last executing test programs: 4m51.877535642s ago: executing program 4 (id=5505): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000980)={0x0, 0x0, &(0x7f0000000840)={&(0x7f0000000740)=ANY=[@ANYBLOB="2c0000002100010000000000000000000a00004000000000000000000500160000000000080017"], 0x2c}}, 0x0) 4m51.19137977s ago: executing program 4 (id=5510): capset(&(0x7f0000000100)={0x20071026}, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x81, 0xfffffffb, 0x3}) bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x1, 0xe, &(0x7f0000000680)=ANY=[@ANYBLOB="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"/2663], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0xfffffffffffffd00, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48) 4m50.5696845s ago: executing program 4 (id=5515): creat(&(0x7f00000001c0)='./file0\x00', 0x0) lsetxattr$system_posix_acl(&(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='system.posix_acl_access\x00', &(0x7f00000002c0)={{}, {0x8}}, 0x24, 0x0) 4m49.877760961s ago: executing program 4 (id=5520): syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x200000, &(0x7f0000000b80)={[{@nombcache}, {@abort}, {@dioread_lock}, {@norecovery}, {@discard}, {@lazytime}, {@noload}, {@usrquota}, {@noauto_da_alloc}]}, 0xfe, 0x558, &(0x7f0000000c00)="$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") mount$overlay(0x0, &(0x7f00000003c0)='./file0\x00', &(0x7f0000000380), 0x0, &(0x7f00000002c0)={[{@workdir={'workdir', 0x3d, './file1'}}, {@upperdir={'upperdir', 0x3d, './file0'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}], [], 0x2c}) 4m48.367917448s ago: executing program 4 (id=5528): r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000b40)={0x14, 0x3e, 0x9, 0x4080000, 0x0, {0x3}}, 0x14}}, 0x0) 4m47.22350237s ago: executing program 4 (id=5533): r0 = socket(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000740)=ANY=[@ANYBLOB="1c00000052000100000000000000000002"], 0x1c}, 0x1, 0x0, 0x0, 0x40808}, 0x0) 4m45.599086301s ago: executing program 32 (id=5533): r0 = socket(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000740)=ANY=[@ANYBLOB="1c00000052000100000000000000000002"], 0x1c}, 0x1, 0x0, 0x0, 0x40808}, 0x0) 4.375942447s ago: executing program 2 (id=7223): r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$FBIOPUTCMAP(r0, 0x4605, &(0x7f0000000400)={0x3, 0x3, &(0x7f00000000c0)=[0x2, 0xff, 0x4], &(0x7f0000000100), &(0x7f0000000140), 0x0}) 4.01490855s ago: executing program 1 (id=7226): openat(0xffffffffffffff9c, &(0x7f0000000140)='./cgroup.cpu/cgroup.procs\x00', 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup.cpu/cgroup.procs\x00', 0x0, 0x110) 3.932089568s ago: executing program 3 (id=7227): r0 = socket$kcm(0xa, 0x2, 0x73) sendmsg$inet(r0, &(0x7f0000001180)={&(0x7f0000000000)={0xa, 0x0, @multicast2}, 0x3c, &(0x7f0000001080)=[{&(0x7f0000000040)="a72d11a15c068c0a7d2eaebc5cea1f81510ff6091475aeec600831aa9d3944e60bc2ad06a619c560aa0118b28f68f1eb14549d633b4b23f179fb680716faa43414787559be90843c35ab30acad8a6740140e00721abc2eb362f7bde53b3c992d3e28ccc20ec84fdc569947047f6c09a647ee8c0a747b951e66c068ccf1af93ee9e6f9528ff79e2f989383b05a690a6bec4634b867c9446c1c644b3010e8a3514c6328323b4bbdd602b8f0dace6aea70902c4ddd2a2f2810f1348b0d0df3c1e6a5938fcfdc87e7580c6be0c6a06eca62d6f787dd16add086a21391c4c707d8b61929d1252681b84c245e0efafe2e6e73ad86a3cf59235ab0eacbb414af92ec3cdac420a064a98e8cc18bdf63f8997f96436e0fe6f06fdbf47fff353b01a861babd4a38d126bfe3e29049e6cc883e6efae6e70ef9ed124b1b09887a58c991e223b6420dca5ae238027e91b17b1707dc5c0d5f59f0ca95614f1ea1d263c1ee54dfe31ae35eb3c8e3b931dff7920c57fbba89adf2e392c1ad719b90c7ade0d38ff9792934ef1fb12f51d8e2fad12486d5883d5b1a46696fad128c6805cfb25bc6487e1e407d6b266971b09d0d864a7a550284e24b6cdc9f4ae1081a638175dffef002c76ac5558d23e41edbe68f4b4950a13aa000326dae5a857603dc5a40d6c6618a98c7b6e1eebd325ea2c14601a25658965f40864fd015d9b2fff83ee5ed3212ebd9fa429f0140f633556ac07c0c08e67a1848c9942ecc47dd4ffede9a429e9e0472be7cdbcd117e621ddf745c00a814ffff0224634472577dc0b35a9c153409f1a2bddc193b20b4d244d9cbbd59816c46000c596865f58b4e640ed4a9ab6086cede697fb113560925498da83273e679e0e28b84961eb7b9c9b4fa916590965c76b48e5d453f27a821bd2bf0946ff2413ec30f7893d1f046e18f736c40ceda26dfc4a0a62f71a3606d3f72c0a858dfd7895e2572292e11af913c6b513a141d28e501ae7c49618d104aac9abb78466a636efb88120d0eef0a501558a5aa34784a9823f2802a0bcdf318f9b436b34b42a2a7cf513f80364ad9a699d2e23eb4f3a2bbce818bd20da61882b3dac699d05dc24f29b72471b712423ace6278c43df2be7a09e815517b86d8b3ce16af3d64a575958c5fd52aac53b391f3d2a67c24c6c13ec11428b61b80a6a58cbba1790a98d190a572070f63fc0b809669895ea9865c3066b06102f6f2c7171dc7f76e1931b3e4deb569ef9d07d5f86a848f50942e93c419c3a23489f14803b08182dfd48b8d4375be6b7f805a21209c05e5927693a8834c8d5a5acbd47ed8a30a8a741d1ad77639b56b3b90c0b2023fa334befd28b2e27cbcd94b0ce7437f88ce67a925cea6d6d7e5313de6d328b1124a8b9ef83fe39ca3da97d33c60b7fd4af67d3c8fccb595a27a5bffc71e5a5b2ec966828993b0c0f83cbc55f9a7fb66a4101d5c83b77885072b6e2b2ceebe32f635509698c05089b9ff1cb1959b211e114dadb224ef2d5e7a3c55b3ac00fcdc9018577603c6301e5d4341b3d7eeb2665349d448d28d5d108f576408cbe533a6adbba18ebb2d84bb9af81108506a2f50fb56d595579000747930449fdf4ed01715ec624a0cb73636a35b9136f10b79e3d7ded09008b92e92c64e26e6b6d17f18b70b1d9813de8d2ff151c7a6a0452c660a57c33f13e2d9b88fa5f5c0505722d2e787a425e4a3e9b5efa9668e9199f5fb9fe7d5b8a57719a57df152e7f2c6a1087a2a24084f82455b65353a70559f04d5ed12defb81497ea69c1c7e69c373524770b7473c16a69c7a3648a9dd93377b89cdff61cf62512d1ee67a55ea67993937c1f55a2179bc9c8a337364cfb84d295adda1ad9700fc2f5c11cbfc1b90affb4666c6e7e23a6f7751410a5651819f29f690c6dba2b8a67e0f7f8cc377feb1854c393578994c85391ba21b3961aed477f771645571dc7d6cae72bf79c82a92a4edc3742b1398060a0a5c9e81c016b7f2ae3db529c6ff824cc28678764d8ab49d7dc68e5b0556c9e7ffb6fef442776d86fbd458741830e57f22a1f8513b92abd5b2df93a67cc560134078f0b8ecc3276e40aadef5cd579888b86b4988f396679250701f3869e7493b33692035ecd94aca5189fd0a0893ccc5bb19c0b4caca86cf90ebc2a5558f39cccb33f6773a4e425bf551fb3b6456ee1cc62fa1843a9e5539bb2d02ae6ef82533a9dbcfb562c1ab18c1f639ae7ff02083746f74a15ba2d10e4b955940a5d6f488d326a99f287c48ad463ce40367aeeff519cbad0a2d7fdbfa48bff75955467977764c2be2bd2ffa18396c46920c40c50a4037003666406d177e2cd20aee423d07169d8f611f635ba0b62b61265ff2c5548446a2423dd1038482b6852b2d9d2f90aa05d82c5e2c3d1af0c7aad72d82b3da67471af7b037bb0424a785e73f35b5a10a2ab300a195c20cd119a5390e0cd5d49c70bd80883b933e843d0d2902749dcf3c140c708a0f004b7a2f50bf311305dc01719016fcce5863815ca7951de710fcb71cd177551ff6fcd9f8bf01b93868f24c6129b6d7917125338cf62110083093fc7f862015d48450d992f2bb43e601cab19b2ea7b83962a382fc2a31fdf2358bf8a9a9e506eaa7b6eb5e7444d1ef459b24ffa51362abce902dfd84201a0e4b5a3b62757aad54fb65b83821c6bba663886de092065a565921ea3eb6781bb8ed4f4db3abcfeeb379b7e52fca790bea719918e299ab01bf5e92177d134360bf7a16a59e9d03d3dcfb0a25599237e3d41b3f0026c9402b1fb1894426303413a2cbcf7c72807ca694afa285990d07c3bca26413c9947b3b344aafc04544b8c11416e0312b028da7302e316c3966d41884b15055a49a4a0b3eac8e11f88a5615fb0af582f065d28e5a454447e9d0cfc60356439ebf7e1d0a00f5b9cc6daf2bd7195ba96b4d1a0679ff0fb1c01282c378a880f90f460889b67d76d4d0e8db6c928d113533d1d10b810303c43d8ff622c5bab7f095b96e64bf9daa48a2bdf3d9d40bac00cf1b66df61a4f7c3e21938e876f81b1179dce6a008f28eb682cae690ced0ea0d542da604d8056f2b1813ed36683c4c51aeb2650772cfb1c55d4e60604ff06344cfc271b2175a6c94defb807af240b483e24298ca73bfc743ca2ca2e77e6d5b817b3c1986601537faf59ac84c74d8bd0c068cb8e6bd03ac2dcf5793fb4a00b3c901a33aa3ee86e4f0db317b94bb8678ab26e36d305ebac4b0f7f164947148255b562dd0f87648499d45bccfb7d8c9d5624cadf8160a396e79fbcdc100058ba4606e41c02fb2cc0dc6c36196bd28acfde82a18cda2321d2d83fecd3b85380667cd1d0bc68298c6c8f10421a80c8fa86912b6c3e8ddd9d9668520d5151409e6b77f0d7730b374a68a744151bfbd123cfdf871e8c24e70d2ca3b50e84a48e0b78c1781000cfc848d43584985763a76c0ab9ba882c55e3e4aa8f2174255db38adb8350b48a77be22a869d13d183325f859b883464e5e46de5ea8a92532b9a794daaeff657cd361f7f158f8bebe36e9de1f5b9721d4263dcc9472229bc02d3f552180abfb25ca7aa36cb914d99c09fd5bb99dcab9b4e3c634d18fc7dfe84dc4425ad1e39c3e7410d49b4ea0a8a2958688c7725822f6dfc0827d19dc385e0e35a949941e4dd1aaeaab9ebe402f8c584bca7efc829f2ccfb63fd7bde1c182a67c14f9d3f033ca674e2604e89cd55a15419f956cd61a755c1b13554dae98e77be078aadfc131c9677381f1dbe6ef194eb17603a463e8b844ab46a6046e1f07d96d66de669359bff4c3d80948a4de3abb2f171a09b5d8999c379fb62244114e218c79805df7d899e5661320ee6721d652b95f09e4dfe69bd67099c73294b17ab574e0b966aa3ab44478965b9dca3cb3b9282945f24ccdd07c638ae25a84a728ca24f87ff49d718121a694be46f3616e27b1041b3c6cd24b9cf775bfc28dfbe0a009048f0599f2d5d6586cfd1e7f7fe69872d08b98f60d28e6af0d49d7f06ad71a7b5c41df261aba5de114022c7288bc265cc17909fdeadc3d7b256d7ab3b96e40f857060f16b54a6bb7248ee571f87ace5ee39eab412706cf52fa711468b21ea129c3f44bceb429fcc1a0ac2aa87b9365077dcfcfa9a1b32a0a09699197c20019a66cbd0a897feab3706c23123b888ada643d4560082033e31596b0483578968e3c9593ebd97141c228a42fc7645f92171c120aabca36657683fd7c72fcb87217f124d6fabc52f1d221d8410b47b0ad4bd944bf4085365e9b52a53911ab4ee142c5a1ebbe034c9d98c538c066f2dc0acf372eb2397dcac765055123e0ba19be22b18c886bf0f7490abe9fde91ffa62e059962bd134be8501cb5b715a744b1398e2c4c7e8afe72e189dda0654296afa1c1f99ab7d800fa40f72a758625c833b6fc7b7d42250522b456e1e7de815350c36c9cb2f4d1c9cb99109f89b456c559463f11b8b58247809b17a4ed4912bd0a47a529f1364d6dc593ea7f3eb98962078ac90e5012ee1c7b4b9ed5a8c7a9c0231b4ce425693faab64fa0f3482a04d4be2e06ee5d103694d288810a1a7f4d1e908dd82dd2016a064ece5cd67ef1dd5f4cda728fc6f1ccdd949dd8f775d862621507248ef4c83ae274969d19c7ddb02a4e8a1ab2b7aa539a442b22735ceedeefe60a1059dfaaa0979ce8d5387b5a047841fd9749b88ca91216b02d7926408a01916b7781bb7167528ccdb9a486d173437a5ba3e552c8674dff2cc9b21054e0e4f86b61b8723fca58ceef4413bffae9e9be79c5b9788f5449811ce78be9bc7a86375a670197baaef751beabcba0aa6c7c33f1cd702cb78ec39fa1f17d9da733d6abf2b80f9c51ac8f6f664b24edc53a7c9525c3016bd05c67272375fe816b2b121f2de68b885a0fd8f8b8c6c342237b632f6414a3eb3480f5f42106c5812e9bfd4e8c8dea8d08525d9aa1da7c7c2ee7ff3d31b79b211dd01e304a8ffc83a89a59f3b1e2ef5e969b6d90bea7e161066f25622fad914bff52bacd2807093dda1838b529ee57f718b374ce2841b924a42457867547a6edcb8412d85f11796742bf640b5819a9546357df778c332af5983c4373a95d9c58b52dba445eee92e6911824f0c534e7a5934d9eac9b7f6fec22002fc53a3003a3304217f567b47cd326edc5f48eb1f46bb20d1e10e72239afc9769344590cf48902aba5405b7d4baa31a912ab398a2f2d3f037614bb56a89244ece50f3a1e058d274f1e70f944eb8a305be91e561e5eb843d057a81f4deb84a6335ec81ca964cdae5f318d4e9aaea2c477cc279c00c698bcfe4b8e04c09079d8f3f5438d9d45a00f50d2f9b245c8c68eebf247e25ba8d26f8b95b21ac9ceb50c0aa2e4bdc032024db216b92f9350a90ac79341af14d3fa8ba908096e1b503341aed667bb184c672dac85fc4f335b3871c3b4e55ea219a857d2d2e135358f6b45a20b3e7de8e09b2041eb7c5084a80258fb524a983752659298a251e178b56f96bc67ae0a78ec92f92d92c9cf0edb5dcb11e739d69410ad44c8df00caa030d7d89f2ec38bd7698115c423cf3e6048793aca08ffbcdac766f1553773fa00031c1d75246e4e1eddf8948d02a3de6d67fd7329e45070f29044587f1e0db50d04e673191a63e30f96ee0d8d52738fab36a7fe2c6ab9301d401e7ca5b1f039193a580e40abbdf40c2d7e27809dec80815d37adae9fe7fb9d3a974c9fc03944d7338d000b81170be4c6792ed6b3b827194b3ae11e2acfca48498d1126aacf80f3d574256ef7f75552ff087a819e", 0x1000}, {&(0x7f0000001040)="9d7fcf3efc63f4a6a555ba8b4726d7ccaf8a207100e69cfac4377876021d7131b838029f96bd206d4776368ed2a92432e5af71", 0x33}], 0x2, &(0x7f00000010c0)=[@ip_tos_int={{0x14, 0x29, 0x3e}}, @ip_tos_u8={{0x14, 0x29, 0x43}}, @ip_pktinfo={{0x14, 0x29, 0x8, {0x0, @broadcast, @remote}}}], 0x50}, 0x9fc) 3.73383179s ago: executing program 2 (id=7228): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010200000000000000000000000a20000000000a01010000000000000000010000000900010073797a300000000048000000030a01010000000000000000010000000900010073797a30000000000900030073797a3100000000080007006e61740014000480"], 0xa4}, 0x1, 0x0, 0x0, 0x80}, 0x4000010) 3.637201625s ago: executing program 5 (id=7229): r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000029c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)={0x1c, 0x10, 0x701, 0x0, 0x0, {0xa}, [@typed={0x6, 0x1, 0x0, 0x0, @str='\x10\x00'}]}, 0x1c}}, 0x0) 3.450405103s ago: executing program 0 (id=7230): r0 = syz_open_dev$vim2m(&(0x7f0000000000), 0x9, 0x2) ioctl$vim2m_VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f00000003c0)={0x0, 0x40002, 0x2, {0xd, @pix_mp={0x0, 0x3, 0x0, 0x0, 0x0, [{}, {}, {}, {}, {0x1}, {}, {0x0, 0xc}, {0xffffffff}]}}}) 3.296707339s ago: executing program 3 (id=7231): seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000080)=[{0x6, 0x0, 0x0, 0x7fff0000}]}) nanosleep(&(0x7f0000000300)={0x0, 0x3938700}, 0x0) 3.248647723s ago: executing program 1 (id=7232): mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x0) keyctl$dh_compute(0x17, &(0x7f0000000140), 0x0, 0x0, 0x0) 3.00794547s ago: executing program 5 (id=7233): r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000a40)=@updsa={0x144, 0x1a, 0x1, 0x70bd2b, 0x25dfdbfe, {{@in=@initdev={0xac, 0x1e, 0x1, 0x0}, @in=@remote, 0x4e24, 0x8, 0x4e24, 0xac, 0xa, 0x20, 0x0, 0x2f}, {@in=@remote, 0x4d3, 0x32}, @in=@empty, {0x4, 0x0, 0x4, 0x9, 0x8, 0x0, 0x1, 0x180000000}, {0x8, 0xf457, 0xb3, 0x4}, {0x10001, 0x9, 0x2}, 0x70bd2d, 0x3501, 0xa, 0x2, 0x9, 0x1}, [@algo_aead={0x4c, 0x12, {{'morus1280-generic\x00'}, 0x0, 0x100}}, @tfcpad={0x8, 0x16, 0x3}]}, 0x144}, 0x1, 0x0, 0x0, 0x20000004}, 0x59f123c73297a514) 2.971926036s ago: executing program 2 (id=7234): syz_usb_connect$uac1(0x2, 0xa4, 0x0, 0x0) syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc9, 0x1, 0x1}, @l2cap_cid_signaling={{}, [@l2cap_conn_rsp={{0x3, 0xe}, {0x2, 0x7, 0xfff, 0x9}}]}}, 0x3) 2.693669171s ago: executing program 0 (id=7235): r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x20, &(0x7f0000000580)={@loopback, 0x0, 0x0, 0x2, 0x0, 0x7fff, 0x3}, 0x20) 2.622644823s ago: executing program 1 (id=7236): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0xc, 0x11, &(0x7f0000001000)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf090000000000005509010000000000150000000000000085100000010000009500000000001000bf91000000000000b7020000000000008500000000000000b70000000000000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) 2.59906412s ago: executing program 3 (id=7237): r0 = syz_open_procfs(0x0, &(0x7f0000000280)='ns\x00') readlinkat(r0, &(0x7f0000000040)='./cgroup\x00', &(0x7f0000002780)=""/4112, 0x1010) 2.377659453s ago: executing program 5 (id=7238): r0 = socket$nl_crypto(0x10, 0x3, 0x15) sendmsg$nl_crypto(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000000c0)=ANY=[@ANYBLOB="e80000001100017274bab571ee9d3d4a371e3ef0d9e4244c9649f2a67f5477658fa04329fef7e0cc5d8667f5e37661cd6ea58c88db59354ee7c52ee9fbbd0789a66885d437dae81b0fe32ab9c4ed0b67"], 0xe8}}, 0x20040080) 2.184319595s ago: executing program 0 (id=7239): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x10, 0x4, 0x8, 0x8, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$MAP_DELETE_ELEM(0x2, &(0x7f0000000440)={r0, &(0x7f0000000580), 0x20000000}, 0x20) 1.982775881s ago: executing program 3 (id=7240): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_MSG_GETRULE(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000440)=ANY=[@ANYBLOB="38000000210a011d"], 0x38}}, 0x0) 1.876857246s ago: executing program 1 (id=7241): r0 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$SNDCTL_SEQ_OUTOFBAND(r0, 0x40085112, &(0x7f0000000140)=@x={0x94, 0x0, "54c75d0c4ec4"}) 1.738577574s ago: executing program 2 (id=7242): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000004c0)=ANY=[@ANYBLOB="3000000071000100000000000000000007000000", @ANYBLOB="0c00018008000100000004000c"], 0x30}}, 0x0) 1.513118444s ago: executing program 5 (id=7243): r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_buf(r0, 0x29, 0xd3, 0x0, 0x0) 1.348266409s ago: executing program 0 (id=7244): r0 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route_sched(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000280)=@newtaction={0x70, 0x30, 0x53b, 0x0, 0x0, {0x9}, [{0x5c, 0x1, [@m_sample={0x58, 0x1, 0x0, 0x0, {{0xb}, {0x2c, 0x2, 0x0, 0x1, [@TCA_SAMPLE_PSAMPLE_GROUP={0x8}, @TCA_SAMPLE_PARMS={0x18, 0x2, {0xfffffffc, 0x0, 0x10000000, 0x1000000}}, @TCA_SAMPLE_RATE={0x8, 0x3, 0x6b}]}, {0x4}, {0xc}, {0xc, 0x4, {0x2}}}}]}]}, 0x70}}, 0x0) 1.099316622s ago: executing program 1 (id=7245): r0 = socket$unix(0x1, 0x1, 0x0) bind$unix(r0, &(0x7f0000000140)=@file={0x0, './file1\x00'}, 0x2) 1.019486558s ago: executing program 3 (id=7246): syz_mount_image$hfs(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x1200001, &(0x7f0000000080)={[{@gid}, {@iocharset={'iocharset', 0x3d, 'cp863'}}, {@codepage={'codepage', 0x3d, 'cp1251'}}]}, 0x2, 0x332, &(0x7f0000000140)="$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") listxattr(&(0x7f0000000080)='./file1\x00', 0x0, 0xb) 963.076092ms ago: executing program 2 (id=7247): r0 = openat$sequencer2(0xffffff9c, &(0x7f00000011c0), 0x0, 0x0) ioctl$SNDCTL_SEQ_NRMIDIS(r0, 0xc0045103, &(0x7f0000000040)) 874.278884ms ago: executing program 5 (id=7248): r0 = openat$qrtrtun(0xffffffffffffff9c, &(0x7f0000000040), 0x8002) write$binfmt_aout(r0, 0x0, 0x31c8) 537.085086ms ago: executing program 0 (id=7249): r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_buf(r0, 0x0, 0x10, &(0x7f0000000000)="17000000020001000003be8c5e687a8a6a003200020100ecff3f0000000300000a0001000098fc5a53d3f5b7e4a96c6b06169da9c0f8d9485bbb6a880a00243c5197b29f9368bdd6c8db0000dba67e06000000e289c46f8ab8b4028a7a63c900000200df0180000000000100000000000080c457681f009cee4a5acb3dac00001fb7315033bf79ac2df5bc080236e2b68c8eec25a02aff06011500000000010000000affff02dfccebf6ba00085d024f0298e9e90554062a", 0xb8) 449.169559ms ago: executing program 1 (id=7250): syz_mount_image$iso9660(&(0x7f0000000140), &(0x7f0000000000)='./file0\x00', 0x2000c12, &(0x7f0000000440)={[{@check_relaxed}, {@map_off}, {@mode={'mode', 0x3d, 0x42}}, {@check_strict}, {@nocompress}, {@iocharset={'iocharset', 0x3d, 'macgaelic'}}, {}, {@block={'block', 0x3d, 0x200}}, {@map_normal}, {@sbsector}, {@map_normal}, {@map_normal}, {@cruft}, {@unhide}, {@check_strict}]}, 0x1, 0xa03, &(0x7f0000001680)="$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") mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0) 320.312316ms ago: executing program 2 (id=7251): r0 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) wait4(r0, 0x0, 0x40000000, &(0x7f00000000c0)) 221.448072ms ago: executing program 3 (id=7252): r0 = socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f0000000040)={'netdevsim0\x00', &(0x7f0000000000)=@ethtool_channels={0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x983c}}) 202.680506ms ago: executing program 5 (id=7253): syz_mount_image$nilfs2(&(0x7f0000000ec0), &(0x7f0000000f00)='./file0\x00', 0x0, &(0x7f0000000600)=ANY=[@ANYBLOB="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"], 0x1, 0xf01, &(0x7f0000002d40)="$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") mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./bus\x00', 0x0) 0s ago: executing program 0 (id=7254): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000580)={0x70, 0x0, 0x9, 0x401, 0x0, 0x0, {}, [@NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz0\x00'}, @NFCTH_TUPLE={0x3c, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02'}, {0x14, 0x4, @local}}}]}, @NFCTH_POLICY={0xc, 0x4, 0x0, 0x1, {0x8}}]}, 0x70}}, 0x0) kernel console output (not intermixed with test programs): rting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 1310.094827][T16573] NILFS (loop4): error -2 truncating bmap (ino=16) [ 1310.455076][T16582] NILFS (loop4): vblocknr = 15 has abnormal lifetime: start cno (= 4128770) > current cno (= 3) [ 1310.466204][T16582] NILFS error (device loop4): nilfs_bmap_propagate: broken bmap (inode number=16) [ 1310.528029][T16582] Remounting filesystem read-only [ 1310.546419][ T5793] NILFS (loop4): disposed unprocessed dirty file(s) when stopping log writer [ 1310.608956][T16590] netlink: 20 bytes leftover after parsing attributes in process `syz.1.5058'. [ 1311.378209][ T44] usb 5-1: new high-speed USB device number 106 using dummy_hcd [ 1311.639969][ T44] usb 5-1: New USB device found, idVendor=0cf3, idProduct=9374, bcdDevice=bc.3b [ 1311.649815][ T44] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1311.695884][ T44] usb 5-1: config 0 descriptor?? [ 1312.238676][ T44] ath6kl: Failed to submit usb control message: -71 [ 1312.250589][ T44] ath6kl: unable to send the bmi data to the device: -71 [ 1312.257924][ T44] ath6kl: Unable to send get target info: -71 [ 1312.306731][ T44] ath6kl: Failed to init ath6kl core: -71 [ 1312.320865][ T44] ath6kl_usb 5-1:0.0: probe with driver ath6kl_usb failed with error -71 [ 1312.517501][ T44] usb 5-1: USB disconnect, device number 106 [ 1313.077463][T16618] loop2: detected capacity change from 0 to 764 [ 1313.190005][T16618] rock: directory entry would overflow storage [ 1313.196447][T16618] rock: sig=0x4654, size=5, remaining=4 [ 1314.164137][T16631] loop2: detected capacity change from 0 to 1024 [ 1314.747360][ T1311] hfsplus: b-tree write err: -5, ino 4 [ 1314.903968][ T29] audit: type=1326 audit(2000000516.163:75): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16642 comm="syz.0.5084" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f274558cd29 code=0x7ffc0000 [ 1314.927996][ T29] audit: type=1326 audit(2000000516.191:76): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16642 comm="syz.0.5084" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f274558cd29 code=0x7ffc0000 [ 1314.951199][ T29] audit: type=1326 audit(2000000516.209:77): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16642 comm="syz.0.5084" exe="/root/syz-executor" sig=0 arch=c000003e syscall=36 compat=0 ip=0x7f274558cd29 code=0x7ffc0000 [ 1314.974809][ T29] audit: type=1326 audit(2000000516.209:78): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16642 comm="syz.0.5084" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f274558cd29 code=0x7ffc0000 [ 1315.001587][ T29] audit: type=1326 audit(2000000516.209:79): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16642 comm="syz.0.5084" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f274558cd29 code=0x7ffc0000 [ 1315.713303][T16652] netlink: 12 bytes leftover after parsing attributes in process `syz.0.5087'. [ 1315.722917][T16652] netlink: 16 bytes leftover after parsing attributes in process `syz.0.5087'. [ 1316.146889][T16658] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 1316.620255][T16665] netlink: 'syz.1.5094': attribute type 5 has an invalid length. [ 1316.808120][T16668] netlink: 'syz.2.5096': attribute type 1 has an invalid length. [ 1316.818033][T16668] netlink: 'syz.2.5096': attribute type 2 has an invalid length. [ 1316.826502][T16668] netlink: 4 bytes leftover after parsing attributes in process `syz.2.5096'. [ 1317.242521][T16672] loop0: detected capacity change from 0 to 1764 [ 1318.097455][T16683] loop4: detected capacity change from 0 to 512 [ 1318.287957][T16683] EXT4-fs (loop4): Cannot turn on journaled quota: type 0: error -2 [ 1318.332241][T16683] EXT4-fs error (device loop4): ext4_free_branches:1023: inode #13: comm syz.4.5103: invalid indirect mapped block 2683928664 (level 1) [ 1318.387942][T16683] EXT4-fs (loop4): Remounting filesystem read-only [ 1318.460812][T16683] EXT4-fs (loop4): 1 truncate cleaned up [ 1318.468828][T16683] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1319.014087][ T5793] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1320.235176][ T29] audit: type=1326 audit(2000000521.130:80): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16715 comm="syz.0.5118" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f274558cd29 code=0x7ffc0000 [ 1320.261690][ T29] audit: type=1326 audit(2000000521.148:81): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16715 comm="syz.0.5118" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f274558cd29 code=0x7ffc0000 [ 1320.285793][ T29] audit: type=1326 audit(2000000521.148:82): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16715 comm="syz.0.5118" exe="/root/syz-executor" sig=0 arch=c000003e syscall=131 compat=0 ip=0x7f274558cd29 code=0x7ffc0000 [ 1320.312543][ T29] audit: type=1326 audit(2000000521.148:83): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16715 comm="syz.0.5118" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f274558cd29 code=0x7ffc0000 [ 1320.335808][ T29] audit: type=1326 audit(2000000521.148:84): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16715 comm="syz.0.5118" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f274558cd29 code=0x7ffc0000 [ 1320.376366][T16703] loop1: detected capacity change from 0 to 4096 [ 1320.536079][T16703] ntfs3(loop1): try to read out of volume at offset 0x3fffffc0c00 [ 1320.544958][T16703] ntfs3(loop1): try to read out of volume at offset 0x3fffffc0c00 [ 1320.553205][T16703] ntfs3(loop1): try to read out of volume at offset 0x3fffffc0c00 [ 1320.561920][T16703] ntfs3(loop1): try to read out of volume at offset 0x3fffffc0c00 [ 1320.573645][T16703] ntfs3(loop1): try to read out of volume at offset 0x3fffffc1c00 [ 1320.583048][T16703] ntfs3(loop1): try to read out of volume at offset 0x3fffffc2c00 [ 1320.592654][T16703] ntfs3(loop1): try to read out of volume at offset 0x3fffffc4c00 [ 1320.601167][T16703] ntfs3(loop1): try to read out of volume at offset 0x3fffffc8c00 [ 1320.609810][T16703] ntfs3(loop1): try to read out of volume at offset 0x3fffffd0c00 [ 1320.618164][T16703] ntfs3(loop1): try to read out of volume at offset 0x3fffffe0c00 [ 1322.749653][T16752] Cannot find del_set index 128 as target [ 1322.776062][T16745] loop1: detected capacity change from 0 to 2048 [ 1322.922959][T16745] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1323.107415][T16745] EXT4-fs error (device loop1): ext4_find_extent:938: inode #2: comm syz.1.5126: pblk 1 bad header/extent: invalid magic - magic 2, entries 0, max 3(0), depth 0(4) [ 1323.151878][T16758] netlink: 8 bytes leftover after parsing attributes in process `syz.3.5132'. [ 1323.217875][T16745] EXT4-fs (loop1): Remounting filesystem read-only [ 1323.592446][T16764] netlink: 8 bytes leftover after parsing attributes in process `syz.0.5133'. [ 1323.636347][ T5787] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1324.378381][ T1279] ieee802154 phy0 wpan0: encryption failed: -22 [ 1324.385475][ T1279] ieee802154 phy1 wpan1: encryption failed: -22 [ 1324.850722][T16777] netlink: 20 bytes leftover after parsing attributes in process `syz.0.5139'. [ 1325.753180][ T29] audit: type=1326 audit(2000000526.321:85): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16789 comm="syz.2.5145" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f47bb38cd29 code=0x7ffc0000 [ 1325.903125][ T29] audit: type=1326 audit(2000000526.387:86): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16789 comm="syz.2.5145" exe="/root/syz-executor" sig=0 arch=c000003e syscall=264 compat=0 ip=0x7f47bb38cd29 code=0x7ffc0000 [ 1325.926380][ T29] audit: type=1326 audit(2000000526.387:87): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16789 comm="syz.2.5145" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f47bb38cd29 code=0x7ffc0000 [ 1326.239081][T16794] loop4: detected capacity change from 0 to 2048 [ 1326.346136][T16794] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 1326.394035][T16800] netlink: 'syz.3.5149': attribute type 1 has an invalid length. [ 1327.479048][T16813] netlink: 'syz.4.5153': attribute type 10 has an invalid length. [ 1327.488166][T16813] net veth1_virt_wifi virt_wifi0: entered promiscuous mode [ 1328.106633][T16811] loop3: detected capacity change from 0 to 4096 [ 1328.246839][T16818] xt_CT: No such helper "snmp" [ 1329.029044][T16825] loop4: detected capacity change from 0 to 2048 [ 1329.146471][T16825] NILFS (loop4): broken superblock, retrying with spare superblock (blocksize = 1024) [ 1329.156989][T16825] NILFS (loop4): mounting unchecked fs [ 1329.277456][ T6010] udevd[6010]: incorrect nilfs2 checksum on /dev/loop4 [ 1329.498002][T16825] NILFS (loop4): recovery complete [ 1329.562721][T16834] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 1330.557289][T16845] do_dccp_getsockopt: sockopt(PACKET_SIZE) is deprecated: fix your app [ 1331.022836][T16853] netlink: 'syz.3.5169': attribute type 3 has an invalid length. [ 1331.963926][T16864] loop3: detected capacity change from 0 to 256 [ 1331.971760][T16865] netlink: 8 bytes leftover after parsing attributes in process `syz.2.5173'. [ 1333.905749][T16892] loop3: detected capacity change from 0 to 1024 [ 1334.003057][T16901] loop2: detected capacity change from 0 to 8 [ 1334.086278][T16901] SQUASHFS error: lzo decompression failed, data probably corrupt [ 1334.095708][T16901] SQUASHFS error: Failed to read block 0x91: -5 [ 1334.102423][T16901] SQUASHFS error: Unable to read metadata cache entry [8f] [ 1334.109871][T16901] SQUASHFS error: Unable to read inode 0x11f [ 1334.647323][T16906] x_tables: ip_tables: .0 target: invalid size 8 (kernel) != (user) 0 [ 1334.710645][ T1666] usb 3-1: new high-speed USB device number 95 using dummy_hcd [ 1334.934332][ T1666] usb 3-1: Using ep0 maxpacket: 16 [ 1334.989754][ T1666] usb 3-1: config 0 has an invalid interface number: 105 but max is 0 [ 1334.998440][ T1666] usb 3-1: config 0 has an invalid descriptor of length 43, skipping remainder of the config [ 1335.009343][ T1666] usb 3-1: config 0 has no interface number 0 [ 1335.149104][ T1666] usb 3-1: New USB device found, idVendor=046c, idProduct=14e8, bcdDevice= b.28 [ 1335.159773][ T1666] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1335.168092][ T1666] usb 3-1: Product: syz [ 1335.173634][ T1666] usb 3-1: Manufacturer: syz [ 1335.178511][ T1666] usb 3-1: SerialNumber: syz [ 1335.289766][ T1666] usb 3-1: config 0 descriptor?? [ 1335.340843][ T1666] usb 3-1: Found UVC 0.00 device syz (046c:14e8) [ 1335.353822][ T1666] usb 3-1: No valid video chain found. [ 1335.558686][ T1666] usb 3-1: USB disconnect, device number 95 [ 1336.565256][T16933] loop1: detected capacity change from 0 to 64 [ 1338.113339][T16955] qnx6: unable to read the first superblock [ 1339.462923][T16977] loop0: detected capacity change from 0 to 8 [ 1341.017309][T16999] netlink: 4 bytes leftover after parsing attributes in process `syz.4.5233'. [ 1341.272396][T17004] netlink: 16 bytes leftover after parsing attributes in process `syz.2.5235'. [ 1343.502143][T17034] Unknown options in mask 5 [ 1345.720959][T17070] loop0: detected capacity change from 0 to 128 [ 1345.835745][T17068] loop2: detected capacity change from 0 to 2048 [ 1345.956330][T17070] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 1346.010972][T17070] ext4 filesystem being mounted at /1035/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 1346.101226][T17068] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1346.178363][T17070] EXT4-fs warning (device loop0): verify_group_input:137: Cannot add at group 1023 (only 1 groups) [ 1346.226787][T17068] EXT4-fs error (device loop2): ext4_find_inline_data_nolock:164: inode #12: comm syz.2.5267: inline data xattr refers to an external xattr inode [ 1346.268364][T17068] EXT4-fs (loop2): Remounting filesystem read-only [ 1346.458916][ T44] usb 5-1: new high-speed USB device number 107 using dummy_hcd [ 1346.559468][ T5778] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 1346.701100][ T44] usb 5-1: config index 0 descriptor too short (expected 23569, got 27) [ 1346.711172][ T44] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 1346.734433][ T5781] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1346.848970][T17082] usb usb7: usbfs: process 17082 (syz.3.5273) did not claim interface 0 before use [ 1346.860379][ T44] usb 5-1: New USB device found, idVendor=03eb, idProduct=0002, bcdDevice=ba.c0 [ 1346.870133][ T44] usb 5-1: New USB device strings: Mfr=5, Product=0, SerialNumber=0 [ 1346.878663][ T44] usb 5-1: Manufacturer: syz [ 1347.008189][ T44] usb 5-1: config 0 descriptor?? [ 1347.132737][T17087] xt_l2tp: invalid flags combination: c [ 1347.635353][ T44] rc_core: IR keymap rc-hauppauge not found [ 1347.641607][ T44] Registered IR keymap rc-empty [ 1347.650033][ T44] rc rc0: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.4/usb5/5-1/5-1:0.0/rc/rc0 [ 1347.665977][ T44] input: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.4/usb5/5-1/5-1:0.0/rc/rc0/input39 [ 1347.916203][ C1] igorplugusb 5-1:0.0: Error: urb status = -32 [ 1348.010025][T15729] usb 5-1: USB disconnect, device number 107 [ 1349.249525][T17105] loop1: detected capacity change from 0 to 164 [ 1349.293630][T17107] netlink: 8 bytes leftover after parsing attributes in process `syz.2.5283'. [ 1349.303169][T17107] netlink: 36 bytes leftover after parsing attributes in process `syz.2.5283'. [ 1349.331950][T17107] bridge1: trying to set multicast startup query interval below minimum, setting to 100 (1000ms) [ 1351.923974][T17135] ntfs3(nbd3): try to read out of volume at offset 0x0 [ 1351.986476][ T29] audit: type=1326 audit(2000000550.857:88): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17136 comm="syz.4.5298" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f553998cd29 code=0x7ffc0000 [ 1352.087523][ T29] audit: type=1326 audit(2000000550.913:89): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17136 comm="syz.4.5298" exe="/root/syz-executor" sig=0 arch=c000003e syscall=4 compat=0 ip=0x7f553998cd29 code=0x7ffc0000 [ 1352.114403][ T29] audit: type=1326 audit(2000000550.913:90): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17136 comm="syz.4.5298" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f553998cd29 code=0x7ffc0000 [ 1352.139341][ T29] audit: type=1326 audit(2000000550.922:91): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17136 comm="syz.4.5298" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f553998cd29 code=0x7ffc0000 [ 1353.544857][T17162] loop0: detected capacity change from 0 to 16 [ 1353.612730][T17162] erofs (device loop0): mounted with root inode @ nid 36. [ 1353.707834][T17162] erofs (device loop0): bogus lookback distance 1388 @ lcn 42 of nid 36 [ 1353.792904][T17162] erofs (device loop0): read error -117 @ 43 of nid 36 [ 1356.030334][T17196] loop0: detected capacity change from 0 to 1024 [ 1356.174194][T17196] hfsplus: trying to free free bnode 0(1) [ 1356.251140][T15729] usb 3-1: new high-speed USB device number 96 using dummy_hcd [ 1356.251703][ T29] audit: type=1400 audit(2000000554.851:92): apparmor="DENIED" operation="setprocattr" info="invalid" error=-22 profile="unconfined" pid=17201 comm="syz.4.5330" [ 1356.519837][T15729] usb 3-1: config 0 interface 0 altsetting 8 endpoint 0x82 has an invalid bInterval 0, changing to 7 [ 1356.531405][T15729] usb 3-1: config 0 interface 0 has no altsetting 0 [ 1356.538357][T15729] usb 3-1: New USB device found, idVendor=0cf3, idProduct=9374, bcdDevice=bc.3b [ 1356.548110][T15729] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1356.605988][ T6783] hfsplus: b-tree write err: -5, ino 4 [ 1356.714821][T15729] usb 3-1: config 0 descriptor?? [ 1357.025028][T15729] ath6kl: Failed to submit usb control message: -71 [ 1357.032279][T15729] ath6kl: unable to send the bmi data to the device: -71 [ 1357.039594][T15729] ath6kl: Unable to send get target info: -71 [ 1357.092647][T15729] ath6kl: Failed to init ath6kl core: -71 [ 1357.104950][T15729] ath6kl_usb 3-1:0.0: probe with driver ath6kl_usb failed with error -71 [ 1357.137348][T17211] binfmt_misc: register: failed to install interpreter file ./file1 [ 1357.203399][T15729] usb 3-1: USB disconnect, device number 96 [ 1357.674111][T17219] netlink: 256 bytes leftover after parsing attributes in process `syz.4.5338'. [ 1358.531773][T17223] loop3: detected capacity change from 0 to 2048 [ 1358.699706][T17223] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 1359.438404][T17236] netlink: 'syz.4.5347': attribute type 21 has an invalid length. [ 1359.446793][T17236] netlink: 132 bytes leftover after parsing attributes in process `syz.4.5347'. [ 1360.423067][T17246] netlink: 40 bytes leftover after parsing attributes in process `syz.4.5351'. [ 1360.552259][T17249] x_tables: duplicate underflow at hook 2 [ 1360.780716][T17253] netlink: 28 bytes leftover after parsing attributes in process `syz.2.5355'. [ 1360.791029][T17253] netlink: 8 bytes leftover after parsing attributes in process `syz.2.5355'. [ 1362.618796][T17281] netlink: 'syz.1.5369': attribute type 3 has an invalid length. [ 1363.685563][T17293] rdma_rxe: rxe_newlink: failed to add lo [ 1364.811629][T17309] binder: 17307:17309 ioctl 400c620e 20000380 returned -22 [ 1366.362427][T17328] loop2: detected capacity change from 0 to 256 [ 