last executing test programs: 4m7.898600873s ago: executing program 2 (id=58): r0 = syz_open_dev$evdev(&(0x7f0000000080), 0x0, 0x121041) ioctl$EVIOCSFF(0xffffffffffffffff, 0x40304580, &(0x7f00000000c0)={0x0, 0x0, 0x0, {0x0, 0x100000000000001}, {0x74, 0x2}}) write$evdev(r0, &(0x7f0000000040), 0x373) 4m7.437389427s ago: executing program 2 (id=62): socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) setsockopt$sock_int(r0, 0x1, 0x2c, &(0x7f0000000100)=0x3, 0x4) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000040)={0x0, 0x0}, 0x10) 4m6.725276686s ago: executing program 2 (id=67): timer_create(0x8, 0x0, &(0x7f0000bbdffc)=0x0) timer_settime(r0, 0x0, &(0x7f0000000080)={{0x77359400}, {0x77359400}}, 0x0) timer_settime(r0, 0x0, &(0x7f0000000240)={{0x77359400}}, &(0x7f0000000280)) 4m6.10006385s ago: executing program 2 (id=70): syz_mount_image$minix(&(0x7f0000000100), &(0x7f0000000340)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x1810002, &(0x7f0000002a80)=ANY=[@ANYBLOB="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", @ANYBLOB="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", @ANYRES64=0x0, @ANYBLOB="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", @ANYBLOB="a77a47c7093995493790249b0bed32a055f763e24190111977519571ce7e7842f63886bbf71ffeb820eddf6133ab8ae88bcc3d9004d9c6dbe44fbdcf671794f90a6dc723010be2684f321bdcb0f3a28f37715ba81e0f3b27d1206de5d93037a11c2b5ce35f7ffda7b43c3c9888163a50b7db5daea67d670e8b86c032da653d273cfb7bf3df53e836bb96370c4c637ec105fd520968a03441384810ed179646174536425dd1f0073804e63a43a92c901534484b0a352baee33ac1638bff1e67ee4959717feb229b247c25ae4018f502bdb5e7", @ANYRES16, @ANYRESHEX, @ANYRESHEX, @ANYBLOB="9651c56ad88578a25546d8301a976d6fc5e51f3814a125051a070f7f54437d1ce35d85809048bfebe5ac13dce749226f4eace102819832dc4feee07cbf025529706f80354fcaaaf34bc289d3892a62957f78a9c45fe4e6e8c1332d57018a296c8eca11a25d4a581b17f43b9f4480c9a839e10a15954d4c325da6384fa44e9bb79ff45d24a2a2e805fac936dd9af003a173aec97678f46c000b0eab44f2", @ANYBLOB="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", @ANYRES32], 0x1, 0x1cd, &(0x7f0000002180)="$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") syz_mount_image$fuse(0x0, &(0x7f0000000400)='./file4\x00', 0x1018000, 0x0, 0x1, 0x0, 0x0) mount$overlay(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000), 0x10000, &(0x7f0000000140)={[{@workdir={'workdir', 0x3d, './file0'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file4'}}], [], 0x2c}) 4m5.204148789s ago: executing program 2 (id=77): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$tipc(&(0x7f0000000140), r0) sendmsg$TIPC_CMD_SET_LINK_WINDOW(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)={0x68, r1, 0xfbcd874f9e1207dd, 0x29, 0x25dfdbfd, {{}, {0x0, 0x4000}, {0x4c, 0x18, {0x800, @link='syz1\x00'}}}}, 0x68}}, 0x20000000) 4m4.543199078s ago: executing program 2 (id=80): r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0xffff, 0x3}, 0x6) write(r0, &(0x7f0000000340)="09000000010082", 0x7) 4m2.561179154s ago: executing program 32 (id=80): r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0xffff, 0x3}, 0x6) write(r0, &(0x7f0000000340)="09000000010082", 0x7) 21.550991888s ago: executing program 5 (id=1570): r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000300)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40, 0x9da, 0x22b, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x5}}}}]}}]}}, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, &(0x7f0000000340)={0x24, 0x0, 0x0, &(0x7f0000000000)={0x0, 0x22, 0x8, {[@global=@item_012={0x2, 0x1, 0x9, "128d"}, @global=@item_4={0x3, 0x1, 0x0, "d0c12772"}]}}, 0x0}, 0x0) 19.472346694s ago: executing program 5 (id=1587): r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40, 0x56a, 0x307, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x50, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x7}}}}]}}]}}, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, &(0x7f0000000240)={0x24, 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB='\x00\"\a'], 0x0}, 0x0) 17.215488334s ago: executing program 5 (id=1602): r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nfc(&(0x7f0000000880), r0) sendmsg$NFC_CMD_LLC_SDREQ(r0, &(0x7f0000000a00)={0x0, 0x0, &(0x7f00000009c0)={&(0x7f0000000900)={0x20, r1, 0x901, 0x70bd2c, 0x25dfdbff, {}, [@NFC_ATTR_DEVICE_INDEX={0x8}, @NFC_ATTR_LLC_SDP={0x4}]}, 0x20}, 0x1, 0x0, 0x0, 0x4}, 0x20000000) 16.83253404s ago: executing program 5 (id=1604): syz_mount_image$exfat(&(0x7f00000000c0), &(0x7f0000000000)='./file0\x00', 0x800, &(0x7f0000000180)={[{@iocharset={'iocharset', 0x3d, 'cp850'}}, {@sys_tz}, {@uid={'uid', 0x3d, 0xee00}}, {@iocharset={'iocharset', 0x3d, 'cp936'}}, {@iocharset={'iocharset', 0x3d, 'iso8859-14'}}, {@keep_last_dots}, {@gid}, {@dmask={'dmask', 0x3d, 0x1}}, {@errors_continue}, {@errors_continue}]}, 0x1, 0x152f, &(0x7f00000037c0)="$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") mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0) mount$afs(0x0, &(0x7f00000001c0)='./file0\x00', &(0x7f00000002c0), 0x200001, &(0x7f0000000100)=ANY=[@ANYBLOB='dyn']) 16.055000324s ago: executing program 5 (id=1610): r0 = syz_init_net_socket$x25(0x9, 0x5, 0x0) listen(r0, 0x69a6) ioctl$SIOCX25SFACILITIES(r0, 0x89e3, &(0x7f00000000c0)={0x40007, 0xb, 0x4, 0xb, 0x8f62, 0x81}) 15.465613583s ago: executing program 5 (id=1614): socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) sendmsg$inet(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000100)='u', 0x1}], 0x1}, 0x4040001) recvmsg$unix(r0, &(0x7f00000038c0)={&(0x7f0000000300)=@abs, 0x6e, &(0x7f0000000140)=[{0x0}, {0x0}, {0x0}, {0x0}, {0x0, 0xffffffbc}, {0x0}, {0x0, 0xfffffc36}, {0x0}, {0x0}], 0x9}, 0x10001) 13.209371548s ago: executing program 33 (id=1614): socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) sendmsg$inet(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000100)='u', 0x1}], 0x1}, 0x4040001) recvmsg$unix(r0, &(0x7f00000038c0)={&(0x7f0000000300)=@abs, 0x6e, &(0x7f0000000140)=[{0x0}, {0x0}, {0x0}, {0x0}, {0x0, 0xffffffbc}, {0x0}, {0x0, 0xfffffc36}, {0x0}, {0x0}], 0x9}, 0x10001) 7.453023078s ago: executing program 4 (id=1648): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000002c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0) sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000640)={{0x14}, [@NFT_MSG_NEWRULE={0x38, 0x6, 0xa, 0x409, 0x0, 0x0, {0x2}, [@NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_EXPRESSIONS={0x4}, @NFTA_RULE_USERDATA={0x5, 0x7, 0x1, 0x0, "f5"}]}], {0x14}}, 0x60}}, 0x0) 6.673766875s ago: executing program 4 (id=1654): r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000080)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40, 0xc45, 0x760b, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x2, 0x0, {0x9, 0x21, 0xe4e, 0x0, 0x1, {0x22, 0x5}}, {{{0x9, 0x5, 0x81, 0x3, 0x0, 0x1, 0x5}}}}}]}}]}}, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io(r0, &(0x7f00000003c0)={0x2c, &(0x7f0000000300)=ANY=[@ANYBLOB='\x00\x00W'], 0x0, 0x0, 0x0, 0x0}, 0x0) 3.818454704s ago: executing program 4 (id=1666): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$can_bcm(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)={0x5, 0x0, 0x0, {}, {0x77359400}, {}, 0x1, @can={{}, 0x0, 0x0, 0x0, 0x0, "7287da08eb73e144"}}, 0x48}}, 0x0) sendmsg$IPCTNL_MSG_CT_GET(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000040)=ANY=[@ANYBLOB="440000000101010100000000000000000a000000040001801800028014000180080001007f00000108000200ac1414aa140019800800010004000000080002"], 0x44}}, 0x0) 3.562961993s ago: executing program 3 (id=1669): r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f0000000440), r0) sendmsg$NLBL_UNLABEL_C_STATICREMOVE(r0, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000480)={0x3c, r1, 0x1, 0x70bd2c, 0x25dfdbfb, {}, [@NLBL_UNLABEL_A_IPV6ADDR={0x14, 0x2, @dev={0xfe, 0x80, '\x00', 0x35}}, @NLBL_UNLABEL_A_IFACE={0x14, 0x6, 'netdevsim0\x00'}]}, 0x3c}, 0x1, 0x0, 0x0, 0x80}, 0x8000) 3.156243162s ago: executing program 0 (id=1671): r0 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_mtu(r0, 0x29, 0x17, &(0x7f0000000040)=0x5, 0x4) sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000000180)={0xa, 0x4e24, 0x7f, @empty, 0x2}, 0x1c) 2.95779493s ago: executing program 4 (id=1672): socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) setsockopt$SO_TIMESTAMP(r0, 0x1, 0x3f, &(0x7f0000000040)=0x5, 0x4) getsockopt$SO_TIMESTAMP(r0, 0x1, 0x1d, 0x0, &(0x7f0000000080)=0x17) 2.902609737s ago: executing program 3 (id=1673): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000240)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x301, 0x0, 0x0, {0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWCHAIN={0x40, 0x3, 0xa, 0x201, 0x0, 0x0, {0x1, 0x0, 0x9}, [@NFTA_CHAIN_NAME={0x9, 0x3, 'syz2\x00'}, @NFTA_CHAIN_HOOK={0x14, 0x4, 0x0, 0x1, [@NFTA_HOOK_PRIORITY={0x8, 0x2, 0x1, 0x0, 0xfffffffd}, @NFTA_HOOK_HOOKNUM={0x8}]}, @NFTA_CHAIN_TABLE={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWRULE={0x3c, 0x6, 0xa, 0x401, 0x0, 0x0, {0x1}, [@NFTA_RULE_CHAIN_ID={0x8}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_EXPRESSIONS={0x14, 0x4, 0x0, 0x1, [{0x10, 0x1, 0x0, 0x1, @log={{0x8}, @val={0x4}}}]}]}], {0x14}}, 0xc4}}, 0x4000040) syz_emit_ethernet(0x4e, &(0x7f00000001c0)={@local, @empty, @void, {@ipv6={0x86dd, @udp={0x0, 0x6, "a24b9f", 0x18, 0x2b, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @local, {[], {0x0, 0x0, 0x18, 0x0, @wg=@data}}}}}}, 0x0) 2.784122412s ago: executing program 0 (id=1674): r0 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$int_in(r0, 0x5452, &(0x7f00000000c0)=0x14f) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f0000000080), 0x4) 2.755742956s ago: executing program 1 (id=1675): ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305829, &(0x7f0000000000)={0x0, 0x2, 0xfffffffffffffffe, 0x4, 0x4000}) r0 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8b18, &(0x7f0000000000)={'wlan1\x00'}) 2.391253414s ago: executing program 3 (id=1676): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) io_setup(0x9, &(0x7f0000000000)=0x0) io_submit(r1, 0x1, &(0x7f0000000240)=[&(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x7fff, r0, &(0x7f0000000080), 0x0, 0x1, 0x0, 0x2}]) 2.334518221s ago: executing program 0 (id=1677): r0 = syz_open_dev$usbfs(&(0x7f0000000040), 0x201, 0x2) mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x1000002, 0x11011, r0, 0x2000) mincore(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x0) 2.283337824s ago: executing program 1 (id=1678): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000bc0)=ANY=[@ANYBLOB="0a00000007000000ff0f000007"], 0x48) bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000000500)={{r0}, &(0x7f0000000400), &(0x7f00000004c0)='%pI4 \x00'}, 0x20) bpf$PROG_LOAD(0x2, &(0x7f0000000680)={0x3, 0x3, &(0x7f0000000740)=ANY=[], &(0x7f0000000780)='GPL\x00', 0x1, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) 2.097743597s ago: executing program 4 (id=1679): getrandom(&(0x7f0000000240)=""/286, 0xffffff9a, 0x0) madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0xfffff000) 1.858653535s ago: executing program 3 (id=1680): seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0xfd, 0x2, 0x7ffffcb9}]}) r0 = open(&(0x7f0000000000)='./file1\x00', 0x1c927e, 0xb4) fallocate(r0, 0x1, 0x2000, 0x1001f0) 1.775864624s ago: executing program 0 (id=1681): r0 = socket(0x10, 0x3, 0x0) setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0xc, &(0x7f0000000180)={0x8, 0x8, 0x0, 0xfffffffd}, 0x10) sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)=ANY=[@ANYBLOB="300000001a00010000000000000000001c1400000000", @ANYRES32=r0], 0x30}}, 0x0) 1.711777065s ago: executing program 1 (id=1682): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$devlink(&(0x7f0000000640), 0xffffffffffffffff) sendmsg$DEVLINK_CMD_RATE_SET(r0, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000200)={0x44, r1, 0x1, 0x0, 0x0, {0x2a}, [@DEVLINK_ATTR_PORT_INDEX={0x8, 0x58}, @handle=@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_PORT_INDEX={0x8, 0x3, 0xfffffffc}]}, 0x44}}, 0x0) 1.305291095s ago: executing program 3 (id=1683): r0 = mq_open(&(0x7f0000000080)='eth0\x00#\x13\xaeu\xe0\xfbu0*\xf3\x11i\xdd\xd9\xc6\x87\xde\xbf_\xa0\xf6\xdfk\xbf.\"\xa6\xc0#p\xcd\x1c/\xa6\xf2\xbcyL\x85a\xb5\xbb~+>\xbc\x93\xf8\xab\x9a3\x85l\x1d\x15\x11\x1a{@!2\xb6!\xae\xf79k\x90\x88\v8I$\xfdQ\x1d\x90=r\xd8\xc0\xd8\t/\x8dv\xb8\x93\xc3C\xae\x9dc\xd1T\xdd\x14\xd3\xe1\xbe_$A=z\xee\xbd/X\xbemOX)s\x94\xde\xbe_\v\x01\xbe\xeb\xbb\x91\x11z\xc2|d\x1b\x04\xd2\xf9yx\xb2\x1b\bLTrw\x88\x9e0\t\xc6\xe2\x9c\xed\\\xd8[\xc8\x04 \xf3\xac]V\x1d:\xfc\xc3\x9e\x02\ax\xef\xfe\x1c.TT\xcf\xbf\xf5\x80a%\xdcQ\xb3CuT\xcc7\x8avs\xb2\a\xfe\xb3j*\xad\x18I\xcc\xe9\xaa{]\xef\xb7\xf2\xee*\xf95\bJt\xd0s\xc4\xaa\xc8\x13~\xb2\xf20\xbdf\xdb\xaeG\xe3\xfb\xef\x94\xef:Q\x1b\xe3\xa3\xa4}\xef`e\xcdL\xab\xdb\r\xf2y\x9fg1\xf4\t\x18i/!\x13\xf1,\x8cu\xaa\xbf~)\x94\x1b2\x93\x86\xe7\x9a\xf2j\xa8\x96\xa6\xa2\xfcN\x81\xafTh\xb3\x1bo:\xe8\vq7S\xe4H\xf3L\xa0\x9c\x97B\x12\x10\x9d\xaa\x7fq\x06\xb9(\xf6\x1c\x83\xb1J\xec\x926\xb5a0\xa0B\xae|', 0x42, 0x0, 0x0) mq_timedsend(r0, &(0x7f0000000600)="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", 0xfd1, 0x6, 0x0) mq_timedreceive(r0, &(0x7f0000004600)=""/102381, 0xfffffceb, 0x0, 0x0) 1.273003004s ago: executing program 0 (id=1684): mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2, 0x31, 0xffffffffffffffff, 0x0) syz_clone3(&(0x7f00000004c0)={0xe12d480, &(0x7f0000000480), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x19) 1.147171824s ago: executing program 1 (id=1685): r0 = socket$nl_route(0x10, 0x3, 0x0) setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0xc, &(0x7f0000000180)={0xfffffff7, 0x0, 0xf2, 0x80000000}, 0x10) sendmsg$nl_route(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000007c0)={&(0x7f0000000080)=ANY=[@ANYBLOB="2c0000001a00010000000000000000000a008000000000000000000008000200ffffffff080001"], 0x2c}}, 0x0) 500.597501ms ago: executing program 1 (id=1686): syz_mount_image$vfat(&(0x7f0000000140), &(0x7f0000000000)='./file0\x00', 0x1218088, &(0x7f00000001c0)=ANY=[@ANYBLOB="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"], 0x6, 0x2cb, &(0x7f0000000bc0)="$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") r0 = open(&(0x7f0000000440)='.\x00', 0x0, 0x0) getdents(r0, &(0x7f0000001fc0)=""/184, 0xb8) 442.812198ms ago: executing program 3 (id=1687): r0 = openat$ppp(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$PPPIOCNEWUNIT(r0, 0xc004743e, &(0x7f0000000080)) ioctl$PPPIOCSMAXCID(r0, 0x40047451, &(0x7f0000002540)=0x1) 294.830057ms ago: executing program 4 (id=1688): syz_usb_control_io$hid(0xffffffffffffffff, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000000)={0x0, 0x22, 0x11, {[@global=@item_012={0x2, 0x1, 0x9, "2313"}, @global=@item_012={0x2, 0x1, 0x0, "e53f"}, @main=@item_4={0x3, 0x0, 0x9, "b2938f8d"}, @local=@item_012={0x0, 0x2, 0x2}, @global=@item_4={0x3, 0x1, 0x0, "0900be00"}]}}, 0x0}, 0x0) r0 = socket(0x1, 0x2, 0x0) ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f0000000080)={'netdevsim0\x00', &(0x7f0000000000)=@ethtool_perm_addr={0x11}}) 113.907344ms ago: executing program 0 (id=1689): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$ETHTOOL_MSG_EEE_SET(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000300)={0x2c, r1, 0x1, 0x0, 0x0, {}, [@ETHTOOL_A_EEE_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'geneve0\x00'}]}]}, 0x2c}}, 0x0) 0s ago: executing program 1 (id=1690): syz_mount_image$vfat(&(0x7f0000000180), &(0x7f0000000000)='./file0\x00', 0x280008a, &(0x7f000001c380)=ANY=[@ANYBLOB="73686f72746e616d653d6d697865642c636f6465706167653d3837342c73686f72746e616d653d77696e39352c73686f72746e616d653d77696e39352c6e6f6e756d7461696c3d302c726f6469722c73686f72746e616d653d77696e6e742c646973636172642c73686f72746e616d653d77696e6e742c756e695f786c6174653d302c636865636b3d72656c617865642c73686f72746e616d653d77696e6e742c73686f72746e616d653d6d697865642c756e695f786c6174653d302c696f636861727365743d69736f383835392d362c73686f72746e616d653d6d697865642c726f6469722c7569643d6e4ad8c43b1100c0344de5741a26aab12236c332332194bd77ef64fb4717db829730779da1ecad20a6cc9fce05bebfe6069c2be726472ef871d8ee192966e4932b15af666d4b1e6276e99d45706129bb5bd87be3c0c495d72155b0f4478eb0e8043c0799390cf1371a63f7eba9c846d0a0d12e041671ac7fc36b3d9ab0da8935c15000f2aadd2023d0122b2172a54dbef3f19d0912c8ec28868e8c957de4682b9578d4a642112b0082c497e263b2f17efe44900d41a04365d3a00ef997ff6464de4a454ca7c273d7a059038c6770931336f89068425b84a8ea1d81cc84a8cc4631c746", @ANYRES8=0x0, @ANYRESHEX=0x0], 0x97, 0x2b3, &(0x7f0000000840)="$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") r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0) getdents(r0, &(0x7f0000008940)=""/4096, 0x1000) kernel console output (not intermixed with test programs): [ 276.202445][ T6166] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 276.211708][ T6166] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 276.220897][ T6166] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 276.993189][ T6412] capability: warning: `syz.0.170' uses deprecated v2 capabilities in a way that may be insecure [ 277.656880][ T6420] loop1: detected capacity change from 0 to 1024 [ 278.800520][ T6435] netlink: 'syz.3.178': attribute type 1 has an invalid length. [ 