last executing test programs: 10m8.620465739s ago: executing program 32 (id=408): r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000140), 0x2, 0x0) write$uinput_user_dev(r0, &(0x7f0000000a80)={'syz1\x00', {}, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x5, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x9b, 0x0, 0x0, 0x246f, 0x1000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff], [0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x3, 0x0, 0x0, 0x400, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x400, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x2], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, 0x4, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x401, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa, 0x0, 0x0, 0x40000], [0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0xfffffffd, 0x10, 0x0, 0x800, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, 0x8, 0x0, 0x2000000, 0x0, 0x0, 0xfffffffe, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x80, 0x0, 0x0, 0x3]}, 0x45c) ioctl$UI_SET_EVBIT(r0, 0x40045564, 0x800000000000015) ioctl$UI_DEV_CREATE(r0, 0x5501) 7m36.488209698s ago: executing program 33 (id=916): mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1) r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(r0, 0x89f3, &(0x7f0000006100)={'gre0\x00', &(0x7f0000000300)={'erspan0\x00', 0x0, 0xa0, 0x8, 0x5, 0x8fe2, {{0x5, 0x4, 0x1, 0x0, 0x14, 0x68, 0x0, 0x10, 0x29, 0x0, @initdev={0xac, 0x1e, 0x1, 0x0}, @remote}}}}) 6m33.936982211s ago: executing program 34 (id=1123): r0 = socket$packet(0x11, 0x3, 0x300) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000080)={'bridge_slave_0\x00', 0x0}) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r2, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000000c0)=@bridge_dellink={0x3c, 0x13, 0x1, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x1c, 0x1a, 0x0, 0x1, [@AF_INET={0x18, 0x5, 0x0, 0x1, {0x14, 0x5, 0x0, 0x1, [{0x8, 0x2}, {0x8, 0x1}]}}]}]}, 0x3c}}, 0x0) 5m58.068178497s ago: executing program 35 (id=1268): r0 = io_uring_setup(0x7daf, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, 0x4000000}) r1 = epoll_create1(0x80000) epoll_pwait2(r1, &(0x7f00000002c0)=[{}], 0x1, 0x0, &(0x7f0000000340), 0x8) close_range(r0, 0xffffffffffffffff, 0x0) 5m51.193372177s ago: executing program 4 (id=1303): r0 = openat$audio(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$SNDCTL_DSP_SETFRAGMENT(r0, 0xc004500a, &(0x7f0000000240)=0x3) ioctl$SNDCTL_DSP_SPEED(r0, 0xc0045002, &(0x7f00000000c0)) read$dsp(r0, &(0x7f0000000300)=""/79, 0x4f) 5m50.153895869s ago: executing program 4 (id=1307): r0 = socket$can_j1939(0x1d, 0x2, 0x7) ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000000)={'vcan0\x00', 0x0}) bind$can_j1939(r0, &(0x7f00000000c0)={0x1d, r1}, 0x18) connect$can_j1939(r0, &(0x7f0000000140)={0x1d, r1, 0x0, {0x1, 0xff, 0xa8fe8ad4eea2351f}, 0x2}, 0x18) 5m49.280258228s ago: executing program 4 (id=1310): syz_fuse_handle_req(0xffffffffffffffff, &(0x7f00000021c0)="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", 0x2000, 0x0) r0 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0) read$FUSE(r0, &(0x7f0000000140)={0x2020, 0x0, 0x0}, 0x2020) write$FUSE_DIRENT(r0, &(0x7f0000002580)=ANY=[@ANYBLOB="e001000000000000", @ANYRES64=r1, @ANYBLOB='\a\x00\x00\x00'], 0x1e0) 5m48.461493579s ago: executing program 4 (id=1314): mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0) mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f00000001c0)='./file0/../file0\x00', 0x0, 0x101091, 0x0) mount$bind(&(0x7f0000000040)='./file0/file0\x00', &(0x7f0000000340)='./file0/file0\x00', 0x0, 0x89100a, 0x0) umount2(&(0x7f0000000240)='./file0\x00', 0x1) 5m47.29810725s ago: executing program 4 (id=1317): socket(0xa, 0x3, 0x3a) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @empty}, 0x1c) syz_emit_ethernet(0x6e, &(0x7f0000000340)={@multicast, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x1}, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "02adf7", 0x38, 0x3a, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @mcast2, {[], @time_exceed={0x2, 0x0, 0x0, 0x0, '\x00', {0x0, 0x6, "fd9063", 0x0, 0x3a, 0xff, @loopback, @loopback, [], "1e520b4c951ee12e"}}}}}}}, 0x0) 5m46.566045814s ago: executing program 4 (id=1319): r0 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nl80211(&(0x7f0000000140), r0) sendmsg$nl_generic(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB="18000000240001030000000000000000010000000400ae"], 0x18}, 0x1, 0x0, 0x0, 0x8001}, 0x4000) recvmmsg(r0, &(0x7f0000004140)=[{{0x0, 0x0, 0x0}, 0x8101}, {{0x0, 0x0, &(0x7f0000001580)=[{&(0x7f0000000340)=""/250, 0xfa}, {&(0x7f0000000080)=""/31, 0x1f}, {&(0x7f0000000240)=""/131, 0x83}, {&(0x7f0000000440)=""/167, 0xa7}, {&(0x7f0000000500)=""/4096, 0x1000}, {&(0x7f00000000c0)=""/85, 0x55}, {&(0x7f0000001500)=""/125, 0x7d}], 0x7}, 0x80000000}, {{0x0, 0x0, 0x0}, 0x8}, {{0x0, 0x0, 0x0}, 0x10000}], 0x4, 0xa0, 0x0) 5m43.928105118s ago: executing program 36 (id=1319): r0 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nl80211(&(0x7f0000000140), r0) sendmsg$nl_generic(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB="18000000240001030000000000000000010000000400ae"], 0x18}, 0x1, 0x0, 0x0, 0x8001}, 0x4000) recvmmsg(r0, &(0x7f0000004140)=[{{0x0, 0x0, 0x0}, 0x8101}, {{0x0, 0x0, &(0x7f0000001580)=[{&(0x7f0000000340)=""/250, 0xfa}, {&(0x7f0000000080)=""/31, 0x1f}, {&(0x7f0000000240)=""/131, 0x83}, {&(0x7f0000000440)=""/167, 0xa7}, {&(0x7f0000000500)=""/4096, 0x1000}, {&(0x7f00000000c0)=""/85, 0x55}, {&(0x7f0000001500)=""/125, 0x7d}], 0x7}, 0x80000000}, {{0x0, 0x0, 0x0}, 0x8}, {{0x0, 0x0, 0x0}, 0x10000}], 0x4, 0xa0, 0x0) 4m28.268286772s ago: executing program 1 (id=1598): r0 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000003c0)={'wlan0\x00', 0x0}) r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000280), 0xffffffffffffffff) sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000000c0)={0x68, r2, 0x1, 0x70bd66, 0x0, {{}, {@val={0x8, 0x3, r1}, @void}}, [@NL80211_ATTR_FRAME={0x4c, 0x33, @action={{{0x0, 0x0, 0xd, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1}, {0x4}, @device_b, @broadcast, @initial, {0x3, 0x5d3}, @value=@ver_80211n={0x0, 0x2, 0x1, 0x2, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1}}, @sp_mp_confirm={0xf, 0x2, {0x2421, @default, {}, @val={0x72, 0x6}, @val={0x2d, 0x1a, {0xc000, 0x2, 0x0, 0x0, {0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x3}, 0x8, 0x5, 0xde}}}}}}]}, 0x68}, 0x1, 0x0, 0x0, 0xc0}, 0x0) 4m27.177261012s ago: executing program 1 (id=1603): sendmsg$IPCTNL_MSG_CT_NEW(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000002c0)={0x44, 0x0, 0x1, 0x401, 0x0, 0x0, {0xa}, [@CTA_TUPLE_ORIG={0x30, 0x1, 0x0, 0x1, [@CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @local}, {0x14, 0x4, @mcast1}}}]}]}, 0x44}}, 0x0) syz_usb_connect$hid(0x0, 0x36, &(0x7f00000002c0)=ANY=[@ANYBLOB="12010000000000108117980800000000000109022400010000000009040000020308000009210000010122290a09058103"], 0x0) close(0x3) syz_open_dev$evdev(&(0x7f0000000080), 0xe, 0x0) 4m24.132953763s ago: executing program 1 (id=1614): r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket$inet6_udp(0xa, 0x2, 0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000040)={'lo\x00', 0x0}) sendmsg$nl_route_sched(r0, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)=@gettfilter={0x24, 0x2e, 0x301, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {0x0, 0xf}, {}, {0xfff1}}}, 0x24}, 0x1, 0x0, 0x0, 0xc6e9f356b312f3bb}, 0x0) 4m22.977636108s ago: executing program 1 (id=1620): syz_mount_image$udf(&(0x7f0000000f00), &(0x7f0000000080)='./file1\x00', 0x2008000, &(0x7f00000002c0)=ANY=[@ANYBLOB="696f636861727365743d6370313235302c6e6f6164696e6963622c6e6f6164696e6963622c73686f727461642c7569643d666f726765742c6769643d666f726765742c6769643d69676e6f72652c6e6f6164696e6963622c766f6c756d653d30303030303030303030303030303030303030322c00508d5c6fd14a140518c2f8949ec502a29ec1c3795fd47c03a3a72c97984a3502b51d8bfa33ab6090f2e4dc00fe8ed0b41f905b98973a0ca9e4c5eea9e8f394f5f12b6f8f8f86dda2c5d5dd18d0075da59034af306372c1b6cf04e02375a1f7ce9a910a4fc47c7e3a34fd"], 0x2, 0xc40, &(0x7f0000002740)="$eJzs3U9sHNd9B/DfG+2KK7utmNhRnDQuNm2Ryorl6l9MxSrsVU2zDSDLQijmFoArkVIXpkiCpBrZSAumlx56CFAUPeREoDUKpGhgNEXQI9O6QHLxocipJ6KFjaDogS0C5BSwmNm34ooiLUYUKcr6fGzquzvz3ux789YzsqA3LwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACAiN9/7fyJk+lhtwIA2EsXR7964pT7PwA8Vi77/38AAAAAAAAAAAAAANjvUhTxVKSYvbiaxqv3XY0LnfrNW2PDI5tXO5Sqmgeq8uVP4+Sp02e+9OLQ2V5e6Ex/RP0H7bPxxujl881XZ27Mzk3Oz09ONMemO1dnJia3fYSd1t/oWHUCmjfevDlx7dp889QLp+/YfWvww4EnjwyeG3ru+LO9smPDIyOj60Ua/eVr992Qrq1meByMIo5Hiue/99PUjogidn4uGns79hsdqjpxrOrE2PBI1ZGpTnt6odx5qXciiohmX6VW7xxtPhZRq+9pH7bWilgsm182+FjZvdHZ9lz7ytRk81J7bqGz0JmZvpS6rS3704wizqaIpYhYGbj7cPUoohYpvnN4NV2JiAO98/DFamLw1u0odrGP21C2s1mPWCoegTHbxwaiiNcjxc/eOxpX83WmutZ8IeL1Mn8Q8U6ZL0ek8otxJuKDTb5HPJpqUcRflON/bjVNVNeD3nXlwteaX5m+NtNXtndd+SXvD3ddKR7S/eHQhtwb+/za1Igi2tUVfzXd/292AAAAAAAAAAAAAAAAAHjQDkURn4kUr/37H1fziqOal3743NAfDP5q/5zxZ+5xnLLsCxGxWGxvTu7BPDHwUrqU0kOeS/w4a0QRf5Ln/33rYTcGAAAAAAAAAAAAAAAAAADgsVbETyLFS+8fTUvRv6Z4Z/p683L7ylR3Vdje2r+9NdPX1tbWmqmbrZzjORdzLuVczrmSM4pcP2cr53jOxZxLOZdzruSMA7l+zlbO8ZyLOZdyLudcyRm1nF2Lrfx+POdizqWcyzlXevX2ydq9AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAfJ0UU8YtI8e1vrKZIEdGKGI9uLg887NYBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAKWBVMT3I0XzD1u3t9UiIlX/dh0tfzkTrYNlfjJaQ2W+HK3zOdtV1lrfegjtZ2fqqYgfR4qBxru3BzyPf7377vbXIN755vq7z9a6eaC3c/DDgSePHD43NPIbz2z1Om3WgGMXOtM3bzXHhkdGRvs21/Knf7Jv22D+3OLBdJ2ImH/r7TfbU1OTc/f/ovwK7KD6I/Qi1e7u6SuPSd8fyxdR2xfNuP2isZd95zFQ3v8/iBS/+/5/9G743ft/I36l++72HT5+/qfr9/+XNh5om/f/2sZ6+f5f3tM3u/8/1bftpfy7kXotorFwY7Z+JKIx/9bbxzs32tcnr09Onzlx4stDQ18+faJ+MKJxrTM12ffqgZwuAAAAAAAAAAAAAAAAgL2TinglUrR/vJqaEXGrmq81eG7ouePPHogD1XyrO+ZtvzF6+Xzz1Zkbs3OT8/OTE82x6c7VmYnJ7X5co5ruNTY8siuduadDu9z+Q41XZ2bfmutc/6OFTfc/0Th/ZX5hrn11891xKIqIVv+WY1WDx4ZHqkZPddrTVdVLm06m/+XVUxH/GSmunmmmz+dtef7/xhn+d8z/X9x4oF2a//+Jvm3lZ6ZUxM8jxe/85TPx+aqdT8Rd5yyX+9tIcezs53K5OFiW67Wh+1yB7szAsuz/Rop//MWdZXvzIZ9aL3ty2yf2EVGO/+FI8f0//278Zt525/MfNh//JzYeaJfG/+m+bU/c8byCHXedPP7HI8XLT70bv5W3fdTzP3rP3jiaC99+Psc9xr++8T7Sc4/x/1TftsH8ub/9YLoOAAAAAAAAAADwSKunIv4uUvxwpJZezNu28/f/JjYeaJf+/t+n+7ZNPJj1iu75YscnFQAAAAD2iXoq4ieR4vrCu7fnUN85/7tv/ufvrc//HE4b9lZ/zvdr1XMDHuSf//UbzJ87vvNuAwAAAAAAAAAAAAAAAAAAwL6SUhEv5vXUx6v5/BNbrqe+HCle++/nc7l0pCzXWwd+sPq1cXFm+vj5qamZq+2F9pWpyebobPvqZFn36Uix+jefy3WLan313nrz3TXe19din4sUI3/fK9tdi723NvnT62VPlmU/ESn+6x/uLNtbx/pT62VPlWX/OlJ8/Z83L3tkvezpsux3I8WPvt7slX2iLNt7Puqn18u+cHWm2IVRAQAAAAAAAAAAAAAAAAAA4HFTT0X8WaT4nxtLt+fy5/X/631vK+98s2+9/w1uVev8D1br/2/1+n7W/6+eK7C41acCAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMDHU4oi3o4UsxdX0/JA+b6rcaEzffPW2PDI5tUOparmgap8+dM4eer0mS+9OHS2lx9d/0H7TLwxevl889WZG7Nzk/PzkxPNsenO1ZmJyW0fYaf1NzpWnYDmjTdvTly7Nt889cLpavPBvPvW4IcDTx4ZPDf03PFne2XHhkdGRvsOUavf96ffJW2x/WAU8VeR4vnv/TT9cCCiiJ2fi3t8d3bboaoTx6pOjA2PVB2Z6rSnF8qdl3onooho9lVq9c7RHozFjrQiFsvmlw0+VnZvdLY9174yNdm81J5b6Cx0ZqYvpW5ry/40o4izKWIpIlYG7j5cPYp4M1J85/Bq+peBiAO98/DFi6NfPXFq63YUu9jHbSjb2axHLBWPwJjtYwNRxD9Fip+9dzT+dSCiFt2f+ELE62X+IOKd6I53Kr8YZyI+2OR7xKOpFkX8Xzn+51bTewPl9aB3XbnwteZXpq/N9JXtXVce+fvDXtr62vTKnrZjC40o4kfVFX81/Zv/rgEAAAAAAAAAAAAAAAD2kSJ+PVK89P7RVM0PznOKn857r0x1p/X15v715kyvra2tNVM3WznHcy7mXMq5nHMlZxS5fs5WmY21tfH8fjHnUs7lnCs540Cun7OVczznYs6lnMs5V3JGLdfP2co5nnMx51LO5ZwrOcO8YgAAAAAAAAAAAAAAAAAAYBcU1T8pvv2N1bQ20F1fejy6uWw90I+9/w8AAP//2lDw2g==") mount$overlay(0x0, &(0x7f0000000480)='./file0\x00', &(0x7f0000000380), 0x0, &(0x7f0000000000)={[{@lowerdir={'lowerdir', 0x3d, './file0'}, 0x3a}], [], 0x2f}) r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x0, 0x1c0) getdents(r0, 0x0, 0x58) 4m20.794194024s ago: executing program 1 (id=1630): sendmsg$TIPC_NL_KEY_SET(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16, @ANYBLOB="0100000000000000000017000000440006"], 0x58}, 0x1, 0x0, 0x0, 0x4}, 0x4000004) r0 = socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_inet_SIOCSIFPFLAGS(0xffffffffffffffff, 0x8934, &(0x7f0000000040)={'virt_wifi0\x00', 0x7}) ioctl(r0, 0x8b32, &(0x7f0000000040)) 4m19.888483277s ago: executing program 7 (id=1635): r0 = socket(0x2, 0x3, 0xff) bind$inet(r0, &(0x7f0000000080)={0x2, 0x0, @local}, 0x10) connect$inet(r0, &(0x7f00000000c0)={0x2, 0x0, @multicast1}, 0x10) sendmmsg$unix(r0, &(0x7f0000002fc0)=[{{0x0, 0x0, &(0x7f0000000640)=[{&(0x7f00000005c0)="18fcae977278aeffab01b11015896dd2979391ede335535b8440ca4f71a0665a", 0x20}], 0x1}}, {{0x0, 0x0, &(0x7f0000000a00)=[{&(0x7f0000000500)="7dcc2c9d4eaf588822e6a9cc8eec13d9754bb76c", 0x14}], 0x20}}], 0x2, 0x0) 4m19.150134542s ago: executing program 1 (id=1638): r0 = msgget$private(0x0, 0x0) msgrcv(r0, 0x0, 0x0, 0x1, 0x0) msgrcv(r0, 0x0, 0x0, 0xda72ed5a9dc29567, 0x2000) msgsnd(r0, &(0x7f0000000000)={0x3}, 0x8, 0x800) 4m19.147530285s ago: executing program 7 (id=1640): socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) sendmmsg$unix(r0, &(0x7f0000004680)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f00000005c0)=[@rights={{0x10, 0x1, 0x1, [r0]}}], 0x10, 0x20000000}}], 0x1, 0x20000010) r1 = socket$unix(0x1, 0x1, 0x0) connect$unix(r1, &(0x7f0000000080)=@file={0x1, './file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa'}, 0x6e) 4m16.723981817s ago: executing program 37 (id=1638): r0 = msgget$private(0x0, 0x0) msgrcv(r0, 0x0, 0x0, 0x1, 0x0) msgrcv(r0, 0x0, 0x0, 0xda72ed5a9dc29567, 0x2000) msgsnd(r0, &(0x7f0000000000)={0x3}, 0x8, 0x800) 4m16.706814251s ago: executing program 7 (id=1642): sendmsg$WG_CMD_SET_DEVICE(0xffffffffffffffff, &(0x7f0000001000)={0x0, 0x0, &(0x7f0000000fc0)={&(0x7f0000000740)=ANY=[@ANYBLOB="980000000a529fa31cb2bf78a624c16e99bbc28c0425521b83ecd2e04b0b3e11bcc00d6cd8998c042b53000c36054793251b1008", @ANYRES16, @ANYBLOB="010000000000000000000100000068000880640000803c0009801c0000800600010002000000080002007f00000105000300030000001c000080060001"], 0x98}, 0x1, 0x0, 0x0, 0x4084}, 0x20008040) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$netlbl_cipso(&(0x7f00000002c0), r0) sendmsg$NLBL_CIPSOV4_C_ADD(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000740)=ANY=[@ANYBLOB="50020000", @ANYRES16=r1, @ANYBLOB="0100000000000000000001000000080001000000000004000480080002000100000010000c7d0c000b8008000a00b4ed000004000880c8000c802400e73608000900f36aad4208000a156878badf10076800d5441e0f080009002bd49f3b0c0000"], 0x250}}, 0x0) 4m15.762310651s ago: executing program 7 (id=1647): syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x200000, &(0x7f00000000c0)={[{@noinit_itable}, {@dax_inode}, {@nolazytime}, {@abort}, {@dax_inode}, {@lazytime}, {@noload}, {}, {@noauto_da_alloc}]}, 0xfe, 0x558, &(0x7f0000000c00)="$eJzs3U1rG0cfAPD/ynbenOeJAyG0PRRDDk1JI8d2X1LoIT2WNjTQ3lNhb0ywHAVLDrEbaHJoLr2UUCilgdIP0HuPoV+gnyLQBkIJpj30orLyylFsyZZtpVaq3w82mdldaXY0+x/PaCQUwMAaz/4pRLwcEV8nEcdajg1HfnB87bzVJ7dmsi2Jev2TP5JI8n3N85P8/9E881JE/PJlxJnC5nKryyvzpXI5XczzE7WF6xPV5ZWzVxdKc+lcem1qevr8W9NT777zds/q+vqlv777+MEH5786tfrtT4+O30viQhzNj7XWYw9ut2bGYzx/TUbiwoYTJ3tQWD9J9vsC2JWhPM5HIusDjsVQHvXAf98XEVEHBlQi/mFANccBzbl9j+bBL4zH769NgDbXf3jtvZE41JgbHVlNnpkZZfPdsR6Un5Xx8+/372Vb9O59CIBt3b4TEeeGhzf3f0ne/+3euS7O2VjGDvu/+g4vCWjxIBv/vNFu/FNYH/9Em/HPaJvY3Y3t47/wqAfFdJSN/95rO/5dX7QaG8pz/2uM+UaSK1fLada3/T8iTsfIwSy/1XrO+dWHHfup1vFftmXlN8eC+XU8Gj747GNmS7XSXurc6vGdiFfajn+T9fZP2rR/9npc6rKMk+n9Vzsd277+z1f9x4jX2rb/0xWtZOv1yYnG/TDRvCs2+/PuyV87lb/f9c/a/8jW9R9LWtdrqzsv44dDf6edju32/j+QfNpIH8j33SzVaouTEQeSjzbvn3r62Ga+eX5W/9Ontu7/2t3/hyPisy7rf/fE3Y6n9kP7z+6o/XeeePjh5993Kr+79n+zkTqd7+mm/+v2Avfy2gEAAAAAAEC/KUTE0UgKxfV0oVAsrn2+40QcKZQr1dqZK5Wla7PR+K7sWIwUmivdoy2fh5jMPw/bzE9tyE9HxPGI+GbocCNfnKmUZ/e78gAAAAAAAAAAAAAAAAAAANAnRjt8/z/z29B+Xx3w3PnJbxhc28Z/L37pCehL/v7D4BL/MLjEPwwu8Q+DS/zD4BL/MLjEPwwu8Q8AAAAAAAAAAAAAAAAAAAAAAAAAAAA9denixWyrrz65NZPlZ28sL81XbpydTavzxYWlmeJMZfF6ca5SmSunxZnKwnbPV65Urk9OxdLNiVparU1Ul1cuL1SWrtUuX10ozaWX05F/pVYAAAAAAAAAAAAAAAAAAADwYqkur8yXyuV0UUJiV4nh/rgMibVEM7D3/IT72y8BAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAQKt/AgAA//+jgjYy") mount$overlay(0x0, &(0x7f00000003c0)='./file0\x00', &(0x7f0000000380), 0x0, &(0x7f00000002c0)={[{@workdir={'workdir', 0x3d, './file1'}}, {@upperdir={'upperdir', 0x3d, './file0'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}], [], 0x2c}) mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000040), 0x1204001, &(0x7f00000011c0)={[{@lowerdir={'lowerdir', 0x3d, '.'