last executing test programs: 5m1.563871822s ago: executing program 2 (id=44): syz_mount_image$iso9660(&(0x7f0000000000), &(0x7f0000000800)='./file0\x00', 0x1480e, &(0x7f0000000540)=ANY=[@ANYBLOB="6d61703d6f66662c6d61703d6f6666006e6f726f636b2c73657373696f6e3d3078303030303030303030303030303031662c636865636b3d72656c617865642c636865636b3d72656c61786564416e6f726f636b2c6e6f726f636b2c756e6869642ca757b2b584caaebfda96545499652c6d61703d61636f726e036f76657272696465726f63"], 0x1, 0x69d, &(0x7f00000015c0)="$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") r0 = openat(0xffffffffffffff9c, &(0x7f0000004280)='.\x00', 0x0, 0x0) getdents64(r0, 0xfffffffffffffffe, 0x29) 5m0.687363903s ago: executing program 2 (id=50): r0 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xe, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b4050000d62b00006110600000000000c6000000000000009500000000000000"], &(0x7f0000003ff6)='GPL\x00', 0x4, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x366, 0x10, &(0x7f0000000000), 0x1dd, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0xf, 0x4, 0x4, 0x12, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$BPF_PROG_DETACH(0x9, &(0x7f00000000c0)={@map=r1, r0, 0x5, 0x0, 0x0, @void, @value}, 0x10) 5m0.005899562s ago: executing program 2 (id=55): r0 = socket$kcm(0x2, 0x200000000000001, 0x106) sendmsg$inet(r0, &(0x7f0000000080)={&(0x7f0000000000)={0x2, 0x4001, @local}, 0x10, 0x0}, 0x30004001) ioctl$sock_TIOCOUTQ(r0, 0x5411, &(0x7f0000000000)) 4m59.578276822s ago: executing program 2 (id=58): syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000180)='./bus\x00', 0x1400c, &(0x7f0000000c40)={[{@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x100000}}, {@init_itable}, {@mb_optimize_scan={'mb_optimize_scan', 0x3d, 0x1}}]}, 0x3, 0x44c, &(0x7f0000000340)="$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") syz_mount_image$fuse(0x0, &(0x7f0000000180)='./file2\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount$overlay(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f0000000140)={[{@workdir={'workdir', 0x3d, './file2'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file0'}}], [], 0x2c}) 4m58.435996248s ago: executing program 2 (id=65): r0 = syz_open_dev$I2C(&(0x7f0000000000), 0x0, 0x0) ioctl$I2C_PEC(r0, 0x708, 0x40) ioctl$I2C_SMBUS(r0, 0x720, &(0x7f00000000c0)={0x0, 0x0, 0x2, &(0x7f0000000080)={0x0, "6a4da751434fd7f4a4331cbdbfe693a5babcdf3aa54bce5d926ef908d52773fa7f"}}) 4m57.932693508s ago: executing program 2 (id=68): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$fou(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$FOU_CMD_DEL(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000400)={0x24, r1, 0x1, 0x70bd2b, 0x25dfdbfe, {}, [@FOU_ATTR_LOCAL_V4={0x8, 0x6, @dev={0xac, 0x14, 0x14, 0x3}}, @FOU_ATTR_IFINDEX={0x8}]}, 0x24}, 0x1, 0x0, 0x0, 0x4044094}, 0x8000) 4m56.064097539s ago: executing program 32 (id=68): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$fou(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$FOU_CMD_DEL(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000400)={0x24, r1, 0x1, 0x70bd2b, 0x25dfdbfe, {}, [@FOU_ATTR_LOCAL_V4={0x8, 0x6, @dev={0xac, 0x14, 0x14, 0x3}}, @FOU_ATTR_IFINDEX={0x8}]}, 0x24}, 0x1, 0x0, 0x0, 0x4044094}, 0x8000) 1m32.986671015s ago: executing program 1 (id=1336): r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000080)={0x26, 'skcipher\x00', 0x0, 0x0, 'pcbc(fcrypt)\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, 0x0, 0x0) 1m32.659377482s ago: executing program 1 (id=1338): r0 = socket$qrtr(0x2a, 0x2, 0x0) connect$qrtr(r0, &(0x7f0000000040)={0x2a, 0x1, 0x4000}, 0xc) writev(r0, &(0x7f0000000340)=[{&(0x7f0000000080)='~', 0x1}], 0x1) 1m32.139881365s ago: executing program 1 (id=1343): r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$inet_mreq(r0, 0x0, 0x23, &(0x7f0000000000)={@multicast1=0xe0000300, @local}, 0x8) syz_emit_ethernet(0x2a, &(0x7f0000000080)={@local, @remote, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x1c, 0x0, 0x20, 0x0, 0x2, 0x0, @rand_addr=0x1c, @multicast1=0xe0000300}, @address_request}}}}, 0x0) 1m31.800170159s ago: executing program 1 (id=1347): syz_mount_image$hfsplus(&(0x7f0000000100), &(0x7f0000000080)='./file1\x00', 0x80, &(0x7f0000000280)={[{@nls={'nls', 0x3d, 'macgreek'}}, {@nobarrier}, {@type={'type', 0x3d, "3d21b0c7"}}, {@uid}, {@barrier}, {@uid}, {}, {@nobarrier}, {@nodecompose}, {@gid}, {@umask={'umask', 0x3d, 0x5}}]}, 0x44, 0x6ff, &(0x7f0000000500)="$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") mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0) mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x101091, 0x0) 1m31.081378336s ago: executing program 1 (id=1354): r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) ioctl$SCSI_IOCTL_SEND_COMMAND(r0, 0x1, &(0x7f0000000140)={0x0, 0xff, 0x8}) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3000001, 0x8031, 0xffffffffffffffff, 0x0) 1m29.795830248s ago: executing program 1 (id=1366): bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0x1, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000280)={0x18, 0x11, &(0x7f0000000140)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x400}, {{0x18, 0x1, 0x1, 0x0, r0}}, {}, [@map_idx={0x18, 0x7, 0x5, 0x0, 0x10}], {{}, {}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000000000)='syzkaller\x00', 0x1, 0x0, 0x0, 0x41000, 0x72, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x1, &(0x7f0000000200), &(0x7f0000000240)=[{0x3, 0x5, 0xc}], 0x10, 0x10000, @void, @value}, 0x94) 1m28.681331284s ago: executing program 33 (id=1366): bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0x1, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000280)={0x18, 0x11, &(0x7f0000000140)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x400}, {{0x18, 0x1, 0x1, 0x0, r0}}, {}, [@map_idx={0x18, 0x7, 0x5, 0x0, 0x10}], {{}, {}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000000000)='syzkaller\x00', 0x1, 0x0, 0x0, 0x41000, 0x72, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x1, &(0x7f0000000200), &(0x7f0000000240)=[{0x3, 0x5, 0xc}], 0x10, 0x10000, @void, @value}, 0x94) 4.788698404s ago: executing program 3 (id=1984): r0 = socket$inet6(0xa, 0x3, 0x8000000003c) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x2000, 0x2, @local, 0x4}, 0x1c) sendmsg(r0, &(0x7f00000000c0)={0x0, 0x9504, &(0x7f0000000100)=[{&(0x7f0000000000)="2b10", 0xffbd}], 0x1, 0x0, 0x0, 0x2c}, 0x4) 3.833052544s ago: executing program 3 (id=1990): r0 = socket$inet6_sctp(0xa, 0x5, 0x84) sendmmsg$inet(r0, &(0x7f0000004580)=[{{&(0x7f0000002880)={0x2, 0x0, @private=0xa0100ff}, 0x10, &(0x7f00000029c0)=[{&(0x7f0000000900)='\x00#', 0x2}], 0x1}}], 0x1, 0x0) setsockopt(r0, 0x84, 0x7f, &(0x7f0000000080)="010000000d80ffff", 0x8) 3.260522557s ago: executing program 5 (id=1992): syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000ac0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x1000410, &(0x7f0000000080)={[{@nolazytime}, {}]}, 0x6, 0x504, &(0x7f00000017c0)="$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") r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0) linkat(r0, &(0x7f0000000180)='./file1\x00', r0, &(0x7f0000000640)='./bus\x00', 0x1000) 3.21427227s ago: executing program 0 (id=1995): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$l2tp(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$L2TP_CMD_SESSION_GET(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000880)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010400000000000000000800000008000b"], 0x24}}, 0x0) 2.812188662s ago: executing program 4 (id=1997): syz_mount_image$udf(&(0x7f0000000000), &(0x7f0000000180)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x82, &(0x7f0000000700)=ANY=[], 0xfb, 0xc34, &(0x7f0000001080)="$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") r0 = creat(&(0x7f0000000040)='./bus\x00', 0x9) ioctl$PPPIOCSMRU1(r0, 0x80086c42, &(0x7f0000000280)=0x3e) 2.806266433s ago: executing program 0 (id=1998): r0 = socket$inet6(0xa, 0x800000000000002, 0x0) setsockopt$SO_TIMESTAMP(r0, 0x1, 0x3f, &(0x7f0000000040)=0x10, 0x4) ioctl$SIOCGSTAMP(r0, 0x8906, 0x0) 2.452939933s ago: executing program 3 (id=1999): bpf$ENABLE_STATS(0x20, 0x0, 0x0) r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x6, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="18020000feffffff0000000000000000850000004100000095"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r0, 0x0, 0x2107, 0x0, &(0x7f0000000100), 0x0, 0x1008, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x50) 2.422833796s ago: executing program 0 (id=2000): r0 = io_uring_setup(0xad5, &(0x7f0000000100)) close(r0) clock_nanosleep(0x2, 0x1, &(0x7f0000000000)={0x77359400}, 0xfffffffffffffffe) 2.368200281s ago: executing program 5 (id=2001): unshare(0x2c040600) r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cpuacct.usage_percpu_user\x00', 0x275a, 0x0) fcntl$lock(r0, 0x5, 0x0) 2.148423694s ago: executing program 4 (id=2003): r0 = socket$packet(0x11, 0x3, 0x300) set_mempolicy(0x4005, &(0x7f0000000080)=0x7e, 0x9) setsockopt$packet_rx_ring(r0, 0x107, 0x5, &(0x7f0000001100)=@req3={0x8000, 0x200, 0x80, 0x20000}, 0x1c) 1.999725595s ago: executing program 6 (id=2004): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$devlink(&(0x7f0000000f00), 0xffffffffffffffff) sendmsg$DEVLINK_CMD_SB_TC_POOL_BIND_SET(r0, &(0x7f0000001200)={0x0, 0x0, &(0x7f00000011c0)={&(0x7f0000000f40)={0x64, r1, 0x1, 0x0, 0x0, {}, [{{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8}}, {0xd39d368378e4fa38}, {0x6}, {0x5}, {0x6}, {0x8}}]}, 0x64}}, 0x0) 1.804529956s ago: executing program 5 (id=2005): r0 = socket(0x10, 0x3, 0x0) setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0xc, &(0x7f0000000180)={0x80000000}, 0x19a) write(r0, &(0x7f0000000000)="240000001a005f0400f9f407000904018000000000000000000000000800020040000000", 0x24) 1.804257806s ago: executing program 3 (id=2006): syz_mount_image$hfsplus(&(0x7f00000000c0), &(0x7f0000000980)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x3200004, &(0x7f0000000280)=ANY=[@ANYBLOB="626172726965722c6e6f6465636f6d706f73652c63726561746f723dbd3c66f52c6e6c733d64656661756c742c6769643d", @ANYRESHEX=0x0, @ANYBLOB="2c706172743d3078303030303030303030303030303030382c00c2494f20d59e"], 0x0, 0x6a6, &(0x7f0000002500)="$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") r0 = syz_open_procfs(0x0, &(0x7f0000000040)='mountinfo\x00') read$FUSE(r0, &(0x7f0000000300)={0x2020}, 0x2020) 1.621581326s ago: executing program 6 (id=2007): r0 = socket(0x10, 0x3, 0x0) setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0xc, &(0x7f0000000140)={0x6}, 0x10) write(r0, &(0x7f0000000000)="1c0000001a005f0214f9f407000904001f000000ff02000200000000", 0x1c) 1.551077661s ago: executing program 4 (id=2008): socket$kcm(0x2, 0x3, 0x106) r0 = socket$kcm(0x10, 0x2, 0x4) sendmsg$kcm(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000000ac0)="4c000000140097f87059ae08060c040002ff0f020000000000001a350182fa73a69d35a21429b17cd02941601d60ffc0cca84708f7abca1b4e7d06a60300000072f750375ed08a5604000000", 0x4c}], 0x1}, 0x840) 1.244790215s ago: executing program 5 (id=2009): r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000140), 0x2, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f00000001c0)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000180)={0xffffffffffffffff}, 0x111}}, 0x20) write$RDMA_USER_CM_CMD_RESOLVE_ADDR(r0, &(0x7f0000000340)={0x15, 0x110, 0xfa08, {r1, 0x0, 0x10, 0x10, 0x0, @in={0x2, 0x0, @loopback}, @in={0x2, 0x4000, @broadcast}}}, 0x118) 1.244563078s ago: executing program 4 (id=2010): bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000100)={0xffffffffffffffff, 0xe0, &(0x7f00000007c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x2a, 0xffffffffffffff16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xbd, 0x1000000, 0x0, 0x0}}, 0x10) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000780)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01030000000000000000010000000900010073797a310000000040000000030a01020000000000000000010000000900030073797a300000000014000480080002400000000008000140000000050900010073797a310000000040000000050a01020000000000000000010020000c00024000000000000000010900010073797a310000000014000480080002"], 0xc8}, 0x1, 0x0, 0x0, 0x4000000}, 0x0) 1.224337532s ago: executing program 3 (id=2011): r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000780), r0) sendmsg$NL802154_CMD_DEL_SEC_LEVEL(r0, &(0x7f00000008c0)={0x0, 0x0, &(0x7f0000000880)={&(0x7f0000000800)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="01002dbd7000fbdbdf25210000001c002d8005000300fa000000080002000400000005000400010000000c00060001"], 0x3c}, 0x1, 0x0, 0x0, 0x40804}, 0x20000000) 1.131186668s ago: executing program 6 (id=2012): r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0) bind$bt_l2cap(r0, &(0x7f0000000000)={0x1f, 0x0, @none, 0x4}, 0xe) connect$bt_l2cap(r0, &(0x7f0000000240)={0x1f, 0x0, @any, 0x4, 0x2}, 0xe) 1.091339131s ago: executing program 0 (id=2013): bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x4, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x3, 0x0, &(0x7f0000000c40)=[{0x5, 0x0, 0x0, 0xb}, {0x80, 0x5, 0x9}, {0x0, 0x4, 0x10009}], 0x10, 0x800, @void, @value}, 0x94) r0 = socket$kcm(0x10, 0x3, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xd18c9b25, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f03003b000b15d25a806c8c6394f90324fc60100000000a000200053582c137153e37000c0a80fc0b1000f835", 0x33fe0}], 0x1}, 0x0) 845.177338ms ago: executing program 6 (id=2014): r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/power/disk', 0x149a83, 0x0) unshare(0x20400) sendfile(r0, r0, 0x0, 0x7) 841.116475ms ago: executing program 5 (id=2015): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0) sendmsg$NFT_BATCH(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000003c0)={{0x14}, [@NFT_MSG_NEWRULE={0x64, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x38, 0x4, 0x0, 0x1, [{0x34, 0x1, 0x0, 0x1, @payload={{0xc}, @val={0x24, 0x2, 0x0, 0x1, [@NFTA_PAYLOAD_OFFSET={0x8}, @NFTA_PAYLOAD_BASE={0x8}, @NFTA_PAYLOAD_DREG={0x8, 0x1, 0x1, 0x0, 0x15}, @NFTA_PAYLOAD_LEN={0x8, 0x4, 0x1, 0x0, 0x2}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x8c}}, 0x0) 756.238552ms ago: executing program 4 (id=2016): r0 = openat$sw_sync(0xffffffffffffff9c, &(0x7f0000000040), 0x20000, 0x0) ioctl$SW_SYNC_IOC_CREATE_FENCE(r0, 0xc0285700, &(0x7f0000000080)={0x7, "f12389861b73a20c00c6e3a639f2ee3dab30489d6e293d7b7089e16847082ef9"}) ioctl$SW_SYNC_IOC_INC(r0, 0x40045701, &(0x7f0000000300)=0xffffffff) 456.305758ms ago: executing program 0 (id=2017): r0 = socket$nl_route(0x10, 0x3, 0x0) setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0xc, &(0x7f0000000180)={0xfffffff7, 0x0, 0xf2, 0x80000000}, 0x10) sendmsg$nl_route(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000007c0)={&(0x7f0000000080)=ANY=[@ANYBLOB="2c0000001a00010000000000000000000a008000000000000000000008000200ffffffff080001"], 0x2c}}, 0x0) 456.03385ms ago: executing program 5 (id=2018): r0 = syz_usb_connect$hid(0x2, 0x36, &(0x7f0000000040)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x20, 0x56a, 0x15, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0xf0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x7}}, {{{0x9, 0x5, 0x81, 0x3, 0x200, 0x24}}}}}]}}]}}, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, &(0x7f0000000080)={0x24, 0x0, 0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="002207000000095a800882"], 0x0}, 0x0) 421.13895ms ago: executing program 6 (id=2019): bpf$MAP_CREATE(0x0, &(0x7f0000000040)=@bloom_filter={0x1e, 0x40, 0xfffffffa, 0x7, 0x20029, 0x1, 0x3, '\x00', 0x0, 0xffffffffffffffff, 0x4, 0x3, 0x2, 0x3, @void, @value, @void, @value}, 0x50) r0 = socket$kcm(0xa, 0x2, 0x0) sendmsg$inet(r0, &(0x7f0000000380)={&(0x7f0000000040)={0xa, 0xa, @local}, 0x1c, &(0x7f0000000180)=[{&(0x7f0000000080)="a2", 0x20010030}], 0x4, 0x0, 0x0, 0xa6820000}, 0xfe80) 303.183719ms ago: executing program 6 (id=2020): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000340)=ANY=[@ANYBLOB="180000000000004900000000000000002600000008000000070000000000000095"], &(0x7f00000000c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f00000002c0)='rss_stat\x00', r0}, 0x10) syz_io_uring_setup(0x5fa5, &(0x7f00000002c0)={0x0, 0x3627, 0x1, 0x1, 0x344}, &(0x7f00000000c0), &(0x7f0000000240)) 176.779535ms ago: executing program 3 (id=2021): capset(&(0x7f00000020c0)={0x19980330}, &(0x7f00000001c0)) r0 = syz_open_procfs$namespace(0x0, &(0x7f0000000000)='ns/mnt\x00') setns(r0, 0x0) 78.333064ms ago: executing program 4 (id=2022): r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) setsockopt$WPAN_SECURITY(r0, 0x0, 0x1, &(0x7f0000000000)=0x2, 0xfe37) sendmsg$802154_dgram(r0, &(0x7f0000000200)={&(0x7f00000000c0)={0x24, @short}, 0x14, &(0x7f00000001c0)={0x0}}, 0x0) 0s ago: executing program 0 (id=2023): r0 = syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0) ioctl$DRM_IOCTL_SET_CLIENT_CAP(r0, 0x4010640d, &(0x7f0000000000)={0x3, 0x2}) ioctl$DRM_IOCTL_MODE_ATOMIC(r0, 0xc03864bc, &(0x7f0000000180)={0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000}) kernel console output (not intermixed with test programs): 158][ T6109] udevd[6109]: symlink '../../loop3' '/dev/disk/by-uuid/76b65be2-f6da-4727-8c75-0525a5b65a09.tmp-b7:3' failed: Read-only file system [ 349.248536][ T7403] netlink: 8 bytes leftover after parsing attributes in process `syz.0.528'. [ 349.509659][ T6109] udevd[6109]: symlink '../../loop3' '/dev/disk/by-uuid/76b65be2-f6da-4727-8c75-0525a5b65a09.tmp-b7:3' failed: Read-only file system [ 349.534175][ T5784] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 350.315513][ T7419] loop4: detected capacity change from 0 to 1024 [ 350.458979][ T7423] loop5: