last executing test programs: 9m44.989955716s ago: executing program 2 (id=5916): r0 = syz_open_dev$usbfs(&(0x7f0000000100), 0x76, 0x101b01) ioctl$USBDEVFS_DISCSIGNAL(r0, 0x8010550e, 0x0) 9m44.711245954s ago: executing program 2 (id=5920): r0 = socket$inet6(0xa, 0x800000000000002, 0x0) setsockopt$inet6_int(r0, 0x29, 0x31, 0x0, 0x0) 9m44.537333153s ago: executing program 2 (id=5923): r0 = socket$inet6_sctp(0xa, 0x1, 0x84) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x50, &(0x7f0000000140)={0x0, 0x0}, 0x10) 9m44.192591939s ago: executing program 2 (id=5928): syz_mount_image$udf(&(0x7f0000000080), &(0x7f0000000000)='./file1\x00', 0x4040, &(0x7f00000015c0)=ANY=[@ANYBLOB='lastblock=00000000000000000000,umask=00000000000000000000002,dmode=00000000000000000077777,novrs,shortad,shortad,undelete,iocharset=cp437,shortad,umask=00000000000000000000006,dmode=00000000000000000000011,fileset=00000000000000000011,uid=', @ANYRES64=0x0, @ANYRES32=0x0, @ANYBLOB="cdf7c0c4ada580d5d36bd90806b670b73bb5112f75ca483652cf9b8a22555c3af34a84c5747ac51aa890ca205a0f27d7dde81ad3a01f21810b6de2d56be05416c54e1c6e8459e1643b129327581f7716b38db3d3f3bbeb6d1b846a2aad654e17ff850a1f82ac738387d9c3009d18eb2a78258fcc4ac4eb6a12a5650e10ebf077d9ab33f24de7cbffe0", @ANYRESHEX], 0x2, 0xc33, &(0x7f0000001780)="$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") mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000180), 0x0, &(0x7f0000000200)={[{@metacopy_on}, {@lowerdir={'lowerdir', 0x3d, './file0'}, 0x3a}], [], 0x2f}) 9m43.482785008s ago: executing program 2 (id=5938): r0 = syz_open_dev$vim2m(&(0x7f0000000000), 0x4541b6bf, 0x2) ioctl$vim2m_VIDIOC_S_CTRL(r0, 0xc008561c, &(0x7f0000000080)={0xf0f004, 0x4}) 9m42.451965016s ago: executing program 2 (id=5952): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000001940)=@newtaction={0xe98, 0x30, 0x871a15abc695fa3d, 0x0, 0x0, {}, [{0xe84, 0x1, [@m_pedit={0xe80, 0x1, 0x0, 0x0, {{0xa}, {0xe54, 0x2, 0x0, 0x1, [@TCA_PEDIT_PARMS={0xe50, 0x2, {{{}, 0x97, 0x0, [{0x0, 0x0, 0x9c}, {}]}, [{}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x100}, {0x448eade7}, {0x0, 0x0, 0x80000000}, {0x0, 0x0, 0x0, 0x7, 0x5}, {0x0, 0x0, 0x0, 0x2000}, {0x0, 0x0, 0x0, 0x0, 0x400}, {}, {0x0, 0x400}, {}, {0x0, 0x1, 0x0, 0x0, 0xfffffffe, 0x8001}, {}, {}, {}, {}, {}, {}, {0x0, 0x3, 0x0, 0x0, 0x0, 0x9}, {}, {0x0, 0x0, 0x100}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, {0xfffffffc}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0xfff}, {0x0, 0x4, 0x0, 0x0, 0xffffffff}, {}, {0x0, 0x0, 0x0, 0x1}, {0x0, 0x4000bf}, {}, {0x0, 0x0, 0x0, 0x0, 0x100}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x6}, {}, {}, {}, {0x7}, {0xfffffffe}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, {0xd5}, {}, {0x0, 0x0, 0x0, 0xffffffff}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x8000000}, {0x0, 0x0, 0x0, 0xfffffffe}, {}, {0x0, 0x0, 0x0, 0x1}, {}, {}, {0x0, 0x10}, {0x0, 0x0, 0x0, 0x0, 0x0, 0xe6f1}, {}, {0x0, 0x0, 0x0, 0x0, 0x3e0d905c, 0x6}, {0x0, 0x0, 0xfffffffc}, {}, {0x0, 0x0, 0x0, 0x3}, {}, {0x0, 0x0, 0x0, 0x6}, {0x0, 0x5, 0x0, 0x2}, {0x0, 0x0, 0x0, 0x0, 0x57, 0xffffffff}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x8000000}, {0x0, 0x0, 0x0, 0x5}, {}, {0xffffffff}, {}, {}, {}, {}, {0x0, 0x8, 0x0, 0x4}, {}, {0x0, 0x0, 0x0, 0x2}, {}, {0xfffffffe, 0x0, 0x0, 0x0, 0x0, 0xfffffffe}, {0x0, 0x800000}, {0xfffffffe}, {0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb}, {}, {}, {}, {}, {0x4}, {}, {0xa7}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffa}, {0x0, 0x0, 0x1000}, {}, {0xd2, 0x0, 0x0, 0x0, 0x0, 0x20000000}, {}, {0x0, 0x0, 0x0, 0x0, 0x8}, {}, {0x4, 0x0, 0x0, 0x0, 0x1}, {}, {0x0, 0x9}, {}, {0x0, 0x0, 0x0, 0x0, 0x2}, {}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, {}, {0x0, 0x1000000}, {}, {0x0, 0x0, 0x0, 0x3}, {}, {0x0, 0x1}, {0x0, 0x0, 0x0, 0x0, 0x10000000}, {}, {}, {0x0, 0x1}, {}, {0x523e, 0xfffffffe}, {}, {0x4, 0x0, 0x0, 0x10}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0xb}], [{}, {}, {}, {}, {}, {}, {0x3}, {}, {}, {}, {}, {}, {}, {0x2}, {}, {}, {}, {}, {}, {}, {}, {0x3}, {}, {}, {}, {}, {}, {0x4}, {0x0, 0x1}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x1}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x4}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x1}, {0x0, 0x1}, {}, {}, {}, {0x5}, {}, {}, {}, {0x5}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x1}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x1}, {}, {0x3}, {}, {}, {}, {}, {}, {}, {0x2}, {0x2}, {0x0, 0x1}, {}, {}, {}, {}, {0x0, 0x1}, {0x1}, {}, {}, {}, {}, {0x0, 0x1}]}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xe98}, 0x1, 0x0, 0x0, 0x4008000}, 0x0) 9m41.716385849s ago: executing program 32 (id=5952): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000001940)=@newtaction={0xe98, 0x30, 0x871a15abc695fa3d, 0x0, 0x0, {}, [{0xe84, 0x1, [@m_pedit={0xe80, 0x1, 0x0, 0x0, {{0xa}, {0xe54, 0x2, 0x0, 0x1, [@TCA_PEDIT_PARMS={0xe50, 0x2, {{{}, 0x97, 0x0, [{0x0, 0x0, 0x9c}, {}]}, [{}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x100}, {0x448eade7}, {0x0, 0x0, 0x80000000}, {0x0, 0x0, 0x0, 0x7, 0x5}, {0x0, 0x0, 0x0, 0x2000}, {0x0, 0x0, 0x0, 0x0, 0x400}, {}, {0x0, 0x400}, {}, {0x0, 0x1, 0x0, 0x0, 0xfffffffe, 0x8001}, {}, {}, {}, {}, {}, {}, {0x0, 0x3, 0x0, 0x0, 0x0, 0x9}, {}, {0x0, 0x0, 0x100}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, {0xfffffffc}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0xfff}, {0x0, 0x4, 0x0, 0x0, 0xffffffff}, {}, {0x0, 0x0, 0x0, 0x1}, {0x0, 0x4000bf}, {}, {0x0, 0x0, 0x0, 0x0, 0x100}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x6}, {}, {}, {}, {0x7}, {0xfffffffe}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, {0xd5}, {}, {0x0, 0x0, 0x0, 0xffffffff}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x8000000}, {0x0, 0x0, 0x0, 0xfffffffe}, {}, {0x0, 0x0, 0x0, 0x1}, {}, {}, {0x0, 0x10}, {0x0, 0x0, 0x0, 0x0, 0x0, 0xe6f1}, {}, {0x0, 0x0, 0x0, 0x0, 0x3e0d905c, 0x6}, {0x0, 0x0, 0xfffffffc}, {}, {0x0, 0x0, 0x0, 0x3}, {}, {0x0, 0x0, 0x0, 0x6}, {0x0, 0x5, 0x0, 0x2}, {0x0, 0x0, 0x0, 0x0, 0x57, 0xffffffff}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x8000000}, {0x0, 0x0, 0x0, 0x5}, {}, {0xffffffff}, {}, {}, {}, {}, {0x0, 0x8, 0x0, 0x4}, {}, {0x0, 0x0, 0x0, 0x2}, {}, {0xfffffffe, 0x0, 0x0, 0x0, 0x0, 0xfffffffe}, {0x0, 0x800000}, {0xfffffffe}, {0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb}, {}, {}, {}, {}, {0x4}, {}, {0xa7}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffa}, {0x0, 0x0, 0x1000}, {}, {0xd2, 0x0, 0x0, 0x0, 0x0, 0x20000000}, {}, {0x0, 0x0, 0x0, 0x0, 0x8}, {}, {0x4, 0x0, 0x0, 0x0, 0x1}, {}, {0x0, 0x9}, {}, {0x0, 0x0, 0x0, 0x0, 0x2}, {}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, {}, {0x0, 0x1000000}, {}, {0x0, 0x0, 0x0, 0x3}, {}, {0x0, 0x1}, {0x0, 0x0, 0x0, 0x0, 0x10000000}, {}, {}, {0x0, 0x1}, {}, {0x523e, 0xfffffffe}, {}, {0x4, 0x0, 0x0, 0x10}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0xb}], [{}, {}, {}, {}, {}, {}, {0x3}, {}, {}, {}, {}, {}, {}, {0x2}, {}, {}, {}, {}, {}, {}, {}, {0x3}, {}, {}, {}, {}, {}, {0x4}, {0x0, 0x1}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x1}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x4}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x1}, {0x0, 0x1}, {}, {}, {}, {0x5}, {}, {}, {}, {0x5}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x1}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x1}, {}, {0x3}, {}, {}, {}, {}, {}, {}, {0x2}, {0x2}, {0x0, 0x1}, {}, {}, {}, {}, {0x0, 0x1}, {0x1}, {}, {}, {}, {}, {0x0, 0x1}]}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xe98}, 0x1, 0x0, 0x0, 0x4008000}, 0x0) 9m25.457135493s ago: executing program 1 (id=6126): r0 = socket$nl_audit(0x10, 0x3, 0x9) close_range(r0, r0, 0x6) 9m25.037414944s ago: executing program 1 (id=6129): syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000000)='./file0\x00', 0x40, &(0x7f0000000100)={[{@errors_remount}, {@errors_remount}]}, 0x84, 0x4d7, &(0x7f0000000700)="$eJzs3MtvG8UfAPDvOo82vya/hPLsAxooiIhH0qTPAxcQSL0ggYpQEaeQpFVp2qImSG0VkYBQOaL+BcARib+AE1wQcAJxBXFFSBXKpYUDWrT2OnVix3Wa2Kb485GczOzO7s7szCQ7M1oH0LGGsx9JRH9E/BwRg6Xo6gTDpV83lxem/lxemEoiTU/8kRTT3VhemConLR+3I4+MFCIKHyaxp8Z15y5fOTs5OztzMY+PzZ97Z2zu8pVnz5ybPD1zeub8xLFjhw72HT0ycXhLyjmQ5XX3exf27jr+xrWXp05ee+u7L7L8pvn+7VVHDG3wCl1VW4ZjePW9rPDEBs/+bzdQEU6625gRNiRrtVl19RT7/2B0xa3KG4yXPmhr5oCmStM03Va1deV/2VJaKUlKBwD/EYkuDR2q/I/+xnI2Ul2YqhzPd4Lrz0dxBJSV+2b+Ke3pjkI2hh8qjY2a5b6IOLn01yfZJ9bMpwAANMNX2fPPM6XnjvKntKcQD1Sk+3++NjQUEfdExM6IuDd/frk/opj2wYh4aNXZF297/eE18ernnx/77rhwDcie/57L17ZWP/8VykmGuvLYQLH8PcmpM7MzB/J7MhI927L4ePWpV6bVvn7xp4/Xu/5wxfNf9smuX34WzPPxe/eaCbrpyfnJzZa77Pr7xSm9xeryJysrAdnIYFdE7L6D82f37MxTn++tubN8i+uWv44tWGdKP4t4slT/S7Gm/JnePFR7fXL86JGJw2PbY3bmwFi5VVT7/oerr+TBqqHEber/zf7NF7GurP7/t9L+S79Le8orl91DSeV67dzGr3H1l4/WHdPcafvvTV4rhnvzbZcm5+cvjkf0JkvV2yduHXtpsm9V+qz8I/tr9/+dEX9/mh+3JyKyRvxwRDwSEfvyvD8aEY9FxP465f/2hcffrlX3jZW/ubLyT9f8+7eycr2m/jce6Dr7zZfrXb+x+j9UDI3kW6Yn56uX69doNIObuXcAAABwt9gXEf2RFEbz6bj+KBRGR6P31gzK3PzTpy68e3669I7AUPQUyjNdgxXzoeP53HAWz46aqIhn+w8W543TNE37ivHRqQuzA+0tOnS8HbX7f9Fv1a+0xImW5xBoqg2to633RhtwV2q8/y+tiadbnhegtbyvDZ1L/4fO1XD/b+abcEBb1Or/ixE325AVoMVq9f/X25APoPWM/6Fz6f/Quar7f6Et+QBaajPv9dcL7DxeJ03S3ZyLrh8oRP1vARiK2NgJfy1EbE0Ou7a0pH0N1On2aOw8mfXTROG2+emu80UMr1bf8Cx5i5pEobXNr35gW937XGy9K41tsRy40uyMtfkPEwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAwBb5JwAA//+1AtGQ") open(&(0x7f0000000040)='./bus\x00', 0x1612c2, 0x17) 9m23.940231182s ago: executing program 1 (id=6138): r0 = syz_open_dev$video(&(0x7f0000000040), 0xa7, 0x0) ioctl$VIDIOC_S_FMT(r0, 0xc0d05605, &(0x7f0000000180)={0x1, @pix_mp={0x1, 0x5, 0x20323159, 0x0, 0x1, [{0xfffffffd, 0x81}, {0x0, 0x401}, {0x7, 0x7}, {0x0, 0x8}, {0x9, 0xf6}, {0x80, 0x1}, {0x7fff, 0x7}, {0x200, 0x5}], 0x6, 0xb, 0x7, 0x0, 0x3}}) 9m23.434523305s ago: executing program 1 (id=6143): syz_mount_image$exfat(&(0x7f00000009c0), &(0x7f0000000000)='./file1\x00', 0x800800, &(0x7f00000001c0)={[{@utf8}, {@iocharset={'iocharset', 0x3d, 'macroman'}}, {@sys_tz}, {@zero_size_dir}, {@umask={'umask', 0x3d, 0x5}}, {@umask={'umask', 0x3d, 0x7f}}, {@utf8}, {@errors_continue}, {@allow_utime={'allow_utime', 0x3d, 0x7}}, {@sys_tz}]}, 0x1, 0x1541, &(0x7f0000001f40)="$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") mount$tmpfs(0x0, &(0x7f0000002040)='./file0\x00', &(0x7f0000002200), 0x1000000, 0x0) 9m22.538337157s ago: executing program 1 (id=6151): syz_clone(0x21000100, 0x0, 0x0, 0x0, 0x0, 0x0) getpriority(0x1, 0x0) 9m21.662736412s ago: executing program 1 (id=6162): syz_mount_image$vfat(&(0x7f0000000080), &(0x7f0000000480)='./file0\x00', 0x18000, &(0x7f0000003f80)=ANY=[], 0x1, 0x2f4, &(0x7f0000000900)="$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") truncate(&(0x7f0000000200)='./file2\x00', 0x4) 9m20.674974447s ago: executing program 33 (id=6162): syz_mount_image$vfat(&(0x7f0000000080), &(0x7f0000000480)='./file0\x00', 0x18000, &(0x7f0000003f80)=ANY=[], 0x1, 0x2f4, &(0x7f0000000900)="$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") truncate(&(0x7f0000000200)='./file2\x00', 0x4) 7m46.693237049s ago: executing program 5 (id=7271): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000180)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01030000000000000000010000000900010073797a30000000002c000000030a01020000000000000000010000000900030073797a32000000000900010073797a300000000070000000060a010400000000000000000100000008000b40000000000900010073797a3000000000480004802c0001800e000100696d6d6564696174650000001800028008000140000000010c000280050001004c00000018000180080001006c6f67"], 0xe4}}, 0x0) 7m46.267268016s ago: executing program 5 (id=7275): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000002c80)={0x3, 0xc, &(0x7f00000001c0)=ANY=[@ANYBLOB="18020000000000000000000000000000850000009b000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000009b00000095000000000000002f81c461b3fea834ceb0e17d9838c2830ca7ce46e581a192326a3698c79205e02f1561b0a3c595448e9f7024b45fb2006c9917fe2a42fcd2ce278009682dc8f7c867b177ec5bd50b92aedef35b6cd87b56690b4c96f63ab021ee1cf616d8af74911d5e51b76d2c31b8bece7b0f"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x65) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={r0, 0x0, 0xe, 0x0, &(0x7f0000000000)="e0b9547ed387dbe9abc89b6f5bec", 0x0, 0x4000, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) 7m45.681071312s ago: executing program 5 (id=7281): r0 = socket$kcm(0x2, 0xa, 0x2) ioctl$SIOCSIFHWADDR(r0, 0x8919, &(0x7f0000000000)={'batadv_slave_1\x00', @random="0200ff7fffff"}) 7m45.318410308s ago: executing program 5 (id=7287): syz_mount_image$exfat(&(0x7f00000000c0), &(0x7f0000000380)='./bus\x00', 0x2200804, &(0x7f0000000100)={[{@keep_last_dots}, {@namecase}, {@sys_tz}, {@time_offset={'time_offset', 0x3d, 0x3ff}}, {@errors_continue}, {@iocharset={'iocharset', 0x3d, 'cp949'}}, {@allow_utime={'allow_utime', 0x3d, 0x1}}]}, 0x3, 0x151f, &(0x7f0000001900)="$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") mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0) 7m44.530904852s ago: executing program 5 (id=7298): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000001700)=ANY=[@ANYBLOB="b702000003000000bfa30000000000000703000000feffff7a0af0ff0100000079a4f0ff00000000b7060000ffffffff2d6405000000000065040400010000000404000001007d60b7030000000000006a0a00fe00000000850000000d000000b70000000000000095000000000000005ecefab8f2e85c6c1ca711fcd0cdfa146ec561750379585e5a076d839240d29c034055b67dafe6c8dc3d5d0f65acc0d06d1a1434e4d5b3185fec0e07004e60c08dc8b8dbf11e6e94d75938321a3aa502cd2424a66e6d2ef831ab000e271f17e3946ef3bb622e03b538dfd8e012e79578e51bc53099e90f4580d760551b5b341a29f31e3106d1ddd6152f7cbdb9cd38bdb2209c67deca8eeb9c15ab0300817ac61e4dd11183a13477bf7e860e3670ef0e789f65f1328d6704902cbe7bc04b82d2789cb132b8667c2147661df28d9961b63e1a9cf6c2a660a1fe3c184b751c51160fb20b1c690220b87b20581e7be6ba0dc001c4110555850915148ba532e6ea09c346dfebd38608b3280080005d9a9500000000000000334d83239dd27080851dcac3c12233f9a1ff032aec61ce63a38d2fd50117b89a9ab359b4eea0c6e95767d42b4e54861d0227dbfd2e6d7f715a7f3deadd713089856f757036303767d2e24f29e5dad9796edb697a8ad004eea0182babd18cac1bd4f4390af9a9ceafd0002cab154ad029a1090000002780870014f51c3c975d5aec84222fd3a0ec4be3e563112f0b39501aafe234870072858dc06e7c337642d3e5a815232f5e16c1b30c3a6a71bc85018e5ff22dc518afc9ffc2cc788bee1b47683db01a2f9398685211dfbbae3e2ed0a50e7313bff5d4c391ddece00fc772dd6b4d4de2a41990f05ca3bdfc92c88c5b8dcd36e7487afa407e2edfae4f390a8337841cef386e22cc22ee17476d738952229682e24b92533ac2a9f5a699593f084419cae0b4532bcc97d3ae526aca54183fb01c73f979ca9857399537f5831808b0dc2a2d0e0000000000000578673f8b6e74ce23877a6b24db0e067345560942fa629fbef2461c96a088a22e8b15c3e233db00002e30d46a9d24d37cef099ece729aa218f9f44a3210223fdae7ed04935c3c90d3add8eebc8619d73415cda2130f5011e4845535a8b90dfae158b94f50adab988dd8e12baf5cc9398fff00404d5d99f82e20ee6a8c88e18c2977aab37d9ac4cfc1c7b400000000000007ff57c39495c826b956ba859ac8e3c177b91bd7d5e41ff868f7ca1664fe2f3ced846891180604b6dd2499d16d7d9158ffffffff00000000ef069dc42749a89f854797f29d0000002d8c38a967c1bbe09315c29877a308bcc87dc3addb08141bdee5d27874b2f663ddeef0005b3d96c7aabf4df517d90bdc01e73835d50200a90800c66ee2b1ad76dff9f9003f07000099d4894ee7f8249dc1e3428d2129369ee1b85af6eb2eea0d0df414b315f651c8412392191fa83ee830548f11e1036a8debd64cbe359454a3f2239cfe35f81b7a490f167e6d5c1109000000000000000042b8ff8c21ad702ccacad5b39eef213d1ca296d2a27798c8ce2a305c0c7d35cf4b22549a4bd92052188bd1f285f653b621491dc6aaee0200e2ff08644fb94c06006eff1be2f633c1d987595ec3db58a7bb3042ec3f771f7a1338a5c3dd35e926049fe86e09c58e273cd905deb28c13c1ed1c0d9cae846bcbfa8cce7b893e578af7dc7d5e87d44ff828de453f34c2b18660b080efc707e676e1fb4d5825c0ca177a4c7fbb4eda0545c00f576b2b5cc7f819abd0f885cc4806f40300966fcf1e54f5a2d38708294cd6f496e5dee734fe7da3770845cf442d488afd80e17000000000000000000000000000000000000000000000000000005205000000dc1c56d59f35d367632952a93466ae595c6a8cda690d192a070886df42b27098773b45198b4a34ac977ebd4450e121d01342703f5bf030e935878a6d169c80aa4252d4ea6b8f6216ff202b5b5a182cb5e838b307632d03a7ca6f6d0339f9953c3093c3690d10ecb65dc5b47481edbf1f000000000000004d16d29c28eb5167e9936ed327fb237a56224e49d9ea955a5f0dec1b3ccd35364600000000000000000000000000000000000000000000000000000000000026ded4dd6fe1518cc7802043ecfe69f743f1213bf8179ecd9e5a225d67521dc728eac7d80a5656ac2cbde21d3ebfbf69ff861f4394836ddf128d6d19079e64336e7c676505c78ad67548f4b192be1827fcd95cf107753cb0a6a979d3db08407081c6281e2d8429a8639034a75f4c7df3ea8fc2018d07af1491ef060cd4403a099f32468f65bd06b4092140faed0c329be610c3082d43e121861b5cc03f1a1561f0589e0d12969bc982ff5d8e9b986c0c6c747d9a1cc500bb892c3a16ff10feea20bdac0000000000000000ca06f256c8028e0f9b4c8787361f3289f86a6826c69fa35ba5cbc3f2db1516ffc5c6e3fa618b24a6ce16d6c7010bb37b61fa0a2d8974e69115d33394e86e4b838297ba20f96936b7e4746e92dea6c5d1d33d84d96b50fb000000ae07c65b71088dd7d5d1e1bab9000000000000000000000000b5ace293bec833c13e3229432ad71d646218b5229dd88137fc7c59aa242af3bb4efb82055a3b61227ad40f52c9f2500579aca11033bb9cc16bd83a00840e31d828ec78e116ae46c4897e0800000092e9a1e24b0b855c02f2b7add58ffb25f339297729a7a51810134d3dfbf71f6516737be55c06d9cdcfb1e2bb10b50000eb4acff90756dba1ecf9f58afd3c19b5c4558ba9af6b7333c894a1fb29ade9ad75c9c022e8d03fe28bc358684492aa771dbfe80745fe89ad349ffaad76ff9dd643796caffdf67af5dd476c37e7e9a84e2e5da2696e285a59b53f2fb0e16d8262c080c159ce1d9be7ef3e3f40c14089c82759106f422582b42e3e8484ea5a6ad9aa5200002fe0e0caea1ad4cb23f3c2b8a0f455ba69ea284c268d54b43158a8b1d128d02af263b3dc1cab794c9ac57a2a7332f4d8764c302ccd5aac114482b619fc575aa0dd2777e881e29a854380e2f1e49db5a1517ec40bb3fa44f9959bad67ccaba76408da35c9f1534c8bd48bbd61627a2e0a74b5e6aefb7eee403502734137ff47257f164391c673b6079e65d7295eed164ca63e4ea26dce0fb3ce0f6591d80dfb0972d39e4b5589829b6b0679b5d6fccbecfae5553d9950d48c774eaa35b24fce69a20d8bc410d9f48bf7eac90529cd6af061c9e501ddddc620ce73c5d177e3d097159f2768636fc10276c6a0adc57483b3f7083f66b87ef296ee85e9bb70a3009a5d30f479e293a3302e11350ea857b37e76ca2f50378e4092ce2c574ad278b9b7b717c571afb2077b019fd9d89efd59b41f051ec5a8ff87ecc8df917a1e386d849fcd10e2f9ca52e02339c2f4666b0c545e25f1cd62421c28d25994be0cff7271a0dee38d7ac4ac736b090e1d29f981179186e4000000000000646174b55d251f7f8ca5ccc22a5efb33b237eff5597a3c3a5f3a9bb54abb40e54593e1a7ce4cfa17b3c3fe91c06363496341eae20dcc59b6179b32ddddef5c34000096a54c0c571a91878f61f74912e2299e5501d4d6943bfd74c856511726f0ac8f7d17f1c6b4451c1bcdc6b6e1700e4cd87709d97afc5423c96fa981873d4369b04bbf1fb9f68f17991540868e408201ad1a74179e489aa61f021a437a3fa935588be2068f7ff9b253106326fde795e530b93626cc68e06e602198724249b4445eef08401cd1a3e266db41474e69902e4d8f5da4e94cc36794258fd4032de7ab36bc24c5efd5c8495c1ccd580033c55725f2d60354f8ad5914a0155eaa743350ddb388f486b6de0549ef3b1b3c3b7d4d3a830ff39885776119408029be3788dd8422b1ab7b4c9d5b7d8682fd759c713108e1bdfc64b9121bbf07099def5c0ce3c861ae4b5cad8bba5a0b605908000000f96a59320309e25df89484522bb1d6eaa92164f9e4042cb689a45a898354c17b08705205a9189772bcbcb6414e44b33a2470d3bc16f761c332c34812382e57c0e0d83f3f565b9da5e7991ad8482579cc1b16c1fcec815a5482ae8b1779c5e339971a6ec1217b6478c2434a9a18dcc6c7c791e444a79d7ce37f9cf2a434b9048ca6a2fa254aa02cd098026798a6d336348af0fc11fa2809a5ebbe17ca4d0f889d518f64ee50f562b5fdb1f76d4a7fe14701f8ed0c6a55d66a6efea3e449e6b4783d66661a92f174f2b88cd544b2a8e1b05ea7cf51578169fff7765f9978883b4b5983b42a35a05dabfc325ec2a2ec2f9b0882fdcf5d6f72272d2ff0d8eea60f5494ba42b4d40f144f0ab680a6f40f9094d3afb58a1efd6109894b8605c6b3b3f020c222f6446195b2274f634fbb737948a1f36ea729467e132385e9da614e4625175f4443b97a675934db90010e4b884200c3546c4d86d712c3939e11be3343f693846f509ad4c445ade5cd6d126d5694462ac5d3b527c3bd51c0a715a28d65fe94b255d02cdc1fab99b5b9c352f1b284115e4046285a824d22b6f0afbed8d6096a72fef72ebd6aae78b02fa1993e8fe2020ae93aae2bcfffa40b98549f1fb9fcefa74329909a207336d07f6f59da423ac5fa47852055d5ce6d2c56bdbbcdbf3458ba478c669f39d5272e65c90908ea2cb86d38f8ebf80a8cb85d8399b42403c94b8662af5cf1411526f177b4d476169a5d5a8c37d0d8893a77d0bd47b8a0bba60b3e26094209c889585f997ff556bcd2cc223f9c0c44de9d0fe1b5a8a815f652e79747d3e1f413fa0575d51f652d22883e143065c5ad74bdc864754ba3dad5a8fc8fc2c807d1a51dfb29884adee415c13f2ce14d307bd6165ec6ba68a766adfcbe444ea72d586bb47dd98a225467aab538a77667d19bae2e51727ba6d190e6d7"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r0, 0x18000000000002a0, 0x26, 0x0, &(0x7f0000000100)="b9ff0b078059268cb89e14f088a82de0ffff200000000067000aac14140ce000006a49e832f0", 0x0, 0x1, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x50) 7m43.537205073s ago: executing program 5 (id=7313): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000dc0)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x5}}, [@NFT_MSG_NEWOBJ={0x1c, 0x12, 0xa, 0x201, 0x0, 0x0, {0x3, 0x0, 0x2}, @NFT_OBJECT_COUNTER=@NFTA_OBJ_TYPE={0x8}}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x3}}}, 0x44}, 0x1, 0x0, 0x0, 0x80}, 0x8000) 7m42.694610219s ago: executing program 34 (id=7313): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000dc0)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x5}}, [@NFT_MSG_NEWOBJ={0x1c, 0x12, 0xa, 0x201, 0x0, 0x0, {0x3, 0x0, 0x2}, @NFT_OBJECT_COUNTER=@NFTA_OBJ_TYPE={0x8}}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x3}}}, 0x44}, 0x1, 0x0, 0x0, 0x80}, 0x8000) 2m28.179014732s ago: executing program 3 (id=11725): r0 = syz_open_dev$vim2m(&(0x7f0000000000), 0x7f, 0x2) ioctl$vim2m_VIDIOC_S_FMT(r0, 0xc0d05605, &(0x7f0000000140)={0x1, @pix={0x0, 0x0, 0x32314258}}) 2m27.878221421s ago: executing program 3 (id=11730): r0 = syz_open_dev$video(&(0x7f0000000080), 0x0, 0x200) ioctl$VIDIOC_S_FMT(r0, 0xc0d05640, &(0x7f0000000180)={0x2, @pix={0x9, 0x0, 0x56595559, 0x0, 0xffffffff, 0x0, 0x3, 0xfeedcafe, 0x0, 0x0, 0x0, 0x5}}) 2m27.578286476s ago: executing program 3 (id=11735): r0 = syz_init_net_socket$llc(0x1a, 0x1, 0x0) setsockopt$llc_int(r0, 0x10c, 0x9, &(0x7f00000002c0)=0x5, 0x4) 2m27.283106962s ago: executing program 3 (id=11739): r0 = syz_init_net_socket$x25(0x9, 0x5, 0x0) ioctl$SIOCX25SCALLUSERDATA(r0, 0x89e5, &(0x7f0000000300)={0x38, "192dc006bcf95d2dd5ab6a777d35aadb45243f2f79105f05818ff862b9f1211f0344153628e579bbb9249cbeed52ff8f45ba873526e06c4dac0fb0af6a0b6eefb8546ed4ccafe9f0a2cce71f69ab7403c36fa13ea2dfed733e52fd3ecfaee42a39828dcf7421b754843eb9c1b56c0dfe6984fb5334d830de19d254ec528b40e4"}) 2m26.950629163s ago: executing program 3 (id=11744): syz_mount_image$squashfs(&(0x7f0000000200), &(0x7f0000000000)='./file0\x00', 