}, 0x3a}], [], 0x2f}) open(&(0x7f0000000880)='./file0/file0\x00', 0x20400, 0x14) 4m14.475166033s ago: executing program 3 (id=1651): r0 = socket$unix(0x1, 0x1, 0x0) setsockopt$sock_int(r0, 0x1, 0x10, &(0x7f0000000000)=0x2, 0x4) connect$unix(r0, &(0x7f00000004c0)=@file={0x1, './file0\x00'}, 0x6e) connect$unix(r0, &(0x7f0000000300)=@file={0x1, './file0\x00'}, 0x6e) 4m13.89749375s ago: executing program 7 (id=1652): syz_io_uring_setup(0x110, &(0x7f0000000140)={0x0, 0xfad6, 0x0, 0x0, 0x40}, 0x0, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000400), r0) sendmsg$ETHTOOL_MSG_CHANNELS_GET(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f0000000180)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010326bd6000000000002d9300000c000180080001"], 0x20}, 0x1, 0x0, 0x0, 0x10}, 0x20040814) 4m13.811698512s ago: executing program 3 (id=1653): r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000001000), 0x0, 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x6, 0x12, r0, 0x0) r1 = socket$xdp(0x2c, 0x3, 0x0) setsockopt$XDP_UMEM_REG(r1, 0x11b, 0x4, &(0x7f00000000c0)={&(0x7f0000000000)=""/74, 0x328000, 0x1000}, 0x1c) 4m11.650108472s ago: executing program 3 (id=1656): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0xb, &(0x7f0000000a00)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x22, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x44) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000040)='percpu_alloc_percpu\x00', r0}, 0x10) bpf$ENABLE_STATS(0x20, 0x0, 0x0) bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xd, 0x4, &(0x7f0000000300)=ANY=[@ANYBLOB="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"], &(0x7f0000003ff6)='GPL\x00', 0x5, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sock_ops, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48) 4m11.196718479s ago: executing program 7 (id=1658): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000280), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000400)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_TRIGGER_SCAN(r0, &(0x7f0000000e80)={0x0, 0x0, &(0x7f0000000e40)={&(0x7f00000000c0)={0x30, r1, 0x1, 0x70bd29, 0x25dfdbfd, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_SCAN_FLAGS={0x8, 0x9e, 0x1808}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}]}, 0x30}, 0x1, 0x0, 0x0, 0x4090}, 0x40000) 4m8.329992411s ago: executing program 38 (id=1658): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000280), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000400)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_TRIGGER_SCAN(r0, &(0x7f0000000e80)={0x0, 0x0, &(0x7f0000000e40)={&(0x7f00000000c0)={0x30, r1, 0x1, 0x70bd29, 0x25dfdbfd, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_SCAN_FLAGS={0x8, 0x9e, 0x1808}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}]}, 0x30}, 0x1, 0x0, 0x0, 0x4090}, 0x40000) 4m8.298516729s ago: executing program 3 (id=1662): syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x200000, &(0x7f00000000c0)={[{@noinit_itable}, {@dax_inode}, {@nolazytime}, {@abort}, {@dax_inode}, {@lazytime}, {@noload}, {}, {@noauto_da_alloc}]}, 0xfe, 0x558, &(0x7f0000000c00)="$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") mount$overlay(0x0, &(0x7f00000003c0)='./file0\x00', &(0x7f0000000380), 0x0, &(0x7f00000002c0)={[{@workdir={'workdir', 0x3d, './file1'}}, {@upperdir={'upperdir', 0x3d, './file0'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}], [], 0x2c}) mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000040), 0x1204001, &(0x7f00000011c0)={[{@lowerdir={'lowerdir', 0x3d, '.'}, 0x3a}], [], 0x2f}) open(&(0x7f0000000880)='./file0/file0\x00', 0x20400, 0x14) 4m6.748614708s ago: executing program 3 (id=1666): r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000300), 0x802, 0x0) ioctl$UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000280)={{0x1009, 0xfffd}, 'syz0\x00', 0x2a}) ioctl$UI_DEV_CREATE(r0, 0x5501) ioctl$UI_DEV_DESTROY(r0, 0x5502) 4m5.107441318s ago: executing program 3 (id=1671): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000740)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000007d00000095"], &(0x7f0000000100)='GPL\x00', 0x1, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kfree\x00', r0}, 0x10) r1 = add_key$keyring(&(0x7f0000000540), &(0x7f0000000180)={'syz', 0x2}, 0x0, 0x0, 0xffffffffffffffff) keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, r1, 0x0, 0x0) 4m2.974716199s ago: executing program 39 (id=1671): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000740)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000007d00000095"], &(0x7f0000000100)='GPL\x00', 0x1, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kfree\x00', r0}, 0x10) r1 = add_key$keyring(&(0x7f0000000540), &(0x7f0000000180)={'syz', 0x2}, 0x0, 0x0, 0xffffffffffffffff) keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, r1, 0x0, 0x0) 2m29.352434734s ago: executing program 2 (id=2068): syz_mount_image$exfat(&(0x7f0000000000), &(0x7f0000000080)='./file2\x00', 0x1000000, &(0x7f0000000580)=ANY=[], 0x1, 0x1505, &(0x7f0000002c80)="$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") setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x8, &(0x7f0000000040)=0x7c, 0x4) mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5) openat$adsp1(0xffffffffffffff9c, &(0x7f0000000040), 0xa0201, 0x0) 2m27.459506596s ago: executing program 2 (id=2073): r0 = socket$inet6_sctp(0xa, 0x1, 0x84) connect$inet6(r0, &(0x7f0000000100)={0xa, 0x0, 0x0, @private1, 0x200000}, 0x1c) shutdown(r0, 0x1) setsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r0, 0x84, 0x1f, &(0x7f0000000340)={0x0, @in={{0x2, 0x4e20, @empty}}, 0xe, 0x7d}, 0x90) 2m26.707930539s ago: executing program 2 (id=2077): syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x0, &(0x7f00000000c0)={[{@grpid}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x10000}}, {@quota}, {@grpjquota}]}, 0x1, 0x514, &(0x7f0000000ac0)="$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") r0 = openat(0xffffffffffffff9c, &(0x7f0000000240)='.\x00', 0x0, 0x0) ioctl$FS_IOC_REMOVE_ENCRYPTION_KEY(r0, 0x40086602, &(0x7f0000000080)={@desc={0x4000, 0x0, @desc3}}) ioctl$FS_IOC_REMOVE_ENCRYPTION_KEY(r0, 0x40086602, &(0x7f0000000080)={@desc={0x80000, 0x0, @desc1}}) 2m25.535809327s ago: executing program 2 (id=2083): syz_mount_image$ext4(&(0x7f0000000580)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x1008000, &(0x7f0000000040), 0x1, 0x5db, &(0x7f0000000680)="$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") mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000180), 0x0, &(0x7f00000000c0)={[{@lowerdir={'lowerdir', 0x3d, './file0'}, 0x3a}], [], 0x2f}) r0 = openat(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x0, 0x0) ioctl$FS_IOC_FSGETXATTR(r0, 0x801c581f, 0x0) 2m24.232605655s ago: executing program 2 (id=2091): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000850000000e00000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x31) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000680)={&(0x7f0000000140)='fib_table_lookup\x00', r0, 0x0, 0x417}, 0x18) r1 = socket$kcm(0x2, 0x1, 0x84) sendmsg$inet(r1, &(0x7f0000000680)={&(0x7f0000000000)={0x2, 0x4e24, @rand_addr=0x64010102}, 0x10, &(0x7f0000000540)=[{&(0x7f0000000240)="f9", 0x1}], 0x1}, 0x4000080) 2m23.192470281s ago: executing program 2 (id=2095): mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x4) mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='configfs\x00', 0x0, 0x0) chroot(&(0x7f0000000000)='./file0/../file0\x00') pivot_root(&(0x7f00000001c0)='./file0\x00', &(0x7f00000000c0)='./file0\x00') 2m20.878930614s ago: executing program 40 (id=2095): mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x4) mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='configfs\x00', 0x0, 0x0) chroot(&(0x7f0000000000)='./file0/../file0\x00') pivot_root(&(0x7f00000001c0)='./file0\x00', &(0x7f00000000c0)='./file0\x00') 6.507441965s ago: executing program 0 (id=2729): r0 = socket$inet6(0xa, 0x2, 0x0) capset(&(0x7f0000000000)={0x20080522}, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x81, 0xffffffff}) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000040)={'sit0\x00', 0x0}) ioctl$sock_inet6_SIOCSIFDSTADDR(r0, 0x8918, &(0x7f0000000080)={@loopback={0x0, 0x3fc}, 0x0, r1}) 6.032121311s ago: executing program 8 (id=2731): openat$thread_pidfd(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) mmap(&(0x7f0000003000/0x2000)=nil, 0x2000, 0x0, 0x31, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00') getdents64(r0, &(0x7f0000002f40)=""/4098, 0x1002) 5.652516069s ago: executing program 0 (id=2734): syz_mount_image$hfsplus(&(0x7f0000000600), &(0x7f0000000200)='./file0\x00', 0xa00010, &(0x7f0000000840)=ANY=[@ANYBLOB='nodecompose,decompose,nobarrier,gid=', @ANYRESHEX=0xee01, @ANYBLOB="2c6e6c733d69736f383835392d310000000072726965722c00bcd0f0b5c4e2957974ff5d7ea3c3dcee087e4983684e8a4c4e4e87b134e30ce77162b12885b964b3506ff3eae0f3599447b17861d19be78079e5dd7bdc7f1eb36e31ac14de48349767164f5f6431bbdeaef96a4f2bce64b5cfa76ce3a2c4302374bc5535d7e2eb8dfb2e5d58a37b7e37836597c21f51bcdf6df4cad825cfd9ef5ee9e89e04b15cd3cea9e152d67b9a7eedc5dfe6d85a3ce7c342da8cc969b552197cb8bcc4a1009f38f4a85b7c742101ba5bc03115feca2b994c699812"], 0x6, 0x635, &(0x7f0000000c80)="$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") r0 = openat(0xffffffffffffff9c, &(0x7f0000000300)='./file1\x00', 0xc4042, 0x1ff) ioprio_set$uid(0x3, 0x0, 0x0) sendfile(r0, r0, 0x0, 0xfffe82) 5.17278473s ago: executing program 8 (id=2736): r0 = open(&(0x7f0000000080)='./file1\x00', 0x64842, 0x86) r1 = syz_io_uring_setup(0x1f87, &(0x7f0000000180)={0x0, 0x8404, 0x13580}, &(0x7f0000000100)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_RECV=@use_registered_buffer={0x1b, 0x20, 0x13, r0, 0x0, 0x0, 0x0, 0x2001, 0x1, {0x24}}) io_uring_enter(r1, 0xe85, 0xf8a1, 0x0, 0x0, 0x0) 4.637506582s ago: executing program 0 (id=2738): r0 = socket$inet6(0xa, 0x1, 0x0) r1 = dup2(r0, r0) ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r0, 0x8933, &(0x7f0000000080)={'batadv_slave_1\x00', 0x0}) ioctl$sock_inet6_SIOCDELRT(r1, 0x890c, &(0x7f0000000640)={@remote, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, @dev={0xfe, 0x80, '\x00', 0x21}, 0x40000, 0x40, 0xd, 0x0, 0xfffffffffffffffe, 0x4080048, r2}) 4.566566479s ago: executing program 9 (id=2739): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_MSRS(r2, 0xc008ae88, &(0x7f0000000340)=ANY=[@ANYBLOB="05000000000000e672000040"]) 4.272495232s ago: executing program 6 (id=2740): r0 = socket$inet6_tcp(0xa, 0x1, 0x0) close(r0) socket$inet6_mptcp(0xa, 0x1, 0x106) setsockopt$sock_int(r0, 0x1, 0x8, 0x0, 0x0) 4.139479444s ago: executing program 5 (id=2741): r0 = socket$inet6(0xa, 0x5, 0x0) setsockopt$inet_int(r0, 0x0, 0xf, &(0x7f0000000340)=0xfffffffffffffff9, 0x4) setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000100)=[@in={0x2, 0x4e23, @local}, @in={0x2, 0x0, @broadcast}], 0x20) sendmmsg$inet6(r0, &(0x7f0000002580)=[{{&(0x7f0000000080)={0xa, 0x8000, 0x0, @rand_addr=' \x01\x00'}, 0x1c, &(0x7f0000000640)=[{&(0x7f0000000380)="d0", 0x1}], 0x1}}], 0x1, 0x4000040) 4.137316961s ago: executing program 8 (id=2742): capset(&(0x7f0000000700)={0x19980330}, &(0x7f00000006c0)={0x200000, 0x200000}) r0 = openat$ttyprintk(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000080)=0x19) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000280)=0x15) 3.776386645s ago: executing program 0 (id=2743): openat$misdntimer(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r0 = syz_io_uring_setup(0x1e1e, &(0x7f0000000280)={0x0, 0x86f7, 0x10100}, &(0x7f0000002000)=0x0, &(0x7f0000000000)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000180)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd_index=0x3, 0xb, 0x0, 0x0, 0x22}) io_uring_enter(r0, 0x48e9, 0x0, 0x2, 0x0, 0x0) 3.449419961s ago: executing program 6 (id=2744): r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000007b00000000000000000000850000007b00000095"], &(0x7f0000000140)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000480)={&(0x7f0000000080)='netlink_extack\x00', r1}, 0x10) sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=@newlink={0x48, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x50020}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @geneve={{0xb}, {0x18, 0x2, 0x0, 0x1, [@IFLA_GENEVE_REMOTE6={0x14, 0x7, @mcast1}]}}}]}, 0x48}}, 0x2000000) 3.305355019s ago: executing program 8 (id=2745): r0 = socket$inet6(0xa, 0x2, 0x0) bind$inet6(r0, &(0x7f0000f5dfe4)={0xa, 0x4e20, 0x20000000, @empty}, 0x1c) setsockopt$inet6_udp_encap(r0, 0x11, 0x64, &(0x7f0000000180)=0x2, 0x4) syz_emit_ethernet(0xbe, &(0x7f0000000040)={@local, @link_local, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0xb0, 0x0, 0x0, 0x0, 0x11, 0x0, @empty, @empty}, {0x0, 0x4e20, 0x9c, 0x0, @wg=@initiation={0x1, 0x2, "52091d2cc90efcd2dd2f628e111aa003c90b537618b1f79af1f34fdc2d5dc74b", "8e04ffaea02eb082832095465d7507f6bd21715ab8ca3c6e7bd9580020407486f154bd859cd6e473ecbbff466ffba584", "aa1e2a96771c34e2c075f6154022c4e832765bfc93ab3787d4bec9ee", {"9f715f8add951bc840f502e8d70f32d2", "540982584762141f899b9300f8a79895"}}}}}}}, 0x0) 3.231980891s ago: executing program 9 (id=2746): setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, &(0x7f0000000040)={@remote, 0xfffffffd, 0x0, 0xff, 0x2, 0x7, 0xe}, 0x20) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'wlan0\x00'}) r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) ioctl(r0, 0x8b32, &(0x7f0000000040)) 3.16058579s ago: executing program 5 (id=2747): mkdir(&(0x7f0000000100)='./file0\x00', 0x10) mount$binder(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x1000810, &(0x7f0000000000)={[{@stats}]}) chroot(&(0x7f0000000200)='./file0\x00') umount2(&(0x7f0000000000)='./file0\x00', 0x0) 2.991130841s ago: executing program 0 (id=2748): r0 = creat(&(0x7f0000000340)='./file0\x00', 0x14) close(r0) socket$alg(0x26, 0x5, 0x0) mount$9p_fd(0x0, &(0x7f0000000240)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f00000000c0)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r0}}) 2.661493008s ago: executing program 6 (id=2749): r0 = syz_open_dev$sndctrl(&(0x7f0000000040), 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(r0, 0xc0045516, &(0x7f0000000000)=0xffb) ioctl$SNDRV_CTL_IOCTL_ELEM_ADD(r0, 0xc1105517, &(0x7f0000000080)={{0x1009, 0x0, 0x0, 0x80, 'syz0\x00', 0x8}, 0x5, 0x0, 0x1, 0x0, 0x0, 0x8, 'syz1\x00', 0x0}) read(r0, &(0x7f0000001680)=""/4096, 0x1000) 2.490957146s ago: executing program 8 (id=2750): r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) r1 = getpgid(0x0) capset(&(0x7f0000000080)={0x20071026}, &(0x7f0000000040)) kcmp(r1, r0, 0x1, 0xffffffffffffffff, 0xffffffffffffffff) 2.411277193s ago: executing program 9 (id=2751): r0 = open(&(0x7f0000000080)='./file1\x00', 0x64842, 0x86) r1 = syz_io_uring_setup(0x1f87, &(0x7f0000000180)={0x0, 0x8404, 0x13580}, &(0x7f0000000100)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_RECV=@use_registered_buffer={0x1b, 0x20, 0x13, r0, 0x0, 0x0, 0x0, 0x2001, 0x1, {0x24}}) io_uring_enter(r1, 0xe85, 0xf8a1, 0x0, 0x0, 0x0) 2.408832459s ago: executing program 5 (id=2761): setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, &(0x7f0000000040)={@remote, 0xfffffffd, 0x0, 0xff, 0x2, 0x7, 0xe}, 0x20) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'wlan0\x00'}) r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) ioctl(r0, 0x8b32, &(0x7f0000000040)) 1.989892978s ago: executing program 6 (id=2752): r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket(0x10, 0x803, 0x0) getsockname$packet(r1, &(0x7f0000000140)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x28a) sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000500)={&(0x7f00000007c0)=ANY=[@ANYBLOB="8c000000100039042abd7000eaffffff000003e4", @ANYRES32=r2, @ANYBLOB="03000000c31006006c00128008000100736974006000028008000100", @ANYRES32, @ANYBLOB="08000300ac1414bb0500040080000000060012004e2200000800020bac14142d060010000070000014000b00fe800000000000000000000000000044060011004e22000008000c"], 0x8c}, 0x1, 0x0, 0x0, 0x8000}, 0x4008040) 1.644723474s ago: executing program 5 (id=2753): r0 = socket$inet6_sctp(0xa, 0x1, 0x84) getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f0000000000)={0x0, 0x10, &(0x7f0000000380)=[@in={0x2, 0x0, @private=0xa010101}]}, &(0x7f0000000180)=0x10) shutdown(r0, 0x1) getsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x85, &(0x7f0000000080)={0x0, @in={{0x2, 0x0, @empty}}}, &(0x7f0000000540)=0x9c) 1.588817901s ago: executing program 9 (id=2754): r0 = socket$inet6_tcp(0xa, 0x1, 0x0) close(r0) socket$inet6_mptcp(0xa, 0x1, 0x106) setsockopt$sock_int(r0, 0x1, 0x8, 0x0, 0x0) 1.51981435s ago: executing program 8 (id=2755): r0 = syz_usb_connect(0x0, 0x24, &(0x7f00000000c0)={{0x12, 0x1, 0x0, 0xcf, 0x8b, 0xed, 0x20, 0xfd9, 0x25, 0x2940, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0xca, 0xfb, 0x1a}}]}}]}}, 0x0) syz_usb_control_io$uac1(r0, 0x0, &(0x7f0000000580)={0x44, &(0x7f0000000180)=ANY=[@ANYBLOB="201101"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) r1 = syz_open_dev$I2C(&(0x7f0000000000), 0x1, 0x402) ioctl$I2C_SMBUS(r1, 0x720, &(0x7f0000000140)={0x0, 0xd0, 0x4, &(0x7f0000000080)={0x13, "42cae8b3df20afbcfcdd178c50e5d84526580489979a473f112453b228922bd31c"}}) 1.201353007s ago: executing program 6 (id=2756): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_MSRS(r2, 0xc008ae88, &(0x7f0000000340)=ANY=[@ANYBLOB="05000000000000e672000040"]) 1.199641145s ago: executing program 0 (id=2757): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100001c0000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000000c0)='sys_enter\x00', r0}, 0x10) rt_sigprocmask(0x0, &(0x7f0000000000)={[0xfffffffffffffffd]}, 0x0, 0x8) rt_sigsuspend(&(0x7f0000000300)={[0x8]}, 0x8) 898.25143ms ago: executing program 9 (id=2758): syz_genetlink_get_family_id$l2tp(0x0, 0xffffffffffffffff) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000440), r0) sendmsg$IEEE802154_LLSEC_ADD_DEV(r0, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000000)={0x34, r1, 0x8406f989402a7621, 0x0, 0x0, {}, [@IEEE802154_ATTR_LLSEC_FRAME_COUNTER={0x8}, @IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan0\x00'}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}, 0x1, 0x0, 0x0, 0x4000000}, 0x800) 881.973244ms ago: executing program 5 (id=2759): r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000007b00000000000000000000850000007b00000095"], &(0x7f0000000140)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000480)={&(0x7f0000000080)='netlink_extack\x00', r1}, 0x10) sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=@newlink={0x48, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x50020}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @geneve={{0xb}, {0x18, 0x2, 0x0, 0x1, [@IFLA_GENEVE_REMOTE6={0x14, 0x7, @mcast1}]}}}]}, 0x48}}, 0x2000000) 238.070439ms ago: executing program 6 (id=2760): openat(0xffffffffffffff9c, &(0x7f00000000c0)='./bus\x00', 0x101442, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000040)='fdinfo/3\x00') preadv(r0, &(0x7f0000000240)=[{&(0x7f0000000000)=""/29, 0x1d}], 0x1, 0x0, 0x0) lseek(r0, 0x0, 0x0) 133.585532ms ago: executing program 5 (id=2762): r0 = socket$l2tp(0x2, 0x2, 0x73) bind$inet(r0, &(0x7f0000000000)={0x2, 0x0, @local}, 0x10) connect$inet(r0, &(0x7f0000000080)={0x2, 0x4e21, @remote}, 0x10) getsockopt$sock_buf(r0, 0x1, 0x1c, 0x0, &(0x7f0000000700)) 0s ago: executing program 9 (id=2763): openat$binder_debug(0xffffff9c, &(0x7f0000000040)='/sys/kernel/debug/binder/transactions\x00', 0x0, 0x0) r0 = syz_io_uring_setup(0x1e1e, &(0x7f0000000100)={0x0, 0x86f7, 0x10100}, &(0x7f0000002000)=0x0, &(0x7f0000000000)=0x0) syz_io_uring_submit(r1, r2, &(0x7f00000001c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd_index=0x3, 0xffffffffffffffff, 0x0, 0x0, 0x22}) io_uring_enter(r0, 0x48e9, 0x0, 0x2, 