1366.783736][T17328] FAT-fs (loop2): Directory bread(block 64) failed [ 1366.790611][T17328] FAT-fs (loop2): Directory bread(block 65) failed [ 1366.797951][T17328] FAT-fs (loop2): Directory bread(block 66) failed [ 1366.805046][T17328] FAT-fs (loop2): Directory bread(block 67) failed [ 1366.812023][T17328] FAT-fs (loop2): Directory bread(block 68) failed [ 1366.819293][T17328] FAT-fs (loop2): Directory bread(block 69) failed [ 1366.826503][T17328] FAT-fs (loop2): Directory bread(block 70) failed [ 1366.833334][T17328] FAT-fs (loop2): Directory bread(block 71) failed [ 1366.840484][T17328] FAT-fs (loop2): Directory bread(block 72) failed [ 1366.847493][T17328] FAT-fs (loop2): Directory bread(block 73) failed [ 1367.674574][T17345] netlink: 132 bytes leftover after parsing attributes in process `syz.1.5400'. [ 1368.508132][T17355] loop4: detected capacity change from 0 to 1024 [ 1369.080567][ T1311] hfsplus: b-tree write err: -5, ino 4 [ 1369.401106][T17368] ip6gretap1: entered promiscuous mode [ 1369.406914][T17368] ip6gretap1: entered allmulticast mode [ 1369.518470][T15729] usb 3-1: new high-speed USB device number 97 using dummy_hcd [ 1369.754093][T15729] usb 3-1: Using ep0 maxpacket: 8 [ 1369.799310][T15729] usb 3-1: New USB device found, idVendor=0402, idProduct=5602, bcdDevice=35.76 [ 1369.809748][T15729] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1369.818337][T15729] usb 3-1: Product: syz [ 1369.822777][T15729] usb 3-1: Manufacturer: syz [ 1369.831775][T15729] usb 3-1: SerialNumber: syz [ 1369.960687][T15729] usb 3-1: config 0 descriptor?? [ 1370.019858][T15729] gspca_main: ALi m5602-2.14.0 probing 0402:5602 [ 1370.151392][T17377] xt_CONNSECMARK: invalid mode: 0 [ 1370.481164][T15729] gspca_m5602: Failed to find a sensor [ 1370.493329][T15729] ALi m5602 3-1:0.0: ALi m5602 webcam failed [ 1370.584570][T15729] usb 3-1: USB disconnect, device number 97 [ 1371.622180][T17396] loop4: detected capacity change from 0 to 256 [ 1371.902501][ T44] usb 3-1: new high-speed USB device number 98 using dummy_hcd [ 1372.001660][T17396] FAT-fs (loop4): Directory bread(block 64) failed [ 1372.008566][T17396] FAT-fs (loop4): Directory bread(block 65) failed [ 1372.020142][T17396] FAT-fs (loop4): Directory bread(block 66) failed [ 1372.026990][T17396] FAT-fs (loop4): Directory bread(block 67) failed [ 1372.036136][T17396] FAT-fs (loop4): Directory bread(block 68) failed [ 1372.043184][T17396] FAT-fs (loop4): Directory bread(block 69) failed [ 1372.050170][T17396] FAT-fs (loop4): Directory bread(block 70) failed [ 1372.057435][T17396] FAT-fs (loop4): Directory bread(block 71) failed [ 1372.064601][T17396] FAT-fs (loop4): Directory bread(block 72) failed [ 1372.071427][T17396] FAT-fs (loop4): Directory bread(block 73) failed [ 1372.318030][ T44] usb 3-1: New USB device found, idVendor=0af0, idProduct=7a05, bcdDevice= 0.00 [ 1372.327747][ T44] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1372.336585][ T44] usb 3-1: Product: syz [ 1372.341161][ T44] usb 3-1: Manufacturer: syz [ 1372.348661][ T44] usb 3-1: SerialNumber: syz [ 1372.462331][ T44] usb 3-1: config 0 descriptor?? [ 1372.736469][ T44] hso 3-1:0.0: Failed to find BULK IN ep [ 1372.792507][ T44] usb-storage 3-1:0.0: USB Mass Storage device detected [ 1373.005047][ T44] usb 3-1: USB disconnect, device number 98 [ 1373.700892][T17420] netlink: 'syz.3.5435': attribute type 10 has an invalid length. [ 1373.709398][T17420] netlink: 152 bytes leftover after parsing attributes in process `syz.3.5435'. [ 1375.338051][T17443] x_tables: unsorted underflow at hook 3 [ 1375.969396][T17452] netlink: 'syz.3.5452': attribute type 13 has an invalid length. [ 1376.059374][T17452] gretap0: refused to change device tx_queue_len [ 1376.072901][T17452] A link change request failed with some changes committed already. Interface gretap0 may have been left with an inconsistent configuration, please check. [ 1376.768825][T17465] loop1: detected capacity change from 0 to 256 [ 1376.923728][T17465] exFAT-fs (loop1): failed to load upcase table (idx : 0x00011f50, chksum : 0xa6aae999, utbl_chksum : 0xe619d30d) [ 1376.991518][ T44] usb 5-1: new high-speed USB device number 108 using dummy_hcd [ 1377.285267][ T44] usb 5-1: New USB device found, idVendor=0af0, idProduct=7a05, bcdDevice= 0.00 [ 1377.294948][ T44] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1377.303560][ T44] usb 5-1: Product: syz [ 1377.307996][ T44] usb 5-1: Manufacturer: syz [ 1377.313140][ T44] usb 5-1: SerialNumber: syz [ 1377.386380][ T44] usb 5-1: config 0 descriptor?? [ 1377.661514][ T44] hso 5-1:0.0: Failed to find BULK IN ep [ 1377.706385][ T44] usb-storage 5-1:0.0: USB Mass Storage device detected [ 1378.065485][T17481] netlink: 'syz.0.5465': attribute type 4 has an invalid length. [ 1378.066759][ T44] usb 5-1: USB disconnect, device number 108 [ 1378.073778][T17481] netlink: 3657 bytes leftover after parsing attributes in process `syz.0.5465'. [ 1379.096200][T17496] loop1: detected capacity change from 0 to 64 [ 1379.997558][T17509] netdevsim netdevsim1 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0 [ 1381.544465][T17532] netlink: 'syz.3.5491': attribute type 10 has an invalid length. [ 1381.594842][T17532] batman_adv: batadv0: Adding interface: team0 [ 1381.602174][T17532] batman_adv: batadv0: The MTU of interface team0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 1381.628510][T17532] batman_adv: batadv0: Not using interface team0 (retrying later): interface not active [ 1382.640131][T15729] usb 3-1: new high-speed USB device number 99 using dummy_hcd [ 1382.906569][T15729] usb 3-1: New USB device found, idVendor=2c42, idProduct=1709, bcdDevice=ca.b7 [ 1382.916396][T15729] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1382.925193][T15729] usb 3-1: Product: syz [ 1382.929757][T15729] usb 3-1: Manufacturer: syz [ 1382.934919][T15729] usb 3-1: SerialNumber: syz [ 1383.023512][T17549] loop4: detected capacity change from 0 to 8 [ 1383.034159][T15729] usb 3-1: config 0 descriptor?? [ 1383.108857][T17549] process 'syz.4.5499' launched './file2' with NULL argv: empty string added [ 1383.147039][T17549] cramfs: Error -5 while decompressing! [ 1383.153355][T17549] cramfs: ffffffff948cd1c8(26)->ffff88812df74000(4096) [ 1383.161604][T17549] cramfs: Error -3 while decompressing! [ 1383.167583][T17549] cramfs: ffffffff948cd1e2(26)->ffff888120624000(4096) [ 1383.175099][T17549] cramfs: Error -3 while decompressing! [ 1383.181253][T17549] cramfs: ffffffff948cd1fc(16)->ffff8881207fb000(4096) [ 1383.194553][T17549] cramfs: Error -5 while decompressing! [ 1383.202204][T17549] cramfs: ffffffff948cd1c8(26)->ffff88812df74000(4096) [ 1383.497424][T15729] usb 3-1: f81604_write: reg: 105 data: 0 failed: -EPROTO [ 1383.505135][T15729] f81604 3-1:0.0: Setting termination of CH#0 failed: -EPROTO [ 1383.519147][T15729] f81604 3-1:0.0: probe with driver f81604 failed with error -71 [ 1383.626998][T15729] usb 3-1: USB disconnect, device number 99 [ 1385.235281][T17578] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE [ 1385.242927][T17578] IPv6: NLM_F_CREATE should be set when creating new route [ 1385.250639][T17578] IPv6: NLM_F_CREATE should be set when creating new route [ 1385.832971][T17588] netlink: 'syz.3.5518': attribute type 1 has an invalid length. [ 1385.841005][T17588] netlink: 'syz.3.5518': attribute type 2 has an invalid length. [ 1385.849334][T17588] netlink: 4 bytes leftover after parsing attributes in process `syz.3.5518'. [ 1385.885992][T17587] loop2: detected capacity change from 0 to 512 [ 1385.902348][T17587] EXT4-fs: Ignoring removed nobh option [ 1386.079869][T17587] EXT4-fs (loop2): mounted filesystem 00800000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1386.093722][T17587] ext4 filesystem being mounted at /1086/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 1386.289404][T17597] loop4: detected capacity change from 0 to 1024 [ 1386.476384][T17597] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1386.585172][ T5781] EXT4-fs (loop2): unmounting filesystem 00800000-0000-0000-0000-000000000000. [ 1387.513795][ T5793] EXT4-fs error (device loop4): ext4_lookup:1817: inode #2: comm syz-executor: deleted inode referenced: 11 [ 1387.528328][ T5793] EXT4-fs error (device loop4): ext4_lookup:1817: inode #2: comm syz-executor: deleted inode referenced: 11 [ 1388.210419][ T5793] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1389.903294][ T1279] ieee802154 phy0 wpan0: encryption failed: -22 [ 1389.910391][ T1279] ieee802154 phy1 wpan1: encryption failed: -22 [ 1390.243925][T17631] netlink: 'syz.1.5539': attribute type 32 has an invalid length. [ 1390.252528][T17631] netlink: 60 bytes leftover after parsing attributes in process `syz.1.5539'. [ 1390.932787][T17642] netlink: 20 bytes leftover after parsing attributes in process `syz.3.5544'. [ 1390.942822][T17642] netlink: 40 bytes leftover after parsing attributes in process `syz.3.5544'. [ 1391.900283][T17645] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 1391.906743][T17645] Bluetooth: hci1: Error when powering off device on rfkill (-4) [ 1391.999266][T17645] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 1392.005868][T17645] Bluetooth: hci2: Error when powering off device on rfkill (-4) [ 1392.351673][T17661] cgroup: name respecified [ 1392.676240][T17645] infiniband syz1: set down [ 1392.709968][ T2154] wlan1 speed is unknown, defaulting to 1000 [ 1392.725929][ T2154] wlan1 speed is unknown, defaulting to 1000 [ 1393.338708][T17672] CIFS mount error: No usable UNC path provided in device string! [ 1393.338708][T17672] [ 1393.349452][T17672] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string! [ 1393.573325][T17676] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 1393.586708][T17676] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 1393.599318][T17676] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 1393.616281][T17677] netlink: 'syz.1.5554': attribute type 2 has an invalid length. [ 1393.628502][T17676] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 1393.661473][T17676] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 1393.673088][T17676] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 1393.818442][ T5779] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 1393.828614][ T5779] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 1393.839158][ T5779] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 1393.862919][ T5779] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 1393.876682][ T5779] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 1393.893924][ T5779] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 1394.174685][T17647] wlan1 speed is unknown, defaulting to 1000 [ 1394.695671][T17694] netlink: 16 bytes leftover after parsing attributes in process `syz.0.5560'. [ 1396.131158][T17676] Bluetooth: hci4: command tx timeout [ 1396.694418][T17647] chnl_net:caif_netlink_parms(): no params data found [ 1398.383383][T17676] Bluetooth: hci4: command tx timeout [ 1399.089245][T17753] nvme_fabrics: unknown parameter or missing value '' in ctrl creation request [ 1399.187281][T17647] bridge0: port 1(bridge_slave_0) entered blocking state [ 1399.195630][T17647] bridge0: port 1(bridge_slave_0) entered disabled state [ 1399.203644][T17647] bridge_slave_0: entered allmulticast mode [ 1399.213506][T17647] bridge_slave_0: entered promiscuous mode [ 1399.369602][T17647] bridge0: port 2(bridge_slave_1) entered blocking state [ 1399.377573][T17647] bridge0: port 2(bridge_slave_1) entered disabled state [ 1399.385553][T17647] bridge_slave_1: entered allmulticast mode [ 1399.395336][T17647] bridge_slave_1: entered promiscuous mode [ 1399.895984][T17647] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 1400.010822][T17647] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 1400.503738][T17647] team0: Port device team_slave_0 added [ 1400.544151][T17772] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 1400.575457][T17676] Bluetooth: hci4: command tx timeout [ 1400.669740][T17647] team0: Port device team_slave_1 added [ 1401.122763][T17647] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 1401.131672][T17647] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 1401.158340][T17647] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 1401.282117][ T29] audit: type=1326 audit(2000000596.962:93): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17778 comm="syz.3.5590" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1353d8cd29 code=0x7ffc0000 [ 1401.421301][ T29] audit: type=1326 audit(2000000597.009:94): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17778 comm="syz.3.5590" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1353d8cd29 code=0x7ffc0000 [ 1401.434497][T17647] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 1401.444472][ T29] audit: type=1326 audit(2000000597.009:95): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17778 comm="syz.3.5590" exe="/root/syz-executor" sig=0 arch=c000003e syscall=59 compat=0 ip=0x7f1353d8cd29 code=0x7ffc0000 [ 1401.451241][T17647] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 1401.451398][T17647] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 1401.513896][ T29] audit: type=1326 audit(2000000597.009:96): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17778 comm="syz.3.5590" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1353d8cd29 code=0x7ffc0000 [ 1401.537001][ T29] audit: type=1326 audit(2000000597.009:97): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17778 comm="syz.3.5590" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1353d8cd29 code=0x7ffc0000 [ 1401.923606][T17786] xt_hashlimit: invalid rate [ 1402.109534][T17647] hsr_slave_0: entered promiscuous mode [ 1402.122377][T17647] hsr_slave_1: entered promiscuous mode [ 1402.131818][T17647] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 1402.139769][T17647] Cannot create hsr debugfs directory [ 1402.808646][T17676] Bluetooth: hci4: command tx timeout [ 1404.142953][T17813] program syz.3.5603 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 1404.269528][T17647] netdevsim netdevsim5 netdevsim0: renamed from eth0 [ 1404.386859][T17647] netdevsim netdevsim5 netdevsim1: renamed from eth1 [ 1404.483752][T17647] netdevsim netdevsim5 netdevsim2: renamed from eth2 [ 1404.630167][T17647] netdevsim netdevsim5 netdevsim3: renamed from eth3 [ 1404.874920][T17823] ip6t_REJECT: TCP_RESET illegal for non-tcp [ 1404.945327][T17825] netlink: 28 bytes leftover after parsing attributes in process `syz.2.5608'. [ 1406.289636][T17647] 8021q: adding VLAN 0 to HW filter on device bond0 [ 1406.637378][T17647] 8021q: adding VLAN 0 to HW filter on device team0 [ 1406.699252][ T5067] bridge0: port 1(bridge_slave_0) entered blocking state [ 1406.707175][ T5067] bridge0: port 1(bridge_slave_0) entered forwarding state [ 1406.848040][ T5067] bridge0: port 2(bridge_slave_1) entered blocking state [ 1406.856769][ T5067] bridge0: port 2(bridge_slave_1) entered forwarding state [ 1408.577973][T17867] netlink: 40 bytes leftover after parsing attributes in process `syz.1.5623'. [ 1408.607225][T17867] netdevsim netdevsim1 netdevsim1: set [1, 1] type 2 family 0 port 20000 - 0 [ 1408.616808][T17867] netdevsim netdevsim1 netdevsim2: set [1, 1] type 2 family 0 port 20000 - 0 [ 1408.626258][T17867] netdevsim netdevsim1 netdevsim3: set [1, 1] type 2 family 0 port 20000 - 0 [ 1409.469426][ T2154] usb 4-1: new high-speed USB device number 95 using dummy_hcd [ 1409.533555][T17647] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 1409.716148][ T2154] usb 4-1: Using ep0 maxpacket: 16 [ 1409.753551][ T2154] usb 4-1: config 0 interface 0 altsetting 1 endpoint 0x7 has invalid wMaxPacketSize 0 [ 1409.764520][ T2154] usb 4-1: config 0 interface 0 altsetting 1 endpoint 0x89 has an invalid bInterval 0, changing to 7 [ 1409.776108][ T2154] usb 4-1: config 0 interface 0 altsetting 1 endpoint 0x89 has invalid wMaxPacketSize 0 [ 1409.786445][ T2154] usb 4-1: config 0 interface 0 has no altsetting 0 [ 1409.925405][ T2154] usb 4-1: New USB device found, idVendor=06cb, idProduct=0006, bcdDevice=9a.eb [ 1409.935091][ T2154] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1409.943783][ T2154] usb 4-1: Product: syz [ 1409.951034][ T2154] usb 4-1: Manufacturer: syz [ 1409.965454][ T2154] usb 4-1: SerialNumber: syz [ 1410.113311][ T2154] usb 4-1: config 0 descriptor?? [ 1410.396898][ T2154] input: syz syz as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0/input/input40 [ 1410.422588][ T5126] synaptics_usb 4-1:0.0: synusb_open - usb_submit_urb failed, error: -90 [ 1410.475253][ T5126] synaptics_usb 4-1:0.0: synusb_open - usb_submit_urb failed, error: -90 [ 1410.553534][ T5126] synaptics_usb 4-1:0.0: synusb_open - usb_submit_urb failed, error: -90 [ 1410.589841][ T5126] synaptics_usb 4-1:0.0: synusb_open - usb_submit_urb failed, error: -90 [ 1410.625589][ T2154] usb 4-1: USB disconnect, device number 95 [ 1412.677126][T17917] netlink: 4 bytes leftover after parsing attributes in process `syz.2.5641'. [ 1412.975965][T17647] veth0_vlan: entered promiscuous mode [ 1413.142437][T17647] veth1_vlan: entered promiscuous mode [ 1413.615440][T17647] veth0_macvtap: entered promiscuous mode [ 1413.688539][T17932] ebt_among: src integrity fail: 100 [ 1413.707169][T17647] veth1_macvtap: entered promiscuous mode [ 1413.966088][T17647] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 1413.978385][T17647] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1413.988829][T17647] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 1413.999645][T17647] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1414.009956][T17647] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 1414.021146][T17647] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1414.031345][T17647] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 1414.042310][T17647] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1414.052619][T17647] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 1414.063548][T17647] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1414.080287][T17647] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 1414.474014][T17647] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 