last executing test programs: 9.54413177s ago: executing program 0 (id=1291): r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000001800)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000000c0)={0x14, 0x15, 0x301, 0x0, 0x0, {0xb}}, 0x14}}, 0x8096) sendmsg$NLBL_UNLABEL_C_STATICADD(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000100)={0x0}, 0x8, 0x3000000000002}, 0x0) 8.638972623s ago: executing program 0 (id=1295): r0 = mq_open(&(0x7f0000001140)='eth0\x00#\x13\xaeu\xe0\xfbu0*\xf3\x11i\xdd\xd9\xc6\x87\xde\xbf_\xa0\xf6\xdfk\xbf.\"\xa6\xc0#p\xcd\x1c/\xa6\xf2\xbcyL\x85a\xb5\xbb~+>\xbc\x93\xf8\xab\x9a3\x85l\x1d\x15\x11\x1a{@!2\xb6!\xae\xf79k\x90\x88\v8I$\xfdQ\x1d\x90=r\xd8\xc0\xd8\t/\x8dv\xd3\xa7\xd8J\xfd\x94#KT\xdd\x14\xd3\xe1\xbe_$A=z\xee\xbd/X\xbemOX)s\x94\xde\xbe_\x88N\xb8\xde\xeb)\xcd\xc56m\n\v\x01\xbe\xeb\xbb\x91\x11z\xc2|d\x1b\x04\xd2\xf9yx\xb2\x1b\bLTrw\x88|0\t\xc6\xe2\x9c\xed\\\xd8[\xc8\x04 \xf3\xac]V\x1d:\xfc\xc3\x9e\x02\ax\xef\xfe\x1c.TT\xcf\xbf\xf5\x80a%\xdcQ\xb3CuT\xcc\x02\xea\x91\xe8\xd8\x01YZy\xe6!\x89\x9c\xd1\xa6\x167\x8avs\xb2\a\xfe\xb3j*\xad\x18I\xcc\xe9\xaa{]\xef\xb7\xf2\xee*\xf95\bJt\xd0s\xc4\xaa\xc8\x13~\xb2\xf20\xbdf\xdb\xaeG\xe3\xfb\xef\x94\xef:Q\x1b\xe3\xa3\xa4}\xef`e\xcdL\xab\xdb\r\xf2y\x9fg1\xf4\t\x18i/!\x13\xf1,\x8cu\xaa\xbf~)\x94\x1b2\x93\x86\xe7\x9a\xf2j\xa8\x96\xa6\xa2\xfcN\x81\xafTh\xb3\x1bo:\xe8\vq7S\xe4H\xf3L\xa0\x9c\x97B\x12\x10\x9d\xaa\x7fq\x06\xb9(\xf6\x1c\x83\xb1[\x84\x10aF\x9b\xda\xeb\xc4*\x02q\xb2\x92\x00\x8cv\xac AN\xb9\xaa\xe0\x9d\x97Te\x81\x98L\xfe\x97+u\xd3^\xb1\xf0\xe0\x1f\xbd\a\xbb\xe5\x18\x9ds\x12ha\x00\xeb\x84\x99\xc6\x0f\xf1\xd5LD\xa87\xa0DQ\x8a2\x16!8,\xbc%$\xf1\xf2\xd6\x9cy\xecK\xda\xc5\xdc\xfa\xdd\xf6\b\xc6\xb4\x14\x16\x9c\x7f\x92\x85\xb0\xa2%:\xf0\xf4\x150\x0f\xb4\xa6d\xb4\xe4L\x19W\xd5\x90\xf7l\x1b\xfe\xde\vh\x97=m\x82.\xac\vh\xfe\x84Q}\x838/\x83\xebP\xbe\xd6+:\xceE\\\x95\xd4\xac\x92\x87\xd7\x98\x97\xe3\xec\xad\xd5\xac\x80C\x84R\x88r^g\xbaQ(\x9a>\xe2\xba\xa8=\x17\f04\x8f\x1f\xf2\x88*@v\xe7\xd1\xee\xb3\xc2\x8dT\xda\x81g\xd9\x1a:hzW6s)x\x06\xae\x11\xf2\x1e\xcd\v\xe5L\x19\x96s\xbc\x9e\xf4\x10$\r\xa4\xd8\xa2\xa2\xfcM\xc5R3~$\xc0\xa5n\x9a W\xb1e\xcc<$\xdf\x15\f]\x15\xf5#G\xce\xaf\x88U\xfa\x80\xf24\xf6\xb5\xef\xe2z\xcf\x9eN\x92\xac\x81{\xe6\xbd\xd7\x16\xe6F\xe2\x9e\x91%\x94\v\xb9\xdc\xd6\x87\x8f\xcd\xc1\xb05\x81\x81\xf8\xe9X\xe8Kt9@\xf4\xe1\xa6=\xc9\xe1:p4\nP[f\x1d\xfd\xfa\x839\x8d\x0e\xd1\xf9\xa0\xd2^E\xe5\xedo.\xaa\xf2\xb4\xcdn\x14\f\xcd\x83_yk\xda\xc5\x89\xf0Z\xea\x1d\xbd\xc00\v\xa3\xb3\xbe\xe6\x8b\x18/\xa8\xaaY\xf2\x89\x0f\x9enOOr\x00\xb2\x01\x1f:Z\xb8\xee;\xe3;\x8aPV\xce\xee\xf8[\x16\n\xe6:z\xb8\x1dvk\a{\xc1\x14\xd9+\xdb\t\x11\x90y\xe8\\\xe6\xfc\xca\xb4\xcbC\xd6\xd0\xbeC\xce\xc0L\xdb\xcd\xb3\x907c\xb4\xa6\xce\xdb[\xce\x122N\xa3\xc7Q<\x1a\xa5\xb3)\xc5\x98\x84\x8a\x82\x19\xb0\t\xac\x10\\\x8c\xbe\xcb\raIYe[\xa8\xc4\xac\x0e\xbb\x0f\b^\xdag\xe2\xa9\"\xf5h\'\xcf\xd9\x1b\xef\xe3\xe7y\x82\x1e\xca\x7f\x02 \xcf\x9e\xe0\xd9TM\xb9\n\xa9\xad3\x91\xa5\xe6!\xcd\xa2\xa4\x14\x12\xf9\xbf\xa8b\xcec:\xd7\'\f\f\x957\xc9}\r\xa6\xaa\x0f\xca\x96\xeb', 0x42, 0x1f0, 0x0) mq_notify(r0, &(0x7f00000001c0)={0x0, 0x2a, 0x1}) mq_timedsend(r0, 0x0, 0x0, 0x7, 0x0) 7.937111157s ago: executing program 2 (id=1299): r0 = syz_usb_connect$hid(0x5, 0x36, &(0x7f0000000040)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40, 0x5ac, 0x269, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x7, 0x1, 0x3, 0x0, 0x1, 0x0, {0x9, 0x21, 0x1000, 0x6, 0x1, {0x22, 0x7}}, {{{0x9, 0x5, 0x81, 0x3, 0x0, 0x9, 0x3}}}}}]}}]}}, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, &(0x7f0000000000)={0x24, 0x0, 0x0, &(0x7f00000000c0)={0x0, 0x22, 0x7, {[@global=@item_4={0x3, 0x1, 0x7}, @global=@item_012={0x1, 0x1, 0x0, "c5"}]}}, 0x0}, 0x0) 7.762118556s ago: executing program 0 (id=1301): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000002c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5021900000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0) sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000340)={{0x14}, [@NFT_MSG_NEWRULE={0x54, 0x6, 0xa, 0x409, 0x0, 0x0, {0x2}, [@NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_EXPRESSIONS={0x28, 0x4, 0x0, 0x1, [{0x24, 0x1, 0x0, 0x1, @exthdr={{0xb}, @val={0x14, 0x2, 0x0, 0x1, [@NFTA_EXTHDR_TYPE={0x5}, @NFTA_EXTHDR_OP={0x8, 0x6, 0x1, 0x0, 0x1}]}}}]}]}], {0x14}}, 0x7c}}, 0x20004004) 7.311020166s ago: executing program 0 (id=1304): syz_mount_image$exfat(&(0x7f00000000c0), &(0x7f0000000000)='./file0\x00', 0x800, &(0x7f0000000200)={[{@allow_utime}, {@gid}, {@errors_continue}, {@errors_remount}, {@iocharset={'iocharset', 0x3d, 'cp861'}}, {}, {@gid}, {@discard}, {@iocharset={'iocharset', 0x3d, 'iso8859-6'}}, {@keep_last_dots}, {@keep_last_dots}]}, 0x1, 0x152d, &(0x7f00000034c0)="$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") r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901) move_mount(r0, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0) 6.463532981s ago: executing program 0 (id=1309): r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0) bind$bt_l2cap(r0, &(0x7f00000007c0)={0x1f, 0x0, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}, 0x4}, 0xe) setsockopt$bt_l2cap_L2CAP_OPTIONS(r0, 0x6, 0x1, &(0x7f0000000280)={0x3, 0xff, 0x9, 0x0, 0x0, 0x0, 0x1}, 0xc) 5.9211336s ago: executing program 0 (id=1311): bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xb, 0x1c, 0x0, 0x0, 0xa, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x35, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800}, 0x94) mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000000)='nfs4\x00', 0x0, &(0x7f00000001c0)='\x01') 5.522760727s ago: executing program 2 (id=1314): close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) r0 = socket$rxrpc(0x21, 0x2, 0xa) quotactl_fd$Q_GETFMT(r0, 0xffffffff80000401, 0x0, 0x0) 4.005213636s ago: executing program 32 (id=1311): bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xb, 0x1c, 0x0, 0x0, 0xa, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x35, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800}, 0x94) mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000000)='nfs4\x00', 0x0, &(0x7f00000001c0)='\x01') 3.989661833s ago: executing program 1 (id=1316): setresuid(0x0, 0xee01, 0xffffffffffffffff) r0 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$ARPT_SO_SET_ADD_COUNTERS(r0, 0x0, 0x60, 0x0, 0x0) 3.946869199s ago: executing program 2 (id=1317): r0 = socket(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000080)={'ip6tnl0\x00', 0x0}) sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x21, &(0x7f0000000300)={&(0x7f0000000880)=@newqdisc={0x54, 0x24, 0x3fe3aa0262d8c583, 0x70bd29, 0x25dfdbfe, {0x0, 0x0, 0x0, r1, {0x0, 0xffe0}, {0xffff, 0xffff}, {0x6, 0xe}}, [@qdisc_kind_options=@q_pie={{0x8}, {0xffffff00}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0x9, 0xc, 0xc89f, 0xffff5ef7, 0x0, 0x18, 0x3}}, {0x4}}]}]}, 0x54}, 0x1, 0x0, 0x0, 0x3}, 0x4048000) 3.939376881s ago: executing program 3 (id=1318): r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/power/disk', 0x0, 0x0) r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/power/disk', 0x121a02, 0x0) sendfile(r1, r0, &(0x7f0000002700)=0x23, 0x1c) 3.932232403s ago: executing program 4 (id=1319): r0 = socket$packet(0x11, 0x2, 0x300) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r0, 0x8933, &(0x7f00000001c0)={'batadv0\x00', 0x0}) sendto$packet(r0, &(0x7f0000000400)="00000000b9cac35cc48e632d4154373cece5121767f9", 0x16, 0x4, &(0x7f0000000940)={0x11, 0x8100, r1, 0x1, 0x9, 0x6, @remote}, 0x14) 3.400654668s ago: executing program 1 (id=1320): syz_mount_image$vfat(&(0x7f00000000c0), &(0x7f0000000380)='./file0\x00', 0x804, &(0x7f0000000640)={[{@uni_xlate}, {@fat=@codepage={'codepage', 0x3d, '869'}}, {@utf8no}, {@utf8no}, {@shortname_winnt}, {@iocharset={'iocharset', 0x3d, 'iso8859-6'}}, {@uni_xlateno}, {@shortname_win95}, {@utf8no}, {@fat=@codepage={'codepage', 0x3d, '936'}}, {@fat=@uid}, {@shortname_mixed}, {@shortname_lower}, {@shortname_mixed}, {@uni_xlateno}, {@uni_xlate}]}, 0xb, 0x27b, &(0x7f00000003c0)="$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") openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x8042, 0x0) unlinkat(0xffffffffffffff9c, &(0x7f0000000c40)='./file1\x00', 0x0) 3.398202996s ago: executing program 3 (id=1321): syz_init_net_socket$nfc_raw(0x27, 0x3, 0x0) r0 = syz_init_net_socket$nfc_raw(0x27, 0x3, 0x0) close(r0) 3.162674427s ago: executing program 4 (id=1322): r0 = fanotify_init(0x8, 0x40000) r1 = open(&(0x7f0000000080)='./bus\x00', 0x400141042, 0x0) fanotify_mark(r0, 0x1, 0x100018, r1, 0x0) 2.648572797s ago: executing program 3 (id=1323): socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) sendmmsg$inet(r1, &(0x7f00000037c0)=[{{0x0, 0x0, &(0x7f0000001280)=[{&(0x7f0000000040)="ea", 0x1}], 0x1}}], 0x1, 0x0) ioctl$sock_SIOCINQ(r0, 0x541b, &(0x7f0000003dc0)) 2.607784237s ago: executing program 4 (id=1324): r0 = socket$inet_mptcp(0x2, 0x1, 0x106) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000080)='yeah\x00', 0x5) getsockopt$inet_tcp_buf(r0, 0x6, 0x1a, 0x0, &(0x7f00000000c0)) 2.328422187s ago: executing program 1 (id=1325): r0 = socket(0x28, 0x801, 0x0) connect$vsock_stream(r0, &(0x7f0000000140)={0x28, 0x0, 0x0, @local}, 0x10) listen(r0, 0x8b) 1.899967257s ago: executing program 4 (id=1326): r0 = socket(0x10, 0x3, 0x0) setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0xc, &(0x7f0000000000)={0x4000004}, 0x10) write(r0, &(0x7f0000000080)="1b0000001a007f0214f9f407000904080a00000000000005000200", 0x1b) 1.56921914s ago: executing program 1 (id=1327): r0 = syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0) ioctl$DRM_IOCTL_MODE_GET_LEASE(r0, 0xc01064c8, &(0x7f0000000280)={0x1, 0x0, &(0x7f0000000200)=[0x0]}) ioctl$DRM_IOCTL_MODE_GETCONNECTOR(r0, 0xc05064a7, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r1}) 1.516034783s ago: executing program 2 (id=1328): syz_mount_image$hfsplus(&(0x7f0000001cc0), &(0x7f00000016c0)='./file0\x00', 0x4, &(0x7f0000000300)=ANY=[@ANYBLOB='umask=00000000000000000000000,decompose,nls=cp932,uid=', @ANYRESHEX=0xee01, @ANYBLOB="2c6e6f626172726965722c0000000000000b9c00000030303030303030c8f71132e94930303030342c00"], 0x20, 0x6de, &(0x7f0000002100)="$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") r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000080)='.\x00', 0x101000, 0x108) getdents64(r0, &(0x7f0000000f80)=""/4096, 0x1000) 1.422518168s ago: executing program 3 (id=1329): r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x101041) openat$sequencer(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) write$sndseq(r0, &(0x7f0000000180)=[{0x10, 0x0, 0x0, 0xfd, @time, {}, {0xe}, @control}], 0x1c) 726.449535ms ago: executing program 3 (id=1330): r0 = memfd_create(&(0x7f0000000280)='\x01\xfd\xae.+\xa6\x8c\xb6?2\x199\x94S,|x?Ue[\xbd\xe1!\x033\xbc\'#\xff\x17\x9b%\xf3[d \x97\xf5G\x97A\xc2\xd8\xf0Uq\xe6+\xa5l\x94\v\xb6\a\x17\\\xfb\x04!\xe4\xc4\xb1\xa2\x1c\xffC;\x94Q\r\xb6}\x9c\xecC\v\xcf\xeb\xe4\x9aR\xe5,\x82\x03\x00\x19\x8d\xe8\xc6\xb9\xe4\xb4\x99\x8a\x19P\xb8\x8cx\b\x99\x04R\x05\xaf\xa2\xea5\f\xcc\x1a\x9b\x00Uf\xa5\xf7\x80Tgiz\nX\b\x91\xfd0\x8e\xb6\xa3\v#\xa1\xdf\xb4\xc0\xe6\xb4\xef\xa8i\xd8\xa2\xd2(\x98\x9bA\x8f\x13\xeb\xf4b/\xef!\x8f\xf6]-\xe9k\xb62\x89gEv\x13\xf4\xc7\xb2\xf5\\\x17\x90\xb5\xa6\xa8\xb8o\x0f\xe2 \xe7\x9c$\xd7\xf2@\xf7cdv[\t\x00\x8d\xf3\xcc1\r$\x1e\xff\xf0P\xb2\x97\xb8\xbc\xeb\x91\x87\x8bu\xbf\xd4\'\xff\x1f\f\x016\x9dQ\xeeT\xe8\bY\x00\xb2\x06\xa6\xbel\x9b.o\xbe\x80\x9dx\xd5O\xd6h\\I\xc9\x8d\a\x1d\xc9\x0f\x82\xdbs\xc7\x83L\x9e\xa2\xd1\xb3\xac\x8d\xd8\xb4\xb4\xea\x90Q\xd8\xc7\xeb%\x8bOp\x1ab\x96\xcf\xbb\x15\xcf\xfcN\xed\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00s\xaf\xa2\x14]p+\x96\x1ei|n\xda\xee\\\xae\x96*\x82*\xb8j\xda\xaa\x14\x1f\x1d\xf8\xf8\xae\xfcH\xc4\xb3j\xe8\xcfO\xef\x0e\xafe\xb5*\x89\x18\xb2w\x96\b\x1by\xeaT\xdd\xb3g6\xbc\x85\xb2Y\xccv\x06\x00\x00\x00\xc5e\x90\xc51\x9f\v_# \b\xa5\xbcP,|\xe9\xd6s\x1f\x1f\xbe\xd3\x80\xb1\xa8 \xce|df\x903\v\x02\xea.\x03X\xb5\xe4,8\xb7\xadEI\xdcA\xa7\xcc\xd7\xf9n\x1b\x95\xf8\x11Z\xe6:\x03\xce\xfe\x02\x8ctdy~_oC\x9e\xef\xf0\xa2K\xe9;\x8e:\x01\x03C\x92\xeb\x16\x1c\xbf\xbe\xef\xccUxhg\xffY\xe6\x83\xa6z\xff\x01\x9d o_{!O\xaajU\x84 \xe9\xb59r\x9cw\x18Z\xd3\xcd\x0e\xba\\\xdb\xf0\xe1\x86\t\xaf\vi\xdc\xbf?\xf5\n\xbd^\x05\xc0\xceuC}\xa8\xc7\xad\x86\xd7\x15&\xb9]1\x05J\x96\xf0\x84\xc1\f\xa6p\x96\xb8\x02\x13pA\x19\tf\x12\x88\xc8\x9c\xc9Cn\xd4\xa47V\'+\xcc\xbf\r\xa9\x10\x1d\xcf\xebKlb\xe5:\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00G\xdf\xbb\xc0_\x99F\xf4n]\x14\xbc\xcd\xd3\x9f\x9fe\xc5\xe6\xe8Mb\xc6\x82\x82\xcc\xcaXe\xe1\xa2\xaa\x02\x86\xb8\x18\xe2C\xeb\xa9\x17&\x01&\'w\xa1t0\x80\xf0\x93\x80\x9f\x9b\xe0\x9f\xea\xb9\x9eD]#V\xda\x92\xca\xc6\xfa.\xd6\xe31\xfe\xe8\x02\xebX\xbd\nz\x01O\xd3r\xa2\xa9u\x93', 0x6) fallocate(r0, 0x0, 0x0, 0x400) pread64(r0, &(0x7f0000000000)=""/78, 0x4e, 0x7fff) 719.406305ms ago: executing program 1 (id=1331): r0 = socket$nl_generic(0x11, 0x3, 0x10) syz_emit_ethernet(0x2b, &(0x7f0000000000)={@link_local, @random="a538ae464632", @void, {@ipv4={0x800, @igmp={{0x5, 0x4, 0x0, 0x0, 0x1d, 0x0, 0x0, 0x0, 0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @multicast1}, {0x11, 0x0, 0x0, @multicast1, '\x00'}}}}}, 0x0) sendmsg(r0, &(0x7f0000000640)={&(0x7f00000000c0)=@caif=@dgm={0x25, 0xd}, 0x80, &(0x7f00000005c0)=[{&(0x7f0000000000)="4ba72c4cfd81685544f46c3f0800", 0x36}], 0x2, 0x0, 0x0, 0x11000000}, 0x0) 686.947978ms ago: executing program 4 (id=1332): r0 = socket(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000080)={'ip6tnl0\x00', 0x0}) sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000900)=@newqdisc={0x40, 0x24, 0x3fe3aa0262d8c583, 0x70bd29, 0x25dfdbfe, {0x0, 0x0, 0x0, r1, {0x0, 0xffe0}, {0xffff, 0xffff}, {0x10, 0xe}}, [@qdisc_kind_options=@q_fq={{0x7}, {0x14, 0x2, [@TCA_FQ_FLOW_DEFAULT_RATE={0x8, 0x6, 0xffffffff}, @TCA_FQ_INITIAL_QUANTUM={0x8, 0x4, 0x8}]}}]}, 0x40}}, 0x4048000) 544.59508ms ago: executing program 2 (id=1333): sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=@newlink={0x20, 0x10, 0x401}, 0x20}, 0x1, 0x8}, 0x0) r0 = socket$kcm(0x2d, 0x2, 0x0) ioctl$sock_kcm_SIOCKCMCLONE(r0, 0x89e3, &(0x7f00000000c0)) 290.62091ms ago: executing program 1 (id=1334): r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000001480), 0x42002, 0x0) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/timer_list\x00', 0x0, 0x0) sendfile(r0, r1, 0x0, 0x20000023896) 165.813382ms ago: executing program 4 (id=1335): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0xfffffffffffffe01, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0) sendmsg$NFT_BATCH(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)={{0x14}, [@NFT_MSG_NEWRULE={0x4c, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_EXPRESSIONS={0x20, 0x4, 0x0, 0x1, [{0x1c, 0x1, 0x0, 0x1, @xfrm={{0x9}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_XFRM_KEY={0x8, 0x2, 0x1, 0x0, 0x1}]}}}]}]}], {0x14}}, 0x74}, 0x1, 0x0, 0x0, 0x1}, 0x24048800) 72.894857ms ago: executing program 3 (id=1336): r0 = socket$kcm(0xa, 0x5, 0x0) bpf$MAP_CREATE(0x0, &(0x7f0000000040)=@bloom_filter={0x1e, 0x0, 0x400007, 0x1, 0x0, 0xffffffffffffffff, 0x1, '\x00', 0x0, 0xffffffffffffffff, 0x4}, 0x50) ioctl$sock_kcm_SIOCKCMCLONE(r0, 0x890b, &(0x7f0000000000)) 0s ago: executing program 2 (id=1337): r0 = socket$igmp(0x2, 0x3, 0x2) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000004c0)={'tunl0\x00', 0x0}) setsockopt$MRT_ADD_VIF(r0, 0x0, 0xca, &(0x7f0000000280)={0x1, 0x8, 0x3f, 0x3202, @vifc_lcl_ifindex=r1, @rand_addr=0x64010100}, 0x10) kernel console output (not intermixed with test programs): 50:50:50:50:50:50 [ 270.665003][ T4251] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 271.013915][ T4073] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 271.022054][ T4073] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 272.143728][ T3837] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 272.151862][ T3837] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 273.222228][ T5992] loop3: detected capacity change from 0 to 40427 [ 273.293973][ T5992] F2FS-fs (loop3): Insane cp_payload (553648128 >= 504) [ 273.296606][ T3993] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 273.303274][ T5992] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock [ 273.316930][ T3993] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 273.345585][ T5992] F2FS-fs (loop3): build fault injection rate: 17008 [ 273.352660][ T5992] F2FS-fs (loop3): build fault injection type: 0x1f8 [ 273.360764][ T5992] F2FS-fs (loop3): extra_attr or flexible_inline_xattr feature is off [ 273.920684][ T6000] loop0: detected capacity change from 0 to 1024 [ 274.086415][ T6000] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 274.270387][ T6004] [U] [ 274.374479][ T30] audit: type=1800 audit(1750822569.572:2): pid=6000 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.12" name="file1" dev="loop0" ino=15 res=0 errno=0 [ 274.725622][ T6010] loop3: detected capacity change from 0 to 256 [ 274.764863][ T6010] exfat: Deprecated parameter 'utf8' [ 274.785046][ T5794] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 274.864578][ T6012] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 275.003154][ T6014] loop1: detected capacity change from 0 to 128 [ 275.125086][ T6010] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0x36e00b20, utbl_chksum : 0xe619d30d) [ 275.147052][ T6014] UDF-fs: error (device loop1): udf_read_tagged: read failed, block=256, location=256 [ 275.285866][ T6008] loop4: detected capacity change from 0 to 4096 [ 275.333982][ T6008] ntfs3(loop4): Different NTFS sector size (2048) and media sector size (512). [ 275.338630][ T6014] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 275.664747][ T1611] usb 3-1: new full-speed USB device number 2 using dummy_hcd [ 275.932968][ T1611] usb 3-1: config index 0 descriptor too short (expected 5668, got 36) [ 275.942128][ T1611] usb 3-1: config 3 has too many interfaces: 84, using maximum allowed: 32 [ 275.951219][ T1611] usb 3-1: config 3 has 1 interface, different from the descriptor's value: 84 [ 275.960752][ T1611] usb 3-1: config 3 has no interface number 0 [ 275.967335][ T1611] usb 3-1: config 3 interface 20 altsetting 0 endpoint 0x6 has invalid maxpacket 1023, setting to 64 [ 275.978662][ T1611] usb 3-1: config 3 interface 20 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0 [ 276.152445][ T1611] usb 3-1: New USB device found, idVendor=04e6, idProduct=000b, bcdDevice= 1.00 [ 276.162049][ T1611] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 276.170546][ T1611] usb 3-1: Product: syz [ 276.175129][ T1611] usb 3-1: Manufacturer: syz [ 276.180095][ T1611] usb 3-1: SerialNumber: syz [ 276.313856][ T6018] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22 [ 276.819238][ T1611] usb-storage 3-1:3.20: USB Mass Storage device detected [ 276.958118][ T1611] usb-storage 3-1:3.20: Quirks match for vid 04e6 pid 000b: 4 [ 277.064838][ T1611] scsi host1: usb-storage 3-1:3.20 [ 277.283856][ T5857] usb 3-1: USB disconnect, device number 2 [ 277.795798][ T6038] loop1: detected capacity change from 0 to 256 [ 277.836036][ T6038] ======================================================= [ 277.836036][ T6038] WARNING: The mand mount option has been deprecated and [ 277.836036][ T6038] and is ignored by this kernel. Remove the mand [ 277.836036][ T6038] option from the mount to silence this warning. [ 277.836036][ T6038] ======================================================= [ 278.243417][ T6038] exFAT-fs (loop1): failed to load upcase table (idx : 0x00011bf5, chksum : 0xcea91b8a, utbl_chksum : 0xe619d30d) [ 278.257548][ T6038] exFAT-fs (loop1): bogus allocation bitmap size(need : 2, cur : 17179869186) [ 278.890494][ T6046] loop3: detected capacity change from 0 to 2048 [ 279.021170][ T6046] NILFS (loop3): broken superblock, retrying with spare superblock (blocksize = 1024) [ 279.184991][ T6053] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 279.580812][ T6059] loop4: detected capacity change from 0 to 512 [ 279.610695][ T6059] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support! [ 279.624711][ T6059] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 279.746949][ T6059] EXT4-fs error (device loop4): ext4_orphan_get:1419: comm syz.4.32: bad orphan inode 131083 [ 279.941798][ T6059] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 280.335659][ T5807] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 280.758443][ T6076] netlink: 8 bytes leftover after parsing attributes in process `syz.4.38'. [ 280.895614][ T6076] erspan0: entered promiscuous mode [ 281.007907][ T6076] erspan0: left promiscuous mode [ 282.315442][ T6094] netlink: 12 bytes leftover after parsing attributes in process `syz.2.47'. [ 282.324946][ T6094] tipc: Started in network mode [ 282.330180][ T6094] tipc: Node identity 0000000000002d210000000000000001, cluster identity 4711 [ 282.340094][ T6094] tipc: Enabling of bearer rejected, failed to enable media [ 283.490438][ T6100] loop0: detected capacity change from 0 to 4096 [ 283.662684][ T30] audit: type=1326 audit(1750822578.892:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6101 comm="syz.4.51" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8456f8e929 code=0x7fc00000 [ 284.211526][ T6114] loop3: detected capacity change from 0 to 1024 [ 284.820929][ T3993] hfsplus: b-tree write err: -5, ino 4 [ 285.532881][ T6123] loop1: detected capacity change from 0 to 4096 [ 285.604861][ T6131] netlink: 292 bytes leftover after parsing attributes in process `syz.2.64'. [ 285.685277][ T6133] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 285.866342][ T6135] netlink: 'syz.4.65': attribute type 10 has an invalid length. [ 285.875215][ T6135] bridge0: port 2(bridge_slave_1) entered disabled state [ 285.885058][ T6135] bridge0: port 1(bridge_slave_0) entered disabled state [ 285.925448][ T6135] bridge0: port 2(bridge_slave_1) entered blocking state [ 285.933140][ T6135] bridge0: port 2(bridge_slave_1) entered forwarding state [ 285.942051][ T6135] bridge0: port 1(bridge_slave_0) entered blocking state [ 285.949839][ T6135] bridge0: port 1(bridge_slave_0) entered forwarding state [ 285.971262][ T6135] bond0: (slave bridge0): Enslaving as an active interface with an up link [ 286.115647][ T6135] netlink: 4 bytes leftover after parsing attributes in process `syz.4.65'. [ 286.125467][ T6135] bridge_slave_1: left allmulticast mode [ 286.131373][ T6135] bridge_slave_1: left promiscuous mode [ 286.138449][ T6135] bridge0: port 2(bridge_slave_1) entered disabled state [ 286.255601][ T6135] bridge_slave_0: left allmulticast mode [ 286.261658][ T6135] bridge_slave_0: left promiscuous mode [ 286.269112][ T6135] bridge0: port 1(bridge_slave_0) entered disabled state [ 286.384749][ T6135] bond0: (slave bridge0): Releasing backup interface [ 288.569631][ T6151] loop2: detected capacity change from 0 to 512 [ 289.211313][ T6151] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 289.224845][ T6151] ext4 filesystem being mounted at /16/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 289.341726][ T6158] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 289.485718][ T6151] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 96 vs 65376 free clusters [ 290.119578][ T5798] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 290.535020][ T6166] netlink: 4 bytes leftover after parsing attributes in process `syz.3.80'. [ 291.012315][ T1284] ieee802154 phy0 wpan0: encryption failed: -22 [ 291.019282][ T1284] ieee802154 phy1 wpan1: encryption failed: -22 [ 291.602483][ T30] audit: type=1326 audit(1750822586.832:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6180 comm="syz.2.87" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8c04f8e929 code=0x7ffc0000 [ 291.636383][ T30] audit: type=1326 audit(1750822586.832:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6180 comm="syz.2.87" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8c04f8e929 code=0x7ffc0000 [ 291.892661][ T30] audit: type=1326 audit(1750822586.982:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6180 comm="syz.2.87" exe="/root/syz-executor" sig=0 arch=c000003e syscall=237 compat=0 ip=0x7f8c04f8e929 code=0x7ffc0000 [ 291.915612][ T30] audit: type=1326 audit(1750822586.982:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6180 comm="syz.2.87" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8c04f8e929 code=0x7ffc0000 [ 291.938036][ T30] audit: type=1326 audit(1750822586.982:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6180 comm="syz.2.87" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8c04f8e929 code=0x7ffc0000 [ 291.960602][ T30] audit: type=1326 audit(1750822586.992:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6180 comm="syz.2.87" exe="/root/syz-executor" sig=0 arch=c000003e syscall=450 compat=0 ip=0x7f8c04f8e929 code=0x7ffc0000 [ 291.983197][ T30] audit: type=1326 audit(1750822586.992:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6180 comm="syz.2.87" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8c04f8e929 code=0x7ffc0000 [ 293.335013][ T6204] Cannot find add_set index 0 as target [ 293.858337][ T6212] loop1: detected capacity change from 0 to 1024 [ 294.051441][ T6214] loop3: detected capacity change from 0 to 256 [ 294.135951][ T6214] exfat: Deprecated parameter 'namecase' [ 294.290253][ T6214] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0xbe675ead, utbl_chksum : 0xe619d30d) [ 294.364348][ T5860] usb 3-1: new high-speed USB device number 3 using dummy_hcd [ 294.580302][ T6221] netdevsim netdevsim4 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0 [ 294.589674][ T6221] netdevsim netdevsim4 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0 [ 294.598923][ T6221] netdevsim netdevsim4 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0 [ 294.608184][ T6221] netdevsim netdevsim4 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0 [ 294.645200][ T30] audit: type=1800 audit(1750822589.792:11): pid=6214 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.101" name="file1" dev="loop3" ino=1048614 res=0 errno=0 [ 294.675049][ T5860] usb 3-1: Using ep0 maxpacket: 32 [ 294.694115][ T6221] Zero length message leads to an empty skb [ 294.731964][ T5860] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 294.743704][ T30] audit: type=1800 audit(1750822589.912:12): pid=6214 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.101" name="file1" dev="loop3" ino=1048614 res=0 errno=0 [ 294.765398][ T5860] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 294.775610][ T5860] usb 3-1: New USB device found, idVendor=060b, idProduct=0001, bcdDevice= 0.00 [ 294.785132][ T5860] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 295.014868][ T5860] usb 3-1: config 0 descriptor?? [ 295.532666][ T6229] netlink: 8 bytes leftover after parsing attributes in process `syz.4.108'. [ 295.591751][ T5860] macally 0003:060B:0001.0001: unknown main item tag 0x0 [ 295.599433][ T5860] macally 0003:060B:0001.0001: unknown main item tag 0x0 [ 295.607481][ T5860] macally 0003:060B:0001.0001: unknown main item tag 0x0 [ 295.614965][ T5860] macally 0003:060B:0001.0001: unknown main item tag 0x0 [ 295.622377][ T5860] macally 0003:060B:0001.0001: unknown main item tag 0x0 [ 295.833071][ T5860] macally 0003:060B:0001.0001: hidraw0: USB HID v0.00 Device [HID 060b:0001] on usb-dummy_hcd.2-1/input0 [ 295.949454][ T5860] usb 3-1: USB disconnect, device number 3 [ 296.153291][ T6223] loop1: detected capacity change from 0 to 4096 [ 297.034091][ T6233] fido_id[6233]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.2/usb3/report_descriptor': No such file or directory [ 299.144625][ T6271] netlink: 'syz.0.126': attribute type 64 has an invalid length. [ 299.152835][ T6271] netlink: 32 bytes leftover after parsing attributes in process `syz.0.126'. [ 300.092689][ T6285] loop4: detected capacity change from 0 to 256 [ 300.146521][ T6285] exfat: Deprecated parameter 'utf8' [ 300.433230][ T30] audit: type=1804 audit(1750822595.662:13): pid=6285 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.4.133" name="/newroot/26/file0/bus" dev="loop4" ino=1048615 res=1 errno=0 [ 301.662196][ T6305] mmap: syz.2.142 (6305) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 302.024009][ T5856] usb 5-1: new high-speed USB device number 2 using dummy_hcd [ 302.224622][ T5856] usb 5-1: Using ep0 maxpacket: 32 [ 302.264554][ T5856] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 302.276076][ T5856] usb 5-1: New USB device found, idVendor=056a, idProduct=4004, bcdDevice= 0.00 [ 302.294098][ T5856] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 302.378523][ T5856] usb 5-1: config 0 descriptor?? [ 302.465175][ T6314] netlink: 1 bytes leftover after parsing attributes in process `syz.0.147'. [ 302.563259][ T5857] IPVS: starting estimator thread 0... [ 302.655329][ T6319] IPVS: using max 192 ests per chain, 9600 per kthread [ 303.030835][ T5856] usb 5-1: USB disconnect, device number 2 [ 303.256026][ T6327] netlink: 28 bytes leftover after parsing attributes in process `syz.0.151'. [ 303.260645][ T6326] process 'syz.3.152' launched '/dev/fd/3' with NULL argv: empty string added [ 303.469861][ T6325] loop1: detected capacity change from 0 to 1764 [ 303.779844][ T6325] block device autoloading is deprecated and will be removed. [ 304.183986][ T6335] loop4: detected capacity change from 0 to 64 [ 304.827742][ T6343] loop1: detected capacity change from 0 to 1024 [ 304.855752][ T5860] usb 1-1: new full-speed USB device number 2 using dummy_hcd [ 304.866490][ T6343] hfsplus: Unexpected value for 'barrier' [ 305.032720][ T6343] kAFS: unable to lookup cell 'sYSAٸ?hrF5=X$jӋZ^ۺ2׳Hq=VJtd琎zhD A[stL}Zv݌̥ϳ܏y 43ۣ#989?\?mGiXR~Eڟ[_r/Wnn޸qOPML{2/D#DkLL~8@<T4lݬo\ŵX1q)+T_^dZiV/T>Vz;ղc˿,<@' [ 305.142271][ T5860] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x6 has invalid maxpacket 1023, setting to 64 [ 305.153897][ T5860] usb 1-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xBA, changing to 0x8A [ 305.165891][ T5860] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x8A has invalid maxpacket 121, setting to 64 [ 305.259890][ T5860] usb 1-1: New USB device found, idVendor=2294, idProduct=425b, bcdDevice=a2.10 [ 305.269483][ T5860] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 305.278173][ T5860] usb 1-1: Product: syz [ 305.282589][ T5860] usb 1-1: Manufacturer: syz [ 305.287742][ T5860] usb 1-1: SerialNumber: syz [ 305.389644][ T5860] usb 1-1: config 0 descriptor?? [ 305.398095][ T6342] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22 [ 305.414759][ T6342] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22 [ 305.478416][ T5860] usb 1-1: ucan: probing device on interface #0 [ 305.994210][ T5860] usb 1-1: ucan: device reported invalid tx-fifo size [ 306.001456][ T5860] usb 1-1: ucan: probe failed; try to update the device firmware [ 306.206642][ T5856] usb 1-1: USB disconnect, device number 2 [ 306.579532][ T6361] loop1: detected capacity change from 0 to 256 [ 306.720159][ T6361] exFAT-fs (loop1): failed to load upcase table (idx : 0x00011f41, chksum : 0x31e44978, utbl_chksum : 0xe619d30d) [ 307.578526][ T6372] loop4: detected capacity change from 0 to 64 [ 308.266222][ T6379] netlink: 8 bytes leftover after parsing attributes in process `syz.3.178'. [ 308.328863][ T6381] CUSE: unknown device info "" [ 308.334404][ T6381] CUSE: unknown device info "appraise_type" [ 308.345513][ T6381] CUSE: DEVNAME unspecified [ 309.059238][ T6391] loop0: detected capacity change from 0 to 164 [ 309.130892][ T6391] Unable to read rock-ridge attributes [ 309.205136][ T6391] Unable to read rock-ridge attributes [ 309.296454][ T6395] loop2: detected capacity change from 0 to 512 [ 309.329928][ T6395] EXT4-fs: Ignoring removed mblk_io_submit option [ 309.432486][ T6395] EXT4-fs (loop2): Cannot turn on journaled quota: type 0: error -13 [ 309.478674][ T6400] loop1: detected capacity change from 0 to 256 [ 309.514175][ T6395] EXT4-fs error (device loop2): ext4_clear_blocks:876: inode #13: comm syz.2.186: attempt to clear invalid blocks 2 len 1 [ 309.545642][ T6400] exFAT-fs (loop1): failed to load upcase table (idx : 0x000104d0, chksum : 0xda218cab, utbl_chksum : 0xe619d30d) [ 309.583032][ T6395] EXT4-fs (loop2): Remounting filesystem read-only [ 309.639032][ T6395] EXT4-fs (loop2): 1 truncate cleaned up [ 309.647984][ T6395] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 309.704262][ T6400] exFAT-fs (loop1): error, data size is invalid(10) [ 309.711144][ T6400] exFAT-fs (loop1): Filesystem has been set read-only [ 309.755610][ T6400] exFAT-fs (loop1): error, data size is invalid(10) [ 309.896246][ T6395] EXT4-fs (loop2): Quota file not on filesystem root. Journaled quota will not work [ 310.186816][ T6408] netlink: 24 bytes leftover after parsing attributes in process `syz.3.191'. [ 310.327119][ T5798] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 311.364139][ T6424] loop2: detected capacity change from 0 to 64 [ 312.364445][ T30] audit: type=1326 audit(1750822607.592:14): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6442 comm="syz.1.207" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fae6db8e929 code=0x7ffc0000 [ 312.387581][ T30] audit: type=1326 audit(1750822607.592:15): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6442 comm="syz.1.207" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fae6db8e929 code=0x7ffc0000 [ 312.636886][ T30] audit: type=1326 audit(1750822607.662:16): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6442 comm="syz.1.207" exe="/root/syz-executor" sig=0 arch=c000003e syscall=2 compat=0 ip=0x7fae6db8e929 code=0x7ffc0000 [ 312.662676][ T30] audit: type=1326 audit(1750822607.662:17): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6442 comm="syz.1.207" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fae6db8e929 code=0x7ffc0000 [ 312.686623][ T30] audit: type=1326 audit(1750822607.662:18): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6442 comm="syz.1.207" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fae6db8e929 code=0x7ffc0000 [ 312.709801][ T30] audit: type=1326 audit(1750822607.712:19): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6442 comm="syz.1.207" exe="/root/syz-executor" sig=0 arch=c000003e syscall=190 compat=0 ip=0x7fae6db8e929 code=0x7ffc0000 [ 312.740463][ T30] audit: type=1326 audit(1750822607.712:20): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6442 comm="syz.1.207" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fae6db8e929 code=0x7ffc0000 [ 312.777305][ T30] audit: type=1326 audit(1750822607.712:21): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6442 comm="syz.1.207" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fae6db8e929 code=0x7ffc0000 [ 313.879843][ T5856] usb 5-1: new high-speed USB device number 3 using dummy_hcd [ 314.078966][ T6459] loop0: detected capacity change from 0 to 256 [ 314.102357][ T5856] usb 5-1: config index 0 descriptor too short (expected 23569, got 27) [ 314.111698][ T5856] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 314.166231][ T6459] exfat: Deprecated