0x0, 0x0) kernel console output (not intermixed with test programs): : utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 742.978145][T10452] FAT-fs (loop9): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 743.101628][ T3960] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 743.369126][T10393] Bluetooth: hci4: command tx timeout [ 743.440960][ T4935] FAT-fs (loop9): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 743.758068][T10439] chnl_net:caif_netlink_parms(): no params data found [ 743.781612][ T3960] bridge_slave_1: left allmulticast mode [ 743.790459][ T3960] bridge_slave_1: left promiscuous mode [ 743.797208][ T3960] bridge0: port 2(bridge_slave_1) entered disabled state [ 743.849001][ T3960] bridge_slave_0: left allmulticast mode [ 743.855074][ T3960] bridge_slave_0: left promiscuous mode [ 743.862570][ T3960] bridge0: port 1(bridge_slave_0) entered disabled state [ 744.421756][ T3960] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 744.456251][ T3960] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 744.480994][ T3960] bond0 (unregistering): Released all slaves [ 744.755566][ T3960] tipc: Disabling bearer [ 744.761965][ T3960] tipc: Left network mode [ 745.428928][T10393] Bluetooth: hci4: command tx timeout [ 745.616673][ T5090] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 745.640528][ T5090] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 745.668922][ T5090] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 745.718996][ T5090] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 745.747106][ T5090] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 745.961610][ T3960] hsr_slave_0: left promiscuous mode [ 745.978108][ T3960] hsr_slave_1: left promiscuous mode [ 745.986463][ T3960] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 745.998617][ T3960] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 746.018173][ T3960] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 746.026773][ T3960] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 746.058250][ T3960] veth1_macvtap: left promiscuous mode [ 746.064482][ T3960] veth0_macvtap: left promiscuous mode [ 746.070688][ T3960] veth1_vlan: left promiscuous mode [ 746.076219][ T3960] veth0_vlan: left promiscuous mode [ 746.867763][ T3960] team0 (unregistering): Port device team_slave_1 removed [ 746.916496][ T3960] team0 (unregistering): Port device team_slave_0 removed [ 747.509369][ T5090] Bluetooth: hci4: command tx timeout [ 747.937913][T10391] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 747.974477][ T5090] Bluetooth: hci0: command tx timeout [ 748.068921][T10391] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 748.287278][T10439] bridge0: port 1(bridge_slave_0) entered blocking state [ 748.296643][T10439] bridge0: port 1(bridge_slave_0) entered disabled state [ 748.307849][T10439] bridge_slave_0: entered allmulticast mode [ 748.317948][T10439] bridge_slave_0: entered promiscuous mode [ 748.343956][T10391] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 748.428824][T10391] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 748.542886][T10439] bridge0: port 2(bridge_slave_1) entered blocking state [ 748.558022][T10439] bridge0: port 2(bridge_slave_1) entered disabled state [ 748.574056][T10439] bridge_slave_1: entered allmulticast mode [ 748.599689][T10439] bridge_slave_1: entered promiscuous mode [ 748.880565][T10439] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 749.026550][T10439] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 749.400744][T10439] team0: Port device team_slave_0 added [ 749.469682][T10465] chnl_net:caif_netlink_parms(): no params data found [ 749.516413][T10439] team0: Port device team_slave_1 added [ 749.589459][ T5090] Bluetooth: hci4: command tx timeout [ 749.816828][T10439] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 749.824429][T10439] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 749.854828][T10439] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 749.890638][T10439] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 749.897966][T10439] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 749.925650][T10439] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 749.959887][T10495] netlink: 16 bytes leftover after parsing attributes in process `syz.9.1686'. [ 749.969553][T10495] netlink: 52 bytes leftover after parsing attributes in process `syz.9.1686'. [ 750.004107][ T5090] Bluetooth: hci0: command tx timeout [ 750.539988][T10439] hsr_slave_0: entered promiscuous mode [ 750.552896][T10439] hsr_slave_1: entered promiscuous mode [ 750.565210][T10439] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 750.573271][T10439] Cannot create hsr debugfs directory [ 750.613082][T10391] 8021q: adding VLAN 0 to HW filter on device bond0 [ 750.740697][T10391] 8021q: adding VLAN 0 to HW filter on device team0 [ 750.835414][ T3960] bridge0: port 1(bridge_slave_0) entered blocking state [ 750.843294][ T3960] bridge0: port 1(bridge_slave_0) entered forwarding state [ 750.947305][ T3960] bridge0: port 2(bridge_slave_1) entered blocking state [ 750.955041][ T3960] bridge0: port 2(bridge_slave_1) entered forwarding state [ 751.275849][T10504] netlink: 8 bytes leftover after parsing attributes in process `syz.9.1689'. [ 751.455692][T10465] bridge0: port 1(bridge_slave_0) entered blocking state [ 751.467768][T10465] bridge0: port 1(bridge_slave_0) entered disabled state [ 751.475979][T10465] bridge_slave_0: entered allmulticast mode [ 751.489284][T10465] bridge_slave_0: entered promiscuous mode [ 751.535530][T10465] bridge0: port 2(bridge_slave_1) entered blocking state [ 751.543951][T10465] bridge0: port 2(bridge_slave_1) entered disabled state [ 751.552112][T10465] bridge_slave_1: entered allmulticast mode [ 751.562597][T10465] bridge_slave_1: entered promiscuous mode [ 751.959797][T10465] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 752.069364][ T5090] Bluetooth: hci0: command tx timeout [ 752.130323][T10465] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 752.496454][T10465] team0: Port device team_slave_0 added [ 752.531426][T10465] team0: Port device team_slave_1 added [ 752.564610][T10514] loop8: detected capacity change from 0 to 1024 [ 752.734205][T10514] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 752.747378][T10514] ext4 filesystem being mounted at /75/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 752.946860][T10514] EXT4-fs error (device loop8): ext4_map_blocks:709: inode #15: block 3: comm syz.8.1694: lblock 3 mapped to illegal pblock 3 (length 1) [ 752.963662][T10514] EXT4-fs (loop8): Delayed block allocation failed for inode 15 at logical offset 3 with max blocks 1 with error 117 [ 752.977028][T10514] EXT4-fs (loop8): This should not happen!! Data will be lost [ 752.977028][T10514] [ 753.022986][T10520] EXT4-fs error (device loop8): ext4_map_blocks:675: inode #15: block 3: comm syz.8.1694: lblock 3 mapped to illegal pblock 3 (length 1) [ 753.026597][T10465] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 753.044993][T10465] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 753.072151][T10465] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 753.130521][T10465] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 753.137751][T10465] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 753.164967][T10465] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 753.190619][ T30] audit: type=1800 audit(1748296174.944:34): pid=10520 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.8.1694" name="file1" dev="loop8" ino=15 res=0 errno=0 [ 753.399338][T10517] EXT4-fs error (device loop8): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 21 vs 268369941 free clusters [ 753.611896][ T9448] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 753.855129][T10465] hsr_slave_0: entered promiscuous mode [ 753.866327][T10465] hsr_slave_1: entered promiscuous mode [ 753.875904][T10465] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 753.885424][T10465] Cannot create hsr debugfs directory [ 754.161727][ T5090] Bluetooth: hci0: command tx timeout [ 754.197338][T10528] loop8: detected capacity change from 0 to 256 [ 754.327219][T10439] netdevsim netdevsim5 netdevsim0: renamed from eth0 [ 754.416258][T10439] netdevsim netdevsim5 netdevsim1: renamed from eth1 [ 754.497859][T10439] netdevsim netdevsim5 netdevsim2: renamed from eth2 [ 754.593942][T10439] netdevsim netdevsim5 netdevsim3: renamed from eth3 [ 754.984230][T10391] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 755.844502][T10391] veth0_vlan: entered promiscuous mode [ 755.943590][T10391] veth1_vlan: entered promiscuous mode [ 756.008123][T10465] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 756.111728][T10465] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 756.194310][T10439] 8021q: adding VLAN 0 to HW filter on device bond0 [ 756.211050][T10465] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 756.299608][T10465] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 756.526163][T10439] 8021q: adding VLAN 0 to HW filter on device team0 [ 756.604628][T10391] veth0_macvtap: entered promiscuous mode [ 756.639401][ T4935] bridge0: port 1(bridge_slave_0) entered blocking state [ 756.647050][ T4935] bridge0: port 1(bridge_slave_0) entered forwarding state [ 756.675101][T10391] veth1_macvtap: entered promiscuous mode [ 756.838266][ T4935] bridge0: port 2(bridge_slave_1) entered blocking state [ 756.846066][ T4935] bridge0: port 2(bridge_slave_1) entered forwarding state [ 757.021918][T10391] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 757.170925][T10391] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 757.349551][T10391] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 757.358857][T10391] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 757.367941][T10391] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 757.377268][T10391] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 757.763109][T10550] loop8: detected capacity change from 0 to 256 [ 757.833749][T10550] exfat: Deprecated parameter 'namecase' [ 757.841317][T10550] exfat: Deprecated parameter 'utf8' [ 757.847079][T10550] exfat: Deprecated parameter 'namecase' [ 757.975309][T10465] 8021q: adding VLAN 0 to HW filter on device bond0 [ 758.096802][T10550] exFAT-fs (loop8): failed to load upcase table (idx : 0x00010000, chksum : 0xdf1ac56c, utbl_chksum : 0xe619d30d) [ 758.249461][T10546] sctp: failed to load transform for md5: -2 [ 758.351240][T10465] 8021q: adding VLAN 0 to HW filter on device team0 [ 758.448569][ T3743] bridge0: port 1(bridge_slave_0) entered blocking state [ 758.456213][ T3743] bridge0: port 1(bridge_slave_0) entered forwarding state [ 758.576345][ T3743] bridge0: port 2(bridge_slave_1) entered blocking state [ 758.584118][ T3743] bridge0: port 2(bridge_slave_1) entered forwarding state [ 759.697073][T10439] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 759.898222][T10568] loop9: detected capacity change from 0 to 1024 [ 759.972516][T10568] hfsplus: Unknown parameter '01777777777777777777777ÿÿÿÿ' [ 760.378994][ T5850] usb 10-1: new high-speed USB device number 2 using dummy_hcd [ 760.580336][ T5850] usb 10-1: Using ep0 maxpacket: 32 [ 760.622367][ T5850] usb 10-1: config index 0 descriptor too short (expected 35577, got 27) [ 760.631601][ T5850] usb 10-1: config 1 has too many interfaces: 92, using maximum allowed: 32 [ 760.641341][ T5850] usb 10-1: config 1 has 1 interface, different from the descriptor's value: 92 [ 760.651386][ T5850] usb 10-1: config 1 has no interface number 0 [ 760.657852][ T5850] usb 10-1: config 1 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7 [ 760.669668][ T5850] usb 10-1: config 1 interface 1 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 17 [ 760.684132][ T5850] usb 10-1: New USB device found, idVendor=0e41, idProduct=5051, bcdDevice=d5.e8 [ 760.695814][ T5850] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 760.794785][ T5850] snd_usb_pod 10-1:1.1: Line 6 Pocket POD found [ 760.994835][ T5850] snd_usb_pod 10-1:1.1: Line 6 Pocket POD now attached [ 761.118693][T10465] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 761.523775][ T9] usb 10-1: USB disconnect, device number 2 [ 761.532227][ T9] snd_usb_pod 10-1:1.1: Line 6 Pocket POD now disconnected [ 761.667545][T10465] veth0_vlan: entered promiscuous mode [ 761.759569][T10465] veth1_vlan: entered promiscuous mode [ 762.097923][T10465] veth0_macvtap: entered promiscuous mode [ 762.197700][T10465] veth1_macvtap: entered promiscuous mode [ 762.484538][T10465] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 762.597944][T10465] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 762.695071][T10439] veth0_vlan: entered promiscuous mode [ 762.731625][T10465] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 762.741167][T10465] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 762.752917][T10465] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 762.762869][T10465] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 762.827957][T10591] loop8: detected capacity change from 0 to 2048 [ 762.841017][T10439] veth1_vlan: entered promiscuous mode [ 762.894555][T10591] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 763.020148][ T30] audit: type=1800 audit(1748296184.784:35): pid=10591 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.8.1711" name="file1" dev="loop8" ino=1415 res=0 errno=0 [ 763.285256][T10439] veth0_macvtap: entered promiscuous mode [ 763.392774][T10439] veth1_macvtap: entered promiscuous mode [ 763.567865][T10439] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 763.705871][T10439] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 763.811699][T10439] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 763.820969][T10439] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 763.831332][T10439] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 763.841407][T10439] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 764.652004][T10609] netlink: 72 bytes leftover after parsing attributes in process `syz.9.1715'. [ 765.673381][ T1004] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 765.682025][ T1004] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 765.954376][ T1846] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 765.962708][ T1846] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 766.292925][T10624] hsr0: entered promiscuous mode [ 768.280830][ T45] usb 9-1: new high-speed USB device number 7 using dummy_hcd [ 768.480485][ T45] usb 9-1: Using ep0 maxpacket: 16 [ 768.494679][ T45] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 768.507043][ T45] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 768.518217][ T45] usb 9-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 768.531769][ T45] usb 9-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00 [ 768.542112][ T45] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 768.702157][ T45] usb 9-1: config 0 descriptor?? [ 769.165106][ T45] microsoft 0003:045E:07DA.0018: unbalanced collection at end of report description [ 769.236232][ T45] microsoft 0003:045E:07DA.0018: parse failed [ 769.245374][ T45] microsoft 0003:045E:07DA.0018: probe with driver microsoft failed with error -22 [ 769.373438][ T45] usb 9-1: USB disconnect, device number 7 [ 770.102985][ T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!! [ 770.265337][ T59] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 770.273664][ T59] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 770.603450][ T1846] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 770.612483][ T1846] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 771.521076][ T8417] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 771.529342][ T8417] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 771.803512][ T8417] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 771.811976][ T8417] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 771.947522][T10674] loop0: detected capacity change from 0 to 256 [ 772.012632][T10674] exfat: Deprecated parameter 'namecase' [ 772.191135][T10674] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0x36dfe6b4, utbl_chksum : 0xe619d30d) [ 772.365533][T10677] netlink: 4 bytes leftover after parsing attributes in process `syz.8.1728'. [ 772.399271][T10679] netlink: 8 bytes leftover after parsing attributes in process `syz.8.1728'. [ 772.448875][ T30] audit: type=1326 audit(1748296194.214:36): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10676 comm="syz.2.1729" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa3539 code=0x7ffc0000 [ 772.590073][ T30] audit: type=1326 audit(1748296194.274:37): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10676 comm="syz.2.1729" exe="/root/syz-executor" sig=0 arch=40000003 syscall=373 compat=1 ip=0xf7fa3539 code=0x7ffc0000 [ 772.613773][ T30] audit: type=1326 audit(1748296194.274:38): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10676 comm="syz.2.1729" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa3539 code=0x7ffc0000 [ 774.162327][T10696] loop5: detected capacity change from 0 to 512 [ 774.185137][T10696] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode [ 774.274836][T10696] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a00cc128, mo2=0002] [ 774.302938][T10696] System zones: 1-12 [ 774.333440][T10696] EXT4-fs (loop5): 1 truncate cleaned up [ 774.342814][T10696] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 774.392372][T10696] EXT4-fs error (device loop5): __ext4_iget:5025: inode #12: block 2: comm syz.5.1736: invalid block [ 774.449340][T10696] EXT4-fs (loop5): Remounting filesystem read-only [ 774.746621][T10703] Bluetooth: MGMT ver 1.23 [ 774.907561][T10439] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 776.972341][T10729] loop8: detected capacity change from 0 to 128 [ 777.213077][T10729] EXT4-fs (loop8): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 777.330858][T10729] ext4 filesystem being mounted at /96/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 777.544296][T10734] overlayfs: failed to create directory ./file0/work (errno: 13); mounting read-only [ 777.554327][T10734] overlayfs: fs on '.' does not support file handles, falling back to index=off,nfs_export=off. [ 778.284032][ T9448] EXT4-fs (loop8): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 778.654066][T10739] loop9: detected capacity change from 0 to 512 [ 778.867112][T10739] EXT4-fs (loop9): 1 orphan inode deleted [ 778.875892][T10739] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 778.944602][ T3884] Quota error (device loop9): do_check_range: Getting dqdh_entries 15 out of range 0-14 [ 778.955395][ T3884] EXT4-fs error (device loop9): ext4_release_dquot:6971: comm kworker/u8:20: Failed to release dquot type 1 [ 779.018884][T10739] ext4 filesystem being mounted at /94/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 779.534458][T10739] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 779.597019][T10754] input: syz1 as /devices/virtual/input/input21 [ 780.555355][T10767] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1763'. [ 781.260259][T10778] loop0: detected capacity change from 0 to 128 [ 781.436474][ T30] audit: type=1800 audit(1748296203.194:39): pid=10778 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.1769" name="file2" dev="loop0" ino=1048736 res=0 errno=0 [ 781.490602][T10777] FAT-fs (loop0): error, invalid access to FAT (entry 0x00000100) [ 781.499324][T10777] FAT-fs (loop0): Filesystem has been set read-only [ 781.506305][T10777] syz.0.1769: attempt to access beyond end of device [ 781.506305][T10777] loop0: rw=524288, sector=2065, nr_sectors = 8 limit=128 [ 781.520739][T10777] FAT-fs (loop0): error, invalid access to FAT (entry 0x00000100) [ 781.529221][T10777] FAT-fs (loop0): error, invalid access to FAT (entry 0x00000100) [ 781.626135][T10778] FAT-fs (loop0): error, invalid access to FAT (entry 0x00000100) [ 781.634783][T10778] syz.0.1769: attempt to access beyond end of device [ 781.634783][T10778] loop0: rw=524288, sector=2065, nr_sectors = 8 limit=128 [ 781.649438][T10778] FAT-fs (loop0): error, invalid access to FAT (entry 0x00000100) [ 781.657702][T10778] FAT-fs (loop0): error, invalid access to FAT (entry 0x00000100) [ 781.666119][T10778] syz.0.1769: attempt to access beyond end of device [ 781.666119][T10778] loop0: rw=0, sector=2065, nr_sectors = 8 limit=128 [ 781.682263][T10778] syz.0.1769: attempt to access beyond end of device [ 781.682263][T10778] loop0: rw=0, sector=2065, nr_sectors = 8 limit=128 [ 781.770274][T10778] syz.0.1769: attempt to access beyond end of device [ 781.770274][T10778] loop0: rw=0, sector=2065, nr_sectors = 8 limit=128 [ 781.786019][T10778] syz.0.1769: attempt to access beyond end of device [ 781.786019][T10778] loop0: rw=0, sector=2065, nr_sectors = 8 limit=128 [ 782.093663][T10781] netlink: 12 bytes leftover after parsing attributes in process `syz.9.1771'. [ 782.279686][T10784] tun0: tun_chr_ioctl cmd 1074025676 [ 782.285288][T10784] tun0: owner set to 0 [ 782.512806][ T1285] ieee802154 phy0 wpan0: encryption failed: -22 [ 782.519749][ T1285] ieee802154 phy1 wpan1: encryption failed: -22 [ 783.169394][T10798] netlink: 4 bytes leftover after parsing attributes in process `syz.8.1778'. [ 783.626911][T10802] loop9: detected capacity change from 0 to 256 [ 783.701271][T10802] vfat: Bad value for 'dmask' [ 783.808683][T10802] loop9: detected capacity change from 0 to 8 [ 783.879889][T10802] SQUASHFS error: zlib decompression failed, data probably corrupt [ 783.888243][T10802] SQUASHFS error: Failed to read block 0x9b: -5 [ 783.894995][T10802] SQUASHFS error: Unable to read metadata cache entry [99] [ 783.902719][T10802] SQUASHFS error: Unable to read inode 0x127 [ 783.935476][T10808] netlink: 92 bytes leftover after parsing attributes in process `syz.0.1783'. [ 784.506682][T10812] batadv0: entered promiscuous mode [ 784.585543][T10812] batadv0: left promiscuous mode [ 785.295730][T10821] loop5: detected capacity change from 0 to 1024 [ 785.362628][T10821] EXT4-fs: Ignoring removed orlov option [ 785.479985][T10821] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 785.741060][T10831] loop8: detected capacity change from 0 to 512 [ 785.869122][T10831] EXT4-fs error (device loop8): ext4_validate_block_bitmap:432: comm syz.8.1792: bg 0: block 16: invalid block bitmap [ 785.972225][T10831] EXT4-fs error (device loop8) in ext4_mb_clear_bb:6548: Corrupt filesystem [ 786.034447][T10439] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 786.051021][T10831] EXT4-fs error (device loop8): ext4_free_branches:1023: inode #13: comm syz.8.1792: invalid indirect mapped block 5 (level 0) [ 786.139187][T10831] EXT4-fs error (device loop8): ext4_free_branches:1023: inode #13: comm syz.8.1792: invalid indirect mapped block 4294967295 (level 1) [ 786.229965][T10831] EXT4-fs error (device loop8): ext4_free_branches:1023: inode #13: comm syz.8.1792: invalid indirect mapped block 4294967295 (level 2) [ 786.335125][T10831] EXT4-fs (loop8): 1 truncate cleaned up [ 786.345691][T10831] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 786.578155][T10831] EXT4-fs (loop8): re-mounted 00000000-0000-0000-0000-000000000000 ro. [ 786.676719][T10844] loop0: detected capacity change from 0 to 64 [ 786.931321][ T9448] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 787.533898][T10852] loop0: detected capacity change from 0 to 256 [ 787.638863][T10856] loop9: detected capacity change from 0 to 128 [ 787.718868][T10852] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0xb89b369d, utbl_chksum : 0xe619d30d) [ 787.807981][T10856] netlink: 156 bytes leftover after parsing attributes in process `syz.9.1803'. [ 787.819536][T10856] netlink: 16 bytes leftover after parsing attributes in process `syz.9.1803'. [ 789.498247][T10876] loop9: detected capacity change from 0 to 1024 [ 789.759598][T10882] netlink: 4 bytes leftover after parsing attributes in process `syz.8.1816'. [ 789.849918][T10881] sctp: [Deprecated]: syz.0.1815 (pid 10881) Use of int in max_burst socket option deprecated. [ 789.849918][T10881] Use struct sctp_assoc_value instead [ 791.222196][T10889] loop9: detected capacity change from 0 to 8192 [ 791.384548][T10900] netlink: 12 bytes leftover after parsing attributes in process `syz.5.1825'. [ 792.363746][T10909] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1830'. [ 792.373271][T10909] netlink: 32 bytes leftover after parsing attributes in process `syz.2.1830'. [ 792.404304][T10909] gretap1: entered promiscuous mode [ 793.225197][T10917] loop9: detected capacity change from 0 to 512 [ 793.256526][T10920] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1834'. [ 793.286193][T10917] EXT4-fs (loop9): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349) [ 793.344787][T10917] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=c842e12c, mo2=0002] [ 793.405225][T10917] EXT4-fs (loop9): orphan cleanup on readonly fs [ 793.469695][T10917] EXT4-fs error (device loop9): ext4_validate_block_bitmap:441: comm syz.9.1833: bg 0: block 361: padding at end of block bitmap is not set [ 793.532256][T10917] EXT4-fs (loop9): Remounting filesystem read-only [ 793.599776][T10917] EXT4-fs (loop9): 1 truncate cleaned up [ 793.608113][T10917] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000007 ro without journal. Quota mode: none. [ 793.861237][T10926] loop5: detected capacity change from 0 to 4096 [ 793.986128][T10930] loop0: detected capacity change from 0 to 128 [ 794.178112][ T9574] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000007. [ 796.060837][T10946] loop9: detected capacity change from 0 to 2048 [ 796.109568][T10947] loop2: detected capacity change from 0 to 2048 [ 796.267292][T10946] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 796.319134][ T30] audit: type=1326 audit(1748296217.674:40): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10945 comm="syz.5.1845" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f76539 code=0x7ffc0000 [ 796.341431][T10947] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 796.358642][ T30] audit: type=1326 audit(1748296217.734:41): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10945 comm="syz.5.1845" exe="/root/syz-executor" sig=0 arch=40000003 syscall=291 compat=1 ip=0xf7f76539 code=0x7ffc0000 [ 796.381160][ T30] audit: type=1326 audit(1748296217.734:42): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10945 comm="syz.5.1845" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f76539 code=0x7ffc0000 [ 796.409607][T10942] loop8: detected capacity change from 0 to 32768 [ 796.421701][T10942] XFS (loop8): Invalid device [./file1], error=-15 [ 797.645917][T10960] vlan2: entered promiscuous mode [ 797.652609][T10960] netdevsim netdevsim2 netdevsim0: entered promiscuous mode [ 797.671135][T10960] vlan2: entered allmulticast mode [ 797.676569][T10960] netdevsim netdevsim2 netdevsim0: entered allmulticast mode [ 797.692124][T10960] team0: Device vlan2 is up. Set it down before adding it as a team port [ 798.306374][T10967] loop5: detected capacity change from 0 to 1024 [ 799.897389][T10985] loop9: detected capacity change from 0 to 256 [ 800.069239][T10964] Bluetooth: hci0: Opcode 0x0c03 failed: -110 [ 800.814650][T10995] loop5: detected capacity change from 0 to 1024 [ 801.072542][T10995] hfsplus: request for non-existent node 16777216 in B*Tree [ 801.081023][T10995] hfsplus: request for non-existent node 16777216 in B*Tree [ 801.109875][T10995] hfsplus: request for non-existent node 16777216 in B*Tree [ 801.117450][T10995] hfsplus: request for non-existent node 16777216 in B*Tree [ 801.162424][T10999] loop8: detected capacity change from 0 to 512 [ 801.319333][T10999] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 801.332851][T10999] ext4 filesystem being mounted at /120/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 801.556371][ T8417] hfsplus: request for non-existent node 16777216 in B*Tree [ 801.564257][ T8417] hfsplus: request for non-existent node 16777216 in B*Tree [ 801.996836][ T9448] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 802.449064][T11024] loop0: detected capacity change from 0 to 256 [ 802.676636][T11026] netlink: 8 bytes leftover after parsing attributes in process `syz.9.1880'. [ 802.694694][T11026] netlink: 20 bytes leftover after parsing attributes in process `syz.9.1880'. [ 802.756125][T11024] FAT-fs (loop0): Directory bread(block 64) failed [ 802.763429][T11024] FAT-fs (loop0): Directory bread(block 65) failed [ 802.771707][T11024] FAT-fs (loop0): Directory bread(block 66) failed [ 802.779067][T11024] FAT-fs (loop0): Directory bread(block 67) failed [ 802.792746][T11024] FAT-fs (loop0): Directory bread(block 68) failed [ 802.801947][T11024] FAT-fs (loop0): Directory bread(block 69) failed [ 802.809258][T11024] FAT-fs (loop0): Directory bread(block 70) failed [ 802.816071][T11024] FAT-fs (loop0): Directory bread(block 71) failed [ 802.823279][T11024] FAT-fs (loop0): Directory bread(block 72) failed [ 802.830203][T11024] FAT-fs (loop0): Directory bread(block 73) failed [ 804.392680][T11040] loop5: detected capacity change from 0 to 2048 [ 804.448843][T11040] NILFS (loop5): broken superblock, retrying with spare superblock (blocksize = 1024) [ 804.459094][T11040] NILFS (loop5): mounting unchecked fs [ 804.545806][T11040] NILFS (loop5): recovery complete [ 804.591208][T11049] NILFS (loop5): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 805.438222][T11059] netlink: 4 bytes leftover after parsing attributes in process `syz.9.1895'. [ 805.893125][T11065] loop0: detected capacity change from 0 to 128 [ 805.967366][T11063] loop8: detected capacity change from 0 to 512 [ 805.989250][T11065] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 806.079123][T11065] ext4 filesystem being mounted at /34/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 806.201462][T11063] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 806.218764][T11063] ext4 filesystem being mounted at /124/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 806.625560][T10465] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 806.670708][T11079] sp0: Synchronizing with TNC [ 806.916847][ T9448] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 807.818804][ T9056] usb 10-1: new high-speed USB device number 3 using dummy_hcd [ 808.019075][ T9056] usb 10-1: Using ep0 maxpacket: 16 [ 808.040827][ T9056] usb 10-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 808.051858][ T9056] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7 [ 808.063718][ T9056] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x2 has invalid wMaxPacketSize 0 [ 808.074144][ T9056] usb 10-1: config 0 interface 0 altsetting 0 bulk endpoint 0x2 has invalid maxpacket 0 [ 808.084479][ T9056] usb 10-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 808.129627][ T9056] usb 10-1: New USB device found, idVendor=2040, idProduct=b138, bcdDevice= 1.42 [ 808.139280][ T9056] usb 10-1: New USB device strings: Mfr=4, Product=0, SerialNumber=0 [ 808.147672][ T9056] usb 10-1: Manufacturer: syz [ 808.281264][ T9056] usb 10-1: config 0 descriptor?? [ 808.657563][T11102] loop5: detected capacity change from 0 to 1024 [ 808.860261][ T9056] rc_core: IR keymap rc-hauppauge not found [ 808.866452][ T9056] Registered IR keymap rc-empty [ 808.872495][ T9056] mceusb 10-1:0.0: Error: mce write submit urb error = -90 [ 808.909080][ T9056] mceusb 10-1:0.0: Error: mce write submit urb error = -90 [ 808.940303][ T9056] rc rc0: Conexant Hybrid TV (cx231xx) MCE IR no TX as /devices/platform/dummy_hcd.9/usb10/10-1/10-1:0.0/rc/rc0 [ 808.956153][ T9056] input: Conexant Hybrid TV (cx231xx) MCE IR no TX as /devices/platform/dummy_hcd.9/usb10/10-1/10-1:0.0/rc/rc0/input23 [ 809.057466][ T9056] mceusb 10-1:0.0: Error: mce write submit urb error = -90 [ 809.105814][ T9056] mceusb 10-1:0.0: Error: mce write submit urb error = -90 [ 809.167115][ T9056] mceusb 10-1:0.0: Error: mce write submit urb error = -90 [ 809.194524][ T9056] mceusb 10-1:0.0: Error: mce write submit urb error = -90 [ 809.257473][ T9056] mceusb 10-1:0.0: Error: mce write submit urb error = -90 [ 809.279460][ T9056] mceusb 10-1:0.0: Error: mce write submit urb error = -90 [ 809.340644][ T9056] mceusb 10-1:0.0: Error: mce write submit urb error = -90 [ 809.398783][ T9056] mceusb 10-1:0.0: Error: mce write submit urb error = -90 [ 809.442933][ T9056] mceusb 10-1:0.0: Error: mce write submit urb error = -90 [ 809.483986][ T9056] mceusb 10-1:0.0: Error: mce write submit urb error = -90 [ 809.521083][ T9056] mceusb 10-1:0.0: Registered with mce emulator interface version 1 [ 809.531148][ T9056] mceusb 10-1:0.0: 2 tx ports (0x0 cabled) and 2 rx sensors (0x0 active) [ 809.616890][ T9056] usb 10-1: USB disconnect, device number 3 [ 809.873848][T11114] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1918'. [ 810.149480][T10393] Bluetooth: hci3: command 0x0406 tx timeout [ 810.713616][ T9056] kernel write not supported for file /input/event2 (pid: 9056 comm: kworker/0:3) [ 811.240279][ T9056] usb 9-1: new high-speed USB device number 8 using dummy_hcd [ 811.356368][T11129] loop9: detected capacity change from 0 to 2048 [ 811.400950][ T9056] usb 9-1: Using ep0 maxpacket: 32 [ 811.457227][ T9056] usb 9-1: New USB device found, idVendor=05a9, idProduct=1550, bcdDevice=e4.bb [ 811.467009][ T9056] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 811.476437][ T9056] usb 9-1: Product: syz [ 811.481447][ T9056] usb 9-1: Manufacturer: syz [ 811.490561][ T9056] usb 9-1: SerialNumber: syz [ 811.570318][ T9056] usb 9-1: config 0 descriptor?? [ 811.603652][ T9056] gspca_main: ov534_9-2.14.0 probing 05a9:1550 [ 811.656984][T11129] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 811.811180][T11129] EXT4-fs (loop9): shut down requested (2) [ 812.119867][ T9574] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 812.438014][ T9056] gspca_ov534_9: reg_w failed -71 [ 812.728910][ T9056] gspca_ov534_9: Unknown sensor 0000 [ 812.729423][ T9056] ov534_9 9-1:0.0: probe with driver ov534_9 failed with error -22 [ 812.779109][ T9056] usb 9-1: USB disconnect, device number 8 [ 813.009764][ T9054] usb 1-1: new low-speed USB device number 12 using dummy_hcd [ 813.132992][T11147] bridge0: trying to set multicast startup query interval below minimum, setting to 100 (1000ms) [ 813.152001][T11147] bridge0: port 2(bridge_slave_1) entered disabled state [ 813.162231][T11147] bridge0: port 1(bridge_slave_0) entered disabled state [ 813.291399][ T9054] usb 1-1: config 252 has an invalid interface number: 101 but max is 0 [ 813.300261][ T9054] usb 1-1: config 252 has no interface number 0 [ 813.306875][ T9054] usb 1-1: New USB device found, idVendor=0ccd, idProduct=0039, bcdDevice=90.7b [ 813.317357][ T9054] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 813.550694][ T9054] pvrusb2: Hardware description: Terratec Grabster AV400 [ 813.558108][ T9054] pvrusb2: ********** [ 813.562520][ T9054] pvrusb2: ***WARNING*** Support for this device (Terratec Grabster AV400) is experimental. [ 813.573023][ T9054] pvrusb2: Important functionality might not be entirely working. [ 813.581211][ T9054] pvrusb2: Please consider contacting the driver author to help with further stabilization of the driver. [ 813.593736][ T9054] pvrusb2: ********** [ 813.789112][ T2337] pvrusb2: Invalid write control endpoint [ 814.012368][ T9054] usb 1-1: USB disconnect, device number 12 [ 814.119500][ T2337] pvrusb2: Invalid write control endpoint [ 814.125708][ T2337] pvrusb2: ***WARNING*** Detected a wedged cx25840 chip; the device will not work. [ 814.138229][ T2337] pvrusb2: ***WARNING*** Try power cycling the pvrusb2 device. [ 814.146590][ T2337] pvrusb2: ***WARNING*** Disabling further access to the device to prevent other foul-ups. [ 814.160987][ T2337] pvrusb2: Device being rendered inoperable [ 814.167159][ T2337] cx25840 1-0044: Unable to detect h/w, assuming cx23887 [ 814.176040][ T2337] cx25840 1-0044: cx23887 A/V decoder found @ 0x88 (pvrusb2_a) [ 814.185397][ T2337] pvrusb2: Attached sub-driver cx25840 [ 814.191269][ T2337] pvrusb2: ***WARNING*** pvrusb2 device hardware