279.141024][ T10] usb 2-1: new high-speed USB device number 2 using dummy_hcd [ 279.361125][ T10] usb 2-1: config 0 has an invalid interface number: 117 but max is 0 [ 279.375422][ T10] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 279.386186][ T10] usb 2-1: config 0 has no interface number 0 [ 279.393405][ T10] usb 2-1: config 0 interface 117 altsetting 0 endpoint 0x88 has invalid wMaxPacketSize 0 [ 279.403711][ T10] usb 2-1: config 0 interface 117 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 279.603185][ T10] usb 2-1: New USB device found, idVendor=0afa, idProduct=03e8, bcdDevice=99.d0 [ 279.617041][ T10] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 279.627015][ T10] usb 2-1: Product: syz [ 279.631562][ T10] usb 2-1: Manufacturer: syz [ 279.636379][ T10] usb 2-1: SerialNumber: syz [ 279.783572][ T10] usb 2-1: config 0 descriptor?? [ 279.850146][ T29] audit: type=1326 audit(1737610201.210:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6444 comm="syz.3.181" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fcd4478cd29 code=0x0 [ 280.043384][ T6442] loop0: detected capacity change from 0 to 4096 [ 280.086279][ T6442] ntfs3(loop0): It is recommened to use chkdsk. [ 280.099335][ T6442] ntfs3(loop0): try to read out of volume at offset 0x3fffffc0c00 [ 280.108360][ T6442] ntfs3(loop0): try to read out of volume at offset 0x3fffffc0c00 [ 280.118110][ T6442] ntfs3(loop0): try to read out of volume at offset 0x3fffffc0c00 [ 280.133160][ T6442] ntfs3(loop0): try to read out of volume at offset 0x3fffffc0c00 [ 280.143217][ T6442] ntfs3(loop0): try to read out of volume at offset 0x3fffffc1c00 [ 280.151654][ T6442] ntfs3(loop0): try to read out of volume at offset 0x3fffffc2c00 [ 280.159830][ T6442] ntfs3(loop0): try to read out of volume at offset 0x3fffffc4c00 [ 280.168231][ T6442] ntfs3(loop0): try to read out of volume at offset 0x3fffffc8c00 [ 280.176526][ T6442] ntfs3(loop0): try to read out of volume at offset 0x3fffffd0c00 [ 280.493541][ T10] usb 2-1: USB disconnect, device number 2 [ 280.587003][ T6449] loop4: detected capacity change from 0 to 4096 [ 280.656751][ T6449] ntfs3(loop4): Different NTFS sector size (4096) and media sector size (512). [ 281.150376][ T6449] ntfs3(loop4): Failed to initialize $Extend/$Reparse. [ 282.215730][ T6471] netlink: 64110 bytes leftover after parsing attributes in process `syz.0.188'. [ 282.738348][ T6468] loop3: detected capacity change from 0 to 32768 [ 282.816020][ T6468] (syz.3.187,6468,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 282.842239][ T6468] (syz.3.187,6468,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 283.018043][ T6468] JBD2: Ignoring recovery information on journal [ 283.144667][ T6468] ocfs2: Mounting device (7,3) on (node local, slot 0) with ordered data mode. [ 283.584910][ T5795] ocfs2: Unmounting device (7,3) on (node local) [ 284.422857][ T5856] usb 1-1: new high-speed USB device number 2 using dummy_hcd [ 284.662543][ T5856] usb 1-1: New USB device found, idVendor=0572, idProduct=cb01, bcdDevice=26.65 [ 284.672446][ T5856] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 284.680879][ T5856] usb 1-1: Product: syz [ 284.685257][ T5856] usb 1-1: Manufacturer: syz [ 284.690065][ T5856] usb 1-1: SerialNumber: syz [ 284.789351][ T4632] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 284.797576][ T4632] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 284.824836][ T5856] usb 1-1: config 0 descriptor?? [ 284.967694][ T4632] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 284.976022][ T4632] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 284.978359][ T6502] loop4: detected capacity change from 0 to 256 [ 285.112907][ T5856] usb 1-1: ignoring: probably an ADSL modem [ 285.472062][ T6502] FAT-fs (loop4): Directory bread(block 64) failed [ 285.479122][ T6502] FAT-fs (loop4): Directory bread(block 65) failed [ 285.487088][ T6502] FAT-fs (loop4): Directory bread(block 66) failed [ 285.494161][ T6502] FAT-fs (loop4): Directory bread(block 67) failed [ 285.501523][ T6502] FAT-fs (loop4): Directory bread(block 68) failed [ 285.508437][ T6502] FAT-fs (loop4): Directory bread(block 69) failed [ 285.515656][ T6502] FAT-fs (loop4): Directory bread(block 70) failed [ 285.522701][ T6502] FAT-fs (loop4): Directory bread(block 71) failed [ 285.529803][ T6502] FAT-fs (loop4): Directory bread(block 72) failed [ 285.536924][ T6502] FAT-fs (loop4): Directory bread(block 73) failed [ 285.606694][ T5856] cxacru 1-1:0.0: usbatm_usb_probe: bind failed: -19! [ 285.692783][ T5856] usb 1-1: USB disconnect, device number 2 [ 285.814819][ T1277] ieee802154 phy0 wpan0: encryption failed: -22 [ 285.821645][ T1277] ieee802154 phy1 wpan1: encryption failed: -22 [ 286.695113][ T6515] loop5: detected capacity change from 0 to 736 [ 286.965767][ T6524] loop0: detected capacity change from 0 to 8 [ 287.081777][ T6524] SQUASHFS error: Unable to read directory block [629:46] [ 287.227756][ T6515] rock: directory entry would overflow storage [ 287.234550][ T6515] rock: sig=0x3b10, size=4, remaining=3 [ 288.182970][ T6537] use of bytesused == 0 is deprecated and will be removed in the future, [ 288.191954][ T6537] use the actual size instead. [ 291.121221][ T6588] loop3: detected capacity change from 0 to 64 [ 292.120175][ T6598] support for cryptoloop has been removed. Use dm-crypt instead. [ 292.132557][ T10] kernel write not supported for file /sg0 (pid: 10 comm: kworker/0:1) [ 293.556954][ T6613] loop0: detected capacity change from 0 to 512 [ 293.638836][ T6613] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 293.741798][ T6613] EXT4-fs error (device loop0): ext4_orphan_get:1415: comm syz.0.239: bad orphan inode 16 [ 293.754436][ T6613] ext4_test_bit(bit=15, block=4) = 0 [ 293.754523][ T6613] EXT4-fs (loop0): 1 orphan inode deleted [ 293.756127][ T6613] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 293.815560][ T6613] EXT4-fs error (device loop0): __ext4_new_inode:1071: comm syz.0.239: reserved inode found cleared - inode=9 [ 294.136188][ T5801] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 294.734876][ T6627] loop3: detected capacity change from 0 to 2048 [ 294.929251][ T6635] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 295.111569][ T6627] NILFS (loop3): error -2 truncating bmap (ino=16) [ 295.542176][ T6635] NILFS (loop3): vblocknr = 15 has abnormal lifetime: start cno (= 4128770) > current cno (= 3) [ 295.553109][ T6635] NILFS error (device loop3): nilfs_bmap_propagate: broken bmap (inode number=16) [ 295.610924][ T6635] Remounting filesystem read-only [ 295.625635][ T5795] NILFS (loop3): disposed unprocessed dirty file(s) when stopping log writer [ 297.141362][ T10] usb 2-1: new high-speed USB device number 3 using dummy_hcd [ 297.371701][ T10] usb 2-1: Using ep0 maxpacket: 16 [ 297.421131][ T10] usb 2-1: config 0 interface 0 altsetting 8 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 297.438609][ T10] usb 2-1: config 0 interface 0 altsetting 8 endpoint 0x81 has invalid wMaxPacketSize 0 [ 297.450947][ T10] usb 2-1: config 0 interface 0 has no altsetting 0 [ 297.457840][ T10] usb 2-1: New USB device found, idVendor=1fd2, idProduct=6007, bcdDevice= 0.00 [ 297.469817][ T10] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 297.496017][ T10] usb 2-1: config 0 descriptor?? [ 297.980516][ T10] hid-multitouch 0003:1FD2:6007.0002: hidraw0: USB HID v0.00 Device [HID 1fd2:6007] on usb-dummy_hcd.1-1/input0 [ 298.132577][ T10] usb 2-1: USB disconnect, device number 3 [ 299.369075][ T6696] loop3: detected capacity change from 0 to 128 [ 299.508294][ T6696] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 299.559893][ T10] usb 2-1: new high-speed USB device number 4 using dummy_hcd [ 299.661515][ T6696] ext4 filesystem being mounted at /54/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 299.801264][ T10] usb 2-1: Using ep0 maxpacket: 16 [ 299.828772][ T10] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 299.840361][ T10] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 299.850622][ T10] usb 2-1: New USB device found, idVendor=1770, idProduct=ff00, bcdDevice= 0.00 [ 299.860025][ T10] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 299.981438][ T6692] loop4: detected capacity change from 0 to 4096 [ 300.011997][ T10] usb 2-1: config 0 descriptor?? [ 300.123773][ T6692] NILFS (loop4): invalid segment: Checksum error in segment payload [ 300.133385][ T6692] NILFS (loop4): trying rollback from an earlier position [ 300.278710][ T6692] NILFS (loop4): recovery complete [ 300.283123][ T5795] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 300.374954][ T6708] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 300.668134][ T10] gt683r_led 0003:1770:FF00.0003: hidraw0: USB HID v0.00 Device [HID 1770:ff00] on usb-dummy_hcd.1-1/input0 [ 300.833204][ T10] usb 2-1: USB disconnect, device number 4 [ 300.847548][ T5843] gt683r_led 0003:1770:FF00.0003: failed to send set report request: -19 [ 301.575679][ T6723] ./bus: Can't lookup blockdev [ 302.537653][ T6736] loop4: detected capacity change from 0 to 64 [ 302.887497][ T6731] loop5: detected capacity change from 0 to 4096 [ 302.935585][ T6731] ntfs3(loop5): Different NTFS sector size (4096) and media sector size (512). [ 303.329603][ T6731] ntfs3(loop5): Mark volume as dirty due to NTFS errors [ 303.365360][ T6731] ntfs3(loop5): Failed to initialize $Extend/$ObjId. [ 303.491384][ T6731] ntfs3(loop5): ino=5, "/" directory corrupted [ 304.296164][ T6759] xt_CONNSECMARK: only valid in 'mangle' or 'security' table, not 'syz0' [ 305.749242][ T6779] netlink: 60 bytes leftover after parsing attributes in process `syz.5.296'. [ 305.796930][ T6774] netlink: 60 bytes leftover after parsing attributes in process `syz.5.296'. [ 305.868092][ T6780] loop1: detected capacity change from 0 to 512 [ 305.925702][ T6780] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 306.101636][ T6778] loop3: detected capacity change from 0 to 2048 [ 306.119279][ T6780] EXT4-fs (loop1): 1 truncate cleaned up [ 306.127056][ T6780] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 306.261814][ T29] audit: type=1800 audit(1737610227.610:4): pid=6780 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.297" name="file1" dev="loop1" ino=15 res=0 errno=0 [ 306.292649][ T6788] sctp: [Deprecated]: syz.0.300 (pid 6788) Use of struct sctp_assoc_value in delayed_ack socket option. [ 306.292649][ T6788] Use struct sctp_sack_info instead [ 306.332300][ T6778] UDF-fs: warning (device loop3): udf_load_vrs: No anchor found [ 306.347079][ T6778] UDF-fs: Scanning with blocksize 512 failed [ 306.520421][ T6778] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 306.769994][ T5792] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 307.421337][ T5902] usb 2-1: new high-speed USB device number 5 using dummy_hcd [ 307.534514][ T6805] loop3: detected capacity change from 0 to 512 [ 307.638350][ T5902] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 307.651163][ T5902] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 307.661611][ T5902] usb 2-1: New USB device found, idVendor=1e7d, idProduct=2cf6, bcdDevice= 0.00 [ 307.672845][ T5902] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 307.738132][ T5902] usb 2-1: config 0 descriptor?? [ 307.756923][ T6805] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback. [ 307.770430][ T6805] ext4 filesystem being mounted at /62/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 308.111888][ T6805] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 308.238204][ T5902] pyra 0003:1E7D:2CF6.0004: unknown main item tag 0x0 [ 308.246053][ T5902] pyra 0003:1E7D:2CF6.0004: unknown main item tag 0x0 [ 308.253322][ T5902] pyra 0003:1E7D:2CF6.0004: unknown main item tag 0x0 [ 308.260395][ T5902] pyra 0003:1E7D:2CF6.0004: unknown main item tag 0x0 [ 308.267586][ T5902] pyra 0003:1E7D:2CF6.0004: unknown main item tag 0x0 [ 308.276080][ T5902] pyra 0003:1E7D:2CF6.0004: unknown main item tag 0x0 [ 308.283271][ T5902] pyra 0003:1E7D:2CF6.0004: unknown main item tag 0x0 [ 308.302022][ T6805] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000d40000 ro. Quota mode: writeback. [ 308.548846][ T5902] pyra 0003:1E7D:2CF6.0004: hidraw0: USB HID v0.00 Device [HID 1e7d:2cf6] on usb-dummy_hcd.1-1/input0 [ 308.651718][ T5902] pyra 0003:1E7D:2CF6.0004: couldn't init struct pyra_device [ 308.659601][ T5902] pyra 0003:1E7D:2CF6.0004: couldn't install mouse [ 308.767918][ T5795] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000d40000. [ 308.787977][ T5902] pyra 0003:1E7D:2CF6.0004: probe with driver pyra failed with error -71 [ 308.897035][ T5902] usb 2-1: USB disconnect, device number 5 [ 309.101285][ T5856] usb 5-1: new high-speed USB device number 2 using dummy_hcd [ 309.341497][ T5856] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 309.352936][ T5856] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 309.363341][ T5856] usb 5-1: New USB device found, idVendor=0079, idProduct=0011, bcdDevice= 0.00 [ 309.372737][ T5856] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 309.638374][ T5856] usb 5-1: config 0 descriptor?? [ 310.286048][ T5856] dragonrise 0003:0079:0011.0005: hidraw0: USB HID v0.00 Device [HID 0079:0011] on usb-dummy_hcd.4-1/input0 [ 310.364055][ T5843] usb 5-1: USB disconnect, device number 2 [ 310.489414][ T6841] loop0: detected capacity change from 0 to 256 [ 311.181640][ T6848] netlink: 8 bytes leftover after parsing attributes in process `syz.5.323'. [ 311.376216][ T6854] binder: 6853:6854 ioctl c0306201 200001c0 returned -14 [ 312.299878][ T6866] loop4: detected capacity change from 0 to 512 [ 312.533389][ T6866] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 312.541296][ T6872] loop0: detected capacity change from 0 to 256 [ 312.546499][ T6866] ext4 filesystem being mounted at /70/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 313.006279][ T5790] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 313.124264][ T6886] netlink: 20 bytes leftover after parsing attributes in process `syz.3.339'. [ 313.133897][ T6886] netlink: 24 bytes leftover after parsing attributes in process `syz.3.339'. [ 313.504923][ T6893] warning: `syz.4.338' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211 [ 314.021374][ T5856] usb 4-1: new high-speed USB device number 3 using dummy_hcd [ 314.221863][ T5856] usb 4-1: Using ep0 maxpacket: 32 [ 314.263966][ T6908] netlink: 48 bytes leftover after parsing attributes in process `syz.0.349'. [ 314.293666][ T5856] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 314.304288][ T5856] usb 4-1: New USB device found, idVendor=0525, idProduct=2888, bcdDevice=d0.43 [ 314.313855][ T5856] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 314.347934][ T6905] loop1: detected capacity change from 0 to 4096 [ 314.359091][ T6905] ntfs3(loop1): Different NTFS sector size (4096) and media sector size (512). [ 314.380414][ T5856] usb 4-1: config 0 descriptor?? [ 314.566550][ T6912] loop4: detected capacity change from 0 to 128 [ 314.707757][ T5856] cdc_subset 4-1:0.0: probe with driver cdc_subset failed with error -71 [ 314.760969][ T5856] usb 4-1: USB disconnect, device number 3 [ 315.108669][ T6905] ntfs3(loop1): Failed to initialize $Extend/$Reparse. [ 315.176427][ T6905] ntfs3(loop1): Mark volume as dirty due to NTFS errors [ 315.404583][ T5792] ntfs3(loop1): ino=1a, ntfs_sync_fs failed, -22. [ 315.870933][ T6928] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details. [ 315.910308][ T6929] sp0: Synchronizing with TNC [ 316.204283][ T6937] netlink: 8 bytes leftover after parsing attributes in process `syz.4.361'. [ 316.333821][ T6931] loop5: detected capacity change from 0 to 4096 [ 317.221640][ T6951] netlink: 24 bytes leftover after parsing attributes in process `syz.3.369'. [ 317.231074][ T6951] netlink: 228 bytes leftover after parsing attributes in process `syz.3.369'. [ 317.240305][ T6951] netlink: 24 bytes leftover after parsing attributes in process `syz.3.369'. [ 317.742131][ T6956] loop1: detected capacity change from 0 to 4096 [ 317.848750][ T6963] program syz.4.374 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 318.063060][ T6956] ntfs3(loop1): Mark volume as dirty due to NTFS errors [ 318.071970][ T6968] netlink: 8 bytes leftover after parsing attributes in process `syz.3.376'. [ 318.091755][ T6956] ntfs3(loop1): Failed to initialize $Extend/$ObjId. [ 318.870271][ T6985] RDS: rds_bind could not find a transport for fe80::, load rds_tcp or rds_rdma? [ 318.967373][ T6986] loop5: detected capacity change from 0 to 8 [ 319.323723][ T6989] loop0: detected capacity change from 0 to 1024 [ 319.462844][ T6989] netlink: 4 bytes leftover after parsing attributes in process `syz.0.387'. [ 319.873292][ T7002] loop3: detected capacity change from 0 to 1024 [ 320.636732][ T7019] loop4: detected capacity change from 0 to 8 [ 320.694843][ T7013] loop5: detected capacity change from 0 to 4096 [ 320.792283][ T7021] loop1: detected capacity change from 0 to 64 [ 320.815364][ T7013] NILFS (loop5): invalid segment: Checksum error in segment payload [ 320.825258][ T7013] NILFS (loop5): trying rollback from an earlier position [ 320.939226][ T7013] NILFS (loop5): recovery complete [ 320.995788][ T7026] NILFS (loop5): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 