detected capacity change from 0 to 256 [ 350.480282][ T7419] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 350.585369][ T7425] netlink: 'syz.0.537': attribute type 10 has an invalid length. [ 350.634195][ T7425] bridge0: port 2(bridge_slave_1) entered disabled state [ 350.644181][ T7425] bridge0: port 1(bridge_slave_0) entered disabled state [ 350.666962][ T7425] bridge0: port 2(bridge_slave_1) entered blocking state [ 350.674995][ T7425] bridge0: port 2(bridge_slave_1) entered forwarding state [ 350.683836][ T7425] bridge0: port 1(bridge_slave_0) entered blocking state [ 350.691756][ T7425] bridge0: port 1(bridge_slave_0) entered forwarding state [ 350.717690][ T7425] bond0: (slave bridge0): Enslaving as an active interface with an up link [ 350.727188][ T29] audit: type=1800 audit(1736569508.482:14): pid=7423 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.538" name=",utf8=0,shortname=winnt,iocharset=cp862,rodir,shortname=winnt," dev="loop5" ino=1048649 res=0 errno=0 [ 350.750974][ T7419] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 350.842255][ T6626] udevd[6626]: symlink '../../loop4' '/dev/disk/by-label/syzkaller.tmp-b7:4' failed: Read-only file system [ 350.853217][ T5831] usb 2-1: new high-speed USB device number 4 using dummy_hcd [ 350.862901][ C0] raw-gadget.0 gadget.1: ignoring, device is not running [ 350.876134][ T7428] netlink: 4 bytes leftover after parsing attributes in process `syz.0.537'. [ 350.885434][ T7428] bridge_slave_1: left allmulticast mode [ 350.891477][ T7428] bridge_slave_1: left promiscuous mode [ 350.898241][ T7428] bridge0: port 2(bridge_slave_1) entered disabled state [ 351.031595][ T5831] usb 2-1: device descriptor read/64, error -32 [ 351.146022][ T7428] bridge_slave_0: left allmulticast mode [ 351.153480][ T7428] bridge_slave_0: left promiscuous mode [ 351.169877][ T7428] bridge0: port 1(bridge_slave_0) entered disabled state [ 351.180663][ T5785] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 351.284200][ T5831] usb 2-1: new high-speed USB device number 5 using dummy_hcd [ 351.575753][ T5831] usb 2-1: Using ep0 maxpacket: 16 [ 351.639086][ T5831] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 351.650454][ T5831] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 351.660737][ T5831] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 351.674159][ T5831] usb 2-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00 [ 351.683753][ T5831] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 351.717040][ T7428] bond0: (slave bridge0): Releasing backup interface [ 351.779448][ T7439] loop4: detected capacity change from 0 to 256 [ 351.822223][ T7439] exfat: Deprecated parameter 'utf8' [ 351.828006][ T7439] exfat: Deprecated parameter 'utf8' [ 351.907296][ T5831] usb 2-1: config 0 descriptor?? [ 351.966001][ T7443] pim6reg: entered allmulticast mode [ 352.003985][ T7439] exFAT-fs (loop4): failed to load upcase table (idx : 0x0001207e, chksum : 0x9e35a9ea, utbl_chksum : 0xe619d30d) [ 352.413352][ T5831] microsoft 0003:045E:07DA.0008: item fetching failed at offset 30/34 [ 352.460950][ T5831] microsoft 0003:045E:07DA.0008: parse failed [ 352.467966][ T5831] microsoft 0003:045E:07DA.0008: probe with driver microsoft failed with error -22 [ 352.671947][ T5831] usb 2-1: USB disconnect, device number 5 [ 353.659775][ T7457] loop4: detected capacity change from 0 to 128 [ 353.935868][ T6109] udevd[6109]: symlink '../../loop4' '/dev/disk/by-label/SYZKALLER.tmp-b7:4' failed: Read-only file system [ 353.965276][ T6109] udevd[6109]: symlink '../../loop4' '/dev/disk/by-uuid/8AF2-7630.tmp-b7:4' failed: Read-only file system [ 354.396790][ T7464] loop3: detected capacity change from 0 to 4096 [ 355.440852][ T6625] udevd[6625]: symlink '../../loop3' '/dev/disk/by-label/syzkaller.tmp-b7:3' failed: Read-only file system [ 355.525602][ T6109] udevd[6109]: symlink '../../loop4' '/dev/disk/by-label/SYZKALLER.tmp-b7:4' failed: Read-only file system [ 355.546475][ T6109] udevd[6109]: symlink '../../loop4' '/dev/disk/by-uuid/8AF2-7630.tmp-b7:4' failed: Read-only file system [ 355.568575][ T6625] udevd[6625]: symlink '../../loop3' '/dev/disk/by-uuid/399AA58E54924951.tmp-b7:3' failed: Read-only file system [ 355.917911][ T7485] loop4: detected capacity change from 0 to 256 [ 356.270100][ T7490] loop1: detected capacity change from 0 to 256 [ 356.377061][ T7490] exfat: Deprecated parameter 'utf8' [ 356.537543][ T7490] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x5441951d, utbl_chksum : 0xe619d30d) [ 357.399125][ T7503] loop5: detected capacity change from 0 to 256 [ 358.570058][ T7518] delete_channel: no stack [ 359.278837][ T7537] loop0: detected capacity change from 0 to 64 [ 359.462912][ T6109] udevd[6109]: symlink '../../loop0' '/dev/disk/by-label/untitled.tmp-b7:0' failed: Read-only file system [ 359.733631][ T7539] netlink: 96 bytes leftover after parsing attributes in process `syz.4.579'. [ 362.115642][ T7582] netlink: 88 bytes leftover after parsing attributes in process `syz.3.597'. [ 362.125050][ T7582] netlink: 24 bytes leftover after parsing attributes in process `syz.3.597'. [ 362.134356][ T7582] netlink: 16 bytes leftover after parsing attributes in process `syz.3.597'. [ 362.143637][ T7582] netlink: 80 bytes leftover after parsing attributes in process `syz.3.597'. [ 363.184466][ T7595] netlink: 240 bytes leftover after parsing attributes in process `syz.5.604'. [ 364.644343][ T7610] loop3: detected capacity change from 0 to 4096 [ 364.765322][ T7619] loop5: detected capacity change from 0 to 2048 [ 364.978354][ T7622] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 364.988517][ T6109] udevd[6109]: symlink '../../loop3' '/dev/disk/by-label/syzkaller.tmp-b7:3' failed: Read-only file system [ 365.002388][ T7619] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 365.015864][ T6109] udevd[6109]: symlink '../../loop3' '/dev/disk/by-uuid/0B506D495F2D248F.tmp-b7:3' failed: Read-only file system [ 365.095256][ T6625] udevd[6625]: symlink '../../loop5' '/dev/disk/by-label/LinuxUDF.tmp-b7:5' failed: Read-only file system [ 365.170579][ T6625] udevd[6625]: symlink '../../loop5' '/dev/disk/by-uuid/1234567812345678.tmp-b7:5' failed: Read-only file system [ 366.015173][ T7636] netlink: 20 bytes leftover after parsing attributes in process `syz.3.622'. [ 366.944312][ T7651] netlink: 12 bytes leftover after parsing attributes in process `syz.1.629'. [ 366.953761][ T7651] smc: net device bond0 applied user defined pnetid SYZ [ 367.851389][ T7667] loop1: detected capacity change from 0 to 256 [ 367.929757][ T7667] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x1a9973fb, utbl_chksum : 0xe619d30d) [ 370.241810][ T29] audit: type=1800 audit(1736569528.082:15): pid=7694 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.648" name="SYSV00000000" dev="hugetlbfs" ino=0 res=0 errno=0 [ 371.060516][ T7707] netlink: 8 bytes leftover after parsing attributes in process `syz.3.655'. [ 371.359372][ T7715] loop0: detected capacity change from 0 to 64 [ 371.517027][ T6109] udevd[6109]: symlink '../../loop0' '/dev/disk/by-label/untitled.tmp-b7:0' failed: Read-only file system [ 373.845192][ T7750] netlink: 56 bytes leftover after parsing attributes in process `syz.4.675'. [ 374.343268][ T7756] loop5: detected capacity change from 0 to 512 [ 374.421946][ T7756] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode [ 374.513429][ T7756] EXT4-fs error (device loop5): ext4_orphan_get:1415: comm syz.5.678: bad orphan inode 131083 [ 374.564296][ T7756] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 375.098538][ T6126] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 375.155480][ T6109] udevd[6109]: symlink '../../loop5' '/dev/disk/by-label/syzkaller.tmp-b7:5' failed: Read-only file system [ 376.339763][ T7780] loop1: detected capacity change from 0 to 32768 [ 376.360505][ T7780] OCFS2: ERROR (device loop1): int ocfs2_validate_inode_block(struct super_block *, struct buffer_head *): Invalid dinode #71: signature =  [ 376.375436][ T7780] On-disk corruption discovered. Please run fsck.ocfs2 once the filesystem is unmounted. [ 376.385630][ T7780] OCFS2: File system is now read-only. [ 376.391454][ T7780] (syz.1.689,7780,1):ocfs2_read_locked_inode:521 ERROR: status = -30 [ 376.400130][ T7780] (syz.1.689,7780,1):_ocfs2_get_system_file_inode:144 ERROR: status = -30 [ 376.413499][ T7780] (syz.1.689,7780,1):ocfs2_init_global_system_inodes:461 ERROR: status = -30 [ 376.423895][ T7780] (syz.1.689,7780,1):ocfs2_init_global_system_inodes:463 ERROR: Unable to load system inode 4, possibly corrupt fs? [ 376.424095][ T7780] (syz.1.689,7780,1):ocfs2_init_global_system_inodes:472 ERROR: status = -30 [ 376.445829][ T7780] (syz.1.689,7780,1):ocfs2_initialize_super:2250 ERROR: status = -30 [ 376.454753][ T7780] (syz.1.689,7780,1):ocfs2_fill_super:1178 ERROR: status = -30 [ 377.899569][ T7802] loop1: detected capacity change from 0 to 512 [ 377.968554][ T7799] netlink: 'syz.5.699': attribute type 1 has an invalid length. [ 377.976732][ T7799] netlink: 127868 bytes leftover after parsing attributes in process `syz.5.699'. [ 378.136156][ T7802] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback. [ 378.153198][ T7802] ext4 filesystem being mounted at /154/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 378.267113][ T7809] trusted_key: encrypted key: instantiation of keys using provided decrypted data is disabled since CONFIG_USER_DECRYPTED_DATA is set to false [ 378.466020][ T7802] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 378.540273][ T7802] EXT4-fs (loop1): re-mounted 00000000-0000-0000-0000-000000d40000 ro. Quota mode: writeback. [ 378.983126][ T7820] loop5: detected capacity change from 0 to 8192 [ 379.099513][ T7820] loop5: p1 p2 p3 p4 [ 379.104263][ T7820] loop5: p1 size 108922248 extends beyond EOD, truncated [ 379.122709][ T7820] loop5: p2 start 861536256 is beyond EOD, truncated [ 379.129885][ T7820] loop5: p3 start 851968 is beyond EOD, truncated [ 379.137059][ T7820] loop5: p4 size 65536 extends beyond EOD, truncated [ 379.139462][ T5776] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000d40000. [ 380.513591][ T5831] usb 4-1: new high-speed USB device number 6 using dummy_hcd [ 380.702326][ T5831] usb 4-1: Using ep0 maxpacket: 8 [ 380.737748][ T5831] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 7 [ 380.777423][ T5831] usb 4-1: New USB device found, idVendor=082d, idProduct=0100, bcdDevice=70.4b [ 380.787404][ T5831] usb 4-1: New USB device strings: Mfr=44, Product=2, SerialNumber=3 [ 380.796130][ T5831] usb 4-1: Product: syz [ 380.800537][ T5831] usb 4-1: Manufacturer: syz [ 380.805509][ T5831] usb 4-1: SerialNumber: syz [ 380.831558][ T7852] netlink: 4 bytes leftover after parsing attributes in process `syz.5.718'. [ 381.062575][ T5831] usb 4-1: Handspring Visor / Palm OS: No valid connect info available [ 381.071431][ T5831] usb 4-1: Handspring Visor / Palm OS: port 0, is for HotSync use [ 381.079540][ T5831] usb 4-1: Handspring Visor / Palm OS: port 0, is for Generic use [ 381.087971][ T5831] usb 4-1: Handspring Visor / Palm OS: Number of ports: 2 [ 381.160248][ T7850] loop1: detected capacity change from 0 to 1024 [ 381.230413][ T7850] EXT4-fs (loop1): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock [ 381.240630][ T7850] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (42152!=20869) [ 381.250846][ T7850] EXT4-fs (loop1): stripe (2) is not aligned with cluster size (16), stripe is disabled [ 381.265093][ T5831] usb 4-1: palm_os_3_probe - error -71 getting bytes available request [ 381.273991][ T5831] visor 4-1:1.0: Handspring Visor / Palm OS converter detected [ 381.331725][ T7850] EXT4-fs error (device loop1): ext4_get_journal_inode:5809: inode #5: comm syz.1.722: unexpected bad inode w/o EXT4_IGET_BAD [ 381.352455][ T5831] usb 4-1: Handspring Visor / Palm OS converter now attached to ttyUSB0 [ 381.369458][ T7850] EXT4-fs (loop1): no journal found [ 381.375279][ T7850] EXT4-fs (loop1): can't get journal size [ 381.397063][ T5831] usb 4-1: Handspring Visor / Palm OS converter now attached to ttyUSB1 [ 381.412855][ T7850] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 381.491910][ T5831] usb 4-1: USB disconnect, device number 6 [ 381.562867][ T5831] visor ttyUSB0: Handspring Visor / Palm OS converter now disconnected from ttyUSB0 [ 381.610551][ T5831] visor ttyUSB1: Handspring Visor / Palm OS converter now disconnected from ttyUSB1 [ 381.622791][ T5831] visor 4-1:1.0: device disconnected [ 381.820082][ T5776] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 382.043665][ T1887] usb 6-1: new full-speed USB device number 3 using dummy_hcd [ 382.205731][ T7873] netlink: 'syz.3.732': attribute type 10 has an invalid length. [ 382.227839][ T1887] usb 6-1: New USB device found, idVendor=17e9, idProduct=8b4e, bcdDevice=9c.08 [ 382.237555][ T1887] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 382.273742][ T7873] team0: Port device netdevsim3 added [ 382.305170][ T1887] usb 6-1: config 0 descriptor?? [ 382.308857][ T7876] netlink: 'syz.3.732': attribute type 10 has an invalid length. [ 382.360790][ T7876] team0: Port device netdevsim3 removed [ 382.380130][ T7876] bond0: (slave netdevsim3): Enslaving as an active interface with an up link [ 382.793827][ T1887] [drm] Initialized udl 0.0.1 for 6-1:0.0 on minor 2 [ 382.800841][ T1887] [drm] Initialized udl on minor 2 [ 382.981950][ T1887] udl 6-1:0.0: [drm] *ERROR* Read EDID byte 0 failed err ffffffb9 [ 382.991116][ T1887] udl 6-1:0.0: [drm] Cannot find any crtc or sizes [ 383.002618][ T5831] udl 6-1:0.0: [drm] *ERROR* Read EDID byte 0 failed err ffffffb9 [ 383.031540][ T5831] udl 6-1:0.0: [drm] *ERROR* Read EDID byte 0 failed err ffffffb9 [ 383.040096][ T5831] udl 6-1:0.0: [drm] Cannot find any crtc or sizes [ 383.085214][ T1887] usb 6-1: USB disconnect, device number 3 [ 383.131481][ T7887] netlink: 12 bytes leftover after parsing attributes in process `syz.0.738'. [ 383.451972][ T29] audit: type=1326 audit(1736569541.292:16): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7877 comm="syz.1.734" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fae2ff85d29 code=0x7fc00000 [ 383.479701][ T29] audit: type=1326 audit(1736569541.292:17): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7877 comm="syz.1.734" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fae2ff85d29 code=0x7fc00000 [ 383.504573][ T29] audit: type=1326 audit(1736569541.292:18): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7877 comm="syz.1.734" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fae2ff85d29 code=0x7fc00000 [ 383.527194][ T29] audit: type=1326 audit(1736569541.292:19): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7877 comm="syz.1.734" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fae2ff85d29 code=0x7fc00000 [ 383.549975][ T29] audit: type=1326 audit(1736569541.292:20): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7877 comm="syz.1.734" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fae2ff85d29 code=0x7fc00000 [ 383.574184][ T29] audit: type=1326 audit(1736569541.292:21): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7877 comm="syz.1.734" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fae2ff85d29 code=0x7fc00000 [ 383.602941][ T29] audit: type=1326 audit(1736569541.292:22): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7877 comm="syz.1.734" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fae2ff85d29 code=0x7fc00000 [ 383.625596][ T29] audit: type=1326 audit(1736569541.292:23): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7877 comm="syz.1.734" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fae2ff85d29 code=0x7fc00000 [ 383.648270][ T29] audit: type=1326 audit(1736569541.292:24): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7877 comm="syz.1.734" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fae2ff85d29 code=0x7fc00000 [ 383.670942][ T29] audit: type=1326 audit(1736569541.302:25): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7877 comm="syz.1.734" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fae2ff85d29 code=0x7fc00000 [ 384.588807][ T7912] tmpfs: Cannot change global quota limit on remount [ 384.825461][ T7918] netlink: 16 bytes leftover after parsing attributes in process `syz.0.750'. [ 385.116641][ T5828] usb 4-1: new high-speed USB device number 7 using dummy_hcd [ 385.151666][ T5079] Bluetooth: hci2: command 0x0406 tx timeout [ 385.288285][ T5828] usb 4-1: Using ep0 maxpacket: 16 [ 385.300643][ T5828] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 385.312295][ T5828] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 385.326253][ T5828] usb 4-1: New USB device found, idVendor=0c70, idProduct=f0b6, bcdDevice= 0.00 [ 385.337300][ T5828] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 385.349890][ T5828] usb 4-1: config 0 descriptor?? [ 385.788969][ T7933] loop1: detected capacity change from 0 to 1024 [ 385.815520][ T7933] EXT4-fs: Ignoring removed nobh option [ 385.822091][ T7933] EXT4-fs: Ignoring removed bh option [ 385.842277][ T5828] aquacomputer_d5next 0003:0C70:F0B6.0009: hidraw0: USB HID v0.00 Device [HID 0c70:f0b6] on usb-dummy_hcd.3-1/input0 [ 386.035421][ T5828] usb 4-1: USB disconnect, device number 7 [ 386.116299][ T7933] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 386.383322][ T5776] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 386.758223][ T7957] bond0: option lacp_rate: mode dependency failed, not supported in mode balance-rr(0) [ 387.995881][ T1887] usb 2-1: new high-speed USB device number 6 using dummy_hcd [ 388.177941][ T1887] usb 2-1: Using ep0 maxpacket: 8 [ 388.235452][ T1887] usb 2-1: config 2 has an invalid interface number: 31 but max is 0 [ 