appears to be jammed and I can't clear it. [ 814.201794][ T2337] pvrusb2: You might need to power cycle the pvrusb2 device in order to recover. [ 816.134744][T11176] loop0: detected capacity change from 0 to 1024 [ 816.170300][T11175] overlayfs: upper fs does not support file handles, falling back to index=off. [ 816.703686][T11183] loop9: detected capacity change from 0 to 64 [ 817.073592][T11189] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1951'. [ 817.169358][ T9056] usb 3-1: new high-speed USB device number 7 using dummy_hcd [ 817.389104][ T9056] usb 3-1: Using ep0 maxpacket: 32 [ 817.448802][ T9056] usb 3-1: New USB device found, idVendor=0c72, idProduct=000d, bcdDevice=27.9b [ 817.458234][ T9056] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 817.467373][ T9056] usb 3-1: Product: syz [ 817.472066][ T9056] usb 3-1: Manufacturer: syz [ 817.476947][ T9056] usb 3-1: SerialNumber: syz [ 817.581619][ T9056] usb 3-1: config 0 descriptor?? [ 817.984928][T11197] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1955'. [ 818.303360][ T9056] peak_usb 3-1:0.0: PEAK-System PCAN-USB Pro hwrev 0 serial 00000000.00000000 (2 channels) [ 818.327161][ T9056] peak_usb 3-1:0.0 can0: sending command failure: -22 [ 818.342472][ T9056] peak_usb 3-1:0.0 can0: sending command failure: -22 [ 818.433415][ T9056] peak_usb 3-1:0.0: probe with driver peak_usb failed with error -22 [ 818.564247][ T9056] usb 3-1: USB disconnect, device number 7 [ 818.590778][T11203] loop5: detected capacity change from 0 to 256 [ 818.619744][T11204] netlink: 16 bytes leftover after parsing attributes in process `syz.9.1958'. [ 818.804733][T11203] FAT-fs (loop5): error, fat_get_cluster: invalid cluster chain (i_pos 196) [ 818.819734][T11203] FAT-fs (loop5): Filesystem has been set read-only [ 818.826710][T11203] FAT-fs (loop5): error, fat_get_cluster: invalid cluster chain (i_pos 196) [ 818.836040][T11203] FAT-fs (loop5): error, fat_get_cluster: invalid cluster chain (i_pos 196) [ 818.846807][T11203] FAT-fs (loop5): error, fat_get_cluster: invalid cluster chain (i_pos 196) [ 818.856485][T11203] FAT-fs (loop5): error, fat_get_cluster: invalid cluster chain (i_pos 196) [ 818.873895][T11203] FAT-fs (loop5): error, fat_get_cluster: invalid cluster chain (i_pos 196) [ 818.883217][T11203] FAT-fs (loop5): error, fat_get_cluster: invalid cluster chain (i_pos 196) [ 818.892454][T11203] FAT-fs (loop5): error, fat_get_cluster: invalid cluster chain (i_pos 196) [ 818.901814][T11203] FAT-fs (loop5): error, fat_get_cluster: invalid cluster chain (i_pos 196) [ 818.911016][T11203] FAT-fs (loop5): error, fat_get_cluster: invalid cluster chain (i_pos 196) [ 818.979864][ T30] audit: type=1800 audit(1748296240.744:43): pid=11203 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.5.1957" name="file1" dev="loop5" ino=1048738 res=0 errno=0 [ 819.016563][T11203] FAT-fs (loop5): error, fat_free_clusters: deleting FAT entry beyond EOF [ 819.099331][ T9054] usb 9-1: new high-speed USB device number 9 using dummy_hcd [ 819.231263][T11203] syz.5.1957 (11203) used greatest stack depth: 3744 bytes left [ 819.299028][ T9054] usb 9-1: Using ep0 maxpacket: 32 [ 819.325526][ T9054] usb 9-1: config 0 interface 0 has no altsetting 0 [ 819.366428][ T9054] usb 9-1: New USB device found, idVendor=16d0, idProduct=10b8, bcdDevice=de.8e [ 819.381269][ T9054] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 819.391459][ T9054] usb 9-1: Product: syz [ 819.395908][ T9054] usb 9-1: Manufacturer: syz [ 819.400914][ T9054] usb 9-1: SerialNumber: syz [ 819.435837][T11213] netlink: 46 bytes leftover after parsing attributes in process `syz.0.1962'. [ 819.494456][ T9054] usb 9-1: config 0 descriptor?? [ 819.927160][T11218] loop2: detected capacity change from 0 to 128 [ 819.941913][T11219] netlink: 64 bytes leftover after parsing attributes in process `syz.5.1963'. [ 820.001312][ T9054] gs_usb 9-1:0.0: Configuring for 1 interfaces [ 820.021649][T11218] EXT4-fs: Ignoring removed nomblk_io_submit option [ 820.029105][T11218] EXT4-fs: Ignoring removed nomblk_io_submit option [ 820.063626][T11218] EXT4-fs (loop2): Test dummy encryption mode enabled [ 820.151688][T11218] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 820.200241][T11218] ext4 filesystem being mounted at /51/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 820.438278][ T9054] gs_usb 9-1:0.0: Disabling termination support for channel 0 (-EPROTO) [ 820.449523][ T9054] gs_usb 9-1:0.0: Couldn't get extended bit timing const for channel 0 (-EPROTO) [ 820.465609][ T9054] gs_usb 9-1:0.0: probe with driver gs_usb failed with error -71 [ 820.588540][ T9054] usb 9-1: USB disconnect, device number 9 [ 820.779544][T10391] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 821.580271][T11236] netlink: 4 bytes leftover after parsing attributes in process `syz.8.1972'. [ 821.606570][T11236] netlink: 4 bytes leftover after parsing attributes in process `syz.8.1972'. [ 821.655762][T11238] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1973'. [ 822.022245][T11240] loop2: detected capacity change from 0 to 512 [ 822.067085][T11240] EXT4-fs: Ignoring removed nomblk_io_submit option [ 822.147617][T11240] EXT4-fs (loop2): Cannot turn on journaled quota: type 0: error -2 [ 822.160298][T11240] EXT4-fs (loop2): Cannot turn on journaled quota: type 1: error -2 [ 822.188952][T11240] EXT4-fs (loop2): 1 truncate cleaned up [ 822.197502][T11240] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 822.657635][T10391] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 823.643695][T11266] loop9: detected capacity change from 0 to 1024 [ 823.722029][T11266] EXT4-fs: Ignoring removed orlov option [ 823.728206][T11266] EXT4-fs: Ignoring removed nomblk_io_submit option [ 823.825255][T11266] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 824.380546][ T9574] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 824.889296][T11281] loop5: detected capacity change from 0 to 1024 [ 824.989808][T11281] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 825.049560][T11281] EXT4-fs (loop5): ext4_check_descriptors: Checksum for group 0 failed (32298!=35945) [ 825.062256][T11281] EXT4-fs (loop5): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 825.161016][T11281] EXT4-fs (loop5): revision level too high, forcing read-only mode [ 825.215536][T11281] EXT4-fs (loop5): orphan cleanup on readonly fs [ 825.291082][T11281] EXT4-fs error (device loop5): ext4_read_inode_bitmap:167: comm syz.5.1992: Inode bitmap for bg 0 marked uninitialized [ 825.383731][T11281] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 825.758920][T10439] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 826.220785][T11296] loop9: detected capacity change from 0 to 4096 [ 827.041817][T11307] bridge_slave_0: left allmulticast mode [ 827.047990][T11307] bridge_slave_0: left promiscuous mode [ 827.061754][T11307] bridge0: port 1(bridge_slave_0) entered disabled state [ 827.141042][T11307] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check. [ 827.585382][T11312] loop9: detected capacity change from 0 to 64 [ 827.822151][T11314] loop5: detected capacity change from 0 to 256 [ 827.940911][T11314] exFAT-fs (loop5): failed to load upcase table (idx : 0x00010000, chksum : 0x36e00b20, utbl_chksum : 0xe619d30d) [ 828.645933][T11320] netlink: 8 bytes leftover after parsing attributes in process `syz.9.2009'. [ 829.241047][T11329] loop8: detected capacity change from 0 to 128 [ 829.291760][T11329] FAT-fs (loop8): Invalid FSINFO signature: 0x41615252, 0x00067272 (sector = 1) [ 829.603300][T11329] FAT-fs (loop8): FAT read failed (blocknr 128) [ 830.562575][ T30] audit: type=1326 audit(1748296252.334:44): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11343 comm="syz.5.2021" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f76539 code=0x7ffc0000 [ 830.585368][ T30] audit: type=1326 audit(1748296252.334:45): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11343 comm="syz.5.2021" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f76539 code=0x7ffc0000 [ 830.674090][T11348] netlink: 4 bytes leftover after parsing attributes in process `syz.9.2022'. [ 830.774957][ T30] audit: type=1326 audit(1748296252.404:46): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11343 comm="syz.5.2021" exe="/root/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf7f76539 code=0x7ffc0000 [ 830.857057][ T30] audit: type=1326 audit(1748296252.594:47): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11343 comm="syz.5.2021" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f76539 code=0x7ffc0000 [ 830.880269][ T30] audit: type=1326 audit(1748296252.594:48): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11343 comm="syz.5.2021" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f76539 code=0x7ffc0000 [ 833.548193][T11386] netlink: 120 bytes leftover after parsing attributes in process `syz.8.2040'. [ 833.767080][ T9054] kernel write not supported for file /amidi2 (pid: 9054 comm: kworker/1:0) [ 834.517535][T11400] netlink: 88 bytes leftover after parsing attributes in process `syz.5.2047'. [ 835.899547][T11417] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2055'. [ 837.182194][T11430] loop9: detected capacity change from 0 to 2048 [ 837.281044][T11433] NILFS (loop9): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 837.369017][T11430] NILFS error (device loop9): nilfs_lookup: deleted inode referenced: 12 [ 837.429726][T11430] Remounting filesystem read-only [ 838.992454][T11440] loop0: detected capacity change from 0 to 40427 [ 839.089390][T11440] F2FS-fs (loop0): Invalid log_blocksize (268), supports only 12 [ 839.097479][T11440] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock [ 839.109327][T11447] loop2: detected capacity change from 0 to 256 [ 839.121177][T11440] F2FS-fs (loop0): Wrong NAT boundary, start(2560) end(3584) blocks(512) [ 839.130457][T11440] F2FS-fs (loop0): Can't find valid F2FS filesystem in 2th superblock [ 839.613525][T11447] exFAT-fs (loop2): failed to load upcase table (idx : 0x00011f41, chksum : 0xf6d3f72e, utbl_chksum : 0xe619d30d) [ 839.778737][T11445] loop9: detected capacity change from 0 to 4096 [ 839.790423][T11445] ntfs3(loop9): Different NTFS sector size (1024) and media sector size (512). [ 840.251027][T11445] ntfs3(loop9): ino=0, attr_set_size [ 840.407394][T11453] ntfs3(loop9): ino=0, attr_set_size [ 841.412767][T11468] loop2: detected capacity change from 0 to 512 [ 841.494841][T11468] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 841.614844][T11468] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 841.628693][T11468] ext4 filesystem being mounted at /75/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 841.809559][T11479] netlink: 124 bytes leftover after parsing attributes in process `syz.0.2080'. [ 841.870448][T11478] netlink: 60 bytes leftover after parsing attributes in process `syz.8.2079'. [ 841.933646][T11475] loop5: detected capacity change from 0 to 2048 [ 842.049864][T11475] UDF-fs: error (device loop5): udf_read_tagged: tag checksum failed, block 99: 0x27 != 0x4d [ 842.084881][T11475] UDF-fs: error (device loop5): udf_read_tagged: tag checksum failed, block 160: 0xd2 != 0xd4 [ 842.158021][T10391] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 842.175726][T11475] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 842.779422][T11488] loop2: detected capacity change from 0 to 1024 [ 842.971252][T11488] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 843.373613][T11502] loop8: detected capacity change from 0 to 256 [ 843.452969][ T9056] usb 6-1: new full-speed USB device number 6 using dummy_hcd [ 843.654428][ T9056] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10 [ 843.666057][ T9056] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 4 [ 843.680988][ T9056] usb 6-1: New USB device found, idVendor=1e7d, idProduct=2db4, bcdDevice= 0.00 [ 843.691201][ T9056] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 843.786412][ T9056] usb 6-1: config 0 descriptor?? [ 843.942449][ T1285] ieee802154 phy0 wpan0: encryption failed: -22 [ 843.952390][ T1285] ieee802154 phy1 wpan1: encryption failed: -22 [ 844.053599][T10391] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 844.065265][ T30] audit: type=1326 audit(1748296265.814:49): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11503 comm="syz.0.2093" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe5539 code=0x7ffc0000 [ 844.088490][ T30] audit: type=1326 audit(1748296265.814:50): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11503 comm="syz.0.2093" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe5539 code=0x7ffc0000 [ 844.173512][ T3743] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 844.187763][ T30] audit: type=1326 audit(1748296265.944:51): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11503 comm="syz.0.2093" exe="/root/syz-executor" sig=0 arch=40000003 syscall=4 compat=1 ip=0xf7fe5539 code=0x7ffc0000 [ 844.211006][ T30] audit: type=1326 audit(1748296265.944:52): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11503 comm="syz.0.2093" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe5539 code=0x7ffc0000 [ 844.233991][ T30] audit: type=1326 audit(1748296265.944:53): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11503 comm="syz.0.2093" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe5539 code=0x7ffc0000 [ 844.262311][ T30] audit: type=1326 audit(1748296265.964:54): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11503 comm="syz.0.2093" exe="/root/syz-executor" sig=0 arch=40000003 syscall=286 compat=1 ip=0xf7fe5539 code=0x7ffc0000 [ 844.287000][ T30] audit: type=1326 audit(1748296265.964:55): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11503 comm="syz.0.2093" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe5539 code=0x7ffc0000 [ 844.345614][ T9056] konepure 0003:1E7D:2DB4.0019: unknown main item tag 0x0 [ 844.353874][ T9056] konepure 0003:1E7D:2DB4.0019: unknown main item tag 0x0 [ 844.367662][ T9056] konepure 0003:1E7D:2DB4.0019: unknown main item tag 0x0 [ 844.376896][ T9056] konepure 0003:1E7D:2DB4.0019: unknown main item tag 0x0 [ 844.385242][ T9056] konepure 0003:1E7D:2DB4.0019: unknown main item tag 0x0 [ 844.393036][ T9056] konepure 0003:1E7D:2DB4.0019: unbalanced collection at end of report description [ 844.499470][ T3743] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 844.637685][ T30] audit: type=1326 audit(1748296266.084:56): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11503 comm="syz.0.2093" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe5539 code=0x7ffc0000 [ 844.656126][ T9056] konepure 0003:1E7D:2DB4.0019: parse failed [ 844.662178][ T30] audit: type=1326 audit(1748296266.084:57): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11503 comm="syz.0.2093" exe="/root/syz-executor" sig=0 arch=40000003 syscall=288 compat=1 ip=0xf7fe5539 code=0x7ffc0000 [ 844.673194][ T9056] konepure 0003:1E7D:2DB4.0019: probe with driver konepure failed with error -22 [ 844.694537][ T30] audit: type=1326 audit(1748296266.084:58): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11503 comm="syz.0.2093" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe5539 code=0x7ffc0000 [ 844.725212][T11506] loop9: detected capacity change from 0 to 512 [ 844.796314][ T9056] usb 6-1: USB disconnect, device number 6 [ 844.814048][T11506] EXT4-fs (loop9): feature flags set on rev 0 fs, running e2fsck is recommended [ 844.824029][T11506] EXT4-fs (loop9): mounting ext2 file system using the ext4 subsystem [ 844.913069][ T3743] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 844.928978][T11506] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a042c01c, mo2=0002] [ 844.937807][T11506] System zones: 0-2, 18-18, 34-34 [ 844.959324][T11506] EXT4-fs warning (device loop9): ext4_update_dynamic_rev:1132: updating to rev 1 because of new feature flag, running e2fsck is recommended [ 845.022329][T11506] EXT4-fs (loop9): 1 truncate cleaned up [ 845.030807][T11506] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 845.060468][ T3743] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 845.549733][ T3743] bridge_slave_1: left allmulticast mode [ 845.555704][ T3743] bridge_slave_1: left promiscuous mode [ 845.562710][ T3743] bridge0: port 2(bridge_slave_1) entered disabled state [ 845.594922][ T9574] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 845.624914][ T3743] bridge_slave_0: left allmulticast mode [ 845.631144][ T3743] bridge_slave_0: left promiscuous mode [ 845.637810][ T3743] bridge0: port 1(bridge_slave_0) entered disabled state [ 846.259255][ T3743] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 846.295111][ T3743] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 846.316845][ T3743] bond0 (unregistering): Released all slaves [ 846.940650][ T3743] hsr_slave_0: left promiscuous mode [ 846.970184][ T3743] hsr_slave_1: left promiscuous mode [ 846.979303][ T3743] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 846.987123][ T3743] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 847.047169][ T3743] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 847.055492][ T3743] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 847.066123][T11517] loop5: detected capacity change from 0 to 128 [ 847.169709][ T3743] veth1_macvtap: left promiscuous mode [ 847.175695][ T3743] veth0_macvtap: left promiscuous mode [ 847.182030][ T3743] veth1_vlan: left promiscuous mode [ 847.187679][ T3743] veth0_vlan: left promiscuous mode [ 848.032237][T10393] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 848.071790][T10393] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 848.111579][T10393] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 848.126620][T10393] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 848.140796][T10393] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 848.226627][ T3743] team0 (unregistering): Port device team_slave_1 removed [ 848.299771][ T3743] team0 (unregistering): Port device team_slave_0 removed [ 848.698944][T11520] netlink: 8 bytes leftover after parsing