parameter 'utf8' [ 314.172261][ T6459] exfat: Deprecated parameter 'utf8' [ 314.235293][ T5856] usb 5-1: New USB device found, idVendor=03eb, idProduct=0002, bcdDevice=ba.c0 [ 314.245687][ T5856] usb 5-1: New USB device strings: Mfr=5, Product=0, SerialNumber=0 [ 314.254304][ T5856] usb 5-1: Manufacturer: syz [ 314.357064][ T5856] usb 5-1: config 0 descriptor?? [ 314.381736][ T6459] exFAT-fs (loop0): failed to load upcase table (idx : 0x0001047b, chksum : 0x3ced02ab, utbl_chksum : 0xe619d30d) [ 314.995603][ T5856] rc_core: IR keymap rc-hauppauge not found [ 315.001781][ T5856] Registered IR keymap rc-empty [ 315.010752][ T5856] rc rc0: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.4/usb5/5-1/5-1:0.0/rc/rc0 [ 315.157681][ T5856] input: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.4/usb5/5-1/5-1:0.0/rc/rc0/input8 [ 315.325627][ C1] igorplugusb 5-1:0.0: receive overflow invalid: 64 [ 315.562629][ T5856] usb 5-1: USB disconnect, device number 3 [ 316.265850][ T6481] loop3: detected capacity change from 0 to 1024 [ 316.908086][ T4073] hfsplus: b-tree write err: -5, ino 4 [ 317.635157][ T5860] usb 4-1: new high-speed USB device number 2 using dummy_hcd [ 317.785296][ T6500] loop2: detected capacity change from 0 to 2048 [ 317.817995][ T6500] UDF-fs: error (device loop2): udf_read_tagged: read failed, block=2362, location=2362 [ 317.848891][ T5860] usb 4-1: Using ep0 maxpacket: 16 [ 317.908773][ T5860] usb 4-1: config 0 has an invalid interface number: 105 but max is 0 [ 317.917690][ T5860] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 317.928193][ T5860] usb 4-1: config 0 has no interface number 0 [ 317.957025][ T6500] UDF-fs: error (device loop2): udf_read_tagged: tag checksum failed, block 99: 0x27 != 0x4d [ 317.993918][ T6500] UDF-fs: error (device loop2): udf_read_tagged: tag checksum failed, block 160: 0xd2 != 0xd4 [ 318.094407][ T5860] usb 4-1: New USB device found, idVendor=046d, idProduct=08f3, bcdDevice= b.28 [ 318.104310][ T5860] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 318.112619][ T5860] usb 4-1: Product: syz [ 318.117727][ T5860] usb 4-1: Manufacturer: syz [ 318.122588][ T5860] usb 4-1: SerialNumber: syz [ 318.184845][ T6500] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 318.276916][ T5860] usb 4-1: config 0 descriptor?? [ 318.333971][ T5860] usb 4-1: Found UVC 0.00 device syz (046d:08f3) [ 318.340725][ T5860] usb 4-1: No valid video chain found. [ 318.548054][ T5856] usb 4-1: USB disconnect, device number 2 [ 319.011427][ T6511] tc_dump_action: action bad kind [ 319.314290][ T5860] kernel write not supported for file /100/attr/exec (pid: 5860 comm: kworker/0:5) [ 319.364304][ T6514] loop0: detected capacity change from 0 to 512 [ 319.456322][ T6514] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 319.607793][ T6514] EXT4-fs warning (device loop0): ext4_expand_extra_isize_ea:2848: Unable to expand inode 15. Delete some EAs or run e2fsck. [ 319.687871][ T6514] EXT4-fs (loop0): 1 truncate cleaned up [ 319.696331][ T6514] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 319.804643][ T6520] netlink: 8 bytes leftover after parsing attributes in process `syz.3.243'. [ 320.085542][ T5794] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 320.965779][ T6527] loop2: detected capacity change from 0 to 4096 [ 321.036867][ T6527] ntfs3(loop2): Different NTFS sector size (1024) and media sector size (512). [ 321.914970][ T6546] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details. [ 322.902679][ T6554] loop3: detected capacity change from 0 to 1024 [ 322.931336][ T6558] loop1: detected capacity change from 0 to 256 [ 322.987886][ T6554] EXT4-fs: Ignoring removed bh option [ 322.999798][ T5860] usb 3-1: new high-speed USB device number 4 using dummy_hcd [ 323.097717][ T6554] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 323.197741][ T5860] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 323.209637][ T5860] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 323.219903][ T5860] usb 3-1: New USB device found, idVendor=0458, idProduct=0087, bcdDevice= 0.00 [ 323.229348][ T5860] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 323.329950][ T6554] EXT4-fs (loop3): Online resizing not supported with bigalloc [ 323.443958][ T5860] usb 3-1: config 0 descriptor?? [ 323.728952][ T5795] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 323.930737][ T5860] kye 0003:0458:0087.0003: item fetching failed at offset 5/7 [ 324.025599][ T5860] kye 0003:0458:0087.0003: parse failed [ 324.031877][ T5860] kye 0003:0458:0087.0003: probe with driver kye failed with error -22 [ 324.147406][ T5860] usb 3-1: USB disconnect, device number 4 [ 324.937453][ T6577] loop4: detected capacity change from 0 to 1024 [ 325.172439][ T6577] hfsplus: bad catalog entry type [ 325.357281][ T6583] netlink: 76 bytes leftover after parsing attributes in process `syz.2.271'. [ 325.538934][ T6585] binder: 6584:6585 ioctl 9362 0 returned -22 [ 325.581754][ T6585] binder: 6584:6585 ioctl c0046209 200000000000000 returned -22 [ 325.626354][ T1037] hfsplus: b-tree write err: -5, ino 4 [ 325.760121][ T30] audit: type=1326 audit(1750822620.972:22): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6587 comm="syz.3.274" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa39c98e929 code=0x7ffc0000 [ 325.784054][ T30] audit: type=1326 audit(1750822620.992:23): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6587 comm="syz.3.274" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fa39c98e929 code=0x7ffc0000 [ 325.807728][ T30] audit: type=1326 audit(1750822620.992:24): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6587 comm="syz.3.274" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa39c98e929 code=0x7ffc0000 [ 325.831102][ T30] audit: type=1326 audit(1750822621.022:25): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6587 comm="syz.3.274" exe="/root/syz-executor" sig=0 arch=c000003e syscall=199 compat=0 ip=0x7fa39c98e929 code=0x7ffc0000 [ 325.834477][ T6588] loop0: detected capacity change from 0 to 512 [ 325.863032][ T30] audit: type=1326 audit(1750822621.022:26): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6587 comm="syz.3.274" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa39c98e929 code=0x7ffc0000 [ 326.001168][ T6588] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 326.106191][ T6588] EXT4-fs (loop0): 1 truncate cleaned up [ 326.114712][ T6588] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 326.318866][ T6593] netlink: 8 bytes leftover after parsing attributes in process `syz.4.275'. [ 326.640982][ T5794] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 326.810947][ T6599] netlink: 16 bytes leftover after parsing attributes in process `syz.3.278'. [ 326.850701][ T6602] loop2: detected capacity change from 0 to 8 [ 326.918986][ T6603] loop1: detected capacity change from 0 to 256 [ 326.946643][ T6602] SQUASHFS error: lzo decompression failed, data probably corrupt [ 326.955219][ T6602] SQUASHFS error: Failed to read block 0x91: -5 [ 326.961674][ T6602] SQUASHFS error: Unable to read metadata cache entry [8f] [ 326.978718][ T6602] SQUASHFS error: Unable to read inode 0x11f [ 327.009815][ T6603] exfat: Deprecated parameter 'utf8' [ 327.015754][ T6603] exfat: Deprecated parameter 'utf8' [ 327.021432][ T6603] exfat: Deprecated parameter 'utf8' [ 327.127368][ T6607] loop0: detected capacity change from 0 to 64 [ 327.152060][ T6603] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x18acca35, utbl_chksum : 0xe619d30d) [ 327.669273][ T6610] netlink: 76 bytes leftover after parsing attributes in process `syz.3.283'. [ 327.798031][ T6611] loop4: detected capacity change from 0 to 1024 [ 327.816499][ T6613] overlayfs: missing 'lowerdir' [ 328.030757][ T6611] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 328.309919][ T6623] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 328.513605][ T5807] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 328.564480][ T6624] loop3: detected capacity change from 0 to 2048 [ 328.679570][ T6624] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 331.089892][ T6652] loop0: detected capacity change from 0 to 16 [ 331.151739][ T6654] loop1: detected capacity change from 0 to 64 [ 331.524055][ T30] audit: type=1800 audit(1750822626.722:27): pid=6654 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.304" name="file2" dev="loop1" ino=6 res=0 errno=0 [ 332.197451][ T30] audit: type=1326 audit(1750822627.412:28): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6671 comm="syz.4.310" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8456f8e929 code=0x7ffc0000 [ 332.220403][ T30] audit: type=1326 audit(1750822627.412:29): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6671 comm="syz.4.310" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8456f8e929 code=0x7ffc0000 [ 332.402260][ T30] audit: type=1326 audit(1750822627.492:30): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6671 comm="syz.4.310" exe="/root/syz-executor" sig=0 arch=c000003e syscall=64 compat=0 ip=0x7f8456f8e929 code=0x7ffc0000 [ 332.425337][ T30] audit: type=1326 audit(1750822627.492:31): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6671 comm="syz.4.310" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8456f8e929 code=0x7ffc0000 [ 332.451294][ T30] audit: type=1326 audit(1750822627.492:32): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6671 comm="syz.4.310" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8456f8e929 code=0x7ffc0000 [ 332.474086][ T30] audit: type=1326 audit(1750822627.522:33): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6671 comm="syz.4.310" exe="/root/syz-executor" sig=0 arch=c000003e syscall=65 compat=0 ip=0x7f8456f8e929 code=0x7ffc0000 [ 332.505010][ T30] audit: type=1326 audit(1750822627.522:34): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6671 comm="syz.4.310" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8456f8e929 code=0x7ffc0000 [ 332.530628][ T30] audit: type=1326 audit(1750822627.522:35): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6671 comm="syz.4.310" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8456f8e929 code=0x7ffc0000 [ 334.356078][ T30] audit: type=1326 audit(1750822629.582:36): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6703 comm="syz.2.326" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8c04f8e929 code=0x7ffc0000 [ 334.378423][ C0] vkms_vblank_simulate: vblank timer overrun [ 335.781779][ T6726] loop0: detected capacity change from 0 to 512 [ 335.994492][ T6726] EXT4-fs error (device loop0): ext4_orphan_get:1393: inode #15: comm syz.0.336: casefold flag without casefold feature [ 336.033990][ T6732] loop1: detected capacity change from 0 to 256 [ 336.104653][ T6726] EXT4-fs error (device loop0): ext4_orphan_get:1398: comm syz.0.336: couldn't read orphan inode 15 (err -117) [ 336.176065][ T6726] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 336.661371][ T6738] netlink: 8 bytes leftover after parsing attributes in process `syz.4.341'. [ 336.670623][ T6738] nbd: socks must be embedded in a SOCK_ITEM attr [ 336.695185][ T5794] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 337.542458][ T6748] loop4: detected capacity change from 0 to 1764 [ 337.755577][ T30] kauditd_printk_skb: 2 callbacks suppressed [ 337.755652][ T30] audit: type=1800 audit(1750822632.982:39): pid=6756 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.350" name="SYSV00000000" dev="hugetlbfs" ino=0 res=0 errno=0 [ 338.267758][ T6760] capability: warning: `syz.2.353' uses deprecated v2 capabilities in a way that may be insecure [ 338.375822][ T6765] hsr0 speed is unknown, defaulting to 1000 [ 338.382352][ T6765] hsr0 speed is unknown, defaulting to 1000 [ 338.428494][ T6765] hsr0 speed is unknown, defaulting to 1000 [ 338.507428][ T6765] iwpm_register_pid: Unable to send a nlmsg (client = 2) [ 338.563209][ T6765] infiniband syz1: RDMA CMA: cma_listen_on_dev, error -98 [ 338.709620][ T6765] hsr0 speed is unknown, defaulting to 1000 [ 338.773842][ T6765] hsr0 speed is unknown, defaulting to 1000 [ 338.782994][ T6765] hsr0 speed is unknown, defaulting to 1000 [ 338.792236][ T6765] hsr0 speed is unknown, defaulting to 1000 [ 338.801346][ T6765] hsr0 speed is unknown, defaulting to 1000 [ 338.992101][ T6763] loop0: detected capacity change from 0 to 4096 [ 339.143921][ T6763] NILFS (loop0): invalid segment: Checksum error in segment payload [ 339.152225][ T6763] NILFS (loop0): trying rollback from an earlier position [ 339.472416][ T6763] NILFS (loop0): recovery complete [ 340.167734][ T6781] netlink: 32 bytes leftover after parsing attributes in process `syz.2.362'. [ 340.187373][ T6781] IPVS: Unknown mcast interface: wg0 [ 341.114060][ T30] audit: type=1326 audit(1750822636.342:40): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6792 comm="syz.2.368" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8c04f8e929 code=0x7ffc0000 [ 341.264005][ T30] audit: type=1326 audit(1750822636.392:41): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6792 comm="syz.2.368" exe="/root/syz-executor" sig=0 arch=c000003e syscall=317 compat=0 ip=0x7f8c04f8e929 code=0x7ffc0000 [ 341.286974][ T30] audit: type=1326 audit(1750822636.412:42): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6792 comm="syz.2.368" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8c04f8e929 code=0x7ffc0000 [ 341.309811][ T30] audit: type=1326 audit(1750822636.432:43): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6792 comm="syz.2.368" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8c04f8e929 code=0x7ffc0000 [ 342.897654][ T6819] tipc: Started in network mode [ 342.903014][ T6819] tipc: Node identity fe80000000000000000000000000001, cluster identity 4711 [ 342.918578][ T6819] tipc: Enabled bearer , priority 10 [ 343.699433][ T6833] loop3: detected capacity change from 0 to 64 [ 344.033852][ T5860] tipc: Node number set to 4269801488 [ 344.627934][ T6844] netlink: 'syz.2.392': attribute type 2 has an invalid length. [ 345.325798][ T6855] netlink: 248 bytes leftover after parsing attributes in process `syz.2.395'. [ 345.566235][ T6860] loop4: detected capacity change from 0 to 1024 [ 345.806695][ T6860] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 346.426660][ T5807] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 346.501343][ T5150] udevd[5150]: worker [6024] terminated by signal 33 (Unknown signal 33) [ 346.564130][ T5150] udevd[5150]: worker [6024] failed while handling '/devices/virtual/block/loop4' [ 346.826329][ T6879] loop4: detected capacity change from 0 to 128 [ 346.876293][ T6879] UDF-fs: error (device loop4): udf_read_tagged: read failed, block=256, location=256 [ 347.078044][ T6878] loop0: detected capacity change from 0 to 2048 [ 347.230601][ T6879] UDF-fs: error (device loop4): udf_bitmap_new_block: bitmap for partition 0 corrupted (block 264 marked as free, partition length is 40) [ 347.706983][ T6886] netlink: 'syz.3.409': attribute type 1 has an invalid length. [ 347.715573][ T6886] netlink: 'syz.3.409': attribute type 1 has an invalid length. [ 347.728316][ T6886] netlink: 'syz.3.409': attribute type 1 has an invalid length. [ 347.739167][ T6886] netlink: 'syz.3.409': attribute type 1 has an invalid length. [ 347.747193][ T6886] nbd: illegal input index 65544 [ 347.925619][ T5856] usb 3-1: new high-speed USB device number 5 using dummy_hcd [ 347.956948][ T6890] veth1_macvtap: left promiscuous mode [ 347.962716][ T6890] macsec0: entered allmulticast mode [ 348.125061][ T6890] veth1_macvtap: entered promiscuous mode [ 348.131207][ T6890] veth1_macvtap: entered allmulticast mode [ 348.137605][ T6890] macsec0: left allmulticast mode [ 348.142890][ T6890] veth1_macvtap: left allmulticast mode [ 348.158451][ T5856] usb 3-1: Using ep0 maxpacket: 8 [ 348.246023][ T5856] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 348.257921][ T5856] usb 3-1: New USB device found, idVendor=046d, idProduct=0892, bcdDevice=6d.2a [ 348.275949][ T5856] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 348.477668][ T5856] usb 3-1: config 0 descriptor?? [ 348.544414][ T5856] gspca_main: vc032x-2.14.0 probing 046d:0892 [ 348.817882][ T6896] loop3: detected capacity change from 0 to 1024 [ 348.953748][ T30] audit: type=1326 audit(1750822644.182:44): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6897 comm="syz.0.415" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f2c2078e929 code=0x0 [ 349.146122][ T5856] gspca_vc032x: reg_r err -71 [ 349.151372][ T5856] vc032x 3-1:0.0: probe with driver vc032x failed with error -71 [ 349.226649][ T5856] usb 3-1: USB disconnect, device number 5 [ 349.571778][ T3993] hfsplus: b-tree write err: -5, ino 4 [ 350.234139][ T1611] usb 4-1: new high-speed USB device number 3 using dummy_hcd [ 350.454069][ T1611] usb 4-1: New USB device found, idVendor=0813, idProduct=0001, bcdDevice=3a.08 [ 350.463567][ T1611] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 350.514221][ T1611] usb 4-1: config 0 descriptor?? [ 350.550584][ T1611] gspca_main: cpia1-2.14.0 probing 0813:0001 [ 350.763935][ T9] usb 2-1: new high-speed USB device number 2 using dummy_hcd [ 351.018036][ T1611] gspca_cpia1: usb_control_msg 03, error -32 [ 351.025210][ T9] usb 2-1: Using ep0 maxpacket: 16 [ 351.055937][ T1611] gspca_cpia1: usb_control_msg 03, error -71 [ 351.074411][ T9] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 351.085791][ T9] usb 2-1: New USB device found, idVendor=0c70, idProduct=f00e, bcdDevice= 0.00 [ 351.095288][ T9] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 