1414.489316][T17647] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1414.499932][T17647] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 1414.510831][T17647] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1414.521213][T17647] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 1414.534089][T17647] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1414.544340][T17647] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 1414.555229][T17647] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1414.566333][T17647] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 1414.577273][T17647] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1414.594286][T17647] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 1414.673913][T17647] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 1414.683419][T17647] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 1414.693670][T17647] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 1414.703035][T17647] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 1414.796695][T17941] ebt_among: dst integrity fail: 101 [ 1415.485052][T17950] loop1: detected capacity change from 0 to 128 [ 1415.833922][T17952] loop0: detected capacity change from 0 to 512 [ 1415.934795][T17952] EXT4-fs (loop0): bad geometry: first data block 1 is beyond end of filesystem (0) [ 1418.836390][T17995] netlink: 'syz.3.5668': attribute type 1 has an invalid length. [ 1419.704300][T18007] loop2: detected capacity change from 0 to 1024 [ 1419.815428][T18007] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1420.536572][ T5781] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1420.733037][T18024] netlink: 288 bytes leftover after parsing attributes in process `syz.1.5676'. [ 1421.593435][T18037] snd_dummy snd_dummy.0: control 2:16:0:syz0:-3 is already present [ 1422.384236][T18051] vivid-007: ================= START STATUS ================= [ 1422.392229][T18051] vivid-007: Generate PTS: true [ 1422.398158][T18051] vivid-007: Generate SCR: true [ 1422.403418][T18051] tpg source WxH: 640x360 (Y'CbCr) [ 1422.409259][T18051] tpg field: 1 [ 1422.412869][T18051] tpg crop: 640x360@0x0 [ 1422.417564][T18051] tpg compose: 640x360@0x0 [ 1422.422239][T18051] tpg colorspace: 8 [ 1422.426554][T18051] tpg transfer function: 0/0 [ 1422.431380][T18051] tpg Y'CbCr encoding: 0/0 [ 1422.436059][T18051] tpg quantization: 0/0 [ 1422.440734][T18051] tpg RGB range: 0/2 [ 1422.443946][T18049] 9pnet_fd: p9_fd_create_unix (18049): address too long: ./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa [ 1422.444753][T18051] vivid-007: ================== END STATUS ================== [ 1422.599943][T18054] netlink: 16 bytes leftover after parsing attributes in process `syz.3.5686'. [ 1422.610292][T18054] netlink: 60 bytes leftover after parsing attributes in process `syz.3.5686'. [ 1422.630147][T18054] IPv6: sit1: Disabled Multicast RS [ 1423.410163][T18061] netlink: 'syz.0.5687': attribute type 7 has an invalid length. [ 1423.616442][ T3667] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1423.624662][ T3667] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1424.005267][ T3615] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1424.013589][ T3615] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1424.884886][ T29] audit: type=1326 audit(2000000619.057:98): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18078 comm="syz.5.5537" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa33bb8cd29 code=0x7ffc0000 [ 1425.021170][ T29] audit: type=1326 audit(2000000619.094:99): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18078 comm="syz.5.5537" exe="/root/syz-executor" sig=0 arch=c000003e syscall=262 compat=0 ip=0x7fa33bb8cd29 code=0x7ffc0000 [ 1425.045836][ T29] audit: type=1326 audit(2000000619.094:100): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18078 comm="syz.5.5537" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa33bb8cd29 code=0x7ffc0000 [ 1425.069209][ T29] audit: type=1326 audit(2000000619.103:101): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18078 comm="syz.5.5537" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa33bb8cd29 code=0x7ffc0000 [ 1425.954110][T18098] netlink: 36 bytes leftover after parsing attributes in process `syz.2.5702'. [ 1427.207228][T18118] netlink: 4 bytes leftover after parsing attributes in process `syz.5.5711'. [ 1428.606066][T18140] netlink: 108 bytes leftover after parsing attributes in process `syz.0.5719'. [ 1428.617991][T18140] netlink: 108 bytes leftover after parsing attributes in process `syz.0.5719'. [ 1428.995689][T18146] loop2: detected capacity change from 0 to 64 [ 1429.335736][T18151] loop1: detected capacity change from 0 to 256 [ 1429.493353][T18151] FAT-fs (loop1): error, corrupted directory (invalid entries) [ 1429.501341][T18151] FAT-fs (loop1): Filesystem has been set read-only [ 1429.706294][T15729] usb 4-1: new high-speed USB device number 96 using dummy_hcd [ 1429.931880][T15729] usb 4-1: Using ep0 maxpacket: 8 [ 1429.978432][T15729] usb 4-1: config 0 has an invalid interface number: 52 but max is 0 [ 1429.987317][T15729] usb 4-1: config 0 has an invalid descriptor of length 48, skipping remainder of the config [ 1429.998798][T15729] usb 4-1: config 0 has no interface number 0 [ 1430.005350][T15729] usb 4-1: config 0 interface 52 altsetting 1 endpoint 0x8A has an invalid bInterval 48, changing to 9 [ 1430.017001][T15729] usb 4-1: config 0 interface 52 altsetting 1 endpoint 0x8A has invalid maxpacket 24624, setting to 1024 [ 1430.028751][T15729] usb 4-1: config 0 interface 52 altsetting 1 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 1430.042148][T15729] usb 4-1: config 0 interface 52 has no altsetting 0 [ 1430.299820][T15729] usb 4-1: New USB device found, idVendor=06cb, idProduct=0003, bcdDevice=e8.00 [ 1430.309561][T15729] usb 4-1: New USB device strings: Mfr=22, Product=149, SerialNumber=35 [ 1430.318391][T15729] usb 4-1: Product: syz [ 1430.322821][T15729] usb 4-1: Manufacturer: syz [ 1430.327859][T15729] usb 4-1: SerialNumber: syz [ 1430.384900][T15729] usb 4-1: config 0 descriptor?? [ 1430.698598][T15729] input: syz syz as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.52/input/input41 [ 1430.993086][ C0] synaptics_usb 4-1:0.52: synusb_irq - usb_submit_urb failed with result: -19 [ 1431.002529][T15729] usb 4-1: USB disconnect, device number 96 [ 1431.353408][T18172] ksmbd: Unknown IPC event: 4, ignore. [ 1431.460010][T18175] loop5: detected capacity change from 0 to 128 [ 1431.970692][T18179] netlink: del zone limit has 4 unknown bytes [ 1432.651747][T18185] 8021q: adding VLAN 0 to HW filter on device bond0 [ 1432.661176][T18185] bond0: (slave sit0): The slave device specified does not support setting the MAC address [ 1432.675461][T18185] bond0: (slave sit0): Error -95 calling set_mac_address [ 1434.444394][T18215] netlink: 'syz.3.5749': attribute type 21 has an invalid length. [ 1434.452969][T18215] netlink: 128 bytes leftover after parsing attributes in process `syz.3.5749'. [ 1434.462684][T18215] netlink: 'syz.3.5749': attribute type 5 has an invalid length. [ 1434.470986][T18215] netlink: 3 bytes leftover after parsing attributes in process `syz.3.5749'. [ 1435.390499][T18228] netlink: 4 bytes leftover after parsing attributes in process `syz.3.5754'. [ 1435.496116][T18230] loop1: detected capacity change from 0 to 16 [ 1435.619843][T18230] erofs (device loop1): mounted with root inode @ nid 36. [ 1435.687290][T18233] loop5: detected capacity change from 0 to 8 [ 1435.755415][T18230] erofs (device loop1): inconsistent algorithmtype 0 for nid 36 [ 1435.763727][T18230] erofs (device loop1): invalid tail-packing pclustersize 0 [ 1435.773905][T18230] erofs (device loop1): inconsistent algorithmtype 0 for nid 36 [ 1435.783034][T18230] erofs (device loop1): invalid tail-packing pclustersize 0 [ 1435.790793][T18230] erofs (device loop1): read error -117 @ 72 of nid 36 [ 1437.133361][T18253] loop3: detected capacity change from 0 to 256 [ 1437.264824][ T9472] usb 3-1: new high-speed USB device number 100 using dummy_hcd [ 1437.521630][ T9472] usb 3-1: New USB device found, idVendor=04fc, idProduct=504a, bcdDevice=43.02 [ 1437.531341][ T9472] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1437.540333][ T9472] usb 3-1: Product: syz [ 1437.544981][ T9472] usb 3-1: Manufacturer: syz [ 1437.549861][ T9472] usb 3-1: SerialNumber: syz [ 1437.552107][T18253] FAT-fs (loop3): Directory bread(block 64) failed [ 1437.561888][T18253] FAT-fs (loop3): Directory bread(block 65) failed [ 1437.569733][T18253] FAT-fs (loop3): Directory bread(block 66) failed [ 1437.576863][T18253] FAT-fs (loop3): Directory bread(block 67) failed [ 1437.583867][T18253] FAT-fs (loop3): Directory bread(block 68) failed [ 1437.591016][T18253] FAT-fs (loop3): Directory bread(block 69) failed [ 1437.598280][T18253] FAT-fs (loop3): Directory bread(block 70) failed [ 1437.605115][T18253] FAT-fs (loop3): Directory bread(block 71) failed [ 1437.612459][T18253] FAT-fs (loop3): Directory bread(block 72) failed [ 1437.619410][T18253] FAT-fs (loop3): Directory bread(block 73) failed [ 1437.673061][ T9472] usb 3-1: config 0 descriptor?? [ 1437.734323][ T9472] gspca_main: sunplus-2.14.0 probing 04fc:504a [ 1438.205502][ T9472] gspca_sunplus: reg_w_riv err -71 [ 1438.211250][ T9472] sunplus 3-1:0.0: probe with driver sunplus failed with error -71 [ 1438.266182][ T9472] usb 3-1: USB disconnect, device number 100 [ 1439.209284][T18274] loop0: detected capacity change from 0 to 2048 [ 1439.537227][T18282] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 1439.605611][T18274] NILFS error (device loop0): nilfs_check_folio: bad entry in directory #2: rec_len is smaller than minimal - offset=32, inode=216172782113783819, rec_len=0, name_len=0 [ 1439.669313][T18274] Remounting filesystem read-only [ 1442.863837][T18329] loop2: detected capacity change from 0 to 64 [ 1445.546512][T18362] loop0: detected capacity change from 0 to 2048 [ 1445.627359][T18371] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 1445.669635][T18362] NILFS (loop0): broken superblock, retrying with spare superblock (blocksize = 1024) [ 1445.679893][T18362] NILFS (loop0): mounting unchecked fs [ 1445.894483][T18362] NILFS (loop0): recovery complete [ 1445.956646][T18375] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 1447.181390][T18392] xt_l2tp: v2 doesn't support IP mode [ 1447.625201][T15729] usb 3-1: new high-speed USB device number 101 using dummy_hcd [ 1447.806132][T15729] usb 3-1: Using ep0 maxpacket: 32 [ 1447.876168][T15729] usb 3-1: unable to get BOS descriptor or descriptor too short [ 1447.906432][T15729] usb 3-1: config 128 has an invalid interface number: 127 but max is 3 [ 1447.915408][T15729] usb 3-1: config 128 has an invalid descriptor of length 0, skipping remainder of the config [ 1447.928001][T15729] usb 3-1: config 128 has 1 interface, different from the descriptor's value: 4 [ 1447.938565][T15729] usb 3-1: config 128 has no interface number 0 [ 1447.945500][T15729] usb 3-1: config 128 interface 127 altsetting 14 endpoint 0x5 has an invalid bInterval 0, changing to 7 [ 1447.957198][T15729] usb 3-1: config 128 interface 127 altsetting 14 endpoint 0x5 has invalid wMaxPacketSize 0 [ 1447.967944][T15729] usb 3-1: config 128 interface 127 has no altsetting 0 [ 1448.321025][T15729] usb 3-1: New USB device found, idVendor=0582, idProduct=295c, bcdDevice=d4.55 [ 1448.330727][T15729] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1448.339106][T15729] usb 3-1: Product: syz [ 1448.343772][T15729] usb 3-1: Manufacturer: syz [ 1448.348660][T15729] usb 3-1: SerialNumber: syz [ 1449.008692][T15729] usb 3-1: USB disconnect, device number 101 [ 1449.461883][ T5949] udevd[5949]: error opening ATTR{/sys/devices/platform/dummy_hcd.2/usb3/3-1/3-1:128.127/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 1450.748181][T18435] loop3: detected capacity change from 0 to 64 [ 1451.015288][T18431] loop5: detected capacity change from 0 to 4096 [ 1451.055572][ T9472] usb 2-1: new high-speed USB device number 93 using dummy_hcd [ 1451.072118][T18431] ntfs3(loop5): Different NTFS sector size (4096) and media sector size (512). [ 1451.328404][ T9472] usb 2-1: config 0 has an invalid interface number: 64 but max is 0 [ 1451.338841][ T9472] usb 2-1: config 0 has no interface number 0 [ 1451.410064][ T9472] usb 2-1: New USB device found, idVendor=046d, idProduct=0823, bcdDevice=39.48 [ 1451.420059][ T9472] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1451.428364][ T9472] usb 2-1: Product: syz [ 1451.433136][ T9472] usb 2-1: Manufacturer: syz [ 1451.438082][ T9472] usb 2-1: SerialNumber: syz [ 1451.457324][T18431] ntfs3(loop5): Mark volume as dirty due to NTFS errors [ 1451.604845][ T9472] usb 2-1: config 0 descriptor?? [ 1451.932769][ T9472] usb 2-1: Found UVC 0.08 device syz (046d:0823) [ 1451.939790][ T9472] usb 2-1: No valid video chain found. [ 1452.012780][ T9472] usb 2-1: USB disconnect, device number 93 [ 1452.412648][T18455] netlink: 20 bytes leftover after parsing attributes in process `syz.3.5845'. [ 1452.422458][T18455] netlink: 12 bytes leftover after parsing attributes in process `syz.3.5845'. [ 1452.432374][T18455] netlink: 20 bytes leftover after parsing attributes in process `syz.3.5845'. [ 1453.434469][T18470] loop2: detected capacity change from 0 to 64 [ 1453.809724][T18476] netlink: 4 bytes leftover after parsing attributes in process `syz.3.5854'. [ 1455.206182][T18494] netlink: 64138 bytes leftover after parsing attributes in process `syz.2.5860'. [ 1455.262346][T18499] netlink: 'syz.3.5863': attribute type 1 has an invalid length. [ 1455.601923][ T1279] ieee802154 phy0 wpan0: encryption failed: -22 [ 1455.608722][ T1279] ieee802154 phy1 wpan1: encryption failed: -22 [ 1457.580256][T18539] netlink: 'syz.1.5877': attribute type 3 has an invalid length. [ 1457.589030][T18539] netlink: 'syz.1.5877': attribute type 1 has an invalid length. [ 1457.589539][T18537] netlink: 8280 bytes leftover after parsing attributes in process `syz.0.5878'. [ 1457.607467][T18537] netlink: 8280 bytes leftover after parsing attributes in process `syz.0.5878'. [ 1458.192721][T18544] geneve2: entered promiscuous mode [ 1458.199176][T18544] geneve2: entered allmulticast mode [ 1459.800288][T18569] loop5: detected capacity change from 0 to 64 [ 1459.886643][T18571] netlink: 'syz.3.5893': attribute type 21 has an invalid length. [ 1459.895017][T18571] netlink: 'syz.3.5893': attribute type 6 has an invalid length. [ 1459.903567][T18571] netlink: 132 bytes leftover after parsing attributes in process `syz.3.5893'. [ 1461.404713][T18595] loop2: detected capacity change from 0 to 164 [ 1461.423541][T18593] loop1: detected capacity change from 0 to 764 [ 1461.550713][T18593] rock: directory entry would overflow storage [ 1461.557423][T18593] rock: sig=0x4f50, size=4, remaining=3 [ 1461.563254][T18593] iso9660: Corrupted directory entry in block 6 of inode 1792 [ 1461.771239][ T9472] usb 3-1: new high-speed USB device number 102 using dummy_hcd [ 1462.013651][ T9472] usb 3-1: Using ep0 maxpacket: 16 [ 1462.044451][ T9472] usb 3-1: config 1 has an invalid descriptor of length 194, skipping remainder of the config [ 1462.055295][ T9472] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 3 [ 1462.174362][ T9472] usb 3-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40 [ 1462.184529][ T9472] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1462.192847][ T9472] usb 3-1: Product: syz [ 1462.197480][ T9472] usb 3-1: Manufacturer: syz [ 1462.202341][ T9472] usb 3-1: SerialNumber: syz [ 1462.506756][ T9472] usb 3-1: 0:2 : does not exist [ 1462.595738][ T9472] usb 3-1: 5:0: failed to get current value for ch 0 (-22) [ 1462.773762][ T9472] usb 3-1: USB disconnect, device number 102 [ 1463.713427][T18623] loop5: detected capacity change from 0 to 1024 [ 1464.221274][ T3667] hfsplus: b-tree write err: -5, ino 4 [ 1464.494525][T18637] netlink: 'syz.1.5927': attribute type 10 has an invalid length. [ 1464.634222][T18640] xt_l2tp: missing protocol rule (udp|l2tpip) [ 1465.387834][ T29] audit: type=1400 audit(2000000656.940:102): apparmor="DENIED" operation="change_hat" class="file" info="unconfined can not change_hat" error=-1 profile="unconfined" pid=18650 comm="syz.0.5933" [ 1467.081612][T18675] netlink: 'syz.3.5944': attribute type 2 has an invalid length. [ 1467.135037][T18678] netlink: 20 bytes leftover after parsing attributes in process `syz.5.5946'. [ 1467.179834][T18678] netdevsim netdevsim5 netdevsim0: entered promiscuous mode [ 1468.644364][T18701] loop5: detected capacity change from 0 to 256 [ 1468.674341][T18701] exfat: Deprecated parameter 'utf8' [ 1468.900933][T18701] exFAT-fs (loop5): failed to load upcase table (idx : 0x00011f41, chksum : 0xf6d3f72e, utbl_chksum : 0xe619d30d) [ 1469.055037][T18709] netlink: 'syz.1.5961': attribute type 3 has an invalid length. [ 1469.063788][T18709] netlink: 666 bytes leftover after parsing attributes in process `syz.1.5961'. [ 1469.708487][T18718] netlink: 'syz.5.5965': attribute type 8 has an invalid length. [ 1471.839462][T18751] netlink: 172 bytes leftover after parsing attributes in process `syz.0.5982'. [ 1474.052449][T18784] openvswitch: netlink: Missing key (keys=40, expected=80) [ 1475.388641][T18807] loop0: detected capacity change from 0 to 512 [ 1475.672368][T18807] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1476.158608][ T5778] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1476.990168][T11032] usb 6-1: new high-speed USB device number 2 using dummy_hcd [ 1477.226270][T11032] usb 6-1: Using ep0 maxpacket: 16 [ 1477.334244][T11032] usb 6-1: New USB device found, idVendor=05d1, idProduct=2001, bcdDevice=10.00 [ 1477.344186][T11032] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1477.352475][T11032] usb 6-1: Product: syz [ 1477.357333][T11032] usb 6-1: Manufacturer: syz [ 1477.362231][T11032] usb 6-1: SerialNumber: syz [ 1477.430994][ T6073] udevd[6073]: error opening ATTR{/sys/devices/platform/dummy_hcd.2/usb3/3-1/3-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 1477.434840][T18831] netlink: 24 bytes leftover after parsing attributes in process `syz.3.6019'. [ 1477.456794][T18831] netlink: 24 bytes leftover after parsing attributes in