0x10, &(0x7f0000000680)=ANY=[@ANYBLOB="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", @ANYRESDEC, @ANYRESHEX, @ANYRESOCT, @ANYRES16, @ANYRES8, @ANYBLOB="eae535d4c5cd41b584d3bdb8d3fb3e37666220165c8aec9c235bc9af137d4058a50551a5b228bbbcf6cd1275ef3732adfeaebdf711988cbe9d1da671f8bbaac371392e227f548006163fc9aaf3d55e97410ccacb7df3444c03ac4170da3fbc69ae1c8a590318a7a33a774debbcc54bb6d6025bc65458b94791d5a8bcd898b75cce569e2c6fd55928c5084aab22c8196fb436916cff76302fd8c4b69ca674271f5db630ffad103ad9286287759d0d5470d0b54f701a713e8803665b87799065f31bb0cff21d9c109c1fbfffb640facdacd569f158f694c34ffb4c405b186aa90e8be7b47c56e6e439ae953605d89c131c711ff56f0adb96e5ee0d269b4cfc9d089794f60bdd06e845b5ffdccfefee032ecfd92f6cba5920130f685e807f88de4a2e595ea37f39a92dcbaeb2de15dab62a5a199d4666578eb1707e88ebb0b98140fdb62d60005fd6721f18a2054b2ba2ed308813164f8dbc7e1d26a11a707adc6978a25cca2fca5d62e51794447f656b92f8372ebf98934a0bc057b901080da81ef02ccfa18a29c9b82c90fd38eb554b83428948f3608cd8fd5845bed25a0d96b146f09bd4cce20efc1ecc7bf64bd88e7a460b372a298cb776eb1d78cc334da71dc6056b2d1119cdad3af9092a42c184e9d487076399f0be65a442fdc06901089e6b5178ecb57aa4b98ff1f538696e8510551dbb5cbd36b125efa2a3e719f22b96eeec80a178dae9c894a7dd170419c33817baedfc132cde868a1c55192b9c8a332772fc40fed9f6fee1aea0e2001752caeb58afb55ea7c421cd0eb5e6ea301f8e2f6b68484849f5d3e7bd1b4aa865d2cd049dfc773bb4281f5f8dd2a3f1563c8cd3655dd9e391424151dadf7415afb242cb99b9b9541b6780beafc6a8c2c0bd109749dde1e8535040d8d2cda8393abaa6cdae24e13917e867d6d301f6f39619bcbd70acc747e093ef3c22f0b1a8b8a4d8bd11bc19c7102e11a8603d563507423c96d1653a42d02ff1ee390934927f037d2022cbbf86cb605e82e2b6e2c2fa1d523f72b47738f318836defed1f898271bdd4fcbe7863e5aa7c7e468d9bad908de3c6851c696df710da87771840f46e63fc4c3d5d9b13b663ed2fef2e56a8690cdee9e6ac0a9824c9fe458ad29614f9485f9c18caf2d5c229f24a220ab84daa26ddb2a0d4059b43e073b703148d82fe4d91ae24db7224df2ee4e10d596846466d6a62faa9da7d24f9dd1e3b5cc291f4840b6603d1173204a452a9b05a5efcf4f9e09c2a3c38f2fd49322e718ddc8278ea182a359043387705c0be61be7e62ba7bb85dfa0f24400f89087f78d84d2296844944d186fb55045eb016dd3d602c85211d7b19dbebe3247313283da5bcbba09a3a74c590fdce8cdbef49a73b11413a9df4aaefc356e94f838cef801ba2380d7e5fdc8865140311f071c82bc1482c2033b8ad70d08a5a71e1c949f93cd8743b0bd4eefdaf45f5246efcf800444c8e9b8c2a01b76b6eb4e0639ee7381971172c53e165f14946fb56896e40424a3b981d97b4b01504806d797bb9e3405a7326d2ba7bfa6efc923c4c68d0165aea2d80ae953c7e2ec6534d0da7c28bbe255d81097e84254ff7bd065caa84fa7455885e1b28ab7d6243d0f02903860049935a764ebfe5384bdf9ae0b71f1641e457780da2071a84937dd88d2e4aec7ddaab66e335887f555a724ad9692ee996521ccaa35e2358aea1ab6a8c9845af8af552520fdec7ecb635d230074aa532c3efe6677c79b1328451a779501eccb4c11750744cfce16ba2ced0fc6dd2b75a5ff1770f3851c93bcf8850adf496012d94b8dd6a00d1f9f0c96989979b89838a29875072e0b678a2a55338f21625165c350134d7cb9119ac4dcc77f13a153fe6819d1bdc6b357e93531a68813913daf65d2e62d4bd09da6bb16e8d686518f6faff70dc0804b4b6810117d8698a4d27f0482f9adf9be3aae179dbcad90ab1fbd6b1ba15cdc78ee7686bd15a8fe1cf5af00fcc0a6981a77ac5c3485518921a1b4ea90b02e0059c2c71850d517bddc12bd61a5571da765a34b53e5f06a2b8bb122bf9d642f1ad50a0eb7afe34ef6fd2474d25f314adbf276a895b80b8de6e31eaee5fe4544f4709bf6416f26ec52d517dd3a350cb68df6791dc671495e0f056de8b158095b32ec8b43f65b1f3110cf7da37d2383e99a5bd9a0e0d5684a5b15246170bd11909ef22ee740aa5556dbc0f9dacc8ce440c137bf0ec673651067ef1146004701376116986c49b10226141bea12f679c3f53eaea945b1bb92e6c922a85a2221f768ff4f1c188dc82f9e8d947e140f43c4950430f88a47fb15dcd8ef8491ff08d7b287b280eab99e44a7fba6d4fe20fcb2c2cfa1a6f4d59b51755e66a3d9a325a08a286185c2bdac8c8c2910ed3ff8e047f28b2bf1827e0829f8ec8459241300583f1880c96b2e405b253af5f7e9ee91e34c3fa2cd5c53a71bc3b4b1a5741c17a7b73c8e7d3e8ec9e51a90772b8eb38f23fcb9e07eff8b0f68d4f7d4d68bfb8fbc8d90be681166fe5ed220e3a425c65c0e678e8b7470a99d7fccc7a3be07189ee02e1f8c81549b0b8c0113ef602d10d5d2429e8b60fa5aaddd55cb86141609bae35c185c5ad743d0fb0a1244ba6d67755e46073f3d428926c0d9033f8180120deab78a4b42664e36b6723039457195bff897760ede28bf2661a95715dd20bc744ae2a06bcb12ef8b7a373f3a5557f20256446ba95d45b7810d68494f954d1802aa8986279adc368c2365168c0619bc8952ec6ac60840d9968302edb8809d36f6b0c83dc6941193fb8eb2adcef36db70cbe51fd533ee108eaedebc05ab363058feecfb51e294419695019d0ba50a660ecbe3fd1b43ac973141b7e4c423c062f63ad24468ca79740502716b10a823821429d53f34409cc0757587a5de21663c33a8b194c988a3c209cec76b9fc18805649d9cc109635271c968972f4328e561b562ad6c32a71b269718a303ae3635e5b06717152817a11589d3efa0f803d7bb560c08132827333ada867d1a870e2feb3a5e7851363fc333bb681018764aab63eb740978994f62ec3147d4d6a40e099ada0c50c1a5f6a8196549be226508055aef349c76af40596f6c9b7217423628bb6dc07d9382f6d4c87c962ec97bee6384ba3e2522b76ee8619093500a75bcc8fd0fb9bb5093650ec0ca9c867a22260e2668ecf46047e3df87f5d82d992a558e45fb852be616c030edf6aeeae70848403dc1166e6a16776e8660f90449f297224f667563850480f259f6a59039b1a3ea5488971b5e4bcbf380c527c937055dbf4f5a676bacc09f4dde33c50a1286f6024980df1064a9dc4b3f101b129fa1fc141e54f52d4b7322a0cb1c2567205016f5ede0794122fcaa2d11fa77f5fddb3a5f3c7b3d85f0cb6f32cd11d752f755687fb8d93d40711a4c8873ec7c794f0f781bb9c10f9df22fa8f40cca06a48c37e66ea4480fcdd686526be62915ebe36e0bdf7dafd3940f698469ecdc792ca6105a37499a19382247a85bb734e4ba325dd307be8444b5860f99f9dbc7aa28c26747c89041bde3c10c459406786e10792078a52f4bcc32aff61b3f5798cb5dc2927f260f70a41d8e5fc38498b02d0053a86ae408d2efdc1aca9a8508ef9128dfd1fc6a92ba72f940ee469a3111e2cf6c28e77e5a206db6f09139db812fa4e4cfe33c8d184e4763bd8e54e0e473346215b8905d101463dd2ca855747c81c7ffd6c2625e0b59273a9516ec96a5cd8d9078c974980a16b6b87563986ba287821cd41f417792e42dd24e796e313b9cd943f1b9dd6ee35676ff4ad46dbd52db83abbc78f5dad11b6e7bd09a4ace8c246d0a52c36dcb1f0c6025f6ed2868f4b918b6e4e645c63689b7e7bc369dbe44725993b3b43f4572a7136b6e610adc161f45fc307c0937f2338ebc4fd571852b229b80ccd071e1a29c927f88b8b45efa503691758125d29463e742e2ef508babf30ae39ff8bb3a94cfee379f84348c002fdef77b410bee9f47f8119388b3fc159b409b9d9c9af97a4b75c38ca5fc0665cd975df293370de64714cefdd470c1d05a5d3e0f257182889d7a2d797ebf42d6935d1c6b5ef8cd1e2783cef3a316dbd4768510f26ee5b1c481bcac3e1608458d4b5ec6411cb3c921a131140440561931ca51b92231de91d1f950d992eec74c6500a6ecc9e8bc26eec367dba82720accd6dee234db88c132ec649baeef23a16ebb18c8e5b68b95aac984d8322a01b39636baf16911e458242730ea8b22c686bd01bc451e91c34f81fafe88485bbe97ec99299940ca897c3f802d080ecf8ca7e5032c728b8b33f162ab26a6805db239b88103c19ff8160a28268f8f7ac66593c67251fb0f3fa3004d5ad08107f48e0ecc1e4e910554f49ca72e3fd7e212d828fc3c0c40203e4642a3a372f36cfd13a037fd4dd107d6b386659b379c4c41813c8599cb71fd08e4b80f22dbb088d3d0257f30493b1c4d54201a00e049d998d291ecb659e65e2eed9776b367afc9b84b03957701bcbef289b0eea8e5722a63e1bd748d5af209c5ebff7df185d0d68e7ceabbf9a63bba55946cd3b52a09383fd9b9d2d956dc4e5af16986c5600dfd0db89e0e478420557d001c3716350c3e6ba0bbec1e5888435d296d8666f455d22205ea407a95eb60bc68a184e95ae3259f3783c594d3e550c018369df677ea11a37c757a3bd3c19eb257f5e228ad760562e431754a0c620004548962c3a4fb42d49259dafc1b9d365323fa2ace81876728a24f70b06e1198d5f863bfd00a04d5393b3adb15f4191d374c607c7ccb6b7ef84303454b6655392a23dccca41f55cb314a3bfbb637f57178cc9df4fe0645a8dc1ca0386d1fb0ff2cfc3e149991f97264d893fba0b013c027ce753c3e1f907a2988b1507eecd0e5e26368155ff5c55f616ffec31a613be450ee048955a46d68c272aa53f1db6ce199e2765f4be20933799d96f13b3a65f33cb60da1929023ff5d820172c423f83210a992264a37854033cd43c88129fabb5146367d2b748d84be96dc3a4ad95279ec7ed78dcb57056597a9f46a948708b0e9915b22f28216d94554db2082f4b9782a5802bf6700ef9017168a68304b6573f46c78a0a3be302e096b4f5b87313a2ef9a2b5f51956d9e315b08ee89a59aeec225227f3ece808c451e1103df7887f944138af1b93235bc93121fb84591d065d5f245c035c238a1c30d510be5db14725148919e8d57f1e3a36ead8be870e2505e3c9935c4461741c4a8dc4dff7e0e042167a7228bf218c9d8dd9c0be9e5ff4a79968d8f34cfc3206e0ade5889e9c5e44c918ed3755063d4148e7f1da9d2ce7aa45b9fc873f85cb92160b8a4d5b219884d0c43cc1194259ec4a6127887470d2fabbc1983b1bcc51e931f131d1238333c09740b43802fc5b1c01a942c5d08693b81e59429cb7d49f454f517cddc160d563a243182083008f2481e35312b4b35a2688468f18f4733f4b40d2f298c0b88ec2ad51e2efa509905233e3bbb9e172a1e697ab379f500c8c791aa97623bc8faa7f0468e02e6bc6f9bc40c75b4c01b92731fc371ad7c90928bead62a74580bb2d0aa1d8972fa857766ebe8aa00cd9eae79a591ea3e87a5ce636dc865b992c98a6fafe478973665936ad477558dac400fe179e86e6fef41aa074d0812f0c14f3992edb76358d02a2b763512ca9abc0940dd711670deb4d9abf196de9106efa5e1c14a673de86193908206ab9f72afd6ef1b05355f06ad0b9bc83750bb196654566b56e13e6e820d12bc34920b45c3"], 0x1, 0x200, &(0x7f0000006140)="$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") open(&(0x7f0000000140)='./file2\x00', 0x0, 0x0) 2m25.893218335s ago: executing program 3 (id=11764): r0 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(r0, 0x89f1, &(0x7f0000001040)={'sit0\x00', &(0x7f0000001000)={'syztnl2\x00', 0x0, 0x0, 0xa000, 0x0, 0x0, {{0x5, 0x4, 0x0, 0x0, 0x14, 0x0, 0x0, 0x0, 0x29, 0x0, @empty, @empty}}}}) 2m10.759404081s ago: executing program 35 (id=11764): r0 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(r0, 0x89f1, &(0x7f0000001040)={'sit0\x00', &(0x7f0000001000)={'syztnl2\x00', 0x0, 0x0, 0xa000, 0x0, 0x0, {{0x5, 0x4, 0x0, 0x0, 0x14, 0x0, 0x0, 0x0, 0x29, 0x0, @empty, @empty}}}}) 4.331120669s ago: executing program 6 (id=13743): r0 = openat$vicodec0(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0) ioctl$VIDIOC_ENUM_FMT(r0, 0xc0405602, &(0x7f0000000000)={0xde13, 0xb, 0x2, "3258c5c00e7f94ae1e008fba00ff0000f4ff4000000000002300e91aba2800", 0x34343459}) 3.787768339s ago: executing program 6 (id=13754): r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x15, 0x17, 0xee, 0x40, 0xaf0, 0x7a05, 0x0, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0xff, 0x5, 0x49}}]}}]}}, 0x0) syz_usb_control_io$printer(r0, 0x0, &(0x7f0000000540)={0x34, &(0x7f0000000240)={0x20, 0x14, 0x11, "023b48312025c04b028dcb170b2f0547cd"}, 0x0, 0x0, 0x0, 0x0, 0x0}) 2.2012627s ago: executing program 8 (id=13775): r0 = socket$inet6_udplite(0xa, 0x2, 0x88) getsockopt$inet6_opts(r0, 0x29, 0x33, 0xfffffffffffffffe, &(0x7f0000000100)) 1.988530968s ago: executing program 8 (id=13779): r0 = socket$inet_sctp(0x2, 0x1, 0x84) getsockopt$inet_pktinfo(r0, 0x84, 0x7c, 0xfffffffffffffffe, &(0x7f0000000000)=0x8) 1.940106347s ago: executing program 9 (id=13780): syz_mount_image$msdos(&(0x7f0000000180), &(0x7f0000000080)='./bus\x00', 0x80d0, &(0x7f0000000bc0)=ANY=[@ANYBLOB='dots,errors=continue,nodots,dmask=00000000000000000077777,nodots,dots,nodots,showexec,dots,sys_immutable,discard,dots,nodots,nodots,dots,nodots,dots,nfs,dots,dots,dots,dots,nodots,nodots,nodots,quiet,dots,nodots,gid=', @ANYRESHEX=0x0, @ANYRESOCT, @ANYRESDEC, @ANYBLOB="48a8"], 0xf5, 0x1cf, &(0x7f0000000e40)="$eJzs3c9qE1EUB+CT9M9MXXVXEIUBN66K+gQVqSAOCEoWulKobhoR7GZ00z6GD+gDSFfZyIidaceOitPCzNT0+zY5k9+9ybmQ3GSTm9e33u/vfTh493XrS6TpJKY7sROLSWzGNE4dBQCwTBZlGd/Kyl8HbQ3aEgDQsw6f/98HbgkA6NmLl6+ePszz3edZlkYcHxWzYlbdVvnjJ/nuvezEZjPruChmK2f5/az93eFnvhY36vxBNT87n6/H3TtVnkTEo2d5K09ir9+lAwAAAAAAAAAAAAAAAAAAAADAaG5HduqP5/tsb7fzjTqvrn45H6h1fs9q3FytL5vjgcrDIRYFAAAAAAAAAAAAAAAAAAAA/5mDT5/338znbz82RRIR5++5SDGpH/iS04cuptFh8Fq9pivSs+JfRXY12phf+F2wcvIaW4+IvhpblGXZaXCzRyRjbEwAAAAAAAAAAAAAAAAAAHANNT/6/T1Lx2gIAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAEbQ/P//JYrDiOgw+OzJNkZdKgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAEvsRwAAAP//h9MxGw==") utime(&(0x7f0000000400)='./file0\x00', &(0x7f0000019480)={0x400, 0x1}) 1.833628882s ago: executing program 0 (id=13781): mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2, 0x31, 0xffffffffffffffff, 0x0) timer_create(0x3, 0x0, &(0x7f0000044000)) 1.793350369s ago: executing program 6 (id=13783): r0 = socket$kcm(0x10, 0x2, 0x0) ioctl$sock_SIOCETHTOOL(r0, 0x89f1, &(0x7f0000000000)={'ip6tnl0\x00', &(0x7f0000000040)=@ethtool_cmd={0xa, 0x0, 0x0, 0x0, 0x0, 0x7e, 0x0, 0xfc, 0x87, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x80000045, [0xfffffffe, 0x89ff]}}) 1.773490357s ago: executing program 8 (id=13784): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@bloom_filter={0x1e, 0x0, 0x7fffe, 0x8, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$MAP_LOOKUP_ELEM(0x2, &(0x7f0000000280)={r0, 0x0, &(0x7f0000000200)=""/76}, 0x20) 1.746477242s ago: executing program 4 (id=13785): mknod$loop(&(0x7f0000000080)='./file0\x00', 0x100000000000600d, 0x1) faccessat(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0x2) 1.562344525s ago: executing program 9 (id=13786): r0 = socket$inet6_tcp(0xa, 0x1, 0x0) recvmsg(r0, &(0x7f0000000740)={0x0, 0x0, 0x0}, 0x40000021) 1.4878926s ago: executing program 4 (id=13787): r0 = socket$inet6_sctp(0xa, 0x1, 0x84) setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x40, &(0x7f0000001440)=@mangle={'mangle\x00', 0x8, 0x6, 0x9a8, 0x7b8, 0x7b8, 0x290, 0x290, 0x4b8, 0x8d8, 0x8d8, 0x8d8, 0x8d8, 0x8d8, 0x6, 0x0, {[{{@uncond, 0x0, 0xd0, 0xf8, 0x0, {0x7a00000000000000}, [@inet=@rpfilter={{0x28}}]}, @HL={0x28}}, {{@ipv6={@dev, @loopback, [], [0x0, 0xff000000], 'pimreg0\x00', 'veth1_to_hsr\x00'}, 0x0, 0x158, 0x198, 0x0, {0x5002}, [@common=@unspec=@rateest={{0x68}, {'veth0_vlan\x00', 'geneve0\x00', 0x23, 0x0, 0x5, 0x9, 0x2f, 0x6, {0x3}, {0xd9}}}, @common=@dst={{0x48}, {0x4, 0x2, 0x0, [0x9, 0x1, 0x2, 0x6, 0x80, 0x4311, 0x4, 0xe5f3, 0x4, 0x6, 0xf, 0xb7c2, 0x0, 0x2, 0x2, 0x713a], 0xf}}]}, @common=@inet=@TCPOPTSTRIP={0x40, 'TCPOPTSTRIP\x00', 0x0, {[0xfffffff6, 0x3, 0x3, 0x0, 0x10000, 0xaf6, 0x3ff, 0x5]}}}, {{@uncond, 0x0, 0x1e0, 0x228, 0x0, {}, [@common=@rt={{0x138}, {0x0, [], 0x0, 0x0, 0x0, [@private0={0xfc, 0x0, '\x00', 0x1}, @mcast1, @ipv4={'\x00', '\xff\xff', @loopback}, @mcast2, @local, @private1, @local, @dev, @rand_addr=' \x01\x00', @private1, @mcast2, @dev, @private2, @private1, @loopback, @loopback]}}]}, @DNPT={0x48, 'DNPT\x00', 0x0, {@ipv4=@private, @ipv6=@private1}}}, {{@uncond, 0x0, 0x2d8, 0x300, 0x0, {}, [@common=@unspec=@bpf0={{0x230}, {0x0, [{}, {}, {}, {}, {0x0, 0x0, 0x0, 0x40000}, {}, {}, {}, {0x0, 0x0, 0x3}, {}, {}, {}, {}, {0x0, 0x4}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x0, 0x4}, {}, {0x0, 0x0, 0x10}]}}]}, @inet=@DSCP={0x28, 'DSCP\x00', 0x0, {0x14}}}, {{@uncond, 0x0, 0xf8, 0x120, 0x0, {}, [@inet=@rpfilter={{0x28}}, @common=@mh={{0x28}, {"7719"}}]}, @unspec=@CHECKSUM={0x28}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0xa08) 1.474219579s ago: executing program 0 (id=13788): r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) ioctl$sock_bt_hci(r0, 0x800448d4, 0x0) 1.452460789s ago: executing program 8 (id=13789): syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x3000046, &(0x7f0000000800)={[{@grpquota}, {@data_err_abort}, {@jqfmt_vfsv1}, {@dioread_lock}, {@data_err_ignore}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x4007b1}}, {@errors_continue}, {@grpquota}, {@nobh}, {@user_xattr}, {@bh}, {@commit={'commit', 0x3d, 0x5}}]}, 0x1, 0x553, &(0x7f0000000080)="$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") syz_mount_image$vfat(&(0x7f0000000140), &(0x7f0000003a40)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x9320d3, 0x0, 0xfb, 0x0, &(0x7f00000000c0)) 1.402597001s ago: executing program 7 (id=13790): r0 = syz_open_dev$sndpcmp(&(0x7f0000000b00), 0x0, 0x0) ioctl$SNDRV_PCM_IOCTL_HW_REFINE(r0, 0xc2604110, &(0x7f0000000040)={0x0, [[0x89ef8], [0x207], [0x7]], '\x00', [{}, {}, {}, {0x0, 0x0, 0x0, 0x1, 0x1}, {}, {}, {}, {}, {0xfffffc00}], '\x00', 0x1000}) 1.253416082s ago: executing program 6 (id=13791): r0 = socket$inet6_sctp(0xa, 0x1, 0x84) sendto$inet6(r0, &(0x7f0000000080)='j', 0x1, 0x2000c851, &(0x7f0000000140)={0xa, 0x4e22, 0xfffffffc, @loopback={0x44000000}, 0xfffffffe}, 0x1c) 1.177761558s ago: executing program 9 (id=13792): alarm(0x8000000000000001) alarm(0x0) 1.166459815s ago: executing program 4 (id=13793): r0 = socket$kcm(0xa, 0x2, 0x73) sendmsg$inet(r0, &(0x7f0000001180)={&(0x7f0000000000)={0xa, 0x0, @empty=0xf5ff}, 0x10, 0x0}, 0x0) 1.16619185s ago: executing program 0 (id=13794): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000003c0)=@newlink={0x44, 0x10, 0x437, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x24, 0x12, 0x0, 0x1, @bond={{0x9}, {0x14, 0x2, 0x0, 0x1, [@IFLA_BOND_FAIL_OVER_MAC={0x5}, @IFLA_BOND_PRIMARY_RESELECT={0x5}]}}}]}, 0x44}}, 0x0) 1.117562613s ago: executing program 7 (id=13795): r0 = socket$nl_crypto(0x10, 0x3, 0x15) sendmsg$netlink(r0, &(0x7f0000000880)={0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000500)={0x10, 0x12, 0x509}, 0x10}], 0x1, 0x0, 0x0, 0x40480c5}, 0x0) 897.268024ms ago: executing program 9 (id=13796): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000340)=ANY=[@ANYBLOB="2800000068000100030010000000008000000000000000000400020004000b00060003000013"], 0x28}, 0x1, 0x0, 0x0, 0x4008000}, 0x4000) 836.979348ms ago: executing program 4 (id=13797): r0 = fsopen(&(0x7f0000000080)='gfs2\x00', 0x0) fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0) 815.204739ms ago: executing program 8 (id=13798): r0 = syz_open_procfs(0x0, &(0x7f0000019140)='net/ip6_mr_vif\x00') pread64(r0, &(0x7f0000000080)=""/102356, 0x18fd4, 0x3) 709.207201ms ago: executing program 7 (id=13799): prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]}) set_tid_address(0x0) 709.047735ms ago: executing program 6 (id=13800): r0 = socket(0x40000000015, 0x5, 0x0) getsockopt(r0, 0x200000000114, 0x2710, 0x0, 0x0) 686.457529ms ago: executing program 0 (id=13801): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000540)=@newtaction={0x78, 0x30, 0xb, 0x0, 0x0, {}, [{0x64, 0x1, [@m_ct={0x60, 0x1, 0x0, 0x0, {{0x7}, {0x38, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18}, @TCA_CT_LABELS={0x12, 0x7, "4614c334e344ae53204373dc0ddeb17f"}, @TCA_CT_ZONE={0x6, 0x8}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0x78}}, 0x0) 675.029178ms ago: executing program 9 (id=13802): r0 = openat$dsp1(0xffffffffffffff9c, &(0x7f0000000040), 0x181000, 0x0) ioctl$SOUND_MIXER_READ_DEVMASK(r0, 0x80044dfe, &(0x7f0000000140)) 505.786591ms ago: executing program 7 (id=13803): r0 = socket$inet_sctp(0x2, 0x1, 0x84) setsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000140)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x300, 0x0, 0x5, 0x7a880bb668777da9}, 0x9c) 440.89455ms ago: executing program 0 (id=13804): r0 = syz_open_dev$sndctrl(&(0x7f0000000000), 0x0, 0x2000) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_NEXT_DEVICE(r0, 0xc0045540, &(0x7f0000000040)=0x80000000) 396.132801ms ago: executing program 4 (id=13805): r0 = socket$inet6_mptcp(0xa, 0x1, 0x106) setsockopt$inet6_int(r0, 0x29, 0x49, 0x0, 0x0) 275.384637ms ago: executing program 7 (id=13806): r0 = syz_open_dev$video4linux(&(0x7f0000000080), 0x2, 0x0) ioctl$VIDIOC_QUERYMENU(r0, 0xc040564a, &(0x7f0000000140)={0x0, 0x1, @value=0x100b}) 256.773236ms ago: executing program 8 (id=13807): r0 = syz_open_procfs(0x0, &(0x7f00000005c0)='net/rt6_stats\x00') preadv(r0, &(0x7f0000000d00)=[{&(0x7f0000000040)=""/160, 0xa0}], 0x1, 0xffff, 0x981) 191.190659ms ago: executing program 6 (id=13808): r0 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000180), 0x41, 0x0) ioctl$SNDCTL_MIDI_PRETIME(r0, 0xc0046d00, 0x0) 190.592141ms ago: executing program 0 (id=13809): r0 = socket$nl_rdma(0x10, 0x3, 0x14) sendmsg$RDMA_NLDEV_CMD_PORT_GET(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)=ANY=[@ANYBLOB="2000000005142106"], 0x20}}, 0x0) 163.594674ms ago: executing program 9 (id=13810): r0 = socket(0x25, 0x1, 0x0) sendmsg$key(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={0x0}}, 0x48009) 110.827855ms ago: executing program 4 (id=13811): r0 = syz_open_dev$dri(&(0x7f0000000180), 0x1, 0x0) ioctl$DRM_IOCTL_MODE_CREATEPROPBLOB(r0, 0xc01064bd, &(0x7f00000000c0)={&(0x7f0000000040)="c0e2c3", 0x259584305129a66}) 0s ago: executing program 7 (id=13812): seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000240)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x3, 0x7fff0000}]}) fgetxattr(0xffffffffffffffff, 0x0, 0x0, 0x0) kernel console output (not intermixed with test programs): ce loop6) in ext4_reserve_inode_write:5899: Corrupt filesystem [ 1138.961208][ T1452] (syz.4.11998,1452,1):ocfs2_quota_read:201 ERROR: status = -5 [ 1138.977630][T15981] appletouch 8-1:0.58: probe with driver appletouch failed with error -5 [ 1138.987912][T15981] usbhid 8-1:0.58: couldn't find an input interrupt endpoint [ 1139.036526][ T1487] EXT4-fs error (device loop6): ext4_dirty_inode:6103: inode #3: comm syz.6.12013: mark_inode_dirty error [ 1139.045389][ T1452] Quota error (device loop4): find_next_id: Can't read quota tree block 5 [ 1139.062895][T15981] usb 8-1: USB disconnect, device number 16 [ 1139.084851][ T1487] Quota error (device loop6): write_blk: dquota write failed [ 1139.106853][ T1487] EXT4-fs error (device loop6): ext4_map_blocks:675: inode #3: block 1: comm syz.6.12013: lblock 6 mapped to illegal pblock 1 (length 1) [ 1139.121004][ T1452] (syz.4.11998,1452,0):ocfs2_get_next_id:921 ERROR: status = -5 [ 1139.172455][ T1487] Quota error (device loop6): write_blk: dquota write failed [ 1139.216454][ T1487] Quota error (device loop6): qtree_write_dquot: Error -28 occurred while creating quota [ 1139.244897][ T1506] loop0: detected capacity change from 0 to 4096 [ 1139.247979][ T1487] EXT4-fs error (device loop6): ext4_map_blocks:675: inode #3: block 48: comm syz.6.12013: lblock 0 mapped to illegal pblock 48 (length 1) [ 1139.289890][ T1487] Quota error (device loop6): v2_write_file_info: Can't write info structure [ 1139.311989][ T5827] ocfs2: Unmounting device (7,4) on (node local) [ 1139.319281][ T1487] EXT4-fs error (device loop6): ext4_acquire_dquot:6935: comm syz.6.12013: Failed to acquire dquot type 0 [ 1139.368146][ T1467] bridge0: port 1(bridge_slave_0) entered blocking state [ 1139.378449][ T1506] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1139.382146][ T1487] EXT4-fs error (device loop6): ext4_map_blocks:675: inode #3: block 49: comm syz.6.12013: lblock 1 mapped to illegal pblock 49 (length 1) [ 1139.416223][ T1487] Quota error (device loop6): do_insert_tree: Can't read tree quota block 1 [ 1139.425012][ T1487] Quota error (device loop6): qtree_write_dquot: Error -117 occurred while creating quota [ 1139.452403][ T1467] bridge0: port 1(bridge_slave_0) entered disabled state [ 1139.506498][ T1487] EXT4-fs error (device loop6): ext4_acquire_dquot:6935: comm syz.6.12013: Failed to acquire dquot type 0 [ 1139.513611][ T1467] bridge_slave_0: entered allmulticast mode [ 1139.541074][ T1467] bridge_slave_0: entered