321.848657][ T7039] loop4: detected capacity change from 0 to 128 [ 321.891600][ T7039] EXT4-fs: Ignoring removed orlov option [ 321.961188][ T7039] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: writeback. [ 322.010949][ T29] audit: type=1326 audit(1737610243.360:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7043 comm="syz.1.413" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fceeb98cd29 code=0x7ffc0000 [ 322.033653][ T29] audit: type=1326 audit(1737610243.360:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7043 comm="syz.1.413" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fceeb98cd29 code=0x7ffc0000 [ 322.056503][ T29] audit: type=1326 audit(1737610243.370:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7043 comm="syz.1.413" exe="/root/syz-executor" sig=0 arch=c000003e syscall=2 compat=0 ip=0x7fceeb98cd29 code=0x7ffc0000 [ 322.078773][ T29] audit: type=1326 audit(1737610243.370:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7043 comm="syz.1.413" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fceeb98cd29 code=0x7ffc0000 [ 322.101328][ T29] audit: type=1326 audit(1737610243.380:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7043 comm="syz.1.413" exe="/root/syz-executor" sig=0 arch=c000003e syscall=285 compat=0 ip=0x7fceeb98cd29 code=0x7ffc0000 [ 322.101535][ T29] audit: type=1326 audit(1737610243.410:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7043 comm="syz.1.413" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fceeb98cd29 code=0x7ffc0000 [ 322.162044][ T7039] ext4 filesystem being mounted at /87/control supports timestamps until 2038-01-19 (0x7fffffff) [ 322.591585][ T5790] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 323.450230][ T7066] loop1: detected capacity change from 0 to 24 [ 323.692622][ T7075] netlink: 'syz.0.427': attribute type 1 has an invalid length. [ 323.700896][ T7075] netlink: 127868 bytes leftover after parsing attributes in process `syz.0.427'. [ 324.067602][ T7083] loop0: detected capacity change from 0 to 512 [ 324.112624][ T7083] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 324.192160][ T5856] usb 2-1: new high-speed USB device number 6 using dummy_hcd [ 324.214607][ T7083] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 324.228555][ T7083] ext4 filesystem being mounted at /100/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 324.365055][ T5856] usb 2-1: config 0 interface 0 has no altsetting 0 [ 324.372158][ T5856] usb 2-1: New USB device found, idVendor=090a, idProduct=1200, bcdDevice=24.87 [ 324.374923][ T7083] EXT4-fs warning (device loop0): verify_group_input:156: Last group not full [ 324.381542][ T5856] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 324.413533][ T5856] usb 2-1: config 0 descriptor?? [ 324.435662][ T5856] usb-storage 2-1:0.0: USB Mass Storage device detected [ 324.489797][ T5856] usb-storage 2-1:0.0: This device (090a,1200,2487 S 01 P 21) has an unneeded SubClass entry in unusual_devs.h (kernel 6.13.0-syzkaller-04788-g7004a2e46d16) [ 324.489797][ T5856] Please send a copy of this message to and [ 324.642441][ T5856] usb 2-1: USB disconnect, device number 6 [ 324.689132][ T5801] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 325.579331][ T7112] loop0: detected capacity change from 0 to 512 [ 325.648891][ T7112] EXT4-fs (loop0): warning: mounting unchecked fs, running e2fsck is recommended [ 325.705676][ T7112] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 325.719858][ T7112] ext4 filesystem being mounted at /102/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 325.743722][ T5843] usb 4-1: new full-speed USB device number 4 using dummy_hcd [ 325.798859][ T7118] loop4: detected capacity change from 0 to 1024 [ 325.961236][ T5843] usb 4-1: config 9 has an invalid interface number: 158 but max is 2 [ 325.969811][ T5843] usb 4-1: config 9 has an invalid interface number: 117 but max is 2 [ 325.978674][ T5843] usb 4-1: config 9 has no interface number 1 [ 325.985624][ T5843] usb 4-1: config 9 has no interface number 2 [ 325.992155][ T5843] usb 4-1: config 9 interface 158 has no altsetting 0 [ 325.999163][ T5843] usb 4-1: config 9 interface 0 has no altsetting 0 [ 326.015385][ T5843] usb 4-1: config 9 interface 117 has no altsetting 0 [ 326.045800][ T5801] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 326.076274][ T5843] usb 4-1: New USB device found, idVendor=0bb4, idProduct=0a0b, bcdDevice=3e.fe [ 326.085853][ T5843] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 326.094547][ T5843] usb 4-1: Product: syz [ 326.098932][ T5843] usb 4-1: Manufacturer: syz [ 326.109807][ T5843] usb 4-1: SerialNumber: syz [ 326.215245][ T13] hfsplus: b-tree write err: -5, ino 4 [ 326.422872][ T5843] usb 4-1: bad CDC descriptors [ 326.500190][ T5843] usb 4-1: USB disconnect, device number 4 [ 326.821132][ T5856] usb 6-1: new high-speed USB device number 2 using dummy_hcd [ 327.031293][ T5856] usb 6-1: Using ep0 maxpacket: 8 [ 327.053204][ T5856] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 327.064574][ T5856] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 327.074862][ T5856] usb 6-1: New USB device found, idVendor=17ef, idProduct=6062, bcdDevice= 0.00 [ 327.084436][ T5856] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 327.184400][ T7138] syz.0.454 uses obsolete (PF_INET,SOCK_PACKET) [ 327.203123][ T5856] usb 6-1: config 0 descriptor?? [ 327.656946][ T7136] loop1: detected capacity change from 0 to 8192 [ 327.668364][ T5856] lenovo 0003:17EF:6062.0006: unknown main item tag 0x0 [ 327.675827][ T5856] lenovo 0003:17EF:6062.0006: unknown main item tag 0x0 [ 327.683834][ T5856] lenovo 0003:17EF:6062.0006: unknown main item tag 0x0 [ 327.691235][ T5856] lenovo 0003:17EF:6062.0006: unknown main item tag 0x0 [ 327.698478][ T5856] lenovo 0003:17EF:6062.0006: unknown main item tag 0x0 [ 327.739033][ T5856] lenovo 0003:17EF:6062.0006: hidraw0: USB HID v0.00 Device [HID 17ef:6062] on usb-dummy_hcd.5-1/input0 [ 327.765332][ T7147] loop3: detected capacity change from 0 to 128 [ 327.821804][ T7147] FAT-fs (loop3): bogus logical sector size 767 [ 327.828406][ T7147] FAT-fs (loop3): Can't find a valid FAT filesystem [ 327.841823][ T5856] usb 6-1: USB disconnect, device number 2 [ 328.298540][ T7153] netlink: 16 bytes leftover after parsing attributes in process `syz.0.462'. [ 328.409520][ T7155] loop1: detected capacity change from 0 to 8 [ 328.548406][ T7155] SQUASHFS error: xz decompression failed, data probably corrupt [ 328.556781][ T7155] SQUASHFS error: Failed to read block 0x108: -5 [ 328.570608][ T7155] SQUASHFS error: Unable to read metadata cache entry [106] [ 328.585736][ T7155] SQUASHFS error: Unable to read inode 0x11f [ 328.679616][ T7157] loop4: detected capacity change from 0 to 64 [ 328.922962][ T7163] netlink: 24 bytes leftover after parsing attributes in process `syz.5.466'. [ 328.986955][ T7162] delete_channel: no stack [ 329.204412][ T7166] loop1: detected capacity change from 0 to 164 [ 329.292568][ T7166] rock: directory entry would overflow storage [ 329.298969][ T7166] rock: sig=0x4f50, size=4, remaining=3 [ 329.305763][ T7166] iso9660: Corrupted directory entry in block 4 of inode 1792 [ 330.961348][ T7208] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 331.497678][ T7211] loop1: detected capacity change from 0 to 4096 [ 331.831125][ T5843] usb 6-1: new high-speed USB device number 3 using dummy_hcd [ 331.856074][ T7225] ntfs3(loop1): ino=0, "file0" The size of extended attributes must not exceed 64KiB [ 331.868907][ T7223] loop0: detected capacity change from 0 to 1024 [ 331.918311][ T7224] loop3: detected capacity change from 0 to 2048 [ 331.981604][ T7223] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 332.024282][ T7229] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 332.038824][ T5843] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 332.055521][ T5843] usb 6-1: New USB device found, idVendor=1532, idProduct=010e, bcdDevice= 0.00 [ 332.068773][ T5843] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 332.176086][ T5843] usb 6-1: config 0 descriptor?? [ 332.414795][ T5801] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 332.891564][ T5843] razer 0003:1532:010E.0007: failed to enable macro keys: -71 [ 332.924809][ T5843] razer 0003:1532:010E.0007: hidraw0: USB HID v0.00 Device [HID 1532:010e] on usb-dummy_hcd.5-1/input0 [ 332.961571][ T7235] loop0: detected capacity change from 0 to 1024 [ 332.987482][ T5843] usb 6-1: USB disconnect, device number 3 [ 333.382557][ T13] hfsplus: b-tree write err: -5, ino 8 [ 333.536442][ T7242] [U] [ 333.641493][ T7245] program syz.4.504 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 333.688024][ T29] audit: type=1326 audit(1737610255.040:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7246 comm="syz.0.503" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff921b8cd29 code=0x7ffc0000 [ 333.760992][ T29] audit: type=1326 audit(1737610255.100:12): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7246 comm="syz.0.503" exe="/root/syz-executor" sig=0 arch=c000003e syscall=425 compat=0 ip=0x7ff921b8cd29 code=0x7ffc0000 [ 333.786981][ T29] audit: type=1326 audit(1737610255.100:13): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7246 comm="syz.0.503" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff921b8cd29 code=0x7ffc0000 [ 333.811764][ T29] audit: type=1326 audit(1737610255.120:14): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7246 comm="syz.0.503" exe="/root/syz-executor" sig=0 arch=c000003e syscall=427 compat=0 ip=0x7ff921b8cd29 code=0x7ffc0000 [ 333.837058][ T29] audit: type=1326 audit(1737610255.120:15): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7246 comm="syz.0.503" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff921b8cd29 code=0x7ffc0000 [ 334.533294][ T7255] loop1: detected capacity change from 0 to 4096 [ 334.560078][ T7255] ntfs3(loop1): Different NTFS sector size (1024) and media sector size (512). [ 334.736213][ T7255] ntfs3(loop1): Mark volume as dirty due to NTFS errors [ 334.849938][ T7255] ntfs3(loop1): ino=1e, "file1" failed to parse mft record [ 334.859351][ T7255] ntfs3(loop1): ino=1e, "file1" attr_set_size [ 335.468933][ T7275] loop0: detected capacity change from 0 to 2048 [ 335.539448][ T7275] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 335.634294][ T7273] loop5: detected capacity change from 0 to 4096 [ 335.992866][ T7283] loop3: detected capacity change from 0 to 1024 [ 336.017177][ T7286] loop4: detected capacity change from 0 to 64 [ 336.116420][ T7283] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 336.116950][ T7286] Trying to free block not in datazone [ 336.230952][ T7283] EXT4-fs warning (device loop3): ext4_empty_dir:3114: inode #11: comm syz.3.521: directory missing '..' [ 336.526699][ T5795] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 336.699496][ T7297] loop0: detected capacity change from 0 to 256 [ 336.733123][ T7299] loop4: detected capacity change from 0 to 16 [ 336.761687][ T7299] erofs (device loop4): mounted with root inode @ nid 36. [ 336.824314][ T7299] syz.4.529: attempt to access beyond end of device [ 336.824314][ T7299] loop4: rw=524288, sector=7864328, nr_sectors = 8 limit=16 [ 336.839380][ T7299] syz.4.529: attempt to access beyond end of device [ 336.839380][ T7299] loop4: rw=0, sector=7864328, nr_sectors = 8 limit=16 [ 336.853386][ T7299] erofs (device loop4): read error -5 @ 0 of nid 89 [ 336.871656][ T29] audit: type=1800 audit(1737610258.230:16): pid=7299 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.529" name="file3" dev="loop4" ino=89 res=0 errno=0 [ 337.170536][ T7306] bridge1: entered promiscuous mode [ 337.176104][ T7306] bridge1: entered allmulticast mode [ 337.193573][ T7306] team0: Port device bridge1 added [ 337.618206][ T7316] loop4: detected capacity change from 0 to 128 [ 337.686071][ T7316] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x00067272 (sector = 1) [ 338.590206][ T7331] loop1: detected capacity change from 0 to 2048 [ 338.652561][ T7334] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 340.201624][ T7349] loop1: detected capacity change from 0 to 40427 [ 340.216276][ T7349] F2FS-fs (loop1): Image doesn't support compression [ 340.242428][ T7349] F2FS-fs (loop1): invalid crc value [ 340.266723][ T7349] F2FS-fs (loop1): Disable nat_bits due to incorrect cp_ver (10241045589465957861, 10241044815247771109) [ 340.318986][ T7355] tipc: Enabling of bearer rejected, media not registered [ 340.539444][ T7349] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5 [ 341.115014][ T7370] loop3: detected capacity change from 0 to 64 [ 341.476697][ T7372] netlink: 8 bytes leftover after parsing attributes in process `syz.5.560'. [ 341.666089][ T7368] loop4: detected capacity change from 0 to 4096 [ 342.252726][ T5856] usb 6-1: new high-speed USB device number 4 using dummy_hcd [ 342.431504][ T5856] usb 6-1: Using ep0 maxpacket: 8 [ 342.482743][ T5856] usb 6-1: config 0 interface 0 altsetting 128 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 342.495809][ T5856] usb 6-1: config 0 interface 0 altsetting 128 endpoint 0x81 has invalid wMaxPacketSize 0 [ 342.506640][ T5856] usb 6-1: config 0 interface 0 has no altsetting 0 [ 342.513688][ T5856] usb 6-1: New USB device found, idVendor=5543, idProduct=0045, bcdDevice= 0.00 [ 342.523098][ T5856] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 342.571497][ T5856] usb 6-1: config 0 descriptor?? [ 342.944864][ T7392] loop4: detected capacity change from 0 to 512 [ 343.008524][ T7392] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended [ 343.018165][ T7392] EXT4-fs (loop4): mounting ext2 file system using the ext4 subsystem [ 343.044704][ T7392] EXT4-fs (loop4): warning: checktime reached, running e2fsck is recommended [ 343.058973][ T7392] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a042c01c, mo2=0002] [ 343.068144][ T5843] usb 2-1: new high-speed USB device number 7 using dummy_hcd [ 343.084839][ T7392] System zones: 0-2, 18-18, 34-34 [ 343.123346][ T7392] EXT4-fs warning (device loop4): ext4_update_dynamic_rev:1145: updating to rev 1 because of new feature flag, running e2fsck is recommended [ 343.193972][ T7392] EXT4-fs (loop4): 1 truncate cleaned up [ 343.205098][ T7392] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 343.232154][ T5843] usb 2-1: Using ep0 maxpacket: 32 [ 343.243583][ T7396] loop3: detected capacity change from 0 to 512 [ 343.267153][ T5843] usb 2-1: config index 0 descriptor too short (expected 35577, got 27) [ 343.271792][ T5856] usb 6-1: string descriptor 0 read error: -71 [ 343.276868][ T5843] usb 2-1: config 1 has too many interfaces: 92, using maximum allowed: 32 [ 343.292007][ T5843] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 92 [ 343.295488][ T5856] uclogic 0003:5543:0045.0008: failed retrieving string descriptor #200: -71 [ 343.302112][ T5843] usb 2-1: config 1 has no interface number 0 [ 343.313122][ T5856] uclogic 0003:5543:0045.0008: failed retrieving pen parameters: -71 [ 343.313244][ T5856] uclogic 0003:5543:0045.0008: failed probing pen v2 parameters: -71 [ 343.313477][ T5856] uclogic 0003:5543:0045.0008: failed probing parameters: -71 [ 343.313922][ T5856] uclogic 0003:5543:0045.0008: probe with driver uclogic failed with error -71 [ 343.341413][ T5843] usb 2-1: config 1 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7 [ 343.341554][ T5843] usb 2-1: config 1 interface 1 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 17 [ 343.341740][ T5843] usb 2-1: New USB device found, idVendor=0e41, idProduct=5051, bcdDevice=d5.e8 [ 343.341873][ T5843] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 343.349472][ T7392] EXT4-fs warning (device loop4): verify_group_input:156: Last group not full [ 343.443106][ T5856] usb 6-1: USB disconnect, device number 4 [ 343.457481][ T7396] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 343.506199][ T7396] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 343.529030][ T7396] ext4 filesystem being mounted at /123/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 343.577624][ T5843] snd_usb_pod 2-1:1.1: Line 6 Pocket POD found [ 343.644712][ T5790] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 343.703738][ T5843] snd_usb_pod 2-1:1.1: Line 6 Pocket POD now attached [ 343.851190][ T1987] usb 1-1: new high-speed USB device number 3 using dummy_hcd [ 343.905778][ T5795] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 344.061308][ T1987] usb 1-1: too many endpoints for config 0 interface 0 altsetting 9: 33, using maximum allowed: 30 [ 344.073118][ T1987] usb 1-1: config 0 interface 0 altsetting 9 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 344.084596][ T1987] usb 1-1: config 0 interface 0 altsetting 9 endpoint 0x81 has invalid wMaxPacketSize 0 [ 344.094867][ T1987] usb 1-1: config 0 interface 0 altsetting 9 has 1 endpoint descriptor, different from the interface descriptor's value: 33 [ 344.108425][ T1987] usb 1-1: config 0 interface 0 has no altsetting 0 [ 344.115645][ T1987] usb 1-1: New USB device found, idVendor=0458, idProduct=5013, bcdDevice= 0.00 [ 344.131581][ T1987] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 344.193625][ T51] Bluetooth: hci2: command 0x0406 tx timeout [ 344.200378][ T5843] usb 2-1: USB disconnect, device