388.244358][ T1887] usb 2-1: config 2 has no interface number 0 [ 388.250895][ T1887] usb 2-1: config 2 interface 31 has no altsetting 0 [ 388.276426][ T7992] loop5: detected capacity change from 0 to 16 [ 388.321742][ T7992] erofs (device loop5): mounted with root inode @ nid 36. [ 388.330317][ T1887] usb 2-1: New USB device found, idVendor=1a86, idProduct=e092, bcdDevice=53.3f [ 388.340172][ T1887] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 388.350040][ T1887] usb 2-1: Product: syz [ 388.354594][ T1887] usb 2-1: Manufacturer: syz [ 388.359452][ T1887] usb 2-1: SerialNumber: syz [ 388.783065][ T8000] delete_channel: no stack [ 388.789413][ T7999] delete_channel: no stack [ 389.474602][ T8014] loop3: detected capacity change from 0 to 256 [ 389.485713][ T1887] ch9200 2-1:2.31: probe with driver ch9200 failed with error -22 [ 389.505455][ T1887] usb 2-1: USB disconnect, device number 6 [ 389.584035][ T8014] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0x1a9973fb, utbl_chksum : 0xe619d30d) [ 389.601870][ T5831] usb 6-1: new high-speed USB device number 4 using dummy_hcd [ 389.955574][ T5831] usb 6-1: New USB device found, idVendor=05d1, idProduct=2021, bcdDevice=33.00 [ 389.966362][ T5831] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 389.975765][ T5831] usb 6-1: Product: syz [ 389.980189][ T5831] usb 6-1: Manufacturer: syz [ 389.985769][ T5831] usb 6-1: SerialNumber: syz [ 389.999290][ T5831] usb 6-1: config 0 descriptor?? [ 390.014229][ T5831] ftdi_sio 6-1:0.0: FTDI USB Serial Device converter detected [ 390.023552][ T5831] usb 6-1: Detected FT232HP [ 390.280076][ T5831] ftdi_sio ttyUSB0: Unable to read latency timer: -32 [ 390.340569][ T5831] usb 6-1: FTDI USB Serial Device converter now attached to ttyUSB0 [ 390.445220][ T8028] pimreg3: entered allmulticast mode [ 390.521108][ T5831] usb 6-1: USB disconnect, device number 4 [ 390.544176][ T5831] ftdi_sio ttyUSB0: FTDI USB Serial Device converter now disconnected from ttyUSB0 [ 390.554931][ T5831] ftdi_sio 6-1:0.0: device disconnected [ 390.669154][ T8034] netlink: 4 bytes leftover after parsing attributes in process `syz.0.803'. [ 391.117403][ T8043] sp0: Synchronizing with TNC [ 391.230411][ T8042] [U] è [ 392.130530][ T8064] tipc: Started in network mode [ 392.135925][ T8064] tipc: Node identity , cluster identity 4711 [ 392.142410][ T8064] tipc: Failed to set node id, please configure manually [ 392.149756][ T8064] tipc: Enabling of bearer rejected, failed to enable media [ 392.716883][ T8070] loop3: detected capacity change from 0 to 1024 [ 393.169969][ T4990] hfsplus: b-tree write err: -5, ino 4 [ 393.401472][ T5831] usb 2-1: new high-speed USB device number 7 using dummy_hcd [ 393.425048][ T8089] tmpfs: Cannot disable swap on remount [ 393.504620][ T8093] random: crng reseeded on system resumption [ 393.690586][ T5831] usb 2-1: New USB device found, idVendor=1d50, idProduct=6089, bcdDevice=d0.1d [ 393.700204][ T5831] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 393.733265][ T5831] usb 2-1: config 0 descriptor?? [ 393.967381][ T8099] program syz.4.834 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 394.186950][ T5831] hackrf 2-1:0.0: Board ID: 00 [ 394.187086][ T5831] hackrf 2-1:0.0: Firmware version: [ 394.190447][ T5831] hackrf 2-1:0.0: Registered as swradio24 [ 394.190575][ T5831] videodev: could not get a free minor [ 394.190647][ T5831] hackrf 2-1:0.0: Failed to register as video device (-23) [ 394.198865][ T5831] hackrf 2-1:0.0: probe with driver hackrf failed with error -23 [ 394.205423][ T8093] Unrecognized hibernate image header format! [ 394.205481][ T8093] PM: hibernation: Image mismatch: architecture specific data [ 394.444287][ T5831] usb 2-1: USB disconnect, device number 7 [ 395.220406][ T8107] netlink: 16 bytes leftover after parsing attributes in process `syz.5.838'. [ 395.537066][ T8114] netlink: 16215 bytes leftover after parsing attributes in process `syz.5.842'. [ 397.161865][ T5828] usb 6-1: new high-speed USB device number 5 using dummy_hcd [ 397.361464][ T5828] usb 6-1: Using ep0 maxpacket: 32 [ 397.408106][ T5828] usb 6-1: config 0 has an invalid interface number: 35 but max is 0 [ 397.416906][ T5828] usb 6-1: config 0 has no interface number 0 [ 397.532278][ T5828] usb 6-1: New USB device found, idVendor=10c4, idProduct=818a, bcdDevice=7d.8f [ 397.542000][ T5828] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 397.550392][ T5828] usb 6-1: Product: syz [ 397.555014][ T5828] usb 6-1: Manufacturer: syz [ 397.559855][ T5828] usb 6-1: SerialNumber: syz [ 397.753704][ T5828] usb 6-1: config 0 descriptor?? [ 397.820345][ T5828] radio-si470x 6-1:0.35: could not find interrupt in endpoint [ 397.828499][ T5828] radio-si470x 6-1:0.35: probe with driver radio-si470x failed with error -5 [ 397.987841][ T5828] radio-raremono 6-1:0.35: Thanko's Raremono connected: (10C4:818A) [ 398.231966][ T5828] radio-raremono 6-1:0.35: V4L2 device registered as radio48 [ 398.417646][ T5828] usb 6-1: USB disconnect, device number 5 [ 398.429090][ T5828] radio-raremono 6-1:0.35: Thanko's Raremono disconnected [ 398.953273][ T8155] netlink: 28 bytes leftover after parsing attributes in process `syz.3.856'. [ 400.171803][ T8160] loop5: detected capacity change from 0 to 256 [ 400.232243][ T8160] exfat: Deprecated parameter 'utf8' [ 400.295899][ T8160] exFAT-fs (loop5): failed to load upcase table (idx : 0x00010000, chksum : 0x987a2e96, utbl_chksum : 0xe619d30d) [ 403.146945][ T8209] loop3: detected capacity change from 0 to 256 [ 403.217886][ T8209] exFAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 403.310459][ T8209] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010364, chksum : 0x43f9f21b, utbl_chksum : 0xe619d30d) [ 403.317783][ T8211] loop0: detected capacity change from 0 to 128 [ 403.437797][ T8209] binfmt_misc: register: failed to install interpreter file ./file0 [ 403.593578][ T1284] ieee802154 phy0 wpan0: encryption failed: -22 [ 403.600254][ T1284] ieee802154 phy1 wpan1: encryption failed: -22 [ 403.761737][ T5828] usb 5-1: new high-speed USB device number 3 using dummy_hcd [ 403.836654][ T8211] EXT4-fs: inline encryption not supported [ 403.843565][ T8211] ext4: Unknown parameter 'appraise_type' [ 403.941072][ T5828] usb 5-1: Using ep0 maxpacket: 16 [ 403.988408][ T5828] usb 5-1: config 0 has an invalid interface number: 8 but max is 0 [ 403.997003][ T5828] usb 5-1: config 0 has no interface number 0 [ 404.003574][ T5828] usb 5-1: config 0 interface 8 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 404.015014][ T5828] usb 5-1: config 0 interface 8 altsetting 0 endpoint 0x8F has invalid wMaxPacketSize 0 [ 404.205787][ T5828] usb 5-1: New USB device found, idVendor=0d8c, idProduct=000e, bcdDevice=8e.8f [ 404.215556][ T5828] usb 5-1: New USB device strings: Mfr=0, Product=24, SerialNumber=3 [ 404.226413][ T5828] usb 5-1: Product: syz [ 404.231568][ T5828] usb 5-1: SerialNumber: syz [ 404.287183][ T8225] netlink: 8 bytes leftover after parsing attributes in process `syz.1.888'. [ 404.311119][ T8228] Bluetooth: MGMT ver 1.23 [ 404.396499][ T5828] usb 5-1: config 0 descriptor?? [ 404.438550][ T5828] cm109 5-1:0.8: invalid payload size 0, expected 4 [ 404.447920][ T5828] input: CM109 USB driver as /devices/platform/dummy_hcd.4/usb5/5-1/5-1:0.8/input/input10 [ 404.672561][ C1] cm109 5-1:0.8: cm109_urb_ctl_callback: urb status -71 [ 404.681553][ C1] cm109 5-1:0.8: cm109_urb_ctl_callback: urb status -71 [ 404.689158][ C1] cm109 5-1:0.8: cm109_urb_ctl_callback: urb status -71 [ 404.696923][ C1] cm109 5-1:0.8: cm109_urb_ctl_callback: urb status -71 [ 404.704595][ C1] cm109 5-1:0.8: cm109_urb_ctl_callback: urb status -71 [ 404.712191][ C1] cm109 5-1:0.8: cm109_urb_ctl_callback: urb status -71 [ 404.719751][ C1] cm109 5-1:0.8: cm109_urb_ctl_callback: urb status -71 [ 404.727307][ C1] cm109 5-1:0.8: cm109_urb_ctl_callback: urb status -71 [ 404.736061][ C1] cm109 5-1:0.8: cm109_urb_ctl_callback: urb status -71 [ 404.744889][ C1] cm109 5-1:0.8: cm109_urb_ctl_callback: urb status -71 [ 404.753610][ C1] cm109 5-1:0.8: cm109_submit_buzz_toggle: usb_submit_urb (urb_ctl) failed -19 [ 404.763000][ T25] usb 5-1: USB disconnect, device number 3 [ 404.773899][ T25] cm109 5-1:0.8: cm109_toggle_buzzer_sync: usb_control_msg() failed -19 [ 405.125252][ T8243] netlink: 8 bytes leftover after parsing attributes in process `syz.0.896'. [ 405.134783][ T8243] netlink: 4 bytes leftover after parsing attributes in process `syz.0.896'. [ 405.405912][ T8248] loop3: detected capacity change from 0 to 128 [ 405.780923][ T8248] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 405.826529][ T8248] ext4 filesystem being mounted at /181/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 405.989838][ T5784] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 406.280122][ T8266] loop1: detected capacity change from 0 to 1024 [ 406.395755][ T8266] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 406.814600][ T5776] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 407.325377][ T8290] loop5: detected capacity change from 0 to 64 [ 407.726113][ T1887] usb 5-1: new high-speed USB device number 4 using dummy_hcd [ 407.749781][ T8299] netlink: 8 bytes leftover after parsing attributes in process `syz.3.920'. [ 407.896339][ T1887] usb 5-1: Using ep0 maxpacket: 32 [ 407.922814][ T1887] usb 5-1: config 0 has an invalid interface number: 51 but max is 0 [ 407.931700][ T1887] usb 5-1: config 0 has no interface number 0 [ 407.970990][ T1887] usb 5-1: New USB device found, idVendor=061d, idProduct=c150, bcdDevice=ce.6f [ 407.980717][ T1887] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 407.989224][ T1887] usb 5-1: Product: syz [ 407.993833][ T1887] usb 5-1: Manufacturer: syz [ 407.998670][ T1887] usb 5-1: SerialNumber: syz [ 408.066146][ T1887] usb 5-1: config 0 descriptor?? [ 408.088045][ T1887] quatech2 5-1:0.51: Quatech 2nd gen USB to Serial Driver converter detected [ 408.325295][ T1887] usb 5-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB0 [ 408.345071][ T1887] usb 5-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB1 [ 408.659130][ T8312] netlink: 8 bytes leftover after parsing attributes in process `syz.5.926'. [ 408.675068][ T8312] netlink: 4 bytes leftover after parsing attributes in process `syz.5.926'. [ 408.687116][ T8312] netlink: 'syz.5.926': attribute type 11 has an invalid length. [ 408.695251][ T8312] netlink: 'syz.5.926': attribute type 12 has an invalid length. [ 408.709411][ C0] usb 5-1: qt2_read_bulk_callback - non-zero urb status: -71 [ 408.720670][ T1887] usb 5-1: USB disconnect, device number 4 [ 408.802275][ T1887] quatech-serial ttyUSB0: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB0 [ 408.827233][ T1887] quatech-serial ttyUSB1: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB1 [ 408.840578][ T1887] quatech2 5-1:0.51: device disconnected [ 409.134843][ T8316] program syz.3.927 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 409.863852][ T8333] sp0: Synchronizing with TNC [ 410.044192][ T8326] loop0: detected capacity change from 0 to 4096 [ 410.185838][ T8342] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 410.231905][ T8341] loop3: detected capacity change from 0 to 256 [ 411.015648][ T8354] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check. [ 411.127869][ T8356] loop1: detected capacity change from 0 to 512 [ 411.293145][ T8356] EXT4-fs warning (device loop1): ext4_block_to_path:107: block 3279945729 > max in inode 13 [ 411.305287][ T8356] EXT4-fs warning (device loop1): ext4_block_to_path:107: block 3279945730 > max in inode 13 [ 411.350550][ T8356] EXT4-fs (loop1): 1 truncate cleaned up [ 411.358416][ T8356] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 411.782693][ T5776] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 412.163134][ T8379] CIFS: No dialect specified on mount. Default has changed to a more secure dialect, SMB2.1 or later (e.g. SMB3.1.1), from CIFS (SMB1). To use the less secure SMB1 dialect to access old servers which do not support SMB3.1.1 (or even SMB3 or SMB2.1) specify vers=1.0 on mount. [ 412.190047][ T8379] CIFS mount error: No usable UNC path provided in device string! [ 412.190047][ T8379] [ 412.193888][ T8381] netdevsim netdevsim1 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0 [ 412.204109][ T8379] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string! [ 412.209235][ T8381] netdevsim netdevsim1 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0 [ 412.228553][ T8381] netdevsim netdevsim1 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0 [ 412.238012][ T8381] netdevsim netdevsim1 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0 [ 412.392062][ T8381] Zero length message leads to an empty skb [ 412.471085][ T29] kauditd_printk_skb: 15 callbacks suppressed [ 412.478427][ T29] audit: type=1326 audit(1736569570.312:41): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8384 comm="syz.0.959" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f5660985d29 code=0x0 [ 412.543823][ T8380] xt_CT: No such helper "pptp" [ 414.569956][ T29] audit: type=1800 audit(1736569572.412:42): pid=8423 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.977" name="SYSV00000000" dev="hugetlbfs" ino=1 res=0 errno=0 [ 414.617657][ T8425] loop3: detected capacity change from 0 to 512 [ 414.642030][ T8417] loop5: detected capacity change from 0 to 2048 [ 414.721120][ T8425] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349) [ 414.757570][ T8426] NILFS (loop5): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 414.777652][ T8425] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=c842e12c, mo2=0002] [ 414.833242][ T8425] EXT4-fs (loop3): orphan cleanup on readonly fs [ 414.888687][ T8425] EXT4-fs error (device loop3): ext4_clear_blocks:876: inode #11: comm syz.3.978: attempt to clear invalid blocks 1024 len 1 [ 414.942356][ T8429] loop1: detected capacity change from 0 to 128 [ 414.997858][ T8425] EXT4-fs (loop3): Remounting filesystem read-only [ 415.008308][ T8429] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 415.037381][ T8425] EXT4-fs (loop3): 1 truncate cleaned up [ 415.045374][ T8425] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000007 ro without journal. Quota mode: none. [ 415.090348][ T8429] ext4 filesystem being mounted at /204/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 415.407529][ T5776] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 415.433521][ T5784] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000007. [ 415.661471][ T25] usb 6-1: new high-speed USB device number 6 using dummy_hcd [ 415.682701][ T8446] lo speed is unknown, defaulting to 1000 [ 415.710236][ T8446] lo speed is unknown, defaulting to 1000 [ 415.717568][ T8446] lo speed is unknown, defaulting to 1000 [ 415.743787][ T8446] iwpm_register_pid: Unable to send a nlmsg (client = 2) [ 415.781866][ T8446] infiniband syz2: RDMA CMA: cma_listen_on_dev, error -98 [ 415.822824][ T25] usb 6-1: Using ep0 maxpacket: 16 [ 415.847362][ T25] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 415.859333][ T25] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 415.871741][ T25] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 415.882790][ T25] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x6 has invalid wMaxPacketSize 0 [ 415.893614][ T25] usb 6-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 415.918650][ T8446] lo speed is unknown, defaulting to 1000 [ 415.927491][ T8446] lo speed is unknown, defaulting to 1000 [ 415.943871][ T8446] lo speed is unknown, defaulting to 1000 [ 415.952405][ T8446] lo speed is unknown, defaulting to 1000 [ 415.960748][ T8446] lo speed is unknown, defaulting to 1000 [ 416.030078][ T25] usb 6-1: New USB device found, idVendor=2040, idProduct=b138, bcdDevice= 1.42 [ 416.042958][ T25] usb 6-1: New USB device strings: Mfr=4, Product=0, SerialNumber=0 [ 416.054998][ T25] usb 6-1: Manufacturer: syz [ 416.123858][ T25] usb 6-1: config 0 descriptor?? [ 416.166976][ T25] usbhid 6-1:0.0: can't add hid device: -22 [ 416.173968][ T25] usbhid 6-1:0.0: probe with driver usbhid failed with error -22 [ 416.362775][ T25] usb 6-1: USB disconnect, device number 6 [ 416.377752][ T8453] loop3: detected capacity change from 0 to 1024 [ 416.717865][ T4990] hfsplus: b-tree write err: -5, ino 4 [ 417.314219][ T8461] loop1: detected capacity change from 0 to 4096 [ 417.361627][ T8461] ntfs3(loop1): Different NTFS sector size (4096) and media sector size (512). [ 417.783675][ T8461] ntfs3(loop1): Mark volume as dirty due to NTFS errors [ 418.155385][ T1887] usb 6-1: new high-speed USB device number 7 using dummy_hcd [ 418.351791][ T1887] usb 6-1: Using ep0 maxpacket: 16 [ 418.388533][ T1887] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 418.403878][ T1887] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7 [ 418.416735][ T1887] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x2 has invalid wMaxPacketSize 0 [ 418.427330][ T1887] usb 6-1: config 0 interface 0 altsetting 0 bulk endpoint 0x2 has invalid maxpacket 0 [ 418.437498][ T1887] usb 6-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 418.517442][ T1887] usb 6-1: New USB device found, idVendor=2040, idProduct=b138, bcdDevice= 1.42 [ 418.527194][ T1887] usb 6-1: New USB device strings: Mfr=4, Product=0, SerialNumber=0 [ 418.535832][ T1887] usb 6-1: Manufacturer: syz [ 418.553518][ T1887] usb 6-1: config 0 descriptor?? [ 418.767344][ T29] audit: type=1326 audit(1736569576.562:43): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8488 comm="syz.0.1005" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f5660985d29 code=0x0 [ 419.224264][ T1887] rc_core: IR keymap rc-hauppauge not found [ 419.230546][ T1887] Registered IR keymap