promiscuous mode [ 1139.554937][ T1467] bridge0: port 2(bridge_slave_1) entered blocking state [ 1139.556324][ T1487] EXT4-fs error (device loop6) in ext4_reserve_inode_write:5899: Corrupt filesystem [ 1139.563101][ T1467] bridge0: port 2(bridge_slave_1) entered disabled state [ 1139.584302][ T1467] bridge_slave_1: entered allmulticast mode [ 1139.600989][ T1467] bridge_slave_1: entered promiscuous mode [ 1139.661260][ T1487] EXT4-fs error (device loop6): ext4_evict_inode:259: inode #15: comm syz.6.12013: mark_inode_dirty error [ 1139.676563][ T55] Bluetooth: hci6: command tx timeout [ 1139.696571][ T1487] EXT4-fs warning (device loop6): ext4_evict_inode:262: couldn't mark inode dirty (err -117) [ 1139.707064][ T1487] EXT4-fs (loop6): 1 orphan inode deleted [ 1139.714913][ T1487] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 1139.761254][ T5845] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1139.821652][ T1514] loop7: detected capacity change from 0 to 256 [ 1139.896667][ T1487] EXT4-fs (loop6): warning: mounting unchecked fs, running e2fsck is recommended [ 1139.921583][ T1487] EXT4-fs error (device loop6): __ext4_remount:6738: comm syz.6.12013: Abort forced by user [ 1139.956925][ T1487] EXT4-fs (loop6): Remounting filesystem read-only [ 1139.985039][ T1467] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 1140.019858][ T1487] EXT4-fs (loop6): re-mounted 00000000-0000-0000-0000-000000000000 r/w. [ 1140.044795][ T1467] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 1140.200930][T19475] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1140.354205][ T1467] team0: Port device team_slave_0 added [ 1140.408098][ T1467] team0: Port device team_slave_1 added [ 1140.501314][ T1528] loop0: detected capacity change from 0 to 1024 [ 1140.735006][ T1467] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 1140.742472][T16002] usb 8-1: new high-speed USB device number 17 using dummy_hcd [ 1140.796318][ T1467] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 1140.894533][ T1467] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 1140.945840][ T1467] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 1140.963579][ T1467] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 1141.006033][T16002] usb 8-1: config 160 has an invalid interface number: 200 but max is 0 [ 1141.025603][T16002] usb 8-1: config 160 has no interface number 0 [ 1141.046089][T16002] usb 8-1: config 160 interface 200 has no altsetting 0 [ 1141.059454][ T1467] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 1141.090836][T16002] usb 8-1: New USB device found, idVendor=21bb, idProduct=2070, bcdDevice=87.0b [ 1141.120591][T16002] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1141.124190][ T1544] kernel profiling enabled (shift: 63) [ 1141.137768][ T1512] loop8: detected capacity change from 0 to 32768 [ 1141.154059][T16002] usb 8-1: Product: syz [ 1141.159846][ T1544] profiling shift: 63 too large [ 1141.179760][T16002] usb 8-1: Manufacturer: syz [ 1141.184416][T16002] usb 8-1: SerialNumber: syz [ 1141.485751][T16002] usb 8-1: Quirk or no altset; falling back to MIDI 1.0 [ 1141.494112][T16002] usb 8-1: MIDIStreaming interface descriptor not found [ 1141.541947][ T1467] hsr_slave_0: entered promiscuous mode [ 1141.573393][ T1467] hsr_slave_1: entered promiscuous mode [ 1141.600414][ T1467] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 1141.620720][T16002] usb 8-1: USB disconnect, device number 17 [ 1141.648416][ T1467] Cannot create hsr debugfs directory [ 1141.696484][ T1556] netlink: 4 bytes leftover after parsing attributes in process `syz.4.12042'. [ 1141.746242][ T55] Bluetooth: hci6: command tx timeout [ 1141.841636][ T5826] udevd[5826]: error opening ATTR{/sys/devices/platform/dummy_hcd.7/usb8/8-1/8-1:160.200/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 1142.099491][ T1564] (unnamed net_device) (uninitialized): option active_slave: mode dependency failed, not supported in mode balance-rr(0) [ 1142.266937][ T1570] netlink: 270 bytes leftover after parsing attributes in process `syz.6.12049'. [ 1142.437485][ T1576] netlink: 12 bytes leftover after parsing attributes in process `syz.4.12052'. [ 1143.308120][ T1467] netdevsim netdevsim9 netdevsim0: renamed from eth0 [ 1143.377962][ T1467] netdevsim netdevsim9 netdevsim1: renamed from eth1 [ 1143.424003][ T1467] netdevsim netdevsim9 netdevsim2: renamed from eth2 [ 1143.532110][ T1467] netdevsim netdevsim9 netdevsim3: renamed from eth3 [ 1143.811983][ T1628] vxcan2: entered promiscuous mode [ 1143.831720][ T55] Bluetooth: hci6: command tx timeout [ 1144.169964][ T1467] 8021q: adding VLAN 0 to HW filter on device bond0 [ 1144.191811][ T1467] 8021q: adding VLAN 0 to HW filter on device team0 [ 1144.277140][ T62] bridge0: port 1(bridge_slave_0) entered blocking state [ 1144.284401][ T62] bridge0: port 1(bridge_slave_0) entered forwarding state [ 1144.345266][ T62] bridge0: port 2(bridge_slave_1) entered blocking state [ 1144.352522][ T62] bridge0: port 2(bridge_slave_1) entered forwarding state [ 1144.578461][ T1652] tmpfs: Bad value for 'nr_blocks' [ 1144.941704][ T1666] netlink: 56 bytes leftover after parsing attributes in process `syz.6.12096'. [ 1145.032170][ T1659] loop0: detected capacity change from 0 to 4096 [ 1145.083786][ T1659] ntfs3(loop0): Different NTFS sector size (4096) and media sector size (512). [ 1145.301003][ T1659] ntfs3(loop0): ino=1a, mi_enum_attr [ 1145.323617][ T1659] ntfs3(loop0): Mark volume as dirty due to NTFS errors [ 1145.384873][ T1659] ntfs3(loop0): Failed to initialize $Extend/$ObjId. [ 1145.392159][ T1674] netlink: 28 bytes leftover after parsing attributes in process `syz.7.12099'. [ 1145.417971][ T1638] loop8: detected capacity change from 0 to 32768 [ 1145.424728][ T1674] netlink: 28 bytes leftover after parsing attributes in process `syz.7.12099'. [ 1145.502766][ T1638] ocfs2: Mounting device (7,8) on (node local, slot 0) with ordered data mode. [ 1145.575823][ T1467] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 1145.908641][ T55] Bluetooth: hci6: command tx timeout [ 1145.909063][T23070] ocfs2: Unmounting device (7,8) on (node local) [ 1146.551527][ T1664] loop4: detected capacity change from 0 to 40427 [ 1146.613260][ T1664] F2FS-fs (loop4): Invalid log_blocksize (268), supports only 12 [ 1146.650626][ T1664] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock [ 1146.688743][ T1710] netlink: 'syz.0.12113': attribute type 1 has an invalid length. [ 1146.730181][ T1664] F2FS-fs (loop4): invalid crc value [ 1146.756323][ T1710] netlink: 184 bytes leftover after parsing attributes in process `syz.0.12113'. [ 1146.944889][ T1467] veth0_vlan: entered promiscuous mode [ 1147.048976][ T1467] veth1_vlan: entered promiscuous mode [ 1147.063603][ T1718] netlink: 20 bytes leftover after parsing attributes in process `syz.0.12115'. [ 1147.213957][ T1467] veth0_macvtap: entered promiscuous mode [ 1147.266263][ T1664] F2FS-fs (loop4): Try to recover 1th superblock, ret: 0 [ 1147.296516][ T1467] veth1_macvtap: entered promiscuous mode [ 1147.306536][ T1664] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5 [ 1147.406972][ T1467] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 1147.442485][ T1467] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 1147.500838][ T30] audit: type=1800 audit(2000003128.260:1876): pid=1664 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.12095" name="file0" dev="loop4" ino=10 res=0 errno=0 [ 1147.539902][ T1467] netdevsim netdevsim9 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 1147.598028][ T1467] netdevsim netdevsim9 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 1147.622869][ T1467] netdevsim netdevsim9 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 1147.633959][ T1727] loop0: detected capacity change from 0 to 16 [ 1147.667030][ T1467] netdevsim netdevsim9 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 1147.677974][ T1727] erofs (device loop0): mounted with root inode @ nid 36. [ 1147.734973][ T1727] syz.0.12119: attempt to access beyond end of device [ 1147.734973][ T1727] loop0: rw=0, sector=14425508768, nr_sectors = 8 limit=16 [ 1147.783078][ T1727] erofs (device loop0): read error -5 @ 123 of nid 36 [ 1147.812613][ T1706] loop6: detected capacity change from 0 to 32768 [ 1147.931900][ T1703] loop8: detected capacity change from 0 to 32768 [ 1147.938958][ T1706] (syz.6.12112,1706,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 1147.996777][ T62] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1147.997220][ T1703] BTRFS: device fsid e417788f-7a09-42b2-9266-8ddc5d5d35d2 devid 1 transid 8 /dev/loop8 (7:8) scanned by syz.8.12110 (1703) [ 1148.040545][ T1706] (syz.6.12112,1706,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 1148.045516][ T62] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1148.091731][ T1703] BTRFS info (device loop8): first mount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2 [ 1148.141146][ T1703] BTRFS info (device loop8): using xxhash64 (xxhash64-generic) checksum algorithm [ 1148.164248][ T1706] JBD2: Ignoring recovery information on journal [ 1148.187276][ T1703] BTRFS info (device loop8): disk space caching is enabled [ 1148.195347][ T1703] BTRFS warning (device loop8): space cache v1 is being deprecated and will be removed in a future release, please use -o space_cache=v2 [ 1148.242070][ T36] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1148.308603][ T1706] ocfs2: Mounting device (7,6) on (node local, slot 0) with ordered data mode. [ 1148.319213][ T36] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1148.407835][ T1706] ocfs2: Unmounting device (7,6) on (node local) [ 1148.620861][ T1703] BTRFS info (device loop8): rebuilding free space tree [ 1148.735971][ T1703] BTRFS info (device loop8): disabling free space tree [ 1148.793445][ T1703] BTRFS info (device loop8): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1) [ 1148.866989][ T1703] BTRFS info (device loop8): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2) [ 1149.080011][ T1763] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 1149.242398][T23070] BTRFS info (device loop8): last unmount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2 [ 1149.255901][ T1765] loop7: detected capacity change from 0 to 1024 [ 1149.528811][T17174] hfsplus: b-tree write err: -5, ino 4 [ 1150.266660][ T1798] netlink: 36 bytes leftover after parsing attributes in process `syz.0.12144'. [ 1150.693182][ T1812] netlink: 132 bytes leftover after parsing attributes in process `syz.0.12151'. [ 1151.826649][ T30] audit: type=1326 audit(2000003132.580:1877): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=1845 comm="syz.4.12168" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efc65b8e969 code=0x7ffc0000 [ 1151.907078][T15986] usb 9-1: new high-speed USB device number 23 using dummy_hcd [ 1151.939222][ T30] audit: type=1326 audit(2000003132.580:1878): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=1845 comm="syz.4.12168" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efc65b8e969 code=0x7ffc0000 [ 1152.046258][ T30] audit: type=1326 audit(2000003132.620:1879): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=1845 comm="syz.4.12168" exe="/root/syz-executor" sig=0 arch=c000003e syscall=82 compat=0 ip=0x7efc65b8e969 code=0x7ffc0000 [ 1152.060613][ T1818] loop6: detected capacity change from 0 to 32768 [ 1152.095324][T15986] usb 9-1: Using ep0 maxpacket: 8 [ 1152.101242][ T1818] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop6 (7:6) scanned by syz.6.12154 (1818) [ 1152.128639][T15986] usb 9-1: unable to get BOS descriptor or descriptor too short [ 1152.166785][T15986] usb 9-1: config 1 interface 0 altsetting 7 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 1152.188845][ T30] audit: type=1326 audit(2000003132.620:1880): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=1845 comm="syz.4.12168" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efc65b8e969 code=0x7ffc0000 [ 1152.197177][ T1818] BTRFS info (device loop6): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 1152.217044][T15986] usb 9-1: config 1 interface 0 has no altsetting 0 [ 1152.278085][T15986] usb 9-1: New USB device found, idVendor=044f, idProduct=b654, bcdDevice= 0.40 [ 1152.290034][T15986] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1152.309361][ T1818] BTRFS info (device loop6): using sha256 (sha256-ni) checksum algorithm [ 1152.328230][ T30] audit: type=1326 audit(2000003132.620:1881): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=1845 comm="syz.4.12168" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efc65b8e969 code=0x7ffc0000 [ 1152.362741][T15986] usb 9-1: Product: syz [ 1152.377961][T15986] usb 9-1: Manufacturer: syz [ 1152.401307][T15986] usb 9-1: SerialNumber: syz [ 1152.406067][ T1818] BTRFS info (device loop6): using free-space-tree [ 1152.496610][ T1868] netlink: ct family unspecified [ 1152.501646][ T1868] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 1152.775612][ T1886] x_tables: duplicate underflow at hook 3 [ 1152.887220][T15986] usbhid 9-1:1.0: can't add hid device: -71 [ 1152.893297][T15986] usbhid 9-1:1.0: probe with driver usbhid failed with error -71 [ 1152.966676][T19475] BTRFS info (device loop6): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 1153.043439][T15986] usb 9-1: USB disconnect, device number 23 [ 1153.146502][ T1902] loop7: detected capacity change from 0 to 256 [ 1153.153811][ T1902] exfat: Deprecated parameter 'namecase' [ 1153.198945][ T1902] exfat: Deprecated parameter 'namecase' [ 1153.311473][ T1902] exFAT-fs (loop7): failed to load upcase table (idx : 0x00010000, chksum : 0xc2dc8e67, utbl_chksum : 0xe619d30d) [ 1153.843309][ T1917] A link change request failed with some changes committed already. Interface C may have been left with an inconsistent configuration, please check. [ 1153.876547][ T1920] nftables ruleset with unbound chain [ 1153.996799][ T1923] loop9: detected capacity change from 0 to 512 [ 1154.250303][ T1923] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1154.336616][ T1923] ext4 filesystem being mounted at /16/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 1154.456637][ T1940] xt_cgroup: path and classid specified [ 1154.556383][ T1946] netlink: zone id is out of range [ 1154.580173][ T1946] netlink: zone id is out of range [ 1154.620521][ T1946] netlink: zone id is out of range [ 1154.625683][ T1946] netlink: zone id is out of range [ 1154.658245][ T1467] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1154.692580][ T1937] loop6: detected capacity change from 0 to 4096 [ 1154.714212][ T1946] netlink: zone id is out of range [ 1154.728865][ T1946] netlink: zone id is out of range [ 1154.740280][ T1946] netlink: del zone limit has 8 unknown bytes [ 1154.773217][ T1937] ntfs3(loop6): Different NTFS sector size (4096) and media sector size (512). [ 1154.900665][ T1937] ntfs3(loop6): ino=19, mi_enum_attr [ 1154.932995][ T1937] ntfs3(loop6): Mark volume as dirty due to NTFS errors [ 1155.037046][ T1937] ntfs3(loop6): failed to convert "c46c" to default [ 1155.078726][ T1958] loop8: detected capacity change from 0 to 256 [ 1155.090289][ T1937] ntfs3(loop6): ino=20, mi_enum_attr [ 1155.144659][ T1958] exFAT-fs (loop8): failed to load upcase table (idx : 0x00017f3e, chksum : 0x0b83170a, utbl_chksum : 0xe619d30d) [ 1155.497724][ T1966] netlink: 'syz.0.12216': attribute type 3 has an invalid length. [ 1155.519622][ T1968] openvswitch: netlink: Flow key attribute not present in set flow. [ 1156.125468][ T1992] netlink: 'syz.0.12229': attribute type 6 has an invalid length. [ 1156.257345][ T1996] hsr0: entered promiscuous mode [ 1156.270900][ T1996] A link change request failed with some changes committed already. Interface hsr0 may have been left with an inconsistent configuration, please check. [ 1156.479737][ T2004] loop4: detected capacity change from 0 to 512 [ 1156.527502][ T2004] EXT4-fs: Ignoring removed oldalloc option [ 1156.749743][ T2004] EXT4-fs error (device loop4): ext4_xattr_inode_iget:433: comm syz.4.12235: Parent and EA inode have the same ino 15 [ 1156.820445][ T2004] EXT4-fs (loop4): Remounting filesystem read-only [ 1156.854979][ T2004] EXT4-fs warning (device loop4): ext4_evict_inode:262: couldn't mark inode dirty (err -30) [ 1156.911728][ T2004] EXT4-fs (loop4): 1 orphan inode deleted [ 1156.929568][ T2004] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1157.203684][ T5827] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1157.467519][ T2007] loop0: detected capacity change from 0 to 32768 [ 1157.504761][ T1998] loop9: detected capacity change from 0 to 32768 [ 1157.684645][ T1998] XFS (loop9): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 1157.772520][ T2044] loop7: detected capacity change from 0 to 256 [ 1157.845690][ T2044] exFAT-fs (loop7): failed to load upcase table (idx : 0x00011e5d, chksum : 0x63a11b78, utbl_chksum : 0xe619d30d) [ 1158.044545][ T1998] XFS (loop9): Ending clean mount [ 1158.323274][ T2027] loop8: detected capacity change from 0 to 32768 [ 1158.385659][ T2027] XFS (loop8): DAX unsupported by block device. Turning off DAX. [ 1158.398539][ T1467] XFS (loop9): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 1158.426432][ T2056] openvswitch: netlink: Either Ethernet header or EtherType is required. [ 1158.457771][ T2027] XFS (loop8): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb [ 1158.753679][ T2027] XFS (loop8): Ending clean mount [ 1158.779970][ T2027] XFS (loop8): Quotacheck needed: Please wait. [ 1158.847096][T15988] usb 8-1: new high-speed USB device number 18 using dummy_hcd [ 1158.900011][ T2027] XFS (loop8): Quotacheck: Done. [ 1159.045611][T15988] usb 8-1: Using ep0 maxpacket: 16 [ 1159.087333][ T2074] loop6: detected capacity change from 0 to 512 [ 1159.114668][T15988] usb 8-1: config 1 contains an unexpected descriptor of type 0x2, skipping [ 1159.126203][T15988] usb 8-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 1159.145307][T15988] usb 8-1: config 1 has 2 interfaces, different from the descriptor's value: 3 [ 1159.155277][T15988] usb 8-1: config 1 has no interface number 1 [ 1159.173183][T15988] usb 8-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 0 [ 1159.174572][T23070] XFS (loop8): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb [ 1159.194609][T15988] usb 8-1: config 1 interface 2 altsetting 1 endpoint 0x82 has an invalid bInterval 110, changing to 7 [ 1159.194649][T15988] usb 8-1: config 1 interface 2 altsetting 1 endpoint 0x82 has invalid maxpacket 25974, setting to 1024 [ 1159.197594][T15988] usb 8-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40 [ 1159.245371][ T2074] EXT4-fs (loop6): Cannot turn on journaled quota: type 0: error -2 [ 1159.336951][ T2074] EXT4-fs (loop6): Cannot turn on journaled quota: type 1: error -2 [ 1159.342495][T15988] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1159.355459][T15988] usb 8-1: Product: syz [ 1159.382538][ T2074] EXT4-fs (loop6): 1 truncate cleaned up [ 1159.390457][T15988] usb 8-1: Manufacturer: syz [ 1159.425939][ T2074] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1159.439730][T15988] usb 8-1: SerialNumber: syz [ 1159.570799][ T2074] EXT4-fs (loop6): re-mounted 00000000-0000-0000-0000-000000000000 ro. [ 1159.698126][T15988] usb 8-1: 2:1 : no or invalid class specific endpoint descriptor [ 1159.706054][T15988] usb 8-1: found format II with max.bitrate = 0, frame size=0 [ 1159.767331][T15988] usb 8-1: 2:1 : invalid UAC_FORMAT_TYPE desc [ 1159.789161][T19475] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1159.854068][T15988] usb 8-1: USB disconnect, device number 18 [ 1159.984016][T13094] udevd[13094]: error opening ATTR{/sys/devices/platform/dummy_hcd.7/usb8/8-1/8-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 1160.417054][ T2079] loop4: detected capacity change from 0 to 32768 [ 1160.424587][ T2095] gre1: entered promiscuous mode [ 1160.485779][ T2079] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop4 (7:4) scanned by syz.4.12263 (2079) [ 1160.584199][ T2079] BTRFS info (device loop4): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 1160.620175][ T2079] BTRFS info (device loop4): using sha256 (sha256-ni) checksum algorithm [ 1160.656952][ T2079] BTRFS info (device loop4): using free-space-tree [ 1160.693963][ T2083] loop9: detected capacity change from 0 to 32768 [ 1160.717101][ T2083] BTRFS: device /dev/loop9 (7:9) using temp-fsid 9839549b-0ccb-4641-96d7-dcb53c2299d6 [ 1160.742467][ T2083] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop9 (7:9) scanned by syz.9.12257 (2083) [ 1160.856214][ T2083] BTRFS info (device loop9): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 1160.879609][ T2083] BTRFS info (device loop9): using sha256 (sha256-ni) checksum algorithm [ 1160.901554][ T2083] BTRFS info (device loop9): using free-space-tree [ 1160.993554][ T2118] loop6: detected capacity change from 0 to 8 [ 1161.057163][ T2118] SQUASHFS error: zlib decompression failed, data probably corrupt [ 1161.108245][ T2118] SQUASHFS error: Failed to read block 0x9b: -5 [ 1161.113912][ T5827] BTRFS info (device loop4): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 1161.136241][ T2118] SQUASHFS error: Unable to read metadata cache entry [99] [ 1161.206437][ T2118] SQUASHFS error: Unable to read inode 0x127 [ 1161.366364][ T2137] netlink: 212408 bytes leftover after parsing attributes in process `syz.8.12275'. [ 1161.561821][ T1467] BTRFS info (device loop9): last unmount of filesystem 9839549b-0ccb-4641-96d7-dcb53c2299d6 [ 1161.586614][ T2139] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 1161.661209][ T2092] loop0: detected capacity change from 0 to 32768 [ 1162.434020][ T2160] loop6: detected capacity change from 0 to 512 [ 1162.523777][ T2160] Quota error (device loop6): do_check_range: Getting dqdh_prev_free 1536 out of range 0-5 [ 1162.558675][ T2160] Quota error (device loop6): qtree_write_dquot: Error -117 occurred while creating quota [ 1162.641017][ T2160] EXT4-fs error (device loop6): ext4_acquire_dquot:6935: comm syz.6.12288: Failed to acquire dquot type 1 [ 1162.689012][ T2166] netlink: 45 bytes leftover after parsing attributes in process `syz.8.12289'. [ 