351.113929][ T1611] gspca_cpia1: usb_control_msg 01, error -71 [ 351.120439][ T1611] cpia1 4-1:0.0: only firmware version 1 is supported (got: 0) [ 351.162330][ T1611] usb 4-1: USB disconnect, device number 3 [ 351.228652][ T9] usb 2-1: config 0 descriptor?? [ 351.737368][ T9] aquacomputer_d5next 0003:0C70:F00E.0004: unbalanced delimiter at end of report description [ 351.784231][ T9] aquacomputer_d5next 0003:0C70:F00E.0004: probe with driver aquacomputer_d5next failed with error -22 [ 351.918406][ T9] usb 2-1: USB disconnect, device number 2 [ 352.153203][ T6932] loop3: detected capacity change from 0 to 256 [ 352.276908][ T6932] FAT-fs (loop3): Directory bread(block 1285) failed [ 352.392557][ T6932] FAT-fs (loop3): FAT read failed (blocknr 1281) [ 352.440184][ T1284] ieee802154 phy0 wpan0: encryption failed: -22 [ 352.447193][ T1284] ieee802154 phy1 wpan1: encryption failed: -22 [ 352.637450][ T6936] loop2: detected capacity change from 0 to 1024 [ 353.109437][ T6939] capability: warning: `syz.0.435' uses 32-bit capabilities (legacy support in use) [ 353.162180][ T4073] hfsplus: b-tree write err: -5, ino 4 [ 353.256401][ T6940] loop3: detected capacity change from 0 to 1024 [ 353.903167][ T6950] netlink: 'syz.4.440': attribute type 2 has an invalid length. [ 354.425520][ T6955] loop3: detected capacity change from 0 to 512 [ 354.486543][ T6955] EXT4-fs: Ignoring removed orlov option [ 354.581898][ T6955] EXT4-fs (loop3): mounting ext3 file system using the ext4 subsystem [ 354.669389][ T6957] sch_tbf: burst 0 is lower than device veth1 mtu (1514) ! [ 354.732786][ T6955] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8042c119, mo2=0002] [ 354.805070][ T6955] EXT4-fs error (device loop3): ext4_iget_extra_inode:5035: inode #15: comm syz.3.442: corrupted in-inode xattr: e_value size too large [ 354.913828][ T6955] EXT4-fs error (device loop3): ext4_orphan_get:1398: comm syz.3.442: couldn't read orphan inode 15 (err -117) [ 354.976682][ T6955] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 355.559805][ T5795] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 355.999063][ T6982] loop1: detected capacity change from 0 to 512 [ 356.138841][ T6982] EXT4-fs error (device loop1): ext4_iget_extra_inode:5035: inode #15: comm syz.1.453: corrupted in-inode xattr: invalid ea_ino [ 356.294803][ T6982] EXT4-fs error (device loop1): ext4_orphan_get:1398: comm syz.1.453: couldn't read orphan inode 15 (err -117) [ 356.386290][ T6982] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 356.872089][ T5797] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 357.202927][ T30] audit: type=1326 audit(1750822652.432:45): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6995 comm="syz.3.461" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa39c98e929 code=0x7ffc0000 [ 357.328584][ T30] audit: type=1326 audit(1750822652.492:46): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6995 comm="syz.3.461" exe="/root/syz-executor" sig=0 arch=c000003e syscall=2 compat=0 ip=0x7fa39c98e929 code=0x7ffc0000 [ 357.355020][ T30] audit: type=1326 audit(1750822652.492:47): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6995 comm="syz.3.461" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa39c98e929 code=0x7ffc0000 [ 357.377926][ T30] audit: type=1326 audit(1750822652.502:48): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6995 comm="syz.3.461" exe="/root/syz-executor" sig=0 arch=c000003e syscall=76 compat=0 ip=0x7fa39c98e929 code=0x7ffc0000 [ 357.400560][ T30] audit: type=1326 audit(1750822652.502:49): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6995 comm="syz.3.461" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa39c98e929 code=0x7ffc0000 [ 357.697405][ T7002] netlink: 4 bytes leftover after parsing attributes in process `syz.2.463'. [ 358.258931][ T6999] loop1: detected capacity change from 0 to 32768 [ 358.325594][ T6999] bcachefs (/dev/loop1): error validating superblock: Invalid superblock section crypt: wrong size (got 40 should be 64) [ 358.325594][ T6999] crypt (size 40): [ 358.325594][ T6999] KFD: 9 [ 358.325594][ T6999] scrypt n: 7 [ 358.325594][ T6999] scrypt r: 0 [ 358.325594][ T6999] scrypt p: 0 [ 358.325594][ T6999] [ 358.360600][ T6999] bcachefs: bch2_fs_get_tree() error: invalid_sb_crypt [ 359.439030][ T7017] loop1: detected capacity change from 0 to 256 [ 359.476334][ T7017] exfat: Deprecated parameter 'utf8' [ 359.482137][ T7017] exfat: Deprecated parameter 'namecase' [ 359.489000][ T7017] exfat: Deprecated parameter 'namecase' [ 359.495125][ T7017] exfat: Deprecated parameter 'utf8' [ 359.666779][ T7017] exFAT-fs (loop1): failed to load upcase table (idx : 0x00012153, chksum : 0xc9bffc20, utbl_chksum : 0xe619d30d) [ 360.687379][ T7036] loop2: detected capacity change from 0 to 512 [ 360.877587][ T7036] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 360.908853][ T9] usb 4-1: new high-speed USB device number 4 using dummy_hcd [ 361.195522][ T9] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 361.207020][ T9] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 361.220956][ T9] usb 4-1: New USB device found, idVendor=1223, idProduct=3f07, bcdDevice= 0.00 [ 361.230424][ T9] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 361.330033][ T5798] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 361.342241][ T9] usb 4-1: config 0 descriptor?? [ 361.925647][ T9] ortek 0003:1223:3F07.0005: bogus close delimiter [ 361.932534][ T9] ortek 0003:1223:3F07.0005: item 0 0 2 10 parsing failed [ 362.021630][ T9] ortek 0003:1223:3F07.0005: probe with driver ortek failed with error -22 [ 362.151802][ T9] usb 4-1: USB disconnect, device number 4 [ 363.269278][ T7057] loop1: detected capacity change from 0 to 32768 [ 363.363306][ T7057] XFS (loop1): Mounting V5 Filesystem 9f1cad42-11bd-4e12-8f0b-f07876b81d9a [ 363.568631][ T7057] XFS (loop1): Ending clean mount [ 363.577898][ T7057] XFS (loop1): Metadata CRC error detected at xfs_inobt_read_verify+0xaf/0x2d0, xfs_finobt block 0x20 [ 363.589629][ T7057] XFS (loop1): Unmount and run xfs_repair [ 363.595678][ T7057] XFS (loop1): First 128 bytes of corrupted metadata buffer: [ 363.603307][ T7057] 00000000: 46 49 42 33 00 00 00 01 ff ff ff ff ff ff ff ff FIB3............ [ 363.612581][ T7057] 00000010: 00 00 00 00 00 00 00 20 00 00 00 01 00 00 00 40 ....... .......@ [ 363.633859][ T7057] 00000020: 9f 1c ad 42 11 bd 4e 12 8f 0b f0 78 76 b8 1d 9a ...B..N....xv... [ 363.642989][ T7057] 00000030: 00 00 00 00 8a d2 18 46 00 00 16 80 00 00 40 37 .......F......@7 [ 363.655883][ T7057] 00000040: ff ff ff ff ff ff fe 00 00 00 00 00 00 00 00 00 ................ [ 363.665231][ T7057] 00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 09 00 00 ................ [ 363.674430][ T7057] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ [ 363.683717][ T7057] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ [ 363.692822][ T7057] XFS (loop1): metadata I/O error in "xfs_btree_read_buf_block+0x33d/0x5f0" at daddr 0x20 len 8 error 74 [ 363.705214][ T7057] XFS (loop1): Failed to initialize disk quotas, err -117. [ 363.825701][ T5797] XFS (loop1): Unmounting Filesystem 9f1cad42-11bd-4e12-8f0b-f07876b81d9a [ 363.875501][ T5797] XFS (loop1): Uncorrected metadata errors detected; please run xfs_repair. [ 364.454527][ T7084] netlink: 'syz.3.496': attribute type 298 has an invalid length. [ 364.520189][ T7085] loop0: detected capacity change from 0 to 512 [ 364.569018][ T7085] EXT4-fs: Ignoring removed bh option [ 364.634094][ T7085] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 364.845384][ T7085] EXT4-fs (loop0): 1 truncate cleaned up [ 364.866611][ T7085] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 365.018204][ T7092] netlink: 1268 bytes leftover after parsing attributes in process `syz.2.499'. [ 365.028122][ T7092] openvswitch: netlink: Missing key (keys=40, expected=2000) [ 365.386984][ T5794] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 366.367327][ T7096] loop1: detected capacity change from 0 to 40427 [ 366.378468][ T7096] F2FS-fs (loop1): Invalid Fs Meta Ino: node(1) meta(83886082) root(3) [ 366.387223][ T7096] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock [ 366.405397][ T7096] F2FS-fs (loop1): invalid crc value [ 366.434467][ T7096] F2FS-fs (loop1): Mismatch valid blocks 4 vs. 7 [ 366.536763][ T7096] F2FS-fs (loop1): Failed to initialize F2FS segment manager (-117) [ 367.082868][ T7112] loop3: detected capacity change from 0 to 1024 [ 367.927186][ T7121] netlink: 8 bytes leftover after parsing attributes in process `syz.1.511'. [ 368.455594][ T7129] netlink: 28 bytes leftover after parsing attributes in process `syz.3.513'. [ 368.995645][ T7124] loop4: detected capacity change from 0 to 32768 [ 369.012706][ T7124] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop4 (7:4) scanned by syz.4.514 (7124) [ 369.071252][ T7124] BTRFS info (device loop4): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 369.081892][ T7124] BTRFS info (device loop4): using sha256 (sha256-x86_64) checksum algorithm [ 369.093329][ T7124] BTRFS info (device loop4): using free-space-tree [ 369.460244][ T4036] BTRFS warning (device loop4): checksum verify failed on logical 5328896 mirror 1 wanted 0xac8366d3d2e6f7dc04e332773638acafeccdac9b39be662d19e98924efedf548 found 0x97a345a4114fd264ef09fd616f63c71557ba1d190134b601a7c268fcef8f2880 level 0 [ 369.485527][ T7124] BTRFS warning (device loop4): failed to read root (objectid=4): -5 [ 369.681335][ T7124] BTRFS error (device loop4): open_ctree failed: -5 [ 369.807253][ T7150] loop3: detected capacity change from 0 to 256 [ 369.870630][ T5090] Bluetooth: hci0: command 0x0406 tx timeout [ 369.877283][ T5796] Bluetooth: hci3: command 0x0406 tx timeout [ 369.883668][ T5803] Bluetooth: hci1: command 0x0406 tx timeout [ 369.883780][ T5803] Bluetooth: hci2: command 0x0406 tx timeout [ 369.898823][ T7150] FAT-fs (loop3): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 370.154331][ T1611] usb 3-1: new high-speed USB device number 6 using dummy_hcd [ 370.364400][ T1611] usb 3-1: Using ep0 maxpacket: 16 [ 370.399974][ T1611] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 370.411613][ T1611] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 370.424060][ T1611] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 370.437382][ T1611] usb 3-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00 [ 370.446834][ T1611] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 370.526835][ T1611] usb 3-1: config 0 descriptor?? [ 371.023357][ T1611] microsoft 0003:045E:07DA.0006: item 0 4 0 9 parsing failed [ 371.062415][ T1611] microsoft 0003:045E:07DA.0006: parse failed [ 371.069401][ T1611] microsoft 0003:045E:07DA.0006: probe with driver microsoft failed with error -22 [ 371.190636][ T7161] loop1: detected capacity change from 0 to 64 [ 371.251637][ T1611] usb 3-1: USB disconnect, device number 6 [ 372.221899][ T7173] loop1: detected capacity change from 0 to 164 [ 373.154644][ T7175] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 373.160956][ T7175] Bluetooth: hci0: Error when powering off device on rfkill (-4) [ 373.243845][ T7177] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 373.250592][ T7185] loop1: detected capacity change from 0 to 256 [ 373.270834][ T7177] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 373.374464][ T7177] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 373.381041][ T7177] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 373.385239][ T7175] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 373.393681][ T7175] Bluetooth: hci1: Error when powering off device on rfkill (-4) [ 373.488396][ T7185] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x36e00b20, utbl_chksum : 0xe619d30d) [ 373.567757][ T7177] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 373.575154][ T7177] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 373.594780][ T7175] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 373.601272][ T7175] Bluetooth: hci2: Error when powering off device on rfkill (-4) [ 373.700852][ T7177] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 373.707674][ T7177] Bluetooth: hci4: Opcode 0x0406 failed: -4 [ 373.804295][ T7175] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 373.810699][ T7175] Bluetooth: hci3: Error when powering off device on rfkill (-4) [ 373.877541][ T7177] Bluetooth: hci4: Opcode 0x0406 failed: -4 [ 373.949613][ T7175] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 373.956481][ T7175] Bluetooth: hci4: Error when powering off device on rfkill (-4) [ 375.292485][ T7198] loop1: detected capacity change from 0 to 40427 [ 375.332801][ T7198] F2FS-fs (loop1): Image doesn't support compression [ 375.355622][ T7198] F2FS-fs (loop1): invalid crc value [ 375.724813][ T7198] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5 [ 375.746044][ T7189] could not allocate digest TFM handle cryptd(blake2b-160) [ 376.264400][ T7211] loop0: detected capacity change from 0 to 1024 [ 379.574142][ T5856] usb 4-1: new high-speed USB device number 5 using dummy_hcd [ 379.793757][ T5856] usb 4-1: Using ep0 maxpacket: 32 [ 379.883128][ T5856] usb 4-1: config 4 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 379.894978][ T5856] usb 4-1: config 4 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 380.269561][ T5856] usb 4-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40 [ 380.279224][ T5856] usb 4-1: New USB device strings: Mfr=255, Product=255, SerialNumber=0 [ 380.288208][ T5856] usb 4-1: Product: syz [ 380.292624][ T5856] usb 4-1: Manufacturer: syz [ 380.394005][ T7260] loop2: detected capacity change from 0 to 32768 [ 380.498927][ T5856] hub 4-1:4.0: USB hub found [ 380.501802][ T7260] bcachefs (da441363-bb6a-4ab9-999b-c1f40db4fee2): starting version 1.7: mi_btree_bitmap opts=errors=continue,metadata_checksum=none,data_checksum=none,compression=lz4,metadata_target=invalid device 255,noinodes_use_key_cache,journal_flush_delay=2013266920,journal_reclaim_delay=10,nojournal_transaction_names [ 380.533335][ T7260] allowing incompatible features above 0.0: (unknown version) [ 380.541300][ T7260] features: lz4 [ 380.545243][ T7260] with devices loop2 [ 380.550595][ T7260] bcachefs (da441363-bb6a-4ab9-999b-c1f40db4fee2): Using encoding defined by superblock: utf8-12.1.0 [ 380.563327][ T7260] bcachefs (da441363-bb6a-4ab9-999b-c1f40db4fee2): initializing new filesystem [ 380.590931][ T7260] bcachefs (da441363-bb6a-4ab9-999b-c1f40db4fee2): going read-write [ 380.796076][ T7260] bcachefs (da441363-bb6a-4ab9-999b-c1f40db4fee2): marking superblocks [ 380.853613][ T7260] bcachefs (da441363-bb6a-4ab9-999b-c1f40db4fee2): initializing freespace [ 380.854150][ T5856] hub 4-1:4.0: 13 ports detected [ 380.886168][ T7260] bcachefs (da441363-bb6a-4ab9-999b-c1f40db4fee2): done initializing freespace [ 380.921301][ T7260] bcachefs (da441363-bb6a-4ab9-999b-c1f40db4fee2): reading snapshots table [ 380.932659][ T7260] bcachefs (da441363-bb6a-4ab9-999b-c1f40db4fee2): reading snapshots done [ 381.013818][ T7260] bcachefs (da441363-bb6a-4ab9-999b-c1f40db4fee2): done starting filesystem [ 381.054109][ T5856] hub 4-1:4.0: insufficient power available to use all downstream ports [ 381.110993][ T7262] loop1: detected capacity change from 0 to 4096 [ 381.192622][ T7262] ntfs3(loop1): Different NTFS sector size (2048) and media sector size (512). [ 381.291285][ T5856] hub 4-1:4.0: set hub depth failed [ 381.389771][ T5856] usb 4-1: USB disconnect, device number 5 [ 381.404178][ T7260] syz.2.566 (7260) used greatest stack depth: 1280 bytes left [ 381.559380][ T5798] bcachefs (da441363-bb6a-4ab9-999b-c1f40db4fee2): shutting down [ 381.568111][ T5798] bcachefs (da441363-bb6a-4ab9-999b-c1f40db4fee2): going read-only [ 381.583285][ T5798] bcachefs (da441363-bb6a-4ab9-999b-c1f40db4fee2): finished waiting for writes to stop [ 381.690055][ T5798] bcachefs (da441363-bb6a-4ab9-999b-c1f40db4fee2): flushing journal and stopping allocators, journal seq 3 [ 381.812951][ T7280] loop0: detected capacity change from 0 to 2048 [ 381.945810][ T5798] bcachefs (da441363-bb6a-4ab9-999b-c1f40db4fee2): flushing journal and stopping allocators complete, journal seq 3 [ 382.024996][ T7262] ntfs3(loop1): Failed to initialize $Extend/$ObjId. [ 382.030657][ T7280] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 382.159465][ T5794] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 382.181201][ T5798] bcachefs (da441363-bb6a-4ab9-999b-c1f40db4fee2): clean shutdown complete, journal seq 4 [ 382.233207][ T5798] bcachefs (da441363-bb6a-4ab9-999b-c1f40db4fee2): marking filesystem clean [ 382.454210][ T5798] bcachefs (da441363-bb6a-4ab9-999b-c1f40db4fee2): shutdown complete [ 382.998089][ T7293] warning: `syz.0.572' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211 [ 383.391985][ T7297] devtmpfs: Too few inodes for current use [ 383.838906][ T7302] loop1: detected capacity change from 0 to 256 [ 383.896311][ T7302] exfat: Deprecated parameter 'utf8' [ 383.902094][ T7302] exfat: Deprecated parameter 'namecase' [ 383.908736][ T7302] exfat: Deprecated parameter 'namecase' [ 383.914801][ T7302] exfat: Deprecated parameter 'utf8' [ 384.089074][ T7302] exFAT-fs (loop1): failed to load upcase table (idx : 0x00012153, chksum : 0xc3dffc2e, utbl_chksum : 0xe619d30d) [ 385.090837][ T7307] loop0: detected capacity change from 0 to 32768 [ 385.180563][ T7307] bcachefs (da441363-bb6a-4ab9-999b-c1f40db4fee2): starting version 1.7: mi_btree_bitmap opts=errors=continue,metadata_checksum=none,data_checksum=none,compression=lz4,metadata_target=invalid