rc-empty [ 419.237640][ T1887] mceusb 6-1:0.0: Error: mce write submit urb error = -90 [ 419.291964][ T1887] mceusb 6-1:0.0: Error: mce write submit urb error = -90 [ 419.318331][ T1887] rc rc0: Conexant Hybrid TV (cx231xx) MCE IR no TX as /devices/platform/dummy_hcd.5/usb6/6-1/6-1:0.0/rc/rc0 [ 419.332972][ T1887] input: Conexant Hybrid TV (cx231xx) MCE IR no TX as /devices/platform/dummy_hcd.5/usb6/6-1/6-1:0.0/rc/rc0/input11 [ 419.360046][ T1887] mceusb 6-1:0.0: Error: mce write submit urb error = -90 [ 419.461965][ T1887] mceusb 6-1:0.0: Error: mce write submit urb error = -90 [ 419.491967][ T1887] mceusb 6-1:0.0: Error: mce write submit urb error = -90 [ 419.551017][ T1887] mceusb 6-1:0.0: Error: mce write submit urb error = -90 [ 419.578514][ T1887] mceusb 6-1:0.0: Error: mce write submit urb error = -90 [ 419.602224][ T1887] mceusb 6-1:0.0: Error: mce write submit urb error = -90 [ 419.625318][ T1887] mceusb 6-1:0.0: Error: mce write submit urb error = -90 [ 419.652496][ T1887] mceusb 6-1:0.0: Error: mce write submit urb error = -90 [ 419.742146][ T1887] mceusb 6-1:0.0: Error: mce write submit urb error = -90 [ 419.806802][ T1887] mceusb 6-1:0.0: Error: mce write submit urb error = -90 [ 419.844045][ T1887] mceusb 6-1:0.0: Registered Е with mce emulator interface version 1 [ 419.852726][ T1887] mceusb 6-1:0.0: 2 tx ports (0x0 cabled) and 2 rx sensors (0x0 active) [ 419.950483][ T1887] usb 6-1: USB disconnect, device number 7 [ 421.924298][ T8542] loop3: detected capacity change from 0 to 256 [ 422.494599][ T8556] loop5: detected capacity change from 0 to 1024 [ 422.609500][ T8559] ntfs3(nullb0): Primary boot signature is not NTFS. [ 422.633942][ T8559] ntfs3(nullb0): try to read out of volume at offset 0x3e7ffffe00 [ 422.675262][ T8559] (syz.0.1032,8559,1):ocfs2_fill_super:990 ERROR: superblock probe failed! [ 422.684869][ T8559] (syz.0.1032,8559,1):ocfs2_fill_super:1178 ERROR: status = -22 [ 422.706497][ T8556] hfsplus: bad catalog entry type [ 422.840478][ T8563] loop1: detected capacity change from 0 to 1024 [ 422.889887][ T8563] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 423.084240][ T55] hfsplus: b-tree write err: -5, ino 4 [ 423.110283][ T8563] EXT4-fs error (device loop1): ext4_ext_check_inode:524: inode #11: comm syz.1.1039: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 32512(32512) [ 423.165161][ T8563] EXT4-fs error (device loop1): ext4_orphan_get:1394: comm syz.1.1039: couldn't read orphan inode 11 (err -117) [ 423.188049][ T8563] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 423.296903][ T8574] loop3: detected capacity change from 0 to 8 [ 423.309716][ T8574] squashfs: Unknown parameter 'ÿÿÿÿÿÿÿÿ18446744073709551615ÿÿÿ' [ 423.386229][ T8563] EXT4-fs error (device loop1): ext4_read_block_bitmap_nowait:483: comm syz.1.1039: Invalid block bitmap block 0 in block_group 0 [ 423.503079][ T8563] Quota error (device loop1): write_blk: dquota write failed [ 423.514716][ T8563] Quota error (device loop1): qtree_write_dquot: Error -117 occurred while creating quota [ 423.526719][ T8563] EXT4-fs error (device loop1): ext4_acquire_dquot:6938: comm syz.1.1039: Failed to acquire dquot type 0 [ 423.609690][ T8578] loop0: detected capacity change from 0 to 512 [ 423.685010][ T8578] EXT4-fs: Ignoring removed mblk_io_submit option [ 423.740018][ T8578] EXT4-fs (loop0): mounting ext3 file system using the ext4 subsystem [ 423.787838][ T8578] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8042c118, mo2=0002] [ 423.804842][ T8578] EXT4-fs error (device loop0): ext4_xattr_ibody_find:2240: inode #15: comm syz.0.1045: corrupted in-inode xattr: e_value size too large [ 423.863050][ T5776] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 423.883233][ T8578] EXT4-fs error (device loop0): ext4_orphan_get:1394: comm syz.0.1045: couldn't read orphan inode 15 (err -117) [ 424.075473][ T4990] Quota error (device loop1): do_check_range: Getting block 0 out of range 1-8 [ 424.077089][ T8578] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 424.084846][ T4990] EXT4-fs error (device loop1): ext4_release_dquot:6961: comm kworker/u8:26: Failed to release dquot type 0 [ 424.516006][ T5772] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 424.790286][ T8600] loop5: detected capacity change from 0 to 128 [ 424.881077][ T8601] loop0: detected capacity change from 0 to 256 [ 424.926863][ T8601] MINIX-fs: mounting file system with errors, running fsck is recommended [ 425.189994][ T8608] loop1: detected capacity change from 0 to 256 [ 425.204121][ T8608] FAT-fs (loop1): bogus number of FAT sectors [ 425.210542][ T8608] FAT-fs (loop1): Can't find a valid FAT filesystem [ 425.282720][ T8609] MINIX-fs warning: remounting fs with errors, running fsck is recommended [ 425.729566][ T8620] tmpfs: Bad value for 'mpol' [ 426.234118][ T29] audit: type=1326 audit(1736569584.082:44): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8626 comm="syz.5.1065" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4c8a385d29 code=0x7ffc0000 [ 426.339990][ T29] audit: type=1326 audit(1736569584.132:45): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8626 comm="syz.5.1065" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4c8a385d29 code=0x7ffc0000 [ 426.363028][ T29] audit: type=1326 audit(1736569584.142:46): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8626 comm="syz.5.1065" exe="/root/syz-executor" sig=0 arch=c000003e syscall=307 compat=0 ip=0x7f4c8a385d29 code=0x7ffc0000 [ 426.385977][ T8633] loop1: detected capacity change from 0 to 512 [ 426.396639][ T29] audit: type=1326 audit(1736569584.142:47): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8626 comm="syz.5.1065" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4c8a385d29 code=0x7ffc0000 [ 426.419400][ T29] audit: type=1326 audit(1736569584.152:48): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8626 comm="syz.5.1065" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4c8a385d29 code=0x7ffc0000 [ 426.442694][ T29] audit: type=1326 audit(1736569584.152:49): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8626 comm="syz.5.1065" exe="/root/syz-executor" sig=0 arch=c000003e syscall=42 compat=0 ip=0x7f4c8a385d29 code=0x7ffc0000 [ 426.465317][ T29] audit: type=1326 audit(1736569584.152:50): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8626 comm="syz.5.1065" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4c8a385d29 code=0x7ffc0000 [ 426.533287][ T8631] delete_channel: no stack [ 426.860748][ T8633] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 426.874264][ T8633] ext4 filesystem being mounted at /220/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 426.972273][ T8633] EXT4-fs error (device loop1): ext4_map_blocks:671: inode #2: block 3: comm syz.1.1068: lblock 8 mapped to illegal pblock 3 (length 26) [ 427.318190][ T5776] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 427.351087][ T8647] loop0: detected capacity change from 0 to 2048 [ 427.418968][ T8647] UDF-fs: error (device loop0): udf_read_tagged: tag checksum failed, block 99: 0x27 != 0x4d [ 427.612449][ T8647] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 429.004852][ T8639] loop5: detected capacity change from 0 to 32768 [ 429.020107][ T8677] program syz.3.1087 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 429.083353][ T8639] jfs_mkdir: dtInsert returned -EIO [ 429.083429][ T8639] ERROR: (device loop5): txAbort: [ 429.083429][ T8639] [ 429.125282][ T8639] ERROR: (device loop5): remounting filesystem as read-only [ 429.127957][ T8639] jfs_lookup: iget failed on inum 4 [ 429.128474][ T8639] jfs_lookup: iget failed on inum 4 [ 430.594980][ T8694] /dev/nullb0: Can't open blockdev [ 430.872786][ T8696] No control pipe specified [ 431.022877][ T25] IPVS: starting estimator thread 0... [ 431.112718][ T8703] IPVS: using max 240 ests per chain, 12000 per kthread [ 431.363807][ T8705] netlink: 277 bytes leftover after parsing attributes in process `syz.0.1100'. [ 431.979954][ T8715] loop0: detected capacity change from 0 to 4096 [ 432.037501][ T8717] loop1: detected capacity change from 0 to 512 [ 432.065245][ T8719] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1107'. [ 432.169235][ T8717] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 432.169656][ T8717] ext4 filesystem being mounted at /223/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 432.232354][ T8717] EXT4-fs: Ignoring removed orlov option [ 432.232741][ T8717] EXT4-fs: Remounting file system with no journal so ignoring journalled data option [ 432.232827][ T8717] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 432.243919][ T8717] EXT4-fs error (device loop1): __ext4_remount:6749: comm syz.1.1106: Abort forced by user [ 432.246073][ T8717] EXT4-fs (loop1): Remounting filesystem read-only [ 432.246169][ T8717] EXT4-fs (loop1): re-mounted 00000000-0000-0000-0000-000000000000 r/w. Quota mode: writeback. [ 432.392979][ T5776] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 432.480389][ T8728] warning: `syz.5.1110' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211 [ 434.621435][ T1887] usb 2-1: new high-speed USB device number 8 using dummy_hcd [ 435.063002][ T1887] usb 2-1: Using ep0 maxpacket: 8 [ 435.098982][ T1887] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x8D has an invalid bInterval 42, changing to 9 [ 435.111905][ T1887] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0 [ 435.122261][ T1887] usb 2-1: config 0 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0 [ 435.132489][ T1887] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x8B has invalid maxpacket 12336, setting to 1024 [ 435.144106][ T1887] usb 2-1: config 0 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 1024 [ 435.154628][ T1887] usb 2-1: New USB device found, idVendor=05ac, idProduct=8215, bcdDevice=8f.58 [ 435.164691][ T1887] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 435.181605][ T1887] usb 2-1: config 0 descriptor?? [ 435.214900][ T8760] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22 [ 435.556703][ T8779] loop3: detected capacity change from 0 to 512 [ 435.599731][ T5079] Bluetooth: hci5: unexpected event 0x05 length: 15 > 4 [ 435.600488][ T5079] Bluetooth: hci5: Received unexpected HCI Event 0x00 [ 435.616058][ T5079] Bluetooth: hci5: Received unexpected HCI Event 0x00 [ 435.623903][ T5079] Bluetooth: hci5: Received unexpected HCI Event 0x00 [ 435.631881][ T5079] Bluetooth: hci5: Received unexpected HCI Event 0x00 [ 435.639620][ T5079] Bluetooth: hci5: Received unexpected HCI Event 0x00 [ 435.647854][ T5079] Bluetooth: hci5: Received unexpected HCI Event 0x00 [ 435.655649][ T5079] Bluetooth: hci5: Received unexpected HCI Event 0x00 [ 435.663595][ T5079] Bluetooth: hci5: Received unexpected HCI Event 0x00 [ 435.671714][ T5079] Bluetooth: hci5: Received unexpected HCI Event 0x00 [ 435.679491][ T5079] Bluetooth: hci5: Received unexpected HCI Event 0x00 [ 435.687407][ T5079] Bluetooth: hci5: Received unexpected HCI Event 0x00 [ 435.700845][ T5079] Bluetooth: hci5: Received unexpected HCI Event 0x00 [ 435.708812][ T5079] Bluetooth: hci5: Received unexpected HCI Event 0x00 [ 435.716693][ T5079] Bluetooth: hci5: Received unexpected HCI Event 0x00 [ 435.724595][ T5079] Bluetooth: hci5: Received unexpected HCI Event 0x00 [ 435.732579][ T5079] Bluetooth: hci5: Received unexpected HCI Event 0x00 [ 435.740352][ T5079] Bluetooth: hci5: Received unexpected HCI Event 0x00 [ 435.748314][ T5079] Bluetooth: hci5: Received unexpected HCI Event 0x00 [ 435.756207][ T5079] Bluetooth: hci5: Received unexpected HCI Event 0x00 [ 435.764074][ T5079] Bluetooth: hci5: Received unexpected HCI Event 0x00 [ 435.770321][ T8779] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 435.771961][ T5079] Bluetooth: hci5: Received unexpected HCI Event 0x00 [ 435.786525][ T25] usb 2-1: USB disconnect, device number 8 [ 435.789743][ T5774] Bluetooth: hci5: Opcode 0x0c03 failed: -71 [ 435.942309][ T8779] EXT4-fs warning (device loop3): ext4_expand_extra_isize_ea:2863: Unable to expand inode 15. Delete some EAs or run e2fsck. [ 436.015541][ T8779] EXT4-fs (loop3): 1 truncate cleaned up [ 436.023503][ T8779] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 436.295156][ T8788] loop5: detected capacity change from 0 to 1764 [ 436.365703][ T5784] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 437.054208][ T8806] loop5: detected capacity change from 0 to 256 [ 437.113797][ T8806] exfat: Deprecated parameter 'utf8' [ 437.250932][ T8806] exFAT-fs (loop5): failed to load upcase table (idx : 0x00010000, chksum : 0xbe675ead, utbl_chksum : 0xe619d30d) [ 437.523325][ T8814] netlink: 104 bytes leftover after parsing attributes in process `syz.3.1147'. [ 439.201616][ T25] usb 5-1: new full-speed USB device number 5 using dummy_hcd [ 439.329487][ T8847] loop0: detected capacity change from 0 to 4096 [ 439.378712][ T25] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10 [ 439.393735][ T25] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 439.405382][ T25] usb 5-1: New USB device found, idVendor=060b, idProduct=700a, bcdDevice= 0.00 [ 439.414932][ T25] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 439.433251][ T25] usb 5-1: config 0 descriptor?? [ 439.960077][ T25] cougar 0003:060B:700A.000A: unknown main item tag 0x0 [ 439.967884][ T25] cougar 0003:060B:700A.000A: unknown main item tag 0x0 [ 439.975407][ T25] cougar 0003:060B:700A.000A: unknown main item tag 0x0 [ 439.983012][ T25] cougar 0003:060B:700A.000A: unknown main item tag 0x0 [ 439.990293][ T25] cougar 0003:060B:700A.000A: unknown main item tag 0x0 [ 440.047070][ T25] cougar 0003:060B:700A.000A: hidraw0: USB HID v0.00 Device [HID 060b:700a] on usb-dummy_hcd.4-1/input0 [ 440.143929][ T5831] usb 5-1: USB disconnect, device number 5 [ 440.242846][ T1887] usb 4-1: new high-speed USB device number 8 using dummy_hcd [ 440.444010][ T1887] usb 4-1: Using ep0 maxpacket: 32 [ 440.464956][ T1887] usb 4-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xA6, changing to 0x86 [ 440.477522][ T1887] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x86 has an invalid bInterval 0, changing to 7 [ 440.488955][ T1887] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x86 has invalid wMaxPacketSize 0 [ 440.499285][ T1887] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x7 has an invalid bInterval 255, changing to 11 [ 440.515707][ T1887] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x7 has invalid maxpacket 59391, setting to 1024 [ 440.672723][ T1887] usb 4-1: New USB device found, idVendor=05ef, idProduct=020a, bcdDevice=91.36 [ 440.682579][ T1887] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 440.690852][ T1887] usb 4-1: Product: syz [ 440.695649][ T1887] usb 4-1: Manufacturer: syz [ 440.700540][ T1887] usb 4-1: SerialNumber: syz [ 440.772173][ T1887] usb 4-1: config 0 descriptor?? [ 440.845212][ T8877] netlink: 91 bytes leftover after parsing attributes in process `syz.1.1177'. [ 441.241624][ T1887] iforce 4-1:0.0: usb_submit_urb failed: -32 [ 441.248160][ T1887] input input12: Device does not respond to id packet M [ 441.300775][ T1887] iforce 4-1:0.0: usb_submit_urb failed: -71 [ 441.308278][ T1887] input input12: Device does not respond to id packet P [ 441.371048][ T1887] iforce 4-1:0.0: usb_submit_urb failed: -71 [ 441.377772][ T1887] input input12: Device does not respond to id packet B [ 441.457327][ T1887] iforce 4-1:0.0: usb_submit_urb failed: -71 [ 441.465202][ T1887] input input12: Device does not respond to id packet N [ 441.501769][ T1887] iforce 4-1:0.0: usb_submit_urb failed: -71 [ 441.525803][ T1887] iforce 4-1:0.0: usb_submit_urb failed: -71 [ 441.564830][ T1887] iforce 4-1:0.0: usb_submit_urb failed: -71 [ 441.595704][ T1887] iforce 4-1:0.0: usb_submit_urb failed: -71 [ 441.605051][ T1887] input: Unknown I-Force Device [%04x:%04x] as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0/input/input12 [ 441.626367][ T8890] loop1: detected capacity change from 0 to 128 [ 441.678204][ T1887] usb 4-1: USB disconnect, device number 8 [ 441.734882][ T8890] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 441.801807][ T8890] ext4 filesystem being mounted at /239/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 441.977866][ T5776] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 442.520431][ T29] audit: type=1326 audit(1736569600.342:51): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8909 comm="syz.0.1189" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5660985d29 code=0x7ffc0000 [ 442.605006][ T29] audit: type=1326 audit(1736569600.452:52): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8909 comm="syz.0.1189" exe="/root/syz-executor" sig=0 arch=c000003e syscall=240 compat=0 ip=0x7f5660985d29 code=0x7ffc0000 [ 442.711699][ T29] audit: type=1326 audit(1736569600.552:53): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8909 comm="syz.0.1189" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5660985d29 code=0x7ffc0000 [ 442.734559][ T29] audit: type=1326 audit(1736569600.552:54): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8909 comm="syz.0.1189" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5660985d29 code=0x7ffc0000 [ 443.539302][ T8927] loop1: detected capacity change from 0 to 256 [ 443.548393][ T8927] exfat: Deprecated parameter 'namecase' [ 443.700777][ T8927] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x36e00b20, utbl_chksum : 0xe619d30d) [ 444.015588][ T8940] loop5: detected capacity change from 0 to 256 [ 444.037793][ T8940] exfat: Deprecated parameter 'utf8' [ 444.178399][ T8940] exFAT-fs (loop5): failed to load upcase table (idx : 0x00010000, chksum : 0xdd33351c, utbl_chksum : 0xe619d30d) [ 444.688038][ T8950] loop0: detected capacity change from 