number 7 [ 344.203710][ T51] Bluetooth: hci3: command 0x0406 tx timeout [ 344.208507][ T5843] snd_usb_pod 2-1:1.1: Line 6 Pocket POD now disconnected [ 344.213058][ T51] Bluetooth: hci4: command 0x0406 tx timeout [ 344.213161][ T51] Bluetooth: hci1: command 0x0406 tx timeout [ 344.253436][ T1987] usb 1-1: config 0 descriptor?? [ 344.698925][ T1987] kye 0003:0458:5013.0009: tablet report size too small, or kye_tablet_rdesc unexpectedly large [ 344.731901][ T1987] kye 0003:0458:5013.0009: unknown main item tag 0x0 [ 344.783161][ T7415] loop3: detected capacity change from 0 to 8 [ 344.802379][ T7416] netlink: 'syz.5.578': attribute type 30 has an invalid length. [ 344.826012][ T1987] kye 0003:0458:5013.0009: hidraw0: USB HID v0.00 Device [HID 0458:5013] on usb-dummy_hcd.0-1/input0 [ 344.837849][ T1987] kye 0003:0458:5013.0009: tablet-enabling feature report not found [ 344.856484][ T1987] kye 0003:0458:5013.0009: tablet enabling failed [ 344.981706][ T1987] usb 1-1: USB disconnect, device number 3 [ 346.348379][ T7441] loop1: detected capacity change from 0 to 128 [ 346.355708][ T7439] netlink: 12 bytes leftover after parsing attributes in process `syz.0.589'. [ 346.389091][ T7441] VFS: Found a Xenix FS (block size = 1024) on device loop1 [ 346.459270][ T7441] syz.1.590: attempt to access beyond end of device [ 346.459270][ T7441] loop1: rw=0, sector=6491536, nr_sectors = 2 limit=128 [ 346.474446][ T7441] Buffer I/O error on dev loop1, logical block 3245768, async page read [ 346.504507][ T7444] syz.1.590: attempt to access beyond end of device [ 346.504507][ T7444] loop1: rw=0, sector=6491536, nr_sectors = 2 limit=128 [ 346.518526][ T7444] Buffer I/O error on dev loop1, logical block 3245768, async page read [ 346.831826][ T5792] sysv_free_block: flc_count > flc_size [ 346.837715][ T5792] sysv_free_block: flc_count > flc_size [ 346.844394][ T5792] sysv_free_block: flc_count > flc_size [ 346.850098][ T5792] sysv_free_block: flc_count > flc_size [ 346.856084][ T5792] sysv_free_block: flc_count > flc_size [ 346.861958][ T5792] sysv_free_block: flc_count > flc_size [ 346.867667][ T5792] sysv_free_block: flc_count > flc_size [ 346.874713][ T5792] sysv_free_block: flc_count > flc_size [ 346.880437][ T5792] sysv_free_block: flc_count > flc_size [ 346.889711][ T5792] sysv_free_block: flc_count > flc_size [ 346.905791][ T5792] sysv_free_inode: inode 0,1,2 or nonexistent inode [ 347.267769][ T1277] ieee802154 phy0 wpan0: encryption failed: -22 [ 347.274958][ T1277] ieee802154 phy1 wpan1: encryption failed: -22 [ 347.488127][ T7459] loop5: detected capacity change from 0 to 512 [ 347.979311][ T7469] loop4: detected capacity change from 0 to 24 [ 348.032243][ T7469] romfs: Mounting image 'rom 637cf1fa' through the block layer [ 348.474109][ T7481] loop0: detected capacity change from 0 to 128 [ 349.552403][ T7493] loop3: detected capacity change from 0 to 1024 [ 349.808227][ T7495] netlink: 12 bytes leftover after parsing attributes in process `syz.4.616'. [ 349.873550][ T7481] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 349.999851][ T7481] ext4 filesystem being mounted at /139/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 351.278837][ T7507] mkiss: ax0: crc mode is auto. [ 352.835696][ T5801] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 353.162387][ T7513] netlink: 4 bytes leftover after parsing attributes in process `syz.1.624'. [ 353.171699][ T7513] netlink: 'syz.1.624': attribute type 7 has an invalid length. [ 353.221759][ T7514] netlink: 36 bytes leftover after parsing attributes in process `syz.0.620'. [ 353.231317][ T7514] netlink: 'syz.0.620': attribute type 1 has an invalid length. [ 353.246213][ T7514] netlink: 13 bytes leftover after parsing attributes in process `syz.0.620'. [ 353.258149][ T7514] 8021q: VLANs not supported on lo [ 353.631318][ T5856] usb 6-1: new high-speed USB device number 5 using dummy_hcd [ 353.679351][ T7524] loop0: detected capacity change from 0 to 64 [ 353.861199][ T5856] usb 6-1: Using ep0 maxpacket: 16 [ 353.875990][ T5856] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 353.887706][ T5856] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 353.897905][ T5856] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 353.911187][ T5856] usb 6-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00 [ 353.920489][ T5856] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 354.009210][ T7530] netlink: 'syz.3.632': attribute type 7 has an invalid length. [ 354.053308][ T5856] usb 6-1: config 0 descriptor?? [ 354.528208][ T5856] microsoft 0003:045E:07DA.000A: unbalanced delimiter at end of report description [ 354.561252][ T1987] usb 1-1: new high-speed USB device number 4 using dummy_hcd [ 354.640507][ T5856] microsoft 0003:045E:07DA.000A: parse failed [ 354.647355][ T5856] microsoft 0003:045E:07DA.000A: probe with driver microsoft failed with error -22 [ 354.752568][ T5856] usb 6-1: USB disconnect, device number 5 [ 354.773372][ T1987] usb 1-1: config 0 has an invalid interface number: 4 but max is 0 [ 354.788209][ T1987] usb 1-1: config 0 has no interface number 0 [ 354.796788][ T1987] usb 1-1: config 0 interface 4 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 354.808442][ T1987] usb 1-1: config 0 interface 4 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 354.818676][ T1987] usb 1-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00 [ 354.828142][ T1987] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 354.841358][ T1987] usb 1-1: config 0 descriptor?? [ 355.119141][ T7544] sp0: Synchronizing with TNC [ 355.225153][ T29] audit: type=1326 audit(1737610276.590:17): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7534 comm="syz.4.634" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0d9378cd29 code=0x7fc00000 [ 355.315065][ T1987] uclogic 0003:256C:006D.000B: interface is invalid, ignoring [ 355.538637][ T1987] usb 1-1: USB disconnect, device number 4 [ 356.054942][ T29] audit: type=1326 audit(1737610277.410:18): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7556 comm="syz.4.644" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0d9378cd29 code=0x7ffc0000 [ 356.077749][ T29] audit: type=1326 audit(1737610277.410:19): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7556 comm="syz.4.644" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0d9378cd29 code=0x7ffc0000 [ 356.086785][ T7557] sd 0:0:1:0: device reset [ 356.100328][ T29] audit: type=1326 audit(1737610277.430:20): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7556 comm="syz.4.644" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f0d9378b690 code=0x7ffc0000 [ 356.129396][ T29] audit: type=1326 audit(1737610277.430:21): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7556 comm="syz.4.644" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0d9378cd29 code=0x7ffc0000 [ 356.139268][ T7561] loop3: detected capacity change from 0 to 64 [ 356.152373][ T29] audit: type=1326 audit(1737610277.450:22): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7556 comm="syz.4.644" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f0d9378cd29 code=0x7ffc0000 [ 356.230902][ T29] audit: type=1326 audit(1737610277.570:23): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7556 comm="syz.4.644" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0d9378cd29 code=0x7ffc0000 [ 356.254057][ T29] audit: type=1326 audit(1737610277.570:24): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7556 comm="syz.4.644" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0d9378cd29 code=0x7ffc0000 [ 356.875629][ T7574] loop5: detected capacity change from 0 to 8 [ 357.689024][ T7590] loop1: detected capacity change from 0 to 64 [ 358.010956][ T7594] loop4: detected capacity change from 0 to 512 [ 358.097353][ T7594] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 358.113851][ T7598] loop0: detected capacity change from 0 to 512 [ 358.194822][ T7594] EXT4-fs error (device loop4): ext4_orphan_get:1415: comm syz.4.662: bad orphan inode 131083 [ 358.214402][ T7598] EXT4-fs (loop0): Cannot turn on journaled quota: type 0: error -2 [ 358.217033][ T7603] loop3: detected capacity change from 0 to 64 [ 358.235610][ T7594] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 358.276506][ T7598] EXT4-fs error (device loop0): ext4_free_branches:1023: inode #13: comm syz.0.664: invalid indirect mapped block 8 (level 2) [ 358.309418][ T7598] EXT4-fs (loop0): Remounting filesystem read-only [ 358.326312][ T7605] Illegal XDP return value 4294967274 on prog (id 30) dev N/A, expect packet loss! [ 358.354748][ T7598] EXT4-fs (loop0): 1 truncate cleaned up [ 358.364123][ T7598] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 358.501613][ T5790] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 358.867940][ T5801] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 359.101011][ T1987] usb 2-1: new high-speed USB device number 8 using dummy_hcd [ 359.325393][ T1987] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 359.337045][ T1987] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 359.347411][ T1987] usb 2-1: New USB device found, idVendor=0079, idProduct=1843, bcdDevice= 0.00 [ 359.356900][ T1987] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 359.560392][ T7607] loop5: detected capacity change from 0 to 40427 [ 359.577343][ T7607] F2FS-fs (loop5): Wrong SSA boundary, start(3584) end(4096) blocks(32768) [ 359.589063][ T7607] F2FS-fs (loop5): Can't find valid F2FS filesystem in 1th superblock [ 359.611731][ T7607] F2FS-fs (loop5): inline encryption not supported [ 359.612984][ T1987] usb 2-1: config 0 descriptor?? [ 359.619978][ T7607] F2FS-fs (loop5): Unrecognized mount option "fault_type=00000000549755813892" or missing value [ 360.186659][ T1987] hid_mf 0003:0079:1843.000C: item fetching failed at offset 5/7 [ 360.229467][ T1987] hid_mf 0003:0079:1843.000C: HID parse failed. [ 360.237091][ T1987] hid_mf 0003:0079:1843.000C: probe with driver hid_mf failed with error -22 [ 360.457990][ T5856] usb 2-1: USB disconnect, device number 8 [ 360.739654][ T7625] loop3: detected capacity change from 0 to 2048 [ 360.761992][ T7625] NILFS (loop3): broken superblock, retrying with spare superblock (blocksize = 1024) [ 360.806115][ T29] audit: type=1326 audit(1737610282.160:25): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7628 comm="syz.0.677" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff921b8cd29 code=0x7ffc0000 [ 360.831307][ T29] audit: type=1326 audit(1737610282.160:26): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7628 comm="syz.0.677" exe="/root/syz-executor" sig=0 arch=c000003e syscall=31 compat=0 ip=0x7ff921b8cd29 code=0x7ffc0000 [ 360.854356][ T29] audit: type=1326 audit(1737610282.160:27): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7628 comm="syz.0.677" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff921b8cd29 code=0x7ffc0000 [ 360.971058][ T7625] syz.3.676: attempt to access beyond end of device [ 360.971058][ T7625] loop3: rw=524288, sector=33554430, nr_sectors = 2 limit=2048 [ 360.992908][ T7631] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 361.285677][ T7637] usb usb4: usbfs: process 7637 (syz.0.681) did not claim interface 0 before use [ 361.541912][ T7641] netlink: 24 bytes leftover after parsing attributes in process `syz.4.684'. [ 361.804703][ T1987] IPVS: starting estimator thread 0... [ 361.892348][ T7648] IPVS: using max 240 ests per chain, 12000 per kthread [ 361.961433][ T7650] netlink: 40 bytes leftover after parsing attributes in process `syz.4.687'. [ 362.016193][ T7653] loop3: detected capacity change from 0 to 64 [ 362.632798][ T7661] loop1: detected capacity change from 0 to 1024 [ 363.442358][ T7678] Bluetooth: MGMT ver 1.23 [ 363.672260][ T29] audit: type=1326 audit(1737610285.030:28): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7679 comm="syz.5.703" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f148698cd29 code=0x0 [ 363.927553][ T7687] smc: net device bond0 applied user defined pnetid SYZ0 [ 364.499445][ T7698] loop3: detected capacity change from 0 to 256 [ 364.576851][ T7698] exFAT-fs (loop3): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d) [ 364.596522][ T5856] usb 2-1: new high-speed USB device number 9 using dummy_hcd [ 364.680365][ T7698] exFAT-fs (loop3): error, invalid access to FAT (entry 0xffffffff) [ 364.758848][ T7698] syz.3.710 (7698) used greatest stack depth: 5040 bytes left [ 364.768145][ T5856] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 364.768293][ T5856] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 364.768467][ T5856] usb 2-1: New USB device found, idVendor=046d, idProduct=c294, bcdDevice= 0.00 [ 364.768594][ T5856] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 364.773096][ T5856] usb 2-1: config 0 descriptor?? [ 365.277547][ T5856] logitech 0003:046D:C294.000D: item fetching failed at offset 3/7 [ 365.313415][ T5856] logitech 0003:046D:C294.000D: parse failed [ 365.313876][ T5856] logitech 0003:046D:C294.000D: probe with driver logitech failed with error -22 [ 365.480951][ T5856] usb 2-1: USB disconnect, device number 9 [ 366.361187][ T5856] usb 6-1: new high-speed USB device number 6 using dummy_hcd [ 366.535827][ T5856] usb 6-1: config 0 has an invalid interface number: 117 but max is 0 [ 366.544384][ T5856] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 366.556426][ T5856] usb 6-1: config 0 has no interface number 0 [ 366.563310][ T5856] usb 6-1: config 0 interface 117 altsetting 0 endpoint 0x88 has invalid wMaxPacketSize 0 [ 366.573804][ T5856] usb 6-1: config 0 interface 117 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 366.638571][ T5856] usb 6-1: New USB device found, idVendor=0afa, idProduct=03e8, bcdDevice=99.d0 [ 366.648487][ T5856] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 366.658442][ T5856] usb 6-1: Product: syz [ 366.663390][ T5856] usb 6-1: Manufacturer: syz [ 366.668222][ T5856] usb 6-1: SerialNumber: syz [ 366.693312][ T5856] usb 6-1: config 0 descriptor?? [ 367.105049][ T7726] loop4: detected capacity change from 0 to 128 [ 367.209380][ T7726] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 367.229425][ T7726] ext4 filesystem being mounted at /158/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 367.381690][ T1987] usb 6-1: USB disconnect, device number 6 [ 367.596222][ T7734] loop0: detected capacity change from 0 to 512 [ 367.605571][ T7734] EXT4-fs: Ignoring removed bh option [ 367.615809][ T5790] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 367.635950][ T7734] EXT4-fs (loop0): mounting ext3 file system using the ext4 subsystem [ 367.708184][ T7734] EXT4-fs (loop0): 1 truncate cleaned up [ 367.724656][ T7734] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 368.104068][ T5801] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 368.115549][ T7742] loop4: detected capacity change from 0 to 256 [ 368.279147][ T7745] loop5: detected capacity change from 0 to 1024 [ 368.310376][ T7745] EXT4-fs: Ignoring removed orlov option [ 368.333436][ T7741] loop1: detected capacity change from 0 to 2048 [ 368.355659][ T7745] EXT4-fs (loop5): stripe (5) is not aligned with cluster size (16), stripe is disabled [ 368.417476][ T7741] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 368.418677][ T7745] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 368.448594][ T7747] netlink: 44 bytes leftover after parsing attributes in process `syz.0.731'. [ 368.542997][ T7745] EXT4-fs error (device loop5): ext4_check_all_de:656: inode #12: block 7: comm syz.5.730: bad entry in directory: rec_len is too small for name_len - offset=16, inode=14, rec_len=40, size=108 fake=0 [ 368.612403][ T7745] EXT4-fs warning (device loop5): ext4_expand_extra_isize_ea:2863: Unable to expand inode 12. Delete some EAs or run e2fsck. [ 368.783796][ T7755] nbd: couldn't find device at index 131072 [ 368.880601][ T6166] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 369.475461][ T7759] loop4: detected capacity change from 0 to 4096 [ 369.530193][ T7759] ntfs3(loop4): Different NTFS sector size (4096) and media sector size (512). [ 369.849450][ T7759] ntfs3(loop4): Failed to initialize $Extend/$Reparse. [ 369.900033][ T29] audit: type=1800 audit(1737610291.260:29): pid=7759 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.737" name="file2" dev="loop4" ino=31 res=0 errno=0 [ 369.922683][ T7759] ntfs3(loop4): ino=1a, ntfs_sync_fs failed, -22. [ 369.935715][ T7759] ntfs3(loop4): Mark volume as dirty due to NTFS errors [ 370.197019][ T7779] loop1: detected capacity change from 0 to 64 [ 370.275991][ T5790] ntfs3(loop4): ino=1a, ntfs_sync_fs failed, -22. [ 370.961260][ T7790] netlink: 8 bytes leftover after parsing attributes in process `syz.0.751'. [ 371.352583][ T7791] loop1: detected capacity change from 0 to 4096 [ 371.511133][ T7801] loop5: detected capacity change from 0 to 1024 [ 371.581541][ T7801] EXT4-fs: Ignoring removed orlov option [ 371.587563][ T7801] EXT4-fs: Ignoring removed orlov option [ 371.593708][ T7801] EXT4-fs: Ignoring removed oldalloc option [ 371.653749][ T7801] EXT4-fs (loop5): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors [ 371.666207][ T7801] EXT4-fs (loop5): ext4_check_descriptors: Checksum for group 0 failed (12914!