaned up [ 421.137021][ T8737] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 421.267727][ T8744] loop5: detected capacity change from 0 to 1024 [ 421.347898][ T8744] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 421.360783][ T8744] ext4 filesystem being mounted at /165/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 421.383643][ T8737] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 191 vs 220 free clusters [ 421.467190][ T8737] EXT4-fs (loop2): Remounting filesystem read-only [ 421.474599][ T8737] overlayfs: failed to verify upper root origin [ 421.773860][ T5810] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 421.810796][ T6562] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 421.956405][ T8755] loop4: detected capacity change from 0 to 16 [ 421.996421][ T8755] erofs (device loop4): mounted with root inode @ nid 36. [ 422.801105][ T4414] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 423.033196][ T4414] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 423.103557][ T8774] devpts: Bad value for 'max' [ 423.203999][ T4414] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 423.397368][ T4414] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 423.623296][ T4414] bridge_slave_1: left allmulticast mode [ 423.629475][ T4414] bridge_slave_1: left promiscuous mode [ 423.636289][ T4414] bridge0: port 2(bridge_slave_1) entered disabled state [ 423.653827][ T4414] bridge_slave_0: left allmulticast mode [ 423.660005][ T4414] bridge_slave_0: left promiscuous mode [ 423.675947][ T4414] bridge0: port 1(bridge_slave_0) entered disabled state [ 424.232214][ T4414] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 424.262717][ T4414] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 424.294366][ T4414] bond0 (unregistering): Released all slaves [ 424.438569][ T4414] tipc: Disabling bearer [ 424.444131][ T4414] tipc: Left network mode [ 424.850166][ T4414] hsr_slave_0: left promiscuous mode [ 424.875424][ T4414] hsr_slave_1: left promiscuous mode [ 424.883660][ T4414] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 424.891475][ T4414] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 424.938166][ T4414] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 424.946131][ T4414] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 425.021202][ T4414] batadv0: left promiscuous mode [ 425.028351][ T4414] veth1_macvtap: left promiscuous mode [ 425.034257][ T4414] veth0_macvtap: left promiscuous mode [ 425.040256][ T4414] veth1_vlan: left promiscuous mode [ 425.045937][ T4414] veth0_vlan: left promiscuous mode [ 425.076979][ T8783] loop2: detected capacity change from 0 to 2048 [ 425.571564][ T8783] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 425.739817][ T8788] loop1: detected capacity change from 0 to 512 [ 425.882718][ T50] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 425.892459][ T50] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 425.901854][ T50] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 425.927871][ T8788] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 425.936321][ T50] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 425.941225][ T8788] ext4 filesystem being mounted at /244/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 425.956490][ T50] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 425.993055][ T4414] team0 (unregistering): Port device team_slave_1 removed [ 426.010662][ T8794] loop5: detected capacity change from 0 to 64 [ 426.028767][ T4414] team0 (unregistering): Port device team_slave_0 removed [ 426.706683][ T5815] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 426.756513][ T4414] IPVS: stop unused estimator thread 0... [ 426.991788][ T8803] CUSE: DEVNAME unspecified [ 427.217894][ T24] usb 4-1: new high-speed USB device number 10 using dummy_hcd [ 427.396046][ T8810] tipc: Enabling of bearer rejected, failed to enable media [ 427.418901][ T24] usb 4-1: Using ep0 maxpacket: 32 [ 427.487796][ T24] usb 4-1: config 0 has an invalid interface number: 35 but max is 0 [ 427.499509][ T24] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 427.510451][ T24] usb 4-1: config 0 has no interface number 0 [ 427.516957][ T24] usb 4-1: config 0 interface 35 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1 [ 427.620828][ T24] usb 4-1: New USB device found, idVendor=10c4, idProduct=818a, bcdDevice=7d.ad [ 427.630402][ T24] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 427.638853][ T24] usb 4-1: Product: syz [ 427.643233][ T24] usb 4-1: Manufacturer: syz [ 427.650906][ T24] usb 4-1: SerialNumber: syz [ 427.742474][ T24] usb 4-1: config 0 descriptor?? [ 427.771923][ T24] radio-si470x 4-1:0.35: could not find interrupt in endpoint [ 427.785663][ T24] radio-si470x 4-1:0.35: probe with driver radio-si470x failed with error -5 [ 427.884331][ T8789] chnl_net:caif_netlink_parms(): no params data found [ 427.985507][ T24] radio-raremono 4-1:0.35: Thanko's Raremono connected: (10C4:818A) [ 428.006682][ T8817] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1249'. [ 428.024240][ T5814] Bluetooth: hci0: command tx timeout [ 428.189872][ T24] radio-raremono 4-1:0.35: V4L2 device registered as radio48 [ 428.386748][ T11] usb 4-1: USB disconnect, device number 10 [ 428.393687][ T11] radio-raremono 4-1:0.35: Thanko's Raremono disconnected [ 428.869037][ T8832] netlink: 'syz.1.1255': attribute type 29 has an invalid length. [ 428.905266][ T8832] netlink: 'syz.1.1255': attribute type 29 has an invalid length. [ 429.354027][ T8839] loop1: detected capacity change from 0 to 128 [ 429.409334][ T8789] bridge0: port 1(bridge_slave_0) entered blocking state [ 429.419898][ T8789] bridge0: port 1(bridge_slave_0) entered disabled state [ 429.429612][ T8789] bridge_slave_0: entered allmulticast mode [ 429.439324][ T8789] bridge_slave_0: entered promiscuous mode [ 429.495869][ T8839] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 429.529234][ T8845] loop2: detected capacity change from 0 to 2048 [ 429.548754][ T8789] bridge0: port 2(bridge_slave_1) entered blocking state [ 429.557010][ T8789] bridge0: port 2(bridge_slave_1) entered disabled state [ 429.564989][ T8789] bridge_slave_1: entered allmulticast mode [ 429.574915][ T8789] bridge_slave_1: entered promiscuous mode [ 429.594336][ T8845] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 429.623492][ T8839] ext4 filesystem being mounted at /250/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 429.664648][ T8839] EXT4-fs (loop1): shut down requested (0) [ 429.742243][ T8789] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 429.766197][ T11] usb 4-1: new high-speed USB device number 11 using dummy_hcd [ 429.829197][ T8789] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 429.956315][ T11] usb 4-1: Using ep0 maxpacket: 16 [ 429.973101][ T5815] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 429.997052][ T11] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 430.009315][ T11] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 430.024029][ T11] usb 4-1: New USB device found, idVendor=1532, idProduct=011b, bcdDevice= 0.00 [ 430.034601][ T11] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 430.092669][ T11] usb 4-1: config 0 descriptor?? [ 430.105259][ T5814] Bluetooth: hci0: command tx timeout [ 430.157385][ T8789] team0: Port device team_slave_0 added [ 430.252731][ T8789] team0: Port device team_slave_1 added [ 430.597945][ T11] razer 0003:1532:011B.001B: hidraw0: USB HID v0.00 Device [HID 1532:011b] on usb-dummy_hcd.3-1/input0 [ 430.622001][ T8789] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 430.637652][ T8789] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 430.668427][ T8789] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 430.746438][ T11] usb 4-1: USB disconnect, device number 11 [ 430.771251][ T8789] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 430.779796][ T8789] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 430.810213][ T8789] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 431.295091][ T8789] hsr_slave_0: entered promiscuous mode [ 431.308495][ T8789] hsr_slave_1: entered promiscuous mode [ 431.317454][ T8789] debugfs: 'hsr0' already exists in 'hsr' [ 431.323381][ T8789] Cannot create hsr debugfs directory [ 432.175107][ T5814] Bluetooth: hci0: command tx timeout [ 432.190055][ T8872] loop1: detected capacity change from 0 to 64 [ 432.305642][ T8872] BFS-fs: bfs_fill_super(): loop1 is unclean, continuing [ 432.362452][ T8789] netdevsim netdevsim6 netdevsim0: renamed from eth0 [ 432.465872][ T8789] netdevsim netdevsim6 netdevsim1: renamed from eth1 [ 432.519226][ T8789] netdevsim netdevsim6 netdevsim2: renamed from eth2 [ 432.549391][ T8789] netdevsim netdevsim6 netdevsim3: renamed from eth3 [ 433.487808][ T8789] 8021q: adding VLAN 0 to HW filter on device bond0 [ 433.702553][ T8789] 8021q: adding VLAN 0 to HW filter on device team0 [ 433.780397][ T1874] bridge0: port 1(bridge_slave_0) entered blocking state [ 433.788024][ T1874] bridge0: port 1(bridge_slave_0) entered forwarding state [ 433.899520][ T1874] bridge0: port 2(bridge_slave_1) entered blocking state [ 433.907181][ T1874] bridge0: port 2(bridge_slave_1) entered forwarding state [ 434.282926][ T5814] Bluetooth: hci0: command tx timeout [ 434.592458][ T8905] netlink: 32 bytes leftover