1162.762719][ T2160] EXT4-fs (loop6): 1 truncate cleaned up [ 1162.789886][ T2152] 9pnet_fd: p9_fd_create_tcp (2152): problem connecting socket to 127.0.0.1 [ 1162.790832][ T2160] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1162.906450][ T2160] ext4 filesystem being mounted at /1006/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 1163.146468][ T2170] netlink: 4 bytes leftover after parsing attributes in process `syz.4.12291'. [ 1163.452292][ T2078] EXT4-fs error (device loop6): ext4_validate_block_bitmap:441: comm ext4lazyinit: bg 0: block 248: padding at end of block bitmap is not set [ 1163.571287][ T2150] loop7: detected capacity change from 0 to 32768 [ 1163.597730][T19475] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1163.639258][ T2150] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop7 (7:7) scanned by syz.7.12282 (2150) [ 1163.843909][ T2150] BTRFS info (device loop7): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 1163.939630][ T2150] BTRFS info (device loop7): using sha256 (sha256-ni) checksum algorithm [ 1164.016295][ T2150] BTRFS info (device loop7): using free-space-tree [ 1164.581063][T20057] BTRFS info (device loop7): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 1164.767184][T15985] usb 1-1: new high-speed USB device number 111 using dummy_hcd [ 1164.946449][T15985] usb 1-1: Using ep0 maxpacket: 16 [ 1164.947360][ T2227] netlink: 116 bytes leftover after parsing attributes in process `syz.7.12304'. [ 1165.004229][T15985] usb 1-1: unable to get BOS descriptor or descriptor too short [ 1165.024068][T15985] usb 1-1: config 2 has an invalid interface number: 120 but max is 0 [ 1165.042562][T15985] usb 1-1: config 2 has no interface number 0 [ 1165.062531][T15985] usb 1-1: config 2 interface 120 has no altsetting 0 [ 1165.109767][T15985] usb 1-1: New USB device found, idVendor=1c40, idProduct=0534, bcdDevice=68.f3 [ 1165.139392][T15985] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1165.174035][T15985] usb 1-1: Product: syz [ 1165.182986][ T2231] netlink: 'syz.8.12307': attribute type 11 has an invalid length. [ 1165.216992][ T2231] netlink: 224 bytes leftover after parsing attributes in process `syz.8.12307'. [ 1165.236543][T15985] usb 1-1: Manufacturer: syz [ 1165.241177][T15985] usb 1-1: SerialNumber: syz [ 1165.504669][T15985] i2c-tiny-usb 1-1:2.120: version 68.f3 found at bus 001 address 111 [ 1165.536568][T15985] (null): failure setting delay to 10us [ 1165.552455][T15985] i2c-tiny-usb 1-1:2.120: probe with driver i2c-tiny-usb failed with error -5 [ 1165.624471][T15985] usb 1-1: USB disconnect, device number 111 [ 1165.902062][ T2247] loop7: detected capacity change from 0 to 8 [ 1166.087156][ T2219] loop4: detected capacity change from 0 to 32768 [ 1166.366251][ T2266] loop7: detected capacity change from 0 to 256 [ 1166.442564][ T2219] bcachefs (da441363-bb6a-4ab9-999b-c1f40db4fee2): Using encoding defined by superblock: utf8-12.1.0 [ 1166.658134][ T2265] loop6: detected capacity change from 0 to 4096 [ 1166.701311][ T2265] ntfs3(loop6): Different NTFS sector size (2048) and media sector size (512). [ 1166.708554][ T2219] bcachefs (loop4): starting version 1.7: mi_btree_bitmap opts=metadata_checksum=none,data_checksum=none,compression=lz4,promote_target=invalid device 15,journal_flush_disabled,fsck,norecovery,nojournal_transaction_names,reconstruct_alloc,no_data_io [ 1166.708554][ T2219] allowing incompatible features above 0.0: (unknown version) [ 1166.741597][ C1] vkms_vblank_simulate: vblank timer overrun [ 1166.913036][ T2219] bcachefs (loop4): recovering from clean shutdown, journal seq 10 [ 1166.933295][ T2265] ntfs3(loop6): Failed to initialize $Extend/$ObjId. [ 1166.969463][ T2219] bcachefs (loop4): Version upgrade required: [ 1166.969463][ T2219] Version upgrade from 0.24: unwritten_extents to 1.7: mi_btree_bitmap incomplete [ 1166.969463][ T2219] Doing incompatible version upgrade from 0.24: unwritten_extents to 1.25: extent_flags [ 1166.969463][ T2219] running recovery passes: check_allocations,check_alloc_info,check_lrus,check_btree_backpointers,check_backpointers_to_extents,check_extents_to_backpointers,check_alloc_to_lru_refs,bucket_gens_init,check_snapshot_trees,check_snapshots,check_subvols,check_subvol_children,delete_dead_snapshots,check_inodes,check_extents,check_indirect_extents,check_dirents,check_xattrs,check_root,check_unreachable_inodes,check_subvolume_structure,check_directory_structure,check_nlinks,set_fs_needs_rebalance [ 1167.039253][ C1] vkms_vblank_simulate: vblank timer overrun [ 1167.165006][ T2219] bcachefs (loop4): dropping and reconstructing all alloc info [ 1167.242419][ T2219] bcachefs (loop4): accounting_read... done [ 1167.254309][ T2219] bcachefs (loop4): alloc_read... done [ 1167.316361][ T2219] bcachefs (loop4): snapshots_read... done [ 1167.322824][ T2219] bcachefs (loop4): done starting filesystem [ 1167.550079][ T2282] bridge0: port 2(bridge_slave_1) entered disabled state [ 1167.557869][ T2282] bridge0: port 1(bridge_slave_0) entered disabled state [ 1167.679243][ T5827] bcachefs (loop4): shutting down [ 1168.020887][ T5827] bcachefs (loop4): shutdown complete [ 1168.138295][ T2274] loop8: detected capacity change from 0 to 32768 [ 1168.149070][ T2274] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop8 (7:8) scanned by syz.8.12324 (2274) [ 1168.153568][ T2274] BTRFS info (device loop8): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 1168.153662][ T2274] BTRFS info (device loop8): using sha256 (sha256-ni) checksum algorithm [ 1168.153698][ T2274] BTRFS info (device loop8): using free-space-tree [ 1168.280964][T15985] usb 7-1: new high-speed USB device number 26 using dummy_hcd [ 1168.427457][T15985] usb 7-1: Using ep0 maxpacket: 8 [ 1168.435480][T23070] BTRFS info (device loop8): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 1168.452272][T15985] usb 7-1: config 0 has an invalid interface number: 31 but max is 0 [ 1168.476442][T15985] usb 7-1: config 0 has no interface number 0 [ 1168.514742][T15985] usb 7-1: New USB device found, idVendor=046d, idProduct=08c3, bcdDevice=6b.16 [ 1168.557202][ T2327] netlink: 56 bytes leftover after parsing attributes in process `syz.0.12344'. [ 1168.576256][T15985] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1168.584282][T15985] usb 7-1: Product: syz [ 1168.596638][ T2282] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 1168.604794][T15985] usb 7-1: Manufacturer: syz [ 1168.624731][T15985] usb 7-1: SerialNumber: syz [ 1168.653350][T15985] usb 7-1: config 0 descriptor?? [ 1168.679702][ T2282] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 1168.885689][T15985] usb 7-1: USB disconnect, device number 26 [ 1169.183066][ T2282] netdevsim netdevsim9 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0 [ 1169.205957][ T2282] netdevsim netdevsim9 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0 [ 1169.233004][ T2282] netdevsim netdevsim9 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0 [ 1169.256108][ T2282] netdevsim netdevsim9 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0 [ 1170.028096][T15985] usb 9-1: new high-speed USB device number 24 using dummy_hcd [ 1170.255707][T15985] usb 9-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3 [ 1170.274328][T15985] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1170.298342][T15985] usb 9-1: config 0 descriptor?? [ 1170.320299][T15985] cp210x 9-1:0.0: cp210x converter detected [ 1170.660811][ T2383] loop7: detected capacity change from 0 to 256 [ 1170.679176][ T2383] exfat: Deprecated parameter 'namecase' [ 1170.732944][T15985] cp210x 9-1:0.0: failed to get vendor val 0x0010 size 3: -71 [ 1170.745709][ T2388] netlink: 132 bytes leftover after parsing attributes in process `syz.0.12370'. [ 1170.754508][T15985] cp210x 9-1:0.0: failed to get vendor val 0x000e size 678: -71 [ 1170.768973][ T2383] exFAT-fs (loop7): failed to load upcase table (idx : 0x00010000, chksum : 0xbe66f6fd, utbl_chksum : 0xe619d30d) [ 1170.804824][T15985] cp210x 9-1:0.0: GPIO initialisation failed: -71 [ 1170.850915][T15985] usb 9-1: cp210x converter now attached to ttyUSB0 [ 1170.920209][T15985] usb 9-1: USB disconnect, device number 24 [ 1170.980500][T15985] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0 [ 1170.997541][T15985] cp210x 9-1:0.0: device disconnected [ 1172.222816][ T2436] loop9: detected capacity change from 0 to 256 [ 1172.467550][ T2440] loop8: detected capacity change from 0 to 4096 [ 1172.481484][ T2440] EXT4-fs: Ignoring removed nobh option [ 1172.508918][ T2440] EXT4-fs: Ignoring removed i_version option [ 1172.539664][ T2440] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1172.593743][ T2440] Quota error (device loop8): find_block_dqentry: Quota for id 0 referenced but not present [ 1172.631846][ T2440] Quota error (device loop8): qtree_read_dquot: Can't read quota structure for id 0 [ 1172.641722][ T2440] EXT4-fs error (device loop8): ext4_acquire_dquot:6935: comm syz.8.12390: Failed to acquire dquot type 1 [ 1172.761563][T23070] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1172.922475][ T2453] netlink: 16 bytes leftover after parsing attributes in process `syz.4.12395'. [ 1172.994488][ T2458] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 1173.835832][ T2490] netlink: 'syz.9.12408': attribute type 6 has an invalid length. [ 1174.475113][ T2381] netdevsim netdevsim6 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0 [ 1174.486866][ T2500] loop4: detected capacity change from 0 to 32768 [ 1174.495392][ T2381] netdevsim netdevsim6 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0 [ 1174.504614][ T2500] BTRFS: device fsid 3a375e4e-b156-4d76-a2ad-16e198ce1409 devid 1 transid 8 /dev/loop4 (7:4) scanned by syz.4.12411 (2500) [ 1174.518197][ T2381] netdevsim netdevsim6 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0 [ 1174.527971][ T2381] netdevsim netdevsim6 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0 [ 1174.621950][ T2500] BTRFS info (device loop4): first mount of filesystem 3a375e4e-b156-4d76-a2ad-16e198ce1409 [ 1174.646087][ T2500] BTRFS info (device loop4): using xxhash64 (xxhash64-generic) checksum algorithm [ 1174.684956][ T2500] BTRFS info (device loop4): using free-space-tree [ 1175.007553][ T5827] BTRFS info (device loop4): last unmount of filesystem 3a375e4e-b156-4d76-a2ad-16e198ce1409 [ 1175.458197][ T2547] netlink: 'syz.4.12416': attribute type 6 has an invalid length. [ 1175.727861][ T2554] netlink: 60 bytes leftover after parsing attributes in process `syz.0.12426'. [ 1175.845806][ T2554] netlink: 12 bytes leftover after parsing attributes in process `syz.0.12426'. [ 1175.919388][ T2554] netlink: 60 bytes leftover after parsing attributes in process `syz.0.12426'. [ 1176.323824][ T2581] netlink: 'syz.8.12435': attribute type 30 has an invalid length. [ 1176.366368][ T2583] netlink: 16 bytes leftover after parsing attributes in process `syz.4.12436'. [ 1176.506289][ T2583] netlink: 12 bytes leftover after parsing attributes in process `syz.4.12436'. [ 1176.515408][ T2583] netlink: 20 bytes leftover after parsing attributes in process `syz.4.12436'. [ 1176.556413][ T2588] netlink: 'syz.6.12438': attribute type 1 has an invalid length. [ 1176.564318][ T2588] netlink: 'syz.6.12438': attribute type 11 has an invalid length. [ 1176.634017][ T2588] netlink: 224 bytes leftover after parsing attributes in process `syz.6.12438'. [ 1176.813057][ T2597] loop0: detected capacity change from 0 to 256 [ 1176.931828][ T2604] SET target dimension over the limit! [ 1177.172387][ T2616] loop6: detected capacity change from 0 to 64 [ 1177.201462][ T2618] netlink: 52 bytes leftover after parsing attributes in process `syz.7.12450'. [ 1177.258157][ T2618] netlink: 28 bytes leftover after parsing attributes in process `syz.7.12450'. [ 1177.282250][ T2618] netlink: 28 bytes leftover after parsing attributes in process `syz.7.12450'. [ 1177.376283][T15985] usb 9-1: new high-speed USB device number 25 using dummy_hcd [ 1177.566217][T15985] usb 9-1: Using ep0 maxpacket: 16 [ 1177.596257][T15985] usb 9-1: config 1 has an invalid descriptor of length 102, skipping remainder of the config [ 1177.643866][T15985] usb 9-1: config 1 has 1 interface, different from the descriptor's value: 3 [ 1177.696489][T15985] usb 9-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40 [ 1177.705929][T15985] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1177.752986][T15985] usb 9-1: Product: syz [ 1177.780802][T15985] usb 9-1: Manufacturer: syz [ 1177.785450][T15985] usb 9-1: SerialNumber: syz [ 1177.873698][ T2651] loop7: detected capacity change from 0 to 64 [ 1177.982845][ T2651] Trying to free block not in datazone [ 1178.010148][ T2651] Trying to free block not in datazone [ 1178.059019][T15985] usb 9-1: 0:2 : does not exist [ 1178.073972][ T2651] Trying to free block not in datazone [ 1178.079333][T15985] usb 9-1: unit 9 not found! [ 1178.102982][ T2659] loop9: detected capacity change from 0 to 8 [ 1178.111753][T15985] usb 9-1: 4:0: cannot get min/max values for control 1 (id 4) [ 1178.123466][ T2651] Trying to free block not in datazone [ 1178.150105][ T2651] minix_free_block (loop7:6): bit already cleared [ 1178.181409][ T2651] Trying to free block not in datazone [ 1178.206304][ T2651] Trying to free block not in datazone [ 1178.257558][T15985] usb 9-1: USB disconnect, device number 25 [ 1178.431101][ T5842] udevd[5842]: error opening ATTR{/sys/devices/platform/dummy_hcd.8/usb9/9-1/9-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 1178.672095][ T2677] netlink: 'syz.4.12473': attribute type 1 has an invalid length. [ 1178.869461][ T2687] netlink: 'syz.7.12477': attribute type 2 has an invalid length. [ 1178.929928][ T2687] netlink: 'syz.7.12477': attribute type 1 has an invalid length. [ 1179.191533][ T2708] netlink: 'syz.9.12484': attribute type 1 has an invalid length. [ 1179.480156][ T30] audit: type=1326 audit(2000003160.240:1882): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=2724 comm="syz.7.12493" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd0a878e969 code=0x7ffc0000 [ 1179.605296][ T30] audit: type=1326 audit(2000003160.240:1883): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=2724 comm="syz.7.12493" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd0a878e969 code=0x7ffc0000 [ 1179.671915][ T2729] loop6: detected capacity change from 0 to 256 [ 1179.703511][ T2729] exfat: Deprecated parameter 'utf8' [ 1179.712700][ T30] audit: type=1326 audit(2000003160.240:1884): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=2724 comm="syz.7.12493" exe="/root/syz-executor" sig=0 arch=c000003e syscall=120 compat=0 ip=0x7fd0a878e969 code=0x7ffc0000 [ 1179.730711][ T2733] netdevsim netdevsim9: Direct firmware load for ..€ failed with error -2 [ 1179.746494][ T2729] exfat: Deprecated parameter 'namecase' [ 1179.772768][ T2735] loop4: detected capacity change from 0 to 512 [ 1179.784979][ T2729] exfat: Deprecated parameter 'utf8' [ 1179.787798][ T2733] netdevsim netdevsim9: Falling back to sysfs fallback for: ..€ [ 1179.831629][ T30] audit: type=1326 audit(2000003160.240:1885): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=2724 comm="syz.7.12493" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd0a878e969 code=0x7ffc0000 [ 1179.859656][ T2729] exFAT-fs (loop6): failed to load upcase table (idx : 0x00010000, chksum : 0xb89b369d, utbl_chksum : 0xe619d30d) [ 1179.928439][ T2735] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1179.948114][ T30] audit: type=1326 audit(2000003160.240:1886): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=2724 comm="syz.7.12493" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd0a878e969 code=0x7ffc0000 [ 1179.954000][ T2735] ext4 filesystem being mounted at /2127/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 1180.088311][ T2751] loop8: detected capacity change from 0 to 2048 [ 1180.141887][ T2751] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 1180.407662][ T5827] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1180.952079][ T2784] netlink: 'syz.7.12515': attribute type 16 has an invalid length. [ 1181.026658][ T2784] __nla_validate_parse: 5 callbacks suppressed [ 1181.026677][ T2784] netlink: 64138 bytes leftover after parsing attributes in process `syz.7.12515'. [ 1182.114925][ T2853] loop6: detected capacity change from 0 to 16 [ 1182.135569][ T2854] xt_l2tp: v2 sid > 0xffff: 117440512 [ 1182.156572][ T2853] erofs (device loop6): mounted with root inode @ nid 36. [ 1182.296414][T15985] usb 9-1: new full-speed USB device number 26 using dummy_hcd [ 1182.386658][ T2866] loop9: detected capacity change from 0 to 256 [ 1182.495192][T15985] usb 9-1: config 0 has an invalid interface number: 120 but max is 0 [ 1182.515250][T15985] usb 9-1: config 0 has no interface number 0 [ 1182.538742][T15985] usb 9-1: config 0 interface 120 altsetting 0 endpoint 0x8A has invalid wMaxPacketSize 0 [ 1182.585302][T15985] usb 9-1: New USB device found, idVendor=16e3, idProduct=f9e9, bcdDevice= 0.58 [ 1182.634697][T15985] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1182.674441][T15985] usb 9-1: config 0 descriptor?? [ 1182.693245][T15985] input: USB Touchscreen 16e3:f9e9 as /devices/platform/dummy_hcd.8/usb9/9-1/9-1:0.120/input/input73 [ 1182.969943][T15988] usb 9-1: USB disconnect, device number 26 [ 1183.196407][T15985] usb 10-1: new high-speed USB device number 2 using dummy_hcd [ 1183.309063][ T2900] dlm: plock device version mismatch: kernel (1.2.0), user (0.0.0) [ 1183.386917][T15985] usb 10-1: Using ep0 maxpacket: 32 [ 1183.442711][T15985] usb 10-1: config 0 has an invalid interface number: 9 but max is 0 [ 1183.467112][T15985] usb 10-1: config 0 has no interface number 0 [ 1183.528730][T15985] usb 10-1: New USB device found, idVendor=06a2, idProduct=0003, bcdDevice=b4.8c [ 1183.559527][T15985] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1183.592311][T15985] usb 10-1: Product: syz [ 1183.633165][T15985] usb 10-1: Manufacturer: syz [ 1183.639154][T15985] usb 10-1: SerialNumber: syz [ 1183.659106][ T2911] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 1183.686267][T15985] usb 10-1: config 0 descriptor?? [ 1183.772154][T15985] gspca_main: gspca_topro-2.14.0 probing 06a2:0003 [ 1183.989386][ T2922] loop7: detected capacity change from 0 to 64 [ 1184.166373][T15985] gspca_topro: reg_w err -71 [ 1184.207768][T15985] gspca_topro: Sensor soi763a [ 1184.268955][T15985] usb 10-1: USB disconnect, device number 2 [ 1184.746312][T15999] usb 5-1: new high-speed USB device number 107 using dummy_hcd [ 1184.937351][T15999] usb 5-1: Using ep0 maxpacket: 16 [ 1184.967608][T15999] usb 5-1: config 254 has an invalid interface number: 235 but max is 0 [ 1184.993422][T15999] usb 5-1: config 254 has no interface number 0 [ 1185.026826][T15999] usb 5-1: config 254 interface 235 altsetting 2 bulk endpoint 0x6 has invalid maxpacket 32 [ 1185.081517][T15999] usb 5-1: config 254 interface 235 has no altsetting 0 [ 1185.133101][T15999] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a0, bcdDevice=2b.f1 [ 1185.161864][T15999] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1185.163942][ T2965] loop9: detected capacity change from 0 to 64 [ 1185.200404][T15999] usb 5-1: Product: syz [ 1185.204634][T15999] usb 5-1: Manufacturer: syz [ 1185.218892][T15999] usb 5-1: SerialNumber: syz [ 1185.243757][ T2941] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22 [ 1185.386459][T15985] usb 7-1: new high-speed USB device number 27 using dummy_hcd [ 1185.474734][ T2941] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22 [ 1185.522175][T15999] usbtest 5-1:254.235: Linux gadget zero [ 1185.557514][T15999] usbtest 5-1:254.235: high-speed {control in/out bulk-in bulk-out} tests (+alt) [ 1185.625080][T15985] usb 7-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08 [ 1185.648016][T15985] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1185.656075][T15985] usb 7-1: Product: syz [ 1185.681172][T15985] usb 7-1: Manufacturer: syz [ 1185.693839][T15985] usb 7-1: SerialNumber: syz [ 1185.740819][T15985] usb 7-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested [ 1185.746548][T15999] usb 5-1: USB disconnect, device number 107 [ 1185.796889][T15988] usb 7-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008 [ 1185.893697][ T2981] netlink: 8 bytes leftover after parsing attributes in process `syz.7.12600'. [ 1185.966292][ T2981] netlink: 312 bytes leftover after parsing attributes in process `syz.7.12600'. [ 1186.026305][ T2981] netlink: 'syz.7.12600': attribute type 1 has an invalid length. [ 1186.290421][T15999] usb 7-1: USB disconnect, device number 27 [ 1186.504366][ T3001] tipc: Trying to set illegal importance in message [ 1186.593357][ T3003] loop7: detected capacity change from 0 to 64 [ 1186.867115][T15988] ath9k_htc 7-1:1.0: ath9k_htc: Target is unresponsive [ 1186.910236][T15988] ath9k_htc: Failed to initialize the device [ 1186.920279][T15999] usb 7-1: ath9k_htc: USB layer deinitialized [ 1186.953119][ T3003] hfs: request for non-existent node 56 in B*Tree [ 1187.016310][ T3003] hfs: request for non-existent node 56 in B*Tree [ 1187.076428][ T3003] hfs: request for non-existent node 57 in B*Tree [ 1187.119386][ T3003] hfs: request for non-existent node 57 in B*Tree [ 1188.575802][ T3055] bridge0: port 2(bridge_slave_1) entered disabled state [ 1188.583330][ T3055] bridge0: port 1(bridge_slave_0) entered disabled state [ 1188.665446][ T3085] usb usb8: usbfs: process 3085 (syz.6.12647) did not claim interface 2 before use [ 1189.610429][ T3055] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 1189.713971][ T3055] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 1190.527276][ T3055] netdevsim netdevsim8 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0 [ 1190.546694][ T3055] netdevsim netdevsim8 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0 [ 1190.566822][ T3055] netdevsim netdevsim8 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0 [ 1190.587146][ T3055] netdevsim netdevsim8 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0 [ 1190.769563][ T3089] netlink: 12 bytes leftover after parsing attributes in process `syz.9.12649'. [ 1191.281602][ T3126] netlink: 