process `syz.3.6019'. [ 1477.485144][T11032] usb 6-1: config 0 descriptor?? [ 1477.502421][T11032] ftdi_sio 6-1:0.0: FTDI USB Serial Device converter detected [ 1477.514560][T11032] usb 6-1: Detected FT-X [ 1477.981024][T11032] ftdi_sio ttyUSB0: Unable to write latency timer: -71 [ 1478.019709][T11032] ftdi_sio 6-1:0.0: GPIO initialisation failed: -71 [ 1478.106652][T11032] usb 6-1: FTDI USB Serial Device converter now attached to ttyUSB0 [ 1478.178965][T11032] usb 6-1: USB disconnect, device number 2 [ 1478.255403][T11032] ftdi_sio ttyUSB0: FTDI USB Serial Device converter now disconnected from ttyUSB0 [ 1478.268693][T11032] ftdi_sio 6-1:0.0: device disconnected [ 1478.839584][T18834] loop2: detected capacity change from 0 to 4096 [ 1478.936634][T18834] ntfs3(loop2): Different NTFS sector size (2048) and media sector size (512). [ 1478.983771][T18841] netlink: 'syz.0.6024': attribute type 1 has an invalid length. [ 1480.851171][T18860] netlink: 4 bytes leftover after parsing attributes in process `syz.0.6033'. [ 1482.879507][T18881] (unnamed net_device) (uninitialized): option arp_interval: mode dependency failed, not supported in mode 802.3ad(4) [ 1483.021599][ T29] audit: type=1326 audit(1427.692:103): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18883 comm="syz.1.6045" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f05b5f8cd29 code=0x7ffc0000 [ 1483.044337][ T29] audit: type=1326 audit(1427.692:104): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18883 comm="syz.1.6045" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f05b5f8cd29 code=0x7ffc0000 [ 1484.323928][T18900] xt_bpf: check failed: parse error [ 1485.570699][T18915] loop5: detected capacity change from 0 to 1024 [ 1487.609946][T18944] loop1: detected capacity change from 0 to 128 [ 1489.002509][T18962] loop2: detected capacity change from 0 to 16 [ 1489.082737][T18962] erofs (device loop2): mounted with root inode @ nid 36. [ 1489.251583][T18967] loop1: detected capacity change from 0 to 512 [ 1489.401215][T18967] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a856c098, mo2=0102] [ 1489.491809][T18967] System zones: 1-12 [ 1489.512433][T18967] EXT4-fs error (device loop1): ext4_xattr_ibody_find:2240: inode #15: comm syz.1.6085: corrupted in-inode xattr: invalid ea_ino [ 1489.595634][T18967] EXT4-fs error (device loop1): ext4_orphan_get:1394: comm syz.1.6085: couldn't read orphan inode 15 (err -117) [ 1489.666757][T18967] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1489.889792][T18967] EXT4-fs error (device loop1): ext4_lookup:1810: inode #2: comm syz.1.6085: 'file0' linked to parent dir [ 1490.349181][ T5787] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1490.804501][T18988] xt_connbytes: Forcing CT accounting to be enabled [ 1490.811643][T18988] xt_bpf: check failed: parse error [ 1491.442713][T18994] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 1492.833334][T19014] loop1: detected capacity change from 0 to 256 [ 1493.054468][T19014] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0xf6e00961, utbl_chksum : 0xe619d30d) [ 1493.989677][T19032] netlink: 72 bytes leftover after parsing attributes in process `syz.0.6115'. [ 1495.122039][T15729] usb 4-1: new high-speed USB device number 97 using dummy_hcd [ 1495.336792][T15729] usb 4-1: Using ep0 maxpacket: 32 [ 1495.385495][T15729] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 1495.472323][T15729] usb 4-1: New USB device found, idVendor=22b8, idProduct=6027, bcdDevice=c2.80 [ 1495.482083][T15729] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1495.491116][T15729] usb 4-1: Product: syz [ 1495.495617][T15729] usb 4-1: Manufacturer: syz [ 1495.500603][T15729] usb 4-1: SerialNumber: syz [ 1495.606790][T15729] usb 4-1: config 0 descriptor?? [ 1495.657408][T15729] usb 4-1: bad CDC descriptors [ 1495.657660][T19050] loop1: detected capacity change from 0 to 2048 [ 1495.663989][T15729] usb 4-1: unsupported MDLM descriptors [ 1495.843021][ T9472] usb 4-1: USB disconnect, device number 97 [ 1495.949434][T19050] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1496.040811][T19050] EXT4-fs error (device loop1): ext4_xattr_ibody_find:2240: inode #12: comm syz.1.6124: corrupted in-inode xattr: e_name out of bounds [ 1496.425897][ T5787] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1496.984347][T19070] netlink: 4 bytes leftover after parsing attributes in process `syz.0.6133'. [ 1496.994137][T19070] netlink: 'syz.0.6133': attribute type 3 has an invalid length. [ 1497.154463][T19075] mmap: syz.3.6135 (19075): VmData 37466112 exceed data ulimit 0. Update limits or use boot option ignore_rlimit_data. [ 1497.203182][T19077] netlink: 'syz.2.6136': attribute type 21 has an invalid length. [ 1498.907544][T15729] usb 4-1: new high-speed USB device number 98 using dummy_hcd [ 1498.996987][T19099] loop1: detected capacity change from 0 to 512 [ 1499.153942][T15729] usb 4-1: Using ep0 maxpacket: 32 [ 1499.189497][T19099] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1499.219269][T15729] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 1499.314966][T15729] usb 4-1: New USB device found, idVendor=061d, idProduct=c150, bcdDevice=ce.6f [ 1499.324607][T15729] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1499.332927][T15729] usb 4-1: Product: syz [ 1499.337584][T15729] usb 4-1: Manufacturer: syz [ 1499.342478][T15729] usb 4-1: SerialNumber: syz [ 1499.436206][T19099] EXT4-fs (loop1): re-mounted 00000000-0000-0000-0000-000000000000 ro. Quota mode: writeback. [ 1499.485901][T15729] usb 4-1: config 0 descriptor?? [ 1499.536228][T15729] quatech2 4-1:0.0: Quatech 2nd gen USB to Serial Driver converter detected [ 1499.784755][T15729] usb 4-1: qt2_setup_urbs - submit read urb failed -8 [ 1499.793241][T15729] quatech2 4-1:0.0: probe with driver quatech2 failed with error -8 [ 1499.950388][ T5787] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1500.012556][T15729] usb 4-1: USB disconnect, device number 98 [ 1500.975536][T19124] loop0: detected capacity change from 0 to 1024 [ 1501.121530][T19127] netlink: 4 bytes leftover after parsing attributes in process `syz.5.6158'. [ 1501.216691][T19124] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1501.349662][T19134] netlink: 16 bytes leftover after parsing attributes in process `syz.2.6161'. [ 1501.795208][ T5778] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1502.299679][T19146] tmpfs: Unknown parameter '/' [ 1503.355253][T15729] usb 6-1: new high-speed USB device number 3 using dummy_hcd [ 1503.578951][T15729] usb 6-1: Using ep0 maxpacket: 32 [ 1503.636213][T15729] usb 6-1: New USB device found, idVendor=1964, idProduct=0001, bcdDevice=d4.15 [ 1503.647835][T15729] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1503.657572][T15729] usb 6-1: Product: syz [ 1503.662011][T15729] usb 6-1: Manufacturer: syz [ 1503.667058][T15729] usb 6-1: SerialNumber: syz [ 1503.841062][T15729] usb 6-1: config 0 descriptor?? [ 1504.131244][T15729] RobotFuzz Open Source InterFace, OSIF 6-1:0.0: version d4.15 found at bus 006 address 003 [ 1504.348733][T15729] usb 6-1: USB disconnect, device number 3 [ 1505.930725][T19187] mac80211_hwsim hwsim7 €: renamed from wlan0 [ 1508.215032][T19221] tmpfs: Bad value for 'mpol' [ 1508.349026][T19227] netlink: 'syz.0.6207': attribute type 21 has an invalid length. [ 1508.357616][T19227] netlink: 128 bytes leftover after parsing attributes in process `syz.0.6207'. [ 1508.367272][T19227] netlink: 'syz.0.6207': attribute type 4 has an invalid length. [ 1508.375538][T19227] netlink: 'syz.0.6207': attribute type 5 has an invalid length. [ 1508.384239][T19227] netlink: 3 bytes leftover after parsing attributes in process `syz.0.6207'. [ 1508.994891][ T29] audit: type=1326 audit(1451.994:105): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19232 comm="syz.5.6211" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa33bb8cd29 code=0x7ffc0000 [ 1509.042848][T19235] syz.5.6211 calls setitimer() with new_value NULL pointer. Misfeature support will be removed [ 1509.116430][ T29] audit: type=1326 audit(1452.059:106): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19232 comm="syz.5.6211" exe="/root/syz-executor" sig=0 arch=c000003e syscall=38 compat=0 ip=0x7fa33bb8cd29 code=0x7ffc0000 [ 1509.138965][ T29] audit: type=1326 audit(1452.088:107): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19232 comm="syz.5.6211" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa33bb8cd29 code=0x7ffc0000 [ 1509.161538][ T29] audit: type=1326 audit(1452.088:108): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19232 comm="syz.5.6211" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa33bb8cd29 code=0x7ffc0000 [ 1509.205871][T19237] netlink: 20 bytes leftover after parsing attributes in process `syz.0.6212'. [ 1509.988256][T19247] loop0: detected capacity change from 0 to 1024 [ 1510.247880][T19255] netlink: 'syz.1.6221': attribute type 16 has an invalid length. [ 1513.126176][T19297] netlink: 20 bytes leftover after parsing attributes in process `syz.2.6242'. [ 1513.301067][T19305] netlink: 8 bytes leftover after parsing attributes in process `syz.0.6245'. [ 1513.311348][T19305] netlink: 4 bytes leftover after parsing attributes in process `syz.0.6245'. [ 1514.141574][T19315] x_tables: ip_tables: osf match: only valid for protocol 6 [ 1514.834969][T19309] loop2: detected capacity change from 0 to 8192 [ 1515.050246][T15729] usb 6-1: new high-speed USB device number 4 using dummy_hcd [ 1515.285120][T15729] usb 6-1: Using ep0 maxpacket: 8 [ 1515.336357][T15729] usb 6-1: config 3 has an invalid interface number: 202 but max is 0 [ 1515.345026][T15729] usb 6-1: config 3 has no interface number 0 [ 1515.456330][T15729] usb 6-1: New USB device found, idVendor=19d2, idProduct=ff53, bcdDevice=93.f7 [ 1515.467723][T15729] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1515.476931][T15729] usb 6-1: Product: syz [ 1515.481721][T15729] usb 6-1: Manufacturer: syz [ 1515.486593][T15729] usb 6-1: SerialNumber: syz [ 1515.896544][T15729] option 6-1:3.202: GSM modem (1-port) converter detected [ 1516.039172][T15729] usb 6-1: USB disconnect, device number 4 [ 1516.048186][T15729] option 6-1:3.202: device disconnected [ 1516.290917][T19330] loop3: detected capacity change from 0 to 4096 [ 1516.340412][T19330] ntfs3(loop3): Different NTFS sector size (2048) and media sector size (512). [ 1516.414045][T19337] syz.2.6262: attempt to access beyond end of device [ 1516.414045][T19337] nbd2: rw=0, sector=64, nr_sectors = 8 limit=0 [ 1516.428329][T19337] syz.2.6262: attempt to access beyond end of device [ 1516.428329][T19337] nbd2: rw=0, sector=120, nr_sectors = 8 limit=0 [ 1516.441764][T19337] Mount JFS Failure: -5 [ 1516.591186][T19330] ntfs3(loop3): Mark volume as dirty due to NTFS errors [ 1517.039256][T19339] netlink: 'syz.1.6263': attribute type 10 has an invalid length. [ 1517.047395][T19339] netlink: 40 bytes leftover after parsing attributes in process `syz.1.6263'. [ 1517.084921][T19339] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 1517.086903][T19330] ntfs3(loop3): ino=21, The size of extended attributes must not exceed 64KiB [ 1518.209489][T19351] loop3: detected capacity change from 0 to 512 [ 1518.221703][T19344] loop2: detected capacity change from 0 to 4096 [ 1518.302915][T19351] EXT4-fs: Ignoring removed nobh option [ 1518.364088][ T9472] usb 1-1: new high-speed USB device number 111 using dummy_hcd [ 1518.456407][T19356] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 1518.465341][T19351] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1518.566655][ T9472] usb 1-1: Using ep0 maxpacket: 32 [ 1518.633727][ T9472] usb 1-1: config 0 has an invalid interface number: 51 but max is 0 [ 1518.642393][ T9472] usb 1-1: config 0 has no interface number 0 [ 1518.648941][ T9472] usb 1-1: config 0 interface 51 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0 [ 1518.659511][ T9472] usb 1-1: config 0 interface 51 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 0 [ 1518.813823][ T9472] usb 1-1: New USB device found, idVendor=061d, idProduct=c150, bcdDevice=ce.6f [ 1518.823694][ T9472] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1518.832003][ T9472] usb 1-1: Product: syz [ 1518.836705][ T9472] usb 1-1: Manufacturer: syz [ 1518.841591][ T9472] usb 1-1: SerialNumber: syz [ 1518.964582][ T9472] usb 1-1: config 0 descriptor?? [ 1519.017174][ T5777] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1519.037595][ T9472] quatech2 1-1:0.51: Quatech 2nd gen USB to Serial Driver converter detected [ 1519.240760][ T9472] usb 1-1: qt2_setup_urbs - submit read urb failed -90 [ 1519.250816][ T9472] quatech2 1-1:0.51: probe with driver quatech2 failed with error -90 [ 1519.464017][ T9472] usb 1-1: USB disconnect, device number 111 [ 1520.667027][T19380] ip6gre1: entered allmulticast mode [ 1521.306616][ T1279] ieee802154 phy0 wpan0: encryption failed: -22 [ 1521.313512][ T1279] ieee802154 phy1 wpan1: encryption failed: -22 [ 1522.551308][T19403] netlink: 8 bytes leftover after parsing attributes in process `syz.2.6291'. [ 1522.560867][T19403] netlink: 24 bytes leftover after parsing attributes in process `syz.2.6291'. [ 1522.570437][T19403] netlink: 16 bytes leftover after parsing attributes in process `syz.2.6291'. [ 1522.580111][T19403] netlink: 24 bytes leftover after parsing attributes in process `syz.2.6291'. [ 1522.591920][T19403] netlink: 16 bytes leftover after parsing attributes in process `syz.2.6291'. [ 1522.681548][T19406] Timeout policy `syz0' can only be used by L3 protocol number 5 [ 1523.148928][T19410] loop3: detected capacity change from 0 to 64 [ 1523.300268][T19410] hfs: keylen 94 too large [ 1525.749122][T19449] loop2: detected capacity change from 0 to 512 [ 1526.021640][T19449] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1526.158661][T19449] Quota error (device loop2): find_tree_dqentry: Cycle in quota tree detected: block 2 index 0 [ 1526.170330][T19449] Quota error (device loop2): qtree_read_dquot: Can't read quota structure for id 0 [ 1526.180410][T19449] EXT4-fs error (device loop2): ext4_acquire_dquot:6938: comm syz.2.6315: Failed to acquire dquot type 0 [ 1526.792615][ T5781] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1527.865135][T19480] loop0: detected capacity change from 0 to 8 [ 1528.949342][ T5779] Bluetooth: hci4: command 0x0406 tx timeout [ 1530.841612][T19525] tmpfs: Bad value for 'mpol' [ 1531.447610][T19534] loop0: detected capacity change from 0 to 128 [ 1533.203879][ T9472] usb 6-1: new high-speed USB device number 5 using dummy_hcd [ 1533.416169][ T9472] usb 6-1: Using ep0 maxpacket: 32 [ 1533.498995][ T9472] usb 6-1: unable to get BOS descriptor or descriptor too short [ 1533.566705][ T9472] usb 6-1: config 128 has an invalid interface number: 127 but max is 3 [ 1533.575620][ T9472] usb 6-1: config 128 has an invalid descriptor of length 0, skipping remainder of the config [ 1533.588976][ T9472] usb 6-1: config 128 has 1 interface, different from the descriptor's value: 4 [ 1533.599618][ T9472] usb 6-1: config 128 has no interface number 0 [ 1533.606371][ T9472] usb 6-1: config 128 interface 127 altsetting 14 endpoint 0x5 has an invalid bInterval 0, changing to 7 [ 1533.618349][ T9472] usb 6-1: config 128 interface 127 altsetting 14 endpoint 0x5 has invalid wMaxPacketSize 0 [ 1533.620519][T19565] netlink: 36 bytes leftover after parsing attributes in process `syz.1.6371'. [ 1533.628827][ T9472] usb 6-1: config 128 interface 127 has no altsetting 0 [ 1533.793516][ T9472] usb 6-1: New USB device found, idVendor=0582, idProduct=295c, bcdDevice=d4.55 [ 1533.803352][ T9472] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1533.811985][ T9472] usb 6-1: Product: syz [ 1533.816408][ T9472] usb 6-1: Manufacturer: syz [ 1533.821301][ T9472] usb 6-1: SerialNumber: syz [ 1534.426666][ T9472] usb 6-1: USB disconnect, device number 5 [ 1535.219559][ T5949] udevd[5949]: error opening ATTR{/sys/devices/platform/dummy_hcd.5/usb6/6-1/6-1:128.127/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 1536.271118][T19594] loop5: detected capacity change from 0 to 256 [ 1538.928414][T19628] loop1: detected capacity change from 0 to 512 [ 1539.249323][T19628] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1539.661697][T19625] syz.2.6402 (19625): drop_caches: 2 [ 1539.917967][ T5787] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1540.578019][T19648] loop2: detected capacity change from 0 to 512 [ 1540.650961][T19648] EXT4-fs: Ignoring removed oldalloc option [ 1540.836731][T19652] [U] vÔ3¸Âfù¾"SçÁ/Éê4:ÃXTz“W¡t‘’lWµ«= [ 1540.843431][T19652] [U] J"—e:ÀÆ" [ 1540.936242][T19648] EXT4-fs error (device loop2): ext4_xattr_inode_iget:436: comm syz.2.6411: Parent and EA inode have the same ino 15 [ 1541.358383][T19658] loop1: detected capacity change from 0 to 1024 [ 1541.910924][ T1311] hfsplus: b-tree write err: -5, ino 4 [ 1542.940397][T19675] netlink: 'syz.0.6424': attribute type 11 has an invalid length. [ 1543.120695][T19648] EXT4-fs error (device loop2): ext4_xattr_inode_iget:436: comm syz.2.6411: Parent and EA inode have the same ino 15 [ 1543.199259][T19648] EXT4-fs (loop2): 1 orphan inode deleted [ 1543.231715][T19679] netlink: 20 bytes leftover after parsing attributes in process `syz.1.6425'. [ 1543.274540][T19648] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1543.823592][ T5781] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1544.015473][T19687] netlink: 16 bytes leftover after parsing attributes in process `syz.5.6430'. [ 1544.136014][T19689] loop3: detected capacity change from 0 to 256 [ 1544.214626][T19689] exFAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 1544.226007][T19689] exFAT-fs (loop3): Medium has reported failures. Some data may be lost. [ 1544.257228][T19693] netlink: 'syz.2.6431': attribute type 1 has an invalid length. [ 1544.265332][T19693] netlink: 12 bytes leftover after parsing attributes in process `syz.2.6431'. [ 1544.424855][T19695] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 1544.445685][T19689] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0xf32de3a7, utbl_chksum : 0xe619d30d) [ 1545.436203][T19706] loop3: detected capacity change from 0 to 512 [ 1545.520246][T19706] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 