0 to 256 [ 444.704962][ T8950] exfat: Deprecated parameter 'namecase' [ 444.716367][ T8950] exfat: Deprecated parameter 'utf8' [ 445.034588][ T8950] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0x36e00b20, utbl_chksum : 0xe619d30d) [ 445.711528][ T25] usb 2-1: new high-speed USB device number 9 using dummy_hcd [ 446.052171][ T25] usb 2-1: Using ep0 maxpacket: 32 [ 446.065106][ T25] usb 2-1: config 0 has an invalid interface number: 51 but max is 0 [ 446.073741][ T25] usb 2-1: config 0 has no interface number 0 [ 446.101957][ T25] usb 2-1: New USB device found, idVendor=061d, idProduct=c150, bcdDevice=ce.6f [ 446.111939][ T25] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 446.120722][ T25] usb 2-1: Product: syz [ 446.125326][ T25] usb 2-1: Manufacturer: syz [ 446.130160][ T25] usb 2-1: SerialNumber: syz [ 446.174367][ T25] usb 2-1: config 0 descriptor?? [ 446.197521][ T25] quatech2 2-1:0.51: Quatech 2nd gen USB to Serial Driver converter detected [ 446.505484][ T8987] loop3: detected capacity change from 0 to 512 [ 446.537855][ T8987] EXT4-fs (loop3): warning: mounting unchecked fs, running e2fsck is recommended [ 446.543061][ T25] usb 2-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB0 [ 446.567772][ T25] usb 2-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB1 [ 446.570720][ T8987] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a002e01c, mo2=0006] [ 446.668049][ T8987] System zones: 0-2, 18-18, 34-35 [ 446.807540][ T8987] EXT4-fs (loop3): mounted filesystem 00000000-0700-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 446.851926][ T8993] loop5: detected capacity change from 0 to 2048 [ 446.870961][ T8991] loop0: detected capacity change from 0 to 1024 [ 446.926625][ T8993] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none. [ 447.048552][ C1] usb 2-1: qt2_read_bulk_callback - non-zero urb status: -71 [ 447.059558][ T25] usb 2-1: USB disconnect, device number 9 [ 447.075776][ T25] quatech-serial ttyUSB0: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB0 [ 447.094719][ T25] quatech-serial ttyUSB1: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB1 [ 447.107955][ T25] quatech2 2-1:0.51: device disconnected [ 447.111726][ T8987] EXT4-fs (loop3): re-mounted 00000000-0700-0000-0000-000000000000 ro. Quota mode: none. [ 447.156160][ T8987] EXT4-fs (loop3): warning: mounting unchecked fs, running e2fsck is recommended [ 447.187508][ T8987] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a002e01c, mo2=0006] [ 447.196267][ T8987] EXT4-fs (loop3): re-mounted 00000000-0700-0000-0000-000000000000 r/w. Quota mode: none. [ 447.343685][ T6126] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 447.572189][ T5784] EXT4-fs (loop3): unmounting filesystem 00000000-0700-0000-0000-000000000000. [ 448.136301][ T9009] loop3: detected capacity change from 0 to 2048 [ 448.217255][ T9009] NILFS (loop3): broken superblock, retrying with spare superblock (blocksize = 1024) [ 448.252985][ T9015] No buffer was provided with the request [ 448.314270][ T9017] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 448.490866][ T9018] /dev/loop4: Can't open blockdev [ 449.481655][ T1887] usb 6-1: new high-speed USB device number 8 using dummy_hcd [ 449.685817][ T1887] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 449.697500][ T1887] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 449.707884][ T1887] usb 6-1: New USB device found, idVendor=1d34, idProduct=000a, bcdDevice= 0.00 [ 449.717424][ T1887] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 449.777195][ T1887] usb 6-1: config 0 descriptor?? [ 450.279327][ T1887] hid-led 0003:1D34:000A.000B: unknown main item tag 0x0 [ 450.287974][ T1887] hid-led 0003:1D34:000A.000B: unknown main item tag 0x0 [ 450.295638][ T1887] hid-led 0003:1D34:000A.000B: unbalanced collection at end of report description [ 450.310092][ T1887] hid-led 0003:1D34:000A.000B: probe with driver hid-led failed with error -22 [ 450.497739][ T25] usb 6-1: USB disconnect, device number 8 [ 450.671655][ T5831] usb 4-1: new high-speed USB device number 9 using dummy_hcd [ 450.842149][ T5831] usb 4-1: Using ep0 maxpacket: 32 [ 450.872747][ T5831] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 450.883583][ T5831] usb 4-1: New USB device found, idVendor=0525, idProduct=2888, bcdDevice=d0.43 [ 450.893779][ T5831] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 450.930078][ T5831] usb 4-1: config 0 descriptor?? [ 450.994603][ T9067] loop1: detected capacity change from 0 to 256 [ 451.005573][ T9067] exfat: Deprecated parameter 'utf8' [ 451.012068][ T9067] exfat: Deprecated parameter 'utf8' [ 451.128598][ T9067] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x23a77120, utbl_chksum : 0xe619d30d) [ 451.166244][ T5831] cdc_subset 4-1:0.0: probe with driver cdc_subset failed with error -71 [ 451.252981][ T5831] usb 4-1: USB disconnect, device number 9 [ 451.888232][ T9080] loop0: detected capacity change from 0 to 1024 [ 452.256634][ T2983] hfsplus: b-tree write err: -5, ino 4 [ 452.484939][ T9093] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1272'. [ 452.561507][ T25] usb 2-1: new full-speed USB device number 10 using dummy_hcd [ 452.804841][ T25] usb 2-1: New USB device found, idVendor=13d3, idProduct=3224, bcdDevice=cb.0d [ 452.814536][ T25] usb 2-1: New USB device strings: Mfr=1, Product=12, SerialNumber=3 [ 452.823284][ T25] usb 2-1: Product: syz [ 452.827697][ T25] usb 2-1: Manufacturer: syz [ 452.832674][ T25] usb 2-1: SerialNumber: syz [ 452.872558][ T25] dvb-usb: found a 'DigitalNow TinyUSB 2 DVB-t Receiver' in warm state. [ 452.982614][ T9101] loop0: detected capacity change from 0 to 1024 [ 453.010909][ T9101] EXT4-fs (loop0): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock [ 453.021570][ T9101] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (29254!=20869) [ 453.067800][ T9101] EXT4-fs (loop0): journal inode is deleted [ 453.434952][ T25] dvb-usb: This USB2.0 device cannot be run on a USB1.1 port. (it lacks a hardware PID filter) [ 453.446086][ T25] dvb-usb: DigitalNow TinyUSB 2 DVB-t Receiver error while loading driver (-19) [ 453.591803][ T5828] usb 4-1: new high-speed USB device number 10 using dummy_hcd [ 453.892762][ T25] usb 2-1: USB disconnect, device number 10 [ 454.225605][ T5828] usb 4-1: Using ep0 maxpacket: 32 [ 454.290285][ T5828] usb 4-1: config 0 interface 0 altsetting 16 endpoint 0x81 has invalid wMaxPacketSize 0 [ 454.301486][ T5828] usb 4-1: config 0 interface 0 altsetting 16 endpoint 0x2 has invalid wMaxPacketSize 0 [ 454.311811][ T5828] usb 4-1: config 0 interface 0 altsetting 16 has 2 endpoint descriptors, different from the interface descriptor's value: 5 [ 454.325418][ T5828] usb 4-1: config 0 interface 0 has no altsetting 0 [ 454.335764][ T5828] usb 4-1: New USB device found, idVendor=044f, idProduct=b65d, bcdDevice= 0.00 [ 454.346302][ T5828] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 454.352424][ T9110] loop5: detected capacity change from 0 to 32768 [ 454.450941][ T9110] OCFS2: ERROR (device loop5): int ocfs2_validate_extent_block(struct super_block *, struct buffer_head *): Extent block #640 has bad signature À;9˜ [ 454.466692][ T9110] On-disk corruption discovered. Please run fsck.ocfs2 once the filesystem is unmounted. [ 454.476981][ T9110] OCFS2: Returning error to the calling process. [ 454.483657][ T9110] (syz.5.1281,9110,0):__ocfs2_find_path:1844 ERROR: status = -5 [ 454.491807][ T9110] (syz.5.1281,9110,0):ocfs2_find_leaf:1940 ERROR: status = -5 [ 454.499595][ T9110] (syz.5.1281,9110,0):ocfs2_get_clusters_nocache:421 ERROR: status = -5 [ 454.508460][ T9110] (syz.5.1281,9110,0):ocfs2_get_clusters:624 ERROR: status = -5 [ 454.516639][ T9110] (syz.5.1281,9110,0):ocfs2_extent_map_get_blocks:671 ERROR: status = -5 [ 454.525563][ T9110] (syz.5.1281,9110,0):ocfs2_bmap:484 ERROR: get_blocks() failed, block = 0 [ 454.534652][ T9110] (syz.5.1281,9110,0):ocfs2_bmap:485 ERROR: status = -5 [ 454.549159][ T9110] jbd2_journal_init_inode: Cannot locate journal superblock [ 454.556887][ T9110] (syz.5.1281,9110,0):ocfs2_journal_init:951 ERROR: Linux journal layer error [ 454.566186][ T9110] (syz.5.1281,9110,0):ocfs2_check_volume:2399 ERROR: Could not initialize journal! [ 454.575978][ T9110] (syz.5.1281,9110,0):ocfs2_check_volume:2484 ERROR: status = -22 [ 454.584287][ T9110] (syz.5.1281,9110,0):ocfs2_mount_volume:1819 ERROR: status = -22 [ 454.596678][ T9110] (syz.5.1281,9110,0):ocfs2_fill_super:1178 ERROR: status = -22 [ 454.708350][ T5828] usb 4-1: config 0 descriptor?? [ 455.188615][ T5828] hid-thrustmaster 0003:044F:B65D.000C: unknown main item tag 0x0 [ 455.197258][ T5828] hid-thrustmaster 0003:044F:B65D.000C: unknown main item tag 0x0 [ 455.209548][ T5828] hid-thrustmaster 0003:044F:B65D.000C: unknown main item tag 0x0 [ 455.222580][ T5828] hid-thrustmaster 0003:044F:B65D.000C: unknown main item tag 0x0 [ 455.234136][ T5828] hid-thrustmaster 0003:044F:B65D.000C: unknown main item tag 0x0 [ 455.289222][ T5828] hid-thrustmaster 0003:044F:B65D.000C: hidraw0: USB HID v0.00 Device [HID 044f:b65d] on usb-dummy_hcd.3-1/input0 [ 455.303046][ T5828] hid-thrustmaster 0003:044F:B65D.000C: setup data couldn't be sent [ 455.396473][ C1] hid-thrustmaster 0003:044F:B65D.000C: URB to get model id failed with error -71 [ 455.435670][ T5828] usb 4-1: USB disconnect, device number 10 [ 456.549356][ T9146] loop5: detected capacity change from 0 to 256 [ 457.901022][ T9178] 9pnet_fd: p9_fd_create_unix (9178): problem connecting socket: éq‰Y’3aK: -111 [ 458.713157][ T9182] loop5: detected capacity change from 0 to 4096 [ 458.934337][ T5831] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0 [ 458.948474][ T5831] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0 [ 458.958134][ T5831] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0 [ 458.966035][ T5831] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0 [ 458.973919][ T5831] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0 [ 458.982567][ T5831] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0 [ 458.990289][ T5831] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0 [ 458.998220][ T5831] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0 [ 459.006060][ T5831] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0 [ 459.014279][ T5831] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0 [ 459.022176][ T5831] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0 [ 459.029871][ T5831] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0 [ 459.037821][ T5831] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0 [ 459.051762][ T5831] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0 [ 459.059481][ T5831] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0 [ 459.069074][ T5831] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0 [ 459.077025][ T5831] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0 [ 459.084958][ T5831] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0 [ 459.092801][ T5831] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0 [ 459.100521][ T5831] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0 [ 459.108499][ T5831] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0 [ 459.116355][ T5831] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0 [ 459.124227][ T5831] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0 [ 459.132352][ T5831] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0 [ 459.140078][ T5831] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0 [ 459.153760][ T5831] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0 [ 459.163526][ T5831] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0 [ 459.171375][ T5831] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0 [ 459.179116][ T5831] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0 [ 459.186982][ T5831] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0 [ 459.195015][ T5831] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0 [ 459.202858][ T5831] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0 [ 459.234025][ T5831] hid-generic 0000:0000:0000.000D: hidraw0: HID v0.00 Device [syz1] on syz0 [ 459.995130][ T9211] loop5: detected capacity change from 0 to 256 [ 460.100017][ T9217] netlink: 60 bytes leftover after parsing attributes in process `syz.0.1331'. [ 460.143286][ T9216] netlink: 60 bytes leftover after parsing attributes in process `syz.0.1331'. [ 461.059982][ T9234] netlink: 24 bytes leftover after parsing attributes in process `syz.5.1340'. [ 461.618483][ T5828] IPVS: starting estimator thread 0... [ 461.713950][ T9247] IPVS: using max 240 ests per chain, 12000 per kthread [ 461.888628][ T9255] loop1: detected capacity change from 0 to 1024 [ 462.318519][ T5776] hfsplus: bad catalog entry type [ 462.605176][ T4602] hfsplus: b-tree write err: -5, ino 4 [ 462.638135][ T9263] netlink: 16 bytes leftover after parsing attributes in process `syz.5.1353'. [ 462.977320][ T9276] netlink: 240 bytes leftover after parsing attributes in process `syz.5.1360'. [ 462.987546][ T9276] netlink: 152 bytes leftover after parsing attributes in process `syz.5.1360'. [ 462.994737][ T9273] loop0: detected capacity change from 0 to 8 [ 463.468146][ T55] netdevsim netdevsim1 netdevsim3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 463.480366][ T55] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 463.684916][ T55] netdevsim netdevsim1 netdevsim2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 463.695828][ T55] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 463.939441][ T55] netdevsim netdevsim1 netdevsim1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 463.950506][ T55] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 464.198546][ T55] netdevsim netdevsim1 netdevsim0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 464.209346][ T55] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 464.431825][ T55] bridge_slave_1: left allmulticast mode [ 464.437754][ T55] bridge_slave_1: left promiscuous mode [ 464.444653][ T55] bridge0: port 2(bridge_slave_1) entered disabled state [ 464.467196][ T55] bridge_slave_0: left allmulticast mode [ 464.479803][ T55] bridge_slave_0: left promiscuous mode [ 464.486604][ T55] bridge0: port 1(bridge_slave_0) entered disabled state [ 465.245141][ T1284] ieee802154 phy0 wpan0: encryption failed: -22 [ 465.252041][ T1284] ieee802154 phy1 wpan1: encryption failed: -22 [ 465.395135][ T29] audit: type=1326 audit(1736569623.232:55): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9299 comm="syz.5.1371" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4c8a385d29 code=0x7ffc0000 [ 465.462273][ T55] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 465.479721][ T29] audit: type=1326 audit(1736569623.312:56): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9299 comm="syz.5.1371" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f4c8a385d29 code=0x7ffc0000 [ 465.505475][ T29] audit: type=1326 audit(1736569623.312:57): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9299 comm="syz.5.1371" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4c8a385d29 code=0x7ffc0000 [ 465.529155][ T29] audit: type=1326 audit(1736569623.322:58): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9299 comm="syz.5.1371" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4c8a385d29 code=0x7ffc0000 [ 465.551964][ T29] audit: type=1326 audit(1736569623.322:59): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9299 comm="syz.5.1371" exe="/root/syz-executor" sig=0 arch=c000003e syscall=199 compat=0 ip=0x7f4c8a385d29 code=0x7ffc0000 [ 465.574799][ T29] audit: type=1326 audit(1736569623.322:60): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9299 comm="syz.5.1371" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4c8a385d29 code=0x7ffc0000 [ 465.600414][ T29] audit: type=1326 audit(1736569623.322:61): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9299 comm="syz.5.1371" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4c8a385d29 code=0x7ffc0000 [ 465.643390][ T55] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 465.720282][ T55] bond0 (unregistering): Released all slaves [ 465.795006][ T5079] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 465.811630][ T5828] usb 4-1: new high-speed USB device number 11 using dummy_hcd [ 465.812382][ T5079] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 465.857236][ T5079] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 465.947444][ T5079] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 465.972649][ T5079] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 465.992187][ T5079] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 466.041875][ T5828] usb 4-1: Using ep0 maxpacket: 8 [ 466.082439][ T5828] usb 4-1: config 0 interface 0 altsetting 0 has an invalid descriptor for endpoint zero, skipping [ 466.093685][ T5828] usb 4-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0x93, changing to 0x83 [ 466.105744][ T5828] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 7 [ 466.127102][ T5828] usb 4-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 1 [ 466.232863][ T5828] usb 4-1: New USB device found, idVendor=15c2, idProduct=003b, bcdDevice=66.3e [ 466.242435][ T5828] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 466.250717][ T5828] usb 4-1: Product: syz [ 466.256089][ T5828] usb 4-1: Manufacturer: syz [ 466.260950][ T5828] usb 4-1: SerialNumber: syz [ 466.409874][ T5828] usb 4-1: config 0 descriptor?? [ 466.428825][ T9306] lo speed is unknown, defaulting to 1000 [ 466.530808][ T29] audit: type=1326 audit(1736569624.372:62): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9314 comm="syz.4.1379" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f88dad85d29 code=0x7ffc0000 [ 466.540645][ T5828] input: iMON Panel, Knob and Mouse(15c2:003b) as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0/input/input13 [ 466.631961][ T25] usb 6-1: new full-speed USB device number 9 using dummy_hcd [ 466.757214][ T29] audit: type=1326 audit(1736569624.412:63): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9314 comm="syz.4.1379" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f88dad85d29 code=0x7ffc0000 [ 466.781593][ T29] audit: type=1326 audit(1736569624.412:64): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9314 comm="syz.4.1379" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f88dad85d29 code=0x7ffc0000 [ 466.815272][ T9304] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(4) [ 466.822114][ T9304] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed) [ 466.833927][ T9304] vhci_hcd vhci_hcd.0: Device attached [ 466.917479][ T9321] vhci_hcd: connection closed [ 466.920631][ T2983] vhci_hcd: stop threads [ 466.923139][ T25] usb 6-1: New USB device found, idVendor=09c0, idProduct=0203, bcdDevice=d3.32 [ 466.927068][ T2983] vhci_hcd: release socket [ 466.933417][ T25] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 466.942239][ T2983] vhci_hcd: disconnect device [ 466.953505][ T5828] imon:send_packet: packet tx failed (-71) [ 466.989195][ T25] usb 6-1: config 0 descriptor?? [ 467.056465][ T25] dvb-usb: found a 'Genpix SkyWalker-1 DVB-S receiver' in warm state. [ 467.111623][ T5828] imon 4-1:0.0: panel buttons/knobs setup failed [ 467.263886][ T55] hsr_slave_0: left promiscuous mode [ 467.402472][ T55] hsr_slave_1: left promiscuous mode [ 467.414358][ T5828] rc_core: IR keymap rc-imon-pad not found [ 467.420425][ T5828] Registered IR keymap rc-empty [ 467.426745][ T5828] imon 4-1:0.0: Looks like you're trying to use an IR protocol this device does not support [ 467.437636][ T5828] imon 4-1:0.0: Unsupported IR protocol specified, overriding to iMON IR protocol [ 467.460234][ T5828] imon:send_packet: packet tx failed (-71) [ 467.475115][ T55] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 467.484214][ T55] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 467.494861][ T5828] imon 4-1:0.0: remote input dev register failed [ 467.505154][ T5828] imon 4-1:0.0: imon_init_intf0: rc device setup failed [ 467.515922][ T25] dvb-usb: This USB2.0 device cannot be run on a USB1.1 port. (it lacks a hardware PID filter) [ 467.527958][ T9326] sctp: [Deprecated]: syz.4.1382 (pid 9326) Use of int in maxseg socket option. [ 467.527958][ T9326] Use struct sctp_assoc_value instead [ 467.528312][ T25] dvb-usb: Genpix SkyWalker-1 DVB-S receiver error while loading driver (-19) [ 467.611782][ T55] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 467.620384][ T55] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 467.677811][ T5828] imon 4-1:0.0: unable to initialize intf0, err 0 [ 467.686072][ T5828] imon:imon_probe: failed to initialize context! [ 467.693682][ T5828] imon 4-1:0.0: unable to register, err -19 [ 467.720719][ T55] veth1_macvtap: left promiscuous mode [ 467.726691][ T55] veth0_macvtap: left promiscuous mode [ 467.733297][ T55] veth1_vlan: left promiscuous mode [ 467.738906][ T55] veth0_vlan: left promiscuous mode [ 467.750542][ T5828] usb 4-1: USB disconnect, device number 11 [ 467.959068][ T5831] usb 6-1: USB disconnect, device number 9 [ 468.145044][ T55] pimreg3 (unregistering): left allmulticast mode [ 468.171694][ T5774] Bluetooth: hci1: command tx timeout [ 468.419020][ T55] team0 (unregistering): Port device team_slave_1 removed [ 468.519401][ T55] team0 (unregistering): Port device team_slave_0 removed [ 469.550408][ T9306] chnl_net:caif_netlink_parms(): no params data found [ 470.183004][ T5774] Bluetooth: hci1: command tx timeout [ 470.295198][ T9365] Bluetooth: MGMT ver 1.23 [ 470.580056][ T29] kauditd_printk_skb: 4 callbacks suppressed [ 470.580139][ T29] audit: type=1326 audit(1736569628.402:69): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9369 comm="syz.3.1400" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fb6af585d29 code=0x0 [ 470.741711][ T9306] bridge0: port 1(bridge_slave_0) entered blocking state [ 470.749511][ T9306] bridge0: port 1(bridge_slave_0) entered disabled state [ 470.757621][ T9306] bridge_slave_0: entered allmulticast mode [ 470.766876][ T9306] bridge_slave_0: entered promiscuous mode [ 470.796580][ T9306] bridge0: port 2(bridge_slave_1) entered blocking state [ 470.804528][ T9306] bridge0: port 2(bridge_slave_1) entered disabled state [ 470.812821][ T9306] bridge_slave_1: entered allmulticast mode [ 470.826698][ T9306] bridge_slave_1: entered promiscuous mode [ 470.965068][ T9306] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 471.009778][ T9306] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 471.167708][ T9306] team0: Port device team_slave_0 added [ 471.188045][ T9306] team0: Port device team_slave_1 added [ 471.430238][ T9306] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 471.442380][ T9306] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 471.470091][ T9306] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 471.499615][ T9306] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 471.507179][ T9306] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 471.534089][ T9306] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 471.726754][ T9306] hsr_slave_0: entered promiscuous mode [ 471.758618][ T9306] hsr_slave_1: entered promiscuous mode [ 471.762411][ T5831] usb 6-1: new high-speed USB device number 10 using dummy_hcd [ 471.816528][ T9387] Dead loop on virtual device ip6_vti0, fix it urgently! [ 472.077487][ T5831] usb 6-1: Using ep0 maxpacket: 8 [ 472.106879][ T5831] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 472.118337][ T5831] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 472.128700][ T5831] usb 6-1: New USB device found, idVendor=17ef, idProduct=6062, bcdDevice= 0.00 [ 472.138501][ T5831] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 472.262561][ T5774] Bluetooth: hci1: command tx timeout [ 472.274410][ T5831] usb 6-1: config 0 descriptor?? [ 472.488396][ T9397] IPVS: stopping backup sync thread 9398 ... [ 472.988045][ T9306] netdevsim netdevsim6 netdevsim0: renamed from eth0 [ 473.021044][ T9306] netdevsim netdevsim6 netdevsim1: renamed from eth1 [ 473.087267][ T9306] netdevsim netdevsim6 netdevsim2: renamed from eth2 [ 473.132465][ T5831] lenovo 0003:17EF:6062.000E: unknown main item tag 0x0 [ 473.139984][ T5831] lenovo 0003:17EF:6062.000E: unknown main item tag 0x0 [ 473.146879][ T9306] netdevsim netdevsim6 netdevsim3: renamed from eth3 [ 473.147604][ T5831] lenovo 0003:17EF:6062.000E: unknown main item tag 0x0 [ 473.161852][ T5831] lenovo 0003:17EF:6062.000E: unknown main item tag 0x0 [ 473.169150][ T5831] lenovo 0003:17EF:6062.000E: unknown main item tag 0x0 [ 473.193554][ T5831] lenovo 0003:17EF:6062.000E: hidraw0: USB HID v0.00 Device [HID 17ef:6062] on usb-dummy_hcd.5-1/input0 [ 473.305690][ T5831] usb 6-1: USB disconnect, device number 10 [ 473.314518][ T5824] usb 5-1: new high-speed USB device number 6 using dummy_hcd [ 473.478417][ T5824] usb 5-1: Using ep0 maxpacket: 8 [ 473.512457][ T5824] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 13 [ 473.552214][ T5824] usb 5-1: New USB device found, idVendor=046d, idProduct=08ae, bcdDevice=11.58 [ 473.561931][ T5824] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 473.570214][ T5824] usb 5-1: Product: syz [ 473.574888][ T5824] usb 5-1: Manufacturer: syz [ 473.579761][ T5824] usb 5-1: SerialNumber: syz [ 473.622795][ T5824] usb 5-1: config 0 descriptor?? [ 473.660068][ T5824] gspca_main: gspca_zc3xx-2.14.0 probing 046d:08ae [ 473.684717][ T9413] netlink: 'syz.3.1418': attribute type 11 has an invalid length. [ 473.842605][ T9306] 8021q: adding VLAN 0 to HW filter on device bond0 [ 473.888080][ T9306] 8021q: adding VLAN 0 to HW filter on device team0 [ 473.932108][ T3871] bridge0: port 1(bridge_slave_0) entered blocking state [ 473.939806][ T3871] bridge0: port 1(bridge_slave_0) entered forwarding state [ 474.088300][ T3871] bridge0: port 2(bridge_slave_1) entered blocking state [ 474.096115][ T3871] bridge0: port 2(bridge_slave_1) entered forwarding state [ 474.163734][ T5824] gspca_zc3xx: reg_w_i err -71 [ 474.236689][ T9415] loop0: detected capacity change from 0 to 128 [ 474.255774][ T9415] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 474.342224][ T5774] Bluetooth: hci1: command tx timeout [ 474.373165][ T9415] syz.0.1420: attempt to access beyond end of device [ 474.373165][ T9415] loop0: rw=0, sector=6491536, nr_sectors = 2 limit=128 [ 474.388435][ T9415] Buffer I/O error on dev loop0, logical block 3245768, async page read [ 474.451737][ T9415] syz.0.1420: attempt to access beyond end of device [ 474.451737][ T9415] loop0: rw=0, sector=6491536, nr_sectors = 2 limit=128 [ 474.465996][ T9415] Buffer I/O error on dev loop0, logical block 3245768, async page read [ 474.752161][ T5824] gspca_zc3xx: Unknown sensor - set to TAS5130C [ 474.758893][ T5824] gspca_zc3xx 5-1:0.0: probe with driver gspca_zc3xx failed with error -71 [ 474.831467][ T5824] usb 5-1: USB disconnect, device number 6 [ 474.888768][ T5772] sysv_free_block: flc_count > flc_size [ 474.894751][ T5772] sysv_free_block: flc_count > flc_size [ 474.900521][ T5772] sysv_free_block: flc_count > flc_size [ 474.906495][ T5772] sysv_free_block: flc_count > flc_size [ 474.912356][ T5772] sysv_free_block: flc_count > flc_size [ 474.922034][ T5772] sysv_free_block: flc_count > flc_size [ 474.927772][ T5772] sysv_free_block: flc_count > flc_size [ 474.934922][ T5772] sysv_free_block: flc_count > flc_size [ 474.940658][ T5772] sysv_free_block: flc_count > flc_size [ 474.946578][ T5772] sysv_free_block: flc_count > flc_size [ 474.953280][ T5772] sysv_free_inode: inode 0,1,2 or nonexistent inode [ 475.731115][ T9440] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1431'. [ 476.105109][ T9306] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 476.294922][ T9450] netlink: 'syz.3.1433': attribute type 1 has an invalid length. [ 477.628749][ T9306] veth0_vlan: entered promiscuous mode [ 477.671338][ T9306] veth1_vlan: entered promiscuous mode [ 477.775903][ T9477] netlink: 32 bytes leftover after parsing attributes in process `syz.0.1445'. [ 477.806249][ T9306] veth0_macvtap: entered promiscuous mode [ 477.826974][ T9306] veth1_macvtap: entered promiscuous mode [ 477.879528][ T9306] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 477.894032][ T9306] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 477.905316][ T9306] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 477.916073][ T9306] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 477.926209][ T9306] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 477.937006][ T9306] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 477.948151][ T9306] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 477.958919][ T9306] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 477.973561][ T9306] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 478.000323][ T9306] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 478.011267][ T9306] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 478.021902][ T9306] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 478.032633][ T9306] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 478.044458][ T9306] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 478.055329][ T9306] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 478.065496][ T9306] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 478.076254][ T9306] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 478.095764][ T9306] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 478.141435][ T9482] 9pnet: Limiting 'msize' to 1048576 as this is the maximum supported by transport fd [ 478.189753][ T9306] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 478.203032][ T9306] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 478.213975][ T9306] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 478.223225][ T9306] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 479.124431][ T9496] loop3: detected capacity change from 0 to 1024 [ 479.164422][ T9496] hfsplus: unable to change nls mapping [ 479.799378][ T9508] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1454'. [ 479.808854][ T9508] netlink: 12 bytes leftover after parsing attributes in process `syz.5.1454'. [ 481.653835][ T9542] netlink: 'syz.3.1466': attribute type 2 has an invalid length. [ 482.499721][ T9561] netlink: 108 bytes leftover after parsing attributes in process `syz.5.1472'. [ 482.509303][ T9561] netlink: 20 bytes leftover after parsing attributes in process `syz.5.1472'. [ 483.100973][ T2983] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 483.112261][ T2983] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 483.134833][ T3676] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 483.143616][ T3676] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 483.831842][ T5828] usb 4-1: new high-speed USB device number 12 using dummy_hcd [ 484.019204][ T5828] usb 4-1: New USB device found, idVendor=0813, idProduct=0001, bcdDevice=3a.08 [ 484.032035][ T5828] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 484.089805][ T5828] usb 4-1: config 0 descriptor?? [ 484.128424][ T5828] gspca_main: cpia1-2.14.0 probing 0813:0001 [ 484.751784][ T5828] gspca_cpia1: usb_control_msg 01, error -71 [ 484.758165][ T5828] cpia1 4-1:0.0: only firmware version 1 is supported (got: 0) [ 484.805496][ T5828] usb 4-1: USB disconnect, device number 12 [ 485.152809][ T9608] loop6: detected capacity change from 0 to 64 [ 485.188063][ T9608] hfs: Bad value for 'gid' [ 486.303810][ T9624] loop6: detected capacity change from 0 to 512 [ 486.617164][ T9633] loop0: detected capacity change from 0 to 512 [ 486.670554][ T9624] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback. [ 486.684096][ T9624] ext4 filesystem being mounted at /6/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 486.742766][ T9633] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 486.756178][ T9633] ext4 filesystem being mounted at /292/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 487.094630][ T5772] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 487.426492][ T9649] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1505'. [ 487.443092][ T9306] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000d40000. [ 489.006980][ T5824] kernel write not supported for file /sysvipc/msg (pid: 5824 comm: kworker/0:3) [ 489.212301][ T9684] lo speed is unknown, defaulting to 1000 [ 489.576763][ T9692] netlink: 12 bytes leftover after parsing attributes in process `syz.5.1529'. [ 490.868284][ T5774] Bluetooth: hci1: command tx timeout [ 490.877014][ T9716] veth1_macvtap: left promiscuous mode [ 490.883200][ T9716] macsec0: entered allmulticast mode [ 490.903162][ T9718] netlink: 96 bytes leftover after parsing attributes in process `syz.4.1543'. [ 490.917934][ T9719] trusted_key: encrypted_key: key user:syz not found [ 491.020611][ T9716] veth1_macvtap: entered allmulticast mode [ 491.365618][ T25] usb 7-1: new high-speed USB device number 2 using dummy_hcd [ 491.542691][ T25] usb 7-1: Using ep0 maxpacket: 32 [ 491.560871][ T25] usb 7-1: config 0 has an invalid interface number: 35 but max is 0 [ 491.569600][ T25] usb 7-1: config 0 has no interface number 0 [ 491.630830][ T25] usb 7-1: New USB device found, idVendor=10c4, idProduct=818a, bcdDevice=7d.8f [ 491.640849][ T25] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 491.649358][ T25] usb 7-1: Product: syz [ 491.653901][ T25] usb 7-1: Manufacturer: syz [ 491.658747][ T25] usb 7-1: SerialNumber: syz [ 491.713781][ T25] usb 7-1: config 0 descriptor?? [ 491.946615][ T25] radio-si470x 7-1:0.35: this is not a si470x device. [ 491.993464][ T25] radio-raremono 7-1:0.35: Thanko's Raremono connected: (10C4:818A) [ 492.211782][ T25] radio-raremono 7-1:0.35: raremono_cmd_main failed (-71) [ 492.252087][ T25] radio-raremono 7-1:0.35: V4L2 device registered as radio48 [ 492.336524][ T25] usb 7-1: USB disconnect, device number 2 [ 492.344068][ T25] radio-raremono 7-1:0.35: Thanko's Raremono disconnected [ 492.871685][ T5824] usb 6-1: new high-speed USB device number 11 using dummy_hcd [ 493.116269][ T5824] usb 6-1: Using ep0 maxpacket: 16 [ 493.166120][ T5824] usb 6-1: New USB device found, idVendor=1604, idProduct=8007, bcdDevice=af.a6 [ 493.176204][ T5824] usb 6-1: New USB device strings: Mfr=1, Product=23, SerialNumber=3 [ 493.184775][ T5824] usb 6-1: Product: syz [ 493.189188][ T5824] usb 6-1: Manufacturer: syz [ 493.194350][ T5824] usb 6-1: SerialNumber: syz [ 493.307224][ T9762] netlink: 256 bytes leftover after parsing attributes in process `syz.3.1562'. [ 493.317219][ T9762] netlink: 64 bytes leftover after parsing attributes in process `syz.3.1562'. [ 493.370084][ T5824] usb 6-1: config 0 descriptor?? [ 493.842521][ T25] usb 6-1: USB disconnect, device number 11 [ 494.142973][ T9780] QAT: Invalid ioctl 21531 [ 494.866205][ T9790] loop5: detected capacity change from 0 to 128 [ 495.032061][ T9797] netlink: 156 bytes leftover after parsing attributes in process `syz.4.1578'. [ 495.041847][ T9797] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1578'. [ 495.051056][ T9797] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1578'. [ 495.114343][ T9790] EXT4-fs (loop5): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 495.145694][ T9790] ext4 filesystem being mounted at /274/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 495.444896][ T6126] EXT4-fs (loop5): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 495.461764][ T5824] usb 7-1: new high-speed USB device number 3 using dummy_hcd [ 