'syz.0.12664': attribute type 1 has an invalid length. [ 1191.294793][ T3127] loop8: detected capacity change from 0 to 64 [ 1191.615146][ T3144] NILFS (nbd9): device size too small [ 1192.090151][ T3165] tmpfs: Bad value for 'mpol' [ 1192.095775][ T3166] netlink: 8 bytes leftover after parsing attributes in process `syz.4.12682'. [ 1192.135479][ T3166] netlink: 'syz.4.12682': attribute type 5 has an invalid length. [ 1192.162703][ T3166] netlink: 20 bytes leftover after parsing attributes in process `syz.4.12682'. [ 1192.253299][ T3166] netdevsim netdevsim4 netdevsim0: set [1, 1] type 2 family 0 port 256 - 0 [ 1192.353728][ T3166] netdevsim netdevsim4 netdevsim1: set [1, 1] type 2 family 0 port 256 - 0 [ 1192.368436][ T2435] usb 1-1: new high-speed USB device number 112 using dummy_hcd [ 1192.396425][ T3166] netdevsim netdevsim4 netdevsim2: set [1, 1] type 2 family 0 port 256 - 0 [ 1192.431074][ T3166] netdevsim netdevsim4 netdevsim3: set [1, 1] type 2 family 0 port 256 - 0 [ 1192.472580][ T3166] geneve3: entered promiscuous mode [ 1192.494994][ T3166] geneve3: entered allmulticast mode [ 1192.528041][ T3178] netlink: 8 bytes leftover after parsing attributes in process `syz.9.12687'. [ 1192.579204][ T3178] netlink: 20 bytes leftover after parsing attributes in process `syz.9.12687'. [ 1192.584169][ T2435] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 1192.660573][ T2435] usb 1-1: New USB device found, idVendor=046d, idProduct=08c1, bcdDevice=ee.8d [ 1192.686385][ T2435] usb 1-1: New USB device strings: Mfr=32, Product=0, SerialNumber=9 [ 1192.704976][ T2435] usb 1-1: Manufacturer: syz [ 1192.746948][ T2435] usb 1-1: SerialNumber: syz [ 1192.797977][ T2435] usb 1-1: config 0 descriptor?? [ 1193.079348][ T3092] usb 1-1: USB disconnect, device number 112 [ 1193.454373][ T3205] loop9: detected capacity change from 0 to 256 [ 1193.481269][ T3206] binder: 3203:3206 ioctl c0306201 200000000100 returned -14 [ 1193.619202][ T3205] FAT-fs (loop9): Directory bread(block 64) failed [ 1193.625809][ T3205] FAT-fs (loop9): Directory bread(block 65) failed [ 1193.678324][ T3205] FAT-fs (loop9): Directory bread(block 66) failed [ 1193.727925][ T3205] FAT-fs (loop9): Directory bread(block 67) failed [ 1193.734623][ T3205] FAT-fs (loop9): Directory bread(block 68) failed [ 1193.806287][ T3205] FAT-fs (loop9): Directory bread(block 69) failed [ 1193.813001][ T3205] FAT-fs (loop9): Directory bread(block 70) failed [ 1193.871124][ T3213] netlink: 132 bytes leftover after parsing attributes in process `syz.0.12705'. [ 1193.886266][ T3205] FAT-fs (loop9): Directory bread(block 71) failed [ 1193.892994][ T3205] FAT-fs (loop9): Directory bread(block 72) failed [ 1193.965832][ T3205] FAT-fs (loop9): Directory bread(block 73) failed [ 1194.307022][ T3175] loop8: detected capacity change from 0 to 40427 [ 1194.359845][ T3175] F2FS-fs (loop8): invalid crc value [ 1194.629372][ T3235] loop6: detected capacity change from 0 to 2048 [ 1194.698369][ T3241] loop4: detected capacity change from 0 to 256 [ 1194.699546][ T3235] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 1194.808539][ T3175] F2FS-fs (loop8): Mounted with checkpoint version = 48b305e5 [ 1195.718446][ T3275] xt_TCPMSS: Only works on TCP SYN packets [ 1195.926434][ T3269] loop6: detected capacity change from 0 to 4096 [ 1195.956628][ T3279] Cannot find add_set index 0 as target [ 1195.962861][ T3269] ntfs3(loop6): try to read out of volume at offset 0x3fffffc0c00 [ 1195.982404][ T3269] ntfs3(loop6): try to read out of volume at offset 0x3fffffc0c00 [ 1196.026546][ T3269] ntfs3(loop6): try to read out of volume at offset 0x3fffffc0c00 [ 1196.053662][ T3269] ntfs3(loop6): try to read out of volume at offset 0x3fffffc0c00 [ 1196.069191][ T3269] ntfs3(loop6): try to read out of volume at offset 0x3fffffc1c00 [ 1196.081547][ T3269] ntfs3(loop6): try to read out of volume at offset 0x3fffffc2c00 [ 1196.095592][ T3269] ntfs3(loop6): try to read out of volume at offset 0x3fffffc4c00 [ 1196.149452][ T3283] netlink: 8 bytes leftover after parsing attributes in process `syz.4.12740'. [ 1196.162268][ T3269] ntfs3(loop6): try to read out of volume at offset 0x3fffffc8c00 [ 1196.177189][ T3283] netlink: 20 bytes leftover after parsing attributes in process `syz.4.12740'. [ 1196.186458][ T3269] ntfs3(loop6): try to read out of volume at offset 0x3fffffd0c00 [ 1196.186510][ T3269] ntfs3(loop6): try to read out of volume at offset 0x3fffffe0c00 [ 1196.329290][ T3283] geneve4: entered promiscuous mode [ 1196.349819][ T3283] geneve4: entered allmulticast mode [ 1196.677964][ T3298] netlink: 20 bytes leftover after parsing attributes in process `syz.4.12746'. [ 1196.820460][ T3273] loop0: detected capacity change from 0 to 32768 [ 1196.851521][ T3273] (syz.0.12734,3273,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 1196.866580][ T2435] usb 9-1: new high-speed USB device number 27 using dummy_hcd [ 1196.931254][ T3273] (syz.0.12734,3273,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 1196.995603][ T3273] JBD2: Ignoring recovery information on journal [ 1197.057974][ T2435] usb 9-1: config index 0 descriptor too short (expected 3133, got 61) [ 1197.078866][ T2435] usb 9-1: config 0 has an invalid interface number: 156 but max is 1 [ 1197.100781][ T3273] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode. [ 1197.132479][ T2435] usb 9-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 1197.183521][ T2435] usb 9-1: config 0 has 1 interface, different from the descriptor's value: 2 [ 1197.238255][ T2435] usb 9-1: config 0 has no interface number 0 [ 1197.257924][ T2435] usb 9-1: config 0 interface 156 altsetting 0 endpoint 0x3 has an invalid bInterval 0, changing to 7 [ 1197.296453][ T2435] usb 9-1: config 0 interface 156 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0 [ 1197.333050][ T2435] usb 9-1: config 0 interface 156 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 3 [ 1197.376203][ T30] audit: type=1326 audit(2000003178.130:1887): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=3314 comm="syz.9.12753" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff1dd58e969 code=0x7ffc0000 [ 1197.427101][ T2435] usb 9-1: New USB device found, idVendor=abcd, idProduct=cdee, bcdDevice= 5.b9 [ 1197.444941][ T2435] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1197.496296][ T30] audit: type=1326 audit(2000003178.130:1888): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=3314 comm="syz.9.12753" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff1dd58e969 code=0x7ffc0000 [ 1197.546345][ T2435] usb 9-1: config 0 descriptor?? [ 1197.570589][ T2435] gspca_main: spca561-2.14.0 probing abcd:cdee [ 1197.596334][ T30] audit: type=1326 audit(2000003178.140:1889): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=3314 comm="syz.9.12753" exe="/root/syz-executor" sig=0 arch=c000003e syscall=209 compat=0 ip=0x7ff1dd58e969 code=0x7ffc0000 [ 1197.686871][ T30] audit: type=1326 audit(2000003178.140:1890): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=3314 comm="syz.9.12753" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff1dd58e969 code=0x7ffc0000 [ 1197.765801][ T2435] spca561 9-1:0.156: probe with driver spca561 failed with error -22 [ 1197.767590][ T5845] ocfs2: Unmounting device (7,0) on (node local) [ 1197.784600][ T3325] netlink: 4 bytes leftover after parsing attributes in process `syz.7.12758'. [ 1197.794424][ T2435] usb 9-1: Quirk or no altset; falling back to MIDI 1.0 [ 1197.835863][ T2435] usb 9-1: MIDIStreaming interface descriptor not found [ 1198.024501][ T2435] usb 9-1: USB disconnect, device number 27 [ 1198.066549][T15986] usb 5-1: new high-speed USB device number 108 using dummy_hcd [ 1198.194283][T13094] udevd[13094]: error opening ATTR{/sys/devices/platform/dummy_hcd.8/usb9/9-1/9-1:0.156/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 1198.236370][T15986] usb 5-1: Using ep0 maxpacket: 32 [ 1198.256530][T15986] usb 5-1: config 0 has an invalid interface number: 1 but max is 0 [ 1198.275111][T15986] usb 5-1: config 0 has no interface number 0 [ 1198.301687][T15986] usb 5-1: New USB device found, idVendor=8086, idProduct=9500, bcdDevice=b6.d8 [ 1198.331648][T15986] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1198.369929][T15986] usb 5-1: Product: syz [ 1198.389727][T15986] usb 5-1: Manufacturer: syz [ 1198.394367][T15986] usb 5-1: SerialNumber: syz [ 1198.473465][T15986] usb 5-1: config 0 descriptor?? [ 1198.515096][T15986] usb 5-1: dvb_usb_v2: found a 'Intel CE9500 reference design' in warm state [ 1198.593150][T15986] usb 5-1: selecting invalid altsetting 1 [ 1198.612335][T15986] usb 5-1: dvb_usb_ce6230: usb_set_interface() failed=-22 [ 1198.658356][T15986] usb 5-1: dvb_usb_v2: will pass the complete MPEG2 transport stream to the software demuxer [ 1198.720527][T15986] dvbdev: DVB: registering new adapter (Intel CE9500 reference design) [ 1198.726238][ T3353] netlink: 10 bytes leftover after parsing attributes in process `syz.9.12772'. [ 1198.741498][T15986] usb 5-1: media controller created [ 1198.841199][T15986] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered. [ 1198.894465][ T3360] netlink: 20 bytes leftover after parsing attributes in process `syz.0.12775'. [ 1199.017449][ T3364] loop9: detected capacity change from 0 to 64 [ 1199.116244][ T2435] usb 8-1: new high-speed USB device number 19 using dummy_hcd [ 1199.162250][T15986] usb 5-1: dvb_usb_ce6230: usb_set_interface() failed=-71 [ 1199.204701][ T3367] netlink: 12 bytes leftover after parsing attributes in process `syz.8.12779'. [ 1199.306783][ T2435] usb 8-1: New USB device found, idVendor=0582, idProduct=008d, bcdDevice=7a.ac [ 1199.358725][ T2435] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1199.370120][T15986] usb 5-1: USB disconnect, device number 108 [ 1199.394106][ T2435] usb 8-1: Product: syz [ 1199.411691][ T2435] usb 8-1: Manufacturer: syz [ 1199.426254][ T2435] usb 8-1: SerialNumber: syz [ 1199.477644][ T2435] usb 8-1: config 0 descriptor?? [ 1199.522518][ T2435] usb 8-1: interface 1 not found [ 1199.725752][T15986] usb 8-1: USB disconnect, device number 19 [ 1200.036658][ T3354] loop6: detected capacity change from 0 to 32768 [ 1200.116972][ T3354] XFS (loop6): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 1200.376090][ T3419] netlink: 'syz.7.12796': attribute type 4 has an invalid length. [ 1200.598890][ T3354] XFS (loop6): Ending clean mount [ 1201.026436][T19475] XFS (loop6): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 1201.055368][ T3443] xt_CT: You must specify a L4 protocol and not use inversions on it [ 1201.930676][ T3477] loop6: detected capacity change from 0 to 256 [ 1202.237955][ T3091] usb 8-1: new high-speed USB device number 20 using dummy_hcd [ 1202.316236][ T3092] usb 10-1: new full-speed USB device number 3 using dummy_hcd [ 1202.420808][ T3091] usb 8-1: New USB device found, idVendor=1a86, idProduct=7522, bcdDevice=35.36 [ 1202.469934][ T3091] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1202.479802][ T3091] usb 8-1: Product: syz [ 1202.491046][ T3092] usb 10-1: config 7 has an invalid interface number: 170 but max is 0 [ 1202.499788][ T3091] usb 8-1: Manufacturer: syz [ 1202.504406][ T3091] usb 8-1: SerialNumber: syz [ 1202.509335][ T3092] usb 10-1: config 7 has no interface number 0 [ 1202.534246][ T3092] usb 10-1: New USB device found, idVendor=0979, idProduct=0227, bcdDevice=24.83 [ 1202.552999][ T3091] usb 8-1: config 0 descriptor?? [ 1202.558257][ T3092] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1202.585670][ T3091] ch341 8-1:0.0: ch341-uart converter detected [ 1202.600517][ T3092] usb 10-1: Product: syz [ 1202.628548][ T3092] usb 10-1: Manufacturer: syz [ 1202.633273][ T3092] usb 10-1: SerialNumber: syz [ 1202.710632][ T3505] netlink: 10 bytes leftover after parsing attributes in process `syz.8.12836'. [ 1202.873379][ T3092] gspca_main: jl2005bcd-2.14.0 probing 0979:0227 [ 1202.881090][ T3092] command write [95] error -22 [ 1202.909029][ T3092] usb 10-1: USB disconnect, device number 3 [ 1203.008044][ T3091] usb 8-1: failed to send control message: -71 [ 1203.014322][ T3091] ch341-uart ttyUSB0: probe with driver ch341-uart failed with error -71 [ 1203.066510][ T3091] usb 8-1: USB disconnect, device number 20 [ 1203.113622][ T3091] ch341 8-1:0.0: device disconnected [ 1203.128455][ T3518] netlink: 8 bytes leftover after parsing attributes in process `syz.0.12842'. [ 1203.357181][T15986] usb 7-1: new high-speed USB device number 28 using dummy_hcd [ 1203.526540][T15986] usb 7-1: Using ep0 maxpacket: 16 [ 1203.538055][T15986] usb 7-1: New USB device found, idVendor=17ef, idProduct=721e, bcdDevice=de.06 [ 1203.573012][T15986] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1203.595367][T15986] usb 7-1: Product: syz [ 1203.618887][T15986] usb 7-1: Manufacturer: syz [ 1203.623519][T15986] usb 7-1: SerialNumber: syz [ 1203.649241][ T3532] loop4: detected capacity change from 0 to 2048 [ 1203.718213][T15986] r8152-cfgselector 7-1: Unknown version 0x0000 [ 1203.724509][T15986] r8152-cfgselector 7-1: config 0 descriptor?? [ 1203.768274][ T3532] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1203.784783][ T3532] ext4 filesystem being mounted at /2187/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 1203.819194][ T3532] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.12849: bg 0: block 345: padding at end of block bitmap is not set [ 1204.017270][ T30] audit: type=1326 audit(2000003184.780:1891): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=3548 comm="syz.0.12855" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1e2e38e969 code=0x7ffc0000 [ 1204.041251][ T3551] openvswitch: netlink: Missing key (keys=40, expected=200000) [ 1204.082104][ T30] audit: type=1326 audit(2000003184.800:1892): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=3548 comm="syz.0.12855" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1e2e38e969 code=0x7ffc0000 [ 1204.087784][ T5827] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1204.175853][ T30] audit: type=1326 audit(2000003184.830:1893): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=3548 comm="syz.0.12855" exe="/root/syz-executor" sig=0 arch=c000003e syscall=311 compat=0 ip=0x7f1e2e38e969 code=0x7ffc0000 [ 1204.225367][ T3091] r8152-cfgselector 7-1: USB disconnect, device number 28 [ 1204.256491][ T30] audit: type=1326 audit(2000003184.830:1894): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=3548 comm="syz.0.12855" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1e2e38e969 code=0x7ffc0000 [ 1204.366383][ T30] audit: type=1326 audit(2000003184.830:1895): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=3548 comm="syz.0.12855" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1e2e38e969 code=0x7ffc0000 [ 1205.122529][ T30] audit: type=1326 audit(2000003185.880:1896): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=3588 comm="syz.7.12876" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd0a878e969 code=0x7ffc0000 [ 1205.136279][ T30] audit: type=1326 audit(2000003185.890:1897): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=3588 comm="syz.7.12876" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd0a878e969 code=0x7ffc0000 [ 1205.139500][ T30] audit: type=1326 audit(2000003185.900:1898): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=3588 comm="syz.7.12876" exe="/root/syz-executor" sig=0 arch=c000003e syscall=427 compat=0 ip=0x7fd0a878e969 code=0x7ffc0000 [ 1205.139728][ T30] audit: type=1326 audit(2000003185.900:1899): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=3588 comm="syz.7.12876" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd0a878e969 code=0x7ffc0000 [ 1205.142380][ T30] audit: type=1326 audit(2000003185.900:1900): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=3588 comm="syz.7.12876" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd0a878e969 code=0x7ffc0000 [ 1205.355071][ T3593] loop7: detected capacity change from 0 to 8 [ 1205.627315][ T3599] netlink: 'syz.7.12881': attribute type 1 has an invalid length. [ 1205.627343][ T3599] netlink: 'syz.7.12881': attribute type 1 has an invalid length. [ 1206.143082][ T3577] loop0: detected capacity change from 0 to 32768 [ 1206.196884][ T3618] IPVS: sync thread started: state = BACKUP, mcast_ifn = hsr0, syncid = 33, id = 0 [ 1206.205644][ T3577] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.12870 (3577) [ 1206.299785][ T3577] BTRFS info (device loop0): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 1206.358854][ T3577] BTRFS info (device loop0): using sha256 (sha256-ni) checksum algorithm [ 1206.408512][ T3577] BTRFS info (device loop0): using free-space-tree [ 1206.425543][ T3587] loop9: detected capacity change from 0 to 32768 [ 1206.899429][ T3650] netlink: 'syz.7.12898': attribute type 12 has an invalid length. [ 1206.942011][ T5845] BTRFS info (device loop0): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 1207.036229][ T3076] usb 7-1: new high-speed USB device number 29 using dummy_hcd [ 1207.177516][ T3656] dummy0: mtu less than device minimum [ 1207.236218][ T3076] usb 7-1: Using ep0 maxpacket: 16 [ 1207.261707][ T3076] usb 7-1: New USB device found, idVendor=0d49, idProduct=7010, bcdDevice= c.90 [ 1207.304070][ T3076] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1207.360823][ T3663] loop9: detected capacity change from 0 to 16 [ 1207.366292][ T3076] usb 7-1: Product: syz [ 1207.387307][ T3076] usb 7-1: Manufacturer: syz [ 1207.391962][ T3076] usb 7-1: SerialNumber: syz [ 1207.444162][ T3663] erofs (device loop9): mounted with root inode @ nid 36. [ 1207.467287][ T3076] usb 7-1: config 0 descriptor?? [ 1207.490697][ T3663] erofs (device loop9): invalid logical cluster 0 at nid 89 [ 1207.547834][ T3663] erofs (device loop9): readahead error at folio 0 @ nid 89 [ 1207.580731][ T3663] erofs (device loop9): invalid logical cluster 0 at nid 89 [ 1207.632370][ T3663] erofs (device loop9): read error -95 @ 0 of nid 89 [ 1207.781866][ T3076] ums-onetouch 7-1:0.0: USB Mass Storage device detected [ 1207.971786][ T3076] usb 7-1: USB disconnect, device number 29 [ 1208.009410][ T3681] rdma_rxe: rxe_newlink: failed to add ipvlan1 [ 1208.231590][ T3687] loop7: detected capacity change from 0 to 256 [ 1208.400796][ T3691] loop9: detected capacity change from 0 to 1764 [ 1208.438010][ T3687] FAT-fs (loop7): Directory bread(block 64) failed [ 1208.444596][ T3687] FAT-fs (loop7): Directory bread(block 65) failed [ 1208.451731][ T3076] usb 1-1: new high-speed USB device number 113 using dummy_hcd [ 1208.499866][ T3691] iso9660: Corrupted directory entry in block 2 of inode 1920 [ 1208.516653][ T3687] FAT-fs (loop7): Directory bread(block 66) failed [ 1208.566519][ T3687] FAT-fs (loop7): Directory bread(block 67) failed [ 1208.590668][ T3687] FAT-fs (loop7): Directory bread(block 68) failed [ 1208.618619][ T3695] netlink: 'syz.6.12919': attribute type 3 has an invalid length. [ 1208.637417][ T3687] FAT-fs (loop7): Directory bread(block 69) failed [ 1208.646540][ T3076] usb 1-1: Using ep0 maxpacket: 32 [ 1208.656606][ T3695] netlink: 199836 bytes leftover after parsing attributes in process `syz.6.12919'. [ 1208.662484][ T3687] FAT-fs (loop7): Directory bread(block 70) failed [ 1208.683188][ T3076] usb 1-1: config 0 has an invalid interface number: 151 but max is 0 [ 1208.715824][ T3076] usb 1-1: config 0 has no interface number 0 [ 1208.729164][ T3687] FAT-fs (loop7): Directory bread(block 71) failed [ 1208.739294][ T3687] FAT-fs (loop7): Directory bread(block 72) failed [ 1208.750852][ T3687] FAT-fs (loop7): Directory bread(block 73) failed [ 1208.760852][ T3076] usb 1-1: New USB device found, idVendor=0499, idProduct=6bb7, bcdDevice=68.2f [ 1208.796374][ T3076] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1208.831833][ T3076] usb 1-1: Product: syz [ 1208.858882][ T3076] usb 1-1: Manufacturer: syz [ 1208.874607][ T3076] usb 1-1: SerialNumber: syz [ 1208.921373][ T3076] usb 1-1: config 0 descriptor?? [ 1209.343545][ T3709] loop7: detected capacity change from 0 to 2048 [ 1209.370968][ T3076] usb 1-1: Quirk or no altset; falling back to MIDI 1.0 [ 1209.404495][ T3709] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1209.440091][ T3709] EXT4-fs error (device loop7): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters [ 1209.526578][ T3709] EXT4-fs (loop7): Remounting filesystem read-only [ 1209.571833][ T3076] usb 1-1: USB disconnect, device number 113 [ 1209.751818][ T3685] loop4: detected capacity change from 0 to 32768 [ 1209.758554][T20057] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1209.791946][ T5954] udevd[5954]: error opening ATTR{/sys/devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.151/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 1209.872556][ T3685] XFS (loop4): Mounting V5 Filesystem a2f82aab-77f8-4286-afd4-a8f747a74bab [ 1210.013344][ T3736] loop8: detected capacity change from 0 to 2048 [ 1210.044678][ T3736] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 1210.098475][ T3685] XFS (loop4): Ending clean mount [ 1210.165542][ T3685] XFS (loop4): Quotacheck needed: Please wait. [ 1210.335200][ T3685] XFS (loop4): Quotacheck: Done. [ 1210.581349][ T5827] XFS (loop4): Unmounting Filesystem a2f82aab-77f8-4286-afd4-a8f747a74bab [ 1210.765781][ T3092] usb 9-1: new high-speed USB device number 28 using dummy_hcd [ 1211.028340][ T3092] usb 9-1: New USB device found, idVendor=046d, idProduct=08b6, bcdDevice=ca.8e [ 1211.087768][ T3092] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1211.145672][ T3092] pwc: Logitech/Cisco VT Camera webcam detected. [ 1211.331182][ T3776] xt_hashlimit: max too large, truncated to 1048576 [ 1211.376470][ T3776] xt_hashlimit: overflow, try lower: 3/0 [ 1211.429651][ T3779] loop7: detected capacity change from 0 to 128 [ 1211.560812][ T3092] pwc: send_video_command error -71 [ 1211.606425][ T3092] pwc: Failed to set video mode VGA@30 fps; return code = -71 [ 1211.634928][ T3092] Philips webcam 9-1:127.0: probe with driver Philips webcam failed with error -71 [ 1211.694057][ T3092] usb 9-1: USB disconnect, device number 28 [ 1211.766827][ T3782] loop9: detected capacity change from 0 to 4096 [ 1211.802737][ T3782] ntfs3(loop9): Different NTFS sector