after parsing attributes in process `syz.2.1287'. [ 434.601905][ T8905] netlink: 32 bytes leftover after parsing attributes in process `syz.2.1287'. [ 434.870068][ T8907] loop5: detected capacity change from 0 to 2048 [ 435.111001][ T8907] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 435.415851][ T8916] EXT4-fs error (device loop5): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters [ 435.485340][ T8916] EXT4-fs (loop5): Remounting filesystem read-only [ 435.567893][ T6562] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 435.692865][ T8789] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 436.290146][ T8928] program syz.3.1295 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 436.509856][ T8932] loop5: detected capacity change from 0 to 256 [ 437.098586][ T5863] usb 4-1: new high-speed USB device number 12 using dummy_hcd [ 437.300203][ T5863] usb 4-1: Using ep0 maxpacket: 32 [ 437.330768][ T5863] usb 4-1: config 0 has an invalid interface number: 35 but max is 0 [ 437.339363][ T5863] usb 4-1: config 0 has no interface number 0 [ 437.411914][ T5863] usb 4-1: New USB device found, idVendor=10c4, idProduct=818a, bcdDevice=7d.8f [ 437.422236][ T5863] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 437.430620][ T5863] usb 4-1: Product: syz [ 437.434197][ T8947] loop1: detected capacity change from 0 to 256 [ 437.435259][ T5863] usb 4-1: Manufacturer: syz [ 437.435364][ T5863] usb 4-1: SerialNumber: syz [ 437.536322][ T5863] usb 4-1: config 0 descriptor?? [ 437.614203][ T8947] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0xf6e00961, utbl_chksum : 0xe619d30d) [ 437.972181][ T5863] radio-si470x 4-1:0.35: DeviceID=0x3fee ChipID=0x6570 [ 438.181675][ T5863] radio-si470x 4-1:0.35: si470x_get_report: usb_control_msg returned -71 [ 438.190570][ T5863] radio-si470x 4-1:0.35: si470x_get_scratch: si470x_get_report returned -71 [ 438.201055][ T5863] radio-si470x 4-1:0.35: probe with driver radio-si470x failed with error -5 [ 438.277358][ T8789] veth0_vlan: entered promiscuous mode [ 438.305498][ T5863] radio-raremono 4-1:0.35: this is not Thanko's Raremono. [ 438.399254][ T8789] veth1_vlan: entered promiscuous mode [ 438.421331][ T5863] usb 4-1: USB disconnect, device number 12 [ 438.450665][ T8956] x_tables: ip6_tables: quota.0 match: invalid size 24 (kernel) != (user) 144 [ 438.708257][ T8789] veth0_macvtap: entered promiscuous mode [ 438.812920][ T8789] veth1_macvtap: entered promiscuous mode [ 439.006055][ T8789] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 439.079403][ T8789] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 439.183757][ T3579] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 439.199099][ T8966] program syz.3.1312 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 439.262299][ T3579] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 439.313371][ T3579] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 439.380508][ T3579] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 439.608601][ T8973] loop1: detected capacity change from 0 to 256 [ 439.632039][ T8972] loop2: detected capacity change from 0 to 1024 [ 439.654274][ T8970] loop5: detected capacity change from 0 to 1024 [ 439.668808][ T8973] exfat: Deprecated parameter 'namecase' [ 439.675772][ T8973] exfat: Deprecated parameter 'namecase' [ 439.686468][ T8970] EXT4-fs: Ignoring removed orlov option [ 439.686604][ T8972] EXT4-fs (loop2): stripe (3) is not aligned with cluster size (16), stripe is disabled [ 439.692688][ T8970] EXT4-fs: Ignoring removed nomblk_io_submit option [ 439.797798][ T8972] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 439.866557][ T8972] EXT4-fs error (device loop2): ext4_xattr_inode_iget:437: inode #11: comm syz.2.1315: missing EA_INODE flag [ 439.906425][ T8973] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0xdf1a9a6c, utbl_chksum : 0xe619d30d) [ 439.946046][ T8970] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 439.969317][ T8972] EXT4-fs (loop2): Remounting filesystem read-only [ 439.976676][ T8972] EXT4-fs warning (device loop2): ext4_expand_extra_isize_ea:2848: Unable to expand inode 15. Delete some EAs or run e2fsck. [ 440.163132][ T5810] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 440.407916][ T6562] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 441.175532][ T9001] vivid-007: disconnect [ 441.200650][ T9000] vivid-007: reconnect [ 441.803775][ T9011] loop1: detected capacity change from 0 to 512 [ 441.857879][ T9005] loop5: detected capacity change from 0 to 4096 [ 441.891021][ T9011] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 441.932475][ T9005] ntfs3(loop5): Different NTFS sector size (2048) and media sector size (512). [ 442.066153][ T9011] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback. [ 442.079530][ T9011] ext4 filesystem being mounted at /267/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 442.379430][ T30] audit: type=1800 audit(1754408646.821:28): pid=9011 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.1327" name="file1" dev="loop1" ino=18 res=0 errno=0 [ 442.742893][ T5815] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000d40000. [ 443.257515][ T9032] loop5: detected capacity change from 0 to 1024 [ 443.464503][ T9032] hfsplus: bad catalog entry type [ 443.659237][ T9037] tmpfs: Cannot change global quota limit on remount [ 443.758671][ T1874] hfsplus: b-tree write err: -5, ino 4 [ 444.292104][ T9046] loop5: detected capacity change from 0 to 1024 [ 444.699687][ T9047] loop3: detected capacity change from 0 to 4096 [ 444.885985][ T3579] hfsplus: b-tree write err: -5, ino 4 [ 444.911001][ T9056] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 445.091471][ T3579] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 445.099757][ T3579] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 445.262052][ T35] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 445.270925][ T35] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 445.781476][ T9067] netlink: 'syz.3.1346': attribute type 1 has an invalid length. [ 446.402506][ T9075] pim6reg: entered allmulticast mode [ 446.483145][ T9078] (unnamed net_device) (uninitialized): (slave batadv0): Device is not bonding slave [ 446.496195][ T9078] (unnamed net_device) (uninitialized): option active_slave: invalid value (batadv0) [ 446.515015][ T9075] pim6reg: left allmulticast mode [ 447.586366][ T9096] netlink: 24 bytes leftover after parsing attributes in process `syz.6.1362'. [ 448.049290][ T9101] loop1: detected capacity change from 0 to 1024 [ 448.081499][ T9101] EXT4-fs (loop1): stripe (3) is not aligned with cluster size (16), stripe is disabled [ 448.098337][ T9107] bridge: RTM_NEWNEIGH with invalid ether address [ 448.167284][ T9101] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 448.280750][ T5863] usb 6-1: new high-speed USB device number 6 using dummy_hcd [ 448.284297][ T9101] EXT4-fs error (device loop1): ext4_xattr_inode_iget:437: inode #11: comm syz.1.1363: missing EA_INODE flag [ 448.301389][ T9101] EXT4-fs (loop1): Remounting filesystem read-only [ 448.485266][ T5863] usb 6-1: Using ep0 maxpacket: 8 [ 448.521121][ T5815] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 448.547196][ T5863] usb 6-1: config index 0 descriptor too short (expected 30, got 18) [ 448.604302][ T5863] usb 6-1: New USB device found, idVendor=1660, idProduct=0932, bcdDevice=80.ea [ 448.614023][ T5863] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 448.622427][ T5863] usb 6-1: Product: syz [ 448.627019][ T5863] usb 6-1: Manufacturer: syz [ 448.631813][ T5863] usb 6-1: SerialNumber: syz [ 448.747481][ T5863] usb 6-1: config 0 descriptor?? [ 448.794605][ T5863] dvb-usb: found a 'Medion MD95700 (MDUSBTV-HYBRID)' in warm state. [ 448.803165][ T5863] usb 6-1: setting power ON [ 448.807997][ T5863] dvb-usb: bulk message failed: -22 (2/0) [ 448.858099][ T9121] loop1: detected capacity change from 0 to 256 [ 448.897122][ T5863] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer. [ 448.916638][ T9119] loop3: detected capacity change from 0 to 2048 [ 448.946798][ T5863] dvbdev: DVB: registering new adapter (Medion MD95700 (MDUSBTV-HYBRID)) [ 448.955750][ T5863] usb 6-1: media controller created [ 449.000779][ T9105] dvb-usb: bulk message failed: -22 (3/0) [ 449.007730][ T9105] cxusb: i2c wr: len=79 is too big! [ 449.007730][ T9105] [ 449.089847][ T5863] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered. [ 449.115204][ T9119] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 449.401523][ T5863] usb 6-1: selecting invalid altsetting 6 [ 449.408598][ T5863] usb 6-1: digital interface selection failed (-22) [ 449.415697][ T5863] dvb-usb: no frontend was attached by 'Medion MD95700 (MDUSBTV-HYBRID)' [ 449.527744][ T5863] usb 6-1: setting power OFF [ 449.532589][ T5863] dvb-usb: bulk message failed: -22 (2/0) [ 449.541581][ T5863] dvb-usb: Medion MD95700 (MDUSBTV-HYBRID) successfully initialized and connected. [ 449.551551][ T5863] (NULL device *): no alternate interface [ 450.143300][ T5863] dvb-usb: Medion MD95700 (MDUSBTV-HYBRID) successfully deinitialized and disconnected. [ 450.173087][ T5863] usb 6-1: USB disconnect, device number 6 [ 450.442764][ T9137] loop6: detected capacity change from 0 to 256 [ 450.634671][ T9143] netlink: 48 bytes leftover after parsing attributes in process `syz.1.1381'. [ 451.081007][ T9146] loop5: detected capacity change from 0 to 512 [ 451.157562][ T9149] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1384'. [ 451.326270][ T9146] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 451.327405][ T9155] loop6: detected capacity change from 0 to 2048 [ 451.339692][ T9146] ext4 filesystem being mounted at /201/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 451.482804][ T9155] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 451.778730][ T6562] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 453.216353][ T5863] usb 2-1: new high-speed USB device number 11 using dummy_hcd [ 453.385912][ T9190] loop2: detected capacity change from 0 to 64 [ 453.409024][ T5863] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 453.420963][ T5863] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 453.431242][ T5863] usb 2-1: New USB device found, idVendor=27b8, idProduct=01ed, bcdDevice= 0.00 [ 453.440646][ T5863] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 453.587662][ T5863] usb 2-1: config 0 descriptor?? [ 454.259773][ T5863] hid-led 0003:27B8:01ED.001C: probe with driver hid-led failed with error -71 [ 454.332662][ T5863] usb 2-1: USB disconnect, device number 11 [ 454.379044][ T5865] usb 3-1: new high-speed USB device number 7 using dummy_hcd [ 454.555119][ T5865] usb 3-1: Using ep0 maxpacket: 8 [ 454.599127][ T9206] syz.5.1406 uses obsolete (PF_INET,SOCK_PACKET) [ 454.611515][ T5865] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 454.622176][ T5865] usb 3-1: New USB device found, idVendor=046d, idProduct=0892, bcdDevice=6d.2a [ 454.631663][ T5865] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 454.649980][ T9205] Driver unsupported XDP return value 0 on prog (id 60) dev N/A, expect packet loss! [ 454.691486][ T5865] usb 3-1: config 0 descriptor?? [ 454.733896][ T5865] gspca_main: vc032x-2.14.0 probing 046d:0892 [ 454.814447][ T9208] loop6: detected capacity change from 0 to 128 [ 455.027461][ T9208] EXT4-fs (loop6): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 455.095656][ T9208] ext4 filesystem being mounted at /13/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 455.100975][ T9212] loop3: detected capacity change from 0 to 256 [ 455.227127][ T9208] EXT4-fs warning (device loop6): ext4_dirblock_csum_verify:375: inode #2: comm syz.6.1408: No space for directory leaf checksum. Please run e2fsck -D. [ 455.243138][ T9208] EXT4-fs error (device loop6): __ext4_find_entry:1626: inode #2: comm syz.6.1408: checksumming directory block 0 [ 455.267994][ T9208] EXT4-fs warning (device loop6): ext4_dirblock_csum_verify:375: inode #2: comm syz.6.1408: No space for directory leaf checksum. Please run e2fsck -D. [ 455.284153][ T9208] EXT4-fs error (device loop6): __ext4_find_entry:1626: inode #2: comm syz.6.1408: checksumming directory block 0 [ 455.342081][ T5865] gspca_vc032x: reg_r err -71 [ 455.347667][ T5865] vc032x 3-1:0.0: probe with driver vc032x failed with error -71 [ 455.375158][ T5865] usb 3-1: USB disconnect, device number 7 [ 455.470816][ T9212] FAT-fs (loop3): Directory bread(block 64) failed [ 455.479442][ T9212] FAT-fs (loop3): Directory bread(block 65) failed [ 455.490561][ T9212] FAT-fs (loop3): Directory bread(block 66) failed [ 455.498538][ T9212] FAT-fs (loop3): Directory bread(block 67) failed [ 455.507396][ T9212] FAT-fs (loop3): Directory bread(block 68) failed [ 455.521328][ T9212] FAT-fs (loop3): Directory bread(block 69) failed [ 455.533117][ T9212] FAT-fs (loop3): Directory bread(block 70) failed [ 455.540128][ T9212] FAT-fs (loop3): Directory bread(block 71) failed [ 455.547159][ T9212] FAT-fs (loop3): Directory bread(block 72) failed [ 455.553881][ T9212] FAT-fs (loop3): Directory bread(block 73) failed [ 455.639304][ T8789] EXT4-fs (loop6): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 456.893505][ T9239] netlink: 32 bytes leftover after parsing attributes in process `syz.5.1423'. [ 456.893688][ T9239] hsr0: entered promiscuous mode [ 457.539631][ T9248] loop6: detected capacity change from 0 to 512 [ 457.566198][ T9248] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode [ 457.709836][ T9248] EXT4-fs error (device loop6): ext4_free_branches:1023: inode #16: comm syz.6.1427: invalid indirect mapped block 4294967295 (level 0) [ 457.736161][ T9248] EXT4-fs (loop6): Remounting filesystem read-only [ 457.739137][ T9248] EXT4-fs (loop6): 1 orphan inode deleted [ 457.739237][ T9248] EXT4-fs (loop6): 1 truncate cleaned up [ 457.741221][ T9248] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 457.800824][ T9248] EXT4-fs warning (device loop6): ext4_empty_dir:3103: inode #2: comm syz.6.1427: directory missing '..' [ 458.137773][ T8789] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 458.258413][ T9260] loop1: detected capacity change from 0 to 256 [ 458.828894][ T9267] loop2: detected capacity change from 0 to 1024 [ 458.949187][ T9267] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 459.265651][ T5810] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 459.638367][ T9285] loop2: detected capacity change from 0 to 256 [ 459.774528][ T9285] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0x5441951d, utbl_chksum : 0xe619d30d) [ 459.827051][ T9286] loop6: detected capacity change from 0 to 764 [ 459.946152][ T9286] rock: corrupted directory entry. extent=32, offset=2044, size=237 [ 460.454438][ T9298] sd 0:0:1:0: device reset [ 460.573684][ T9300] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1450'. [ 461.099981][ T9308] loop2: detected capacity change from 0 to 256 [ 461.507083][ T9314] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1457'. [ 461.516621][ T9314] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1457'. [ 461.855209][ T5865] usb 7-1: new high-speed USB device number 2 using dummy_hcd [ 462.052328][ T9326] sg_write: data in/out 124/4 bytes for SCSI command 0x1c-- guessing data in; [ 462.052328][ T9326] program syz.3.1461 not setting count and/or reply_len properly [ 462.080433][ T5865] usb 7-1: Using ep0 maxpacket: 32 [ 462.121634][ T5865] usb 7-1: New USB device found, idVendor=0c72, idProduct=000d, bcdDevice=27.9b [ 462.131466][ T5865] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 462.140089][ T9325] netlink: 'syz.5.1460': attribute type 1 has an invalid length. [ 462.140185][ T9325] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1460'. [ 462.140277][ T9325] nbd: illegal input index 65544 [ 462.167977][ T5865] usb 7-1: Product: syz [ 462.172335][ T5865] usb 7-1: Manufacturer: syz [ 462.184284][ T5865] usb 7-1: SerialNumber: syz [ 462.264210][ T5865] usb 7-1: config 0 descriptor?? [ 462.919354][ T5865] peak_usb 7-1:0.0 can0: unable to request usb[type=2 value=5] err=-71 [ 463.002018][ T5865] peak_usb 7-1:0.0: probe with driver peak_usb failed with error -71 [ 463.061300][ T5865] usb 7-1: USB disconnect, device number 2 [ 463.423826][ T9346] loop2: detected capacity change from 0 to 512 [ 464.212970][ T9363] loop5: detected capacity change from 0 to 64 [ 464.585011][ T9368] loop6: detected capacity change from 0 to 256 [ 464.999991][ T9373] loop2: detected capacity change from 0 to 128 [ 465.388069][ T5865] usb 7-1: new high-speed USB device number 3 using dummy_hcd [ 465.577929][ T5865] usb 7-1: Using ep0 maxpacket: 8 [ 465.610762][ T5865] usb 7-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 465.621558][ T5865] usb 7-1: config 1 has 1 interface, different from the descriptor's value: 3 [ 465.710206][ T5865] usb 7-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40 [ 465.719960][ T5865] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 465.728346][ T5865] usb 7-1: Product: syz [ 465.732692][ T5865] usb 7-1: Manufacturer: syz [ 465.740427][ T5865] usb 7-1: SerialNumber: syz [ 465.965857][ T9384] loop1: detected capacity change from 0 to 4096 [ 466.057449][ T9384] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 466.232052][ T9384] EXT4-fs: Cannot change journaled quota options when quota turned on [ 466.319030][ T5865] usb 7-1: cannot find UAC_HEADER [ 466.333957][ T9398] loop2: detected capacity change from 0 to 16 [ 466.388767][ T9398] erofs (device loop2): mounted with root inode @ nid 36. [ 466.409898][ T5865] snd-usb-audio 7-1:1.0: probe with driver snd-usb-audio failed with error -22 [ 466.440540][ T5815] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 466.503064][ T9398] erofs (device loop2): readahead error at folio 6 @ nid 36 [ 466.511434][ T9398] erofs (device loop2): readahead error at folio 4 @ nid 36 [ 466.519884][ T9398] erofs (device loop2): invalid logical cluster 0 at nid 36 [ 466.527527][ T9398] erofs (device loop2): readahead error at folio 0 @ nid 36 [ 466.528488][ T5865] usb 7-1: USB disconnect, device number 3 [ 466.535359][ T9398] syz.2.1495: attempt to access beyond end of device [ 466.535359][ T9398] loop2: rw=524288, sector=296, nr_sectors = 16 limit=16 [ 466.536032][ T9398] syz.2.1495: attempt to access beyond end of device [ 466.536032][ T9398] loop2: rw=524288, sector=1049264, nr_sectors = 16 limit=16 [ 466.570060][ T9398] syz.2.1495: attempt to access beyond end of device [ 466.570060][ T9398] loop2: rw=524288, sector=8, nr_sectors = 16 limit=16 [ 466.587214][ T9398] syz.2.1495: attempt to access beyond end of device [ 466.587214][ T9398] loop2: rw=524288, sector=720, nr_sectors = 16 limit=16 [ 466.602656][ T9398] erofs (device loop2): invalid logical cluster 0 at nid 36 [ 466.610442][ T9398] syz.2.1495: attempt to access beyond end of device [ 466.610442][ T9398] loop2: rw=0, sector=296, nr_sectors = 8 limit=16 [ 466.627638][ T9398] erofs (device loop2): read error -5 @ 0 of nid 36 [ 466.634516][ T9398] erofs (device loop2): failed to readdir of logical block 0 of nid 36 [ 466.810148][ T9400] netlink: 'syz.3.1497': attribute type 4 has an invalid length. [ 466.821656][ T9400] netlink: 17 bytes leftover after parsing attributes in process `syz.3.1497'. [ 467.217927][ T5814] Bluetooth: hci5: command 0x0406 tx timeout [ 467.526204][ T9414] loop1: detected capacity change from 0 to 16 [ 467.572920][ T9413] trusted_key: encrypted_key: key trusted:syz not found [ 468.332128][ T9430] loop3: detected capacity change from 0 to 64 [ 468.455101][ T5865] usb 3-1: new high-speed USB device number 8 using dummy_hcd [ 468.521142][ T9435] loop5: detected capacity change from 0 to 16 [ 468.568186][ T9435] erofs (device loop5): mounted with root inode @ nid 36. [ 468.637695][ T5865] usb 3-1: Using ep0 maxpacket: 16 [ 468.673233][ T5865] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 78, changing to 10 [ 468.684950][ T5865] usb 3-1: New USB device found, idVendor=04d8, idProduct=00df, bcdDevice= 0.00 [ 468.694220][ T5865] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 468.787320][ T5865] usb 3-1: config 0 descriptor?? [ 469.299125][ T5865] hid (null): bogus close delimiter [ 469.380525][ T5865] mcp2200 0003:04D8:00DF.001D: bogus close delimiter [ 469.385796][ T9448] loop1: detected capacity change from 0 to 1024 [ 469.390719][ T5865] mcp2200 0003:04D8:00DF.001D: item 0 4 2 10 parsing failed [ 469.420075][ T9448] EXT4-fs: Ignoring removed nobh option [ 469.426188][ T9448] EXT4-fs: Ignoring removed bh option [ 469.455242][ T5865] mcp2200 0003:04D8:00DF.001D: can't parse reports [ 469.462363][ T5865] mcp2200 0003:04D8:00DF.001D: probe with driver mcp2200 failed with error -22 [ 469.525024][ T9448] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 469.601677][ T5863] usb 3-1: USB disconnect, device number 8 [ 469.710210][ T9454] loop6: detected capacity change from 0 to 512 [ 469.815773][ T9454] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 469.944098][ T9461] loop3: detected capacity change from 0 to 64 [ 470.003159][ T5815] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 470.381678][ T9465] netlink: 72 bytes leftover after parsing attributes in process `syz.5.1525'. [ 470.426289][ T9464] netlink: 'syz.1.1524': attribute type 142 has an invalid length. [ 470.802589][ T8789] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 470.816043][ T9471] loop5: detected capacity change from 0 to 64 [ 471.166257][ T9478] CUSE: DEVNAME unspecified [ 471.587245][ T5105] Bluetooth: hci1: Malformed LE Event: 0x0b [ 471.612709][ T9487] loop5: detected capacity change from 0 to 1024 [ 471.744042][ T9487] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 471.757887][ T9487] ext4 filesystem being mounted at /238/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 472.023627][ T9496] loop3: detected capacity change from 0 to 1024 [ 472.166597][ T9496] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 472.250997][ T6562] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 472.347718][ T5820] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 472.853410][ T9509] loop3: detected capacity change from 0 to 2048 [ 472.898291][ T9509] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 473.206511][ T9506] loop2: detected capacity change from 0 to 4096 [ 473.686865][ T5105] Bluetooth: hci2: unexpected event for opcode 0x2024 [ 473.706586][ T9506] ntfs3(loop2): failed to convert "0000" to iso8859-13 [ 473.759388][ T9506] ntfs3(loop2): failed to convert name for inode 1e. [ 473.798786][ T9506] ntfs3(loop2): ino=1f, mi_enum_attr [ 474.206687][ T9530] netlink: 8 bytes leftover after parsing attributes in process `syz.6.1553'. [ 474.313667][ T9532] loop5: detected capacity change from 0 to 24 [ 474.370020][ T9532] romfs: Mounting image 'rom 637cf1fa' through the block layer [ 474.960975][ T9543] sg_write: data in/out 209152/1 bytes for SCSI command 0xf2-- guessing data in; [ 474.960975][ T9543] program syz.3.1561 not setting count and/or reply_len properly [ 475.267673][ T9550] loop6: detected capacity change from 0 to 1024 [ 475.445917][ T1290] ieee802154 phy0 wpan0: encryption failed: -22 [ 475.452524][ T1290] ieee802154 phy1 wpan1: encryption failed: -22 [ 477.417246][ T30] audit: type=1326 audit(1754408681.861:29): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9586 comm="syz.3.1580" exe="/root/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7f14539 code=0x0 [ 477.545974][ T9591] loop1: detected capacity change from 0 to 1024 [ 478.729805][ T9608] loop5: detected capacity change from 0 to 2048 [ 478.784078][ T9608] NILFS (loop5): broken superblock, retrying with spare superblock (blocksize = 1024) [ 478.883759][ T9612] NILFS (loop5): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 480.159247][ T9626] loop3: detected capacity change from 0 to 4096 [ 480.200476][ T9631] overlay: filesystem on ./cgroup not supported [ 480.332968][ T9633] loop2: detected capacity change from 0 to 512 [ 480.339127][ T9634] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 480.477888][ T9633] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 480.494043][ T9633] ext4 filesystem being mounted at /341/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 480.740737][ T9640] EXT4-fs error (device loop2): ext4_empty_dir:3084: inode #12: comm syz.2.1601: Directory hole found for htree leaf block 0 [ 481.109979][ T5810] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 481.325963][ T5863] usb 4-1: new high-speed USB device number 13 using dummy_hcd [ 481.520188][ T5863] usb 4-1: Using ep0 maxpacket: 8 [ 481.573962][ T5863] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 481.584289][ T5863] usb 4-1: New USB device found, idVendor=17ef, idProduct=6062, bcdDevice= 0.00 [ 481.593769][ T5863] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 481.750316][ T5863] usb 4-1: config 0 descriptor?? [ 482.265622][ T5863] lenovo 0003:17EF:6062.001E: hidraw0: USB HID v0.00 Device [HID 17ef:6062] on usb-dummy_hcd.3-1/input0 [ 482.339451][ T9665] tipc: Enabling of bearer rejected, media not registered [ 482.481497][ T5863] usb 4-1: USB disconnect, device number 13 [ 482.806656][ T9671] loop1: detected capacity change from 0 to 764 [ 482.851826][ T9671] rock: corrupted directory entry. extent=32, offset=2044, size=237 [ 483.032907][ T9675] loop2: detected capacity change from 0 to 8 [ 483.350998][ T9677] loop1: detected capacity change from 0 to 256 [ 483.403804][ T9677] MINIX-fs: mounting file system with errors, running fsck is recommended [ 483.520563][ T9683] loop3: detected capacity change from 0 to 512 [ 483.632418][ T9683] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 483.786615][ T9689] loop5: detected capacity change from 0 to 512 [ 483.807348][ T9689] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode [ 483.858012][ T9689] EXT4-fs (loop5): 1 truncate cleaned up [ 483.868044][ T9689] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 484.069187][ T30] audit: type=1800 audit(1754408688.521:30): pid=9689 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.1625" name="file1" dev="loop5" ino=15 res=0 errno=0 [ 484.728898][ T5820] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 484.828372][ T6562] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 485.200588][ T9713] loop1: detected capacity change from 0 to 1024 [ 485.484549][ T9716] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 485.531190][ T9719] loop5: detected capacity change from 0 to 256 [ 485.559681][ T9710] loop2: detected capacity change from 0 to 4096 [ 485.603012][ T9710] ntfs3(loop2): Different NTFS sector size (1024) and media sector size (512). [ 485.718867][ T1156] hfsplus: b-tree write err: -5, ino 4 [ 485.783433][ T9710] ntfs3(loop2): ino=1a, mi_enum_attr [ 485.789435][ T9710] ntfs3(loop2): Mark volume as dirty due to NTFS errors [ 486.166447][ T9728] netlink: 16 bytes leftover after parsing attributes in process `syz.5.1641'. [ 486.656671][ T9732] mmap: syz.5.1643 (9732): VmData 37376000 exceed data ulimit 0. Update limits or use boot option ignore_rlimit_data. [ 486.721202][ T9725] syz.1.1638 (9725) used greatest stack depth: 2360 bytes left [ 487.623823][ T9752] overlayfs: failed to create directory ./file0/work (errno: 13); mounting read-only [ 487.633774][ T9752] overlayfs: fs on '.' does not support file handles, falling back to index=off,nfs_export=off. [ 488.695304][ T9774] binder: 9773:9774 ioctl c018620b 0 returned -14 [ 488.909862][ T9776] netlink: 64 bytes leftover after parsing attributes in process `syz.2.1664'. [ 489.065778][ T48] hfsplus: b-tree write err: -5, ino 4 [ 489.315141][ T5863] usb 6-1: new high-speed USB device number 7 using dummy_hcd [ 489.496907][ T5863] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 489.511238][ T5863] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 489.522215][ T5863] usb 6-1: New USB device found, idVendor=0926, idProduct=3333, bcdDevice= 0.40 [ 489.531635][ T5863] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 489.641137][ T5863] usb 6-1: config 0 descriptor?? [ 489.786629][ T9784] new mount options do not match the existing superblock, will be ignored [ 490.090077][ T5863] keytouch 0003:0926:3333.001F: fixing up Keytouch IEC report descriptor [ 490.161976][ T5863] input: HID 0926:3333 as /devices/platform/dummy_hcd.5/usb6/6-1/6-1:0.0/0003:0926:3333.001F/input/input11 [ 490.268158][ T5863] keytouch 0003:0926:3333.001F: input,hidraw0: USB HID v0.00 Keyboard [HID 0926:3333] on usb-dummy_hcd.5-1/input0 [ 490.501936][ T5863] usb 6-1: USB disconnect, device number 7 [ 490.557979][ T11] usb 4-1: new high-speed USB device number 14 using dummy_hcd [ 490.745359][ T11] usb 4-1: Using ep0 maxpacket: 8 [ 490.781245][ T11] usb 4-1: config 168 descriptor has 1 excess byte, ignoring [ 490.789228][ T11] usb 4-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11 [ 490.800848][ T11] usb 4-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 490.813038][ T11] usb 4-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 490.828856][ T11] usb 4-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024 [ 490.906569][ T11] usb 4-1: config 168 descriptor has 1 excess byte, ignoring [ 490.914281][ T11] usb 4-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11 [ 490.926697][ T11] usb 4-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 490.939268][ T11] usb 4-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 490.953593][ T11] usb 4-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024 [ 491.101510][ T11] usb 4-1: config 168 descriptor has 1 excess byte, ignoring [ 491.109460][ T11] usb 4-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11 [ 491.121133][ T11] usb 4-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 491.133126][ T11] usb 4-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 491.146062][ T11] usb 4-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024 [ 491.335149][ T11] usb 4-1: string descriptor 0 read error: -22 [ 491.341906][ T11] usb 4-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e [ 491.355607][ T11] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 491.442402][ T11] adutux 4-1:168.0: ADU100 now attached to /dev/usb/adutux0 [ 491.678019][ T5865] usb 4-1: USB disconnect, device number 14 [ 492.222660][ T9824] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1686'. [ 493.383301][ T9845] loop5: detected capacity change from 0 to 512 [ 493.468392][ T9845] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 494.043211][ T6562] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 494.350110][ T9859] sch_tbf: burst 0 is lower than device lo mtu (65550) ! [ 494.719066][ T30] audit: type=1800 audit(1754408699.161:31): pid=9851 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.6.1699" name="file1" dev="tmpfs" ino=391 res=0 errno=0 [ 494.753476][ T9863] loop1: detected capacity change from 0 to 512 [ 494.885741][ T9863] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.1705: bg 0: block 393: padding at end of block bitmap is not set [ 494.907933][ T9863] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6657: Corrupt filesystem [ 494.952191][ T9863] EXT4-fs (loop1): 2 truncates cleaned up [ 494.960306][ T9863] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 495.357661][ T5815] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 495.934948][ T5865] usb 2-1: new high-speed USB device number 12 using dummy_hcd [ 496.089260][ C0] IPv4: Oversized IP packet from 172.20.20.24 [ 496.158228][ T5865] usb 2-1: Using ep0 maxpacket: 8 [ 496.213812][ T5865] usb 2-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0 [ 496.224248][ T5865] usb 2-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0 [ 496.237584][ T5865] usb 2-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32 [ 496.247935][ T5865] usb 2-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 496.261361][ T5865] usb 2-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23 [ 496.278834][ T5865] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 496.637632][ T9890] loop5: detected capacity change from 0 to 1024 [ 496.719668][ T5865] usb 2-1: GET_CAPABILITIES returned 0 [ 496.725657][ T5865] usbtmc 2-1:16.0: can't read capabilities [ 496.891262][ T9890] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 496.906859][ T9890] ext4 filesystem being mounted at /276/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 496.961131][ T5865] usb 2-1: USB disconnect, device number 12 [ 497.084116][ T9890] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.1717: bg 0: block 393: padding at end of block bitmap is not set [ 497.156764][ T9890] EXT4-fs (loop5): Delayed block allocation failed for inode 15 at logical offset 21 with max blocks 43 with error 117 [ 497.170592][ T9890] EXT4-fs (loop5): This should not happen!! Data will be lost [ 497.170592][ T9890] [ 497.516685][ T6562] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 497.624548][ T9905] loop2: detected capacity change from 0 to 512 [ 497.666965][ T9905] EXT4-fs: Ignoring removed bh option [ 497.699299][ T9905] EXT4-fs (loop2): mounting ext3 file system using the ext4 subsystem [ 497.837448][ T9905] EXT4-fs (loop2): 1 truncate cleaned up [ 497.846153][ T9905] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 497.997855][ T9912] netlink: 132 bytes leftover after parsing attributes in process `syz.6.1724'. [ 498.313256][ T5810] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 499.185212][ T11] usb 7-1: new high-speed USB device number 4 using dummy_hcd [ 499.382421][ T11] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 499.393915][ T11] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 499.404117][ T11] usb 7-1: New USB device found, idVendor=27b8, idProduct=01ed, bcdDevice= 0.00 [ 499.413493][ T11] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 499.521135][ T11] usb 7-1: config 0 descriptor?? [ 499.609762][ T9931] loop3: detected capacity change from 0 to 256 [ 499.639603][ T9934] loop2: detected capacity change from 0 to 128 [ 499.685312][ T9937] netlink: 16 bytes leftover after parsing attributes in process `syz.5.1737'. [ 500.167884][ T11] hid-led 0003:27B8:01ED.0020: probe with driver hid-led failed with error -71 [ 500.206314][ T11] usb 7-1: USB disconnect, device number 4 [ 500.351761][ T9941] loop5: detected capacity change from 0 to 128 [ 500.381795][ T9941] FAT-fs (loop5): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 500.457644][ T9941] FAT-fs (loop5): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 500.461178][ T9945] vxcan1: tx address claim with dlc 0 [ 501.316796][ T9956] netlink: 4 bytes leftover after parsing attributes in process `syz.6.1746'. [ 504.005469][ T9998] loop2: detected capacity change from 0 to 512 [ 504.055406][ T9998] EXT4-fs (loop2): VFS: Can't find ext4 filesystem [ 504.377569][T10006] netlink: 8 bytes leftover after parsing attributes in process `syz.6.1768'. [ 505.205442][ T9998] loop2: detected capacity change from 0 to 512 [ 505.231740][ T9998] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended [ 505.241485][ T9998] EXT4-fs (loop2): Couldn't mount because of unsupported optional features (800) [ 505.495559][T10024] netlink: 4 bytes leftover after parsing attributes in process `syz.6.1777'. [ 505.523059][T10024] bridge0: entered promiscuous mode [ 505.529172][T10024] macsec1: entered allmulticast mode [ 505.534842][T10024] bridge0: entered allmulticast mode [ 505.547808][T10024] bridge0: port 3(macsec1) entered blocking state [ 505.554991][T10024] bridge0: port 3(macsec1) entered disabled state [ 505.671098][T10024] bridge0: left allmulticast mode [ 505.676976][T10024] bridge0: left promiscuous mode [ 505.923839][T10030] loop3: detected capacity change from 0 to 16 [ 505.968844][T10030] erofs (device loop3): mounted with root inode @ nid 36. [ 506.088375][T10030] overlayfs: failed to get metacopy (-117) [ 506.107320][ T5863] usb 2-1: new high-speed USB device number 13 using dummy_hcd [ 506.267407][ T5863] usb 2-1: Using ep0 maxpacket: 16 [ 506.294623][ T5863] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 506.309361][ T5863] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 506.320342][ T5863] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 3 [ 506.333571][ T5863] usb 2-1: New USB device found, idVendor=0955, idProduct=7214, bcdDevice=ed.00 [ 506.344522][ T5863] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 506.466413][ T5863] usb 2-1: config 0 descriptor?? [ 506.850659][T10041] loop5: detected capacity change from 0 to 128 [ 506.979698][ T5863] hid_parser_main: 74 callbacks suppressed [ 506.979803][ T5863] shield 0003:0955:7214.0021: unknown main item tag 0x0 [ 506.996525][ T5863] shield 0003:0955:7214.0021: unknown main item tag 0x0 [ 507.003767][ T5863] shield 0003:0955:7214.0021: unknown main item tag 0x0 [ 507.011127][ T5863] shield 0003:0955:7214.0021: unknown main item tag 0x0 [ 507.018840][ T5863] shield 0003:0955:7214.0021: unknown main item tag 0x0 [ 507.097436][T10047] loop2: detected capacity change from 0 to 256 [ 507.108131][T10047] exFAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 507.122136][T10047] exFAT-fs (loop2): Medium has reported failures. Some data may be lost. [ 507.136524][ T5863] input: HID 0955:7214 Haptics as /devices/virtual/input/input12 [ 507.172768][ T5863] shield 0003:0955:7214.0021: Registered Thunderstrike controller [ 507.182240][ T5863] shield 0003:0955:7214.0021: : USB HID v0.00 Device [HID 0955:7214] on usb-dummy_hcd.1-1/input0 [ 507.241377][T10047] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0xe5674ec2, utbl_chksum : 0xe619d30d) [ 507.338324][ T5870] shield 0003:0955:7214.0021: Failed to output Thunderstrike HOSTCMD request HID report due to -EPROTO [ 507.345246][ T30] audit: type=1800 audit(1754408711.791:32): pid=10047 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.1788" name="file1" dev="loop2" ino=1048738 res=0 errno=0 [ 507.353908][ T5863] usb 2-1: USB disconnect, device number 13 [ 507.405134][ T5870] shield 0003:0955:7214.0021: Failed to output Thunderstrike HOSTCMD request HID report due to -EPROTO [ 507.417056][ T5870] shield 0003:0955:7214.0021: Failed to output Thunderstrike HOSTCMD request HID report due to -ENODEV [ 507.430994][ T5870] shield 0003:0955:7214.0021: Failed to output Thunderstrike HOSTCMD request HID report due to -ENODEV [ 508.057520][T10055] loop3: detected capacity change from 0 to 2048 [ 508.679021][T10067] netlink: 'syz.1.1796': attribute type 1 has an invalid length. [ 509.485049][ T5863] usb 7-1: new high-speed USB device number 5 using dummy_hcd [ 509.685564][ T5863] usb 7-1: Using ep0 maxpacket: 16 [ 509.717794][ T5863] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 255, changing to 11 [ 509.729589][ T5863] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 509.742878][ T5863] usb 7-1: New USB device found, idVendor=13ec, idProduct=0006, bcdDevice= 0.00 [ 509.752380][ T5863] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 509.832514][ T5863] usb 7-1: config 0 descriptor?? [ 510.386030][ T5863] zydacron 0003:13EC:0006.0022: hidraw0: USB HID v1f.ff Device [HID 13ec:0006] on usb-dummy_hcd.6-1/input0 [ 510.572033][ T5865] usb 7-1: USB disconnect, device number 5 [ 510.632733][T10094] loop5: detected capacity change from 0 to 128 [ 510.762239][T10094] FAT-fs (loop5): error, invalid access to FAT (entry 0x00000100) [ 510.773278][T10094] FAT-fs (loop5): Filesystem has been set read-only [ 510.780256][T10094] syz.5.1810: attempt to access beyond end of device [ 510.780256][T10094] loop5: rw=524288, sector=2065, nr_sectors = 8 limit=128 [ 510.794546][T10094] FAT-fs (loop5): error, invalid access to FAT (entry 0x00000100) [ 510.805681][T10094] FAT-fs (loop5): error, invalid access to FAT (entry 0x00000100) [ 510.829680][T10099] FAT-fs (loop5): error, corrupted file size (i_pos 548, 512) [ 510.839466][ T5863] IPVS: starting estimator thread 0... [ 510.898263][T10094] syz.5.1810: attempt to access beyond end of device [ 510.898263][T10094] loop5: rw=0, sector=2065, nr_sectors = 8 limit=128 [ 510.945190][ T30] audit: type=1800 audit(1754408715.371:33): pid=10094 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.5.1810" name="file2" dev="loop5" ino=1048740 res=0 errno=0 [ 510.955574][T10101] IPVS: using max 240 ests per chain, 12000 per kthread [ 510.985893][T10094] FAT-fs (loop5): error, invalid access to FAT (entry 0x00000100) [ 511.947189][ T5865] usb 6-1: new high-speed USB device number 8 using dummy_hcd [ 511.955911][ T5863] usb 7-1: new high-speed USB device number 6 using dummy_hcd [ 512.105598][ T5865] usb 6-1: Using ep0 maxpacket: 32 [ 512.125868][ T5863] usb 7-1: Using ep0 maxpacket: 16 [ 512.136014][ T5865] usb 6-1: config 0 has an invalid interface number: 51 but max is 0 [ 512.150295][ T5865] usb 6-1: config 0 has no interface number 0 [ 512.169095][ T5863] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 78, changing to 10 [ 512.183313][ T5863] usb 7-1: New USB device found, idVendor=04d8, idProduct=00df, bcdDevice= 0.00 [ 512.193227][ T5863] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 512.223587][ T5865] usb 6-1: New USB device found, idVendor=061d, idProduct=c150, bcdDevice=ce.6f [ 512.233310][ T5865] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 512.247561][ T5865] usb 6-1: Product: syz [ 512.251936][ T5865] usb 6-1: Manufacturer: syz [ 512.264133][ T5865] usb 6-1: SerialNumber: syz [ 512.287068][ T5863] usb 7-1: config 0 descriptor?? [ 512.389702][ T5865] usb 6-1: config 0 descriptor?? [ 512.430477][ T5865] quatech2 6-1:0.51: Quatech 2nd gen USB to Serial Driver converter detected [ 512.661398][ T5865] usb 6-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB0 [ 512.734482][ T5865] usb 6-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB1 [ 512.786481][ T5863] hid (null): bogus close delimiter [ 512.812435][ T5863] mcp2200 0003:04D8:00DF.0023: bogus close delimiter [ 512.820023][ T5863] mcp2200 0003:04D8:00DF.0023: item 0 4 2 10 parsing failed [ 512.913134][ T5863] mcp2200 0003:04D8:00DF.0023: can't parse reports [ 512.920645][ T5863] mcp2200 0003:04D8:00DF.0023: probe with driver mcp2200 failed with error -22 [ 513.018839][ T5865] usb 7-1: USB disconnect, device number 6 [ 513.107827][ C1] usb 6-1: qt2_read_bulk_callback - non-zero urb status: -71 [ 513.109920][ T5863] usb 6-1: USB disconnect, device number 8 [ 513.161350][ T5863] quatech-serial ttyUSB0: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB0 [ 513.235866][ T5863] quatech-serial ttyUSB1: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB1 [ 513.249880][ T5863] quatech2 6-1:0.51: device disconnected [ 514.114957][T10133] loop1: detected capacity change from 0 to 256 [ 514.158304][T10133] exFAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 514.169806][T10133] exFAT-fs (loop1): Medium has reported failures. Some data may be lost. [ 514.208812][ T5863] kernel write not supported for file /amidi2 (pid: 5863 comm: kworker/0:4) [ 514.326927][T10133] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0xe5674ec2, utbl_chksum : 0xe619d30d) [ 514.476846][ T5863] IPVS: starting estimator thread 0... [ 514.529748][ T30] audit: type=1800 audit(1754408718.971:34): pid=10133 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.1826" name="file1" dev="loop1" ino=1048741 res=0 errno=0 [ 514.595715][T10141] IPVS: using max 192 ests per chain, 9600 per kthread [ 515.652877][T10149] loop3: detected capacity change from 0 to 4096 [ 515.688029][T10149] ntfs3: Unknown parameter '184467440737095516150177777777777777777777700000000000000000000000¤¬”.}ëÇŸžxIÏÏB|–Ô. ’¾‰ùaºø‡©›ä' [ 517.088175][ T5865] usb 4-1: new high-speed USB device number 15 using dummy_hcd [ 517.289877][ T5865] usb 4-1: Using ep0 maxpacket: 16 [ 517.350882][ T5865] usb 4-1: New USB device found, idVendor=17ef, idProduct=721e, bcdDevice=de.06 [ 517.363249][ T5865] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 517.377597][ T5865] usb 4-1: Product: syz [ 517.381986][ T5865] usb 4-1: Manufacturer: syz [ 517.392486][ T5865] usb 4-1: SerialNumber: syz [ 517.502012][ T5865] r8152-cfgselector 4-1: Unknown version 0x0000 [ 517.509163][ T5865] r8152-cfgselector 4-1: config 0 descriptor?? [ 517.768469][ T5865] r8152-cfgselector 4-1: Unknown version 0x0000 [ 517.784276][ T5865] r8152-cfgselector 4-1: bad CDC descriptors [ 517.865940][ T5865] r8152-cfgselector 4-1: USB disconnect, device number 15 [ 519.263067][T10218] netlink: 32 bytes leftover after parsing attributes in process `syz.6.1865'. [ 519.495414][ T5863] usb 6-1: new full-speed USB device number 9 using dummy_hcd [ 519.664602][ T5863] usb 6-1: unable to get BOS descriptor or descriptor too short [ 519.720115][ T5863] usb 6-1: not running at top speed; connect to a high speed hub [ 519.738092][ T5863] usb 6-1: config 1 contains an unexpected descriptor of type 0x1, skipping [ 519.747417][ T5863] usb 6-1: config 1 has an invalid descriptor of length 1, skipping remainder of the config [ 519.758061][ T5863] usb 6-1: config 1 has 1 interface, different from the descriptor's value: 3 [ 519.810306][ T5863] usb 6-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40 [ 519.822414][ T5863] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 519.831568][ T5863] usb 6-1: Product: syz [ 519.836211][ T5863] usb 6-1: Manufacturer: syz [ 519.840983][ T5863] usb 6-1: SerialNumber: syz [ 520.273633][T10227] loop3: detected capacity change from 0 to 256 [ 520.576839][ T5863] usb 6-1: 0:2 : does not exist [ 520.624170][T10227] FAT-fs (loop3): Directory bread(block 64) failed [ 520.634000][T10227] FAT-fs (loop3): Directory bread(block 65) failed [ 520.648234][T10227] FAT-fs (loop3): Directory bread(block 66) failed [ 520.659799][T10227] FAT-fs (loop3): Directory bread(block 67) failed [ 520.666877][T10227] FAT-fs (loop3): Directory bread(block 68) failed [ 520.673583][T10227] FAT-fs (loop3): Directory bread(block 69) failed [ 520.680603][T10227] FAT-fs (loop3): Directory bread(block 70) failed [ 520.690122][T10227] FAT-fs (loop3): Directory bread(block 71) failed [ 520.697305][T10227] FAT-fs (loop3): Directory bread(block 72) failed [ 520.704121][T10227] FAT-fs (loop3): Directory bread(block 73) failed [ 520.787794][ T5863] usb 6-1: USB disconnect, device number 9 [ 521.500921][T10231] loop1: detected capacity change from 0 to 8192 [ 521.756507][T10242] netlink: 71 bytes leftover after parsing attributes in process `syz.5.1877'. [ 522.099779][T10238] loop3: detected capacity change from 0 to 4096 [ 522.550117][T10238] ntfs3(loop3): ino=0, "file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" ni_find_attr [ 522.982401][T10259] loop5: detected capacity change from 0 to 8 [ 523.133616][T10261] netlink: 12 bytes leftover after parsing attributes in process `syz.6.1886'. [ 523.867498][T10267] nbd1: detected capacity change from 0 to 127 [ 523.902111][ T5105] block nbd1: Receive control failed (result -32) [ 524.882727][T10286] vcan0: tx drop: invalid da for name 0x00000000000000c7 [ 525.059806][T10294] loop3: detected capacity change from 0 to 8 [ 525.477244][T10289] loop2: detected capacity change from 0 to 4096 [ 525.559875][T10289] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (16), stripe is disabled [ 525.647194][T10289] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 526.333552][ T5810] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 526.899995][ T35] hfsplus: b-tree write err: -5, ino 4 [ 527.445257][ T5865] kernel write not supported for file /amidi2 (pid: 5865 comm: kworker/1:4) [ 528.457690][T10344] netdevsim netdevsim1 netdevsim0: entered promiscuous mode [ 528.497509][ T5865] usb 7-1: new high-speed USB device number 7 using dummy_hcd [ 528.560381][T10338] loop3: detected capacity change from 0 to 4096 [ 528.560911][T10344] netdevsim netdevsim1 netdevsim0: left promiscuous mode [ 528.632037][T10338] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (16), stripe is disabled [ 528.686051][T10338] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 528.715481][ T5865] usb 7-1: Using ep0 maxpacket: 16 [ 528.735604][ T5865] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 528.751638][ T5865] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 528.761880][ T5865] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 3 [ 528.777999][ T5865] usb 7-1: New USB device found, idVendor=0955, idProduct=7214, bcdDevice=ed.00 [ 528.787508][ T5865] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 528.801005][ T5865] usb 7-1: config 0 descriptor?? [ 529.275021][ T5865] shield 0003:0955:7214.0024: unknown main item tag 0x0 [ 529.282289][ T5865] shield 0003:0955:7214.0024: unknown main item tag 0x0 [ 529.292612][ T5865] shield 0003:0955:7214.0024: unknown main item tag 0x0 [ 529.300114][ T5865] shield 0003:0955:7214.0024: unknown main item tag 0x0 [ 529.307520][ T5865] shield 0003:0955:7214.0024: unknown main item tag 0x0 [ 529.368223][ T5820] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 529.391514][ T5865] input: HID 0955:7214 Haptics as /devices/virtual/input/input14 [ 529.426040][ T5865] shield 0003:0955:7214.0024: Registered Thunderstrike controller [ 529.435317][ T5865] shield 0003:0955:7214.0024: : USB HID v0.00 Device [HID 0955:7214] on usb-dummy_hcd.6-1/input0 [ 529.530974][ T2213] shield 0003:0955:7214.0024: Failed to output Thunderstrike HOSTCMD request HID report due to -EPROTO [ 529.559750][ T5865] usb 7-1: USB disconnect, device number 7 [ 529.577306][ T2213] shield 0003:0955:7214.0024: Failed to output Thunderstrike HOSTCMD request HID report due to -EPROTO [ 529.592453][ T2213] shield 0003:0955:7214.0024: Failed to output Thunderstrike HOSTCMD request HID report due to -ENODEV [ 529.604107][ T2213] shield 0003:0955:7214.0024: Failed to output Thunderstrike HOSTCMD request HID report due to -ENODEV [ 529.950204][ T5863] hid-generic 0000:0000:0000.0025: unknown main item tag 0x0 [ 530.020152][ T5863] hid-generic 0000:0000:0000.0025: hidraw0: HID v0.00 Device [syz1] on syz0 [ 530.033096][T10358] loop2: detected capacity change from 0 to 1024 [ 530.065358][T10358] EXT4-fs: Ignoring removed nomblk_io_submit option [ 530.082322][T10358] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 530.205316][T10362] netlink: 44 bytes leftover after parsing attributes in process `syz.3.1929'. [ 530.228518][T10358] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 530.658225][ T5810] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 530.699741][T10372] loop1: detected capacity change from 0 to 1024 [ 530.972228][ T30] audit: type=1800 audit(1754408735.411:35): pid=10372 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.1936" name="file1" dev="loop1" ino=20 res=0 errno=0 [ 531.170188][ T5863] usb 7-1: new high-speed USB device number 8 using dummy_hcd [ 531.333163][ T68] hfsplus: b-tree write err: -5, ino 4 [ 531.366843][T10382] loop3: detected capacity change from 0 to 512 [ 531.376924][ T5863] usb 7-1: Using ep0 maxpacket: 32 [ 531.398835][ T5863] usb 7-1: config 0 has an invalid interface number: 51 but max is 0 [ 531.407409][ T5863] usb 7-1: config 0 has no interface number 0 [ 531.437721][T10382] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 531.467017][ T5863] usb 7-1: New USB device found, idVendor=061d, idProduct=c150, bcdDevice=ce.6f [ 531.476831][ T5863] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 531.485375][ T5863] usb 7-1: Product: syz [ 531.489733][ T5863] usb 7-1: Manufacturer: syz [ 531.497440][ T5863] usb 7-1: SerialNumber: syz [ 531.529280][ T5863] usb 7-1: config 0 descriptor?? [ 531.551391][T10382] EXT4-fs (loop3): 1 truncate cleaned up [ 531.551664][ T5863] quatech2 7-1:0.51: Quatech 2nd gen USB to Serial Driver converter detected [ 531.560287][T10382] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 531.667860][ T30] audit: type=1800 audit(1754408736.111:36): pid=10382 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.1941" name="file1" dev="loop3" ino=15 res=0 errno=0 [ 531.732859][T10387] loop2: detected capacity change from 0 to 256 [ 531.808153][ T5863] usb 7-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB0 [ 531.877377][ T5863] usb 7-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB1 [ 531.931637][T10387] exFAT-fs (loop2): failed to load upcase table (idx : 0x000104d0, chksum : 0x52218cae, utbl_chksum : 0xe619d30d) [ 531.983670][T10389] netlink: 830 bytes leftover after parsing attributes in process `syz.1.1943'. [ 532.076171][T10387] exFAT-fs (loop2): error, invalid access to FAT free cluster (entry 0x00000008) [ 532.087913][T10387] exFAT-fs (loop2): Filesystem has been set read-only [ 532.293657][ C0] usb 7-1: qt2_read_bulk_callback - non-zero urb status: -71 [ 532.297451][ T5865] usb 7-1: USB disconnect, device number 8 [ 532.363351][ T5865] quatech-serial ttyUSB0: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB0 [ 532.407658][ T5865] quatech-serial ttyUSB1: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB1 [ 532.428927][ T5865] quatech2 7-1:0.51: device disconnected [ 532.531639][ T5820] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 533.018553][T10399] netlink: 864 bytes leftover after parsing attributes in process `syz.1.1949'. [ 533.182365][T10402] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1950'. [ 533.251079][T10402] netlink: 173 bytes leftover after parsing attributes in process `syz.2.1950'. [ 533.913993][T10412] netlink: 32 bytes leftover after parsing attributes in process `syz.2.1955'. [ 533.925433][T10412] netlink: 32 bytes leftover after parsing attributes in process `syz.2.1955'. [ 535.033902][T10431] loop1: detected capacity change from 0 to 1024 [ 535.181482][T10433] program syz.6.1966 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 535.420300][T10439] loop3: detected capacity change from 0 to 2048 [ 535.512406][T10439] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 535.614594][T10439] UDF-fs: error (device loop3): udf_verify_fi: directory (ino 1376) has entry where CRC length (28) does not match entry length (24) [ 535.720212][T10442] sp0: Synchronizing with TNC [ 536.202304][T10448] netlink: 64 bytes leftover after parsing attributes in process `syz.1.1973'. [ 536.666915][ T5863] usb 3-1: new high-speed USB device number 9 using dummy_hcd [ 536.845780][ T1290] ieee802154 phy0 wpan0: encryption failed: -22 [ 536.852606][ T1290] ieee802154 phy1 wpan1: encryption failed: -22 [ 536.876046][ T5863] usb 3-1: Using ep0 maxpacket: 16 [ 536.932236][ T5863] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 536.944310][ T5863] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 536.955566][ T5863] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 3 [ 536.969653][ T5863] usb 3-1: New USB device found, idVendor=0955, idProduct=7214, bcdDevice=ed.00 [ 536.979296][ T5863] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 537.091374][ T5863] usb 3-1: config 0 descriptor?? [ 537.648396][T10472] loop3: detected capacity change from 0 to 512 [ 537.674379][ T5863] shield 0003:0955:7214.0026: unknown main item tag 0x0 [ 537.682126][ T5863] shield 0003:0955:7214.0026: unknown main item tag 0x0 [ 537.689633][ T5863] shield 0003:0955:7214.0026: unknown main item tag 0x0 [ 537.697012][ T5863] shield 0003:0955:7214.0026: unknown main item tag 0x0 [ 537.704241][ T5863] shield 0003:0955:7214.0026: unknown main item tag 0x0 [ 537.786039][ T5863] input: HID 0955:7214 Haptics as /devices/virtual/input/input15 [ 537.818161][T10472] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 537.822403][ T5863] shield 0003:0955:7214.0026: Registered Thunderstrike controller [ 537.839792][ T5863] shield 0003:0955:7214.0026: : USB HID v0.00 Device [HID 0955:7214] on usb-dummy_hcd.2-1/input0 [ 537.924851][ T11] shield 0003:0955:7214.0026: Failed to output Thunderstrike HOSTCMD request HID report due to -EPROTO [ 537.941279][ T5863] usb 3-1: USB disconnect, device number 9 [ 537.961917][ T11] shield 0003:0955:7214.0026: Failed to output Thunderstrike HOSTCMD request