495.958668][ T5824] usb 7-1: config 0 has an invalid interface number: 156 but max is 0 [ 495.958821][ T5824] usb 7-1: config 0 has no interface number 0 [ 495.958955][ T5824] usb 7-1: config 0 interface 156 altsetting 0 endpoint 0x3 has an invalid bInterval 0, changing to 7 [ 495.959136][ T5824] usb 7-1: config 0 interface 156 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0 [ 495.959289][ T5824] usb 7-1: config 0 interface 156 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 495.959519][ T5824] usb 7-1: New USB device found, idVendor=abcd, idProduct=cdee, bcdDevice= 5.b9 [ 495.959680][ T5824] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 495.963827][ T5824] usb 7-1: config 0 descriptor?? [ 495.976358][ T5824] gspca_main: spca561-2.14.0 probing abcd:cdee [ 496.228382][ T5824] spca561 7-1:0.156: probe with driver spca561 failed with error -22 [ 496.231634][ T5824] usb 7-1: Quirk or no altset; falling back to MIDI 1.0 [ 496.231768][ T5824] usb 7-1: MIDIStreaming interface descriptor not found [ 496.287744][ T5824] usb 7-1: USB disconnect, device number 3 [ 497.733552][ T9837] loop5: detected capacity change from 0 to 256 [ 500.349760][ T9886] loop3: detected capacity change from 0 to 64 [ 500.373405][ T9885] loop6: detected capacity change from 0 to 256 [ 500.444122][ T29] audit: type=1800 audit(1736569658.292:70): pid=9886 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.1620" name="file1" dev="loop3" ino=5 res=0 errno=0 [ 500.538896][ T9885] exFAT-fs (loop6): failed to load upcase table (idx : 0x000104d0, chksum : 0xda218cab, utbl_chksum : 0xe619d30d) [ 500.589953][ T9885] exFAT-fs (loop6): error, invalid access to FAT free cluster (entry 0x00000008) [ 500.599820][ T9885] exFAT-fs (loop6): error, failed to bmap (inode : ffff88804542e7b0 iblock : 8, err : -5) [ 500.674434][ T9885] exFAT-fs (loop6): error, invalid access to FAT free cluster (entry 0x00000008) [ 501.099187][ T9900] loop3: detected capacity change from 0 to 256 [ 501.287165][ T9900] exFAT-fs (loop3): failed to load upcase table (idx : 0x000104d0, chksum : 0x5dc98cac, utbl_chksum : 0xe619d30d) [ 501.340927][ T9900] exFAT-fs (loop3): error, invalid access to FAT (entry 0x00000005) bogus content (0x07ffffff) [ 501.352195][ T9900] exFAT-fs (loop3): Filesystem has been set read-only [ 501.359169][ T9900] exFAT-fs (loop3): failed to initialize root inode [ 502.329418][ T9924] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1635'. [ 502.339083][ T9924] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1635'. [ 502.348513][ T9924] netlink: 'syz.3.1635': attribute type 15 has an invalid length. [ 502.640776][ T9929] loop5: detected capacity change from 0 to 1024 [ 503.561402][ T5824] usb 4-1: new high-speed USB device number 13 using dummy_hcd [ 503.732699][ T5824] usb 4-1: Using ep0 maxpacket: 32 [ 503.773598][ T5824] usb 4-1: config 0 has an invalid interface number: 1 but max is 0 [ 503.782156][ T5824] usb 4-1: config 0 has no interface number 0 [ 503.819534][ T5824] usb 4-1: New USB device found, idVendor=8086, idProduct=9500, bcdDevice=b6.d8 [ 503.829229][ T5824] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 503.837840][ T5824] usb 4-1: Product: syz [ 503.842483][ T5824] usb 4-1: Manufacturer: syz [ 503.847325][ T5824] usb 4-1: SerialNumber: syz [ 503.889577][ T5824] usb 4-1: config 0 descriptor?? [ 503.933596][ T5824] usb 4-1: dvb_usb_v2: found a 'Intel CE9500 reference design' in warm state [ 503.943789][ T5824] usb 4-1: selecting invalid altsetting 1 [ 503.949793][ T5824] usb 4-1: dvb_usb_ce6230: usb_set_interface() failed=-22 [ 503.970801][ T5824] usb 4-1: dvb_usb_v2: will pass the complete MPEG2 transport stream to the software demuxer [ 503.982488][ T5824] dvbdev: DVB: registering new adapter (Intel CE9500 reference design) [ 503.991051][ T5824] usb 4-1: media controller created [ 504.073012][ T5824] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered. [ 504.881715][ T5824] usb 4-1: USB disconnect, device number 13 [ 505.664131][ T9983] loop3: detected capacity change from 0 to 256 [ 505.808513][ T29] audit: type=1800 audit(1736569663.642:71): pid=9983 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.1663" name="file1" dev="loop3" ino=1048688 res=0 errno=0 [ 506.255520][ T9992] netlink: 8 bytes leftover after parsing attributes in process `syz.6.1668'. [ 506.841624][ T29] audit: type=1400 audit(1736569664.592:72): apparmor="DENIED" operation="stack_onexec" class="file" info="label not found" error=-2 profile="unconfined" name=381CD2A12F2F262F pid=9998 comm="syz.4.1673" [ 506.928079][T10006] sp0: Synchronizing with TNC [ 508.573485][T10023] loop5: detected capacity change from 0 to 32768 [ 508.630211][T10023] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz" [ 508.638904][T10023] gfs2: fsid=syz:syz: Now mounting FS (format 1802)... [ 508.772112][T10023] gfs2: fsid=syz:syz.s: fatal: invalid metadata block - bh = 25 (type: exp=5, found=8), function = gfs2_meta_buffer, file = fs/gfs2/meta_io.c, line = 500 [ 508.791239][T10023] gfs2: fsid=syz:syz.s: about to withdraw this file system [ 508.798704][T10023] gfs2: fsid=syz:syz.s: Journal recovery skipped for jid 0 until next mount. [ 508.807858][T10023] gfs2: fsid=syz:syz.s: Glock dequeues delayed: 0 [ 508.819984][T10023] gfs2: fsid=syz:syz.s: File system withdrawn [ 508.826411][T10023] CPU: 1 UID: 0 PID: 10023 Comm: syz.5.1680 Not tainted 6.13.0-rc6-syzkaller-00213-ge0daef7de1ac #0 [ 508.837494][T10023] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 508.847799][T10023] Call Trace: [ 508.851262][T10023] [ 508.854383][T10023] dump_stack_lvl+0x216/0x2d0 [ 508.859379][T10023] dump_stack+0x1e/0x24 [ 508.863816][T10023] gfs2_withdraw+0x1c77/0x21b0 [ 508.868892][T10023] gfs2_metatype_check_ii+0x115/0x150 [ 508.874565][T10023] gfs2_meta_buffer+0x4b4/0x5d0 [ 508.879699][T10023] __gfs2_iomap_get+0xe6b/0x1e10 [ 508.884963][T10023] gfs2_block_map+0x289/0xd50 [ 508.889954][T10023] ? kmsan_get_metadata+0x13e/0x1c0 [ 508.895429][T10023] gfs2_write_alloc_required+0x4ac/0x670 [ 508.901396][T10023] gfs2_jdesc_check+0x365/0x430 [ 508.906566][T10023] check_journal_clean+0x1e3/0x4c0 [ 508.911973][T10023] ? init_journal+0x3246/0x3a40 [ 508.917127][T10023] ? kmsan_get_metadata+0x13e/0x1c0 [ 508.922608][T10023] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 508.928700][T10023] init_journal+0x3246/0x3a40 [ 508.933686][T10023] ? init_inodes+0x125/0x510 [ 508.938578][T10023] ? init_inodes+0x125/0x510 [ 508.943451][T10023] init_inodes+0x125/0x510 [ 508.948149][T10023] ? gfs2_fill_super+0x38dc/0x45a0 [ 508.953583][T10023] gfs2_fill_super+0x3a8b/0x45a0 [ 508.958826][T10023] ? sb_set_blocksize+0x12a/0x160 [ 508.964154][T10023] ? setup_bdev_super+0xa2c/0xa90 [ 508.969489][T10023] ? kmsan_get_metadata+0x13e/0x1c0 [ 508.974947][T10023] ? init_locking+0xf0/0x510 [ 508.979824][T10023] get_tree_bdev_flags+0x6ec/0x910 [ 508.985241][T10023] ? __pfx_gfs2_fill_super+0x10/0x10 [ 508.990828][T10023] ? __pfx_gfs2_fill_super+0x10/0x10 [ 508.996400][T10023] get_tree_bdev+0x37/0x50 [ 509.001113][T10023] gfs2_get_tree+0x5c/0x340 [ 509.005911][T10023] ? __pfx_gfs2_get_tree+0x10/0x10 [ 509.011319][T10023] vfs_get_tree+0xb1/0x5a0 [ 509.016041][T10023] ? mount_capable+0x97/0x120 [ 509.021020][T10023] do_new_mount+0x71f/0x15e0 [ 509.025870][T10023] ? kmsan_get_metadata+0x13e/0x1c0 [ 509.031363][T10023] path_mount+0x742/0x1f10 [ 509.036031][T10023] ? user_path_at+0x374/0x3e0 [ 509.041003][T10023] __se_sys_mount+0x722/0x810 [ 509.045967][T10023] __x64_sys_mount+0xe4/0x150 [ 509.050916][T10023] x64_sys_call+0x39bf/0x3c30 [ 509.055903][T10023] do_syscall_64+0xcd/0x1e0 [ 509.060668][T10023] ? clear_bhb_loop+0x25/0x80 [ 509.065649][T10023] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 509.071865][T10023] RIP: 0033:0x7f4c8a3874ca [ 509.076519][T10023] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 509.096415][T10023] RSP: 002b:00007f4c8b1a7e68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 509.105154][T10023] RAX: ffffffffffffffda RBX: 00007f4c8b1a7ef0 RCX: 00007f4c8a3874ca [ 509.113404][T10023] RDX: 0000000020000000 RSI: 0000000020000100 RDI: 00007f4c8b1a7eb0 [ 509.121634][T10023] RBP: 0000000020000000 R08: 00007f4c8b1a7ef0 R09: 0000000000208c1b [ 509.129854][T10023] R10: 0000000000208c1b R11: 0000000000000246 R12: 0000000020000100 [ 509.138056][T10023] R13: 00007f4c8b1a7eb0 R14: 000000000001285c R15: 0000000020000040 [ 509.146287][T10023] [ 509.154427][T10023] gfs2: fsid=syz:syz.s: G: s:SH n:2/13 f:aqob t:SH d:EX/0 a:0 v:0 r:2 m:20 p:6 [ 509.165012][T10023] gfs2: fsid=syz:syz.s: H: s:SH f:eEcH e:0 p:10023 [syz.5.1680] init_journal+0x3246/0x3a40 [ 509.175636][T10023] gfs2: fsid=syz:syz.s: I: n:1/19 t:8 f:0x00 d:0x00000200 s:8388608 p:0 [ 509.184524][T10023] gfs2: fsid=syz:syz.s: Error checking journal for spectator mount. [ 510.386556][T10046] loop6: detected capacity change from 0 to 512 [ 510.430365][T10046] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode [ 510.618893][T10046] EXT4-fs (loop6): 1 truncate cleaned up [ 510.626573][T10046] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 510.913047][T10047] loop5: detected capacity change from 0 to 4096 [ 510.934130][T10047] ntfs3(loop5): Different NTFS sector size (1024) and media sector size (512). [ 511.184312][T10047] ntfs3(loop5): ino=5, "/" directory corrupted [ 511.446157][ T9306] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 511.844644][ T29] audit: type=1326 audit(1736569669.682:73): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10067 comm="syz.5.1702" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4c8a385d29 code=0x7ffc0000 [ 511.869159][ T29] audit: type=1326 audit(1736569669.692:74): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10067 comm="syz.5.1702" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4c8a385d29 code=0x7ffc0000 [ 511.977331][T10068] loop5: detected capacity change from 0 to 8 [ 511.992944][ T29] audit: type=1326 audit(1736569669.792:75): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10067 comm="syz.5.1702" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f4c8a385d29 code=0x7ffc0000 [ 512.015927][ T29] audit: type=1326 audit(1736569669.792:76): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10067 comm="syz.5.1702" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f4c8a385d63 code=0x7ffc0000 [ 512.038710][ T29] audit: type=1326 audit(1736569669.822:77): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10067 comm="syz.5.1702" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f4c8a3847df code=0x7ffc0000 [ 512.062897][ T29] audit: type=1326 audit(1736569669.822:78): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10067 comm="syz.5.1702" exe="/root/syz-executor" sig=0 arch=c000003e syscall=11 compat=0 ip=0x7f4c8a385db7 code=0x7ffc0000 [ 512.091865][ T29] audit: type=1326 audit(1736569669.822:79): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10067 comm="syz.5.1702" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f4c8a384690 code=0x7ffc0000 [ 512.117394][ T29] audit: type=1326 audit(1736569669.822:80): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10067 comm="syz.5.1702" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f4c8a38592b code=0x7ffc0000 [ 512.146269][ T29] audit: type=1326 audit(1736569669.992:81): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10067 comm="syz.5.1702" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f4c8a38498a code=0x7ffc0000 [ 512.169652][ T29] audit: type=1326 audit(1736569669.992:82): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10067 comm="syz.5.1702" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f4c8a38498a code=0x7ffc0000 [ 512.295915][ T25] usb 7-1: new high-speed USB device number 4 using dummy_hcd [ 512.374177][T10074] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1704'. [ 512.604631][ T25] usb 7-1: New USB device found, idVendor=2c42, idProduct=1709, bcdDevice=ca.b7 [ 512.614298][ T25] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 512.622906][ T25] usb 7-1: Product: syz [ 512.627316][ T25] usb 7-1: Manufacturer: syz [ 512.632253][ T25] usb 7-1: SerialNumber: syz [ 512.682923][ T25] usb 7-1: config 0 descriptor?? [ 513.058004][T10083] loop3: detected capacity change from 0 to 512 [ 513.164928][T10083] EXT4-fs error (device loop3): ext4_expand_extra_isize_ea:2813: inode #11: comm syz.3.1707: corrupted xattr block 95: invalid header [ 513.187282][T10083] EXT4-fs error (device loop3): ext4_validate_block_bitmap:432: comm syz.3.1707: bg 0: block 7: invalid block bitmap [ 513.288480][T10083] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6550: Corrupt filesystem [ 513.441727][ T25] usb 7-1: f81604_read: reg: 105 failed: -EPROTO [ 513.448382][ T25] f81604 7-1:0.0: Setting termination of CH#1 failed: -EPROTO [ 513.456312][ T25] f81604 7-1:0.0: probe with driver f81604 failed with error -71 [ 513.490805][T10083] EXT4-fs error (device loop3): ext4_xattr_delete_inode:2977: inode #11: comm syz.3.1707: corrupted xattr block 95: invalid header [ 513.529216][T10083] EXT4-fs warning (device loop3): ext4_evict_inode:276: xattr delete (err -117) [ 513.542404][T10083] EXT4-fs (loop3): 1 orphan inode deleted [ 513.549966][T10083] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 513.582359][ T25] usb 7-1: USB disconnect, device number 4 [ 513.782948][T10093] syz.0.1713 uses obsolete (PF_INET,SOCK_PACKET) [ 514.015682][ T5784] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 514.089148][ T25] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0 [ 514.144910][ T25] hid-generic 0000:0000:0000.000F: hidraw0: HID v0.00 Device [syz0] on syz0 [ 515.062548][T10112] netlink: 'syz.6.1719': attribute type 1 has an invalid length. [ 515.099173][T10117] ip6t_rpfilter: only valid in 'raw' or 'mangle' table, not '' [ 515.113013][T10116] netlink: 'syz.3.1724': attribute type 2 has an invalid length. [ 515.823961][T10130] loop3: detected capacity change from 0 to 128 [ 516.113376][T10130] FAT-fs (loop3): error, invalid access to FAT (entry 0x00000100) [ 516.121751][T10130] FAT-fs (loop3): Filesystem has been set read-only [ 516.128593][T10130] syz.3.1730: attempt to access beyond end of device [ 516.128593][T10130] loop3: rw=524288, sector=2065, nr_sectors = 8 limit=128 [ 516.142964][T10130] FAT-fs (loop3): error, invalid access to FAT (entry 0x00000100) [ 516.151081][T10130] FAT-fs (loop3): error, invalid access to FAT (entry 0x00000100) [ 516.218464][T10130] syz.3.1730: attempt to access beyond end of device [ 516.218464][T10130] loop3: rw=0, sector=2065, nr_sectors = 8 limit=128 [ 516.283017][T10130] syz.3.1730 (10130) used greatest stack depth: 3792 bytes left [ 516.483841][T10138] netlink: 'syz.0.1734': attribute type 10 has an invalid length. [ 516.533942][T10142] netlink: 'syz.0.1734': attribute type 10 has an invalid length. [ 516.542490][T10142] netlink: 2 bytes leftover after parsing attributes in process `syz.0.1734'. [ 516.608554][T10138] batman_adv: batadv0: Adding interface: team0 [ 516.615227][T10138] batman_adv: batadv0: The MTU of interface team0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 516.641027][T10138] batman_adv: batadv0: Not using interface team0 (retrying later): interface not active [ 516.670210][T10142] team0: entered promiscuous mode [ 516.677624][T10142] team_slave_0: entered promiscuous mode [ 516.684635][T10142] team_slave_1: entered promiscuous mode [ 516.706436][T10142] 8021q: adding VLAN 0 to HW filter on device team0 [ 516.714384][T10142] batman_adv: batadv0: Interface activated: team0 [ 516.721456][T10142] batman_adv: batadv0: Interface deactivated: team0 [ 516.728416][T10142] batman_adv: batadv0: Removing interface: team0 [ 518.397249][T10172] tipc: Enabling not permitted [ 518.404347][T10172] tipc: Enabling of bearer rejected, failed to enable media [ 518.559558][T10177] loop3: detected capacity change from 0 to 128 [ 519.193471][T10189] tipc: Started in network mode [ 519.198684][T10189] tipc: Node identity aaaaaaaaaa3, cluster identity 4711 [ 519.206889][T10189] tipc: Enabled bearer , priority 10 [ 519.360510][T10191] loop5: detected capacity change from 0 to 256 [ 519.439732][T10191] FAT-fs (loop5): Directory bread(block 1285) failed [ 519.519718][T10191] FAT-fs (loop5): FAT read failed (blocknr 1281) [ 520.329276][ T5831] tipc: Node number set to 10136234 [ 521.584268][T10231] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1776'. [ 521.594364][T10231] netlink: 60 bytes leftover after parsing attributes in process `syz.0.1776'. [ 522.831676][ T25] usb 6-1: new high-speed USB device number 12 using dummy_hcd [ 522.905161][T10250] netlink: 'syz.0.1785': attribute type 3 has an invalid length. [ 523.011832][ T25] usb 6-1: Using ep0 maxpacket: 32 [ 523.039476][ T25] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 523.054095][ T25] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 523.067048][ T25] usb 6-1: New USB device found, idVendor=1b1c, idProduct=1b02, bcdDevice= 0.00 [ 523.076644][ T25] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 523.177238][ T25] usb 6-1: config 0 descriptor?? [ 523.648701][ T25] corsair 0003:1B1C:1B02.0010: unknown main item tag 0x0 [ 523.719619][ T25] corsair 0003:1B1C:1B02.0010: hidraw0: USB HID v0.04 Device [HID 1b1c:1b02] on usb-dummy_hcd.5-1/input0 [ 523.873613][ T25] corsair 0003:1B1C:1B02.0010: Failed to get K90 initial state (error -71). [ 523.887874][ T25] usb 6-1: USB disconnect, device number 12 [ 524.111660][T10268] loop0: detected capacity change from 0 to 512 [ 524.127829][T10268] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 524.221556][T10268] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 524.235670][T10268] ext4 filesystem being mounted at /352/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 