size (1024) and media sector size (512). [ 1212.456261][ T3092] usb 10-1: new high-speed USB device number 4 using dummy_hcd [ 1212.638561][ T3092] usb 10-1: config 0 interface 0 has no altsetting 0 [ 1212.640980][ T3092] usb 10-1: New USB device found, idVendor=0af0, idProduct=7a05, bcdDevice= 0.00 [ 1212.641014][ T3092] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1212.641039][ T3092] usb 10-1: Product: syz [ 1212.641058][ T3092] usb 10-1: Manufacturer: syz [ 1212.641076][ T3092] usb 10-1: SerialNumber: syz [ 1212.644384][ T3092] usb 10-1: config 0 descriptor?? [ 1212.897263][ T3092] usb-storage 10-1:0.0: USB Mass Storage device detected [ 1213.114379][ T3092] usb 10-1: USB disconnect, device number 4 [ 1213.264497][ T3844] CIFS mount error: No usable UNC path provided in device string! [ 1213.264497][ T3844] [ 1213.298225][ T3841] xt_NFQUEUE: number of total queues is 0 [ 1213.305820][ T3847] netlink: 'syz.6.12988': attribute type 10 has an invalid length. [ 1213.316392][ T3844] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string! [ 1213.344674][ T3847] netlink: 40 bytes leftover after parsing attributes in process `syz.6.12988'. [ 1213.402549][ T3847] batman_adv: batadv0: Adding interface: virt_wifi0 [ 1213.427773][ T3847] batman_adv: batadv0: The MTU of interface virt_wifi0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 1213.497242][ T3847] batman_adv: batadv0: Interface activated: virt_wifi0 [ 1214.063814][ T3876] loop9: detected capacity change from 0 to 64 [ 1214.528500][ T24] usb 8-1: new high-speed USB device number 21 using dummy_hcd [ 1214.711933][ T24] usb 8-1: Using ep0 maxpacket: 16 [ 1214.757109][ T24] usb 8-1: config 1 contains an unexpected descriptor of type 0x2, skipping [ 1214.788721][ T24] usb 8-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 1214.815117][ T24] usb 8-1: config 1 has 1 interface, different from the descriptor's value: 3 [ 1214.860233][ T24] usb 8-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40 [ 1214.886237][ T24] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1214.917309][ T3911] loop4: detected capacity change from 0 to 1024 [ 1214.937030][ T24] usb 8-1: Product: syz [ 1214.941226][ T24] usb 8-1: Manufacturer: syz [ 1214.945835][ T24] usb 8-1: SerialNumber: syz [ 1215.148558][ T3919] loop9: detected capacity change from 0 to 8 [ 1215.234527][ T24] usb 8-1: 0:2 : does not exist [ 1215.271540][ T24] usb 8-1: 1:0: failed to get current value for ch 0 (-22) [ 1215.407650][ T24] usb 8-1: USB disconnect, device number 21 [ 1215.483622][ T6320] udevd[6320]: error opening ATTR{/sys/devices/platform/dummy_hcd.7/usb8/8-1/8-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 1215.912087][ T3939] loop6: detected capacity change from 0 to 1024 [ 1216.046555][ T24] usb 9-1: new high-speed USB device number 29 using dummy_hcd [ 1216.216397][ T24] usb 9-1: Using ep0 maxpacket: 16 [ 1216.228094][ T24] usb 9-1: config 4 has an invalid interface number: 51 but max is 0 [ 1216.236625][ T24] usb 9-1: config 4 has no interface number 0 [ 1216.242873][ T24] usb 9-1: config 4 interface 51 altsetting 2 bulk endpoint 0x1 has invalid maxpacket 16 [ 1216.259722][ T24] usb 9-1: config 4 interface 51 altsetting 2 bulk endpoint 0x82 has invalid maxpacket 64 [ 1216.270253][ T24] usb 9-1: config 4 interface 51 has no altsetting 0 [ 1216.278120][T17170] hfsplus: b-tree write err: -5, ino 4 [ 1216.280841][ T24] usb 9-1: New USB device found, idVendor=954f, idProduct=4199, bcdDevice= f.76 [ 1216.353712][ T24] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1216.368973][ T24] usb 9-1: Product: syz [ 1216.383554][ T24] usb 9-1: Manufacturer: syz [ 1216.399570][ T24] usb 9-1: SerialNumber: syz [ 1216.418109][ T3937] raw-gadget.0 gadget.8: fail, usb_ep_enable returned -22 [ 1216.425758][ T3937] raw-gadget.0 gadget.8: fail, usb_ep_enable returned -22 [ 1216.446367][ T3076] usb 10-1: new high-speed USB device number 5 using dummy_hcd [ 1216.627667][ T3076] usb 10-1: Using ep0 maxpacket: 32 [ 1216.662163][ T3076] usb 10-1: config 4 has an invalid interface number: 128 but max is 0 [ 1216.679544][ T3937] raw-gadget.0 gadget.8: fail, usb_ep_enable returned -22 [ 1216.686420][ T3076] usb 10-1: config 4 has no interface number 0 [ 1216.692928][ T3076] usb 10-1: config 4 interface 128 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 1216.720524][ T3937] raw-gadget.0 gadget.8: fail, usb_ep_enable returned -22 [ 1216.740408][ T3076] usb 10-1: config 4 interface 128 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 1216.782940][ T3076] usb 10-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40 [ 1216.802346][ T24] cdc_eem 9-1:4.51 usb0: register 'cdc_eem' at usb-dummy_hcd.8-1, CDC EEM Device, c6:ad:ba:76:a2:f0 [ 1216.832752][ T3076] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1216.942831][ T3076] hub 10-1:4.128: USB hub found [ 1216.979604][ T24] usb 9-1: USB disconnect, device number 29 [ 1217.009896][ T24] cdc_eem 9-1:4.51 usb0: unregister 'cdc_eem' usb-dummy_hcd.8-1, CDC EEM Device [ 1217.138175][ T3076] hub 10-1:4.128: config failed, hub has too many ports! (err -19) [ 1217.344057][ T3977] netlink: 'syz.4.13049': attribute type 30 has an invalid length. [ 1217.466745][ T3091] usb 10-1: USB disconnect, device number 5 [ 1217.505963][ T3979] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 1217.547138][ T3979] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 1217.568532][ T3979] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 1217.602374][ T3979] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 1217.638370][ T3979] geneve2: entered promiscuous mode [ 1217.686252][ T3979] geneve2: entered allmulticast mode [ 1217.828240][ T3966] loop7: detected capacity change from 0 to 32768 [ 1217.852961][ T3966] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop7 (7:7) scanned by syz.7.13045 (3966) [ 1217.885141][ T3979] netdevsim netdevsim6 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0 [ 1217.895493][ T3979] netdevsim netdevsim6 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0 [ 1217.936433][ T3979] netdevsim netdevsim6 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0 [ 1217.952604][ T3966] BTRFS info (device loop7): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 1217.966935][ T3979] netdevsim netdevsim6 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0 [ 1217.996600][ T3966] BTRFS info (device loop7): using crc32c (crc32c-x86_64) checksum algorithm [ 1218.027059][ T3966] BTRFS info (device loop7): using free-space-tree [ 1218.414421][ T3966] BTRFS info (device loop7 state M): max_inline set to 0 [ 1218.452363][ T4012] netlink: 'syz.4.13059': attribute type 3 has an invalid length. [ 1218.480989][ T4012] netlink: 'syz.4.13059': attribute type 3 has an invalid length. [ 1218.536373][ T4012] netlink: 'syz.4.13059': attribute type 3 has an invalid length. [ 1218.560514][T20057] BTRFS info (device loop7): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 1218.579421][ T4012] netlink: 'syz.4.13059': attribute type 3 has an invalid length. [ 1218.629278][ T4012] netlink: 'syz.4.13059': attribute type 3 has an invalid length. [ 1218.675800][ T4012] netlink: 'syz.4.13059': attribute type 3 has an invalid length. [ 1218.692731][ T4012] netlink: 'syz.4.13059': attribute type 3 has an invalid length. [ 1218.736787][ T4012] netlink: 'syz.4.13059': attribute type 3 has an invalid length. [ 1218.758491][ T4012] netlink: 'syz.4.13059': attribute type 3 has an invalid length. [ 1218.806441][ T4012] netlink: 'syz.4.13059': attribute type 3 has an invalid length. [ 1219.024263][ T4026] loop9: detected capacity change from 0 to 4096 [ 1219.159349][ T30] kauditd_printk_skb: 1 callbacks suppressed [ 1219.159370][ T30] audit: type=1326 audit(2000003199.920:1902): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4035 comm="syz.4.13071" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efc65b8e969 code=0x7ffc0000 [ 1219.180409][ T4034] netlink: 64 bytes leftover after parsing attributes in process `syz.0.13072'. [ 1219.199076][ T4038] NILFS (loop9): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 1219.284604][ T30] audit: type=1326 audit(2000003199.980:1903): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4035 comm="syz.4.13071" exe="/root/syz-executor" sig=0 arch=c000003e syscall=226 compat=0 ip=0x7efc65b8e969 code=0x7ffc0000 [ 1219.306091][ T4034] netlink: 64 bytes leftover after parsing attributes in process `syz.0.13072'. [ 1219.317218][ T4026] NILFS error (device loop9): nilfs_find_entry: dir 2 size 34359742464 exceeds block count 1 [ 1219.336381][ T30] audit: type=1326 audit(2000003199.980:1904): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4035 comm="syz.4.13071" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efc65b8e969 code=0x7ffc0000 [ 1219.439313][ T4040] ip6gretap1: entered promiscuous mode [ 1219.442439][ T30] audit: type=1326 audit(2000003199.980:1905): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4035 comm="syz.4.13071" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efc65b8e969 code=0x7ffc0000 [ 1219.527462][ T4026] Remounting filesystem read-only [ 1219.671668][ T4046] xt_TCPMSS: Only works on TCP SYN packets [ 1220.633291][ T4088] ERROR: device name not specified. [ 1220.654164][ T24] hid-generic 0000:0004:0000.0001: unknown main item tag 0x0 [ 1220.680727][ T24] hid-generic 0000:0004:0000.0001: unknown main item tag 0x0 [ 1220.716729][ T24] hid-generic 0000:0004:0000.0001: unknown main item tag 0x0 [ 1220.743144][ T24] hid-generic 0000:0004:0000.0001: hidraw0: HID v0.00 Device [syz0] on syz1 [ 1220.832323][ T4093] netlink: 12 bytes leftover after parsing attributes in process `syz.4.13099'. [ 1220.841825][ T3076] usb 9-1: new high-speed USB device number 30 using dummy_hcd [ 1220.912514][ T4099] netlink: 17 bytes leftover after parsing attributes in process `syz.6.13100'. [ 1221.006214][ T3076] usb 9-1: Using ep0 maxpacket: 16 [ 1221.020927][ T3076] usb 9-1: New USB device found, idVendor=17ef, idProduct=721e, bcdDevice=de.06 [ 1221.036903][ T3076] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1221.058183][ T3076] usb 9-1: Product: syz [ 1221.074840][ T3076] usb 9-1: Manufacturer: syz [ 1221.092374][ T30] audit: type=1326 audit(2000003201.840:1906): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4102 comm="syz.4.13106" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efc65b8e969 code=0x7ffc0000 [ 1221.096442][ T3076] usb 9-1: SerialNumber: syz [ 1221.217224][ T30] audit: type=1326 audit(2000003201.850:1907): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4102 comm="syz.4.13106" exe="/root/syz-executor" sig=0 arch=c000003e syscall=61 compat=0 ip=0x7efc65b8e969 code=0x7ffc0000 [ 1221.297803][ T30] audit: type=1326 audit(2000003201.850:1908): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4102 comm="syz.4.13106" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efc65b8e969 code=0x7ffc0000 [ 1221.335805][ T3076] r8152-cfgselector 9-1: Unknown version 0x0000 [ 1221.362096][ T3076] r8152-cfgselector 9-1: config 0 descriptor?? [ 1221.414574][ T30] audit: type=1326 audit(2000003201.850:1909): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4102 comm="syz.4.13106" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efc65b8e969 code=0x7ffc0000 [ 1221.566253][ T30] audit: type=1326 audit(2000003202.260:1910): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4116 comm="syz.0.13110" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1e2e38e969 code=0x7ffc0000 [ 1221.720546][ T30] audit: type=1326 audit(2000003202.260:1911): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4116 comm="syz.0.13110" exe="/root/syz-executor" sig=0 arch=c000003e syscall=199 compat=0 ip=0x7f1e2e38e969 code=0x7ffc0000 [ 1221.810672][ T4114] fido_id[4114]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory [ 1221.958539][ T3076] r8152-cfgselector 9-1: USB disconnect, device number 30 [ 1222.275614][ T4142] loop0: detected capacity change from 0 to 256 [ 1223.005190][ T4169] xt_CT: You must specify a L4 protocol and not use inversions on it [ 1223.496892][ T4193] xt_addrtype: ipv6 PROHIBIT (THROW, NAT ..) matching not supported [ 1223.646535][ T4195] validate_nla: 41 callbacks suppressed [ 1223.646557][ T4195] netlink: 'syz.7.13149': attribute type 1 has an invalid length. [ 1223.727073][ T4201] netlink: 8 bytes leftover after parsing attributes in process `syz.6.13152'. [ 1224.264379][ T4217] netlink: 68 bytes leftover after parsing attributes in process `syz.4.13159'. [ 1224.806349][ T4178] loop9: detected capacity change from 0 to 32768 [ 1224.901385][ T4242] loop6: detected capacity change from 0 to 64 [ 1224.961678][ T4244] netlink: 16 bytes leftover after parsing attributes in process `syz.8.13173'. [ 1225.139303][ T4248] loop0: detected capacity change from 0 to 512 [ 1225.188179][ T4248] EXT4-fs (loop0): Test dummy encryption mode enabled [ 1225.298063][ T4248] EXT4-fs error (device loop0): __ext4_iget:5025: inode #11: block 1: comm syz.0.13175: invalid block [ 1225.406435][ T4248] EXT4-fs error (device loop0): ext4_orphan_get:1396: comm syz.0.13175: couldn't read orphan inode 11 (err -117) [ 1225.503435][ T4248] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1225.771346][ T4264] x_tables: duplicate underflow at hook 2 [ 1225.788201][ T5845] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1225.847454][ T4269] netlink: 68 bytes leftover after parsing attributes in process `syz.7.13185'. [ 1226.279577][ T4285] loop8: detected capacity change from 0 to 16 [ 1226.348048][ T4285] erofs (device loop8): mounted with root inode @ nid 36. [ 1226.404261][ T4246] loop4: detected capacity change from 0 to 32768 [ 1226.425126][ T4285] erofs (device loop8): readahead error at folio 2 @ nid 89 [ 1226.440376][ T4246] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop4 (7:4) scanned by syz.4.13174 (4246) [ 1226.474414][ T55] erofs (device loop8): failed to decompress -5 in[4096, 0] out[8192] [ 1226.482918][ T4285] erofs (device loop8): failed to decompress -5 in[4096, 0] out[8192] [ 1226.513503][ T4285] erofs (device loop8): read error -117 @ 0 of nid 89 [ 1226.575181][ T4246] BTRFS info (device loop4): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 1226.605975][ T30] kauditd_printk_skb: 7 callbacks suppressed [ 1226.605994][ T30] audit: type=1800 audit(2000003207.360:1919): pid=4285 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.8.13192" name="file2" dev="loop8" ino=89 res=0 errno=0 [ 1226.654964][ T4246] BTRFS info (device loop4): using sha256 (sha256-ni) checksum algorithm [ 1226.701882][ T4246] BTRFS info (device loop4): using free-space-tree [ 1227.248352][ T5827] BTRFS info (device loop4): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 1227.607417][ T30] audit: type=1326 audit(2000003208.360:1920): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4340 comm="syz.8.13211" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f33ecd8e969 code=0x7ffc0000 [ 1227.621108][ T4341] netlink: 'syz.0.13210': attribute type 23 has an invalid length. [ 1227.730685][ T30] audit: type=1326 audit(2000003208.380:1921): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4340 comm="syz.8.13211" exe="/root/syz-executor" sig=0 arch=c000003e syscall=197 compat=0 ip=0x7f33ecd8e969 code=0x7ffc0000 [ 1227.865054][ T30] audit: type=1326 audit(2000003208.380:1922): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4340 comm="syz.8.13211" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f33ecd8e969 code=0x7ffc0000 [ 1227.982562][ T30] audit: type=1326 audit(2000003208.380:1923): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4340 comm="syz.8.13211" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f33ecd8e969 code=0x7ffc0000 [ 1228.196259][ T24] usb 10-1: new high-speed USB device number 6 using dummy_hcd [ 1228.269431][ T4361] openvswitch: netlink: Message has 24 unknown bytes. [ 1228.323742][ T4361] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 1228.356360][ T24] usb 10-1: Using ep0 maxpacket: 8 [ 1228.386752][ T24] usb 10-1: New USB device found, idVendor=047d, idProduct=5003, bcdDevice=2f.8c [ 1228.403135][ T24] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1228.444833][ T24] usb 10-1: Product: syz [ 1228.501526][ T24] usb 10-1: Manufacturer: syz [ 1228.510900][ T24] usb 10-1: SerialNumber: syz [ 1228.529490][ T24] usb 10-1: config 0 descriptor?? [ 1228.555963][ T24] gspca_main: se401-2.14.0 probing 047d:5003 [ 1228.952788][ T24] gspca_se401: write req failed req 0x57 val 0x00 error -71 [ 1228.979139][ T4381] QAT: Device 7 not found [ 1228.994304][ T24] se401 10-1:0.0: probe with driver se401 failed with error -71 [ 1229.012184][ T4383] loop0: detected capacity change from 0 to 24 [ 1229.057769][ T24] usb 10-1: USB disconnect, device number 6 [ 1229.075466][ T4383] MTD: Attempt to mount non-MTD device "/dev/loop0" [ 1229.115277][ T4383] romfs: Mounting image 'rom 637cf1fa' through the block layer [ 1229.471662][ T4396] netlink: 60 bytes leftover after parsing attributes in process `syz.7.13239'. [ 1229.968862][ T4419] netlink: 28 bytes leftover after parsing attributes in process `syz.4.13246'. [ 1230.530068][ T4443] loop4: detected capacity change from 0 to 512 [ 1230.617649][ T4443] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1230.634538][ T4448] netlink: 'syz.9.13261': attribute type 11 has an invalid length. [ 1230.652408][ T4450] loop7: detected capacity change from 0 to 256 [ 1230.652980][ T4443] ext4 filesystem being mounted at /2248/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 1230.726232][ T4448] netlink: 224 bytes leftover after parsing attributes in process `syz.9.13261'. [ 1230.740055][ T4443] EXT4-fs error (device loop4): ext4_empty_dir:3080: inode #12: comm syz.4.13260: Directory hole found for htree leaf block 0 [ 1230.746425][ T4454] ./file0: Can't lookup blockdev [ 1230.980316][ T5827] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1231.198838][ T4468] loop4: detected capacity change from 0 to 256 [ 1231.248459][ T4468] exfat: Deprecated parameter 'utf8' [ 1231.265203][ T4468] exfat: Deprecated parameter 'namecase' [ 1231.281765][ T4468] exfat: Deprecated parameter 'namecase' [ 1231.311440][ T4468] exfat: Deprecated parameter 'utf8' [ 1231.406342][ T4468] exFAT-fs (loop4): failed to load upcase table (idx : 0x00012153, chksum : 0xc9bffc20, utbl_chksum : 0xe619d30d) [ 1231.652426][ T4484] SET target dimension over the limit! [ 1232.084807][ T4504] loop8: detected capacity change from 0 to 256 [ 1232.264533][ T4510] loop6: detected capacity change from 0 to 764 [ 1232.377320][ T4514] netlink: 'syz.4.13294': attribute type 10 has an invalid length. [ 1232.408873][ T4510] Symlink component flag not implemented [ 1232.444405][ T4510] Symlink component flag not implemented (7) [ 1232.499376][ T4514] hsr0: A HSR master's MTU cannot be greater than the smallest MTU of its slaves minus the HSR Tag length (6 octets). [ 1232.696366][ T4524] netlink: 'syz.0.13299': attribute type 15 has an invalid length. [ 1232.711642][ T4524] netlink: 24 bytes leftover after parsing attributes in process `syz.0.13299'. [ 1232.746440][ T2435] usb 10-1: new high-speed USB device number 7 using dummy_hcd [ 1232.763463][ T30] audit: type=1326 audit(2000003213.520:1924): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4525 comm="syz.6.13300" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f23c4d8e969 code=0x7ffc0000 [ 1232.868658][ T30] audit: type=1326 audit(2000003213.560:1925): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4525 comm="syz.6.13300" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f23c4d8e969 code=0x7ffc0000 [ 1232.936576][ T2435] usb 10-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3 [ 1232.945772][ T2435] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1232.963493][ T30] audit: type=1326 audit(2000003213.560:1926): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4525 comm="syz.6.13300" exe="/root/syz-executor" sig=0 arch=c000003e syscall=43 compat=0 ip=0x7f23c4d8e969 code=0x7ffc0000 [ 1233.002117][ T30] audit: type=1326 audit(2000003213.560:1927): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4525 comm="syz.6.13300" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f23c4d8e969 code=0x7ffc0000 [ 1233.031700][ T2435] usb 10-1: config 0 descriptor?? [ 1233.039920][ T30] audit: type=1326 audit(2000003213.560:1928): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4525 comm="syz.6.13300" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f23c4d8e969 code=0x7ffc0000 [ 1233.064151][ T2435] cp210x 10-1:0.0: cp210x converter detected [ 1233.445824][ T2435] cp210x 10-1:0.0: failed to get vendor val 0x370c size 13: -71 [ 1233.486258][ T2435] cp210x 10-1:0.0: GPIO initialisation failed: -71 [ 1233.529024][ T2435] usb 10-1: cp210x converter now attached to ttyUSB0 [ 1233.570661][ T2435] usb 10-1: USB disconnect, device number 7 [ 1233.634847][ T2435] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0 [ 1233.678896][ T2435] cp210x 10-1:0.0: device disconnected [ 1234.107067][ T4571] (unnamed net_device) (uninitialized): option arp_validate: mode dependency failed, not supported in mode balance-alb(6) [ 1234.231445][ T4578] netlink: 'syz.9.13326': attribute type 1 has an invalid length. [ 1234.340380][ T4578] netlink: 'syz.9.13326': attribute type 3 has an invalid length. [ 1234.377297][ T4578] netlink: 224 bytes leftover after parsing attributes in process `syz.9.13326'. [ 1234.429940][ T4586] loop6: detected capacity change from 0 to 1024 [ 1234.785986][T15404] hfsplus: b-tree write err: -5, ino 4 [ 1234.841966][ T4594] loop0: detected capacity change from 0 to 4096 [ 1234.872512][ T4602] netlink: 'syz.8.13337': attribute type 10 has an invalid length. [ 1234.896566][ T4594] ntfs3(loop0): Different NTFS sector size (2048) and media sector size (512). [ 1234.962441][ T4602] macvlan0: entered promiscuous mode [ 1234.992828][ T4602] macvlan0: entered allmulticast mode [ 1235.036373][ T30] audit: type=1800 audit(2000003215.780:1929): pid=4594 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.13334" name="file1" dev="loop0" ino=30 res=0 errno=0 [ 1235.063108][ T4602] bond0: (slave macvlan0): Error -22 calling dev_set_mtu [ 