attributes in process `syz.9.2101'. [ 848.925048][T11528] netlink: 124 bytes leftover after parsing attributes in process `syz.8.2104'. [ 849.570213][T11534] netlink: 60 bytes leftover after parsing attributes in process `syz.0.2107'. [ 849.908297][T11541] loop8: detected capacity change from 0 to 256 [ 850.108308][T11541] exFAT-fs (loop8): failed to load upcase table (idx : 0x00011f41, chksum : 0xf6d3f72e, utbl_chksum : 0xe619d30d) [ 850.185781][T11523] chnl_net:caif_netlink_parms(): no params data found [ 850.230733][T10393] Bluetooth: hci2: command tx timeout [ 850.353899][T11547] loop0: detected capacity change from 0 to 128 [ 850.437505][T11545] loop5: detected capacity change from 0 to 512 [ 850.531759][T11545] EXT4-fs (loop5): feature flags set on rev 0 fs, running e2fsck is recommended [ 850.541489][T11545] EXT4-fs (loop5): mounting ext2 file system using the ext4 subsystem [ 850.659240][T11545] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a042c01c, mo2=0002] [ 850.679428][T11545] System zones: 0-2, 18-18, 34-34 [ 850.755609][T11545] EXT4-fs warning (device loop5): ext4_update_dynamic_rev:1132: updating to rev 1 because of new feature flag, running e2fsck is recommended [ 850.821432][T11545] EXT4-fs (loop5): 1 truncate cleaned up [ 850.830508][T11545] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 851.079879][T11555] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2114'. [ 851.154613][T11555] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2114'. [ 851.293288][T10439] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 851.926171][T11523] bridge0: port 1(bridge_slave_0) entered blocking state [ 851.941476][T11523] bridge0: port 1(bridge_slave_0) entered disabled state [ 851.949483][T11523] bridge_slave_0: entered allmulticast mode [ 851.959502][T11523] bridge_slave_0: entered promiscuous mode [ 852.081584][T11523] bridge0: port 2(bridge_slave_1) entered blocking state [ 852.090039][T11523] bridge0: port 2(bridge_slave_1) entered disabled state [ 852.097900][T11523] bridge_slave_1: entered allmulticast mode [ 852.108060][T11523] bridge_slave_1: entered promiscuous mode [ 852.314286][T10393] Bluetooth: hci2: command tx timeout [ 852.397736][T11523] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 852.426934][T11523] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 852.763575][T11523] team0: Port device team_slave_0 added [ 852.839863][T11523] team0: Port device team_slave_1 added [ 853.136364][T11523] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 853.145215][T11523] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 853.177576][T11523] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 853.192879][ T5855] usb 10-1: new high-speed USB device number 4 using dummy_hcd [ 853.299138][T11523] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 853.306371][T11523] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 853.335452][T11523] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 853.357166][T11579] TCP: TCP_TX_DELAY enabled [ 853.392434][ T5855] usb 10-1: Using ep0 maxpacket: 16 [ 853.421186][T11582] netlink: 8 bytes leftover after parsing attributes in process `syz.8.2126'. [ 853.448120][ T5855] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 853.461010][ T5855] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 853.474558][ T5855] usb 10-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 853.489105][ T5855] usb 10-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00 [ 853.498780][ T5855] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 853.621812][ T5855] usb 10-1: config 0 descriptor?? [ 853.718704][T11523] hsr_slave_0: entered promiscuous mode [ 853.731973][T11523] hsr_slave_1: entered promiscuous mode [ 854.139540][ T5855] microsoft 0003:045E:07DA.001A: unbalanced collection at end of report description [ 854.204119][ T5855] microsoft 0003:045E:07DA.001A: parse failed [ 854.211457][ T5855] microsoft 0003:045E:07DA.001A: probe with driver microsoft failed with error -22 [ 854.349695][T11588] vivid-000: disconnect [ 854.378788][T11587] vivid-000: reconnect [ 854.381420][ T5855] usb 10-1: USB disconnect, device number 4 [ 854.396942][T10393] Bluetooth: hci2: command tx timeout [ 854.862370][T11523] netdevsim netdevsim6 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 854.971439][T11594] netlink: 12 bytes leftover after parsing attributes in process `syz.5.2133'. [ 855.097923][T11523] netdevsim netdevsim6 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 855.295328][T11523] netdevsim netdevsim6 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 855.450854][T11523] netdevsim netdevsim6 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 855.672482][T11605] loop9: detected capacity change from 0 to 512 [ 855.732385][T11605] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 855.789399][T11603] loop5: detected capacity change from 0 to 2048 [ 855.900594][T11523] netdevsim netdevsim6 netdevsim0: renamed from eth0 [ 855.921046][T11603] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 855.938915][T11603] ext4 filesystem being mounted at /84/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 855.942049][T11523] netdevsim netdevsim6 netdevsim1: renamed from eth1 [ 855.978323][T11523] netdevsim netdevsim6 netdevsim2: renamed from eth2 [ 855.992248][T11605] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 856.005887][T11605] ext4 filesystem being mounted at /170/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 856.006372][T11523] netdevsim netdevsim6 netdevsim3: renamed from eth3 [ 856.434116][T10439] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 856.469359][T10393] Bluetooth: hci2: command tx timeout [ 856.680880][ T9574] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 856.915003][T11523] 8021q: adding VLAN 0 to HW filter on device bond0 [ 857.013478][T11615] loop8: detected capacity change from 0 to 512 [ 857.031218][T11615] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 857.200881][T11523] 8021q: adding VLAN 0 to HW filter on device team0 [ 857.246398][T11615] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 857.262984][T11615] ext4 filesystem being mounted at /167/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 857.313815][ T3743] bridge0: port 1(bridge_slave_0) entered blocking state [ 857.321540][ T3743] bridge0: port 1(bridge_slave_0) entered forwarding state [ 857.353351][T11622] netlink: 8 bytes leftover after parsing attributes in process `syz.9.2139'. [ 857.416965][ T3743] bridge0: port 2(bridge_slave_1) entered blocking state [ 857.424730][ T3743] bridge0: port 2(bridge_slave_1) entered forwarding state [ 857.916549][ T9448] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 858.019071][T11627] loop0: detected capacity change from 0 to 256 [ 858.050111][T11627] vfat: Bad value for 'dmask' [ 858.175151][T11627] loop0: detected capacity change from 0 to 8 [ 858.294329][T11627] SQUASHFS error: zlib decompression failed, data probably corrupt [ 858.304373][T11627] SQUASHFS error: Failed to read block 0x9b: -5 [ 858.311351][T11627] SQUASHFS error: Unable to read metadata cache entry [99] [ 858.318981][T11627] SQUASHFS error: Unable to read inode 0x127 [ 858.521117][T11633] vivid-000: disconnect [ 858.561069][T11632] vivid-000: reconnect [ 859.294658][T11641] netlink: 12 bytes leftover after parsing attributes in process `syz.8.2146'. [ 859.436487][T11523] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 860.905535][T11663] loop5: detected capacity change from 0 to 256 [ 860.950753][T11663] exFAT-fs (loop5): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 860.962130][T11663] exFAT-fs (loop5): Medium has reported failures. Some data may be lost. [ 861.076081][T11663] exFAT-fs (loop5): failed to load upcase table (idx : 0x00010000, chksum : 0xe5674ec2, utbl_chksum : 0xe619d30d) [ 861.260572][ T30] audit: type=1800 audit(1748296283.034:59): pid=11663 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.2156" name="file1" dev="loop5" ino=1048742 res=0 errno=0 [ 861.891609][T10393] Bluetooth: hci4: connection err: -111 [ 862.039690][T11678] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2161'. [ 862.328929][T11523] veth0_vlan: entered promiscuous mode [ 862.432999][T11523] veth1_vlan: entered promiscuous mode [ 862.649645][T11523] veth0_macvtap: entered promiscuous mode [ 862.729453][T11523] veth1_macvtap: entered promiscuous mode [ 862.966923][T11523] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 863.069539][T11523] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 863.137603][T11523] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 863.148298][T11523] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 863.157563][T11523] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 863.168191][T11523] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 864.082184][T11701] loop5: detected capacity change from 0 to 64 [ 864.399817][T11697] loop8: detected capacity change from 0 to 4096 [ 864.449360][T11697] ntfs3(loop8): Different NTFS sector size (1024) and media sector size (512). [ 864.769233][T11697] ntfs3(loop8): ino=0, attr_set_size [ 864.912108][T11709] ntfs3(loop8): ino=0, attr_set_size [ 865.949660][T11723] tun0: tun_chr_ioctl cmd 1074025676 [ 865.955773][T11723] tun0: owner set to 0 [ 866.203818][T11722] delete_channel: no stack [ 866.470225][ T5090] Bluetooth: hci4: command 0x0406 tx timeout [ 867.845578][T11744] loop9: detected capacity change from 0 to 2048 [ 868.049330][T11744] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 868.062356][T11744] ext4 filesystem being mounted at /184/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 868.125862][T11750] loop8: detected capacity change from 0 to 1024 [ 868.152278][T11756] loop0: detected capacity change from 0 to 128 [ 868.186757][T11756] EXT4-fs: Ignoring removed nobh option [ 868.231218][T11756] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 868.272749][T11756] ext4 filesystem being mounted at /106/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 868.292582][T11750] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 868.356542][ T9574] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 868.408069][T11756] fscrypt (loop0, inode 12): Unsupported log2_data_unit_size in encryption policy: 227 [ 868.566367][T11761] netlink: 12 bytes leftover after parsing attributes in process `syz.5.2191'. [ 868.684733][T10465] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 868.756282][T11750] EXT4-fs warning (device loop8): empty_inline_dir:1774: bad inline directory (dir #12) - no `..' [ 869.088081][ T9448] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 869.559601][T10393] Bluetooth: hci3: connection err: -111 [ 869.910383][ T1898] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 869.919399][ T1898] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 870.187934][ T3743] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 870.196828][ T3743] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 871.150151][T11791] loop0: detected capacity change from 0 to 1024 [ 871.244845][T11791] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 871.462298][T11791] EXT4-fs warning (device loop0): empty_inline_dir:1774: bad inline directory (dir #12) - no `..' [ 871.758024][T11802] loop6: detected capacity change from 0 to 128 [ 871.771499][T10465] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 871.883033][T11802] FAT-fs (loop6): Invalid FSINFO signature: 0x41615252, 0x00067272 (sector = 1) [ 872.116935][T11802] FAT-fs (loop6): FAT read failed (blocknr 128) [ 872.307661][T11805] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2207'. [ 872.476423][T11809] loop9: detected capacity change from 0 to 256 [ 872.687086][T11809] exFAT-fs (loop9): failed to load upcase table (idx : 0x00010000, chksum : 0x36e00b20, utbl_chksum : 0xe619d30d) [ 872.727593][T11811] loop8: detected capacity change from 0 to 2048 [ 872.979338][T11811] UDF-fs: error (device loop8): udf_read_tagged: tag checksum failed, block 99: 0x27 != 0x4d [ 873.015430][T11811] UDF-fs: error (device loop8): udf_read_tagged: tag checksum failed, block 160: 0xd2 != 0xd4 [ 873.072900][T11811] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 873.569545][T11817] loop0: detected capacity change from 0 to 2048 [ 873.659389][T11819] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 873.789019][T11817] NILFS error (device loop0): nilfs_lookup: deleted inode referenced: 12 [ 873.837955][ T30] audit: type=1326 audit(1748296295.594:60): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11822 comm="syz.8.2218" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff1539 code=0x7ffc0000 [ 873.865056][ T30] audit: type=1326 audit(1748296295.614:61): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11822 comm="syz.8.2218" exe="/root/syz-executor" sig=0 arch=40000003 syscall=4 compat=1 ip=0xf7ff1539 code=0x7ffc0000 [ 873.888830][T11817] Remounting filesystem read-only [ 873.888899][ T30] audit: type=1326 audit(1748296295.614:62): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11822 comm="syz.8.2218" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff1539 code=0x7ffc0000 [ 873.917600][ T30] audit: type=1326 audit(1748296295.634:63): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11822 comm="syz.8.2218" exe="/root/syz-executor" sig=0 arch=40000003 syscall=286 compat=1 ip=0xf7ff1539 code=0x7ffc0000 [ 873.941584][ T30] audit: type=1326 audit(1748296295.634:64): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11822 comm="syz.8.2218" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff1539 code=0x7ffc0000 [ 873.970493][ T30] audit: type=1326 audit(1748296295.674:65): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11822 comm="syz.8.2218" exe="/root/syz-executor" sig=0 arch=40000003 syscall=288 compat=1 ip=0xf7ff1539 code=0x7ffc0000 [ 873.993863][ T30] audit: type=1326 audit(1748296295.674:66): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11822 comm="syz.8.2218" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff1539 code=0x7ffc0000 [ 874.091446][T11821] loop6: detected capacity change from 0 to 1024 [ 874.126072][T11821] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 874.169020][T11821] EXT4-fs (loop6): ext4_check_descriptors: Checksum for group 0 failed (32298!=35945) [ 874.179339][T11821] EXT4-fs (loop6): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 874.303729][T11821] EXT4-fs (loop6): revision level too high, forcing read-only mode [ 874.328808][T11821] EXT4-fs (loop6): orphan cleanup on readonly fs [ 874.353900][T11821] EXT4-fs error (device loop6): ext4_read_inode_bitmap:167: comm syz.6.2216: Inode bitmap for bg 0 marked uninitialized [ 874.452435][T11821] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 874.911175][T11523] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 876.278726][T11842] loop6: detected capacity change from 0 to 512 [ 876.491068][T11842] EXT4-fs error (device loop6): ext4_validate_block_bitmap:432: comm syz.6.2224: bg 0: block 16: invalid block bitmap [ 876.566549][T11846] loop8: detected capacity change from 0 to 64 [ 876.576565][T11846] minix: Unknown parameter '0xffffffffffffffff' [ 876.600688][T11842] EXT4-fs error (device loop6) in ext4_mb_clear_bb:6548: Corrupt filesystem [ 876.649443][T11842] EXT4-fs error (device loop6): ext4_free_branches:1023: inode #13: comm syz.6.2224: invalid indirect mapped block 5 (level 0) [ 876.668784][T11842] EXT4-fs error (device loop6): ext4_free_branches:1023: inode #13: comm syz.6.2224: invalid indirect mapped block 4294967295 (level 1) [ 876.695347][T11834] loop5: detected capacity change from 0 to 8192 [ 876.731641][T11842] EXT4-fs error (device loop6): ext4_free_branches:1023: inode #13: comm syz.6.2224: invalid indirect mapped block 4294967295 (level 2) [ 876.781557][T11842] EXT4-fs (loop6): 1 truncate cleaned up [ 876.790136][T11842] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 877.072291][T11842] EXT4-fs (loop6): re-mounted 00000000-0000-0000-0000-000000000000 ro. [ 877.496298][T11523] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 878.039071][T11853] loop9: detected capacity change from 0 to 128 [ 878.138781][T11853] FAT-fs (loop9): Invalid FSINFO signature: 0x41615252, 0x00067272 (sector = 1) [ 878.224092][T11855] loop6: detected capacity change from 0 to 128 [ 878.337538][T11855] UDF-fs: error (device loop6): udf_read_tagged: read failed, block=256, location=256 [ 878.344989][T11857] batadv0: entered promiscuous mode [ 878.407471][T11853] FAT-fs (loop9): FAT read failed (blocknr 128) [ 878.418316][T11859] loop0: detected capacity change from 0 to 256 [ 878.473384][T11859] exFAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 878.484757][T11859] exFAT-fs (loop0): Medium has reported failures. Some data may be lost. [ 878.490223][T11857] batadv0: left promiscuous mode [ 878.703372][T11859] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0xe5674ec2, utbl_chksum : 0xe619d30d) [ 878.843846][ T30] audit: type=1800 audit(1748296300.614:67): pid=11859 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.2231" name="file1" dev="loop0" ino=1048748 res=0 errno=0 [ 879.299085][T11861] netlink: 12 bytes leftover after parsing attributes in process `syz.9.2232'. [ 879.466951][T10393] Bluetooth: hci1: connection err: -111 [ 880.842559][T11880] loop0: detected capacity change from 0 to 128 [ 880.873643][T11880] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x00067272 (sector = 1) [ 881.140848][T11880] FAT-fs (loop0): FAT read failed (blocknr 128) [ 881.350582][T11887] loop8: detected capacity change from 0 to 256 [ 881.522454][T11887] exFAT-fs (loop8): failed to load upcase table (idx : 0x00010000, chksum : 0xb89b369d, utbl_chksum : 0xe619d30d) [ 882.070017][T11894] netlink: 8 bytes leftover after parsing attributes in process `syz.6.2249'. [ 882.079876][T11894] netlink: 32 bytes leftover after parsing attributes in process `syz.6.2249'. [ 882.113913][T11894] gretap1: entered promiscuous mode [ 882.547849][T11901] loop9: detected capacity change from 0 to 256 [ 