HID report due to -EPROTO [ 537.973651][ T11] shield 0003:0955:7214.0026: Failed to output Thunderstrike HOSTCMD request HID report due to -ENODEV [ 537.985731][ T11] shield 0003:0955:7214.0026: Failed to output Thunderstrike HOSTCMD request HID report due to -ENODEV [ 538.338171][ T5820] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 539.797592][T10492] loop5: detected capacity change from 0 to 8192 [ 540.239788][T10492] FAT-fs (loop5): error, fat_get_cluster: invalid cluster chain (i_pos 2068) [ 540.249351][T10492] FAT-fs (loop5): Filesystem has been set read-only [ 540.285370][T10492] FAT-fs (loop5): error, fat_free: invalid cluster chain (i_pos 2068) [ 540.297783][T10492] FAT-fs (loop5): error, fat_free: invalid cluster chain (i_pos 2068) [ 540.447906][ T5865] usb 4-1: new high-speed USB device number 16 using dummy_hcd [ 540.624293][ T5865] usb 4-1: Using ep0 maxpacket: 16 [ 540.672979][ T5865] usb 4-1: config 0 interface 0 altsetting 2 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 540.684342][ T5865] usb 4-1: config 0 interface 0 altsetting 2 endpoint 0x81 has invalid wMaxPacketSize 0 [ 540.694425][ T5865] usb 4-1: config 0 interface 0 has no altsetting 0 [ 540.704224][ T5865] usb 4-1: New USB device found, idVendor=056a, idProduct=0331, bcdDevice= 0.00 [ 540.720087][ T5865] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 540.798051][T10519] netlink: 44 bytes leftover after parsing attributes in process `syz.1.2004'. [ 540.850084][ T5865] usb 4-1: config 0 descriptor?? [ 541.213812][T10524] ===================================================== [ 541.221302][T10524] BUG: KMSAN: uninit-value in eth_type_trans+0x69d/0x9a0 [ 541.228789][T10524] eth_type_trans+0x69d/0x9a0 [ 541.233747][T10524] __dev_forward_skb2+0x4b1/0x950 [ 541.239118][T10524] dev_forward_skb_nomtu+0x3b/0xe0 [ 541.244422][T10524] __bpf_redirect+0x14d6/0x1760 [ 541.249873][T10524] bpf_clone_redirect+0x366/0x530 [ 541.255270][T10524] ___bpf_prog_run+0x1297/0xeba0 [ 541.260374][T10524] __bpf_prog_run512+0xc5/0x100 [ 541.265609][T10524] bpf_test_run+0x353/0xab0 [ 541.270383][T10524] bpf_prog_test_run_skb+0x19f8/0x26c0 [ 541.276196][T10524] bpf_prog_test_run+0x5bf/0xa40 [ 541.281353][T10524] __sys_bpf+0x89a/0xed0 [ 541.285918][T10524] __ia32_sys_bpf+0xa4/0xf0 [ 541.290629][T10524] ia32_sys_call+0xadf/0x4310 [ 541.295633][T10524] __do_fast_syscall_32+0xb0/0x150 [ 541.301026][T10524] do_fast_syscall_32+0x38/0x80 [ 541.306174][T10524] do_SYSENTER_32+0x1f/0x30 [ 541.309158][ T5865] hid (null): nested delimiters [ 541.310821][T10524] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 541.315854][ T5865] hid (null): global environment stack underflow [ 541.328822][T10524] [ 541.331281][T10524] Uninit was created at: [ 541.335919][T10524] kmem_cache_alloc_node_noprof+0x818/0xf00 [ 541.342027][T10524] kmalloc_reserve+0x13c/0x4b0 [ 541.347136][T10524] pskb_expand_head+0x1fc/0x1610 [ 541.352277][T10524] skb_ensure_writable+0x44e/0x510 [ 541.357686][T10524] bpf_clone_redirect+0x1c1/0x530 [ 541.362894][T10524] ___bpf_prog_run+0x1297/0xeba0 [ 541.368120][T10524] __bpf_prog_run512+0xc5/0x100 [ 541.373110][T10524] bpf_test_run+0x353/0xab0 [ 541.377929][T10524] bpf_prog_test_run_skb+0x19f8/0x26c0 [ 541.383623][T10524] bpf_prog_test_run+0x5bf/0xa40 [ 541.388869][T10524] __sys_bpf+0x89a/0xed0 [ 541.393247][T10524] __ia32_sys_bpf+0xa4/0xf0 [ 541.398120][T10524] ia32_sys_call+0xadf/0x4310 [ 541.402931][T10524] __do_fast_syscall_32+0xb0/0x150 [ 541.408328][T10524] do_fast_syscall_32+0x38/0x80 [ 541.413389][T10524] do_SYSENTER_32+0x1f/0x30 [ 541.418155][T10524] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 541.424822][T10524] [ 541.427284][T10524] CPU: 0 UID: 0 PID: 10524 Comm: syz.6.2005 Not tainted 6.16.0-syzkaller-11489-gd2eedaa3909b #0 PREEMPT(none) [ 541.439395][T10524] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 541.449794][T10524] ===================================================== [ 541.457003][T10524] Disabling lock debugging due to kernel taint [ 541.463317][T10524] Kernel panic - not syncing: kmsan.panic set ... [ 541.469894][T10524] CPU: 0 UID: 0 PID: 10524 Comm: syz.6.2005 Tainted: G B 6.16.0-syzkaller-11489-gd2eedaa3909b #0 PREEMPT(none) [ 541.483477][T10524] Tainted: [B]=BAD_PAGE [ 541.487725][T10524] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 541.497908][T10524] Call Trace: [ 541.501290][T10524] [ 541.504306][T10524] __dump_stack+0x26/0x30 [ 541.508831][T10524] dump_stack_lvl+0x53/0x270 [ 541.513574][T10524] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 541.519549][T10524] dump_stack+0x1e/0x25 [ 541.523881][T10524] vpanic+0x361/0xc50 [ 541.528042][T10524] panic+0x15d/0x160 [ 541.532179][T10524] kmsan_report+0x31c/0x320 [ 541.536864][T10524] ? bpf_prog_test_run+0x5bf/0xa40 [ 541.542119][T10524] ? __msan_warning+0x1b/0x30 [ 541.546946][T10524] ? eth_type_trans+0x69d/0x9a0 [ 541.551986][T10524] ? __dev_forward_skb2+0x4b1/0x950 [ 541.557354][T10524] ? dev_forward_skb_nomtu+0x3b/0xe0 [ 541.562804][T10524] ? __bpf_redirect+0x14d6/0x1760 [ 541.568002][T10524] ? bpf_clone_redirect+0x366/0x530 [ 541.573426][T10524] ? ___bpf_prog_run+0x1297/0xeba0 [ 541.578658][T10524] ? __bpf_prog_run512+0xc5/0x100 [ 541.583843][T10524] ? bpf_test_run+0x353/0xab0 [ 541.588678][T10524] ? bpf_prog_test_run_skb+0x19f8/0x26c0 [ 541.594501][T10524] ? bpf_prog_test_run+0x5bf/0xa40 [ 541.599759][T10524] ? __sys_bpf+0x89a/0xed0 [ 541.604322][T10524] ? __ia32_sys_bpf+0xa4/0xf0 [ 541.609203][T10524] ? ia32_sys_call+0xadf/0x4310 [ 541.614182][T10524] ? __do_fast_syscall_32+0xb0/0x150 [ 541.619616][T10524] ? do_fast_syscall_32+0x38/0x80 [ 541.624786][T10524] ? do_SYSENTER_32+0x1f/0x30 [ 541.629596][T10524] ? entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 541.636279][T10524] ? kmem_cache_alloc_node_noprof+0x41/0xf00 [ 541.642447][T10524] ? kmsan_get_metadata+0xfb/0x160 [ 541.647755][T10524] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 541.653754][T10524] ? __pfx_eth_type_trans+0x1/0x10 [ 541.659082][T10524] ? filter_irq_stacks+0x49/0x190 [ 541.664299][T10524] ? stack_depot_save_flags+0x35/0x7b0 [ 541.669941][T10524] ? kmsan_get_metadata+0xfb/0x160 [ 541.675217][T10524] ? kmsan_get_metadata+0xfb/0x160 [ 541.680495][T10524] ? kmsan_internal_set_shadow_origin+0x79/0x110 [ 541.687041][T10524] ? kmsan_get_metadata+0xfb/0x160 [ 541.692324][T10524] __msan_warning+0x1b/0x30 [ 541.696996][T10524] eth_type_trans+0x69d/0x9a0 [ 541.701899][T10524] __dev_forward_skb2+0x4b1/0x950 [ 541.707081][T10524] ? pskb_expand_head+0x1268/0x1610 [ 541.712556][T10524] dev_forward_skb_nomtu+0x3b/0xe0 [ 541.717881][T10524] __bpf_redirect+0x14d6/0x1760 [ 541.722953][T10524] ? kmsan_get_metadata+0xfb/0x160 [ 541.728243][T10524] bpf_clone_redirect+0x366/0x530 [ 541.733493][T10524] ___bpf_prog_run+0x1297/0xeba0 [ 541.738642][T10524] __bpf_prog_run512+0xc5/0x100 [ 541.743677][T10524] ? kmsan_internal_set_shadow_origin+0x79/0x110 [ 541.750276][T10524] ? kmsan_get_metadata+0xfb/0x160 [ 541.755560][T10524] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 541.761541][T10524] ? __local_bh_enable_ip+0x91/0xb0 [ 541.766912][T10524] ? filter_irq_stacks+0x49/0x190 [ 541.772218][T10524] ? stack_depot_save_flags+0x35/0x7b0 [ 541.777849][T10524] ? kmsan_get_metadata+0xfb/0x160 [ 541.783157][T10524] ? kmsan_get_metadata+0xfb/0x160 [ 541.788455][T10524] ? kmsan_get_metadata+0xfb/0x160 [ 541.793745][T10524] ? kmsan_get_metadata+0xfb/0x160 [ 541.799023][T10524] ? kmsan_internal_set_shadow_origin+0x79/0x110 [ 541.805586][T10524] ? kmsan_get_metadata+0x150/0x160 [ 541.810955][T10524] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 541.816930][T10524] ? __pfx___bpf_prog_run512+0x10/0x10 [ 541.822555][T10524] ? __pfx___bpf_prog_run512+0x10/0x10 [ 541.828173][T10524] bpf_test_run+0x353/0xab0 [ 541.832838][T10524] ? kmsan_get_metadata+0xfb/0x160 [ 541.838125][T10524] ? kmsan_get_metadata+0xfb/0x160 [ 541.843433][T10524] ? kmsan_get_metadata+0xfb/0x160 [ 541.848701][T10524] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 541.854690][T10524] ? bpf_test_run+0x1b0/0xab0 [ 541.859584][T10524] bpf_prog_test_run_skb+0x19f8/0x26c0 [ 541.865273][T10524] ? __pfx_bpf_prog_test_run_skb+0x10/0x10 [ 541.871267][T10524] bpf_prog_test_run+0x5bf/0xa40 [ 541.876385][T10524] __sys_bpf+0x89a/0xed0 [ 541.880899][T10524] __ia32_sys_bpf+0xa4/0xf0 [ 541.885607][T10524] ia32_sys_call+0xadf/0x4310 [ 541.890444][T10524] __do_fast_syscall_32+0xb0/0x150 [ 541.895747][T10524] do_fast_syscall_32+0x38/0x80 [ 541.900785][T10524] do_SYSENTER_32+0x1f/0x30 [ 541.905432][T10524] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 541.911956][T10524] RIP: 0023:0xf7f37539 [ 541.916139][T10524] Code: 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 [ 541.935935][T10524] RSP: 002b:00000000f505655c EFLAGS: 00000206 ORIG_RAX: 0000000000000165 [ 541.944512][T10524] RAX: ffffffffffffffda RBX: 000000000000000a RCX: 0000000080000240 [ 541.952614][T10524] RDX: 0000000000000023 RSI: 0000000000000000 RDI: 0000000000000000 [ 541.960714][T10524] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 541.968811][T10524] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000 [ 541.976938][T10524] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 541.985094][T10524] [ 541.988657][T10524] Kernel Offset: disabled [ 541.993046][T10524] Rebooting in 86400 seconds..