=20869) [ 371.730197][ T7791] ntfs3(loop1): Mark volume as dirty due to NTFS errors [ 371.733826][ T7805] netlink: 28 bytes leftover after parsing attributes in process `syz.0.758'. [ 371.746939][ T7805] netlink: 28 bytes leftover after parsing attributes in process `syz.0.758'. [ 371.762037][ T7791] ntfs3(loop1): Failed to initialize $Extend/$ObjId. [ 371.770240][ T7801] EXT4-fs (loop5): invalid journal inode [ 371.783894][ T7801] EXT4-fs (loop5): can't get journal size [ 371.835170][ T7801] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 371.928509][ T7805] netlink: 28 bytes leftover after parsing attributes in process `syz.0.758'. [ 371.938117][ T7805] netlink: 28 bytes leftover after parsing attributes in process `syz.0.758'. [ 372.373072][ T6166] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 372.470525][ T7805] netlink: 28 bytes leftover after parsing attributes in process `syz.0.758'. [ 372.483978][ T7805] netlink: 28 bytes leftover after parsing attributes in process `syz.0.758'. [ 372.487820][ T7815] loop4: detected capacity change from 0 to 512 [ 372.575521][ T7817] tmpfs: Bad value for 'mpol' [ 372.692412][ T7815] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e842c11c, mo2=0002] [ 372.748767][ T7815] System zones: 0-2, 18-18, 34-34 [ 372.869267][ T7815] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.761: bg 0: block 248: padding at end of block bitmap is not set [ 372.941697][ T7815] Quota error (device loop4): write_blk: dquota write failed [ 372.949669][ T7815] Quota error (device loop4): qtree_write_dquot: Error -117 occurred while creating quota [ 372.960394][ T7815] EXT4-fs error (device loop4): ext4_acquire_dquot:6938: comm syz.4.761: Failed to acquire dquot type 1 [ 373.019356][ T7815] EXT4-fs (loop4): 1 truncate cleaned up [ 373.020831][ T7811] loop0: detected capacity change from 0 to 8192 [ 373.031021][ T7815] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 373.045432][ T7815] ext4 filesystem being mounted at /166/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 373.429005][ T7815] syz.4.761 (7815) used greatest stack depth: 3856 bytes left [ 373.478267][ T5790] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 373.692877][ T7837] netlink: 12 bytes leftover after parsing attributes in process `syz.0.769'. [ 373.831085][ T7841] mmap: syz.5.773 (7841) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 374.190327][ T7847] netlink: 8 bytes leftover after parsing attributes in process `syz.3.774'. [ 374.199856][ T7847] netlink: 4 bytes leftover after parsing attributes in process `syz.3.774'. [ 374.209258][ T7847] nbd: socks must be embedded in a SOCK_ITEM attr [ 374.996513][ T7864] program syz.0.782 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 375.087887][ T7867] trusted_key: encrypted key: instantiation of keys using provided decrypted data is disabled since CONFIG_USER_DECRYPTED_DATA is set to false [ 375.124069][ T7865] loop5: detected capacity change from 0 to 512 [ 375.185172][ T7865] EXT4-fs: Ignoring removed oldalloc option [ 375.216635][ T7869] loop3: detected capacity change from 0 to 16 [ 375.231941][ T7865] EXT4-fs (loop5): 1 truncate cleaned up [ 375.239454][ T7865] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 375.296752][ T7869] erofs (device loop3): mounted with root inode @ nid 36. [ 375.303078][ T29] audit: type=1800 audit(1737610296.650:30): pid=7865 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.783" name="file1" dev="loop5" ino=15 res=0 errno=0 [ 375.461080][ T29] audit: type=1326 audit(1737610296.820:31): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7873 comm="syz.1.788" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fceeb98cd29 code=0x7ffc0000 [ 375.484121][ T29] audit: type=1326 audit(1737610296.820:32): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7873 comm="syz.1.788" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fceeb98cd29 code=0x7ffc0000 [ 375.506759][ T29] audit: type=1326 audit(1737610296.850:33): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7873 comm="syz.1.788" exe="/root/syz-executor" sig=0 arch=c000003e syscall=240 compat=0 ip=0x7fceeb98cd29 code=0x7ffc0000 [ 375.529402][ T29] audit: type=1326 audit(1737610296.850:34): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7873 comm="syz.1.788" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fceeb98cd29 code=0x7ffc0000 [ 375.552134][ T29] audit: type=1326 audit(1737610296.850:35): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7873 comm="syz.1.788" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fceeb98cd29 code=0x7ffc0000 [ 375.576733][ T29] audit: type=1326 audit(1737610296.870:36): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7873 comm="syz.1.788" exe="/root/syz-executor" sig=0 arch=c000003e syscall=244 compat=0 ip=0x7fceeb98cd29 code=0x7ffc0000 [ 375.599354][ T29] audit: type=1326 audit(1737610296.870:37): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7873 comm="syz.1.788" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fceeb98cd29 code=0x7ffc0000 [ 375.694645][ T6166] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 375.938335][ T29] audit: type=1326 audit(1737610297.300:38): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7880 comm="syz.1.793" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fceeb98cd29 code=0x7ffc0000 [ 376.006097][ T29] audit: type=1326 audit(1737610297.370:39): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7880 comm="syz.1.793" exe="/root/syz-executor" sig=0 arch=c000003e syscall=2 compat=0 ip=0x7fceeb98cd29 code=0x7ffc0000 [ 377.099732][ T7901] netlink: 512 bytes leftover after parsing attributes in process `syz.1.801'. [ 378.870729][ C0] hrtimer: interrupt took 194610 ns [ 379.246071][ T7941] loop1: detected capacity change from 0 to 256 [ 379.339255][ T7941] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x36e00b20, utbl_chksum : 0xe619d30d) [ 379.739263][ T7946] loop3: detected capacity change from 0 to 512 [ 379.959304][ T7946] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 379.979456][ T7946] ext4 filesystem being mounted at /167/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 380.131651][ T7946] EXT4-fs error (device loop3): ext4_readdir:261: inode #2: block 3: comm syz.3.820: path (unknown): bad entry in directory: directory entry overrun - offset=0, inode=2, rec_len=2060, size=2048 fake=1 [ 380.516664][ T5795] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 380.638858][ T7964] netlink: 8 bytes leftover after parsing attributes in process `syz.4.828'. [ 380.853642][ T7969] netlink: 16 bytes leftover after parsing attributes in process `syz.3.831'. [ 381.355663][ T7978] mkiss: ax0: crc mode is auto. [ 381.364457][ T5791] Bluetooth: hci2: unexpected event for opcode 0x1005 [ 382.763707][ T7995] loop5: detected capacity change from 0 to 512 [ 382.903897][ T7995] EXT4-fs (loop5): Cannot turn on journaled quota: type 0: error -2 [ 382.952388][ T8006] hugetlbfs: Bad value 'e' for mount option 'size' [ 382.952388][ T8006] [ 382.974003][ T7995] EXT4-fs (loop5): 1 truncate cleaned up [ 382.981729][ T7995] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 383.157854][ T7995] EXT4-fs (loop5): re-mounted 00000000-0000-0000-0000-000000000000 ro. Quota mode: writeback. [ 383.394154][ T6166] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 383.698860][ T8015] loop5: detected capacity change from 0 to 128 [ 383.765952][ T8015] EXT4-fs (loop5): ext4_check_descriptors: Checksum for group 0 failed (30846!=65535) [ 383.896783][ T8015] EXT4-fs (loop5): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 ro without journal. Quota mode: none. [ 384.042620][ T8015] EXT4-fs error (device loop5): ext4_read_block_bitmap_nowait:517: comm syz.5.851: Block bitmap for bg 0 marked uninitialized [ 384.295598][ T8024] loop0: detected capacity change from 0 to 1024 [ 384.362559][ T8024] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 384.440621][ T8024] EXT4-fs error (device loop0): ext4_lookup:1805: inode #2: comm syz.0.854: bad inode number: 12 [ 384.535344][ T6166] EXT4-fs (loop5): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 384.605419][ T8024] EXT4-fs (loop0): Remounting filesystem read-only [ 384.949479][ T5801] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 385.224493][ T8034] loop4: detected capacity change from 0 to 2048 [ 385.250219][ T8034] UDF-fs: error (device loop4): udf_process_sequence: Primary Volume Descriptor not found! [ 385.312924][ T8034] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 385.379018][ T8040] program syz.3.861 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 385.793258][ T8046] fuse: Bad value for 'user_id' [ 385.798478][ T8046] fuse: Bad value for 'user_id' [ 386.141208][ T8052] loop0: detected capacity change from 0 to 256 [ 386.591079][ T1987] usb 2-1: new high-speed USB device number 10 using dummy_hcd [ 386.791653][ T1987] usb 2-1: Using ep0 maxpacket: 8 [ 386.815507][ T1987] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 386.832938][ T1987] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 386.845863][ T1987] usb 2-1: New USB device found, idVendor=18d1, idProduct=9400, bcdDevice= 0.00 [ 386.855405][ T1987] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 386.965946][ T1987] usb 2-1: config 0 descriptor?? [ 387.065349][ T5856] usb 6-1: new high-speed USB device number 7 using dummy_hcd [ 387.221294][ T8073] loop4: detected capacity change from 0 to 64 [ 387.273626][ T5856] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 387.285356][ T5856] usb 6-1: New USB device found, idVendor=5543, idProduct=0003, bcdDevice= 0.00 [ 387.294974][ T5856] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 387.355637][ T5856] usb 6-1: config 0 descriptor?? [ 387.410403][ T1987] stadia 0003:18D1:9400.000E: unknown main item tag 0x0 [ 387.418206][ T1987] stadia 0003:18D1:9400.000E: unbalanced collection at end of report description [ 387.497458][ T1987] stadia 0003:18D1:9400.000E: parse failed [ 387.504198][ T1987] stadia 0003:18D1:9400.000E: probe with driver stadia failed with error -22 [ 387.604620][ T1987] usb 2-1: USB disconnect, device number 10 [ 388.428571][ T8078] loop3: detected capacity change from 0 to 32768 [ 388.437449][ T8078] btrfs: Deprecated parameter 'usebackuproot' [ 388.443913][ T8078] BTRFS warning: 'usebackuproot' is deprecated, use 'rescue=usebackuproot' instead [ 388.470649][ T8078] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop3 (7:3) scanned by syz.3.880 (8078) [ 388.489842][ T8078] BTRFS info (device loop3): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 388.500532][ T8078] BTRFS info (device loop3): using sha256 (sha256-generic) checksum algorithm [ 388.512320][ T8078] BTRFS info (device loop3): using free-space-tree [ 388.525921][ T5856] uclogic 0003:5543:0003.000F: No inputs registered, leaving [ 388.540104][ T5856] uclogic 0003:5543:0003.000F: hidraw0: USB HID v0.00 Device [HID 5543:0003] on usb-dummy_hcd.5-1/input0 [ 388.557116][ T5856] usb 6-1: USB disconnect, device number 7 [ 388.740155][ T3915] BTRFS warning (device loop3): checksum verify failed on logical 5287936 mirror 1 wanted 0xa713e020c0742da5cdb6ecaadf60bb643ce52b909234612630a7c6dbca1063e3 found 0x1e36d024cfb39df1307bda62874b12ede9a1244bdedc184d709c586f47716e2b level 0 [ 388.764282][ T8078] BTRFS warning (device loop3): failed to read root (objectid=4): -5 [ 388.775730][ T8078] BTRFS warning (device loop3): try to load backup roots slot 1 [ 388.807441][ T8097] loop0: detected capacity change from 0 to 1024 [ 388.810085][ T8078] BTRFS warning (device loop3): global root 2 0 already exists [ 388.824128][ T8078] BTRFS error (device loop3): failed to load root extent [ 388.831570][ T8078] BTRFS warning (device loop3): try to load backup roots slot 2 [ 388.853332][ T3555] BTRFS error (device loop3): level verify failed on logical 5255168 mirror 1 wanted 0 found 1 [ 388.864472][ T8078] BTRFS warning (device loop3): couldn't read tree root [ 388.871757][ T8078] BTRFS warning (device loop3): try to load backup roots slot 3 [ 388.892755][ T3555] BTRFS warning (device loop3): checksum verify failed on logical 5242880 mirror 1 wanted 0x8d90b910ec13d95ec17ddbe87d1d5dca5d3dff1259e90cf51f7cd4ff39170caa found 0x2c6f33dc4a1b8241cbc053946ef24b7ff492958e8750b32b0a34987f52d1e2e7 level 0 [ 388.901615][ T8097] EXT4-fs: Ignoring removed nobh option [ 388.916204][ T8078] BTRFS warning (device loop3): couldn't read tree root [ 388.921910][ T8097] EXT4-fs: Ignoring removed bh option [ 388.922003][ T8097] EXT4-fs: Ignoring removed oldalloc option [ 389.009433][ T8078] BTRFS error (device loop3): open_ctree failed: -5 [ 389.532678][ T8097] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 389.888641][ T5801] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 390.911767][ T8138] loop3: detected capacity change from 0 to 764 [ 390.987276][ T8138] rock: corrupted directory entry. extent=32, offset=2044, size=237 [ 391.203348][ T8143] loop5: detected capacity change from 0 to 512 [ 391.254654][ T8145] netlink: 8 bytes leftover after parsing attributes in process `syz.0.904'. [ 391.321947][ T8143] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 391.341996][ T8143] ext4 filesystem being mounted at /134/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 391.527664][ T8150] EXT4-fs error (device loop5): ext4_empty_dir:3094: inode #12: comm syz.5.903: invalid size [ 391.833631][ T6166] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 392.059778][ T8161] usb usb1: usbfs: process 8161 (syz.3.911) did not claim interface 0 before use [ 392.693614][ T8175] loop0: detected capacity change from 0 to 16 [ 392.739189][ T8175] erofs (device loop0): mounted with root inode @ nid 36. [ 392.924337][ T8178] loop3: detected capacity change from 0 to 256 [ 393.460134][ T8190] can0: slcan on ttyS3. [ 393.625705][ T8192] loop3: detected capacity change from 0 to 512 [ 393.682151][ T8192] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 393.793013][ T8192] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 393.806284][ T8192] ext4 filesystem being mounted at /189/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 394.076092][ T8183] can0 (unregistered): slcan off ttyS3. [ 394.262498][ T29] kauditd_printk_skb: 6 callbacks suppressed [ 394.262565][ T29] audit: type=1326 audit(1737610315.630:46): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8204 comm="syz.1.930" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fceeb98cd29 code=0x0 [ 394.325061][ T5795] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 394.980184][ T8222] CUSE: unknown device info "KJ H+ۤ21`Ccn80(3նi>f_ٮ,<_eF" [ 394.992315][ T8222] CUSE: unknown device info "3ܟ,̘" [ 394.998309][ T8222] CUSE: unknown device info "g" [ 395.003767][ T8222] CUSE: unknown device info "nS" [ 395.009213][ T8222] CUSE: DEVNAME unspecified [ 395.499628][ T8230] netlink: 8 bytes leftover after parsing attributes in process `syz.5.941'. [ 397.544790][ T8271] loop3: detected capacity change from 0 to 1024 [ 397.574365][ T8271] EXT4-fs: Ignoring removed nobh option [ 397.587119][ T8271] EXT4-fs: Ignoring removed bh option [ 397.745467][ T8276] loop1: detected capacity change from 0 to 2048 [ 397.746254][ T8271] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 397.882572][ T5795] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 397.891477][ T8276] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 398.312969][ T5792] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 399.701987][ T8314] netlink: 8 bytes leftover after parsing attributes in process `syz.3.980'. [ 401.946074][ T8353] loop0: detected capacity change from 0 to 1024 [ 402.547562][ T8368] loop3: detected capacity change from 0 to 1024 [ 403.023388][ T8373] loop5: detected capacity change from 0 to 2048 [ 403.099895][ T8377] NILFS (loop5): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 403.171245][ T8373] NILFS (loop5): error -2 truncating bmap (ino=16) [ 403.379465][ T8383] loop0: detected capacity change from 0 to 2048 [ 403.546799][ T8383] UDF-fs: error (device loop0): udf_read_tagged: tag version 0x0000 != 0x0002 || 0x0003, block 0 [ 403.574600][ T8383] UDF-fs: warning (device loop0): udf_load_vrs: No anchor found [ 403.582709][ T8383] UDF-fs: Scanning with blocksize 512 failed [ 403.667051][ T8383] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 404.383070][ T8396] loop1: detected capacity change from 0 to 1024 [ 404.406263][ T8398] loop0: detected capacity change from 0 to 1024 [ 404.845183][ T3453] hfsplus: b-tree write err: -5, ino 4 [ 405.575159][ T8411] loop0: detected capacity change from 0 to 4096 [ 405.620981][ T8411] ntfs3(loop0): ino=3, Correct links count -> 2. [ 406.358035][ T8427] delete_channel: no stack [ 407.322399][ T8443] loop5: detected capacity change from 0 to 2048 [ 407.393739][ T8443] NILFS (loop5): broken superblock, retrying with spare superblock (blocksize = 1024) [ 407.499964][ T8448] NILFS (loop5): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 407.744954][ T8449] loop3: detected capacity change from 0 to 2048 [ 407.781265][ T8449] NILFS (loop3): broken superblock, retrying with spare superblock (blocksize = 1024) [ 407.861488][ T8454] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 408.503957][ T8468] loop0: detected capacity change from 0 to 128 [ 408.593892][ T8468] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 408.689384][ T1277] ieee802154 phy0 wpan0: encryption failed: -22 [ 408.696250][ T1277] ieee802154 phy1 wpan1: encryption failed: -22 [ 408.701644][ T8468] ext4 filesystem being mounted at /220/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 408.725262][ T29] audit: type=1326 audit(1737610330.080:47): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8470 comm="syz.4.1053" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f0d9378cd29 code=0x0 [ 408.864377][ T8477] loop5: detected capacity change from 0 to 512 [ 408.900487][ T8477] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 408.914102][ T8477] ext4 filesystem being mounted at /166/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 408.974031][ T5801] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 409.053626][ T29] audit: type=1326 audit(1737610330.420:48): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8476 comm="syz.5.1055" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f148698cd29 code=0x7ffc0000 [ 409.163626][ T29] audit: type=1326 audit(1737610330.440:49): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8476 comm="syz.5.1055" exe="/root/syz-executor" sig=0 arch=c000003e syscall=197 compat=0 ip=0x7f148698cd29 code=0x7ffc0000 [ 409.186558][ T29] audit: type=1326 audit(1737610330.500:50): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8476 comm="syz.5.1055" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f148698cd29 code=0x7ffc0000 [ 409.209368][ T29] audit: type=1326 audit(1737610330.500:51): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8476 comm="syz.5.1055" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f148698cd29 code=0x7ffc0000 [ 409.294821][ T8485] netlink: 'syz.0.1057': attribute type 322 has an invalid length. [ 409.400637][ T6166] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 410.086386][ T8498] netlink: 12 bytes leftover after parsing attributes in process `syz.5.1064'. [ 410.389492][ C1] vkms_vblank_simulate: vblank timer overrun [ 410.607564][ C1] vkms_vblank_simulate: vblank timer overrun [ 410.762957][ C1] vkms_vblank_simulate: vblank timer overrun [ 410.942426][ C1] vkms_vblank_simulate: vblank timer overrun [ 411.951099][ T8519] delete_channel: no stack [ 413.332964][ T8536] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1082'. [ 413.420125][ T8529] loop0: detected capacity change from 0 to 32768 [ 413.465863][ T8529] BTRFS: device fsid 14d642db-7b15-43e4-81e6-4b8fac6a25f8 devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.1079 (8529) [ 413.489626][ T8529] BTRFS info (device loop0): first mount of filesystem 14d642db-7b15-43e4-81e6-4b8fac6a25f8 [ 413.500967][ T8529] BTRFS info (device loop0): using blake2b (blake2b-256-generic) checksum algorithm [ 413.511199][ T8529] BTRFS error (device loop0): superblock checksum mismatch [ 413.519654][ T8529] BTRFS error (device loop0): open_ctree failed: -22 [ 414.082950][ T8542] loop3: detected capacity change from 0 to 2048 [ 414.092751][ T8542] EXT4-fs: Ignoring removed mblk_io_submit option [ 414.203699][ T8542] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 414.245305][ T8550] atomic_op ffff8881182ced28 conn xmit_atomic 0000000000000000 [ 414.391134][ T5902] usb 2-1: new high-speed USB device number 11 using dummy_hcd [ 414.490536][ T5795] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 414.634536][ T5902] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 414.646083][ T5902] usb 2-1: New USB device found, idVendor=056a, idProduct=010d, bcdDevice= 0.00 [ 414.656168][ T5902] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 414.671037][ T5843] usb 1-1: new high-speed USB device number 5 using dummy_hcd [ 414.732738][ T5902] usb 2-1: config 0 descriptor?? [ 414.871159][ T5843] usb 1-1: Using ep0 maxpacket: 32 [ 414.938758][ T5843] usb 1-1: unable to get BOS descriptor or descriptor too short [ 414.975327][ T5843] usb 1-1: config 7 has an invalid interface number: 10 but max is 0 [ 414.984076][ T5843] usb 1-1: config 7 has no interface number 0 [ 414.996595][ T5843] usb 1-1: config 7 interface 10 has no altsetting 0 [ 415.112651][ T5843] usb 1-1: New USB device found, idVendor=046d, idProduct=08c2, bcdDevice=6b.a6 [ 415.123016][ T5843] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 415.131532][ T5843] usb 1-1: Product: syz [ 415.135942][ T5843] usb 1-1: Manufacturer: syz [ 415.141718][ T5843] usb 1-1: SerialNumber: syz [ 415.243198][ T5902] wacom 0003:056A:010D.0010: hidraw0: USB HID v0.00 Device [HID 056a:010d] on usb-dummy_hcd.1-1/input0 [ 415.336556][ T8569] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1095'. [ 415.346405][ T8569] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1095'. [ 415.392373][ T5902] usb 2-1: USB disconnect, device number 11 [ 415.475704][ T8568] loop3: detected capacity change from 0 to 8 [ 415.526418][ T5843] usb 1-1: USB disconnect, device number 5 [ 416.327896][ T8579] loop4: detected capacity change from 0 to 512 [ 416.546143][ T8579] EXT4-fs warning (device loop4): ext4_block_to_path:107: block 3279945729 > max in inode 13 [ 416.556989][ T8579] EXT4-fs warning (device loop4): ext4_block_to_path:107: block 3279945730 > max in inode 13 [ 416.579972][ T8579] EXT4-fs (loop4): 1 truncate cleaned up [ 416.587854][ T8579] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 416.987054][ T5790] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 417.881207][ T8605] loop3: detected capacity change from 0 to 4096 [ 418.286958][ T8605] ntfs3(loop3): failed to convert "0080" to cp864 [ 418.306065][ T8620] vivid-000: disconnect [ 418.311632][ T8619] vivid-000: reconnect [ 419.129852][ T8636] loop4: detected capacity change from 0 to 1024 [ 419.428265][ T4632] hfsplus: b-tree write err: -5, ino 4 [ 419.530329][ T8645] netdevsim netdevsim1 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0 [ 419.539790][ T8645] netdevsim netdevsim1 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0 [ 419.549016][ T8645] netdevsim netdevsim1 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0 [ 419.558240][ T8645] netdevsim netdevsim1 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0 [ 419.584350][ T8645] Zero length message leads to an empty skb [ 421.898950][ T8687] loop0: detected capacity change from 0 to 512 [ 422.057763][ T8687] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 422.080445][ T8687] ext4 filesystem being mounted at /240/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 422.509082][ T8702] loop4: detected capacity change from 0 to 1024 [ 422.595163][ T5801] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 422.911165][ T5797] Bluetooth: hci0: command 0x0405 tx timeout [ 423.031552][ T29] audit: type=1326 audit(1737610344.380:52): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8715 comm="syz.5.1161" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f148698cd29 code=0x7ffc0000 [ 423.141184][ T29] audit: type=1326 audit(1737610344.430:53): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8715 comm="syz.5.1161" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f148698cd29 code=0x7ffc0000 [ 423.164111][ T29] audit: type=1326 audit(1737610344.430:54): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8715 comm="syz.5.1161" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7f148698cd29 code=0x7ffc0000 [ 423.188220][ T29] audit: type=1326 audit(1737610344.430:55): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8715 comm="" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f148698cd29 code=0x7ffc0000 [ 423.210539][ T29] audit: type=1326 audit(1737610344.430:56): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8715 comm="" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f148698cd29 code=0x7ffc0000 [ 423.232650][ T29] audit: type=1326 audit(1737610344.430:57): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8715 comm="" exe="/root/syz-executor" sig=0 arch=c000003e syscall=117 compat=0 ip=0x7f148698cd29 code=0x7ffc0000 [ 423.254531][ T29] audit: type=1326 audit(1737610344.430:58): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8715 comm="" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f148698cd29 code=0x7ffc0000 [ 423.352206][ T8718] program syz.4.1162 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 424.152586][ T8735] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1170'. [ 426.399586][ T5902] kernel write not supported for file /sysvipc/msg (pid: 5902 comm: kworker/1:6) [ 426.951595][ T8791] loop5: detected capacity change from 0 to 64 [ 427.121229][ T29] audit: type=1800 audit(1737610348.480:59): pid=8791 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.1197" name="file1" dev="loop5" ino=18 res=0 errno=0 [ 427.462117][ T8800] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1202'. [ 427.471616][ T8800] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1202'. [ 428.179349][ T5843] hid-generic 0000:0000:0000.0011: item fetching failed at offset 0/1 [ 428.216707][ T5843] hid-generic 0000:0000:0000.0011: probe with driver hid-generic failed with error -22 [ 428.434790][ T8811] loop5: detected capacity change from 0 to 4096 [ 428.460346][ T8811] ntfs3(loop5): Different NTFS sector size (4096) and media sector size (512). [ 428.628938][ T8822] loop3: detected capacity change from 0 to 256 [ 428.744210][ T8811] ntfs3(loop5): Failed to initialize $Extend/$Reparse. [ 428.785372][ T8822] exfat: Deprecated parameter 'namecase' [ 428.861504][ T29] audit: type=1800 audit(1737610350.210:60): pid=8811 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.1208" name="file0" dev="loop5" ino=24 res=0 errno=0 [ 428.882590][ T29] audit: type=1804 audit(1737610350.240:61): pid=8826 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.5.1208" name="/newroot/201/file0/file0" dev="loop5" ino=24 res=1 errno=0 [ 428.948053][ T8822] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0xb5fb52fc, utbl_chksum : 0xe619d30d) [ 429.078777][ T29] audit: type=1326 audit(1737610350.280:62): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8828 comm="syz.0.1216" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff921b8cd29 code=0x7ffc0000 [ 429.102674][ T29] audit: type=1326 audit(1737610350.300:63): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8828 comm="syz.0.1216" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff921b8cd29 code=0x7ffc0000 [ 429.259879][ T6166] ntfs3(loop5): ino=1a, ntfs_sync_fs failed, -22. [ 429.284084][ T29] audit: type=1326 audit(1737610350.560:64): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8828 comm="syz.0.1216" exe="/root/syz-executor" sig=0 arch=c000003e syscall=206 compat=0 ip=0x7ff921b8cd29 code=0x7ffc0000 [ 429.306939][ T29] audit: type=1326 audit(1737610350.560:65): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8828 comm="syz.0.1216" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff921b8cd29 code=0x7ffc0000 [ 429.331500][ T29] audit: type=1326 audit(1737610350.560:66): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8828 comm="syz.0.1216" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff921b8cd29 code=0x7ffc0000 [ 430.725020][ T8854] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1227'. [ 434.231439][ T8904] loop5: detected capacity change from 0 to 4096 [ 434.385600][ T5902] IPVS: starting estimator thread 0... [ 434.501407][ T8913] IPVS: using max 240 ests per chain, 12000 per kthread [ 435.020051][ T8923] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1261'. [ 435.740515][ T8938] loop5: detected capacity change from 0 to 1024 [ 436.060196][ T13] hfsplus: b-tree write err: -5, ino 4 [ 436.316246][ T8950] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1273'. [ 436.326019][ T8950] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1273'. [ 437.253874][ T8965] netlink: 'syz.5.1281': attribute type 280 has an invalid length. [ 437.501089][ T5902] usb 2-1: new full-speed USB device number 12 using dummy_hcd [ 437.719626][ T5902] usb 2-1: config 0 interface 0 altsetting 132 endpoint 0x81 has an invalid bInterval 0, changing to 10 [ 437.731846][ T5902] usb 2-1: config 0 interface 0 altsetting 132 endpoint 0x81 has invalid wMaxPacketSize 0 [ 437.742227][ T5902] usb 2-1: config 0 interface 0 has no altsetting 0 [ 437.749800][ T5902] usb 2-1: New USB device found, idVendor=056a, idProduct=00b8, bcdDevice= 0.00 [ 437.759936][ T5902] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 438.001448][ T8972] loop0: detected capacity change from 0 to 4096 [ 438.173601][ T8972] NILFS (loop0): invalid segment: Checksum error in segment payload [ 438.182210][ T8972] NILFS (loop0): trying rollback from an earlier position [ 438.466996][ T8974] loop5: detected capacity change from 0 to 32768 [ 438.480253][ T5902] usb 2-1: config 0 descriptor?? [ 438.528895][ T8974] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop5 (7:5) scanned by syz.5.1285 (8974) [ 438.585830][ T8972] NILFS (loop0): recovery complete [ 438.601968][ T8974] BTRFS info (device loop5): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 438.612784][ T8974] BTRFS info (device loop5): using sha256 (sha256-generic) checksum algorithm [ 438.624703][ T8974] BTRFS info (device loop5): using free-space-tree [ 438.631669][ T8974] workqueue: max_active 4095 requested for btrfs-worker is out of range, clamping between 1 and 2048 [ 438.667466][ T8974] workqueue: max_active 4095 requested for btrfs-delalloc is out of range, clamping between 1 and 2048 [ 438.688572][ T8981] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 438.711459][ T8974] workqueue: max_active 4095 requested for btrfs-endio is out of range, clamping between 1 and 2048 [ 438.729122][ T8974] workqueue: max_active 4095 requested for btrfs-endio-meta is out of range, clamping between 1 and 2048 [ 438.760497][ T8974] workqueue: max_active 4095 requested for btrfs-rmw is out of range, clamping between 1 and 2048 [ 438.775742][ T8974] workqueue: max_active 4095 requested for btrfs-endio-write is out of range, clamping between 1 and 2048 [ 438.800157][ T8974] workqueue: max_active 4095 requested for btrfs-compressed-write is out of range, clamping between 1 and 2048 [ 439.009758][ T8974] BTRFS info (device loop5): rebuilding free space tree [ 439.119385][ T5902] wacom 0003:056A:00B8.0012: Unknown device_type for 'HID 056a:00b8'. Assuming pen. [ 439.200095][ T5902] wacom 0003:056A:00B8.0012: hidraw0: USB HID vff.ff Device [HID 056a:00b8] on usb-dummy_hcd.1-1/input0 [ 439.214644][ T5902] input: Wacom Intuos4 4x6 Pen as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/0003:056A:00B8.0012/input/input10 [ 439.342019][ T6166] BTRFS info (device loop5): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 439.464510][ T5902] usb 2-1: USB disconnect, device number 12 [ 439.814749][ T9002] netlink: 288 bytes leftover after parsing attributes in process `syz.3.1292'. [ 439.824362][ T9002] netlink: 44 bytes leftover after parsing attributes in process `syz.3.1292'. [ 440.428225][ T9012] loop4: detected capacity change from 0 to 16 [ 440.521777][ T9012] erofs (device loop4): mounted with root inode @ nid 36. [ 440.903098][ T9020] loop5: detected capacity change from 0 to 1024 [ 440.954724][ T9020] hfsplus: unable to change nls mapping [ 441.093057][ T9023] program syz.4.1302 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 443.027982][ T9055] loop4: detected capacity change from 0 to 64 [ 443.766776][ T9059] loop5: detected capacity change from 0 to 164 [ 446.687659][ T9083] program syz.1.1328 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 447.682500][ T9100] lo speed is unknown, defaulting to 1000 [ 447.688620][ T9100] lo speed is unknown, defaulting to 1000 [ 447.695959][ T9100] lo speed is unknown, defaulting to 1000 [ 447.713478][ T9100] iwpm_register_pid: Unable to send a nlmsg (client = 2) [ 447.750178][ T9100] infiniband syz2: RDMA CMA: cma_listen_on_dev, error -98 [ 447.842119][ T9100] lo speed is unknown, defaulting to 1000 [ 447.850468][ T9100] lo speed is unknown, defaulting to 1000 [ 447.866327][ T9100] lo speed is unknown, defaulting to 1000 [ 447.880032][ T9100] lo speed is unknown, defaulting to 1000 [ 447.932672][ T9100] lo speed is unknown, defaulting to 1000 [ 448.228369][ T9108] loop5: detected capacity change from 0 to 64 [ 448.583007][ T5843] usb 2-1: new high-speed USB device number 13 using dummy_hcd [ 448.762730][ T5843] usb 2-1: New USB device found, idVendor=056a, idProduct=0029, bcdDevice= 0.00 [ 448.772572][ T5843] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 448.820615][ T9122] loop5: detected capacity change from 0 to 64 [ 448.836040][ T5843] usb 2-1: config 0 descriptor?? [ 449.029186][ T9124] loop4: detected capacity change from 0 to 256 [ 449.272100][ T6166] hfs: node 4:3 still has 1 user(s)! [ 449.347175][ T5843] wacom 0003:056A:0029.0013: unknown main item tag 0x0 [ 449.354603][ T5843] wacom 0003:056A:0029.0013: unknown main item tag 0x0 [ 449.362039][ T5843] wacom 0003:056A:0029.0013: unknown main item tag 0x0 [ 449.369229][ T5843] wacom 0003:056A:0029.0013: unknown main item tag 0x0 [ 449.376651][ T5843] wacom 0003:056A:0029.0013: unknown main item tag 0x0 [ 449.447686][ T5843] wacom 0003:056A:0029.0013: Unknown device_type for 'HID 056a:0029'. Assuming pen. [ 449.492218][ T5843] wacom 0003:056A:0029.0013: hidraw0: USB HID v0.07 