1545.638150][T19711] loop2: detected capacity change from 0 to 128 [ 1545.700540][T19711] VFS: Found a Xenix FS (block size = 1024) on device loop2 [ 1545.719348][T19706] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1546.097224][T19711] syz.2.6442: attempt to access beyond end of device [ 1546.097224][T19711] loop2: rw=2049, sector=6491536, nr_sectors = 2 limit=128 [ 1546.234303][ T5777] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1546.577833][T19720] loop5: detected capacity change from 0 to 2048 [ 1546.695384][ T5781] sysv_free_block: flc_count > flc_size [ 1546.701218][ T5781] sysv_free_block: flc_count > flc_size [ 1546.708176][ T5781] sysv_free_block: flc_count > flc_size [ 1546.713940][ T5781] sysv_free_block: flc_count > flc_size [ 1546.720790][ T5781] sysv_free_block: flc_count > flc_size [ 1546.726926][ T5781] sysv_free_block: flc_count > flc_size [ 1546.732697][ T5781] sysv_free_block: flc_count > flc_size [ 1546.738761][ T5781] sysv_free_block: flc_count > flc_size [ 1546.744531][ T5781] sysv_free_block: flc_count > flc_size [ 1546.750548][ T5781] sysv_free_block: flc_count > flc_size [ 1546.757224][ T5781] sysv_free_inode: inode 0,1,2 or nonexistent inode [ 1546.841619][T19720] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 1547.261391][ T29] audit: type=1326 audit(1487.792:109): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19727 comm="syz.1.6450" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f05b5f8cd29 code=0x7ffc0000 [ 1547.389815][ T29] audit: type=1326 audit(1487.867:110): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19727 comm="syz.1.6450" exe="/root/syz-executor" sig=0 arch=c000003e syscall=145 compat=0 ip=0x7f05b5f8cd29 code=0x7ffc0000 [ 1547.412718][ T29] audit: type=1326 audit(1487.867:111): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19727 comm="syz.1.6450" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f05b5f8cd29 code=0x7ffc0000 [ 1547.486740][T19733] (unnamed net_device) (uninitialized): peer notification delay (9) is not a multiple of miimon (5), value rounded to 5 ms [ 1547.657983][T19733] 8021q: adding VLAN 0 to HW filter on device bond1 [ 1548.170218][T19743] netlink: 36 bytes leftover after parsing attributes in process `syz.0.6456'. [ 1548.491329][T19748] tmpfs: Bad value for 'mpol' [ 1549.327631][T19758] netlink: 'syz.2.6463': attribute type 3 has an invalid length. [ 1549.335992][T19758] netlink: 'syz.2.6463': attribute type 1 has an invalid length. [ 1549.344102][T19758] netlink: 216 bytes leftover after parsing attributes in process `syz.2.6463'. [ 1549.355569][T19758] NCSI netlink: No device for ifindex 33022 [ 1550.346698][T19772] loop3: detected capacity change from 0 to 256 [ 1550.447156][T19773] netlink: 132 bytes leftover after parsing attributes in process `syz.0.6471'. [ 1550.682096][T19775] netlink: 40 bytes leftover after parsing attributes in process `syz.5.6472'. [ 1551.309432][T19785] netlink: 'syz.5.6477': attribute type 3 has an invalid length. [ 1551.317767][T19785] netlink: 199836 bytes leftover after parsing attributes in process `syz.5.6477'. [ 1552.242223][T19798] netlink: 4 bytes leftover after parsing attributes in process `syz.2.6483'. [ 1552.254007][T19798] netlink: 4 bytes leftover after parsing attributes in process `syz.2.6483'. [ 1552.264137][T19798] netlink: 5 bytes leftover after parsing attributes in process `syz.2.6483'. [ 1552.399153][T19802] netlink: 'syz.3.6485': attribute type 13 has an invalid length. [ 1552.849666][T19804] netlink: 8 bytes leftover after parsing attributes in process `syz.0.6486'. [ 1556.111971][T19853] netlink: 8 bytes leftover after parsing attributes in process `syz.2.6510'. [ 1556.432996][T19857] loop0: detected capacity change from 0 to 2048 [ 1556.624252][T19862] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 1556.640855][ T2154] usb 2-1: new high-speed USB device number 94 using dummy_hcd [ 1556.688822][T19857] NILFS error (device loop0): nilfs_check_folio: bad entry in directory #2: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, name_len=0 [ 1556.742091][T19857] Remounting filesystem read-only [ 1556.751014][T19864] netlink: 8 bytes leftover after parsing attributes in process `syz.2.6515'. [ 1556.853370][ T2154] usb 2-1: config 0 has an invalid interface number: 197 but max is 0 [ 1556.862382][ T2154] usb 2-1: config 0 has no interface number 0 [ 1556.868854][ T2154] usb 2-1: config 0 interface 197 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 8 [ 1556.879400][ T2154] usb 2-1: config 0 interface 197 altsetting 0 endpoint 0xC has invalid maxpacket 1023, setting to 64 [ 1556.890941][ T2154] usb 2-1: config 0 interface 197 altsetting 0 bulk endpoint 0x87 has invalid maxpacket 1024 [ 1557.153065][ T2154] usb 2-1: New USB device found, idVendor=03f0, idProduct=581d, bcdDevice=bb.42 [ 1557.162892][ T2154] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1557.171438][ T2154] usb 2-1: Product: syz [ 1557.175899][ T2154] usb 2-1: Manufacturer: syz [ 1557.180981][ T2154] usb 2-1: SerialNumber: syz [ 1557.238831][ T2154] usb 2-1: config 0 descriptor?? [ 1557.251699][T19861] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22 [ 1557.268111][T19861] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22 [ 1557.672404][ T2154] qmi_wwan 2-1:0.197: probe with driver qmi_wwan failed with error -71 [ 1557.780688][ T2154] usb 2-1: USB disconnect, device number 94 [ 1558.875827][T19886] netlink: 'syz.2.6526': attribute type 31 has an invalid length. [ 1560.331644][T19912] SET target dimension over the limit! [ 1560.495525][T11032] usb 1-1: new high-speed USB device number 112 using dummy_hcd [ 1560.699688][T11032] usb 1-1: Using ep0 maxpacket: 16 [ 1560.754790][T11032] usb 1-1: New USB device found, idVendor=17ef, idProduct=721e, bcdDevice=de.06 [ 1560.764389][T11032] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1560.773102][T11032] usb 1-1: Product: syz [ 1560.777545][T11032] usb 1-1: Manufacturer: syz [ 1560.782421][T11032] usb 1-1: SerialNumber: syz [ 1560.957510][T11032] r8152-cfgselector 1-1: Unknown version 0x0000 [ 1560.964121][T11032] r8152-cfgselector 1-1: config 0 descriptor?? [ 1561.002375][T19920] netlink: 8 bytes leftover after parsing attributes in process `syz.5.6543'. [ 1561.282627][T19924] netlink: 28 bytes leftover after parsing attributes in process `syz.1.6545'. [ 1561.316665][T19923] netlink: 'syz.3.6544': attribute type 7 has an invalid length. [ 1561.488910][ T2154] r8152-cfgselector 1-1: USB disconnect, device number 112 [ 1562.936261][T19939] xt_TPROXY: Can be used only with -p tcp or -p udp [ 1564.096717][T19963] netlink: 'syz.0.6563': attribute type 21 has an invalid length. [ 1564.105273][T19963] netlink: 156 bytes leftover after parsing attributes in process `syz.0.6563'. [ 1565.102188][T19974] loop0: detected capacity change from 0 to 2048 [ 1565.257214][T19974] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1565.304180][T19985] loop1: detected capacity change from 0 to 8 [ 1565.413764][T19974] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 281 free clusters [ 1565.479994][T19985] SQUASHFS error: Unable to read inode 0xa7 [ 1565.885923][ T5778] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1566.397037][T19996] netlink: 60 bytes leftover after parsing attributes in process `syz.3.6579'. [ 1566.438563][T19995] netlink: 32 bytes leftover after parsing attributes in process `syz.1.6578'. [ 1566.448107][T19995] netlink: 31 bytes leftover after parsing attributes in process `syz.1.6578'. [ 1566.685126][ T2154] usb 1-1: new high-speed USB device number 113 using dummy_hcd [ 1566.895083][ T2154] usb 1-1: Using ep0 maxpacket: 32 [ 1566.965855][ T2154] usb 1-1: config 1 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0 [ 1566.976262][ T2154] usb 1-1: config 1 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0 [ 1567.070902][ T2154] usb 1-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40 [ 1567.080791][ T2154] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1567.089255][ T2154] usb 1-1: Product: syz [ 1567.093987][ T2154] usb 1-1: Manufacturer: syz [ 1567.098942][ T2154] usb 1-1: SerialNumber: syz [ 1567.483007][ T2154] usblp 1-1:1.0: usblp0: USB Unidirectional printer dev 113 if 0 alt 0 proto 1 vid 0x0525 pid 0xA4A8 [ 1567.682925][T11032] usb 1-1: USB disconnect, device number 113 [ 1567.712393][T11032] usblp0: removed [ 1570.840498][T20052] Cannot find set identified by id 65534 to match [ 1572.795449][T20082] netlink: 'syz.5.6622': attribute type 32 has an invalid length. [ 1575.406252][T20105] loop3: detected capacity change from 0 to 4096 [ 1575.440792][T20105] ntfs3(loop3): Different NTFS sector size (4096) and media sector size (512). [ 1575.770135][T20119] loop2: detected capacity change from 0 to 1024 [ 1575.802670][T20105] ntfs3(loop3): ino=1b, "file0" attr_set_size [ 1575.809844][T20105] ntfs3(loop3): Mark volume as dirty due to NTFS errors [ 1576.239831][T20124] netlink: 24 bytes leftover after parsing attributes in process `syz.0.6642'. [ 1576.249337][T20124] netlink: 4 bytes leftover after parsing attributes in process `syz.0.6642'. [ 1577.238713][T20138] overlayfs: option "uuid=on" requires an upper fs, falling back to uuid=null. [ 1577.248367][T20138] overlayfs: missing 'lowerdir' [ 1578.126409][T20152] netlink: 232 bytes leftover after parsing attributes in process `syz.1.6653'. [ 1579.002610][T20164] loop2: detected capacity change from 0 to 256 [ 1579.484981][T11032] usb 1-1: new high-speed USB device number 114 using dummy_hcd [ 1579.758778][T11032] usb 1-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 1579.769522][T11032] usb 1-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 1579.780991][T11032] usb 1-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 18 [ 1579.911742][T11032] usb 1-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 1579.922992][T11032] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1 [ 1579.934403][T11032] usb 1-1: SerialNumber: syz [ 1580.208943][ T2154] usb 3-1: new high-speed USB device number 103 using dummy_hcd [ 1580.356202][T11032] usb 1-1: USB disconnect, device number 114 [ 1580.469870][ T2154] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x7 has invalid wMaxPacketSize 0 [ 1580.480371][ T2154] usb 3-1: config 0 interface 0 altsetting 0 bulk endpoint 0x7 has invalid maxpacket 0 [ 1580.490741][ T2154] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x89 has invalid wMaxPacketSize 0 [ 1580.500975][ T2154] usb 3-1: config 0 interface 0 altsetting 0 bulk endpoint 0x89 has invalid maxpacket 0 [ 1580.511354][ T2154] usb 3-1: New USB device found, idVendor=2040, idProduct=4900, bcdDevice=4d.8b [ 1580.520999][ T2154] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1580.606599][T20184] loop3: detected capacity change from 0 to 512 [ 1580.627399][ T2154] usb 3-1: config 0 descriptor?? [ 1580.816635][T20184] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1580.969621][ T2154] hdpvr 3-1:0.0: firmware version 0x8 dated ¥)†íËŸâè=ÛJå¦+nÍoKÜo5Éüf¦oŠÉ °ÐôçO¬übL [ 1581.227584][ T2154] hdpvr 3-1:0.0: device init failed [ 1581.240576][ T2154] hdpvr 3-1:0.0: probe with driver hdpvr failed with error -12 [ 1581.310599][ T5777] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1581.317486][ T2154] usb 3-1: USB disconnect, device number 103 [ 1582.475748][T20208] ksmbd: Daemon and kernel module version mismatch. ksmbd: 0, kernel module: 1. User-space ksmbd should terminate. [ 1583.178891][T20217] loop3: detected capacity change from 0 to 128 [ 1583.364066][T20217] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 ro without journal. Quota mode: none. [ 1583.899139][ T5777] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 1584.200048][ T29] audit: type=1326 audit(1522.336:112): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20228 comm="syz.1.6689" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f05b5f8cd29 code=0x0 [ 1586.389301][T20254] loop3: detected capacity change from 0 to 4096 [ 1586.463273][T20266] ieee802154 phy0 wpan0: encryption failed: -90 [ 1586.470257][T20254] ntfs3(loop3): Different NTFS sector size (2048) and media sector size (512). [ 1586.875034][T20268] netlink: 20 bytes leftover after parsing attributes in process `syz.1.6708'. [ 1586.884881][T20268] netlink: 20 bytes leftover after parsing attributes in process `syz.1.6708'. [ 1586.956445][ T1279] ieee802154 phy0 wpan0: encryption failed: -22 [ 1586.963326][ T1279] ieee802154 phy1 wpan1: encryption failed: -22 [ 1589.091687][T20294] loop1: detected capacity change from 0 to 1764 [ 1589.290372][T20294] iso9660: Corrupted directory entry in block 2 of inode 1920 [ 1589.616932][T20302] xt_TCPMSS: Only works on TCP SYN packets [ 1590.034007][ T29] audit: type=1326 audit(1527.808:113): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20307 comm="syz.2.6728" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f47bb38cd29 code=0x7ffc0000 [ 1590.058005][ T29] audit: type=1326 audit(1527.808:114): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20307 comm="syz.2.6728" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f47bb38cd29 code=0x7ffc0000 [ 1590.235698][ T29] audit: type=1326 audit(1527.902:115): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20307 comm="syz.2.6728" exe="/root/syz-executor" sig=0 arch=c000003e syscall=282 compat=0 ip=0x7f47bb38cd29 code=0x7ffc0000 [ 1590.258536][ T29] audit: type=1326 audit(1527.902:116): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20307 comm="syz.2.6728" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f47bb38cd29 code=0x7ffc0000 [ 1590.959256][T20319] loop2: detected capacity change from 0 to 512 [ 1591.135008][T20319] EXT4-fs (loop2): Cannot turn on journaled quota: type 0: error -2 [ 1591.143626][T20319] EXT4-fs (loop2): Cannot turn on journaled quota: type 1: error -2 [ 1591.152230][T20319] EXT4-fs error (device loop2): ext4_orphan_get:1415: comm syz.2.6733: bad orphan inode 13 [ 1591.246446][T20319] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1591.285695][T20328] xt_hashlimit: max too large, truncated to 1048576 [ 1591.873699][ T5781] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1592.638929][T20342] ceph: Bad value for 'source' [ 1592.719614][T20345] loop3: detected capacity change from 0 to 64 [ 1594.589964][T20370] netlink: 8 bytes leftover after parsing attributes in process `syz.2.6757'. [ 1595.581217][T20386] loop3: detected capacity change from 0 to 256 [ 1595.700357][T20386] exFAT-fs (loop3): bogus number of FAT structure [ 1595.707258][T20386] exFAT-fs (loop3): failed to read boot sector [ 1595.714697][T20386] exFAT-fs (loop3): failed to recognize exfat type [ 1596.073863][T11032] usb 4-1: new high-speed USB device number 99 using dummy_hcd [ 1596.356992][T11032] usb 4-1: config 0 has an invalid interface number: 218 but max is 2 [ 1596.367826][T11032] usb 4-1: config 0 has an invalid descriptor of length 173, skipping remainder of the config [ 1596.379177][T11032] usb 4-1: config 0 has 2 interfaces, different from the descriptor's value: 3 [ 1596.388647][T11032] usb 4-1: config 0 has no interface number 1 [ 1596.395514][T11032] usb 4-1: config 0 interface 0 altsetting 255 endpoint 0x9 has invalid wMaxPacketSize 0 [ 1596.405866][T11032] usb 4-1: too many endpoints for config 0 interface 218 altsetting 56: 255, using maximum allowed: 30 [ 1596.417339][T11032] usb 4-1: config 0 interface 218 altsetting 56 has 0 endpoint descriptors, different from the interface descriptor's value: 255 [ 1596.431117][T11032] usb 4-1: config 0 interface 0 has no altsetting 1 [ 1596.438188][T11032] usb 4-1: config 0 interface 218 has no altsetting 0 [ 1596.445582][T11032] usb 4-1: New USB device found, idVendor=0489, idProduct=e057, bcdDevice=56.d6 [ 1596.455387][T11032] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1596.541700][T11032] usb 4-1: config 0 descriptor?? [ 1596.789085][T20399] loop0: detected capacity change from 0 to 512 [ 1596.790494][T11032] usb 4-1: string descriptor 0 read error: -71 [ 1596.842338][T11032] usb 4-1: USB disconnect, device number 99 [ 1596.867666][T20399] EXT4-fs: Ignoring removed oldalloc option [ 1596.918347][T20399] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 1597.007190][T20399] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=2856c018, mo2=0002] [ 1597.089392][T20399] System zones: 1-3, 19-19, 35-38 [ 1597.182285][T20399] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1597.830988][ T5778] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1598.078095][T20406] loop1: detected capacity change from 0 to 4096 [ 1598.133171][T20406] ntfs3(loop1): Different NTFS sector size (4096) and media sector size (512). [ 1598.527831][T20406] ntfs3(loop1): Mark volume as dirty due to NTFS errors [ 1599.190532][T20416] xt_nfacct: accounting object `sy' does not exists [ 1600.754989][T20440] loop1: detected capacity change from 0 to 2048 [ 1601.156749][T20449] tmpfs: Bad value for 'mpol' [ 1602.025447][T20460] (unnamed net_device) (uninitialized): option lacp_rate: mode dependency failed, not supported in mode balance-rr(0) [ 1602.135512][T11032] usb 2-1: new high-speed USB device number 95 using dummy_hcd [ 1602.275108][T20461] loop2: detected capacity change from 0 to 1024 [ 1602.392348][T11032] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x7 has invalid wMaxPacketSize 0 [ 1602.402785][T11032] usb 2-1: config 0 interface 0 altsetting 0 bulk endpoint 0x7 has invalid maxpacket 0 [ 1602.413134][T11032] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x89 has invalid wMaxPacketSize 0 [ 1602.423238][T11032] usb 2-1: config 0 interface 0 altsetting 0 bulk endpoint 0x89 has invalid maxpacket 0 [ 1602.433655][T11032] usb 2-1: New USB device found, idVendor=2040, idProduct=4900, bcdDevice=4d.8b [ 1602.443145][T11032] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1602.558580][T11032] usb 2-1: config 0 descriptor?? [ 1602.619471][ T2154] usb 4-1: new high-speed USB device number 100 using dummy_hcd [ 1602.830189][ T2154] usb 4-1: Using ep0 maxpacket: 16 [ 1602.842692][T11032] hdpvr 2-1:0.0: firmware version 0x15 dated mÂÒR( ry|ŸÉA3j×Æe{¸£)”7}-SŠ¥8N¾¾¸¤¼† [ 1602.853394][ T2154] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x8B