1236.116957][ T4654] openvswitch: netlink: Duplicate or invalid key (type 0). [ 1236.142017][ T4654] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 1236.335251][ T4662] netlink: 8 bytes leftover after parsing attributes in process `syz.6.13367'. [ 1236.384747][ T4665] netlink: 12 bytes leftover after parsing attributes in process `syz.0.13369'. [ 1236.424392][ T4658] loop7: detected capacity change from 0 to 4096 [ 1236.448246][ T4665] netlink: 48 bytes leftover after parsing attributes in process `syz.0.13369'. [ 1236.473299][ T4658] ntfs3(loop7): Different NTFS sector size (1024) and media sector size (512). [ 1236.622010][ T4658] ntfs3(loop7): ino=0, attr_set_size [ 1236.696437][ T4675] loop8: detected capacity change from 0 to 256 [ 1236.735098][ T4675] exfat: Deprecated parameter 'namecase' [ 1236.812787][ T4675] exFAT-fs (loop8): failed to load upcase table (idx : 0x00010000, chksum : 0xbe66f6fd, utbl_chksum : 0xe619d30d) [ 1237.357296][ T4699] netlink: 'syz.7.13385': attribute type 11 has an invalid length. [ 1237.564180][ T4703] loop6: detected capacity change from 0 to 1024 [ 1237.653980][ T4703] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1237.757789][ T30] audit: type=1400 audit(2000003218.510:1930): apparmor="DENIED" operation="stack" class="file" info="label not found" error=-2 profile="unconfined" name=26260A3A0CCA7C2B08C9DFF78977F306B457CA93031D371D06D2E59E863E2FE54118A4EE43068DF6BA88E1B6DC3A2F2C91AE1C817D6B6014270B8BC51F73363852F4F12EE955F464599F0C485D pid=4714 comm="syz.9.13392" [ 1237.818509][ T4712] loop7: detected capacity change from 0 to 1024 [ 1237.857011][T19475] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1237.936934][ T4712] hfsplus: inconsistency in B*Tree (128,1,255,1,0) [ 1237.966307][ T4712] hfsplus: xattr searching failed [ 1238.315496][ T4734] loop0: detected capacity change from 0 to 256 [ 1238.335227][ T4732] loop9: detected capacity change from 0 to 512 [ 1238.408631][ T4732] EXT4-fs (loop9): encrypted files will use data=ordered instead of data journaling mode [ 1238.503368][ T4732] EXT4-fs (loop9): 1 truncate cleaned up [ 1238.515896][ T4734] FAT-fs (loop0): Directory bread(block 64) failed [ 1238.538855][ T4732] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1238.556873][ T4734] FAT-fs (loop0): Directory bread(block 65) failed [ 1238.637370][ T4734] FAT-fs (loop0): Directory bread(block 66) failed [ 1238.643959][ T4734] FAT-fs (loop0): Directory bread(block 67) failed [ 1238.664313][ T4732] EXT4-fs error (device loop9): ext4_get_verity_descriptor_location:298: inode #15: comm syz.9.13402: verity file has no extents [ 1238.733242][ T4734] FAT-fs (loop0): Directory bread(block 68) failed [ 1238.736457][ T4732] EXT4-fs (loop9): Remounting filesystem read-only [ 1238.783760][ T4734] FAT-fs (loop0): Directory bread(block 69) failed [ 1238.793688][ T4732] fs-verity (loop9, inode 15): Error -117 getting verity descriptor size [ 1238.796306][ T4734] FAT-fs (loop0): Directory bread(block 70) failed [ 1238.840000][ T4734] FAT-fs (loop0): Directory bread(block 71) failed [ 1238.864965][ T4734] FAT-fs (loop0): Directory bread(block 72) failed [ 1238.896245][ T4734] FAT-fs (loop0): Directory bread(block 73) failed [ 1238.982665][ T4755] loop7: detected capacity change from 0 to 2048 [ 1239.016487][ T1467] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1239.054770][ T4755] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 1239.119491][ T4757] 9pnet: Limiting 'msize' to 1048576 as this is the maximum supported by transport fd [ 1239.288742][ T4763] openvswitch: netlink: Actions may not be safe on all matching packets [ 1239.469226][ T4767] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 1239.667523][ T30] audit: type=1326 audit(2000003220.430:1931): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4774 comm="syz.0.13422" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1e2e38e969 code=0x7ffc0000 [ 1239.733278][ T4777] loop7: detected capacity change from 0 to 1024 [ 1239.763306][ T30] audit: type=1326 audit(2000003220.430:1932): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4774 comm="syz.0.13422" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1e2e38e969 code=0x7ffc0000 [ 1239.849941][ T30] audit: type=1326 audit(2000003220.430:1933): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4774 comm="syz.0.13422" exe="/root/syz-executor" sig=0 arch=c000003e syscall=158 compat=0 ip=0x7f1e2e38e969 code=0x7ffc0000 [ 1239.868433][ T4777] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1239.887923][ T30] audit: type=1326 audit(2000003220.430:1934): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4774 comm="syz.0.13422" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1e2e38e969 code=0x7ffc0000 [ 1239.910930][ T30] audit: type=1326 audit(2000003220.430:1935): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4774 comm="syz.0.13422" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1e2e38e969 code=0x7ffc0000 [ 1239.996416][ T4777] ext4 filesystem being mounted at /1211/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 1240.258311][T20057] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1240.661114][ T4804] loop8: detected capacity change from 0 to 256 [ 1240.739259][ T4773] loop6: detected capacity change from 0 to 32768 [ 1240.754705][ T4804] FAT-fs (loop8): Directory bread(block 64) failed [ 1240.782386][ T4804] FAT-fs (loop8): Directory bread(block 65) failed [ 1240.806468][ T4773] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop6 (7:6) scanned by syz.6.13419 (4773) [ 1240.829591][ T4804] FAT-fs (loop8): Directory bread(block 66) failed [ 1240.859373][ T4804] FAT-fs (loop8): Directory bread(block 67) failed [ 1240.866079][ T4804] FAT-fs (loop8): Directory bread(block 68) failed [ 1240.893879][ T4773] BTRFS info (device loop6): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 1240.910451][ T4804] FAT-fs (loop8): Directory bread(block 69) failed [ 1240.948814][ T4810] loop7: detected capacity change from 0 to 64 [ 1240.949319][ T4804] FAT-fs (loop8): Directory bread(block 70) failed [ 1240.963944][ T4773] BTRFS info (device loop6): using crc32c (crc32c-x86_64) checksum algorithm [ 1240.987739][ T4804] FAT-fs (loop8): Directory bread(block 71) failed [ 1241.007065][ T4773] BTRFS info (device loop6): using free-space-tree [ 1241.028796][ T4804] FAT-fs (loop8): Directory bread(block 72) failed [ 1241.035389][ T4804] FAT-fs (loop8): Directory bread(block 73) failed [ 1241.299356][ T3442] BTRFS warning (device loop6): checksum verify failed on logical 5255168 mirror 1 wanted 0x9df47653 found 0x8243940d level 1 [ 1241.378288][ T4773] BTRFS warning (device loop6): failed to read fs tree: -5 [ 1241.599015][ T4773] BTRFS error (device loop6): open_ctree failed: -5 [ 1241.701666][ T4838] netlink: 'syz.4.13443': attribute type 11 has an invalid length. [ 1241.909622][ T4788] loop9: detected capacity change from 0 to 40427 [ 1241.974763][ T4846] trusted_key: encrypted_key: master key parameter 'u' is invalid [ 1241.990747][ T4788] F2FS-fs (loop9): Insane cp_payload (553648128 >= 504) [ 1242.047557][ T4788] F2FS-fs (loop9): Can't find valid F2FS filesystem in 1th superblock [ 1242.055877][ T4788] F2FS-fs (loop9): build fault injection attr: rate: 17008, type: 0x3fffff [ 1242.142950][ T4788] F2FS-fs (loop9): build fault injection attr: rate: 0, type: 0x1f8 [ 1242.275228][ T4788] F2FS-fs (loop9): invalid crc value [ 1242.286443][ T4854] tmpfs: Bad value for 'mpol' [ 1242.849107][ T4788] F2FS-fs (loop9): Try to recover 1th superblock, ret: 0 [ 1242.913161][ T4788] F2FS-fs (loop9): Mounted with checkpoint version = 48b305e5 [ 1242.946336][ T3076] usb 8-1: new low-speed USB device number 22 using dummy_hcd [ 1242.998161][ T4788] syz.9.13427: attempt to access beyond end of device [ 1242.998161][ T4788] loop9: rw=2049, sector=53248, nr_sectors = 8 limit=40427 [ 1242.999462][ T4875] loop8: detected capacity change from 0 to 1024 [ 1243.047821][ T4880] netlink: 8 bytes leftover after parsing attributes in process `syz.6.13462'. [ 1243.089049][ T4875] EXT4-fs (loop8): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 1243.134598][ T3076] usb 8-1: config 0 has an invalid interface number: 1 but max is 0 [ 1243.144545][ T3076] usb 8-1: config 0 has no interface number 0 [ 1243.147168][ T4875] EXT4-fs (loop8): revision level too high, forcing read-only mode [ 1243.180797][ T3076] usb 8-1: config 0 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 10 [ 1243.196751][ T4875] EXT4-fs (loop8): orphan cleanup on readonly fs [ 1243.245954][ T4875] Quota error (device loop8): v2_read_file_info: Can't read info structure [ 1243.283071][ T3076] usb 8-1: config 0 interface 1 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0 [ 1243.312194][ T4875] EXT4-fs warning (device loop8): ext4_enable_quotas:7170: Failed to enable quota tracking (type=0, err=-5, ino=3). Please run e2fsck to fix. [ 1243.335757][ T4888] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore [ 1243.341586][ T4875] EXT4-fs (loop8): Cannot turn on quotas: error -5 [ 1243.352929][ T1467] syz-executor: attempt to access beyond end of device [ 1243.352929][ T1467] loop9: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 1243.364983][ T3076] usb 8-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22 [ 1243.396233][ T1467] CPU: 1 UID: 0 PID: 1467 Comm: syz-executor Not tainted 6.15.0-rc7-syzkaller #0 PREEMPT(full) [ 1243.396267][ T1467] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 1243.396282][ T1467] Call Trace: [ 1243.396292][ T1467] [ 1243.396303][ T1467] dump_stack_lvl+0x189/0x250 [ 1243.396347][ T1467] ? __pfx_dump_stack_lvl+0x10/0x10 [ 1243.396383][ T1467] ? __pfx_queue_work_on+0x10/0x10 [ 1243.396407][ T1467] ? _raw_spin_unlock_irqrestore+0xad/0x110 [ 1243.396438][ T1467] ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10 [ 1243.396470][ T1467] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1243.396508][ T1467] f2fs_handle_critical_error+0x37c/0x540 [ 1243.396546][ T1467] f2fs_write_end_io+0x4e2/0x6d0 [ 1243.396596][ T1467] __submit_merged_bio+0x27a/0x6a0 [ 1243.396632][ T1467] __submit_merged_write_cond+0x255/0x530 [ 1243.396667][ T1467] f2fs_write_data_pages+0x2854/0x31f0 [ 1243.396698][ T1467] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1243.396765][ T1467] ? __pfx_f2fs_write_data_pages+0x10/0x10 [ 1243.396846][ T1467] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1243.396873][ T1467] ? __mod_node_page_state+0xf4/0x170 [ 1243.396921][ T1467] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1243.396948][ T1467] ? lru_gen_update_size+0x7bd/0xd20 [ 1243.396998][ T1467] ? folios_put_refs+0x560/0x640 [ 1243.397040][ T1467] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1243.397067][ T1467] ? lru_add+0xa2f/0xd80 [ 1243.397096][ T1467] ? __pfx_f2fs_write_data_pages+0x10/0x10 [ 1243.397127][ T1467] do_writepages+0x3b1/0x7b0 [ 1243.397179][ T1467] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1243.397206][ T1467] ? do_raw_spin_lock+0x121/0x290 [ 1243.397236][ T1467] ? __pfx_do_writepages+0x10/0x10 [ 1243.397272][ T1467] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1243.397304][ T1467] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1243.397330][ T1467] ? do_raw_spin_unlock+0x122/0x240 [ 1243.397365][ T1467] filemap_fdatawrite+0x191/0x230 [ 1243.397400][ T1467] ? __pfx_filemap_fdatawrite+0x10/0x10 [ 1243.397481][ T1467] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1243.397514][ T1467] ? do_raw_spin_unlock+0x122/0x240 [ 1243.397549][ T1467] f2fs_sync_dirty_inodes+0x31f/0x830 [ 1243.397599][ T1467] f2fs_write_checkpoint+0x94a/0x1de0 [ 1243.397659][ T1467] ? __pfx_f2fs_write_checkpoint+0x10/0x10 [ 1243.397748][ T1467] ? kill_f2fs_super+0x298/0x6c0 [ 1243.397787][ T1467] kill_f2fs_super+0x2c3/0x6c0 [ 1243.397828][ T1467] ? __pfx_kill_f2fs_super+0x10/0x10 [ 1243.397858][ T1467] ? radix_tree_delete_item+0x2b6/0x400 [ 1243.397901][ T1467] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1243.397929][ T1467] ? shrinker_free+0x2ce/0x3e0 [ 1243.397958][ T1467] deactivate_locked_super+0xbc/0x130 [ 1243.397986][ T1467] cleanup_mnt+0x425/0x4c0 [ 1243.398009][ T1467] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1243.398036][ T1467] ? lockdep_hardirqs_on+0x9c/0x150 [ 1243.398071][ T1467] task_work_run+0x1d4/0x260 [ 1243.398107][ T1467] ? __pfx_task_work_run+0x10/0x10 [ 1243.398141][ T1467] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1243.398180][ T1467] resume_user_mode_work+0x5e/0x80 [ 1243.398216][ T1467] syscall_exit_to_user_mode+0x9a/0x120 [ 1243.398251][ T1467] do_syscall_64+0x103/0x210 [ 1243.398284][ T1467] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1243.398311][ T1467] ? exc_page_fault+0x91/0x110 [ 1243.398344][ T1467] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1243.398367][ T1467] RIP: 0033:0x7ff1dd58fc97 [ 1243.398388][ T1467] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8 [ 1243.398408][ T1467] RSP: 002b:00007ffe564c13a8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6 [ 1243.398433][ T1467] RAX: 0000000000000000 RBX: 00007ff1dd61089d RCX: 00007ff1dd58fc97 [ 1243.398450][ T1467] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffe564c1460 [ 1243.398466][ T1467] RBP: 00007ffe564c1460 R08: 0000000000000000 R09: 0000000000000000 [ 1243.398482][ T1467] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffe564c24f0 [ 1243.398499][ T1467] R13: 00007ff1dd61089d R14: 000000000012f7c1 R15: 00007ffe564c2530 [ 1243.398537][ T1467] [ 1243.398547][ T1467] F2FS-fs (loop9): Stopped filesystem due to reason: 3 [ 1243.401360][ T4888] overlayfs: option "index=on" is useless in a non-upper mount, ignore [ 1243.428008][ T4875] EXT4-fs (loop8): 1 truncate cleaned up [ 1243.446551][ T3076] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1243.498911][ T4875] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 1243.514254][ T4888] overlayfs: missing 'lowerdir' [ 1243.865255][ T3076] usb 8-1: config 0 descriptor?? [ 1243.870728][T23070] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1243.886947][ T3076] iowarrior 8-1:0.1: IOWarrior product=0x1512, serial= interface=1 now attached to iowarrior0 [ 1244.137671][ T4870] iowarrior 8-1:0.1: Error -90 while submitting URB [ 1244.171133][ T3090] usb 8-1: USB disconnect, device number 22 [ 1244.434696][ T4885] loop0: detected capacity change from 0 to 32768 [ 1244.511180][ T4885] JBD2: Ignoring recovery information on journal [ 1244.718027][ T4885] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode. [ 1244.835891][ T4885] OCFS2: ERROR (device loop0): int ocfs2_claim_suballoc_bits(struct ocfs2_alloc_context *, handle_t *, u32, u32, struct ocfs2_suballoc_result *): Chain allocator dinode 73 has 4294901761 used bits but only 0 total [ 1244.896860][ T4885] On-disk corruption discovered. Please run fsck.ocfs2 once the filesystem is unmounted. [ 1244.976330][ T4885] OCFS2: File system is now read-only. [ 1244.981862][ T4885] (syz.0.13464,4885,0):ocfs2_claim_suballoc_bits:2063 ERROR: status = -30 [ 1245.054562][ T4885] (syz.0.13464,4885,0):ocfs2_claim_metadata:2088 ERROR: status = -30 [ 1245.086779][ T4885] (syz.0.13464,4885,0):ocfs2_claim_metadata:2101 ERROR: status = -30 [ 1245.116191][ T4885] (syz.0.13464,4885,0):ocfs2_dx_dir_attach_index:2328 ERROR: status = -30 [ 1245.176283][ T4885] (syz.0.13464,4885,0):ocfs2_expand_inline_dir:3021 ERROR: status = -30 [ 1245.184786][ T4885] (syz.0.13464,4885,0):ocfs2_extend_dir:3203 ERROR: status = -30 [ 1245.256515][ T4885] (syz.0.13464,4885,0):ocfs2_prepare_dir_for_insert:4308 ERROR: status = -30 [ 1245.265355][ T4885] (syz.0.13464,4885,0):ocfs2_mknod:298 ERROR: status = -30 [ 1245.331668][ T4885] (syz.0.13464,4885,0):ocfs2_mknod:502 ERROR: status = -30 [ 1245.346493][ T3076] usb 10-1: new high-speed USB device number 8 using dummy_hcd [ 1245.376196][ T4885] (syz.0.13464,4885,0):ocfs2_mkdir:658 ERROR: status = -30 [ 1245.428523][ T4899] loop4: detected capacity change from 0 to 32768 [ 1245.516329][ T3076] usb 10-1: Using ep0 maxpacket: 32 [ 1245.531952][ T3076] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 1245.592566][ T3076] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 1245.593447][ T5845] ocfs2: Unmounting device (7,0) on (node local) [ 1245.633066][ T3076] usb 10-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40 [ 1245.714228][ T3076] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1245.799201][ T3076] usb 10-1: config 0 descriptor?? [ 1245.828847][ T3076] hub 10-1:0.0: USB hub found [ 1246.016666][ T3076] hub 10-1:0.0: 26 ports detected [ 1246.044880][ T3076] hub 10-1:0.0: insufficient power available to use all downstream ports [ 1246.203654][ T4943] loop8: detected capacity change from 0 to 64 [ 1246.223041][ T3076] hub 10-1:0.0: hub_hub_status failed (err = -71) [ 1246.255895][ T3076] hub 10-1:0.0: config failed, can't get hub status (err -71) [ 1246.301747][ T30] audit: type=1800 audit(2000003227.040:1936): pid=4943 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.8.13491" name="file2" dev="loop8" ino=6 res=0 errno=0 [ 1246.346839][ T3076] usbhid 10-1:0.0: can't add hid device: -71 [ 1246.352995][ T3076] usbhid 10-1:0.0: probe with driver usbhid failed with error -71 [ 1246.434961][ T3076] usb 10-1: USB disconnect, device number 8 [ 1246.559574][ T4958] xt_TCPMSS: Only works on TCP SYN packets [ 1246.765667][ T4964] loop8: detected capacity change from 0 to 256 [ 1246.792973][ T4965] netlink: 'syz.0.13501': attribute type 21 has an invalid length. [ 1246.802005][ T4964] exfat: Deprecated parameter 'utf8' [ 1246.833209][ T4964] exfat: Deprecated parameter 'utf8' [ 1246.843403][ T4964] exfat: Deprecated parameter 'utf8' [ 1246.849074][ T4965] netlink: 'syz.0.13501': attribute type 20 has an invalid length. [ 1246.981501][ T4964] exFAT-fs (loop8): failed to load upcase table (idx : 0x00011f3f, chksum : 0x96b62a4c, utbl_chksum : 0xe619d30d) [ 1247.366224][ T4989] netlink: 'syz.0.13512': attribute type 1 has an invalid length. [ 1247.396435][ T4989] netlink: 4 bytes leftover after parsing attributes in process `syz.0.13512'. [ 1247.803259][ T5009] netlink: 64 bytes leftover after parsing attributes in process `syz.9.13522'. [ 1247.843216][ T5009] netlink: 64 bytes leftover after parsing attributes in process `syz.9.13522'. [ 1248.631083][ T5035] netlink: 'syz.0.13535': attribute type 1 has an invalid length. [ 1248.827908][ T4993] loop6: detected capacity change from 0 to 32768 [ 1248.856845][ T4993] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop6 (7:6) scanned by syz.6.13515 (4993) [ 1248.917135][ T4993] BTRFS info (device loop6): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 1249.001606][ T4993] BTRFS info (device loop6): using sha256 (sha256-ni) checksum algorithm [ 1249.010817][ T4993] BTRFS info (device loop6): disk space caching is enabled [ 1249.020002][ T4993] BTRFS warning (device loop6): space cache v1 is being deprecated and will be removed in a future release, please use -o space_cache=v2 [ 1249.112506][ T5047] bond1: entered promiscuous mode [ 1249.146796][ T5047] bond1: entered allmulticast mode [ 1249.172453][ T4993] BTRFS info (device loop6): rebuilding free space tree [ 1249.176947][ T5047] 8021q: adding VLAN 0 to HW filter on device bond1 [ 1249.233201][ T4993] BTRFS info (device loop6): disabling free space tree [ 1249.258731][ T4993] BTRFS info (device loop6): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1) [ 1249.326789][ T4993] BTRFS info (device loop6): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2) [ 1249.626490][ T5078] netlink: 'syz.9.13547': attribute type 1 has an invalid length. [ 1249.634361][ T5078] netlink: 224 bytes leftover after parsing attributes in process `syz.9.13547'. [ 1249.634816][T19475] BTRFS info (device loop6): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 1249.722283][ T5078] netlink: 8 bytes leftover after parsing attributes in process `syz.9.13547'. [ 1250.374624][ T5101] openvswitch: netlink: nsh attribute has 2 unknown bytes. [ 1251.263015][ T5137] loop7: detected capacity change from 0 to 1024 [ 1251.268081][ T5138] netlink: 'syz.9.13572': attribute type 2 has an invalid length. [ 1251.285698][ T5138] netlink: 8 bytes leftover after parsing attributes in process `syz.9.13572'. [ 1251.491997][ T30] audit: type=1326 audit(2000003232.240:1937): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5144 comm="syz.6.13576" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f23c4d8e969 code=0x7ffc0000 [ 1251.571038][ T3442] hfsplus: b-tree write err: -5, ino 8 [ 1251.612751][ T30] audit: type=1326 audit(2000003232.280:1938): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5144 comm="syz.6.13576" exe="/root/syz-executor" sig=0 arch=c000003e syscall=139 compat=0 ip=0x7f23c4d8e969 code=0x7ffc0000 [ 1251.701148][ T30] audit: type=1326 audit(2000003232.280:1939): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5144 comm="syz.6.13576" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f23c4d8e969 code=0x7ffc0000 [ 1251.766437][ T5152] netlink: 'syz.4.13581': attribute type 9 has an invalid length. [ 1251.835538][ T30] audit: type=1326 audit(2000003232.280:1940): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5144 comm="syz.6.13576" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f23c4d8e969 code=0x7ffc0000 [ 1252.066693][ T5163] netlink: 32 bytes leftover after parsing attributes in process `syz.7.13585'. [ 1252.773159][ T5145] loop0: detected capacity change from 0 to 32768 [ 1252.865654][ T5193] netdevsim netdevsim8 netdevsim0: entered allmulticast mode [ 1252.974264][ T5148] loop9: detected capacity change from 0 to 32768 [ 1253.001549][ T5148] BTRFS: device fsid e417788f-7a09-42b2-9266-8ddc5d5d35d2 devid 1 transid 8 /dev/loop9 (7:9) scanned by syz.9.13578 (5148) [ 1253.064804][ T5148] BTRFS info (device loop9): first mount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2 [ 1253.118669][ T5148] BTRFS info (device loop9): using xxhash64 (xxhash64-generic) checksum algorithm [ 1253.150228][ T5148] BTRFS info (device loop9): using free-space-tree [ 1253.438593][ T5148] BTRFS info (device loop9): rebuilding free space tree [ 1253.855884][ T1467] BTRFS info (device loop9): last