Device [HID 056a:0029] on usb-dummy_hcd.1-1/input0 [ 449.516425][ T5843] input: Wacom Intuos5 S Pen as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/0003:056A:0029.0013/input/input13 [ 449.614134][ T5843] usb 2-1: USB disconnect, device number 13 [ 449.639068][ T9126] loop3: detected capacity change from 0 to 4096 [ 449.693645][ T9126] ntfs3(loop3): Different NTFS sector size (1024) and media sector size (512). [ 449.841363][ T29] audit: type=1800 audit(1737610371.190:67): pid=9126 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.1349" name="file2" dev="loop3" ino=31 res=0 errno=0 [ 449.881193][ T5902] usb 5-1: new high-speed USB device number 3 using dummy_hcd [ 449.963013][ T9134] sp0: Synchronizing with TNC [ 449.976838][ T9133] [U] [ 450.104018][ T5902] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 450.117656][ T5902] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 450.128863][ T5902] usb 5-1: New USB device found, idVendor=1038, idProduct=1410, bcdDevice= 0.00 [ 450.138814][ T5902] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 450.193577][ T5902] usb 5-1: config 0 descriptor?? [ 450.428299][ T9138] loop0: detected capacity change from 0 to 512 [ 450.439819][ T9138] EXT4-fs: Ignoring removed nomblk_io_submit option [ 450.447562][ T9138] EXT4-fs: Ignoring removed mblk_io_submit option [ 450.552680][ T9138] EXT4-fs (loop0): Cannot turn on journaled quota: type 0: error -2 [ 450.562046][ T9138] EXT4-fs (loop0): Cannot turn on journaled quota: type 1: error -2 [ 450.613053][ T9144] program syz.1.1357 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 450.645284][ T5902] steelseries 0003:1038:1410.0014: item fetching failed at offset 5/7 [ 450.658336][ T5902] steelseries 0003:1038:1410.0014: parse failed [ 450.665466][ T5902] steelseries 0003:1038:1410.0014: probe with driver steelseries failed with error -22 [ 450.689453][ T9138] EXT4-fs (loop0): 1 truncate cleaned up [ 450.697919][ T9138] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 450.729402][ T9138] EXT4-fs error (device loop0): ext4_map_blocks:671: inode #2: block 4: comm syz.0.1356: lblock 0 mapped to illegal pblock 4 (length 1) [ 450.777259][ T9138] EXT4-fs (loop0): Remounting filesystem read-only [ 450.890065][ T5902] usb 5-1: USB disconnect, device number 3 [ 450.992019][ T5801] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 451.647719][ T9160] loop0: detected capacity change from 0 to 512 [ 451.720287][ T9160] EXT4-fs: Ignoring removed nobh option [ 451.879459][ T9160] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 451.892749][ T9160] ext4 filesystem being mounted at /284/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 452.277003][ T5801] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 453.017934][ T9188] IPVS: wrr: TCP 172.20.20.170:0 - no destination available [ 454.727812][ T9218] loop4: detected capacity change from 0 to 4096 [ 454.846887][ T9225] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 454.899137][ T9218] NILFS error (device loop4): nilfs_check_folio: bad entry in directory #2: rec_len is smaller than minimal - offset=4096, inode=0, rec_len=0, name_len=0 [ 454.969208][ T9218] Remounting filesystem read-only [ 454.974785][ T9218] NILFS error (device loop4): nilfs_readdir: bad page in #2 [ 455.287976][ T9235] tipc: Started in network mode [ 455.293426][ T9235] tipc: Node identity e0000002, cluster identity 4711 [ 455.301371][ T9235] tipc: Enabling of bearer rejected, failed to enable media [ 455.707833][ T29] audit: type=1326 audit(1737610377.070:68): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9240 comm="syz.3.1402" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcd4478cd29 code=0x7ffc0000 [ 455.731298][ T29] audit: type=1326 audit(1737610377.070:69): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9240 comm="syz.3.1402" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fcd4478cd29 code=0x7ffc0000 [ 455.759857][ T29] audit: type=1326 audit(1737610377.100:70): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9240 comm="syz.3.1402" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcd4478cd29 code=0x7ffc0000 [ 455.784639][ T29] audit: type=1326 audit(1737610377.100:71): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9240 comm="syz.3.1402" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcd4478cd29 code=0x7ffc0000 [ 455.807456][ T29] audit: type=1326 audit(1737610377.100:72): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9240 comm="syz.3.1402" exe="/root/syz-executor" sig=0 arch=c000003e syscall=210 compat=0 ip=0x7fcd4478cd29 code=0x7ffc0000 [ 455.830739][ T29] audit: type=1326 audit(1737610377.100:73): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9240 comm="syz.3.1402" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcd4478cd29 code=0x7ffc0000 [ 455.859219][ T29] audit: type=1326 audit(1737610377.100:74): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9240 comm="syz.3.1402" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcd4478cd29 code=0x7ffc0000 [ 456.119372][ T9247] loop0: detected capacity change from 0 to 512 [ 456.139519][ T9247] EXT4-fs: Ignoring removed orlov option [ 456.145735][ T9247] ext3: Unknown parameter 'dont_appraise' [ 457.017343][ T9264] tipc: Enabling of bearer rejected, failed to enable media [ 457.118775][ T9266] netlink: 260 bytes leftover after parsing attributes in process `syz.0.1414'. [ 457.128716][ T9266] netlink: 260 bytes leftover after parsing attributes in process `syz.0.1414'. [ 457.522665][ T9274] loop5: detected capacity change from 0 to 128 [ 457.646571][ T9270] loop4: detected capacity change from 0 to 4096 [ 457.723657][ T9270] NILFS (loop4): invalid segment: Checksum error in segment payload [ 457.732100][ T9270] NILFS (loop4): trying rollback from an earlier position [ 457.849467][ T9270] NILFS (loop4): recovery complete [ 457.868062][ T9279] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 458.574097][ T9294] loop0: detected capacity change from 0 to 8 [ 458.621584][ T9295] loop5: detected capacity change from 0 to 512 [ 458.665143][ T9294] SQUASHFS error: Unable to read inode 0xa7 [ 458.772798][ T9295] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 458.786497][ T9295] ext4 filesystem being mounted at /243/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 459.107344][ T9304] [U] [ 459.163655][ T6166] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 459.591495][ T9314] netlink: 40 bytes leftover after parsing attributes in process `syz.0.1436'. [ 459.927135][ T9320] loop3: detected capacity change from 0 to 16 [ 460.837919][ T9321] loop5: detected capacity change from 0 to 40427 [ 460.887634][ T9321] F2FS-fs (loop5): Invalid log_blocksize (268), supports only 12 [ 460.895844][ T9321] F2FS-fs (loop5): Can't find valid F2FS filesystem in 1th superblock [ 460.905184][ T9321] F2FS-fs (loop5): Invalid segment count (100663327) [ 460.912311][ T9321] F2FS-fs (loop5): Can't find valid F2FS filesystem in 2th superblock [ 461.437941][ T9337] loop3: detected capacity change from 0 to 2048 [ 461.470121][ T9337] UDF-fs: error (device loop3): udf_read_tagged: tag version 0x0000 != 0x0002 || 0x0003, block 0 [ 461.511042][ T9337] UDF-fs: warning (device loop3): udf_load_vrs: No anchor found [ 461.519027][ T9337] UDF-fs: Scanning with blocksize 512 failed [ 461.705706][ T9337] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 461.819656][ T29] audit: type=1800 audit(1737610383.180:75): pid=9337 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.1447" name="bus" dev="loop3" ino=851 res=0 errno=0 [ 462.080252][ T9345] loop4: detected capacity change from 0 to 512 [ 462.123632][ T9345] EXT4-fs: Ignoring removed orlov option [ 462.179483][ T9345] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 462.308305][ T9345] EXT4-fs (loop4): 1 orphan inode deleted [ 462.314992][ T9345] EXT4-fs (loop4): 1 truncate cleaned up [ 462.322624][ T9345] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 462.707684][ T5790] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 463.598010][ T9376] tipc: Started in network mode [ 463.603644][ T9376] tipc: Node identity aaaaaaaaaa41, cluster identity 4711 [ 463.612818][ T9376] tipc: Enabled bearer , priority 10 [ 464.107823][ T9388] loop3: detected capacity change from 0 to 512 [ 464.141576][ T9388] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 464.220482][ T9388] EXT4-fs (loop3): 1 truncate cleaned up [ 464.228327][ T9388] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 464.382769][ T5795] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 464.511601][ T5902] usb 5-1: new high-speed USB device number 4 using dummy_hcd [ 464.726374][ T5902] usb 5-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3 [ 464.731112][ T5843] tipc: Node number set to 15444650 [ 464.735902][ T5902] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 464.801039][ T5902] usb 5-1: config 0 descriptor?? [ 464.815110][ T5902] cp210x 5-1:0.0: cp210x converter detected [ 465.281467][ T5902] usb 5-1: cp210x converter now attached to ttyUSB0 [ 465.419914][ T9412] IPVS: sync thread started: state = BACKUP, mcast_ifn = vlan0, syncid = 3, id = 0 [ 465.485876][ T5902] usb 5-1: USB disconnect, device number 4 [ 465.533696][ T5902] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0 [ 465.596381][ T5902] cp210x 5-1:0.0: device disconnected [ 465.679773][ T9407] loop3: detected capacity change from 0 to 8192 [ 465.722048][ T9407] FAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 466.264407][ T9422] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET. [ 466.540474][ T9428] loop4: detected capacity change from 0 to 164 [ 466.634506][ T9430] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1487'. [ 466.689645][ T9428] syz.4.1490: attempt to access beyond end of device [ 466.689645][ T9428] loop4: rw=524288, sector=5188959824, nr_sectors = 24 limit=164 [ 466.713169][ T9428] syz.4.1490: attempt to access beyond end of device [ 466.713169][ T9428] loop4: rw=0, sector=5188959824, nr_sectors = 8 limit=164 [ 466.752665][ T29] audit: type=1800 audit(1737610388.100:76): pid=9428 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.1490" name="/" dev="loop4" ino=2055 res=0 errno=0 [ 467.699135][ T9454] block nbd4: NBD_DISCONNECT [ 467.950548][ T9456] netlink: 'syz.0.1503': attribute type 2 has an invalid length. [ 467.958798][ T9456] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1503'. [ 468.053559][ T9458] netlink: 'syz.1.1504': attribute type 16 has an invalid length. [ 468.061944][ T9458] netlink: 64122 bytes leftover after parsing attributes in process `syz.1.1504'. [ 468.216457][ T9462] netlink: 12 bytes leftover after parsing attributes in process `syz.5.1506'. [ 468.905969][ T9477] netlink: 64 bytes leftover after parsing attributes in process `syz.4.1513'. [ 469.020976][ T5843] usb 1-1: new high-speed USB device number 6 using dummy_hcd [ 469.283532][ T5843] usb 1-1: New USB device found, idVendor=0c45, idProduct=6005, bcdDevice=b5.55 [ 469.293205][ T5843] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 469.301795][ T5843] usb 1-1: Product: syz [ 469.306172][ T5843] usb 1-1: Manufacturer: syz [ 469.311172][ T5843] usb 1-1: SerialNumber: syz [ 469.447491][ T5843] usb 1-1: config 0 descriptor?? [ 469.509008][ T5843] gspca_main: sonixb-2.14.0 probing 0c45:6005 [ 469.922361][ T9488] loop4: detected capacity change from 0 to 2048 [ 469.939613][ T5843] input: sonixb as /devices/platform/dummy_hcd.0/usb1/1-1/input/input16 [ 470.022479][ T9488] NILFS error (device loop4): nilfs_bmap_lookup_at_level: broken bmap (inode number=6) [ 470.033129][ T9492] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 470.050630][ T9488] Remounting filesystem read-only [ 470.137136][ T1277] ieee802154 phy0 wpan0: encryption failed: -22 [ 470.144029][ T1277] ieee802154 phy1 wpan1: encryption failed: -22 [ 470.171890][ T5902] usb 1-1: USB disconnect, device number 6 [ 471.155348][ T9505] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1527'. [ 471.164866][ T9505] nbd: socks must be embedded in a SOCK_ITEM attr [ 471.772146][ T9507] loop5: detected capacity change from 0 to 32768 [ 471.785718][ T9507] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop5 (7:5) scanned by syz.5.1528 (9507) [ 471.814946][ T9507] BTRFS info (device loop5): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 471.832318][ T9507] BTRFS info (device loop5): using sha256 (sha256-generic) checksum algorithm [ 472.132639][ T9507] BTRFS info (device loop5): rebuilding free space tree [ 472.187734][ T9507] BTRFS info (device loop5): disabling free space tree [ 472.195508][ T9507] BTRFS info (device loop5): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1) [ 472.202022][ T5797] Bluetooth: hci0: command 0x0405 tx timeout [ 472.205891][ T9507] BTRFS info (device loop5): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2) [ 472.275510][ T9507] BTRFS info (device loop5): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 472.610653][ T9541] netlink: 84 bytes leftover after parsing attributes in process `syz.0.1535'. [ 472.805238][ T9545] loop3: detected capacity change from 0 to 256 [ 473.213199][ T29] audit: type=1326 audit(1737610394.580:77): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9546 comm="syz.4.1539" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f0d9378cd29 code=0x0 [ 474.568305][ T9576] netlink: 'syz.1.1552': attribute type 12 has an invalid length. [ 475.182197][ T9590] loop3: detected capacity change from 0 to 512 [ 475.255007][ T9590] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 475.394261][ T9590] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 475.409766][ T9590] ext4 filesystem being mounted at /298/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 475.453833][ T9595] binder: 9593:9595 ioctl 400c620e 20000040 returned -22 [ 475.937748][ T5795] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 475.986407][ T9609] team0: entered promiscuous mode [ 475.992611][ T9609] team_slave_0: entered promiscuous mode [ 476.000933][ T9609] team_slave_1: entered promiscuous mode [ 476.015062][ T9611] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE [ 476.022838][ T9611] IPv6: NLM_F_CREATE should be set when creating new route [ 476.030238][ T9611] IPv6: NLM_F_CREATE should be set when creating new route [ 476.082142][ T9607] team0: left promiscuous mode [ 476.087160][ T9607] team_slave_0: left promiscuous mode [ 476.093689][ T9607] team_slave_1: left promiscuous mode [ 476.294423][ T5843] IPVS: starting estimator thread 0... [ 476.401721][ T9616] IPVS: using max 240 ests per chain, 12000 per kthread [ 476.622274][ T9621] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1572'. [ 476.638736][ T9621] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1572'. [ 476.648880][ T5902] usb 6-1: new high-speed USB device number 8 using dummy_hcd [ 476.658490][ T9621] netlink: 'syz.0.1572': attribute type 11 has an invalid length. [ 476.831134][ T5902] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 476.844090][ T5902] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 476.854865][ T5902] usb 6-1: New USB device found, idVendor=09da, idProduct=022b, bcdDevice= 0.00 [ 476.864301][ T5902] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 476.883636][ T5902] usb 6-1: config 0 descriptor?? [ 477.171088][ T9630] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1575'. [ 477.315525][ T5902] a4tech 0003:09DA:022B.0015: invalid report_count 36114 [ 477.323447][ T5902] a4tech 0003:09DA:022B.0015: item 0 2 1 9 parsing failed [ 477.386549][ T5902] a4tech 0003:09DA:022B.0015: parse failed [ 477.393215][ T5902] a4tech 0003:09DA:022B.0015: probe with driver a4tech failed with error -22 [ 477.531419][ T5902] usb 6-1: USB disconnect, device number 8 [ 477.881205][ T5843] usb 1-1: new high-speed USB device number 7 using dummy_hcd [ 478.038459][ T9646] lo speed is unknown, defaulting to 1000 [ 478.101009][ T9649] loop4: detected capacity change from 0 to 1024 [ 478.193020][ T5843] usb 1-1: Using ep0 maxpacket: 16 [ 478.226245][ T5843] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 0 [ 478.239980][ T5843] usb 1-1: New USB device found, idVendor=05ac, idProduct=0244, bcdDevice= 0.00 [ 478.249602][ T5843] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 478.366168][ T5843] usb 1-1: config 0 descriptor?? [ 478.440137][ T5843] input: bcm5974 as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/input/input17 [ 478.604179][ T5127] bcm5974 1-1:0.0: could not read from device [ 478.623019][ T5843] bcm5974 1-1:0.0: could not read from device [ 478.729508][ T5843] input: failed to attach handler mousedev to device input17, error: -5 [ 478.744093][ T5127] bcm5974 1-1:0.0: could not read from device [ 478.786304][ T5902] usb 6-1: new high-speed USB device number 9 using dummy_hcd [ 478.812662][ T5843] usb 1-1: USB disconnect, device number 7 [ 478.980477][ T5902] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 478.994794][ T5902] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 479.005510][ T5902] usb 6-1: New USB device found, idVendor=056a, idProduct=0307, bcdDevice= 0.00 [ 479.015041][ T5902] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 479.117046][ T5902] usb 6-1: config 0 descriptor?? [ 479.578210][ T5902] wacom 0003:056A:0307.0016: unknown