has invalid maxpacket 31551, setting to 1024 [ 1602.865319][ T2154] usb 4-1: config 0 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 1024 [ 1602.914782][T20465] loop5: detected capacity change from 0 to 512 [ 1602.942280][ T2154] usb 4-1: New USB device found, idVendor=061d, idProduct=c160, bcdDevice=8f.9a [ 1602.952370][ T2154] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1602.960970][ T2154] usb 4-1: Product: syz [ 1602.965412][ T2154] usb 4-1: Manufacturer: syz [ 1602.970442][ T2154] usb 4-1: SerialNumber: syz [ 1602.998613][ T2154] usb 4-1: config 0 descriptor?? [ 1603.007699][T20463] raw-gadget.1 gadget.3: fail, usb_ep_enable returned -22 [ 1603.037216][ T2154] quatech2 4-1:0.0: Quatech 2nd gen USB to Serial Driver converter detected [ 1603.059811][T11032] hdpvr 2-1:0.0: device init failed [ 1603.065744][T11032] hdpvr 2-1:0.0: probe with driver hdpvr failed with error -12 [ 1603.148864][T20465] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1603.181890][T11032] usb 2-1: USB disconnect, device number 95 [ 1603.263063][ C1] usb 4-1: qt2_read_bulk_callback - non-zero urb status: -71 [ 1603.279783][ T2154] usb 4-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB0 [ 1603.317783][ T2154] usb 4-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB1 [ 1603.336910][T20465] Quota error (device loop5): do_check_range: Getting block 4128768 out of range 0-5 [ 1603.398940][ T2154] usb 4-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB2 [ 1603.496800][ T2154] usb 4-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB3 [ 1603.700613][ T2154] usb 4-1: USB disconnect, device number 100 [ 1603.774475][ T2154] quatech-serial ttyUSB0: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB0 [ 1603.826708][T17647] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1603.858667][ T2154] quatech-serial ttyUSB1: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB1 [ 1604.051942][ T2154] quatech-serial ttyUSB2: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB2 [ 1604.126555][ T2154] quatech-serial ttyUSB3: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB3 [ 1604.142158][ T2154] quatech2 4-1:0.0: device disconnected [ 1604.861380][ T2154] usb 6-1: new high-speed USB device number 6 using dummy_hcd [ 1605.094534][ T2154] usb 6-1: too many endpoints for config 4 interface 0 altsetting 0: 101, using maximum allowed: 30 [ 1605.107186][ T2154] usb 6-1: config 4 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 0, changing to 7 [ 1605.118702][ T2154] usb 6-1: config 4 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 101 [ 1605.132338][ T2154] usb 6-1: New USB device found, idVendor=0cf3, idProduct=9374, bcdDevice=bc.3b [ 1605.141932][ T2154] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1605.632295][ T2154] ath6kl: Failed to submit usb control message: -71 [ 1605.637163][T20493] netlink: 28 bytes leftover after parsing attributes in process `syz.1.6815'. [ 1605.639360][ T2154] ath6kl: unable to send the bmi data to the device: -71 [ 1605.648488][T20493] netlink: 28 bytes leftover after parsing attributes in process `syz.1.6815'. [ 1605.665554][ T2154] ath6kl: Unable to send get target info: -71 [ 1605.695442][ T2154] ath6kl: Failed to init ath6kl core: -71 [ 1605.708647][ T2154] ath6kl_usb 6-1:4.0: probe with driver ath6kl_usb failed with error -71 [ 1605.856741][ T2154] usb 6-1: USB disconnect, device number 6 [ 1606.904028][T20510] netlink: 'syz.1.6823': attribute type 1 has an invalid length. [ 1607.182716][T20515] binder: 20514:20515 ioctl c00c6211 0 returned -14 [ 1608.283148][T17673] usb 4-1: new high-speed USB device number 101 using dummy_hcd [ 1608.321501][T20524] loop2: detected capacity change from 0 to 4096 [ 1608.408519][T20533] netlink: 56 bytes leftover after parsing attributes in process `syz.0.6834'. [ 1608.528662][T17673] usb 4-1: Using ep0 maxpacket: 8 [ 1608.583289][T17673] usb 4-1: config 2 has an invalid interface number: 31 but max is 0 [ 1608.591766][T17673] usb 4-1: config 2 has no interface number 0 [ 1608.598629][T17673] usb 4-1: config 2 interface 31 has no altsetting 0 [ 1608.690557][T17673] usb 4-1: New USB device found, idVendor=1a86, idProduct=e092, bcdDevice=53.3f [ 1608.701247][T17673] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1608.709837][T17673] usb 4-1: Product: syz [ 1608.714278][T17673] usb 4-1: Manufacturer: syz [ 1608.719154][T17673] usb 4-1: SerialNumber: syz [ 1608.952865][T20537] loop1: detected capacity change from 0 to 128 [ 1609.146492][T20537] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 1609.427500][T17673] ch9200 4-1:2.31: probe with driver ch9200 failed with error -22 [ 1609.463550][T17673] usb 4-1: USB disconnect, device number 101 [ 1609.652481][ T5787] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 1610.103583][T20551] loop2: detected capacity change from 0 to 256 [ 1612.752755][T20594] nfs: Deprecated parameter 'nointr' [ 1613.187423][T20599] loop3: detected capacity change from 0 to 764 [ 1613.256430][T20599] rock: directory entry would overflow storage [ 1613.262863][T20599] rock: sig=0x4654, size=5, remaining=4 [ 1613.361271][T20603] netlink: 20 bytes leftover after parsing attributes in process `syz.0.6868'. [ 1615.222105][T20634] (unnamed net_device) (uninitialized): Removing last ns target with arp_interval on [ 1615.537332][T20640] binder: 20639:20640 ioctl c018620c 200013c0 returned -22 [ 1616.450160][T20653] loop2: detected capacity change from 0 to 64 [ 1618.139386][ T2154] usb 6-1: new high-speed USB device number 7 using dummy_hcd [ 1618.352607][ T2154] usb 6-1: Using ep0 maxpacket: 8 [ 1618.374721][ T2154] usb 6-1: New USB device found, idVendor=1557, idProduct=7720, bcdDevice=b7.eb [ 1618.384259][ T2154] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1618.457829][ T2154] usb 6-1: config 0 descriptor?? [ 1618.733850][ T2154] asix 6-1:0.0 (unnamed net_device) (uninitialized): invalid hw address, using random [ 1618.944076][T20690] netlink: 8 bytes leftover after parsing attributes in process `syz.3.6911'. [ 1618.954599][T20690] netlink: 8 bytes leftover after parsing attributes in process `syz.3.6911'. [ 1618.956815][ T2154] asix 6-1:0.0 (unnamed net_device) (uninitialized): Failed to read reg index 0x0000: -71 [ 1618.974522][ T2154] asix 6-1:0.0 (unnamed net_device) (uninitialized): Error reading PHY_ID register: ffffffb9 [ 1618.988101][ T2154] asix 6-1:0.0: probe with driver asix failed with error -71 [ 1619.086032][ T2154] usb 6-1: USB disconnect, device number 7 [ 1620.200350][T20705] loop1: detected capacity change from 0 to 2048 [ 1620.315319][T20708] loop0: detected capacity change from 0 to 256 [ 1620.345336][T20710] netlink: 16 bytes leftover after parsing attributes in process `syz.3.6921'. [ 1620.354993][T20710] netlink: 20 bytes leftover after parsing attributes in process `syz.3.6921'. [ 1620.378711][T20705] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 1620.716649][ T29] audit: type=1326 audit(1556.497:117): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20711 comm="syz.2.6922" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f47bb38cd29 code=0x0 [ 1620.870001][T20708] FAT-fs (loop0): Directory bread(block 64) failed [ 1620.877265][T20708] FAT-fs (loop0): Directory bread(block 65) failed [ 1620.884270][T20708] FAT-fs (loop0): Directory bread(block 66) failed [ 1620.892366][T20708] FAT-fs (loop0): Directory bread(block 67) failed [ 1620.899704][T20708] FAT-fs (loop0): Directory bread(block 68) failed [ 1620.906544][T20708] FAT-fs (loop0): Directory bread(block 69) failed [ 1620.913743][T20708] FAT-fs (loop0): Directory bread(block 70) failed [ 1620.920845][T20708] FAT-fs (loop0): Directory bread(block 71) failed [ 1620.927880][T20708] FAT-fs (loop0): Directory bread(block 72) failed [ 1620.934962][T20708] FAT-fs (loop0): Directory bread(block 73) failed [ 1621.636537][T20716] loop3: detected capacity change from 0 to 4096 [ 1621.684331][T20716] ntfs3(loop3): Different NTFS sector size (4096) and media sector size (512). [ 1621.826507][T20724] netlink: 'syz.0.6928': attribute type 13 has an invalid length. [ 1622.110600][T20716] ntfs3(loop3): failed to convert "c46c" to macroman [ 1624.382319][ T2154] usb 3-1: new high-speed USB device number 104 using dummy_hcd [ 1624.607262][ T2154] usb 3-1: Using ep0 maxpacket: 16 [ 1624.661473][ T2154] usb 3-1: config 0 descriptor has 1 excess byte, ignoring [ 1624.669060][ T2154] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x4 has invalid maxpacket 65516, setting to 1024 [ 1624.680891][ T2154] usb 3-1: config 0 interface 0 altsetting 0 bulk endpoint 0x4 has invalid maxpacket 1024 [ 1624.691446][ T2154] usb 3-1: config 0 interface 0 altsetting 0 bulk endpoint 0x81 has invalid maxpacket 223 [ 1624.836053][ T2154] usb 3-1: New USB device found, idVendor=04d8, idProduct=0a30, bcdDevice=ce.47 [ 1624.846109][ T2154] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1624.854648][ T2154] usb 3-1: Product: syz [ 1624.859078][ T2154] usb 3-1: Manufacturer: syz [ 1624.864088][ T2154] usb 3-1: SerialNumber: syz [ 1624.981911][ T2154] usb 3-1: config 0 descriptor?? [ 1624.990291][T20757] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22 [ 1625.048655][T20757] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22 [ 1625.105102][T20773] netlink: 168864 bytes leftover after parsing attributes in process `syz.1.6951'. [ 1625.119537][ C1] mcba_usb 3-1:0.0 can0: Tx URB aborted (-71) [ 1625.126696][ T2154] mcba_usb 3-1:0.0: Microchip CAN BUS Analyzer connected [ 1625.127285][ C1] mcba_usb 3-1:0.0 can0: Tx URB aborted (-71) [ 1625.158790][T20772] loop3: detected capacity change from 0 to 256 [ 1625.317785][T17673] usb 3-1: USB disconnect, device number 104 [ 1625.326407][T17673] mcba_usb 3-1:0.0 can0: device disconnected [ 1625.493188][T20772] FAT-fs (loop3): Directory bread(block 64) failed [ 1625.500653][T20772] FAT-fs (loop3): Directory bread(block 65) failed [ 1625.508705][T20772] FAT-fs (loop3): Directory bread(block 66) failed [ 1625.515720][T20772] FAT-fs (loop3): Directory bread(block 67) failed [ 1625.522710][T20772] FAT-fs (loop3): Directory bread(block 68) failed [ 1625.530006][T20772] FAT-fs (loop3): Directory bread(block 69) failed [ 1625.537129][T20772] FAT-fs (loop3): Directory bread(block 70) failed [ 1625.543987][T20772] FAT-fs (loop3): Directory bread(block 71) failed [ 1625.551304][T20772] FAT-fs (loop3): Directory bread(block 72) failed [ 1625.558440][T20772] FAT-fs (loop3): Directory bread(block 73) failed [ 1627.141391][T20793] loop1: detected capacity change from 0 to 1024 [ 1627.333104][T17673] usb 1-1: new high-speed USB device number 115 using dummy_hcd [ 1627.363438][T20793] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1627.431701][T20793] EXT4-fs error (device loop1): ext4_xattr_inode_iget:440: inode #11: comm syz.1.6962: missing EA_INODE flag [ 1627.449337][T20793] EXT4-fs (loop1): Remounting filesystem read-only [ 1627.525447][T17673] usb 1-1: Using ep0 maxpacket: 16 [ 1627.541808][T17673] usb 1-1: config 0 has an invalid interface number: 126 but max is 0 [ 1627.550761][T17673] usb 1-1: config 0 has an invalid descriptor of length 255, skipping remainder of the config [ 1627.563502][T17673] usb 1-1: config 0 has no interface number 0 [ 1627.570667][T17673] usb 1-1: config 0 interface 126 altsetting 0 has an endpoint descriptor with address 0xB7, changing to 0x87 [ 1627.582978][T17673] usb 1-1: config 0 interface 126 altsetting 0 endpoint 0x87 has invalid maxpacket 34328, setting to 1024 [ 1627.594841][T17673] usb 1-1: config 0 interface 126 altsetting 0 endpoint 0xA has invalid maxpacket 512, setting to 64 [ 1627.606352][T17673] usb 1-1: config 0 interface 126 altsetting 0 bulk endpoint 0x4 has invalid maxpacket 1 [ 1627.616793][T17673] usb 1-1: config 0 interface 126 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 4 [ 1627.630469][T17673] usb 1-1: New USB device found, idVendor=0763, idProduct=1015, bcdDevice=56.88 [ 1627.640060][T17673] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1627.858758][T17673] usb 1-1: config 0 descriptor?? [ 1627.868674][T20795] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22 [ 1627.893193][T20795] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22 [ 1627.966378][T17673] usb 1-1: Quirk or no altset; falling back to MIDI 1.0 [ 1628.014062][ T5787] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1628.121347][T20809] netlink: 32 bytes leftover after parsing attributes in process `syz.5.6968'. [ 1628.258762][ T2154] usb 1-1: USB disconnect, device number 115 [ 1629.062435][T20815] netlink: 48 bytes leftover after parsing attributes in process `syz.5.6971'. [ 1630.234607][T20827] loop3: detected capacity change from 0 to 256 [ 1630.401780][T20827] exFAT-fs (loop3): failed to load upcase table (idx : 0x0001e4a3, chksum : 0x009b275e, utbl_chksum : 0x7319d30d) [ 1631.381275][T20839] loop0: detected capacity change from 0 to 64 [ 1631.449935][T20841] netlink: 72 bytes leftover after parsing attributes in process `syz.3.6984'. [ 1631.459611][T20841] netlink: 72 bytes leftover after parsing attributes in process `syz.3.6984'. [ 1631.589655][T20843] netlink: 'syz.2.6985': attribute type 6 has an invalid length. [ 1631.897240][T20845] loop5: detected capacity change from 0 to 256 [ 1633.657232][T17673] usb 1-1: new high-speed USB device number 116 using dummy_hcd [ 1633.908711][T17673] usb 1-1: Using ep0 maxpacket: 8 [ 1633.989556][T17673] usb 1-1: config index 0 descriptor too short (expected 5659, got 27) [ 1633.998738][T17673] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0 [ 1634.009084][T17673] usb 1-1: config 0 interface 0 altsetting 0 bulk endpoint 0x3 has invalid maxpacket 0 [ 1634.170962][T17673] usb 1-1: New USB device found, idVendor=16d0, idProduct=10a9, bcdDevice=30.52 [ 1634.180624][T17673] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1634.189190][T17673] usb 1-1: Product: syz [ 1634.193614][T17673] usb 1-1: Manufacturer: syz [ 1634.198674][T17673] usb 1-1: SerialNumber: syz [ 1634.302074][T20869] netlink: 'syz.3.6998': attribute type 14 has an invalid length. [ 1634.373850][T17673] usb 1-1: config 0 descriptor?? [ 1634.761279][ T6052] udevd[6052]: error opening ATTR{/sys/devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.126/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 1634.955104][T17673] usb 1-1: USB disconnect, device number 116 [ 1636.394432][T20883] ebt_among: src integrity fail: 30a [ 1636.571263][T20889] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_to_bridge, syncid = 0, id = 0 [ 1637.354335][T20894] loop5: detected capacity change from 0 to 512 [ 1637.387795][T20894] EXT4-fs: Ignoring removed orlov option [ 1637.463200][T20894] EXT4-fs warning (device loop5): dx_probe:878: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 1637.475319][T20894] EXT4-fs warning (device loop5): dx_probe:881: Enable large directory feature to access it [ 1637.486035][T20894] EXT4-fs warning (device loop5): dx_probe:966: inode #2: comm syz.5.7010: Corrupt directory, running e2fsck is recommended [ 1638.026886][T20894] EXT4-fs (loop5): Cannot turn on journaled quota: type 1: error -2 [ 1638.066384][T20894] EXT4-fs error (device loop5): ext4_xattr_ibody_find:2240: inode #15: comm syz.5.7010: corrupted in-inode xattr: invalid ea_ino [ 1638.173122][T20894] EXT4-fs error (device loop5): ext4_orphan_get:1394: comm syz.5.7010: couldn't read orphan inode 15 (err -117) [ 1638.281827][T20894] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1638.613599][T20894] EXT4-fs error (device loop5): ext4_xattr_set_entry:1668: inode #2: comm syz.5.7010: corrupted xattr entries [ 1639.005440][T17647] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1639.554392][T20923] loop1: detected capacity change from 0 to 2048 [ 1639.768627][T20926] loop5: detected capacity change from 0 to 1764 [ 1639.779077][T20930] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 1639.949478][T20932] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent [ 1640.611531][T20939] netlink: 'syz.2.7030': attribute type 1 has an invalid length. [ 1641.619749][T20952] netlink: 'syz.5.7037': attribute type 72 has an invalid length. [ 1642.981518][T20975] (unnamed net_device) (uninitialized): Unable to set peer notification delay as MII monitoring is disabled [ 1643.015552][T20976] netlink: 8 bytes leftover after parsing attributes in process `syz.1.7047'. [ 1643.025186][T20976] netlink: 56 bytes leftover after parsing attributes in process `syz.1.7047'. [ 1643.509141][T20977] xt_ipvs: protocol family 7 not supported [ 1644.405076][T20990] loop0: detected capacity change from 0 to 2048 [ 1644.568363][T20996] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 1644.962375][T21003] netlink: 256 bytes leftover after parsing attributes in process `syz.3.7060'. [ 1645.108680][T21002] loop2: detected capacity change from 0 to 1024 [ 1645.803735][T21011] (unnamed net_device) (uninitialized): option ad_select: invalid value (105) [ 1646.125944][T21016] netlink: 60 bytes leftover after parsing attributes in process `syz.2.7066'. [ 1646.135730][T21016] netlink: 8 bytes leftover after parsing attributes in process `syz.2.7066'. [ 1646.941891][T21028] x_tables: duplicate underflow at hook 2 [ 1647.657713][T21038] SET target dimension over the limit! [ 1648.287439][T21045] netlink: 6 bytes leftover after parsing attributes in process `syz.1.7082'. [ 1648.306048][T21045] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 1648.777204][ T29] audit: type=1326 audit(1582.744:118): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21052 comm="syz.2.7086" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f47bb38cd29 code=0x7ffc0000 [ 1648.875075][ T29] audit: type=1326 audit(1582.800:119): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21052 comm="syz.2.7086" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f47bb38cd29 code=0x7ffc0000 [ 1648.897721][ T29] audit: type=1326 audit(1582.819:120): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21052 comm="syz.2.7086" exe="/root/syz-executor" sig=0 arch=c000003e syscall=65 compat=0 ip=0x7f47bb38cd29 code=0x7ffc0000 [ 1648.921808][ T29] audit: type=1326 audit(1582.819:121): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21052 