unmount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2 [ 1254.370031][ T5252] netlink: 56 bytes leftover after parsing attributes in process `syz.9.13613'. [ 1255.106496][ T5276] netlink: 20 bytes leftover after parsing attributes in process `syz.9.13629'. [ 1255.509758][ T5290] virtiofs: Unknown parameter 'always' [ 1255.746863][ T3091] usb 5-1: new high-speed USB device number 109 using dummy_hcd [ 1255.822879][ T5303] binder: 5301:5303 ioctl c018620c 2000000000c0 returned -1 [ 1255.921852][ T3091] usb 5-1: Using ep0 maxpacket: 32 [ 1255.939059][ T3091] usb 5-1: config 0 interface 0 has no altsetting 0 [ 1255.979010][ T3091] usb 5-1: New USB device found, idVendor=16d0, idProduct=10b8, bcdDevice=de.8e [ 1255.996128][ T3091] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1256.077698][ T3091] usb 5-1: Product: syz [ 1256.081937][ T3091] usb 5-1: Manufacturer: syz [ 1256.136866][ T3091] usb 5-1: SerialNumber: syz [ 1256.150962][ T3091] usb 5-1: config 0 descriptor?? [ 1256.502058][ T5274] loop6: detected capacity change from 0 to 32768 [ 1256.503213][T15986] usb 9-1: new high-speed USB device number 31 using dummy_hcd [ 1256.576000][ T5274] (syz.6.13628,5274,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 1256.601267][ T3091] gs_usb 5-1:0.0: Couldn't get device config: (err=-71) [ 1256.626720][ T3091] gs_usb 5-1:0.0: probe with driver gs_usb failed with error -71 [ 1256.642097][ T5274] (syz.6.13628,5274,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 1256.683743][ T3091] usb 5-1: USB disconnect, device number 109 [ 1256.696767][T15986] usb 9-1: Using ep0 maxpacket: 32 [ 1256.760504][T15986] usb 9-1: unable to get BOS descriptor or descriptor too short [ 1256.786653][T15986] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x82 has invalid maxpacket 256, setting to 64 [ 1256.811924][ T5274] JBD2: Ignoring recovery information on journal [ 1256.844124][T15986] usb 9-1: New USB device found, idVendor=0123, idProduct=0001, bcdDevice=4a.fe [ 1256.885592][ T5328] loop9: detected capacity change from 0 to 4096 [ 1256.898718][T15986] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1256.909925][ T5274] ocfs2: Mounting device (7,6) on (node local, slot 0) with ordered data mode. [ 1256.957330][T15986] usb 9-1: Product: syz [ 1256.962203][T15986] usb 9-1: Manufacturer: syz [ 1256.985998][ T5328] ntfs3(loop9): Mark volume as dirty due to NTFS errors [ 1256.993160][T15986] usb 9-1: SerialNumber: syz [ 1257.007807][T15986] usb 9-1: config 0 descriptor?? [ 1257.040561][ T5328] ntfs3(loop9): Failed to initialize $Extend/$ObjId. [ 1257.101957][ T5328] ntfs3(loop9): ino=1e, "file1" attr_set_size [ 1257.200533][T19475] ocfs2: Unmounting device (7,6) on (node local) [ 1257.271919][T15986] input: syz syz as /devices/platform/dummy_hcd.8/usb9/9-1/9-1:0.0/input/input80 [ 1257.541948][ T5344] netlink: 'syz.7.13661': attribute type 21 has an invalid length. [ 1257.583231][ T5344] netlink: 128 bytes leftover after parsing attributes in process `syz.7.13661'. [ 1257.592951][T15986] usb 9-1: USB disconnect, device number 31 [ 1257.662141][ T5344] netlink: 'syz.7.13661': attribute type 5 has an invalid length. [ 1257.686349][ T5344] netlink: 'syz.7.13661': attribute type 6 has an invalid length. [ 1257.710870][ T5344] netlink: 3 bytes leftover after parsing attributes in process `syz.7.13661'. [ 1258.200052][ T5366] netlink: 'syz.4.13672': attribute type 2 has an invalid length. [ 1258.827296][ T5393] xt_SECMARK: invalid mode: 2 [ 1259.075533][ T5402] loop0: detected capacity change from 0 to 64 [ 1259.112000][ T5403] loop8: detected capacity change from 0 to 512 [ 1259.120428][ T5400] loop9: detected capacity change from 0 to 1764 [ 1259.151373][ T5403] EXT4-fs (loop8): Test dummy encryption mode enabled [ 1259.199269][ T5403] EXT4-fs (loop8): encrypted files will use data=ordered instead of data journaling mode [ 1259.223435][ T5400] iso9660: Corrupted directory entry in block 2 of inode 1920 [ 1259.336478][ T5403] EXT4-fs (loop8): 1 truncate cleaned up [ 1259.344049][ T5403] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1259.712425][ T5416] netlink: 104 bytes leftover after parsing attributes in process `syz.4.13695'. [ 1259.870841][ T5423] netlink: 'syz.0.13697': attribute type 1 has an invalid length. [ 1259.936228][ T5423] netlink: 'syz.0.13697': attribute type 2 has an invalid length. [ 1260.023043][ T5428] loop9: detected capacity change from 0 to 16 [ 1260.071295][T23070] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1260.093052][ T5427] loop4: detected capacity change from 0 to 256 [ 1260.152002][ T5428] erofs (device loop9): mounted with root inode @ nid 36. [ 1260.160487][ T5427] exfat: Deprecated parameter 'namecase' [ 1260.204102][ T5427] exfat: Deprecated parameter 'utf8' [ 1260.227507][ T5428] erofs (device loop9): unknown HEAD1 format 15 for nid 36, please upgrade kernel [ 1260.276308][ T5428] erofs (device loop9): unknown HEAD1 format 15 for nid 36, please upgrade kernel [ 1260.331882][ T5427] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0x23633d53, utbl_chksum : 0xe619d30d) [ 1260.336853][ T5428] erofs (device loop9): read error -95 @ 8200 of nid 36 [ 1260.626555][ T5379] Bluetooth: hci6: command 0x0406 tx timeout [ 1261.225790][ T5391] syz.7.13683 (5391): drop_caches: 2 [ 1261.837970][ T5481] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check. [ 1261.981282][ T5495] netlink: 'syz.9.13729': attribute type 2 has an invalid length. [ 1261.998240][ T5490] netlink: 16 bytes leftover after parsing attributes in process `syz.0.13727'. [ 1262.007076][ T5495] netlink: 'syz.9.13729': attribute type 8 has an invalid length. [ 1262.031331][ T5495] netlink: 132 bytes leftover after parsing attributes in process `syz.9.13729'. [ 1262.187141][ T5499] cgroup: Unexpected value for 'cpuset_v2_mode' [ 1262.243437][ T5502] netlink: 16 bytes leftover after parsing attributes in process `syz.0.13733'. [ 1262.849806][T19500] I/O error, dev loop9, sector 0 op 0x1:(WRITE) flags 0x800 phys_seg 0 prio class 0 [ 1263.366277][ T3091] usb 5-1: new high-speed USB device number 110 using dummy_hcd [ 1263.474696][ T5552] [U] vÔ3¸Âfù¾"SçÁ/Éê4:ÃXTz“W¡t‘’lWµ«= [ 1263.526949][ T5552] [U] J"—e:ÀÆ" [ 1263.555932][ T3091] usb 5-1: Using ep0 maxpacket: 16 [ 1263.573644][ T3091] usb 5-1: New USB device found, idVendor=17ef, idProduct=721e, bcdDevice=de.06 [ 1263.576355][ T3076] usb 7-1: new high-speed USB device number 30 using dummy_hcd [ 1263.599463][ T5558] netlink: 'syz.8.13761': attribute type 13 has an invalid length. [ 1263.601205][ T3091] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1263.646526][ T3091] usb 5-1: Product: syz [ 1263.650755][ T3091] usb 5-1: Manufacturer: syz [ 1263.655369][ T3091] usb 5-1: SerialNumber: syz [ 1263.732090][ T3091] r8152-cfgselector 5-1: Unknown version 0x0000 [ 1263.733036][ T5554] loop9: detected capacity change from 0 to 4096 [ 1263.746828][ T3091] r8152-cfgselector 5-1: config 0 descriptor?? [ 1263.781063][ T5554] ntfs3(loop9): Different NTFS sector size (4096) and media sector size (512). [ 1263.799620][ T3076] usb 7-1: New USB device found, idVendor=0af0, idProduct=7a05, bcdDevice= 0.00 [ 1263.823597][ T3076] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1263.852332][ T3076] usb 7-1: Product: syz [ 1263.872892][ T3076] usb 7-1: Manufacturer: syz [ 1263.901404][ T3076] usb 7-1: SerialNumber: syz [ 1263.950535][ T3076] usb 7-1: config 0 descriptor?? [ 1264.204649][ T3076] hso 7-1:0.0: Failed to find BULK IN ep [ 1264.227650][T15986] r8152-cfgselector 5-1: USB disconnect, device number 110 [ 1264.247515][ T3076] usb-storage 7-1:0.0: USB Mass Storage device detected [ 1264.488789][ T3076] usb 7-1: USB disconnect, device number 30 [ 1264.773503][ T5595] netlink: 24 bytes leftover after parsing attributes in process `syz.9.13774'. [ 1265.154305][ T5605] loop9: detected capacity change from 0 to 256 [ 1265.253685][ T5612] loop7: detected capacity change from 0 to 16 [ 1265.292324][ T5612] erofs (device loop7): mounted with root inode @ nid 36. [ 1265.323658][ T5612] erofs (device loop7): read error -22 @ 43 of nid 36 [ 1265.639878][ T5620] loop8: detected capacity change from 0 to 1024 [ 1265.724957][ T5620] EXT4-fs: Ignoring removed nobh option [ 1265.766160][ T5620] EXT4-fs: Ignoring removed bh option [ 1265.894050][ T5620] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1266.115272][T23070] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1266.273369][ T30] audit: type=1326 audit(2000003247.030:1941): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5649 comm="syz.7.13799" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd0a878e969 code=0x7ffc0000 [ 1266.371548][ T30] audit: type=1326 audit(2000003247.030:1942): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5649 comm="syz.7.13799" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd0a878e969 code=0x7ffc0000 [ 1266.469548][ T30] audit: type=1326 audit(2000003247.040:1943): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5649 comm="syz.7.13799" exe="/root/syz-executor" sig=0 arch=c000003e syscall=218 compat=0 ip=0x7fd0a878e969 code=0x7ffc0000 [ 1266.578514][ T30] audit: type=1326 audit(2000003247.040:1944): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5649 comm="syz.7.13799" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd0a878e969 code=0x7ffc0000 [ 1266.686304][ T30] audit: type=1326 audit(2000003247.040:1945): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5649 comm="syz.7.13799" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd0a878e969 code=0x7ffc0000 [ 1266.848361][ T5672] netlink: 16 bytes leftover after parsing attributes in process `syz.0.13809'. [ 1266.872279][ T31] INFO: task syz-executor:5830 blocked for more than 143 seconds. [ 1266.883237][ T5673] caif:caif_disconnect_client(): nothing to disconnect [ 1266.906225][ T31] Not tainted 6.15.0-rc7-syzkaller #0 [ 1266.928876][ T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 1266.982917][ T31] task:syz-executor state:D stack:17576 pid:5830 tgid:5830 ppid:1 task_flags:0x400140 flags:0x00004004 [ 1267.029060][ T31] Call Trace: [ 1267.042470][ T31] [ 1267.066645][ T31] __schedule+0x16e2/0x4cd0 [ 1267.083718][ T31] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1267.096060][ T31] ? schedule+0x165/0x360 [ 1267.110258][ T31] ? __lock_acquire+0xaac/0xd20 [ 1267.126373][ T31] ? __pfx___schedule+0x10/0x10 [ 1267.140224][ T31] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1267.153754][ T31] ? schedule+0x91/0x360 [ 1267.162616][ T31] schedule+0x165/0x360 [ 1267.170398][ T31] io_schedule+0x81/0xe0 [ 1267.178773][ T31] folio_wait_bit_common+0x6b0/0xb90 [ 1267.195652][ T31] ? __pfx_folio_wait_bit_common+0x10/0x10 [ 1267.218427][ T31] ? __pfx_wake_page_function+0x10/0x10 [ 1267.234486][ T31] ? folios_put_refs+0x559/0x640 [ 1267.244141][ T31] ? __pfx_find_lock_entries+0x10/0x10 [ 1267.255541][ T31] __filemap_get_folio+0x139/0xaf0 [ 1267.265313][ T31] truncate_inode_pages_range+0x3ed/0xda0 [ 1267.278022][ T31] ? evict+0x847/0x9c0 [ 1267.286471][ T31] ? evict_inodes+0x636/0x6c0 [ 1267.295714][ T31] ? generic_shutdown_super+0x9a/0x2c0 [ 1267.306806][ T31] ? kill_block_super+0x44/0x90 [ 1267.317492][ T31] ? deactivate_locked_super+0xbc/0x130 [ 1267.335491][ T31] ? __pfx_truncate_inode_pages_range+0x10/0x10 [ 1267.353646][ T31] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1267.363794][ T31] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1267.373873][ T31] ? __lock_acquire+0xaac/0xd20 [ 1267.384033][ T31] ? _raw_spin_unlock_irq+0x23/0x50 [ 1267.396135][ T31] ? lockdep_hardirqs_on+0x9c/0x150 [ 1267.401392][ T31] evict+0x517/0x9c0 [ 1267.415588][ T31] ? __pfx_evict+0x10/0x10 [ 1267.425687][ T31] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1267.435808][ T31] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1267.451562][ T31] ? do_raw_spin_unlock+0x122/0x240 [ 1267.460303][ T31] evict_inodes+0x636/0x6c0 [ 1267.469461][ T31] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1267.480184][ T31] ? __pfx_evict_inodes+0x10/0x10 [ 1267.485323][ T31] generic_shutdown_super+0x9a/0x2c0 [ 1267.490852][ T31] kill_block_super+0x44/0x90 [ 1267.495625][ T31] deactivate_locked_super+0xbc/0x130 [ 1267.501242][ T31] cleanup_mnt+0x425/0x4c0 [ 1267.505735][ T31] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1267.512239][ T31] ? lockdep_hardirqs_on+0x9c/0x150 [ 1267.540224][ T31] task_work_run+0x1d4/0x260 [ 1267.544963][ T31] ? __pfx_task_work_run+0x10/0x10 [ 1267.554219][ T31] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1267.565992][ T31] resume_user_mode_work+0x5e/0x80 [ 1267.575521][ T31] syscall_exit_to_user_mode+0x9a/0x120 [ 1267.584531][ T31] do_syscall_64+0x103/0x210 [ 1267.591932][ T31] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1267.601789][ T31] ? exc_page_fault+0x91/0x110 [ 1267.609433][ T31] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1267.615409][ T31] RIP: 0033:0x7efd8c98fc97 [ 1267.623460][ T31] RSP: 002b:00007ffd0d3121c8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6 [ 1267.634792][ T31] RAX: 0000000000000000 RBX: 00007efd8ca1089d RCX: 00007efd8c98fc97 [ 1267.649545][ T31] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffd0d312280 [ 1267.660179][ T31] RBP: 00007ffd0d312280 R08: 0000000000000000 R09: 0000000000000000 [ 1267.673695][ T31] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffd0d313310 [ 1267.685145][ T31] R13: 00007efd8ca1089d R14: 0000000000111a55 R15: 00007ffd0d313350 [ 1267.698884][ T31] [ 1267.702070][ T31] [ 1267.702070][ T31] Showing all locks held in the system: [ 1267.715202][ T31] 1 lock held by khungtaskd/31: [ 1267.723432][ T31] #0: ffffffff8df3dee0 (rcu_read_lock){....}-{1:3}, at: debug_show_all_locks+0x2e/0x180 [ 1267.754590][ T31] 1 lock held by udevd/5191: [ 1267.759431][ T31] 2 locks held by getty/5578: [ 1267.764133][ T31] #0: ffff888030f0b0a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x25/0x70 [ 1267.774314][ T31] #1: ffffc900030062f0 (&ldata->atomic_read_lock){+.+.}-{4:4}, at: n_tty_read+0x43e/0x1400 [ 1267.803224][ T31] 1 lock held by syz-executor/5830: [ 1267.808542][ T31] #0: ffff888082c2a0e0 (&type->s_umount_key#123){+.+.}-{4:4}, at: deactivate_super+0xa9/0xe0 [ 1267.819237][ T31] 1 lock held by syz.6.13688/5404: [ 1267.824392][ T31] #0: ffffffff8df439b8 (rcu_state.exp_mutex){+.+.}-{4:4}, at: synchronize_rcu_expedited+0x3b7/0x730 [ 1267.835779][ T31] [ 1267.838169][ T31] ============================================= [ 1267.838169][ T31] [ 1267.847129][ T31] NMI backtrace for cpu 0 [ 1267.847147][ T31] CPU: 0 UID: 0 PID: 31 Comm: khungtaskd Not tainted 6.15.0-rc7-syzkaller #0 PREEMPT(full) [ 1267.847182][ T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 1267.847198][ T31] Call Trace: [ 1267.847208][ T31] [ 1267.847218][ T31] dump_stack_lvl+0x189/0x250 [ 1267.847257][ T31] ? __wake_up_klogd+0xd9/0x110 [ 1267.847286][ T31] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1267.847316][ T31] ? __pfx_dump_stack_lvl+0x10/0x10 [ 1267.847351][ T31] ? __pfx__printk+0x10/0x10 [ 1267.847389][ T31] nmi_cpu_backtrace+0x39e/0x3d0 [ 1267.847421][ T31] ? __pfx_nmi_cpu_backtrace+0x10/0x10 [ 1267.847444][ T31] ? _printk+0xcf/0x120 [ 1267.847474][ T31] ? __pfx__printk+0x10/0x10 [ 1267.847501][ T31] ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10 [ 1267.847532][ T31] nmi_trigger_cpumask_backtrace+0x17a/0x300 [ 1267.847563][ T31] watchdog+0xfee/0x1030 [ 1267.847598][ T31] ? watchdog+0x1de/0x1030 [ 1267.847639][ T31] kthread+0x711/0x8a0 [ 1267.847673][ T31] ? __pfx_watchdog+0x10/0x10 [ 1267.847703][ T31] ? __pfx_kthread+0x10/0x10 [ 1267.847731][ T31] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1267.847761][ T31] ? __pfx_kthread+0x10/0x10 [ 1267.847790][ T31] ? _raw_spin_unlock_irq+0x23/0x50 [ 1267.847819][ T31] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1267.847846][ T31] ? lockdep_hardirqs_on+0x9c/0x150 [ 1267.847878][ T31] ? __pfx_kthread+0x10/0x10 [ 1267.847907][ T31] ret_from_fork+0x4e/0x80 [ 1267.847933][ T31] ? __pfx_kthread+0x10/0x10 [ 1267.847963][ T31] ret_from_fork_asm+0x1a/0x30 [ 1267.848004][ T31] [ 1267.848014][ T31] Sending NMI from CPU 0 to CPUs 1: [ 1268.011137][ C1] NMI backtrace for cpu 1 [ 1268.011157][ C1] CPU: 1 UID: 0 PID: 5677 Comm: syz.4.13811 Not tainted 6.15.0-rc7-syzkaller #0 PREEMPT(full) [ 1268.011185][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 1268.011199][ C1] RIP: 0010:deref_stack_reg+0x1cf/0x230 [ 1268.011233][ C1] Code: 24 18 48 89 d8 48 c1 e8 03 42 80 3c 38 00 74 08 48 89 df e8 f3 fb af 00 4c 89 33 b0 01 eb 02 31 c0 48 83 c4 20 5b 41 5c 41 5d <41> 5e 41 5f 5d e9 c2 4f 9e ff cc 44 89 f9 80 e1 07 80 c1 03 38 c1 [ 1268.011252][ C1] RSP: 0018:ffffc9001a467778 EFLAGS: 00000286 [ 1268.011272][ C1] RAX: 1ffff9200348cf01 RBX: ffffffff90b3ac8a RCX: 0000000000000001 [ 1268.011288][ C1] RDX: ffffc9001a4678a8 RSI: dffffc0000000000 RDI: ffffc9001a467f48 [ 1268.011305][ C1] RBP: 1ffff9200348cf0d R08: ffffc9001a467f48 R09: ffffc9001a4678b8 [ 1268.011322][ C1] R10: dffffc0000000000 R11: fffff5200348cf19 R12: ffffc9001a467f48 [ 1268.011339][ C1] R13: ffffc9001a4678b8 R14: 0000000000000000 R15: dffffc0000000000 [ 1268.011358][ C1] FS: 00007efc66a326c0(0000) GS:ffff8881261c2000(0000) knlGS:0000000000000000 [ 1268.011377][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1268.011392][ C1] CR2: 0000001b2fa1bff8 CR3: 00000000369c8000 CR4: 0000000000350ef0 [ 1268.011409][ C1] Call Trace: [ 1268.011418][ C1] [ 1268.011428][ C1] unwind_next_frame+0x17c4/0x2390 [ 1268.011461][ C1] ? unwind_next_frame+0xa5/0x2390 [ 1268.011488][ C1] ? do_syscall_64+0xf6/0x210 [ 1268.011522][ C1] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 1268.011549][ C1] arch_stack_walk+0x11c/0x150 [ 1268.011582][ C1] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1268.011609][ C1] stack_trace_save+0x9c/0xe0 [ 1268.011632][ C1] ? __pfx_stack_trace_save+0x10/0x10 [ 1268.011661][ C1] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1268.011689][ C1] save_stack+0xf7/0x1f0 [ 1268.011718][ C1] ? __pfx_save_stack+0x10/0x10 [ 1268.011744][ C1] ? __free_frozen_pages+0xb0e/0xcd0 [ 1268.011775][ C1] ? vfree+0x1a6/0x330 [ 1268.011802][ C1] ? drm_mode_createblob_ioctl+0x1a6/0x400 [ 1268.011829][ C1] ? drm_ioctl_kernel+0x2cf/0x390 [ 1268.011857][ C1] ? drm_ioctl+0x67f/0xb10 [ 1268.011885][ C1] ? __se_sys_ioctl+0xfc/0x170 [ 1268.011906][ C1] ? do_syscall_64+0xf6/0x210 [ 1268.011941][ C1] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1268.011969][ C1] ? page_ext_put+0x97/0xc0 [ 1268.012000][ C1] __reset_page_owner+0x71/0x1f0 [ 1268.012029][ C1] __free_frozen_pages+0xb0e/0xcd0 [ 1268.012067][ C1] vfree+0x1a6/0x330 [ 1268.012100][ C1] drm_mode_createblob_ioctl+0x1a6/0x400 [ 1268.012135][ C1] drm_ioctl_kernel+0x2cf/0x390 [ 1268.012167][ C1] ? __pfx_drm_mode_createblob_ioctl+0x10/0x10 [ 1268.012194][ C1] ? __pfx_drm_ioctl_kernel+0x10/0x10 [ 1268.012232][ C1] drm_ioctl+0x67f/0xb10 [ 1268.012264][ C1] ? __pfx_drm_mode_createblob_ioctl+0x10/0x10 [ 1268.012295][ C1] ? __pfx_drm_ioctl+0x10/0x10 [ 1268.012333][ C1] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1268.012358][ C1] ? __fget_files+0x3a0/0x420 [ 1268.012387][ C1] ? __fget_files+0x2a/0x420 [ 1268.012418][ C1] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1268.012443][ C1] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1268.012469][ C1] ? __pfx_drm_ioctl+0x10/0x10 [ 1268.012499][ C1] __se_sys_ioctl+0xfc/0x170 [ 1268.012523][ C1] do_syscall_64+0xf6/0x210 [ 1268.012553][ C1] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1268.012577][ C1] ? exc_page_fault+0x91/0x110 [ 1268.012606][ C1] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1268.012627][ C1] RIP: 0033:0x7efc65b8e969 [ 1268.012646][ C1] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1268.012664][ C1] RSP: 002b:00007efc66a32038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1268.012685][ C1] RAX: ffffffffffffffda RBX: 00007efc65db5fa0 RCX: 00007efc65b8e969 [ 1268.012702][ C1] RDX: 00002000000000c0 RSI: 00000000c01064bd RDI: 0000000000000003 [ 1268.012717][ C1] RBP: 00007efc65c10ab1 R08: 0000000000000000 R09: 0000000000000000 [ 1268.012732][ C1] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1268.012745][ C1] R13: 0000000000000000 R14: 00007efc65db5fa0 R15: 00007ffe832c4bf8 [ 1268.012772][ C1] [ 1268.176202][ T31] Kernel panic - not syncing: hung_task: blocked tasks [ 1268.176228][ T31] CPU: 0 UID: 0 PID: 31 Comm: khungtaskd Not tainted 6.15.0-rc7-syzkaller #0 PREEMPT(full) [ 1268.176257][ T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 1268.176273][ T31] Call Trace: [ 1268.176285][ T31] [ 1268.176297][ T31] dump_stack_lvl+0x99/0x250 [ 1268.176337][ T31] ? __asan_memcpy+0x40/0x70 [ 1268.176366][ T31] ? __pfx_dump_stack_lvl+0x10/0x10 [ 1268.176402][ T31] ? __pfx__printk+0x10/0x10 [ 1268.176437][ T31] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1268.176471][ T31] panic+0x2db/0x790 [ 1268.176510][ T31] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1268.176545][ T31] ? __pfx_panic+0x10/0x10 [ 1268.176578][ T31] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1268.176606][ T31] ? nmi_backtrace_stall_check+0x433/0x440 [ 1268.176642][ T31] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1268.176669][ T31] ? preempt_schedule_thunk+0x16/0x30 [ 1268.176700][ T31] ? nmi_trigger_cpumask_backtrace+0x2b6/0x300 [ 1268.176731][ T31] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1268.176764][ T31] watchdog+0x102d/0x1030 [ 1268.176800][ T31] ? watchdog+0x1de/0x1030 [ 1268.176842][ T31] kthread+0x711/0x8a0 [ 1268.176877][ T31] ? __pfx_watchdog+0x10/0x10 [ 1268.176915][ T31] ? __pfx_kthread+0x10/0x10 [ 1268.176945][ T31] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1268.176976][ T31] ? __pfx_kthread+0x10/0x10 [ 1268.177005][ T31] ? _raw_spin_unlock_irq+0x23/0x50 [ 1268.177034][ T31] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1268.177062][ T31] ? lockdep_hardirqs_on+0x9c/0x150 [ 1268.177095][ T31] ? __pfx_kthread+0x10/0x10 [ 1268.177124][ T31] ret_from_fork+0x4e/0x80 [ 1268.177150][ T31] ? __pfx_kthread+0x10/0x10 [ 1268.177180][ T31] ret_from_fork_asm+0x1a/0x30 [ 1268.177223][ T31] [ 1268.598625][ T31] Kernel Offset: disabled [ 1268.602944][ T31] Rebooting in 86400 seconds..