524.340882][T10268] EXT4-fs error (device loop0): ext4_xattr_block_get:596: inode #15: comm syz.0.1794: corrupted xattr block 32: bad e_name length [ 524.356839][T10268] EXT4-fs (loop0): Remounting filesystem read-only [ 524.434170][ T29] kauditd_printk_skb: 9 callbacks suppressed [ 524.434248][ T29] audit: type=1800 audit(1736569682.212:92): pid=10268 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.1794" name="file1" dev="loop0" ino=15 res=0 errno=0 [ 524.813120][ T5772] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 525.432870][T10288] loop5: detected capacity change from 0 to 256 [ 525.601895][T10288] FAT-fs (loop5): Directory bread(block 64) failed [ 525.616155][T10288] FAT-fs (loop5): Directory bread(block 65) failed [ 525.623495][T10288] FAT-fs (loop5): Directory bread(block 66) failed [ 525.630290][T10288] FAT-fs (loop5): Directory bread(block 67) failed [ 525.637449][T10288] FAT-fs (loop5): Directory bread(block 68) failed [ 525.644534][T10288] FAT-fs (loop5): Directory bread(block 69) failed [ 525.651672][T10288] FAT-fs (loop5): Directory bread(block 70) failed [ 525.658526][T10288] FAT-fs (loop5): Directory bread(block 71) failed [ 525.665657][T10288] FAT-fs (loop5): Directory bread(block 72) failed [ 525.672640][T10288] FAT-fs (loop5): Directory bread(block 73) failed [ 526.439895][ T1284] ieee802154 phy0 wpan0: encryption failed: -22 [ 526.446698][ T1284] ieee802154 phy1 wpan1: encryption failed: -22 [ 526.477197][T10300] loop0: detected capacity change from 0 to 4096 [ 527.701702][T10329] loop0: detected capacity change from 0 to 64 [ 527.793703][ T5824] usb 4-1: new high-speed USB device number 14 using dummy_hcd [ 527.798350][T10329] hfs: keylen 1794 too large [ 528.143604][ T5824] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 528.155228][ T5824] usb 4-1: New USB device found, idVendor=0458, idProduct=5017, bcdDevice= 0.00 [ 528.169519][ T5824] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 528.380767][ T5824] usb 4-1: config 0 descriptor?? [ 528.494748][ T5772] hfs: node 4:3 still has 1 user(s)! [ 528.828976][ T5824] kye 0003:0458:5017.0011: tablet report size too small, or kye_tablet_rdesc unexpectedly large [ 528.893287][ T5824] kye 0003:0458:5017.0011: hidraw0: USB HID v0.00 Device [HID 0458:5017] on usb-dummy_hcd.3-1/input0 [ 528.905772][ T5824] kye 0003:0458:5017.0011: tablet-enabling feature report not found [ 528.914270][ T5824] kye 0003:0458:5017.0011: tablet enabling failed [ 529.032947][ T25] usb 4-1: USB disconnect, device number 14 [ 529.111724][ T29] audit: type=1326 audit(1736569686.942:93): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10347 comm="syz.5.1828" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4c8a385d29 code=0x7ffc0000 [ 529.135375][ T29] audit: type=1326 audit(1736569686.942:94): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10347 comm="syz.5.1828" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4c8a385d29 code=0x7ffc0000 [ 529.159663][ T29] audit: type=1326 audit(1736569687.002:95): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10347 comm="syz.5.1828" exe="/root/syz-executor" sig=0 arch=c000003e syscall=173 compat=0 ip=0x7f4c8a385d29 code=0x7ffc0000 [ 529.183096][ T29] audit: type=1326 audit(1736569687.002:96): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10347 comm="syz.5.1828" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4c8a385d29 code=0x7ffc0000 [ 529.209541][ T29] audit: type=1326 audit(1736569687.002:97): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10347 comm="syz.5.1828" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4c8a385d29 code=0x7ffc0000 [ 529.356588][T10351] pimreg: entered allmulticast mode [ 529.373110][ T29] audit: type=1326 audit(1736569687.092:98): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10347 comm="syz.5.1828" exe="/root/syz-executor" sig=0 arch=c000003e syscall=442 compat=0 ip=0x7f4c8a385d29 code=0x7ffc0000 [ 529.374301][T10353] overlayfs: missing 'lowerdir' [ 529.399149][ T29] audit: type=1326 audit(1736569687.092:99): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10347 comm="syz.5.1828" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4c8a385d29 code=0x7ffc0000 [ 529.529022][T10351] pimreg: left allmulticast mode [ 533.804684][T10427] netlink: 240 bytes leftover after parsing attributes in process `syz.0.1864'. [ 533.814246][T10427] NCSI netlink: No device for ifindex 1025 [ 534.015027][T10428] lo speed is unknown, defaulting to 1000 [ 534.403628][T10441] loop6: detected capacity change from 0 to 256 [ 534.639952][ T29] audit: type=1326 audit(1736569692.482:100): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10442 comm="syz.3.1870" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb6af585d29 code=0x7ffc0000 [ 534.679519][ T29] audit: type=1326 audit(1736569692.512:101): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10442 comm="syz.3.1870" exe="/root/syz-executor" sig=0 arch=c000003e syscall=283 compat=0 ip=0x7fb6af585d29 code=0x7ffc0000 [ 534.702682][ T29] audit: type=1326 audit(1736569692.512:102): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10442 comm="syz.3.1870" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb6af585d29 code=0x7ffc0000 [ 534.728620][ T29] audit: type=1326 audit(1736569692.512:103): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10442 comm="syz.3.1870" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb6af585d29 code=0x7ffc0000 [ 534.935210][ T29] audit: type=1326 audit(1736569692.602:104): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10442 comm="syz.3.1870" exe="/root/syz-executor" sig=0 arch=c000003e syscall=286 compat=0 ip=0x7fb6af585d29 code=0x7ffc0000 [ 534.958714][ T29] audit: type=1326 audit(1736569692.602:105): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10442 comm="syz.3.1870" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb6af585d29 code=0x7ffc0000 [ 534.981851][ T29] audit: type=1326 audit(1736569692.602:106): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10442 comm="syz.3.1870" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb6af585d29 code=0x7ffc0000 [ 535.448022][ T29] audit: type=1326 audit(1736569693.272:107): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10448 comm="syz.6.1873" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f2b60385d29 code=0x0 [ 536.027832][ T5774] Bluetooth: hci0: unexpected event for opcode 0x2062 [ 536.762366][T10473] loop5: detected capacity change from 0 to 2048 [ 536.790279][T10473] UDF-fs: warning (device loop5): udf_load_vrs: No anchor found [ 536.798472][T10473] UDF-fs: Scanning with blocksize 512 failed [ 536.831798][T10473] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 537.117945][T10481] raw_sendmsg: syz.3.1888 forgot to set AF_INET. Fix it! [ 537.693010][T10489] loop5: detected capacity change from 0 to 256 [ 537.844187][T10495] loop3: detected capacity change from 0 to 128 [ 537.952078][T10489] FAT-fs (loop5): Directory bread(block 64) failed [ 537.959176][T10489] FAT-fs (loop5): Directory bread(block 65) failed [ 537.959392][T10495] UDF-fs: error (device loop3): udf_read_tagged: read failed, block=256, location=256 [ 537.966271][T10489] FAT-fs (loop5): Directory bread(block 66) failed [ 537.982837][T10489] FAT-fs (loop5): Directory bread(block 67) failed [ 537.989760][T10489] FAT-fs (loop5): Directory bread(block 68) failed [ 538.002268][T10489] FAT-fs (loop5): Directory bread(block 69) failed [ 538.009213][T10489] FAT-fs (loop5): Directory bread(block 70) failed [ 538.018074][T10489] FAT-fs (loop5): Directory bread(block 71) failed [ 538.025374][T10489] FAT-fs (loop5): Directory bread(block 72) failed [ 538.032331][T10489] FAT-fs (loop5): Directory bread(block 73) failed [ 538.125924][T10495] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 539.207159][T10515] vim2m vim2m.0: vidioc_s_fmt queue busy [ 539.249946][T10513] loop3: detected capacity change from 0 to 1024 [ 539.566390][T10513] hfsplus: bad catalog entry type [ 539.794801][T10524] netlink: 'syz.4.1907': attribute type 1 has an invalid length. [ 539.803494][T10524] netlink: 105116 bytes leftover after parsing attributes in process `syz.4.1907'. [ 540.118426][ T5079] Bluetooth: hci0: Controller not accepting commands anymore: ncmd = 0 [ 540.127784][ T5079] Bluetooth: hci0: Injecting HCI hardware error event [ 540.136486][ T5079] Bluetooth: hci0: hardware error 0x00 [ 540.263063][ T4900] hfsplus: b-tree write err: -5, ino 4 [ 540.491378][T10533] loop5: detected capacity change from 0 to 512 [ 540.570650][T10533] EXT4-fs (loop5): filesystem is read-only [ 541.105251][T10548] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1919'. [ 541.793890][T10561] loop0: detected capacity change from 0 to 128 [ 542.187125][ T5079] Bluetooth: hci0: Opcode 0x0c03 failed: -110 [ 543.562019][T10593] loop5: detected capacity change from 0 to 256 [ 543.570722][T10593] exfat: Deprecated parameter 'utf8' [ 543.577148][T10593] exfat: Deprecated parameter 'namecase' [ 543.753588][T10593] exFAT-fs (loop5): failed to load upcase table (idx : 0x00010000, chksum : 0x36e00b20, utbl_chksum : 0xe619d30d) [ 544.045849][T10602] loop0: detected capacity change from 0 to 16 [ 544.106220][T10602] erofs (device loop0): mounted with root inode @ nid 36. [ 544.223914][T10602] erofs (device loop0): unknown HEAD2 format 8 for nid 36, please upgrade kernel [ 544.514074][T10607] loop5: detected capacity change from 0 to 1024 [ 544.628855][T10607] hfsplus: bad catalog entry type [ 544.889524][ T3676] hfsplus: b-tree write err: -5, ino 4 [ 545.219816][T10617] loop5: detected capacity change from 0 to 256 [ 545.312085][T10617] exFAT-fs (loop5): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d) [ 545.793070][T10631] netlink: 20 bytes leftover after parsing attributes in process `syz.5.1958'. [ 547.055499][T10652] loop6: detected capacity change from 0 to 4096 [ 547.186844][T10652] NILFS (loop6): invalid segment: Checksum error in segment payload [ 547.195548][T10652] NILFS (loop6): trying rollback from an earlier position [ 547.355439][T10652] NILFS (loop6): recovery complete [ 547.441360][T10661] NILFS (loop6): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 548.055170][T10671] loop5: detected capacity change from 0 to 64 [ 550.276178][T10707] loop5: detected capacity change from 0 to 512 [ 550.337667][T10711] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1995'. [ 550.438300][T10707] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 550.451921][T10707] ext4 filesystem being mounted at /358/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 550.602158][T10707] Quota error (device loop5): do_check_range: Getting block 2650800131 out of range 1-5 [ 550.612749][T10707] Quota error (device loop5): qtree_read_dquot: Can't read quota structure for id 0 [ 550.622647][T10707] EXT4-fs error (device loop5): ext4_acquire_dquot:6938: comm syz.5.1992: Failed to acquire dquot type 1 [ 550.817839][T10721] sock: sock_timestamping_bind_phc: sock not bind to device [ 551.013989][ T6126] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 551.497959][T10732] netlink: 40 bytes leftover after parsing attributes in process `syz.6.2004'. [ 551.846329][T10736] loop3: detected capacity change from 0 to 1024 [ 552.232079][ T3959] hfsplus: b-tree write err: -5, ino 4 [ 552.347159][T10744] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2010'. [ 552.507535][T10749] netlink: 'syz.0.2013': attribute type 2 has an invalid length. [ 552.515699][T10749] netlink: 'syz.0.2013': attribute type 1 has an invalid length. [ 552.524224][T10749] netlink: 209836 bytes leftover after parsing attributes in process `syz.0.2013'. [ 552.784997][T10751] netlink: 'syz.3.2011': attribute type 3 has an invalid length. [ 553.232642][ T25] usb 6-1: new full-speed USB device number 13 using dummy_hcd [ 553.428034][ T25] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 512, setting to 64 [ 553.439633][ T25] usb 6-1: New USB device found, idVendor=056a, idProduct=0015, bcdDevice= 0.00 [ 553.449202][ T25] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 553.510330][ T25] usb 6-1: config 0 descriptor?? [ 553.518754][T10760] raw-gadget.0 gadget.5: fail, usb_ep_enable returned -22 [ 553.564260][T10770] ===================================================== [ 553.572509][T10770] BUG: KMSAN: uninit-value in ieee802154_hdr_push+0x971/0xb90 [ 553.580316][T10770] ieee802154_hdr_push+0x971/0xb90 [ 553.586058][T10770] ieee802154_header_create+0x9bc/0xc70 [ 553.592125][T10770] dgram_sendmsg+0xd5a/0x15a0 [ 553.597112][T10770] ieee802154_sock_sendmsg+0x96/0xd0 [ 553.602838][T10770] __sock_sendmsg+0x30f/0x380 [ 553.607857][T10770] ____sys_sendmsg+0x877/0xb60 [ 553.613071][T10770] ___sys_sendmsg+0x28d/0x3c0 [ 553.618088][T10770] __x64_sys_sendmsg+0x212/0x3c0 [ 553.624096][T10770] x64_sys_call+0x2ed6/0x3c30 [ 553.629006][T10770] do_syscall_64+0xcd/0x1e0 [ 553.633936][T10770] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 553.640190][T10770] [ 553.643200][T10770] Local variable hdr created at: [ 553.648371][T10770] ieee802154_header_create+0x4e/0xc70 [ 553.654272][T10770] dgram_sendmsg+0xd5a/0x15a0 [ 553.659259][T10770] [ 553.666516][T10770] CPU: 1 UID: 0 PID: 10770 Comm: syz.4.2022 Not tainted 6.13.0-rc6-syzkaller-00213-ge0daef7de1ac #0 [ 553.679051][T10770] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 553.689520][T10770] ===================================================== [ 553.696822][T10770] Disabling lock debugging due to kernel taint [ 553.703331][T10770] Kernel panic - not syncing: kmsan.panic set ... [ 553.709903][T10770] CPU: 1 UID: 0 PID: 10770 Comm: syz.4.2022 Tainted: G B 6.13.0-rc6-syzkaller-00213-ge0daef7de1ac #0 [ 553.722391][T10770] Tainted: [B]=BAD_PAGE [ 553.726664][T10770] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 553.736880][T10770] Call Trace: [ 553.740297][T10770] [ 553.743351][T10770] dump_stack_lvl+0x216/0x2d0 [ 553.748257][T10770] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 553.754284][T10770] dump_stack+0x1e/0x24 [ 553.758656][T10770] panic+0x4e2/0xcf0 [ 553.762762][T10770] ? kmsan_get_metadata+0xd1/0x1c0 [ 553.768102][T10770] kmsan_report+0x2c7/0x2d0 [ 553.772808][T10770] ? kmsan_internal_chain_origin+0xb0/0xd0 [ 553.778877][T10770] ? __msan_warning+0x95/0x120 [ 553.783883][T10770] ? ieee802154_hdr_push+0x971/0xb90 [ 553.789420][T10770] ? ieee802154_header_create+0x9bc/0xc70 [ 553.795351][T10770] ? dgram_sendmsg+0xd5a/0x15a0 [ 553.800404][T10770] ? ieee802154_sock_sendmsg+0x96/0xd0 [ 553.806092][T10770] ? __sock_sendmsg+0x30f/0x380 [ 553.811175][T10770] ? ____sys_sendmsg+0x877/0xb60 [ 553.816326][T10770] ? ___sys_sendmsg+0x28d/0x3c0 [ 553.821384][T10770] ? __x64_sys_sendmsg+0x212/0x3c0 [ 553.826699][T10770] ? x64_sys_call+0x2ed6/0x3c30 [ 553.831784][T10770] ? do_syscall_64+0xcd/0x1e0 [ 553.836654][T10770] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 553.842945][T10770] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 553.849231][T10770] ? ieee802154_header_create+0x99f/0xc70 [ 553.855138][T10770] ? kmsan_get_metadata+0x13e/0x1c0 [ 553.860509][T10770] ? kmsan_internal_set_shadow_origin+0x69/0x100 [ 553.867070][T10770] ? kmsan_get_metadata+0x13e/0x1c0 [ 553.872467][T10770] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 553.878501][T10770] ? _raw_spin_unlock_irqrestore+0x3f/0x60 [ 553.884540][T10770] ? stack_depot_save_flags+0x6db/0x750 [ 553.890297][T10770] ? kmsan_get_metadata+0x13e/0x1c0 [ 553.895672][T10770] ? kmsan_internal_set_shadow_origin+0x69/0x100 [ 553.902225][T10770] ? kmsan_get_metadata+0x13e/0x1c0 [ 553.907596][T10770] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 553.913585][T10770] __msan_warning+0x95/0x120 [ 553.918384][T10770] ieee802154_hdr_push+0x971/0xb90 [ 553.923715][T10770] ? ata_do_set_mode+0x1032/0x6cf0 [ 553.929001][T10770] ? __msan_memcpy+0x108/0x1c0 [ 553.933980][T10770] ieee802154_header_create+0x9bc/0xc70 [ 553.939742][T10770] ? __pfx_ieee802154_header_create+0x10/0x10 [ 553.946003][T10770] dgram_sendmsg+0xd5a/0x15a0 [ 553.950876][T10770] ? __pfx_dgram_sendmsg+0x10/0x10 [ 553.956169][T10770] ieee802154_sock_sendmsg+0x96/0xd0 [ 553.961655][T10770] ? __pfx_ieee802154_sock_sendmsg+0x10/0x10 [ 553.967842][T10770] ? __pfx_ieee802154_sock_sendmsg+0x10/0x10 [ 553.974061][T10770] __sock_sendmsg+0x30f/0x380 [ 553.978963][T10770] ____sys_sendmsg+0x877/0xb60 [ 553.983936][T10770] ___sys_sendmsg+0x28d/0x3c0 [ 553.988824][T10770] ? __rcu_read_unlock+0x7b/0xe0 [ 553.993982][T10770] ? __fget_files+0x42b/0x500 [ 553.998838][T10770] ? kmsan_get_metadata+0x13e/0x1c0 [ 554.004223][T10770] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 554.010211][T10770] __x64_sys_sendmsg+0x212/0x3c0 [ 554.015352][T10770] ? kmsan_get_metadata+0x13e/0x1c0 [ 554.020723][T10770] x64_sys_call+0x2ed6/0x3c30 [ 554.025619][T10770] do_syscall_64+0xcd/0x1e0 [ 554.030281][T10770] ? clear_bhb_loop+0x25/0x80 [ 554.035166][T10770] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 554.041275][T10770] RIP: 0033:0x7f88dad85d29 [ 554.045822][T10770] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 554.065630][T10770] RSP: 002b:00007f88dbb0a038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 554.074234][T10770] RAX: ffffffffffffffda RBX: 00007f88daf75fa0 RCX: 00007f88dad85d29 [ 554.082363][T10770] RDX: 0000000000000000 RSI: 0000000020000200 RDI: 0000000000000004 [ 554.090483][T10770] RBP: 00007f88dae01b08 R08: 0000000000000000 R09: 0000000000000000 [ 554.098600][T10770] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 554.106706][T10770] R13: 0000000000000000 R14: 00007f88daf75fa0 R15: 00007ffd92113f18 [ 554.114845][T10770] [ 554.118291][T10770] Kernel Offset: disabled [ 554.122677][T10770] Rebooting in 86400 seconds..