882.632276][T11901] exFAT-fs (loop9): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 882.645163][T11901] exFAT-fs (loop9): Medium has reported failures. Some data may be lost. [ 882.900217][T11901] exFAT-fs (loop9): failed to load upcase table (idx : 0x00010000, chksum : 0xe5674ec2, utbl_chksum : 0xe619d30d) [ 882.998923][ T30] audit: type=1800 audit(1748296304.764:68): pid=11901 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.9.2251" name="file1" dev="loop9" ino=1048749 res=0 errno=0 [ 885.065137][T11927] netlink: 12 bytes leftover after parsing attributes in process `syz.9.2264'. [ 886.106970][T11937] netlink: 52 bytes leftover after parsing attributes in process `syz.8.2270'. [ 886.171624][T11938] sctp: [Deprecated]: syz.6.2269 (pid 11938) Use of int in max_burst socket option. [ 886.171624][T11938] Use struct sctp_assoc_value instead [ 886.357317][T11941] loop0: detected capacity change from 0 to 1024 [ 887.659862][T11959] loop6: detected capacity change from 0 to 256 [ 887.729321][T11959] UDF-fs: error (device loop6): udf_read_tagged: read failed, block=256, location=256 [ 887.843744][T11959] UDF-fs: error (device loop6): udf_read_tagged: read failed, block=512, location=512 [ 887.853983][T11959] UDF-fs: warning (device loop6): udf_load_vrs: No anchor found [ 887.863163][T11959] UDF-fs: Scanning with blocksize 512 failed [ 887.967040][T11959] UDF-fs: error (device loop6): udf_read_tagged: read failed, block=256, location=256 [ 888.085022][T11959] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 888.218073][T11966] loop9: detected capacity change from 0 to 128 [ 888.296090][T11966] UDF-fs: error (device loop9): udf_read_tagged: read failed, block=256, location=256 [ 889.010725][T11974] loop8: detected capacity change from 0 to 1024 [ 890.862354][T11999] loop8: detected capacity change from 0 to 512 [ 890.940341][T11999] EXT4-fs (loop8): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349) [ 891.044386][T12001] netdevsim netdevsim5 netdevsim0: entered promiscuous mode [ 891.059156][T12001] macsec1: entered allmulticast mode [ 891.064770][T12001] netdevsim netdevsim5 netdevsim0: entered allmulticast mode [ 891.120694][T12001] netdevsim netdevsim5 netdevsim0: left allmulticast mode [ 891.128177][T12001] netdevsim netdevsim5 netdevsim0: left promiscuous mode [ 891.130671][T11999] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=c842e12c, mo2=0002] [ 891.201867][T11999] EXT4-fs (loop8): orphan cleanup on readonly fs [ 891.311714][T11999] EXT4-fs error (device loop8): ext4_validate_block_bitmap:441: comm syz.8.2297: bg 0: block 361: padding at end of block bitmap is not set [ 891.345585][T11999] EXT4-fs (loop8): Remounting filesystem read-only [ 891.401213][T11999] EXT4-fs (loop8): 1 truncate cleaned up [ 891.409876][T11999] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000007 ro without journal. Quota mode: none. [ 891.436185][T12008] loop9: detected capacity change from 0 to 164 [ 891.950769][ T9448] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000007. [ 892.146499][T12012] loop6: detected capacity change from 0 to 1024 [ 893.768129][T12032] loop8: detected capacity change from 0 to 128 [ 894.104256][T12035] loop9: detected capacity change from 0 to 1024 [ 894.196272][T12035] EXT4-fs: Ignoring removed orlov option [ 894.511063][T12035] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 895.090997][ T9574] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 895.144032][T12045] loop6: detected capacity change from 0 to 256 [ 895.549270][T12048] loop8: detected capacity change from 0 to 256 [ 895.828710][T12028] Bluetooth: hci0: Opcode 0x0c03 failed: -110 [ 896.389901][T12056] loop0: detected capacity change from 0 to 1024 [ 896.444869][T12056] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 896.466277][T12056] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (32298!=35945) [ 896.481983][T12056] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 896.517709][T12056] EXT4-fs (loop0): revision level too high, forcing read-only mode [ 896.529879][T12056] EXT4-fs (loop0): orphan cleanup on readonly fs [ 896.570245][T12056] EXT4-fs error (device loop0): ext4_read_inode_bitmap:167: comm syz.0.2322: Inode bitmap for bg 0 marked uninitialized [ 896.610787][T12056] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 896.679810][T12056] EXT4-fs (loop0): shut down requested (1) [ 896.896995][T10465] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 897.260089][T12065] loop8: detected capacity change from 0 to 1024 [ 897.432170][T12065] hfsplus: request for non-existent node 16777216 in B*Tree [ 897.440164][T12065] hfsplus: request for non-existent node 16777216 in B*Tree [ 897.489324][T12065] hfsplus: request for non-existent node 16777216 in B*Tree [ 897.497066][T12065] hfsplus: request for non-existent node 16777216 in B*Tree [ 897.569190][T12063] loop9: detected capacity change from 0 to 4096 [ 897.630625][T12068] loop0: detected capacity change from 0 to 2048 [ 897.698972][T12068] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 897.764466][T12072] NILFS (loop9): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 897.857676][ T30] audit: type=1800 audit(1748296319.624:69): pid=12063 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.9.2326" name="file1" dev="loop9" ino=15 res=0 errno=0 [ 898.053854][ T1004] hfsplus: request for non-existent node 16777216 in B*Tree [ 898.061995][ T1004] hfsplus: request for non-existent node 16777216 in B*Tree [ 898.714737][T12081] loop0: detected capacity change from 0 to 256 [ 898.742970][T12082] vlan2: entered promiscuous mode [ 898.748508][T12082] netdevsim netdevsim6 netdevsim0: entered promiscuous mode [ 898.757171][T12082] vlan2: entered allmulticast mode [ 898.762756][T12082] netdevsim netdevsim6 netdevsim0: entered allmulticast mode [ 898.777898][T12082] team0: Device vlan2 is up. Set it down before adding it as a team port [ 900.393279][T12101] batman_adv: Cannot find parent device. Skipping batadv-on-batadv check for gretap1 [ 901.033569][T12105] loop0: detected capacity change from 0 to 1024 [ 901.283130][T12109] loop6: detected capacity change from 0 to 2048 [ 901.285372][T12105] hfsplus: request for non-existent node 16777216 in B*Tree [ 901.304940][T12105] hfsplus: request for non-existent node 16777216 in B*Tree [ 901.348931][T12087] Bluetooth: hci0: Opcode 0x0c03 failed: -110 [ 901.372809][T12105] hfsplus: request for non-existent node 16777216 in B*Tree [ 901.382168][T12105] hfsplus: request for non-existent node 16777216 in B*Tree [ 901.402615][T12109] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 901.743431][ T1846] hfsplus: request for non-existent node 16777216 in B*Tree [ 901.753033][ T1846] hfsplus: request for non-existent node 16777216 in B*Tree [ 902.879561][T12125] loop0: detected capacity change from 0 to 512 [ 903.018533][T12125] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 903.037003][T12125] ext4 filesystem being mounted at /142/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 903.684929][T12137] netlink: 4 bytes leftover after parsing attributes in process `syz.8.2358'. [ 903.992019][T10465] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 904.938229][T12151] netlink: 24 bytes leftover after parsing attributes in process `syz.9.2365'. [ 905.075706][T12153] netlink: 8 bytes leftover after parsing attributes in process `syz.6.2364'. [ 905.092691][T12153] netlink: 20 bytes leftover after parsing attributes in process `syz.6.2364'. [ 905.341892][T12155] netlink: 8 bytes leftover after parsing attributes in process `syz.8.2367'. [ 905.392358][ T1285] ieee802154 phy0 wpan0: encryption failed: -22 [ 905.399275][ T1285] ieee802154 phy1 wpan1: encryption failed: -22 [ 905.929906][ T9056] usb 10-1: new high-speed USB device number 5 using dummy_hcd [ 906.129601][ T9056] usb 10-1: Using ep0 maxpacket: 32 [ 906.166535][ T9056] usb 10-1: config 0 has an invalid interface number: 51 but max is 0 [ 906.175435][ T9056] usb 10-1: config 0 has no interface number 0 [ 906.263404][ T9056] usb 10-1: New USB device found, idVendor=061d, idProduct=c150, bcdDevice=ce.6f [ 906.273354][ T9056] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 906.281939][ T9056] usb 10-1: Product: syz [ 906.286471][ T9056] usb 10-1: Manufacturer: syz [ 906.291596][ T9056] usb 10-1: SerialNumber: syz [ 906.434695][ T9056] usb 10-1: config 0 descriptor?? [ 906.457736][ T9056] quatech2 10-1:0.51: Quatech 2nd gen USB to Serial Driver converter detected [ 906.711198][ T9056] usb 10-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB0 [ 906.780365][ T9056] usb 10-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB1 [ 907.103023][ C0] usb 10-1: qt2_read_bulk_callback - non-zero urb status: -71 [ 907.117679][ T9056] usb 10-1: USB disconnect, device number 5 [ 907.157955][ T9056] quatech-serial ttyUSB0: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB0 [ 907.220553][ T9056] quatech-serial ttyUSB1: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB1 [ 907.241283][ T9056] quatech2 10-1:0.51: device disconnected [ 908.811042][ T9056] kernel write not supported for file /binder/transactions (pid: 9056 comm: kworker/0:3) [ 908.952738][T12194] loop6: detected capacity change from 0 to 1024 [ 909.142896][T12198] loop8: detected capacity change from 0 to 2048 [ 909.184845][T12198] NILFS (loop8): broken superblock, retrying with spare superblock (blocksize = 1024) [ 909.195544][T12198] NILFS (loop8): mounting unchecked fs [ 909.340298][T12198] NILFS (loop8): recovery complete [ 909.388486][T12200] NILFS (loop8): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 909.460375][ T3743] hfsplus: b-tree write err: -5, ino 4 [ 910.356565][T12215] loop8: detected capacity change from 0 to 512 [ 910.442892][T12215] EXT4-fs error (device loop8): ext4_orphan_get:1417: comm syz.8.2391: bad orphan inode 15 [ 910.530900][T12215] ext4_test_bit(bit=14, block=18) = 1 [ 910.537736][T12215] is_bad_inode(inode)=0 [ 910.542397][T12215] NEXT_ORPHAN(inode)=1023 [ 910.546951][T12215] max_ino=32 [ 910.550635][T12215] i_nlink=0 [ 910.622046][T12215] EXT4-fs error (device loop8): ext4_xattr_delete_inode:2962: inode #15: comm syz.8.2391: corrupted xattr block 19: invalid header [ 910.638056][T12215] EXT4-fs warning (device loop8): ext4_evict_inode:279: xattr delete (err -117) [ 910.650667][T12215] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0009-000000000000 r/w without journal. Quota mode: none. [ 910.735899][T12215] ext4 filesystem being mounted at /221/éq‰Y’3aK supports timestamps until 2038-01-19 (0x7fffffff) [ 911.056956][ T9448] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0009-000000000000. [ 911.199152][ T30] audit: type=1326 audit(1748296332.964:70): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12219 comm="syz.0.2395" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe5539 code=0x7ffc0000 [ 911.227394][ T30] audit: type=1326 audit(1748296332.964:71): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12219 comm="syz.0.2395" exe="/root/syz-executor" sig=0 arch=40000003 syscall=291 compat=1 ip=0xf7fe5539 code=0x7ffc0000 [ 911.253541][ T30] audit: type=1326 audit(1748296332.964:72): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12219 comm="syz.0.2395" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe5539 code=0x7ffc0000 [ 911.671140][ T9056] kernel write not supported for file /input/event2 (pid: 9056 comm: kworker/0:3) [ 912.017627][T12228] loop6: detected capacity change from 0 to 2048 [ 912.135095][T12228] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 912.740421][T12238] loop8: detected capacity change from 0 to 128 [ 912.794357][T12238] EXT4-fs (loop8): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 912.844403][T12238] ext4 filesystem being mounted at /224/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 912.959300][T12236] loop0: detected capacity change from 0 to 2048 [ 913.072383][T12236] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 913.260310][T12236] EXT4-fs (loop0): shut down requested (2) [ 913.522365][ T9448] EXT4-fs (loop8): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 913.569541][T10465] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 914.219376][ T9056] usb 10-1: new high-speed USB device number 6 using dummy_hcd [ 914.419019][ T9056] usb 10-1: Using ep0 maxpacket: 32 [ 914.481418][ T9056] usb 10-1: New USB device found, idVendor=05a9, idProduct=1550, bcdDevice=e4.bb [ 914.492370][ T9056] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 914.506095][ T9056] usb 10-1: Product: syz [ 914.512335][ T9056] usb 10-1: Manufacturer: syz [ 914.519344][ T9056] usb 10-1: SerialNumber: syz [ 914.587258][ T9056] usb 10-1: config 0 descriptor?? [ 914.631437][ T9056] gspca_main: ov534_9-2.14.0 probing 05a9:1550 [ 914.950973][T12257] bridge0: trying to set multicast startup query interval below minimum, setting to 100 (1000ms) [ 914.971898][T12257] bridge0: port 2(bridge_slave_1) entered disabled state [ 914.982080][T12257] bridge0: port 1(bridge_slave_0) entered disabled state [ 915.467364][ T9056] gspca_ov534_9: reg_w failed -71 [ 915.779132][ T9056] gspca_ov534_9: Unknown sensor 0000 [ 915.779628][ T9056] ov534_9 10-1:0.0: probe with driver ov534_9 failed with error -22 [ 915.860744][ T9056] usb 10-1: USB disconnect, device number 6 [ 916.100281][T12269] loop6: detected capacity change from 0 to 128 [ 916.201550][T12269] EXT4-fs (loop6): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 916.339988][T12269] ext4 filesystem being mounted at /50/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 916.842242][T11523] EXT4-fs (loop6): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 918.015178][T12289] loop0: detected capacity change from 0 to 256 [ 920.413580][T12316] loop0: detected capacity change from 0 to 2048 [ 920.443447][T12320] loop6: detected capacity change from 0 to 64 [ 920.537262][T12316] Alternate GPT is invalid, using primary GPT. [ 920.549977][T12316] loop0: p1 p2 p3 [ 921.110185][T12324] netlink: 16 bytes leftover after parsing attributes in process `syz.5.2443'. [ 922.737454][T12335] loop8: detected capacity change from 0 to 4096 [ 922.969986][T12335] ntfs3(loop8): Failed to initialize $Extend/$ObjId. [ 922.982348][T12342] loop6: detected capacity change from 0 to 256 [ 923.214202][T12342] FAT-fs (loop6): Directory bread(block 64) failed [ 923.222038][T12342] FAT-fs (loop6): Directory bread(block 65) failed [ 923.229245][T12342] FAT-fs (loop6): Directory bread(block 66) failed [ 923.236055][T12342] FAT-fs (loop6): Directory bread(block 67) failed [ 923.243315][T12342] FAT-fs (loop6): Directory bread(block 68) failed [ 923.250375][T12342] FAT-fs (loop6): Directory bread(block 69) failed [ 923.257351][T12342] FAT-fs (loop6): Directory bread(block 70) failed [ 923.264370][T12342] FAT-fs (loop6): Directory bread(block 71) failed [ 923.273620][T12342] FAT-fs (loop6): Directory bread(block 72) failed [ 923.281245][T12342] FAT-fs (loop6): Directory bread(block 73) failed [ 924.130952][ T9054] usb 6-1: new high-speed USB device number 7 using dummy_hcd [ 924.349044][ T9054] usb 6-1: Using ep0 maxpacket: 32 [ 924.400402][ T9054] usb 6-1: New USB device found, idVendor=0c72, idProduct=000d, bcdDevice=27.9b [ 924.410131][ T9054] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 924.419480][ T9054] usb 6-1: Product: syz [ 924.424463][ T9054] usb 6-1: Manufacturer: syz [ 924.429537][ T9054] usb 6-1: SerialNumber: syz [ 924.510869][ T9054] usb 6-1: config 0 descriptor?? [ 925.031430][T12359] loop9: detected capacity change from 0 to 4096 [ 925.080161][T12367] A link change request failed with some changes committed already. Interface bond0 may have been left with an inconsistent configuration, please check. [ 925.211996][ T9054] peak_usb 6-1:0.0: PEAK-System PCAN-USB Pro hwrev 0 serial 00000000.00000000 (2 channels) [ 925.222621][ T9054] peak_usb 6-1:0.0 can0: sending command failure: -22 [ 925.230077][ T9054] peak_usb 6-1:0.0 can0: sending command failure: -22 [ 925.372512][ T9054] peak_usb 6-1:0.0: probe with driver peak_usb failed with error -22 [ 925.434380][T12365] loop6: detected capacity change from 0 to 4096 [ 925.520576][ T9054] usb 6-1: USB disconnect, device number 7 [ 925.533575][T12359] ntfs3(loop9): ino=5, "/" indx_read [ 925.540746][T12359] ntfs3(loop9): Mark volume as dirty due to NTFS errors [ 925.639088][T12370] ntfs3(loop9): ino=5, indx_read [ 925.644674][T12370] ntfs3(loop9): ino=5, ntfs_readdir [ 925.729028][T12365] ntfs3(loop6): ino=1a, mi_enum_attr [ 925.734793][T12365] ntfs3(loop6): Mark volume as dirty due to NTFS errors [ 925.927887][T12365] ntfs3(loop6): ino=5, "/" mi_enum_attr [ 926.339261][T12372] loop8: detected capacity change from 0 to 4096 [ 926.426480][T12372] EXT4-fs (loop8): Test dummy encryption mode enabled [ 926.529284][T12372] [EXT4 FS bs=4096, gc=1, bpg=524288, ipg=32, mo=a042c018, mo2=0003] [ 926.555053][T12372] System zones: 0-5 [ 926.578143][T12372] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 926.670035][T12379] overlayfs: upper fs does not support file handles, falling back to index=off. [ 927.242425][ T9448] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 927.332681][T12388] nbd: must specify a size in bytes for the device [ 927.458758][ T9056] usb 10-1: new high-speed USB device number 7 using dummy_hcd [ 927.500400][T12383] loop6: detected capacity change from 0 to 2048 [ 927.541789][T12383] udf: Bad value for 'uid' [ 927.657113][ T9056] usb 10-1: Using ep0 maxpacket: 32 [ 927.701513][ T9056] usb 10-1: config 0 interface 0 has no altsetting 0 [ 927.751645][ T9056] usb 10-1: New USB device found, idVendor=16d0, idProduct=10b8, bcdDevice=de.8e [ 927.761407][ T9056] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 927.769986][ T9056] usb 10-1: Product: syz [ 927.774528][ T9056] usb 10-1: Manufacturer: syz [ 927.779776][ T9056] usb 10-1: SerialNumber: syz [ 927.901103][ T9056] usb 10-1: config 0 descriptor?? [ 928.183637][T12397] loop8: detected capacity change from 0 to 1024 [ 928.250916][T12397] EXT4-fs: Ignoring removed oldalloc option [ 