device 255,noinodes_use_key_cache,journal_flush_delay=2013266920,journal_reclaim_delay=10,nojournal_transaction_names [ 385.180739][ T7307] allowing incompatible features above 0.0: (unknown version) [ 385.180814][ T7307] features: lz4 [ 385.180874][ T7307] with devices loop0 [ 385.226915][ T7307] bcachefs (da441363-bb6a-4ab9-999b-c1f40db4fee2): Using encoding defined by superblock: utf8-12.1.0 [ 385.238206][ T7307] bcachefs (da441363-bb6a-4ab9-999b-c1f40db4fee2): initializing new filesystem [ 385.264204][ T7307] bcachefs (da441363-bb6a-4ab9-999b-c1f40db4fee2): going read-write [ 385.517801][ T7307] bcachefs (da441363-bb6a-4ab9-999b-c1f40db4fee2): marking superblocks [ 385.579857][ T7307] bcachefs (da441363-bb6a-4ab9-999b-c1f40db4fee2): initializing freespace [ 385.614594][ T7307] bcachefs (da441363-bb6a-4ab9-999b-c1f40db4fee2): done initializing freespace [ 385.648378][ T7307] bcachefs (da441363-bb6a-4ab9-999b-c1f40db4fee2): reading snapshots table [ 385.657605][ T7307] bcachefs (da441363-bb6a-4ab9-999b-c1f40db4fee2): reading snapshots done [ 385.855391][ T7307] bcachefs (da441363-bb6a-4ab9-999b-c1f40db4fee2): done starting filesystem [ 386.214634][ T5794] bcachefs (da441363-bb6a-4ab9-999b-c1f40db4fee2): shutting down [ 386.222631][ T5794] bcachefs (da441363-bb6a-4ab9-999b-c1f40db4fee2): going read-only [ 386.231097][ T5794] bcachefs (da441363-bb6a-4ab9-999b-c1f40db4fee2): finished waiting for writes to stop [ 386.303840][ T5794] bcachefs (da441363-bb6a-4ab9-999b-c1f40db4fee2): flushing journal and stopping allocators, journal seq 3 [ 386.628696][ T5794] bcachefs (da441363-bb6a-4ab9-999b-c1f40db4fee2): flushing journal and stopping allocators complete, journal seq 3 [ 386.725043][ T5794] bcachefs (da441363-bb6a-4ab9-999b-c1f40db4fee2): clean shutdown complete, journal seq 4 [ 386.749552][ T5794] bcachefs (da441363-bb6a-4ab9-999b-c1f40db4fee2): marking filesystem clean [ 387.017476][ T5794] bcachefs (da441363-bb6a-4ab9-999b-c1f40db4fee2): shutdown complete [ 387.288782][ T7335] loop4: detected capacity change from 0 to 128 [ 387.336336][ T7335] ufs: You didn't specify the type of your ufs filesystem [ 387.336336][ T7335] [ 387.336336][ T7335] mount -t ufs -o ufstype=sun|sunx86|44bsd|ufs2|5xbsd|old|hp|nextstep|nextstep-cd|openstep ... [ 387.336336][ T7335] [ 387.336336][ T7335] >>>WARNING<<< Wrong ufstype may corrupt your filesystem, default is ufstype=old [ 387.522677][ T7335] ufs: ufs_fill_super(): fragment size 2066844866 is not a power of 2 [ 388.885797][ T7348] netlink: 56 bytes leftover after parsing attributes in process `syz.4.596'. [ 389.718295][ T7360] loop2: detected capacity change from 0 to 128 [ 389.873191][ T30] audit: type=1800 audit(1750822685.082:50): pid=7360 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.602" name="file2" dev="loop2" ino=1048638 res=0 errno=0 [ 389.910119][ T7360] syz.2.602: attempt to access beyond end of device [ 389.910119][ T7360] loop2: rw=0, sector=2072, nr_sectors = 1 limit=128 [ 390.204030][ T30] audit: type=1326 audit(1750822685.422:51): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7361 comm="syz.4.603" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8456f8e929 code=0x7ffc0000 [ 390.236123][ T30] audit: type=1326 audit(1750822685.472:52): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7361 comm="syz.4.603" exe="/root/syz-executor" sig=0 arch=c000003e syscall=35 compat=0 ip=0x7f8456f8e929 code=0x7ffc0000 [ 390.312134][ T30] audit: type=1326 audit(1750822685.542:53): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7361 comm="syz.4.603" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8456f8e929 code=0x7ffc0000 [ 390.336030][ T30] audit: type=1326 audit(1750822685.542:54): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7361 comm="syz.4.603" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8456f8e929 code=0x7ffc0000 [ 390.705234][ T7369] ieee802154 phy0 wpan0: encryption failed: -22 [ 391.042092][ T7372] loop4: detected capacity change from 0 to 512 [ 391.123008][ T7372] EXT4-fs (loop4): mounting ext3 file system using the ext4 subsystem [ 391.154729][ T7372] EXT4-fs (loop4): invalid journal inode [ 391.160784][ T7372] EXT4-fs (loop4): can't get journal size [ 391.243006][ T7372] EXT4-fs (loop4): 1 truncate cleaned up [ 391.251437][ T7372] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 391.903136][ T5807] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 392.699825][ T7386] loop1: detected capacity change from 0 to 4096 [ 392.989777][ T7386] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 393.686175][ T5797] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 393.790699][ T7404] loop0: detected capacity change from 0 to 2048 [ 393.867950][ T7404] EXT4-fs: Ignoring removed bh option [ 394.003794][ T7404] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 394.173242][ T30] audit: type=1800 audit(1750822689.402:55): pid=7404 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.619" name="file1" dev="loop0" ino=15 res=0 errno=0 [ 394.953625][ T7423] loop1: detected capacity change from 0 to 1024 [ 394.986946][ T7423] EXT4-fs: Ignoring removed mblk_io_submit option [ 394.994253][ T7423] EXT4-fs: Ignoring removed nobh option [ 395.000066][ T7423] EXT4-fs: Ignoring removed bh option [ 395.324816][ T7419] loop4: detected capacity change from 0 to 32768 [ 395.446764][ T7432] loop3: detected capacity change from 0 to 512 [ 395.464138][ T7432] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 395.472283][ T5794] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 395.539936][ T7419] OCFS2: ERROR (device loop4): int ocfs2_get_clusters_nocache(struct inode *, struct buffer_head *, u32, unsigned int *, struct ocfs2_extent_rec *, unsigned int *): Inode 4107 has an invalid extent (next_free_rec 63, count 19) [ 395.540108][ T7419] On-disk corruption discovered. Please run fsck.ocfs2 once the filesystem is unmounted. [ 395.540172][ T7419] OCFS2: File system is now read-only. [ 395.540234][ T7419] (syz.4.625,7419,1):ocfs2_get_clusters:634 ERROR: status = -30 [ 395.540368][ T7419] (syz.4.625,7419,1):ocfs2_extent_map_get_blocks:681 ERROR: status = -30 [ 395.540512][ T7419] (syz.4.625,7419,1):ocfs2_bmap:469 ERROR: get_blocks() failed, block = 0 [ 395.540649][ T7419] (syz.4.625,7419,1):ocfs2_bmap:470 ERROR: status = -30 [ 395.540773][ T7419] jbd2_journal_init_inode: Cannot locate journal superblock [ 395.540842][ T7419] (syz.4.625,7419,1):ocfs2_journal_init:973 ERROR: Linux journal layer error [ 395.540975][ T7419] (syz.4.625,7419,1):ocfs2_check_volume:2347 ERROR: Could not initialize journal! [ 395.541107][ T7419] (syz.4.625,7419,1):ocfs2_check_volume:2432 ERROR: status = -22 [ 395.541239][ T7419] (syz.4.625,7419,1):ocfs2_mount_volume:1764 ERROR: status = -22 [ 395.541582][ T7432] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a002c119, mo2=0002] [ 395.542087][ T7432] System zones: 1-12 [ 395.546933][ T7432] EXT4-fs (loop3): 1 truncate cleaned up [ 395.566694][ T7432] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 395.569479][ T7423] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 395.602585][ T7419] (syz.4.625,7419,1):ocfs2_fill_super:1177 ERROR: status = -22 [ 395.651551][ T7432] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.632: bg 0: block 408: padding at end of block bitmap is not set [ 396.053179][ T5797] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 396.130262][ T5795] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 396.809818][ T7438] loop3: detected capacity change from 0 to 2048 [ 396.926774][ T7445] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 397.367548][ T7448] loop0: detected capacity change from 0 to 512 [ 398.104954][ T7459] loop1: detected capacity change from 0 to 256 [ 398.378746][ T7448] EXT4-fs: Ignoring removed nomblk_io_submit option [ 398.453840][ T7448] EXT4-fs (loop0): Test dummy encryption mode enabled [ 398.676516][ T7448] EXT4-fs (loop0): 1 truncate cleaned up [ 398.685881][ T7448] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 399.448661][ T7475] netlink: 12 bytes leftover after parsing attributes in process `syz.3.647'. [ 399.458474][ T7475] tc_dump_action: action bad kind [ 399.514730][ T5794] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 400.958407][ T7495] netlink: 8 bytes leftover after parsing attributes in process `syz.3.656'. [ 400.970614][ T7493] loop4: detected capacity change from 0 to 512 [ 401.087550][ T7493] UDF-fs: warning (device loop4): udf_load_vrs: No VRS found [ 401.095548][ T7493] UDF-fs: Scanning with blocksize 512 failed [ 401.147410][ T7493] UDF-fs: warning (device loop4): udf_load_vrs: No VRS found [ 401.155380][ T7493] UDF-fs: Scanning with blocksize 1024 failed [ 401.221414][ T7493] UDF-fs: warning (device loop4): udf_load_vrs: No VRS found [ 401.229242][ T7493] UDF-fs: Scanning with blocksize 2048 failed [ 401.360727][ T7493] UDF-fs: error (device loop4): udf_read_tagged: read failed, block=256, location=256 [ 401.438619][ T7497] netlink: 8 bytes leftover after parsing attributes in process `syz.2.658'. [ 401.448677][ T7497] netlink: 8 bytes leftover after parsing attributes in process `syz.2.658'. [ 401.484587][ T7493] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 402.421581][ T7509] loop3: detected capacity change from 0 to 256 [ 402.469642][ T7509] exfat: Deprecated parameter 'utf8' [ 402.475560][ T7509] exfat: Deprecated parameter 'utf8' [ 402.481338][ T7509] exfat: Deprecated parameter 'utf8' [ 402.487837][ T7509] exfat: Bad value for 'gid' [ 402.492683][ T7509] exfat: Bad value for 'gid' [ 403.235797][ T7516] Driver unsupported XDP return value 0 on prog (id 27) dev N/A, expect packet loss! [ 404.381989][ T7533] loop3: detected capacity change from 0 to 2048 [ 404.482396][ T7533] UDF-fs: error (device loop3): udf_read_tagged: tag version 0x0000 != 0x0002 || 0x0003, block 0 [ 404.549802][ T7533] UDF-fs: warning (device loop3): udf_load_vrs: No anchor found [ 404.558021][ T7533] UDF-fs: Scanning with blocksize 512 failed [ 404.691772][ T7533] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 404.857715][ T30] audit: type=1800 audit(1750822700.082:56): pid=7533 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.674" name="file2" dev="loop3" ino=839 res=0 errno=0 [ 405.626220][ T7548] Bluetooth: MGMT ver 1.23 [ 406.218045][ T7543] loop1: detected capacity change from 0 to 32768 [ 406.293182][ T7543] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz" [ 406.302439][ T7543] gfs2: fsid=syz:syz: Now mounting FS (format 1801)... [ 406.370770][ T7543] gfs2: fsid=syz:syz.0: fatal: filesystem consistency error - inode = 1 19, function = gfs2_check_internal_file_size, file = fs/gfs2/inode.h, line = 85 [ 406.394477][ T7543] gfs2: fsid=syz:syz.0: G: s:SH n:2/13 f:aqob t:SH d:EX/0 a:0 v:0 r:2 m:20 p:1 [ 406.404281][ T7543] gfs2: fsid=syz:syz.0: H: s:SH f:eEcH e:0 p:0 [(none)] init_inodes+0x124/0x510 [ 406.413918][ T7543] gfs2: fsid=syz:syz.0: I: n:1/19 t:8 f:0x00 d:0x00000200 s:49152 p:0 [ 406.422533][ T7543] gfs2: fsid=syz:syz.0: about to withdraw this file system [ 406.430042][ T7543] gfs2: fsid=syz:syz.0: Journal recovery skipped for jid 0 until next mount. [ 406.439178][ T7543] gfs2: fsid=syz:syz.0: Glock dequeues delayed: 0 [ 406.446885][ T7543] gfs2: fsid=syz:syz.0: File system withdrawn [ 406.455626][ T7543] CPU: 0 UID: 0 PID: 7543 Comm: syz.1.678 Not tainted 6.16.0-rc3-syzkaller-00044-g7595b66ae9de #0 PREEMPT(undef) [ 406.455766][ T7543] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 406.455853][ T7543] Call Trace: [ 406.455900][ T7543] [ 406.455942][ T7543] __dump_stack+0x26/0x30 [ 406.456107][ T7543] dump_stack_lvl+0x1df/0x270 [ 406.456299][ T7543] dump_stack+0x1e/0x25 [ 406.456475][ T7543] gfs2_withdraw+0x1d26/0x22e0 [ 406.456776][ T7543] gfs2_consist_inode_i+0x1b2/0x250 [ 406.456962][ T7543] gfs2_jdesc_check+0x170/0x440 [ 406.457162][ T7543] init_journal+0x1471/0x3a30 [ 406.457358][ T7543] ? init_inodes+0x124/0x510 [ 406.457523][ T7543] ? init_inodes+0x124/0x510 [ 406.457654][ T7543] ? kmsan_get_metadata+0xfb/0x160 [ 406.457857][ T7543] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 406.458069][ T7543] init_inodes+0x124/0x510 [ 406.458221][ T7543] gfs2_fill_super+0x384a/0x3f50 [ 406.458371][ T7543] ? init_locking+0xed/0x500 [ 406.458559][ T7543] get_tree_bdev_flags+0x6e3/0x920 [ 406.458752][ T7543] ? __pfx_gfs2_fill_super+0x10/0x10 [ 406.458890][ T7543] ? __pfx_gfs2_fill_super+0x10/0x10 [ 406.459021][ T7543] ? __pfx_gfs2_get_tree+0x10/0x10 [ 406.459154][ T7543] get_tree_bdev+0x38/0x50 [ 406.459330][ T7543] gfs2_get_tree+0x57/0x350 [ 406.459487][ T7543] ? __pfx_gfs2_get_tree+0x10/0x10 [ 406.459628][ T7543] vfs_get_tree+0xb0/0x5c0 [ 406.459827][ T7543] ? mount_capable+0x99/0x100 [ 406.460002][ T7543] do_new_mount+0x738/0x1610 [ 406.460199][ T7543] ? kmsan_get_metadata+0xfb/0x160 [ 406.460394][ T7543] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 406.460622][ T7543] path_mount+0x6db/0x1e90 [ 406.460812][ T7543] ? user_path_at+0x32d/0x3d0 [ 406.460986][ T7543] __se_sys_mount+0x6eb/0x7d0 [ 406.461196][ T7543] ? kmsan_internal_unpoison_memory+0x14/0x20 [ 406.461407][ T7543] __x64_sys_mount+0xe4/0x150 [ 406.461620][ T7543] x64_sys_call+0xfa7/0x3db0 [ 406.461812][ T7543] do_syscall_64+0xd9/0x210 [ 406.461960][ T7543] ? irqentry_exit+0x16/0x60 [ 406.462088][ T7543] ? clear_bhb_loop+0x40/0x90 [ 406.462246][ T7543] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 406.462407][ T7543] RIP: 0033:0x7fae6db900ca [ 406.462519][ T7543] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 406.462635][ T7543] RSP: 002b:00007fae6ea21e68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 406.462769][ T7543] RAX: ffffffffffffffda RBX: 00007fae6ea21ef0 RCX: 00007fae6db900ca [ 406.462868][ T7543] RDX: 0000200000000400 RSI: 0000200000012500 RDI: 00007fae6ea21eb0 [ 406.462965][ T7543] RBP: 0000200000000400 R08: 00007fae6ea21ef0 R09: 0000000000200001 [ 406.463058][ T7543] R10: 0000000000200001 R11: 0000000000000246 R12: 0000200000012500 [ 406.463147][ T7543] R13: 00007fae6ea21eb0 R14: 00000000000125bb R15: 0000200000000240 [ 406.463274][ T7543] [ 406.463334][ T7543] gfs2: fsid=syz:syz.0: my journal (0) is bad: -5 [ 406.753314][ C0] vkms_vblank_simulate: vblank timer overrun [ 406.882639][ T7558] loop4: detected capacity change from 0 to 2048 [ 407.059304][ T7558] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 409.678991][ T7592] loop0: detected capacity change from 0 to 128 [ 409.967116][ T7592] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 410.094606][ T7592] ext4 filesystem being mounted at /138/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 410.566743][ T5794] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 410.795427][ T7598] loop2: detected capacity change from 0 to 4096 [ 410.934165][ T7606] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 411.148124][ T7608] netlink: 60 bytes leftover after parsing attributes in process `syz.0.704'. [ 411.915142][ T7617] sch_tbf: burst 0 is lower than device ip6gre0 mtu (1448) ! [ 413.892735][ T1284] ieee802154 phy0 wpan0: encryption failed: -22 [ 413.899566][ T1284] ieee802154 phy1 wpan1: encryption failed: -22 [ 414.034256][ T5856] usb 2-1: new full-speed USB device number 3 using dummy_hcd [ 414.241850][ T5856] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10 [ 414.254035][ T5856] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 414.264556][ T5856] usb 2-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40 [ 414.274106][ T5856] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 414.441843][ T5856] usb 2-1: config 0 descriptor?? [ 414.538610][ T5856] hub 2-1:0.0: USB hub found [ 414.704053][ T5856] hub 2-1:0.0: config failed, can't read hub descriptor (err -90) [ 414.937375][ T5856] usbhid 2-1:0.0: can't add hid device: -71 [ 414.945532][ T5856] usbhid 2-1:0.0: probe with driver usbhid failed with error -71 [ 415.005630][ T5856] usb 2-1: USB disconnect, device number 3 [ 416.658934][ T7683] x_tables: ip_tables: TPROXY target: only valid in mangle table, not syz0 [ 418.460529][ T7708] loop0: detected capacity change from 0 to 1024 [ 418.723798][ T30] audit: type=1800 audit(1750822713.922:57): pid=7712 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.751" name="SYSV00000000" dev="hugetlbfs" ino=0 res=0 errno=0 [ 418.858470][ T7708] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 419.164351][ T5794] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 419.410058][ T7724] loop2: detected capacity change from 0 to 512 [ 419.495456][ T7724] EXT4-fs: Ignoring removed nobh option [ 419.547724][ T7727] netlink: 12 bytes leftover after parsing attributes in process `syz.0.757'. [ 419.624493][ T7724] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a842c118, mo2=0002] [ 419.667067][ T7724] System zones: 0-2, 18-18, 34-34 [ 419.678576][ T7724] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 419.691839][ T7724] ext4 filesystem being mounted at /146/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 419.830377][ T7724] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 41 vs 39667 free clusters [ 420.180953][ T7734] loop0: detected capacity change from 0 to 128 [ 420.207351][ T7734] FAT-fs (loop0): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 420.269821][ T7734] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 420.399715][ T5798] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 421.081338][ T7746] openvswitch: netlink: Actions may not be safe on all matching packets [ 421.202223][ T7748] loop0: detected capacity change from 0 to 256 [ 421.283992][ T1611] usb 3-1: new high-speed USB device number 7 using dummy_hcd [ 421.483979][ T1611] usb 3-1: Using ep0 maxpacket: 32 [ 421.524441][ T7748] FAT-fs (loop0): Directory bread(block 64) failed [ 421.531350][ T7748] FAT-fs (loop0): Directory bread(block 65) failed [ 421.538596][ T7748] FAT-fs (loop0): Directory bread(block 66) failed [ 421.545486][ T7748] FAT-fs (loop0): Directory bread(block 67) failed [ 421.547691][ T1611] usb 3-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 421.552301][ T7748] FAT-fs (loop0): Directory bread(block 68) failed [ 421.565391][ T1611] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 255, changing to 11 [ 421.570862][ T7748] FAT-fs (loop0): Directory bread(block 69) failed [ 421.582245][ T1611] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024 [ 421.582447][ T1611] usb 3-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40 [ 421.582641][ T1611] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 421.630627][ T7748] FAT-fs (loop0): Directory bread(block 70) failed [ 421.637732][ T7748] FAT-fs (loop0): Directory bread(block 71) failed [ 421.644824][ T7748] FAT-fs (loop0): Directory bread(block 72) failed [ 421.651596][ T7748] FAT-fs (loop0): Directory bread(block 73) failed [ 421.773230][ T1611] usb 3-1: config 0 descriptor?? [ 421.781430][ T7745] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22 [ 421.838548][ T1611] hub 3-1:0.0: USB hub found [ 422.094564][ T1611] hub 3-1:0.0: 7 ports detected [ 422.125633][ T1611] hub 3-1:0.0: insufficient power available to use all downstream ports [ 422.301497][ T1611] hub 3-1:0.0: hub_hub_status failed (err = -71) [ 422.308332][ T1611] hub 3-1:0.0: config failed, can't get hub status (err -71) [ 422.459806][ T1611] usbhid 3-1:0.0: can't add hid device: -71 [ 422.466821][ T1611] usbhid 3-1:0.0: probe with driver usbhid failed with error -71 [ 422.607664][ T1611] usb 3-1: USB disconnect, device number 7 [ 422.669539][ T7757] loop3: detected capacity change from 0 to 512 [ 422.719278][ T30] audit: type=1326 audit(1750822717.912:58): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7758 comm="syz.0.772" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2c2078e929 code=0x7ffc0000 [ 422.742324][ T30] audit: type=1326 audit(1750822717.912:59): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7758 comm="syz.0.772" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2c2078e929 code=0x7ffc0000 [ 422.765266][ T30] audit: type=1326 audit(1750822717.952:60): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7758 comm="syz.0.772" exe="/root/syz-executor" sig=0 arch=c000003e syscall=240 compat=0 ip=0x7f2c2078e929 code=0x7ffc0000 [ 422.787969][ T30] audit: type=1326 audit(1750822717.952:61): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7758 comm="syz.0.772" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2c2078e929 code=0x7ffc0000 [ 422.818981][ T30] audit: type=1326 audit(1750822717.952:62): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7758 comm="syz.0.772" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2c2078e929 code=0x7ffc0000 [ 422.844595][ T30] audit: type=1326 audit(1750822717.952:63): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7758 comm="syz.0.772" exe="/root/syz-executor" sig=0 arch=c000003e syscall=244 compat=0 ip=0x7f2c2078e929 code=0x7ffc0000 [ 422.867365][ T30] audit: type=1326 audit(1750822717.952:64): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7758 comm="syz.0.772" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2c2078e929 code=0x7ffc0000 [ 423.070708][ T7757] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 423.084270][ T7757] ext4 filesystem being mounted at /156/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 423.300979][ T7757] EXT4-fs error (device loop3): ext4_do_update_inode:5568: inode #2: comm syz.3.771: corrupted inode contents [ 423.350995][ T7757] EXT4-fs error (device loop3): ext4_dirty_inode:6459: inode #2: comm syz.3.771: mark_inode_dirty error [ 423.415091][ T7757] EXT4-fs error (device loop3): ext4_do_update_inode:5568: inode #2: comm syz.3.771: corrupted inode contents [ 423.464333][ T7770] netlink: 28 bytes leftover after parsing attributes in process `syz.2.776'. [ 423.505066][ T30] audit: type=1400 audit(1750822718.682:65): apparmor="DENIED" operation="change_hat" class="file" info="unconfined can not change_hat" error=-1 profile="unconfined" pid=7771 comm="syz.0.778" [ 423.525110][ T7757] EXT4-fs error (device loop3): __ext4_ext_dirty:206: inode #2: comm syz.3.771: mark_inode_dirty error [ 423.607725][ T7775] Bluetooth: MGMT ver 1.23 [ 423.939008][ T5795] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 424.268939][ T7780] loop2: detected capacity change from 0 to 1024 [ 425.001216][ T7782] loop1: detected capacity change from 0 to 32768 [ 425.056844][ T7782] bcachefs (/dev/loop1): error validating superblock: Invalid superblock section journal_v2: journal buckets entry with bad nr: 21474967553+0 [ 425.056844][ T7782] journal_v2 (size 2912): [ 425.056844][ T7782] Buckets: 0-10 21474902017-21474902025 21474967553-21474967553 21474836481-21474836481 21491613697-21491613697 21508390913-21508390913 21525168129-21525168129 25769803778-25769806594 65795-25769869573 0-65794 25769803778-25769803794 65796-34359804197 0-0 0-83 0-0 25-6177 248-256 2048-2048 11-2827 0-1 16-256 0-0 0-0 0-0 0-0 0-0 0-0 0-0 0-30064771074 0-0 30064771074-30064771075 1280-4294968587 1179915-1179915 18446744069414584320-18446744069414584319 18446744073709551615-18446744073709551615 14322110933576210885-14322110933576210901 0-0 110593-4295143436 1179915-1179915 18446744069414584320-18446744069414584319 18446744073709551615-18446744073709551615 8469488994664696954-8469488994664696978 0-0 155649-4295254028 1179915-1179915 18446744069414584320-18446744069414584319 18446744073709551615-18446744073709551615 11142619451731364831-111426194517313 [ 425.058169][ T7782] bcachefs: bch2_fs_get_tree() error: invalid_sb_journal [ 426.310057][ T7801] loop1: detected capacity change from 0 to 2048 [ 426.369050][ T7801] UDF-fs: error (device loop1): udf_read_tagged: read failed, block=3932051, location=3932051 [ 426.556022][ T7801] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 427.323726][ T5856] IPVS: starting estimator thread 0... [ 427.393605][ T7820] loop2: detected capacity change from 0 to 256 [ 427.414708][ T7818] IPVS: using max 192 ests per chain, 9600 per kthread [ 427.465489][ T7820] exfat: Deprecated parameter 'utf8' [ 427.471421][ T7820] exfat: Deprecated parameter 'utf8' [ 427.477458][ T7820] exfat: Deprecated parameter 'namecase' [ 427.650737][ T7820] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0x205ad3fc, utbl_chksum : 0xe619d30d) [ 427.710446][ T7825] xt_hashlimit: size too large, truncated to 1048576 [ 427.966923][ T7827] netlink: 12 bytes leftover after parsing attributes in process `syz.0.803'. [ 429.429441][ T7840] loop3: detected capacity change from 0 to 128 [ 429.596315][ T7840] UDF-fs: error (device loop3): udf_read_tagged: read failed, block=256, location=256 [ 429.746672][ T7840] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 429.811619][ T7842] loop1: detected capacity change from 0 to 8 [ 429.948720][ T7842] SQUASHFS error: zlib decompression failed, data probably corrupt [ 429.957551][ T7842] SQUASHFS error: Failed to read block 0x9b: -5 [ 429.964316][ T7842] SQUASHFS error: Unable to read metadata cache entry [99] [ 429.971773][ T7842] SQUASHFS error: Unable to read inode 0x127 [ 431.072116][ T7846] loop0: detected capacity change from 0 to 40427 [ 431.708437][ T1611] kernel write not supported for file /bluetooth/6lowpan_control (pid: 1611 comm: kworker/0:2) [ 432.809498][ T7862] loop2: detected capacity change from 0 to 16 [ 432.910052][ T7862] erofs (device loop2): mounted with root inode @ nid 36. [ 433.104974][ T7862] erofs (device loop2): bogus lookback distance 0 @ lcn 1 of nid 89 [ 433.113667][ T7862] erofs (device loop2): readahead error at folio 0 @ nid 89 [ 433.178243][ T7864] netlink: 16 bytes leftover after parsing attributes in process `syz.3.820'. [ 433.181016][ T7862] erofs (device loop2): bogus lookback distance 0 @ lcn 1 of nid 89 [ 433.196603][ T7862] erofs (device loop2): read error -117 @ 0 of nid 89 [ 433.205390][ T30] audit: type=1800 audit(1750822728.442:66): pid=7862 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.819" name="file2" dev="loop2" ino=89 res=0 errno=0 [ 433.533133][ T7866] loop1: detected capacity change from 0 to 1024 [ 433.712912][ T7866] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 434.277569][ T7879] netlink: 24 bytes leftover after parsing attributes in process `syz.0.826'. [ 434.338592][ T5797] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 434.460508][ T7881] vlan2: entered promiscuous mode [ 434.466031][ T7881] hsr0: entered promiscuous mode [ 434.941408][ T7888] loop1: detected capacity change from 0 to 128 [ 436.163761][ T9] usb 5-1: new full-speed USB device number 4 using dummy_hcd [ 436.429034][ T9] usb 5-1: config 0 has an invalid interface number: 41 but max is 0 [ 436.438543][ T9] usb 5-1: config 0 has no interface number 0 [ 436.446091][ T9] usb 5-1: config 0 interface 41 has no altsetting 0 [ 436.550628][ T7903] loop3: detected capacity change from 0 to 2048 [ 436.684175][ T9] usb 5-1: New USB device found, idVendor=0fe6, idProduct=9800, bcdDevice=d1.9a [ 436.694023][ T9] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 436.702302][ T9] usb 5-1: Product: syz [ 436.706912][ T9] usb 5-1: Manufacturer: syz [ 436.711785][ T9] usb 5-1: SerialNumber: syz [ 436.826730][ T7903] EXT4-fs: Ignoring removed orlov option [ 436.832903][ T7903] EXT4-fs: Ignoring removed nomblk_io_submit option [ 436.942277][ T9] usb 5-1: config 0 descriptor?? [ 437.144995][ T7903] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 437.288703][ T7905] loop0: detected capacity change from 0 to 40427 [ 437.311510][ T7911] loop1: detected capacity change from 0 to 64 [ 437.330020][ T7905] F2FS-fs (loop0): Insane cp_payload (553648128 >= 504) [ 437.338891][ T7905] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock [ 437.375104][ T7905] F2FS-fs (loop0): invalid crc value [ 437.444730][ T7905] F2FS-fs (loop0): SIT is corrupted node# 0 vs 7 [ 437.483821][ T7905] F2FS-fs (loop0): Failed to initialize F2FS segment manager (-117) [ 437.652389][ T30] audit: type=1800 audit(1750822732.882:67): pid=7911 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.840" name="file1" dev="loop1" ino=21 res=0 errno=0 [ 437.780825][ T9] CoreChips 5-1:0.41: probe with driver CoreChips failed with error -71 [ 437.825351][ T7911] syz.1.840: attempt to access beyond end of device [ 437.825351][ T7911] loop1: rw=34817, sector=39, nr_sectors = 125 limit=64 [ 437.839855][ T7911] syz.1.840: attempt to access beyond end of device [ 437.839855][ T7911] loop1: rw=34817, sector=167, nr_sectors = 1 limit=64 [ 437.854054][ T7911] syz.1.840: attempt to access beyond end of device [ 437.854054][ T7911] loop1: rw=34817, sector=169, nr_sectors = 1 limit=64 [ 437.868536][ T7911] syz.1.840: attempt to access beyond end of device [ 437.868536][ T7911] loop1: rw=34817, sector=171, nr_sectors = 7 limit=64 [ 438.008531][ T9] usb 5-1: USB disconnect, device number 4 [ 438.215119][ T7911] syz.1.840: attempt to access beyond end of device [ 438.215119][ T7911] loop1: rw=34817, sector=179, nr_sectors = 371 limit=64 [ 439.217944][ T7873] EXT4-fs error (device loop3): ext4_validate_block_bitmap:432: comm ext4lazyinit: bg 0: block 2: invalid block bitmap [ 439.465418][ T7924] loop0: detected capacity change from 0 to 4096 [ 439.583306][ T7932] netlink: 16 bytes leftover after parsing attributes in process `syz.2.847'. [ 439.669050][ T7933] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 440.536939][ T9] usb 3-1: new high-speed USB device number 8 using dummy_hcd [ 440.724427][ T9] usb 3-1: Using ep0 maxpacket: 32 [ 440.760203][ T9] usb 3-1: config 0 has an invalid interface number: 184 but max is 0 [ 440.769155][ T9] usb 3-1: config 0 has no interface number 0 [ 440.775825][ T9] usb 3-1: config 0 interface 184 has no altsetting 0 [ 440.855877][ T9] usb 3-1: New USB device found, idVendor=0424, idProduct=7500, bcdDevice=69.ee [ 440.865711][ T9] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 440.874374][ T9] usb 3-1: Product: syz [ 440.878824][ T9] usb 3-1: Manufacturer: syz [ 440.883776][ T9] usb 3-1: SerialNumber: syz [ 441.008800][ T9] usb 3-1: config 0 descriptor?? [ 441.057606][ T9] smsc75xx v1.0.0 [ 441.357564][ T7952] netlink: 10 bytes leftover after parsing attributes in process `syz.0.858'. [ 441.710624][ T9] smsc75xx 3-1:0.184 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000014: -71 [ 441.722187][ T9] smsc75xx 3-1:0.184 (unnamed net_device) (uninitialized): Failed to read PMT_CTL: -71 [ 441.732366][ T9] smsc75xx 3-1:0.184 (unnamed net_device) (uninitialized): device not ready in smsc75xx_bind [ 441.743744][ T9] smsc75xx 3-1:0.184: probe with driver smsc75xx failed with error -71 [ 441.924762][ T9] usb 3-1: USB disconnect, device number 8 [ 442.974899][ T9] usb 5-1: new high-speed USB device number 5 using dummy_hcd [ 443.019609][ T30] audit: type=1400 audit(1750822738.252:68): apparmor="DENIED" operation="change_profile" class="file" info="label not found" error=-2 profile="unconfined" name=2626207DFF2B7FFDF1F77FF9D5F77FF7F9DB7F9EFBFBB5EFA6CD1ACBD6EDCDA317BB3D6ED74EBDD0FA5974E42362F338C1CEB0A12C9FC2A01B02 pid=7969 comm="syz.3.867" [ 443.208957][ T9] usb 5-1: New USB device found, idVendor=28bd, idProduct=0055, bcdDevice= 0.00 [ 443.218414][ T9] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 443.338142][ T9] usb 5-1: config 0 descriptor?? [ 443.847807][ T9] uclogic 0003:28BD:0055.0007: interface is invalid, ignoring [ 444.088840][ T5856] usb 5-1: USB disconnect, device number 5 [ 444.605060][ T7994] loop1: detected capacity change from 0 to 1024 [ 444.754112][ T7994] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 444.767381][ T7994] ext4 filesystem being mounted at /173/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 445.287763][ T5797] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 445.731552][ T8010] team0: Device gtp0 is of different type [ 445.920889][ T8015] netlink: 'syz.1.883': attribute type 5 has an invalid length. [ 446.871442][ T8024] netlink: 'syz.3.890': attribute type 1 has an invalid length. [ 446.891099][ T8024] NCSI netlink: No device for ifindex 0 [ 446.919028][ T30] audit: type=1326 audit(1750822742.142:69): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8023 comm="syz.2.891" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f8c04f8e929 code=0x0 [ 448.169717][ T8044] loop2: detected capacity change from 0 to 512 [ 448.267073][ T8044] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 448.280447][ T8044] ext4 filesystem being mounted at /171/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 448.312640][ C0] vkms_vblank_simulate: vblank timer overrun [ 448.594834][ T8044] EXT4-fs error (device loop2): ext4_empty_dir:3075: inode #12: comm syz.2.900: invalid size [ 448.738770][ T8045] loop1: detected capacity change from 0 to 4096 [ 449.135179][ T8045] ntfs3(loop1): Mark volume as dirty due to NTFS errors [ 449.222229][ T5798] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 449.985812][ T8062] loop2: detected capacity change from 0 to 2048 [ 450.247323][ T8062] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 450.430445][ T8062] EXT4-fs error (device loop2): ext4_find_extent:939: inode #2: comm syz.2.906: pblk 1 bad header/extent: invalid magic - magic 2, entries 0, max 3(0), depth 0(4) [ 450.540169][ T8062] EXT4-fs (loop2): Remounting filesystem read-only [ 450.831460][ T8080] sp0: Synchronizing with TNC [ 450.877610][ T5798] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 450.934597][ T9] usb 5-1: new full-speed USB device number 6 using dummy_hcd [ 451.128691][ T9] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 451.139725][ T9] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 2 [ 451.149376][ T9] usb 5-1: New USB device found, idVendor=05d8, idProduct=810a, bcdDevice=92.b8 [ 451.158882][ T9] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 451.272547][ T9] usb 5-1: config 0 descriptor?? [ 451.340730][ T9] dvb-usb: found a 'Artec T1 USB2.0' in warm state. [ 451.347878][ T9] dvb-usb: bulk message failed: -22 (3/0) [ 451.456391][ T9] dvb-usb: will use the device's hardware PID filter (table count: 16). [ 451.547492][ T9] dvbdev: DVB: registering new adapter (Artec T1 USB2.0) [ 451.555324][ T9] usb 5-1: media controller created [ 451.607269][ T9] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered. [ 451.733269][ T9] dvb-usb: bulk message failed: -22 (6/0) [ 451.740147][ T9] dvb-usb: no frontend was attached by 'Artec T1 USB2.0' [ 451.869003][ T9] input: IR-receiver inside an USB DVB receiver as /devices/platform/dummy_hcd.4/usb5/5-1/input/input9 [ 452.074947][ T9] dvb-usb: schedule remote query interval to 150 msecs. [ 452.082217][ T9] dvb-usb: Artec T1 USB2.0 successfully initialized and connected. [ 452.235055][ T1611] dvb-usb: bulk message failed: -22 (1/0) [ 452.241135][ T1611] dvb-usb: error while querying for an remote control event. [ 452.336575][ T9] usb 5-1: USB disconnect, device number 6 [ 452.382280][ T8085] loop2: detected capacity change from 0 to 32768 [ 452.571344][ T8085] bcachefs (loop2): starting version 1.7: mi_btree_bitmap