comm="syz.2.7086" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f47bb38cd29 code=0x7ffc0000 [ 1649.270434][ T29] audit: type=1326 audit(1583.212:122): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21058 comm="syz.5.7088" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa33bb8cd29 code=0x7ffc0000 [ 1649.293296][ T29] audit: type=1326 audit(1583.212:123): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21058 comm="syz.5.7088" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa33bb8cd29 code=0x7ffc0000 [ 1649.444911][T21062] loop3: detected capacity change from 0 to 764 [ 1649.514239][T21062] rock: corrupted directory entry. extent=32, offset=2044, size=237 [ 1650.273395][T21072] netlink: 'syz.2.7095': attribute type 2 has an invalid length. [ 1650.428868][T21075] loop3: detected capacity change from 0 to 256 [ 1650.483948][T21075] FAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 1650.582018][T21075] FAT-fs (loop3): error, corrupted directory (invalid entries) [ 1651.174017][T21088] netlink: 28 bytes leftover after parsing attributes in process `syz.5.7103'. [ 1651.183685][T21088] netlink: 28 bytes leftover after parsing attributes in process `syz.5.7103'. [ 1651.192911][T21088] netlink: 20 bytes leftover after parsing attributes in process `syz.5.7103'. [ 1651.891122][T21100] netlink: 24 bytes leftover after parsing attributes in process `syz.5.7109'. [ 1651.954134][T21098] loop3: detected capacity change from 0 to 512 [ 1652.066990][T21098] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1652.236885][T21106] bridge1: entered promiscuous mode [ 1652.242563][T21106] bridge1: entered allmulticast mode [ 1652.514174][ T5777] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1652.672572][ T1279] ieee802154 phy0 wpan0: encryption failed: -22 [ 1652.679377][ T1279] ieee802154 phy1 wpan1: encryption failed: -22 [ 1653.345203][T21120] netlink: 100 bytes leftover after parsing attributes in process `syz.1.7118'. [ 1653.354856][T21120] netlink: 16 bytes leftover after parsing attributes in process `syz.1.7118'. [ 1653.418311][ T2154] usb 4-1: new high-speed USB device number 102 using dummy_hcd [ 1653.451240][T21122] block device autoloading is deprecated and will be removed. [ 1653.611459][ T2154] usb 4-1: Using ep0 maxpacket: 8 [ 1653.668608][ T2154] usb 4-1: config 0 has 1 interface, different from the descriptor's value: 15 [ 1653.678260][ T2154] usb 4-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 1653.690482][ T2154] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 1653.701885][ T2154] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024 [ 1653.910806][ T2154] usb 4-1: New USB device found, idVendor=077d, idProduct=04aa, bcdDevice=5b.d8 [ 1653.921103][ T2154] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1653.929415][ T2154] usb 4-1: Product: syz [ 1653.934344][ T2154] usb 4-1: Manufacturer: syz [ 1653.947000][ T2154] usb 4-1: SerialNumber: syz [ 1654.089545][ T2154] usb 4-1: config 0 descriptor?? [ 1654.098649][T21116] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22 [ 1654.425652][ T2154] powermate: Expected payload of 3--6 bytes, found 1024 bytes! [ 1654.447118][ T2154] input: Griffin SoundKnob as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0/input/input43 [ 1654.468021][T21128] netlink: 'syz.1.7122': attribute type 10 has an invalid length. [ 1654.476996][T21128] netlink: 40 bytes leftover after parsing attributes in process `syz.1.7122'. [ 1654.486278][T21128] vlan0: entered promiscuous mode [ 1654.495712][T21128] vlan0: entered allmulticast mode [ 1654.501395][T21128] veth0_vlan: entered allmulticast mode [ 1654.512540][T21128] A link change request failed with some changes committed already. Interface vlan0 may have been left with an inconsistent configuration, please check. [ 1654.680189][ C1] powermate: config urb returned -71 [ 1654.686207][ C1] powermate: config urb returned -71 [ 1654.692613][ C1] powermate: config urb returned -71 [ 1654.698498][ C1] powermate: config urb returned -71 [ 1654.800511][ C1] powermate 4-1:0.0: powermate_irq - usb_submit_urb failed with result: -19 [ 1654.809885][ T2154] usb 4-1: USB disconnect, device number 102 [ 1656.097274][T21145] loop5: detected capacity change from 0 to 512 [ 1656.262653][T21145] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1656.441560][T21145] EXT4-fs error (device loop5): ext4_add_entry:2444: inode #2: comm syz.5.7130: Directory hole found for htree leaf block 0 [ 1656.564594][T21154] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 1656.788988][T17647] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1657.778801][T21169] loop0: detected capacity change from 0 to 64 [ 1657.929499][T21169] Trying to free block not in datazone [ 1657.935241][T21169] Trying to free block not in datazone [ 1657.941752][T21169] Trying to free block not in datazone [ 1657.947446][T21169] Trying to free block not in datazone [ 1657.953345][T21169] minix_free_block (loop0:6): bit already cleared [ 1657.960006][T21169] Trying to free block not in datazone [ 1657.965950][T21169] Trying to free block not in datazone [ 1657.972084][T21169] Trying to free block not in datazone [ 1658.473264][T21180] loop3: detected capacity change from 0 to 256 [ 1658.752154][T21184] loop5: detected capacity change from 0 to 256 [ 1658.815868][T21180] FAT-fs (loop3): Directory bread(block 64) failed [ 1658.823227][T21180] FAT-fs (loop3): Directory bread(block 65) failed [ 1658.830522][T21180] FAT-fs (loop3): Directory bread(block 66) failed [ 1658.837418][T21180] FAT-fs (loop3): Directory bread(block 67) failed [ 1658.844779][T21180] FAT-fs (loop3): Directory bread(block 68) failed [ 1658.851850][T21180] FAT-fs (loop3): Directory bread(block 69) failed [ 1658.858883][T21180] FAT-fs (loop3): Directory bread(block 70) failed [ 1658.866699][T21180] FAT-fs (loop3): Directory bread(block 71) failed [ 1658.873864][T21180] FAT-fs (loop3): Directory bread(block 72) failed [ 1658.880883][T21180] FAT-fs (loop3): Directory bread(block 73) failed [ 1659.245825][T21184] FAT-fs (loop5): Directory bread(block 64) failed [ 1659.252822][T21184] FAT-fs (loop5): Directory bread(block 65) failed [ 1659.260249][T21184] FAT-fs (loop5): Directory bread(block 66) failed [ 1659.267367][T21184] FAT-fs (loop5): Directory bread(block 67) failed [ 1659.274341][T21184] FAT-fs (loop5): Directory bread(block 68) failed [ 1659.281494][T21184] FAT-fs (loop5): Directory bread(block 69) failed [ 1659.288866][T21184] FAT-fs (loop5): Directory bread(block 70) failed [ 1659.295682][T21184] FAT-fs (loop5): Directory bread(block 71) failed [ 1659.302869][T21184] FAT-fs (loop5): Directory bread(block 72) failed [ 1659.309881][T21184] FAT-fs (loop5): Directory bread(block 73) failed [ 1659.458795][T21191] netlink: 40 bytes leftover after parsing attributes in process `syz.2.7152'. [ 1661.523216][T21209] loop2: detected capacity change from 0 to 4096 [ 1661.679869][T21219] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 1661.753839][T21209] syz.2.7161: attempt to access beyond end of device [ 1661.753839][T21209] loop2: rw=524288, sector=2097320, nr_sectors = 8 limit=4096 [ 1661.849162][T21209] syz.2.7161: attempt to access beyond end of device [ 1661.849162][T21209] loop2: rw=0, sector=2097320, nr_sectors = 8 limit=4096 [ 1661.896041][ T29] audit: type=1800 audit(1595.007:124): pid=21209 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.7161" name="file2" dev="loop2" ino=16 res=0 errno=0 [ 1663.135226][T21237] loop2: detected capacity change from 0 to 512 [ 1663.211130][T21243] loop5: detected capacity change from 0 to 128 [ 1663.299458][T21237] EXT4-fs error (device loop2): ext4_orphan_get:1389: inode #15: comm syz.2.7172: casefold flag without casefold feature [ 1663.327724][T21237] EXT4-fs error (device loop2): ext4_orphan_get:1394: comm syz.2.7172: couldn't read orphan inode 15 (err -117) [ 1663.363411][T21243] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=16, mo=a842c018, mo2=0002] [ 1663.385803][T21237] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1663.400667][T21243] System zones: 1-3, 19-19, 35-36 [ 1663.443825][T21243] EXT4-fs (loop5): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 1663.575911][T21243] EXT4-fs warning (device loop5): ext4_group_extend:1862: can't shrink FS - resize aborted [ 1663.844106][ T5781] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1663.983910][T17647] EXT4-fs (loop5): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 1664.421004][T21258] netlink: 4 bytes leftover after parsing attributes in process `syz.5.7182'. [ 1665.121352][T21270] loop5: detected capacity change from 0 to 256 [ 1665.586217][T21270] FAT-fs (loop5): Directory bread(block 64) failed [ 1665.593355][T21270] FAT-fs (loop5): Directory bread(block 65) failed [ 1665.601053][T21270] FAT-fs (loop5): Directory bread(block 66) failed [ 1665.608151][T21270] FAT-fs (loop5): Directory bread(block 67) failed [ 1665.615161][T21270] FAT-fs (loop5): Directory bread(block 68) failed [ 1665.622353][T21270] FAT-fs (loop5): Directory bread(block 69) failed [ 1665.629773][T21270] FAT-fs (loop5): Directory bread(block 70) failed [ 1665.636634][T21270] FAT-fs (loop5): Directory bread(block 71) failed [ 1665.643905][T21270] FAT-fs (loop5): Directory bread(block 72) failed [ 1665.650989][T21270] FAT-fs (loop5): Directory bread(block 73) failed [ 1665.691191][ T29] audit: type=1326 audit(1598.487:125): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21274 comm="syz.0.7191" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f274558cd29 code=0x7ffc0000 [ 1665.715407][ T29] audit: type=1326 audit(1598.515:126): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21274 comm="syz.0.7191" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f274558cd29 code=0x7ffc0000 [ 1665.795959][ T29] audit: type=1326 audit(1598.674:127): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21274 comm="syz.0.7191" exe="/root/syz-executor" sig=0 arch=c000003e syscall=163 compat=0 ip=0x7f274558cd29 code=0x7ffc0000 [ 1665.819516][ T29] audit: type=1326 audit(1598.674:128): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21274 comm="syz.0.7191" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f274558cd29 code=0x7ffc0000 [ 1665.842156][ T29] audit: type=1326 audit(1598.674:129): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21274 comm="syz.0.7191" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f274558cd29 code=0x7ffc0000 [ 1667.084688][T21293] loop2: detected capacity change from 0 to 256 [ 1667.154528][T21293] FAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 1667.262429][ T2154] usb 2-1: new high-speed USB device number 96 using dummy_hcd [ 1667.317052][T21293] FAT-fs (loop2): error, corrupted directory (invalid entries) [ 1667.508900][ T2154] usb 2-1: too many configurations: 90, using maximum allowed: 8 [ 1667.563424][ T2154] usb 2-1: config index 0 descriptor too short (expected 65335, got 72) [ 1667.626734][ T2154] usb 2-1: config index 1 descriptor too short (expected 65335, got 72) [ 1667.651691][T21299] syz.0.7203 (21299): /proc/21298/oom_adj is deprecated, please use /proc/21298/oom_score_adj instead. [ 1667.671978][ T2154] usb 2-1: config index 2 descriptor too short (expected 65335, got 72) [ 1667.730401][ T2154] usb 2-1: config index 3 descriptor too short (expected 65335, got 72) [ 1667.772709][ T2154] usb 2-1: config index 4 descriptor too short (expected 65335, got 72) [ 1667.831850][ T2154] usb 2-1: config index 5 descriptor too short (expected 65335, got 72) [ 1667.927481][ T2154] usb 2-1: config index 6 descriptor too short (expected 65335, got 72) [ 1668.008711][ T2154] usb 2-1: config index 7 descriptor too short (expected 65335, got 72) [ 1668.156374][ T2154] usb 2-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08 [ 1668.166219][ T2154] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1668.175939][ T2154] usb 2-1: Product: syz [ 1668.180404][ T2154] usb 2-1: Manufacturer: syz [ 1668.185547][ T2154] usb 2-1: SerialNumber: syz [ 1668.377152][ T2154] usb 2-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested [ 1668.606967][ T9472] usb 2-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008 [ 1668.721753][T21307] loop0: detected capacity change from 0 to 1024 [ 1669.073925][T21307] fuse: Bad value for 'fd' [ 1669.315227][T17673] usb 2-1: USB disconnect, device number 96 [ 1669.557955][ T3615] hfsplus: b-tree write err: -5, ino 4 [ 1669.731022][ T9472] ath9k_htc 2-1:1.0: ath9k_htc: Target is unresponsive [ 1669.739682][ T9472] ath9k_htc: Failed to initialize the device [ 1669.840314][T17673] usb 2-1: ath9k_htc: USB layer deinitialized [ 1670.661184][T21327] xt_HMARK: spi-set and port-set can't be combined [ 1672.230536][T21350] netlink: 16 bytes leftover after parsing attributes in process `syz.2.7228'. [ 1673.592838][T21369] netlink: 8 bytes leftover after parsing attributes in process `syz.5.7238'. [ 1674.137843][T21373] netlink: 36 bytes leftover after parsing attributes in process `syz.3.7240'. [ 1674.949001][T21387] loop3: detected capacity change from 0 to 64 [ 1675.667662][T21397] ===================================================== [ 1675.675106][T21397] BUG: KMSAN: uninit-value in nsim_get_ringparam+0xa8/0xe0 [ 1675.683247][T21397] nsim_get_ringparam+0xa8/0xe0 [ 1675.688571][T21397] ethtool_set_ringparam+0x268/0x570 [ 1675.694273][T21397] dev_ethtool+0x126d/0x2a40 [ 1675.699371][T21397] dev_ioctl+0xb0e/0x1280 [ 1675.703985][T21397] sock_do_ioctl+0x28c/0x540 [ 1675.709087][T21397] sock_ioctl+0x721/0xd70 [ 1675.713748][T21397] __se_sys_ioctl+0x246/0x440 [ 1675.718861][T21397] __x64_sys_ioctl+0x96/0xe0 [ 1675.723742][T21397] x64_sys_call+0x19f0/0x3c30 [ 1675.728743][T21397] do_syscall_64+0xcd/0x1e0 [ 1675.735742][T21397] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1675.742823][T21397] [ 1675.745299][T21397] Local variable kernel_ringparam created at: [ 1675.751795][T21397] ethtool_set_ringparam+0x96/0x570 [ 1675.757229][T21397] dev_ethtool+0x126d/0x2a40 [ 1675.762242][T21397] [ 1675.764731][T21397] CPU: 0 UID: 0 PID: 21397 Comm: syz.3.7252 Not tainted 6.13.0-syzkaller-04788-g7004a2e46d16 #0 [ 1675.775993][T21397] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 1675.786645][T21397] ===================================================== [ 1675.793980][T21397] Disabling lock debugging due to kernel taint [ 1675.800393][T21397] Kernel panic - not syncing: kmsan.panic set ... [ 1675.807009][T21397] CPU: 0 UID: 0 PID: 21397 Comm: syz.3.7252 Tainted: G B 6.13.0-syzkaller-04788-g7004a2e46d16 #0 [ 1675.819193][T21397] Tainted: [B]=BAD_PAGE [ 1675.823492][T21397] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 1675.833771][T21397] Call Trace: [ 1675.837306][T21397] [ 1675.840475][T21397] dump_stack_lvl+0x216/0x2d0 [ 1675.845442][T21397] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 1675.851516][T21397] dump_stack+0x1e/0x24 [ 1675.855947][T21397] panic+0x4e2/0xcf0 [ 1675.860106][T21397] ? kmsan_get_metadata+0xf1/0x1c0 [ 1675.865500][T21397] kmsan_report+0x2c7/0x2d0 [ 1675.870276][T21397] ? __msan_warning+0x95/0x120 [ 1675.875272][T21397] ? nsim_get_ringparam+0xa8/0xe0 [ 1675.880517][T21397] ? ethtool_set_ringparam+0x268/0x570 [ 1675.886214][T21397] ? dev_ethtool+0x126d/0x2a40 [ 1675.891252][T21397] ? dev_ioctl+0xb0e/0x1280 [ 1675.896089][T21397] ? sock_do_ioctl+0x28c/0x540 [ 1675.901362][T21397] ? sock_ioctl+0x721/0xd70 [ 1675.906098][T21397] ? __se_sys_ioctl+0x246/0x440 [ 1675.911230][T21397] ? __x64_sys_ioctl+0x96/0xe0 [ 1675.916435][T21397] ? x64_sys_call+0x19f0/0x3c30 [ 1675.921557][T21397] ? do_syscall_64+0xcd/0x1e0 [ 1675.926552][T21397] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1675.933116][T21397] ? kmsan_internal_poison_memory+0x7d/0x90 [ 1675.939281][T21397] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 1675.945313][T21397] ? kmsan_internal_poison_memory+0x49/0x90 [ 1675.951464][T21397] ? kmsan_slab_free+0xd0/0x140 [ 1675.956505][T21397] ? kfree+0x240/0xdb0 [ 1675.960803][T21397] ? tomoyo_path_number_perm+0x778/0x8f0 [ 1675.966675][T21397] ? kmsan_get_metadata+0x13e/0x1c0 [ 1675.972096][T21397] ? kmsan_internal_set_shadow_origin+0x69/0x100 [ 1675.978707][T21397] ? kmsan_get_metadata+0x13e/0x1c0 [ 1675.984123][T21397] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 1675.990153][T21397] ? kmsan_get_metadata+0x13e/0x1c0 [ 1675.995649][T21397] ? kmsan_internal_memmove_metadata+0x91/0x230 [ 1676.002173][T21397] ? kmsan_get_metadata+0x13e/0x1c0 [ 1676.007586][T21397] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 1676.013618][T21397] __msan_warning+0x95/0x120 [ 1676.018402][T21397] nsim_get_ringparam+0xa8/0xe0 [ 1676.023449][T21397] ? __pfx_nsim_set_ringparam+0x10/0x10 [ 1676.029721][T21397] ? __pfx_nsim_get_ringparam+0x10/0x10 [ 1676.035465][T21397] ethtool_set_ringparam+0x268/0x570 [ 1676.040973][T21397] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 1676.047026][T21397] dev_ethtool+0x126d/0x2a40 [ 1676.051895][T21397] dev_ioctl+0xb0e/0x1280 [ 1676.056431][T21397] sock_do_ioctl+0x28c/0x540 [ 1676.061366][T21397] sock_ioctl+0x721/0xd70 [ 1676.065947][T21397] ? __pfx_sock_ioctl+0x10/0x10 [ 1676.071033][T21397] __se_sys_ioctl+0x246/0x440 [ 1676.075973][T21397] __x64_sys_ioctl+0x96/0xe0 [ 1676.080806][T21397] x64_sys_call+0x19f0/0x3c30 [ 1676.085745][T21397] do_syscall_64+0xcd/0x1e0 [ 1676.090444][T21397] ? clear_bhb_loop+0x25/0x80 [ 1676.095320][T21397] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1676.101496][T21397] RIP: 0033:0x7f1353d8cd29 [ 1676.106092][T21397] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1676.125958][T21397] RSP: 002b:00007f1354b21038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1676.134688][T21397] RAX: ffffffffffffffda RBX: 00007f1353fa5fa0 RCX: 00007f1353d8cd29 [ 1676.142849][T21397] RDX: 0000000020000040 RSI: 0000000000008946 RDI: 0000000000000003 [ 1676.150993][T21397] RBP: 00007f1353e0e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 1676.159221][T21397] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1676.167365][T21397] R13: 0000000000000000 R14: 00007f1353fa5fa0 R15: 00007ffd60fcaeb8 [ 1676.175531][T21397] [ 1676.179124][T21397] Kernel Offset: disabled [ 1676.183550][T21397] Rebooting in 86400 seconds..