main item tag 0x0 [ 479.585632][ T5902] wacom 0003:056A:0307.0016: unknown main item tag 0x0 [ 479.593210][ T5902] wacom 0003:056A:0307.0016: unknown main item tag 0x0 [ 479.603080][ T5902] wacom 0003:056A:0307.0016: unknown main item tag 0x0 [ 479.610242][ T5902] wacom 0003:056A:0307.0016: unknown main item tag 0x0 [ 479.619783][ T5902] wacom 0003:056A:0307.0016: unknown main item tag 0x0 [ 479.627244][ T5902] wacom 0003:056A:0307.0016: unknown main item tag 0x0 [ 479.761465][ T5902] wacom 0003:056A:0307.0016: hidraw0: USB HID v0.00 Device [HID 056a:0307] on usb-dummy_hcd.5-1/input0 [ 479.816824][ T9669] loop0: detected capacity change from 0 to 256 [ 479.837029][ T5843] usb 6-1: USB disconnect, device number 9 [ 479.872012][ T9669] exFAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 479.883209][ T9669] exFAT-fs (loop0): Medium has reported failures. Some data may be lost. [ 480.024790][ T9669] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d) [ 480.897355][ T9687] program syz.4.1600 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 480.958664][ T9689] loop0: detected capacity change from 0 to 24 [ 481.203239][ T9692] loop5: detected capacity change from 0 to 256 [ 481.377535][ T9692] exFAT-fs (loop5): failed to load upcase table (idx : 0x00010000, chksum : 0x5441951d, utbl_chksum : 0xe619d30d) [ 481.503621][ T9695] netlink: 'syz.0.1606': attribute type 10 has an invalid length. [ 481.917307][ T9701] loop4: detected capacity change from 0 to 64 [ 482.231466][ T3555] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 482.303977][ T3555] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 482.368368][ T3555] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 482.488755][ T3555] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 482.828448][ T3555] bridge_slave_1: left allmulticast mode [ 482.834559][ T3555] bridge_slave_1: left promiscuous mode [ 482.841396][ T3555] bridge0: port 2(bridge_slave_1) entered disabled state [ 482.973285][ T3555] bridge_slave_0: left allmulticast mode [ 482.981757][ T3555] bridge_slave_0: left promiscuous mode [ 482.988343][ T3555] bridge0: port 1(bridge_slave_0) entered disabled state [ 483.298870][ T9720] netlink: 236 bytes leftover after parsing attributes in process `syz.4.1617'. [ 483.509127][ T3555] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 483.548548][ T3555] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 483.576868][ T3555] bond0 (unregistering): Released all slaves [ 483.734155][ T3555] tipc: Left network mode [ 484.033532][ T3555] hsr_slave_0: left promiscuous mode [ 484.051718][ T3555] hsr_slave_1: left promiscuous mode [ 484.065284][ T3555] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 484.075269][ T3555] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 484.113490][ T3555] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 484.121430][ T3555] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 484.176912][ T3555] veth1_macvtap: left promiscuous mode [ 484.182786][ T3555] veth0_macvtap: left promiscuous mode [ 484.188698][ T3555] veth1_vlan: left promiscuous mode [ 484.194540][ T3555] veth0_vlan: left promiscuous mode [ 485.158502][ T3555] team0 (unregistering): Port device team_slave_1 removed [ 485.235607][ T3555] team0 (unregistering): Port device team_slave_0 removed [ 485.927690][ T5797] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 485.954764][ T5797] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 485.965907][ T5797] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 486.041984][ T5797] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 486.067402][ T5797] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 486.081391][ T5797] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 486.198517][ T9736] lo speed is unknown, defaulting to 1000 [ 486.534192][ T9741] loop4: detected capacity change from 0 to 64 [ 486.547720][ T9745] loop0: detected capacity change from 0 to 512 [ 486.618018][ T9745] EXT4-fs (loop0): Test dummy encryption mode enabled [ 486.706416][ T9745] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=e842e02c, mo2=0002] [ 486.749858][ T9745] System zones: 1-12 [ 486.806593][ T9745] EXT4-fs error (device loop0): ext4_get_branch:178: inode #13: block 33619980: comm syz.0.1628: invalid block [ 486.901316][ T9745] EXT4-fs (loop0): Remounting filesystem read-only [ 486.924303][ T9745] EXT4-fs (loop0): 1 truncate cleaned up [ 486.933433][ T9745] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 487.046099][ T9736] chnl_net:caif_netlink_parms(): no params data found [ 487.258530][ T5843] usb 2-1: new high-speed USB device number 14 using dummy_hcd [ 487.315917][ T5801] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 487.440102][ T5843] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 487.452582][ T5843] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 487.463450][ T5843] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 487.476966][ T5843] usb 2-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 487.490655][ T5843] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 487.573137][ T5843] usb 2-1: config 0 descriptor?? [ 487.626545][ T9760] loop0: detected capacity change from 0 to 16 [ 487.693052][ T9760] erofs (device loop0): mounted with root inode @ nid 36. [ 487.741117][ T29] audit: type=1800 audit(1737610409.100:78): pid=9760 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.1633" name="file1" dev="loop0" ino=86 res=0 errno=0 [ 488.070308][ T5843] plantronics 0003:047F:FFFF.0017: unknown main item tag 0x0 [ 488.078213][ T5843] plantronics 0003:047F:FFFF.0017: unknown main item tag 0x0 [ 488.086090][ T5843] plantronics 0003:047F:FFFF.0017: unknown main item tag 0x0 [ 488.094032][ T5843] plantronics 0003:047F:FFFF.0017: unknown main item tag 0x0 [ 488.191336][ T5797] Bluetooth: hci0: command tx timeout [ 488.224931][ T9736] bridge0: port 1(bridge_slave_0) entered blocking state [ 488.232829][ T9736] bridge0: port 1(bridge_slave_0) entered disabled state [ 488.240583][ T9736] bridge_slave_0: entered allmulticast mode [ 488.249927][ T9736] bridge_slave_0: entered promiscuous mode [ 488.331194][ T5843] plantronics 0003:047F:FFFF.0017: No inputs registered, leaving [ 488.354230][ T9736] bridge0: port 2(bridge_slave_1) entered blocking state [ 488.362339][ T9736] bridge0: port 2(bridge_slave_1) entered disabled state [ 488.370065][ T9736] bridge_slave_1: entered allmulticast mode [ 488.379125][ T9736] bridge_slave_1: entered promiscuous mode [ 488.400168][ T5843] plantronics 0003:047F:FFFF.0017: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.1-1/input0 [ 488.503057][ T5843] usb 2-1: USB disconnect, device number 14 [ 488.534226][ T9769] loop4: detected capacity change from 0 to 512 [ 488.592661][ T9736] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 488.616997][ T9736] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 488.783384][ T9769] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 488.796716][ T9769] ext4 filesystem being mounted at /350/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 488.898151][ T9736] team0: Port device team_slave_0 added [ 488.968415][ T9736] team0: Port device team_slave_1 added [ 489.209995][ T9736] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 489.217611][ T9736] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 489.250097][ T9736] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 489.323427][ T9736] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 489.335917][ T9736] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 489.364113][ T9736] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 489.423271][ T5790] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 489.818094][ T9736] hsr_slave_0: entered promiscuous mode [ 489.827982][ T9736] hsr_slave_1: entered promiscuous mode [ 489.836756][ T9736] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 489.850270][ T9736] Cannot create hsr debugfs directory [ 489.886083][ T9785] program syz.3.1644 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 490.013680][ T9790] loop0: detected capacity change from 0 to 128 [ 490.271490][ T5797] Bluetooth: hci0: command tx timeout [ 491.255534][ T9736] netdevsim netdevsim6 netdevsim0: renamed from eth0 [ 491.338320][ T9736] netdevsim netdevsim6 netdevsim1: renamed from eth1 [ 491.415585][ T9736] netdevsim netdevsim6 netdevsim2: renamed from eth2 [ 491.474494][ T9736] netdevsim netdevsim6 netdevsim3: renamed from eth3 [ 491.542830][ T9811] netlink: 'syz.0.1656': attribute type 18 has an invalid length. [ 491.680566][ T9812] loop3: detected capacity change from 0 to 1024 [ 491.731183][ T5856] usb 5-1: new high-speed USB device number 5 using dummy_hcd [ 491.923741][ T5856] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 491.934277][ T5856] usb 5-1: New USB device found, idVendor=0c45, idProduct=760b, bcdDevice= 0.00 [ 491.943771][ T5856] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 492.024211][ T5856] usb 5-1: config 0 descriptor?? [ 492.141915][ T3555] hfsplus: b-tree write err: -5, ino 4 [ 492.361697][ T5797] Bluetooth: hci0: command tx timeout [ 492.571558][ T9736] 8021q: adding VLAN 0 to HW filter on device bond0 [ 492.673117][ T5856] redragon 0003:0C45:760B.0018: unknown main item tag 0x0 [ 492.680586][ T5856] redragon 0003:0C45:760B.0018: unknown main item tag 0x0 [ 492.688420][ T5856] redragon 0003:0C45:760B.0018: unknown main item tag 0x0 [ 492.696090][ T5856] redragon 0003:0C45:760B.0018: unknown main item tag 0x0 [ 492.703598][ T5856] redragon 0003:0C45:760B.0018: unknown main item tag 0x0 [ 492.741420][ T9736] 8021q: adding VLAN 0 to HW filter on device team0 [ 492.742912][ T9821] loop3: detected capacity change from 0 to 256 [ 492.790116][ T4632] bridge0: port 1(bridge_slave_0) entered blocking state [ 492.797842][ T4632] bridge0: port 1(bridge_slave_0) entered forwarding state [ 492.861771][ T5856] redragon 0003:0C45:760B.0018: hidraw0: USB HID ve.4e Device [HID 0c45:760b] on usb-dummy_hcd.4-1/input0 [ 492.909816][ T4632] bridge0: port 2(bridge_slave_1) entered blocking state [ 492.917530][ T4632] bridge0: port 2(bridge_slave_1) entered forwarding state [ 492.962501][ T5856] usb 5-1: USB disconnect, device number 5 [ 493.169448][ T9736] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 493.706026][ T9831] loop3: detected capacity change from 0 to 128 [ 493.773213][ T9831] VFS: Found a Xenix FS (block size = 512) on device loop3 [ 493.820220][ T9831] syz.3.1663: attempt to access beyond end of device [ 493.820220][ T9831] loop3: rw=0, sector=8767744, nr_sectors = 1 limit=128 [ 493.840124][ T9831] sysv_free_block: trying to free block not in datazone [ 494.211343][ T5795] sysv_free_inode: inode 0,1,2 or nonexistent inode [ 494.461876][ T5797] Bluetooth: hci0: command tx timeout [ 494.535975][ T9736] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 496.631527][ T9736] veth0_vlan: entered promiscuous mode [ 496.726740][ T9736] veth1_vlan: entered promiscuous mode [ 496.934574][ T9736] veth0_macvtap: entered promiscuous mode [ 496.986004][ T9736] veth1_macvtap: entered promiscuous mode [ 497.147563][ T9736] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 497.159290][ T9736] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 497.169583][ T9736] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 497.186036][ T9736] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 497.196399][ T9736] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 497.207479][ T9736] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 497.223049][ T9736] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 497.235626][ T9736] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 497.250475][ T9736] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 497.528006][ T9736] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 497.538861][ T9736] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 497.549085][ T9736] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 497.560039][ T9736] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 497.570293][ T9736] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 497.581116][ T9736] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 497.591580][ T9736] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 497.602802][ T9736] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 497.617889][ T9736] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 497.838935][ T9892] ===================================================== [ 497.847762][ T9892] BUG: KMSAN: uninit-value in nsim_get_ringparam+0xa8/0xe0 [ 497.856319][ T9892] nsim_get_ringparam+0xa8/0xe0 [ 497.862334][ T9892] ethtool_set_ringparam+0x268/0x570 [ 497.867813][ T9892] dev_ethtool+0x126d/0x2a40 [ 497.875119][ T9892] dev_ioctl+0xb0e/0x1280 [ 497.879642][ T9892] sock_do_ioctl+0x28c/0x540 [ 497.885484][ T9892] sock_ioctl+0x721/0xd70 [ 497.890012][ T9892] __se_sys_ioctl+0x246/0x440 [ 497.895874][ T9892] __x64_sys_ioctl+0x96/0xe0 [ 497.901789][ T9892] x64_sys_call+0x19f0/0x3c30 [ 497.906696][ T9892] do_syscall_64+0xcd/0x1e0 [ 497.912267][ T9892] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 497.918406][ T9892] [ 497.921119][ T9892] Local variable kernel_ringparam created at: [ 497.927303][ T9892] ethtool_set_ringparam+0x96/0x570 [ 497.935058][ T9892] dev_ethtool+0x126d/0x2a40 [ 497.939885][ T9892] [ 497.942967][ T9892] CPU: 1 UID: 0 PID: 9892 Comm: syz.4.1688 Not tainted 6.13.0-syzkaller-04788-g7004a2e46d16 #0 [ 497.953697][ T9892] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 497.964104][ T9892] ===================================================== [ 497.971300][ T9892] Disabling lock debugging due to kernel taint [ 497.977596][ T9892] Kernel panic - not syncing: kmsan.panic set ... [ 497.984154][ T9892] CPU: 1 UID: 0 PID: 9892 Comm: syz.4.1688 Tainted: G B 6.13.0-syzkaller-04788-g7004a2e46d16 #0 [ 497.996161][ T9892] Tainted: [B]=BAD_PAGE [ 498.000411][ T9892] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 498.010612][ T9892] Call Trace: [ 498.013996][ T9892] [ 498.017026][ T9892] dump_stack_lvl+0x216/0x2d0 [ 498.021904][ T9892] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 498.027894][ T9892] dump_stack+0x1e/0x24 [ 498.032232][ T9892] panic+0x4e2/0xcf0 [ 498.036318][ T9892] ? kmsan_get_metadata+0xf1/0x1c0 [ 498.041620][ T9892] kmsan_report+0x2c7/0x2d0 [ 498.046308][ T9892] ? filter_irq_stacks+0x60/0x1a0 [ 498.051539][ T9892] ? __msan_warning+0x95/0x120 [ 498.056466][ T9892] ? nsim_get_ringparam+0xa8/0xe0 [ 498.061645][ T9892] ? ethtool_set_ringparam+0x268/0x570 [ 498.067275][ T9892] ? dev_ethtool+0x126d/0x2a40 [ 498.072276][ T9892] ? dev_ioctl+0xb0e/0x1280 [ 498.076958][ T9892] ? sock_do_ioctl+0x28c/0x540 [ 498.081932][ T9892] ? sock_ioctl+0x721/0xd70 [ 498.086633][ T9892] ? __se_sys_ioctl+0x246/0x440 [ 498.091683][ T9892] ? __x64_sys_ioctl+0x96/0xe0 [ 498.096643][ T9892] ? x64_sys_call+0x19f0/0x3c30 [ 498.101694][ T9892] ? do_syscall_64+0xcd/0x1e0 [ 498.106531][ T9892] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 498.112822][ T9892] ? kmsan_get_metadata+0x13e/0x1c0 [ 498.118202][ T9892] ? kmsan_internal_set_shadow_origin+0x69/0x100 [ 498.124758][ T9892] ? kmsan_get_metadata+0x13e/0x1c0 [ 498.130125][ T9892] ? kmsan_internal_set_shadow_origin+0x69/0x100 [ 498.136691][ T9892] ? kmsan_get_metadata+0x13e/0x1c0 [ 498.142079][ T9892] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 498.148083][ T9892] ? kmsan_get_metadata+0x13e/0x1c0 [ 498.153461][ T9892] ? kmsan_internal_memmove_metadata+0x91/0x230 [ 498.159927][ T9892] ? kmsan_get_metadata+0x13e/0x1c0 [ 498.165296][ T9892] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 498.171284][ T9892] __msan_warning+0x95/0x120 [ 498.176026][ T9892] nsim_get_ringparam+0xa8/0xe0 [ 498.181032][ T9892] ? __pfx_nsim_set_ringparam+0x10/0x10 [ 498.186733][ T9892] ? __pfx_nsim_get_ringparam+0x10/0x10 [ 498.192438][ T9892] ethtool_set_ringparam+0x268/0x570 [ 498.197890][ T9892] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 498.203909][ T9892] dev_ethtool+0x126d/0x2a40 [ 498.208727][ T9892] dev_ioctl+0xb0e/0x1280 [ 498.213224][ T9892] sock_do_ioctl+0x28c/0x540 [ 498.218028][ T9892] sock_ioctl+0x721/0xd70 [ 498.222563][ T9892] ? __pfx_sock_ioctl+0x10/0x10 [ 498.227607][ T9892] __se_sys_ioctl+0x246/0x440 [ 498.232494][ T9892] __x64_sys_ioctl+0x96/0xe0 [ 498.237296][ T9892] x64_sys_call+0x19f0/0x3c30 [ 498.242192][ T9892] do_syscall_64+0xcd/0x1e0 [ 498.246863][ T9892] ? clear_bhb_loop+0x25/0x80 [ 498.251705][ T9892] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 498.257833][ T9892] RIP: 0033:0x7f0d9378cd29 [ 498.262383][ T9892] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 498.282198][ T9892] RSP: 002b:00007f0d94520038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 498.290795][ T9892] RAX: ffffffffffffffda RBX: 00007f0d939a5fa0 RCX: 00007f0d9378cd29 [ 498.298914][ T9892] RDX: 0000000020000080 RSI: 0000000000008946 RDI: 0000000000000003 [ 498.307018][ T9892] RBP: 00007f0d9380e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 498.315119][ T9892] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 498.323229][ T9892] R13: 0000000000000000 R14: 00007f0d939a5fa0 R15: 00007fff69569a88 [ 498.331359][ T9892] [ 498.334768][ T9892] Kernel Offset: disabled [ 498.339154][ T9892] Rebooting in 86400 seconds..