opts=errors=continue,metadata_checksum=xxhash,data_checksum=none,compression=lz4,str_hash=crc64,norecovery,reconstruct_alloc [ 452.571478][ T8085] allowing incompatible features above 0.0: (unknown version) [ 452.571564][ T8085] features: lz4,new_siphash,inline_data,new_extent_overwrite,btree_ptr_v2,new_varint,journal_no_flush,alloc_v2,extents_across_btree_nodes [ 452.621558][ T8085] bcachefs (loop2): Using encoding defined by superblock: utf8-12.1.0 [ 452.630689][ T9] dvb-usb: Artec T1 USB2.0 successfully deinitialized and disconnected. [ 452.643648][ T8085] bcachefs (loop2): invalid journal entry, version=1.7: mi_btree_bitmap type=data_usage in superblock: invalid journal entry usage: no devices in entry free: 0/0 [], fixing [ 452.661922][ T8085] bcachefs (loop2): recovering from clean shutdown, journal seq 10 [ 452.670951][ T8085] bcachefs (loop2): Version upgrade from 1.19: autofix_errors to 1.7: mi_btree_bitmap incomplete [ 452.670951][ T8085] Doing compatible version upgrade from 1.19: autofix_errors to 1.28: inode_has_case_insensitive [ 452.670951][ T8085] running recovery passes: check_extents_to_backpointers,check_inodes [ 452.702483][ T8085] bcachefs (loop2): dropping and reconstructing all alloc info [ 452.749235][ T8085] bcachefs (loop2): btree node read error at btree extents level 0/0 [ 452.749329][ T8085] u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq c6c25c03258c59c5 written 16 min_key POS_MIN durability: 1 ptr: 0:27:0 gen 0 [ 452.749432][ T8085] loop2 node offset 0/16 bset u64s 0: invalid bkey format: incorrect key_u64s: got 0, should be 3 [ 452.749516][ T8085] u64s 0 fields 64:0, 64:0, 32:0, 0:0, 0:0, 0:0 [ 452.749589][ T8085] running recovery pass check_backpointers_to_extents (16), currently at recovery_pass_empty (0) [ 452.749677][ T8085] running recovery pass scan_for_btree_nodes (1), currently at recovery_pass_empty (0) [ 452.749755][ T8085] ret btree_node_read_validate_error [ 452.827345][ T8085] bcachefs (loop2): error reading btree root btree=extents level=0: btree_node_read_error, fixing [ 452.855197][ T8085] bcachefs (loop2): error reading btree root btree=dirents level=0: btree_node_read_error, fixing [ 452.873096][ T8085] bcachefs (loop2): btree node read error at btree xattrs level 0/0 [ 452.873196][ T8085] u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq 2285c34bed0abe32 written 16 min_key POS_MIN durability: 1 ptr: 0:31:0 gen 0 [ 452.873319][ T8085] loop2 node offset 0/16: got wrong btree node: got [ 452.873758][ T8085] btree=xattrs level=0 seq ded0abe32 1 [ 452.873831][ T8085] min: POS_MIN [ 452.873891][ T8085] max: SPOS_MAX [ 452.873954][ T8085] ret btree_node_read_validate_error [ 452.932237][ T8085] bcachefs (loop2): error reading btree root btree=xattrs level=0: btree_node_read_error, fixing [ 452.958444][ T8085] bcachefs (loop2): btree node read error at btree snapshots level 0/0 [ 452.958549][ T8085] u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq ebb8d5a9e3463bdb written 16 min_key POS_MIN durability: 1 ptr: 0:32:0 gen 0 [ 452.958661][ T8085] loop2 node offset 0/16: incorrect min_key: got 0:0:1023410176 should be POS_MIN [ 452.958750][ T8085] flagging btree snapshots lost data [ 452.958828][ T8085] running recovery pass reconstruct_snapshots (21), currently at recovery_pass_empty (0) [ 452.958918][ T8085] ret btree_node_read_validate_error [ 453.013625][ T8085] bcachefs (loop2): error reading btree root btree=snapshots level=0: btree_node_read_error, fixing [ 453.043780][ T8085] bcachefs (loop2): check_topology... [ 453.044193][ T8085] bcachefs (loop2): btree root extents unreadable, must recover from scan [ 453.059208][ T8085] bcachefs (loop2): no nodes found for btree extents, continuing [ 453.068328][ T8085] bcachefs (loop2): btree root dirents unreadable, must recover from scan [ 453.077896][ T8085] bcachefs (loop2): no nodes found for btree dirents, continuing [ 453.086476][ T8085] bcachefs (loop2): btree root xattrs unreadable, must recover from scan [ 453.095860][ T8085] bcachefs (loop2): no nodes found for btree xattrs, continuing [ 453.105747][ T8085] bcachefs (loop2): btree root snapshots unreadable, must recover from scan [ 453.115354][ T8085] bcachefs (loop2): no nodes found for btree snapshots, continuing [ 453.140572][ T8085] done [ 453.143933][ T8085] bcachefs (loop2): accounting_read... done [ 453.157255][ T8085] bcachefs (loop2): alloc_read... done [ 453.165614][ T8085] bcachefs (loop2): snapshots_read... done [ 453.174651][ T8085] bcachefs (loop2): Fixed errors, running fsck a second time to verify fs is clean [ 453.186529][ T8085] bcachefs (loop2): done starting filesystem [ 453.376405][ T5798] bcachefs (loop2): shutting down [ 453.532162][ T5798] bcachefs (loop2): shutdown complete [ 453.640189][ T8100] netlink: 4 bytes leftover after parsing attributes in process `syz.0.922'. [ 454.125026][ T8104] netlink: 8 bytes leftover after parsing attributes in process `syz.3.925'. [ 454.134238][ T8104] netlink: 4 bytes leftover after parsing attributes in process `syz.3.925'. [ 454.143539][ T8104] netlink: 'syz.3.925': attribute type 18 has an invalid length. [ 454.796598][ T9] usb 5-1: new high-speed USB device number 7 using dummy_hcd [ 455.014715][ T9] usb 5-1: Using ep0 maxpacket: 32 [ 455.048203][ T9] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 455.059816][ T9] usb 5-1: config 0 interface 0 has no altsetting 0 [ 455.067173][ T9] usb 5-1: New USB device found, idVendor=04b4, idProduct=0001, bcdDevice= 0.00 [ 455.076847][ T9] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 455.136853][ T9] usb 5-1: config 0 descriptor?? [ 455.159496][ T8116] sp0: Synchronizing with TNC [ 455.674549][ T9] cypress 0003:04B4:0001.0008: unknown main item tag 0x0 [ 455.682086][ T9] cypress 0003:04B4:0001.0008: unknown main item tag 0x0 [ 455.689636][ T9] cypress 0003:04B4:0001.0008: unknown main item tag 0x0 [ 455.697255][ T9] cypress 0003:04B4:0001.0008: unknown main item tag 0x0 [ 455.705985][ T9] cypress 0003:04B4:0001.0008: unknown main item tag 0x0 [ 455.780589][ T9] cypress 0003:04B4:0001.0008: hidraw0: USB HID v0.09 Device [HID 04b4:0001] on usb-dummy_hcd.4-1/input0 [ 455.961476][ T9] usb 5-1: USB disconnect, device number 7 [ 456.379712][ T8123] fido_id[8123]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.4/usb5/report_descriptor': No such file or directory [ 456.558827][ T8124] loop2: detected capacity change from 0 to 4096 [ 456.815864][ T8131] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 457.941017][ T8144] mkiss: ax0: crc mode is auto. [ 458.945768][ T8156] netlink: 8 bytes leftover after parsing attributes in process `syz.4.946'. [ 458.955215][ T8156] netlink: 4 bytes leftover after parsing attributes in process `syz.4.946'. [ 459.342543][ T8159] netlink: 4 bytes leftover after parsing attributes in process `syz.1.948'. [ 461.599167][ T8188] loop4: detected capacity change from 0 to 2048 [ 462.016489][ T8188] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 462.461458][ T5807] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 463.815238][ T8225] tmpfs: Bad value for 'mpol' [ 463.891230][ T8221] loop1: detected capacity change from 0 to 1024 [ 464.066343][ T4251] hfsplus: b-tree write err: -5, ino 4 [ 464.386463][ T5860] usb 3-1: new high-speed USB device number 9 using dummy_hcd [ 464.446463][ T8233] CIFS: No dialect specified on mount. Default has changed to a more secure dialect, SMB2.1 or later (e.g. SMB3.1.1), from CIFS (SMB1). To use the less secure SMB1 dialect to access old servers which do not support SMB3.1.1 (or even SMB3 or SMB2.1) specify vers=1.0 on mount. [ 464.474284][ T8233] CIFS mount error: No usable UNC path provided in device string! [ 464.474284][ T8233] [ 464.488360][ T8233] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string! [ 464.634494][ T5860] usb 3-1: Using ep0 maxpacket: 8 [ 464.694586][ T5860] usb 3-1: New USB device found, idVendor=0ccd, idProduct=00b3, bcdDevice=2d.ea [ 464.704029][ T5860] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 464.712296][ T5860] usb 3-1: Product: syz [ 464.717022][ T5860] usb 3-1: Manufacturer: syz [ 464.721874][ T5860] usb 3-1: SerialNumber: syz [ 464.856126][ T5860] usb 3-1: config 0 descriptor?? [ 465.072551][ T8237] loop0: detected capacity change from 0 to 512 [ 465.117808][ T5860] usb 3-1: dvb_usb_v2: found a 'TerraTec NOXON DAB Stick' in warm state [ 465.149059][ T8237] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 465.290921][ T8237] EXT4-fs (loop0): 1 truncate cleaned up [ 465.301035][ T8237] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 465.546709][ T5860] dvb_usb_rtl28xxu 3-1:0.0: probe with driver dvb_usb_rtl28xxu failed with error -71 [ 465.599941][ T5860] usb 3-1: USB disconnect, device number 9 [ 465.711965][ T8240] loop4: detected capacity change from 0 to 4096 [ 465.841654][ T8244] loop1: detected capacity change from 0 to 1024 [ 465.883945][ T8244] EXT4-fs: Ignoring removed nomblk_io_submit option [ 465.903315][ T5794] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 466.010941][ T8244] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 466.294173][ T8240] ntfs3(loop4): Mark volume as dirty due to NTFS errors [ 466.345895][ T8240] ntfs3(loop4): Failed to load $Extend (-22). [ 466.352297][ T8240] ntfs3(loop4): Failed to initialize $Extend. [ 466.648347][ T5797] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 467.954694][ T8265] loop4: detected capacity change from 0 to 2048 [ 468.135708][ T8265] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 469.660674][ T8294] netlink: 'syz.2.1007': attribute type 3 has an invalid length. [ 469.669004][ T8294] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1007'. [ 470.289458][ T8302] netlink: 'syz.3.1012': attribute type 1 has an invalid length. [ 471.081080][ T8318] loop1: detected capacity change from 0 to 1024 [ 471.110312][ T8319] PKCS8: Unsupported PKCS#8 version [ 472.829896][ T8341] netlink: 14593 bytes leftover after parsing attributes in process `syz.2.1029'. [ 472.851271][ T8340] loop4: detected capacity change from 0 to 512 [ 473.140532][ T8351] loop1: detected capacity change from 0 to 64 [ 473.144242][ T8340] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.1027: bg 0: block 248: padding at end of block bitmap is not set [ 473.237484][ T8340] Quota error (device loop4): write_blk: dquota write failed [ 473.245690][ T8351] hfs: bad catalog entry type 0 [ 473.245736][ T8340] Quota error (device loop4): qtree_write_dquot: Error -117 occurred while creating quota [ 473.265228][ T8340] EXT4-fs error (device loop4): ext4_acquire_dquot:6933: comm syz.4.1027: Failed to acquire dquot type 1 [ 473.327828][ T8340] EXT4-fs (loop4): 1 truncate cleaned up [ 473.337332][ T8340] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 473.350591][ T8340] ext4 filesystem being mounted at /206/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 473.575458][ T8340] Quota error (device loop4): find_tree_dqentry: Cycle in quota tree detected: block 2 index 2 [ 473.589519][ T8340] Quota error (device loop4): qtree_read_dquot: Can't read quota structure for id 131074 [ 473.600896][ T8340] EXT4-fs error (device loop4): ext4_acquire_dquot:6933: comm syz.4.1027: Failed to acquire dquot type 1 [ 474.151639][ T5807] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 474.669678][ T8367] loop0: detected capacity change from 0 to 256 [ 475.029671][ T8367] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0xb75ad3fb, utbl_chksum : 0xe619d30d) [ 475.337093][ T1284] ieee802154 phy0 wpan0: encryption failed: -22 [ 475.344009][ T1284] ieee802154 phy1 wpan1: encryption failed: -22 [ 476.376539][ T5860] usb 3-1: new high-speed USB device number 10 using dummy_hcd [ 476.556624][ T5860] usb 3-1: Using ep0 maxpacket: 16 [ 476.590138][ T5860] usb 3-1: too many endpoints for config 0 interface 0 altsetting 255: 254, using maximum allowed: 30 [ 476.604809][ T5860] usb 3-1: config 0 interface 0 altsetting 255 endpoint 0x81 has an invalid bInterval 197, changing to 11 [ 476.616745][ T5860] usb 3-1: config 0 interface 0 altsetting 255 has 1 endpoint descriptor, different from the interface descriptor's value: 254 [ 476.633054][ T5860] usb 3-1: config 0 interface 0 has no altsetting 0 [ 476.640234][ T5860] usb 3-1: New USB device found, idVendor=0853, idProduct=0148, bcdDevice= 0.00 [ 476.652546][ T5860] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 476.823132][ T8390] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1049'. [ 476.896688][ T8392] loop1: detected capacity change from 0 to 256 [ 476.916940][ T5860] usb 3-1: config 0 descriptor?? [ 477.113911][ T8392] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x205ad3fc, utbl_chksum : 0xe619d30d) [ 477.480106][ T5860] topre 0003:0853:0148.0009: hidraw0: USB HID vc9.b6 Device [HID 0853:0148] on usb-dummy_hcd.2-1/input0 [ 477.644216][ T5857] usb 3-1: USB disconnect, device number 10 [ 478.275112][ T8399] fido_id[8399]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.2/usb3/report_descriptor': No such file or directory [ 478.802862][ T8408] loop4: detected capacity change from 0 to 1024 [ 478.910001][ T8414] loop1: detected capacity change from 0 to 64 [ 479.530147][ T30] audit: type=1326 audit(1750822774.752:70): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8415 comm="" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8c04f8e929 code=0x7ffc0000 [ 479.584797][ T30] audit: type=1326 audit(1750822774.812:71): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8415 comm="" exe="/root/syz-executor" sig=0 arch=c000003e syscall=293 compat=0 ip=0x7f8c04f8e929 code=0x7ffc0000 [ 479.609736][ T30] audit: type=1326 audit(1750822774.812:72): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8415 comm="" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8c04f8e929 code=0x7ffc0000 [ 479.739688][ T8418] loop0: detected capacity change from 0 to 1024 [ 479.983165][ T8418] syz.0.1062: attempt to access beyond end of device [ 479.983165][ T8418] loop0: rw=0, sector=201326592, nr_sectors = 2 limit=1024 [ 480.003149][ T8418] Buffer I/O error on dev loop0, logical block 100663296, async page read [ 480.015511][ T8418] hfsplus: unable to mark blocks free: error -5 [ 480.022066][ T8418] hfsplus: can't free extent [ 484.110429][ T8472] loop4: detected capacity change from 0 to 32768 [ 484.123943][ T8472] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop4 (7:4) scanned by syz.4.1084 (8472) [ 484.166863][ T8472] BTRFS info (device loop4): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 484.177711][ T8472] BTRFS info (device loop4): using sha256 (sha256-x86_64) checksum algorithm [ 484.189248][ T8472] BTRFS error (device loop4): nologreplay must be used with ro mount option [ 484.198342][ T8472] BTRFS error (device loop4): cannot disable free-space-tree [ 484.208469][ T8472] BTRFS error (device loop4): open_ctree failed: -22 [ 487.201279][ T8505] loop4: detected capacity change from 0 to 32768 [ 487.211387][ T8505] bcachefs: bch2_fs_parse_param() Error parsing option move_bytes_in_flight: option_value [ 488.270468][ T8519] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1107'. [ 488.346888][ T8522] loop4: detected capacity change from 0 to 256 [ 488.399411][ T8522] exfat: Deprecated parameter 'namecase' [ 488.664551][ T8522] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0x1a9973fb, utbl_chksum : 0xe619d30d) [ 490.371255][ T8544] overlayfs: missing 'workdir' [ 491.091558][ T8552] tipc: Enabled bearer , priority 10 [ 492.127342][ T8554] loop1: detected capacity change from 0 to 32768 [ 492.602919][ T8554] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode. [ 492.963096][ T5857] tipc: Node number set to 11552 [ 493.034359][ T5797] ocfs2: Unmounting device (7,1) on (node local) [ 493.197833][ T8557] loop0: detected capacity change from 0 to 32768 [ 493.257393][ T8557] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz" [ 493.275593][ T8557] gfs2: fsid=syz:syz: Now mounting FS (format 1801)... [ 493.401170][ T8557] gfs2: fsid=syz:syz.0: journal 0 mapped with 3 extents in 0ms [ 493.412836][ T5857] gfs2: fsid=syz:syz.0: jid=0, already locked for use [ 493.420145][ T5857] gfs2: fsid=syz:syz.0: jid=0: Looking at journal... [ 494.446358][ T5857] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 1026ms [ 494.455282][ T5857] gfs2: fsid=syz:syz.0: jid=0: Done [ 494.460828][ T8557] gfs2: fsid=syz:syz.0: first mount done, others may mount [ 494.781409][ T8557] gfs2: fsid=syz:syz.0: found 1 quota changes [ 494.964964][ T8580] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1133'. [ 496.511259][ T8596] netlink: 'syz.4.1141': attribute type 2 has an invalid length. [ 496.874300][ T8598] sp0: Synchronizing with TNC [ 496.943923][ T8598] sp0: Found TNC [ 497.414067][ T8602] loop4: detected capacity change from 0 to 128 [ 500.203298][ T8647] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1164'. [ 500.212698][ T8647] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1164'. [ 500.224787][ T8647] netlink: 'syz.3.1164': attribute type 19 has an invalid length. [ 500.689214][ T8653] loop2: detected capacity change from 0 to 1024 [ 500.878199][ T8653] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 501.351480][ T5798] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 501.681036][ T5860] IPVS: starting estimator thread 0... [ 501.780499][ T8675] IPVS: using max 240 ests per chain, 12000 per kthread [ 502.260731][ T8684] overlayfs: conflicting options: nfs_export=on,metacopy=on [ 503.454097][ T5857] usb 5-1: new high-speed USB device number 8 using dummy_hcd [ 503.649601][ T5857] usb 5-1: config index 0 descriptor too short (expected 126, got 72) [ 503.692452][ T5857] usb 5-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08 [ 503.704171][ T5857] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 503.723512][ T5857] usb 5-1: Product: syz [ 503.727926][ T5857] usb 5-1: Manufacturer: syz [ 503.732782][ T5857] usb 5-1: SerialNumber: syz [ 503.804154][ T5857] usb 5-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested [ 504.054991][ T8716] loop1: detected capacity change from 0 to 1024 [ 504.081278][ T5856] usb 5-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008 [ 504.438841][ T30] audit: type=1800 audit(1750822799.652:73): pid=8716 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.1196" name="file1" dev="loop1" ino=20 res=0 errno=0 [ 504.462860][ T30] audit: type=1804 audit(1750822799.662:74): pid=8716 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.1196" name="/newroot/238/file0/file1" dev="loop1" ino=20 res=1 errno=0 [ 504.792589][ T1611] usb 5-1: USB disconnect, device number 8 [ 504.913640][ T5860] usb 4-1: new high-speed USB device number 6 using dummy_hcd [ 505.105586][ T5860] usb 4-1: config 220 has an invalid interface number: 76 but max is 2 [ 505.117192][ T5860] usb 4-1: config 220 contains an unexpected descriptor of type 0x2, skipping [ 505.126834][ T5860] usb 4-1: config 220 has an invalid descriptor of length 0, skipping remainder of the config [ 505.142713][ T5860] usb 4-1: config 220 has no interface number 2 [ 505.149716][ T5860] usb 4-1: config 220 interface 1 altsetting 5 has 0 endpoint descriptors, different from the interface descriptor's value: 12 [ 505.166058][ T5860] usb 4-1: config 220 interface 0 has no altsetting 0 [ 505.173143][ T5860] usb 4-1: config 220 interface 76 has no altsetting 0 [ 505.180358][ T5860] usb 4-1: config 220 interface 1 has no altsetting 0 [ 505.368849][ T5860] usb 4-1: New USB device found, idVendor=8086, idProduct=0b07, bcdDevice=6c.b9 [ 505.378433][ T5860] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 505.389834][ T5860] usb 4-1: Product: syz [ 505.394781][ T5860] usb 4-1: Manufacturer: syz [ 505.399667][ T5860] usb 4-1: SerialNumber: syz [ 505.614143][ T5856] usb 5-1: Service connection timeout for: 257 [ 505.620618][ T5856] ath9k_htc 5-1:1.0: ath9k_htc: Unable to initialize HTC services [ 505.635951][ T5856] ath9k_htc: Failed to initialize the device [ 505.729862][ T5860] usb 4-1: Found UVC 7.01 device syz (8086:0b07) [ 505.738585][ T5860] usb 4-1: No valid video chain found. [ 505.747744][ T5860] usb 4-1: selecting invalid altsetting 0 [ 505.757829][ T1611] usb 5-1: ath9k_htc: USB layer deinitialized [ 505.794414][ T8733] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1204'. [ 505.825586][ T5860] usb 4-1: selecting invalid altsetting 0 [ 505.831636][ T5860] usbtest 4-1:220.1: probe with driver usbtest failed with error -22 [ 505.961979][ T5860] usb 4-1: USB disconnect, device number 6 [ 506.341906][ T8742] hsr0 speed is unknown, defaulting to 1000 [ 507.790054][ T8765] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1218'. [ 508.204915][ T8768] block nbd3: shutting down sockets [ 508.546082][ T8778] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1225'. [ 508.924184][ T8784] smc: net device bond0 applied user defined pnetid SYZ2 [ 509.106357][ T8788] i2c i2c-0: Invalid block read size 33 [ 509.146707][ T8790] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1231'. [ 510.011490][ T8802] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1237'. [ 510.025216][ T8802] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1237'. [ 510.034860][ T8802] netlink: 'syz.4.1237': attribute type 14 has an invalid length. [ 510.139800][ T8803] [U]  [ 510.234930][ T8808] tipc: Started in network mode [ 510.240069][ T8808] tipc: Node identity , cluster identity 4711 [ 510.249576][ T8808] tipc: Failed to set node id, please configure manually [ 510.257246][ T8808] tipc: Enabling of bearer rejected, failed to enable media [ 512.732817][ T8846] loop0: detected capacity change from 0 to 2048 [ 512.792226][ T5860] kernel write not supported for file /input/mouse0 (pid: 5860 comm: kworker/0:5) [ 512.857541][ T8846] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 514.099083][ T8863] loop1: detected capacity change from 0 to 16 [ 514.201268][ T8863] erofs (device loop1): mounted with root inode @ nid 36. [ 514.302150][ T8866] netlink: 48 bytes leftover after parsing attributes in process `syz.4.1270'. [ 514.344586][ T30] audit: type=1800 audit(1750822809.562:75): pid=8863 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.1268" name="file1" dev="loop1" ino=86 res=0 errno=0 [ 514.450302][ T8868] pimreg: entered allmulticast mode [ 514.713169][ T8871] program syz.3.1271 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 514.984860][ T8873] netlink: 'syz.2.1272': attribute type 3 has an invalid length. [ 515.134709][ T8879] loop1: detected capacity change from 0 to 512 [ 515.206776][ T8879] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 515.227733][ T30] audit: type=1326 audit(1750822810.462:76): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8880 comm="syz.3.1276" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa39c98e929 code=0x7ffc0000 [ 515.253758][ T30] audit: type=1326 audit(1750822810.462:77): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8880 comm="syz.3.1276" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa39c98e929 code=0x7ffc0000 [ 515.348154][ T30] audit: type=1326 audit(1750822810.552:78): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8880 comm="syz.3.1276" exe="/root/syz-executor" sig=0 arch=c000003e syscall=78 compat=0 ip=0x7fa39c98e929 code=0x7ffc0000 [ 515.371054][ T30] audit: type=1326 audit(1750822810.552:79): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8880 comm="syz.3.1276" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa39c98e929 code=0x7ffc0000 [ 515.401283][ T30] audit: type=1326 audit(1750822810.552:80): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8880 comm="syz.3.1276" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa39c98e929 code=0x7ffc0000 [ 515.428223][ T8879] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.1273: bg 0: block 384: padding at end of block bitmap is not set [ 515.514450][ T8879] EXT4-fs (loop1): Remounting filesystem read-only [ 515.521701][ T8879] EXT4-fs (loop1): 1 truncate cleaned up [ 515.529846][ T8879] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 515.785374][ T8889] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1279'. [ 515.804338][ T8889] 8021q: VLANs not supported on lo [ 515.907791][ T5797] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 517.952971][ T8912] loop2: detected capacity change from 0 to 32768 [ 517.970277][ T8912] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop2 (7:2) scanned by syz.2.1290 (8912) [ 518.002442][ T8912] BTRFS info (device loop2): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 518.013119][ T8912] BTRFS info (device loop2): using sha256 (sha256-x86_64) checksum algorithm [ 518.025642][ T8912] BTRFS error (device loop2): ignoresuperflags must be used with ro mount option [ 518.035318][ T8912] BTRFS info (device loop2): using free-space-tree [ 518.054863][ T8912] BTRFS error (device loop2): open_ctree failed: -22 [ 519.134627][ T5856] usb 3-1: new high-speed USB device number 11 using dummy_hcd [ 519.201539][ T8935] loop4: detected capacity change from 0 to 1024 [ 519.331146][ T5856] usb 3-1: config 0 interface 0 altsetting 7 endpoint 0x81 has invalid wMaxPacketSize 0 [ 519.342391][ T5856] usb 3-1: config 0 interface 0 has no altsetting 0 [ 519.350015][ T5856] usb 3-1: New USB device found, idVendor=05ac, idProduct=0269, bcdDevice= 0.00 [ 519.359494][ T5856] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 519.398638][ T5856] usb 3-1: config 0 descriptor?? [ 519.577436][ T3837] hfsplus: b-tree write err: -5, ino 4 [ 519.603867][ T8943] loop0: detected capacity change from 0 to 256 [ 519.752532][ T8943] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0xbe675ead, utbl_chksum : 0xe619d30d) [ 519.892862][ T5856] magicmouse 0003:05AC:0269.000A: hidraw0: USB HID v10.00 Device [HID 05ac:0269] on usb-dummy_hcd.2-1/input0 [ 519.982981][ T8945] sp0: Synchronizing with TNC [ 519.993120][ T8947] loop4: detected capacity change from 0 to 47 [ 520.044566][ T5856] usb 3-1: USB disconnect, device number 11 [ 520.719951][ T3837] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 520.848970][ T3837] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 521.138969][ T3837] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 521.316931][ T3837] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 521.594054][ T3837] bridge_slave_1: left allmulticast mode [ 521.600057][ T3837] bridge_slave_1: left promiscuous mode [ 521.608578][ T3837] bridge0: port 2(bridge_slave_1) entered disabled state [ 521.639953][ T3837] bridge_slave_0: left allmulticast mode [ 521.646137][ T3837] bridge_slave_0: left promiscuous mode [ 521.652796][ T3837] bridge0: port 1(bridge_slave_0) entered disabled state [ 522.151738][ T3837] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 522.174020][ T3837] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 522.202857][ T3837] bond0 (unregistering): Released all slaves [ 522.816140][ T3837] hsr_slave_0: left promiscuous mode [ 522.831560][ T3837] hsr_slave_1: left promiscuous mode [ 522.839955][ T3837] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 522.848148][ T3837] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 522.926910][ T3837] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 522.935389][ T3837] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 523.013858][ T3837] veth1_macvtap: left promiscuous mode [ 523.019707][ T3837] veth0_macvtap: left promiscuous mode [ 523.027315][ T3837] veth1_vlan: left promiscuous mode [ 523.032965][ T3837] veth0_vlan: left promiscuous mode [ 523.464395][ T3837] pimreg (unregistering): left allmulticast mode [ 523.692727][ T8976] loop1: detected capacity change from 0 to 256 [ 524.151753][ T5806] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 524.161697][ T5806] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 524.175865][ T5806] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 524.186441][ T3837] team0 (unregistering): Port device team_slave_1 removed [ 524.237283][ T3837] team0 (unregistering): Port device team_slave_0 removed [ 524.372062][ T5806] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 524.383812][ T5806] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 524.576757][ T5806] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 524.619329][ T5806] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 524.641927][ T8966] netlink: 40 bytes leftover after parsing attributes in process `syz.2.1317'. [ 524.649817][ T5806] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 524.664572][ T5806] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 524.676547][ T5806] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 524.863752][ T8978] hsr0 speed is unknown, defaulting to 1000 [ 525.267546][ T3837] IPVS: stop unused estimator thread 0... [ 525.635114][ T8992] loop2: detected capacity change from 0 to 1024 [ 525.684260][ T8978] chnl_net:caif_netlink_parms(): no params data found [ 525.736631][ T8992] hfsplus: bad catalog entry type [ 526.028465][ T4073] hfsplus: b-tree write err: -5, ino 4 [ 526.168228][ T9002] sch_fq: defrate 4294967295 ignored. [ 526.694442][ T3837] ===================================================== [ 526.701738][ T3837] BUG: KMSAN: uninit-value in n_tty_receive_buf_standard+0xafd/0x98a0 [ 526.711573][ T3837] n_tty_receive_buf_standard+0xafd/0x98a0 [ 526.717887][ T3837] n_tty_receive_buf_common+0x1a68/0x2540 [ 526.724020][ T3837] n_tty_receive_buf2+0x4c/0x60 [ 526.729080][ T3837] tty_ldisc_receive_buf+0xc6/0x2c0 [ 526.734942][ T3837] tty_port_default_receive_buf+0xd7/0x1a0 SYZFAIL: failed to recv rpc fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor) [ 526.738954][ T5813] Bluetooth: hci0: command tx timeout [ 526.740916][ T3837] flush_to_ldisc+0x49d/0xf00 [ 526.741014][ T3837] process_scheduled_works+0xb91/0x1d80 [ 526.741166][ T3837] worker_thread+0xedf/0x1590 [ 526.741305][ T3837] kthread+0xd5c/0xf00 [ 526.741412][ T3837] ret_from_fork+0x1e3/0x310 [ 526.741510][ T3837] ret_from_fork_asm+0x1a/0x30 [ 526.787386][ T3837] [ 526.789841][ T3837] Uninit was stored to memory at: [ 526.795356][ T3837] n_tty_receive_buf_standard+0xaf6/0x98a0 [ 526.801414][ T3837] n_tty_receive_buf_common+0x1a68/0x2540 [ 526.807798][ T3837] n_tty_receive_buf2+0x4c/0x60 [ 526.813018][ T3837] tty_ldisc_receive_buf+0xc6/0x2c0 [ 526.818824][ T3837] tty_port_default_receive_buf+0xd7/0x1a0 [ 526.824984][ T3837] flush_to_ldisc+0x49d/0xf00 [ 526.829861][ T3837] process_scheduled_works+0xb91/0x1d80 [ 526.835955][ T3837] worker_thread+0xedf/0x1590 [ 526.840897][ T3837] kthread+0xd5c/0xf00 [ 526.845372][ T3837] ret_from_fork+0x1e3/0x310 [ 526.858102][ T3837] ret_from_fork_asm+0x1a/0x30 [ 526.863155][ T3837] [ 526.868149][ T3837] Uninit was created at: [ 526.872685][ T3837] __kmalloc_noprof+0x95f/0x1310 [ 526.878025][ T3837] __tty_buffer_request_room+0x3d4/0x7a0 [ 526.884106][ T3837] __tty_insert_flip_string_flags+0x157/0x6f0 [ 526.890494][ T3837] uart_insert_char+0x368/0x930 [ 526.895900][ T3837] serial8250_read_char+0x1ba/0x670 [ 526.901357][ T3837] serial8250_handle_irq+0x930/0x1110 [ 526.907213][ T3837] serial8250_default_handle_irq+0x116/0x2b0 [ 526.913545][ T3837] serial8250_interrupt+0xc8/0x400 [ 526.918892][ T3837] __handle_irq_event_percpu+0x11c/0xbf0 [ 526.924960][ T3837] handle_irq_event+0xe0/0x2a0 [ 526.929956][ T3837] handle_edge_irq+0x31c/0xc80 [ 526.935067][ T3837] __common_interrupt+0x9f/0x220 [ 526.940277][ T3837] common_interrupt+0x94/0xb0 [ 526.945331][ T3837] asm_common_interrupt+0x2b/0x40 [ 526.958234][ T3837] [ 526.960707][ T3837] CPU: 1 UID: 0 PID: 3837 Comm: kworker/u8:11 Not tainted 6.16.0-rc3-syzkaller-00044-g7595b66ae9de #0 PREEMPT(undef) [ 526.976054][ T3837] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 526.986578][ T3837] Workqueue: events_unbound flush_to_ldisc [ 526.992656][ T3837] ===================================================== [ 526.999906][ T3837] Disabling lock debugging due to kernel taint [ 527.006342][ T3837] Kernel panic - not syncing: kmsan.panic set ... [ 527.012954][ T3837] CPU: 1 UID: 0 PID: 3837 Comm: kworker/u8:11 Tainted: G B 6.16.0-rc3-syzkaller-00044-g7595b66ae9de #0 PREEMPT(undef) [ 527.027137][ T3837] Tainted: [B]=BAD_PAGE [ 527.031459][ T3837] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 527.041755][ T3837] Workqueue: events_unbound flush_to_ldisc [ 527.047821][ T3837] Call Trace: [ 527.051287][ T3837] [ 527.054376][ T3837] __dump_stack+0x26/0x30 [ 527.058995][ T3837] dump_stack_lvl+0x53/0x270 [ 527.063861][ T3837] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 527.069986][ T3837] dump_stack+0x1e/0x25 [ 527.074389][ T3837] panic+0x4bd/0xd50 [ 527.078653][ T3837] kmsan_report+0x31c/0x320 [ 527.083442][ T3837] ? __msan_warning+0x1b/0x30 [ 527.088371][ T3837] ? n_tty_receive_buf_standard+0xafd/0x98a0 [ 527.094632][ T3837] ? n_tty_receive_buf_common+0x1a68/0x2540 [ 527.100794][ T3837] ? n_tty_receive_buf2+0x4c/0x60 [ 527.106054][ T3837] ? tty_ldisc_receive_buf+0xc6/0x2c0 [ 527.111734][ T3837] ? tty_port_default_receive_buf+0xd7/0x1a0 [ 527.117976][ T3837] ? flush_to_ldisc+0x49d/0xf00 [ 527.123035][ T3837] ? process_scheduled_works+0xb91/0x1d80 [ 527.129033][ T3837] ? worker_thread+0xedf/0x1590 [ 527.134169][ T3837] ? kthread+0xd5c/0xf00 [ 527.138625][ T3837] ? ret_from_fork+0x1e3/0x310 [ 527.143628][ T3837] ? ret_from_fork_asm+0x1a/0x30 [ 527.148867][ T3837] ? ret_from_fork_asm+0x1a/0x30 [ 527.154085][ T3837] ? stack_depot_save_flags+0x35/0x7b0 [ 527.159823][ T3837] ? kmsan_get_metadata+0xfb/0x160 [ 527.165233][ T3837] ? kmsan_get_metadata+0x150/0x160 [ 527.170728][ T3837] ? kmsan_internal_set_shadow_origin+0x79/0x110 [ 527.177337][ T3837] ? kmsan_get_metadata+0x150/0x160 [ 527.182817][ T3837] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 527.188902][ T3837] ? n_tty_receive_char+0xfae/0x1440 [ 527.194427][ T3837] ? kmsan_get_metadata+0xfb/0x160 [ 527.199850][ T3837] __msan_warning+0x1b/0x30 [ 527.204605][ T3837] n_tty_receive_buf_standard+0xafd/0x98a0 [ 527.210698][ T3837] ? update_misfit_status+0x32/0xaa0 [ 527.216232][ T3837] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 527.222348][ T3837] ? kmsan_internal_set_shadow_origin+0x79/0x110 [ 527.228953][ T3837] n_tty_receive_buf_common+0x1a68/0x2540 [ 527.235041][ T3837] n_tty_receive_buf2+0x4c/0x60 [ 527.240106][ T3837] ? __pfx_n_tty_receive_buf2+0x10/0x10 [ 527.245874][ T3837] tty_ldisc_receive_buf+0xc6/0x2c0 [ 527.251310][ T3837] tty_port_default_receive_buf+0xd7/0x1a0 [ 527.257320][ T3837] flush_to_ldisc+0x49d/0xf00 [ 527.262200][ T3837] ? __pfx_tty_port_default_receive_buf+0x10/0x10 [ 527.268833][ T3837] ? __pfx_flush_to_ldisc+0x10/0x10 [ 527.274206][ T3837] process_scheduled_works+0xb91/0x1d80 [ 527.280017][ T3837] worker_thread+0xedf/0x1590 [ 527.284929][ T3837] kthread+0xd5c/0xf00 [ 527.289152][ T3837] ? __pfx_worker_thread+0x10/0x10 [ 527.294492][ T3837] ? __pfx_kthread+0x10/0x10 [ 527.299302][ T3837] ret_from_fork+0x1e3/0x310 [ 527.304062][ T3837] ? __pfx_kthread+0x10/0x10 [ 527.308831][ T3837] ret_from_fork_asm+0x1a/0x30 [ 527.313811][ T3837] [ 527.317299][ T3837] Kernel Offset: disabled [ 527.321732][ T3837] Rebooting in 86400 seconds..