928.257447][T12397] EXT4-fs: Ignoring removed bh option [ 928.417270][ T9056] gs_usb 10-1:0.0: Configuring for 1 interfaces [ 928.485861][T12397] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 928.711330][ T30] audit: type=1800 audit(1748296350.394:73): pid=12397 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.8.2472" name="file1" dev="loop8" ino=15 res=0 errno=0 [ 928.851787][ T9056] gs_usb 10-1:0.0: Disabling termination support for channel 0 (-EPROTO) [ 928.883078][ T9056] gs_usb 10-1:0.0: Couldn't get extended bit timing const for channel 0 (-EPROTO) [ 928.894060][ T9056] gs_usb 10-1:0.0: probe with driver gs_usb failed with error -71 [ 928.999485][ T9056] usb 10-1: USB disconnect, device number 7 [ 929.077250][ T9448] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 929.130604][T12407] netlink: 16 bytes leftover after parsing attributes in process `syz.0.2478'. [ 929.534661][T12411] loop5: detected capacity change from 0 to 512 [ 929.620604][T12411] EXT4-fs: Ignoring removed nomblk_io_submit option [ 929.722848][T12411] EXT4-fs (loop5): Cannot turn on journaled quota: type 0: error -2 [ 929.731590][T12411] EXT4-fs (loop5): Cannot turn on journaled quota: type 1: error -2 [ 929.818691][T12411] EXT4-fs (loop5): 1 truncate cleaned up [ 929.827136][T12411] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 929.912640][T12419] overlayfs: upper fs does not support file handles, falling back to index=off. [ 930.211859][T10439] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 930.788726][T12429] netlink: 46 bytes leftover after parsing attributes in process `syz.5.2486'. [ 931.077968][T12431] loop8: detected capacity change from 0 to 512 [ 931.131684][T12431] EXT4-fs: Ignoring removed orlov option [ 931.137944][T12431] EXT4-fs: Ignoring removed nomblk_io_submit option [ 931.145245][T12431] EXT4-fs: Ignoring removed orlov option [ 931.239689][T12431] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a846c01c, mo2=0002] [ 931.307437][T12431] System zones: 1-12 [ 931.313417][T12431] EXT4-fs error (device loop8): ext4_init_orphan_info:586: comm syz.8.2489: inode #0: comm syz.8.2489: iget: illegal inode # [ 931.329710][T12431] EXT4-fs (loop8): get orphan inode failed [ 931.336688][T12431] EXT4-fs (loop8): mount failed [ 931.687727][T12439] loop6: detected capacity change from 0 to 2048 [ 931.868892][T12444] NILFS (loop6): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 933.013714][T12448] loop8: detected capacity change from 0 to 32768 [ 933.025958][T12448] XFS (loop8): Invalid device [./bus], error=-15 [ 933.114046][T12452] loop0: detected capacity change from 0 to 8 [ 933.660790][T12458] netlink: 8 bytes leftover after parsing attributes in process `syz.6.2498'. [ 933.670334][T12458] netlink: 8 bytes leftover after parsing attributes in process `syz.6.2498'. [ 934.479793][T12468] netlink: 'syz.6.2506': attribute type 9 has an invalid length. [ 934.488142][T12468] netlink: 8 bytes leftover after parsing attributes in process `syz.6.2506'. [ 934.492688][T12466] loop9: detected capacity change from 0 to 1024 [ 934.516448][T12468] hsr0: entered promiscuous mode [ 934.522369][T12468] macvlan2: entered promiscuous mode [ 934.529124][T12468] macvlan2: entered allmulticast mode [ 934.534766][T12468] hsr0: entered allmulticast mode [ 934.540368][T12468] hsr_slave_0: entered allmulticast mode [ 934.546366][T12468] hsr_slave_1: entered allmulticast mode [ 934.785124][T12470] loop0: detected capacity change from 0 to 1024 [ 934.853117][T12470] EXT4-fs (loop0): stripe (3) is not aligned with cluster size (16), stripe is disabled [ 934.985544][T12470] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 935.362178][T10465] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 936.120017][ T9056] usb 1-1: new high-speed USB device number 13 using dummy_hcd [ 936.367211][ T9056] usb 1-1: Using ep0 maxpacket: 32 [ 936.426816][ T9056] usb 1-1: New USB device found, idVendor=0c72, idProduct=000d, bcdDevice=27.9b [ 936.436446][ T9056] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 936.445051][ T9056] usb 1-1: Product: syz [ 936.449619][ T9056] usb 1-1: Manufacturer: syz [ 936.454498][ T9056] usb 1-1: SerialNumber: syz [ 936.551037][ T9056] usb 1-1: config 0 descriptor?? [ 936.761908][T12489] loop6: detected capacity change from 0 to 4096 [ 936.958673][ T0] NOHZ tick-stop error: local softirq work is pending, handler #380!!! [ 936.973945][ T0] NOHZ tick-stop error: local softirq work is pending, handler #300!!! [ 937.221130][ T9056] peak_usb 1-1:0.0: PEAK-System PCAN-USB Pro hwrev 0 serial 00000000.00000000 (2 channels) [ 937.238066][ T9056] peak_usb 1-1:0.0 can0: sending command failure: -22 [ 937.247246][ T9056] peak_usb 1-1:0.0 can0: sending command failure: -22 [ 937.330972][ T9056] peak_usb 1-1:0.0: probe with driver peak_usb failed with error -22 [ 937.488561][ T9056] usb 1-1: USB disconnect, device number 13 [ 938.374407][T12513] loop8: detected capacity change from 0 to 64 [ 939.581774][ T9054] usb 10-1: new high-speed USB device number 8 using dummy_hcd [ 939.770854][T12531] sp0: Synchronizing with TNC [ 939.819087][ T9054] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 939.830962][ T9054] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 939.841381][ T9054] usb 10-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 939.854957][ T9054] usb 10-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 939.864592][ T9054] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 940.053789][ T9054] usb 10-1: config 0 descriptor?? [ 940.110873][T12537] loop6: detected capacity change from 0 to 64 [ 940.556089][ T9054] plantronics 0003:047F:FFFF.001B: unknown main item tag 0x3 [ 940.595248][ T9054] plantronics 0003:047F:FFFF.001B: No inputs registered, leaving [ 940.664734][ T9054] plantronics 0003:047F:FFFF.001B: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.9-1/input0 [ 940.695992][T12543] loop0: detected capacity change from 0 to 256 [ 940.750815][ T9054] usb 10-1: USB disconnect, device number 8 [ 941.361660][T12550] loop8: detected capacity change from 0 to 512 [ 941.397782][T12550] EXT4-fs (loop8): feature flags set on rev 0 fs, running e2fsck is recommended [ 941.408058][T12550] EXT4-fs (loop8): couldn't mount as ext3 due to feature incompatibilities [ 941.600144][T12550] netlink: 94 bytes leftover after parsing attributes in process `syz.8.2539'. [ 942.014036][ T9056] usb 7-1: new high-speed USB device number 4 using dummy_hcd [ 942.179062][ T9056] usb 7-1: Using ep0 maxpacket: 16 [ 942.258125][ T9056] usb 7-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 942.272965][ T9056] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7 [ 942.284311][ T9056] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x2 has invalid wMaxPacketSize 0 [ 942.294383][ T9056] usb 7-1: config 0 interface 0 altsetting 0 bulk endpoint 0x2 has invalid maxpacket 0 [ 942.304631][ T9056] usb 7-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 942.495727][ T9056] usb 7-1: New USB device found, idVendor=2040, idProduct=b138, bcdDevice= 1.42 [ 942.505555][ T9056] usb 7-1: New USB device strings: Mfr=4, Product=0, SerialNumber=0 [ 942.514006][ T9056] usb 7-1: Manufacturer: syz [ 942.592366][ T9056] usb 7-1: config 0 descriptor?? [ 942.801568][T12560] loop9: detected capacity change from 0 to 512 [ 942.840358][T12560] EXT4-fs (loop9): feature flags set on rev 0 fs, running e2fsck is recommended [ 942.849951][T12560] EXT4-fs (loop9): mounting ext2 file system using the ext4 subsystem [ 942.958857][T12560] EXT4-fs (loop9): warning: mounting unchecked fs, running e2fsck is recommended [ 943.012243][T12560] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a002e01c, mo2=0006] [ 943.021657][T12560] System zones: 0-2, 18-18, 34-35 [ 943.032280][T12560] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 943.109393][T10393] Bluetooth: hci1: unexpected event for opcode 0x2060 [ 943.139077][ T9056] rc_core: IR keymap rc-hauppauge not found [ 943.145270][ T9056] Registered IR keymap rc-empty [ 943.151491][ T9056] mceusb 7-1:0.0: Error: mce write submit urb error = -90 [ 943.186656][ T9056] mceusb 7-1:0.0: Error: mce write submit urb error = -90 [ 943.200427][ T30] audit: type=1800 audit(1748296364.944:74): pid=12560 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.9.2545" name="file2" dev="loop9" ino=16 res=0 errno=0 [ 943.236406][ T9056] rc rc0: Conexant Hybrid TV (cx231xx) MCE IR no TX as /devices/platform/dummy_hcd.6/usb7/7-1/7-1:0.0/rc/rc0 [ 943.251511][ T9056] input: Conexant Hybrid TV (cx231xx) MCE IR no TX as /devices/platform/dummy_hcd.6/usb7/7-1/7-1:0.0/rc/rc0/input24 [ 943.357215][ T9056] mceusb 7-1:0.0: Error: mce write submit urb error = -90 [ 943.502574][ T9056] mceusb 7-1:0.0: Error: mce write submit urb error = -90 [ 943.539406][ T9056] mceusb 7-1:0.0: Error: mce write submit urb error = -90 [ 943.578032][ T9056] mceusb 7-1:0.0: Error: mce write submit urb error = -90 [ 943.638660][ T9056] mceusb 7-1:0.0: Error: mce write submit urb error = -90 [ 943.664525][ T9056] mceusb 7-1:0.0: Error: mce write submit urb error = -90 [ 943.720426][ T9056] mceusb 7-1:0.0: Error: mce write submit urb error = -90 [ 943.750953][ T9056] mceusb 7-1:0.0: Error: mce write submit urb error = -90 [ 943.809529][ T9056] mceusb 7-1:0.0: Error: mce write submit urb error = -90 [ 943.825090][ T9574] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 943.852414][ T9056] mceusb 7-1:0.0: Error: mce write submit urb error = -90 [ 943.896607][ T9056] mceusb 7-1:0.0: Registered with mce emulator interface version 1 [ 943.905253][ T9056] mceusb 7-1:0.0: 2 tx ports (0x0 cabled) and 2 rx sensors (0x0 active) [ 943.954856][ T9056] usb 7-1: USB disconnect, device number 4 [ 945.627671][T12598] loop9: detected capacity change from 0 to 128 [ 945.696108][T12598] UDF-fs: error (device loop9): udf_read_tagged: read failed, block=256, location=256 [ 945.768934][T12598] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 946.650780][T12610] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2566'. [ 947.618846][ T45] kernel write not supported for file /amidi2 (pid: 45 comm: kworker/1:1) [ 947.708741][ T9054] usb 9-1: new high-speed USB device number 10 using dummy_hcd [ 948.061860][ T9054] usb 9-1: Using ep0 maxpacket: 16 [ 948.096691][ T9054] usb 9-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 948.107593][ T9054] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7 [ 948.122575][ T9054] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x2 has invalid wMaxPacketSize 0 [ 948.132866][ T9054] usb 9-1: config 0 interface 0 altsetting 0 bulk endpoint 0x2 has invalid maxpacket 0 [ 948.143025][ T9054] usb 9-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 948.181705][ T9054] usb 9-1: New USB device found, idVendor=2040, idProduct=b138, bcdDevice= 1.42 [ 948.198830][ T9054] usb 9-1: New USB device strings: Mfr=4, Product=0, SerialNumber=0 [ 948.207144][ T9054] usb 9-1: Manufacturer: syz [ 948.270787][ T9054] usb 9-1: config 0 descriptor?? [ 948.456363][T10393] Bluetooth: hci3: Unknown advertising packet type: 0x74 [ 948.456556][T10393] Bluetooth: hci3: Unknown advertising packet type: 0x16 [ 948.464216][T10393] Bluetooth: hci3: Malformed LE Event: 0x0d [ 948.859677][ T9054] rc_core: IR keymap rc-hauppauge not found [ 948.866794][ T9054] Registered IR keymap rc-empty [ 948.873684][ T9054] mceusb 9-1:0.0: Error: mce write submit urb error = -90 [ 948.959397][ T9054] mceusb 9-1:0.0: Error: mce write submit urb error = -90 [ 948.980031][ T9054] rc rc0: Conexant Hybrid TV (cx231xx) MCE IR no TX as /devices/platform/dummy_hcd.8/usb9/9-1/9-1:0.0/rc/rc0 [ 948.996615][ T9054] input: Conexant Hybrid TV (cx231xx) MCE IR no TX as /devices/platform/dummy_hcd.8/usb9/9-1/9-1:0.0/rc/rc0/input25 [ 949.090268][ T9054] mceusb 9-1:0.0: Error: mce write submit urb error = -90 [ 949.203343][ T9054] mceusb 9-1:0.0: Error: mce write submit urb error = -90 [ 949.230914][ T9054] mceusb 9-1:0.0: Error: mce write submit urb error = -90 [ 949.263771][T12635] loop9: detected capacity change from 0 to 64 [ 949.264935][ T9054] mceusb 9-1:0.0: Error: mce write submit urb error = -90 [ 949.345818][T12635] BFS-fs: bfs_fill_super(): loop9 is unclean, continuing [ 949.349706][ T9054] mceusb 9-1:0.0: Error: mce write submit urb error = -90 [ 949.415116][ T9054] mceusb 9-1:0.0: Error: mce write submit urb error = -90 [ 949.463611][ T9054] mceusb 9-1:0.0: Error: mce write submit urb error = -90 [ 949.497326][ T9054] mceusb 9-1:0.0: Error: mce write submit urb error = -90 [ 949.538077][ T9054] mceusb 9-1:0.0: Error: mce write submit urb error = -90 [ 949.573975][ T9054] mceusb 9-1:0.0: Error: mce write submit urb error = -90 [ 949.614400][ T9054] mceusb 9-1:0.0: Registered with mce emulator interface version 1 [ 949.630650][ T9054] mceusb 9-1:0.0: 2 tx ports (0x0 cabled) and 2 rx sensors (0x0 active) [ 949.704424][ T9054] usb 9-1: USB disconnect, device number 10 [ 950.325285][T12646] loop5: detected capacity change from 0 to 512 [ 950.390927][T12646] EXT4-fs: Ignoring removed i_version option [ 950.506044][T12646] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 950.834221][T12654] block device autoloading is deprecated and will be removed. [ 950.966945][T10439] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 951.242211][ T9054] kernel write not supported for file /amidi2 (pid: 9054 comm: kworker/1:0) [ 951.619364][T12665] netlink: 4 bytes leftover after parsing attributes in process `syz.6.2587'. [ 951.698239][T12665] netlink: 4 bytes leftover after parsing attributes in process `syz.6.2587'. [ 952.635834][T12678] netlink: 88 bytes leftover after parsing attributes in process `syz.9.2592'. [ 953.501356][ T9056] usb 6-1: new high-speed USB device number 8 using dummy_hcd [ 953.688986][ T9056] usb 6-1: Using ep0 maxpacket: 16 [ 953.746029][ T9056] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 953.757368][ T9056] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7 [ 953.768704][ T9056] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x2 has invalid wMaxPacketSize 0 [ 953.778896][ T9056] usb 6-1: config 0 interface 0 altsetting 0 bulk endpoint 0x2 has invalid maxpacket 0 [ 953.789097][ T9056] usb 6-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 953.826447][ T9056] usb 6-1: New USB device found, idVendor=2040, idProduct=b138, bcdDevice= 1.42 [ 953.836167][ T9056] usb 6-1: New USB device strings: Mfr=4, Product=0, SerialNumber=0 [ 953.844615][ T9056] usb 6-1: Manufacturer: syz [ 953.901803][ T9056] usb 6-1: config 0 descriptor?? [ 954.105032][T12693] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2611'. [ 954.381133][T12697] netlink: 4 bytes leftover after parsing attributes in process `syz.9.2599'. [ 954.426443][T12694] loop8: detected capacity change from 0 to 2048 [ 954.503549][T12694] NILFS (loop8): broken superblock, retrying with spare superblock (blocksize = 1024) [ 954.515629][T12694] NILFS (loop8): mounting unchecked fs [ 954.523574][T12694] NILFS (loop8): invalid segment: Sequence number mismatch [ 954.536249][T12694] NILFS (loop8): unable to fall back to spare super block [ 954.548846][T12694] NILFS (loop8): error -22 while searching super root [ 954.680165][ T9056] rc_core: IR keymap rc-hauppauge not found [ 954.686496][ T9056] Registered IR keymap rc-empty [ 954.692552][ T9056] mceusb 6-1:0.0: Error: mce write submit urb error = -90 [ 954.772604][ T9056] mceusb 6-1:0.0: Error: mce write submit urb error = -90 [ 954.800730][ T9056] rc rc0: Conexant Hybrid TV (cx231xx) MCE IR no TX as /devices/platform/dummy_hcd.5/usb6/6-1/6-1:0.0/rc/rc0 [ 954.815880][ T9056] input: Conexant Hybrid TV (cx231xx) MCE IR no TX as /devices/platform/dummy_hcd.5/usb6/6-1/6-1:0.0/rc/rc0/input26 [ 954.890082][ T9056] mceusb 6-1:0.0: Error: mce write submit urb error = -90 [ 954.924471][ T9056] mceusb 6-1:0.0: Error: mce write submit urb error = -90 [ 955.027719][ T9056] mceusb 6-1:0.0: Error: mce write submit urb error = -90 [ 955.069888][ T9056] mceusb 6-1:0.0: Error: mce write submit urb error = -90 [ 955.120666][ T9056] mceusb 6-1:0.0: Error: mce write submit urb error = -90 [ 955.169391][ T9056] mceusb 6-1:0.0: Error: mce write submit urb error = -90 [ 955.199370][ T9056] mceusb 6-1:0.0: Error: mce write submit urb error = -90 [ 955.229035][ T9056] mceusb 6-1:0.0: Error: mce write submit urb error = -90 [ 955.289809][ T9056] mceusb 6-1:0.0: Error: mce write submit urb error = -90 [ 955.321295][ T9056] mceusb 6-1:0.0: Error: mce write submit urb error = -90 [ 955.368246][ T9056] mceusb 6-1:0.0: Registered with mce emulator interface version 1 [ 955.376853][ T9056] mceusb 6-1:0.0: 2 tx ports (0x0 cabled) and 2 rx sensors (0x0 active) [ 955.466132][ T9056] usb 6-1: USB disconnect, device number 8 [ 956.190551][ T30] audit: type=1326 audit(1748296377.934:75): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12714 comm="syz.6.2609" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc7539 code=0x7ffc0000 [ 956.216478][ T30] audit: type=1326 audit(1748296377.934:76): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12714 comm="syz.6.2609" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc7539 code=0x7ffc0000 [ 956.429128][ T30] audit: type=1326 audit(1748296378.024:77): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12714 comm="syz.6.2609" exe="/root/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf7fc7539 code=0x7ffc0000 [ 956.451754][ T30] audit: type=1326 audit(1748296378.064:78): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12714 comm="syz.6.2609" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc7539 code=0x7ffc0000 [ 956.475409][ T30] audit: type=1326 audit(1748296378.064:79): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12714 comm="syz.6.2609" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc7539 code=0x7ffc0000 [ 956.502391][ T30] audit: type=1326 audit(1748296378.074:80): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12714 comm="syz.6.2609" exe="/root/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf7fc7539 code=0x7ffc0000 [ 956.526256][ T30] audit: type=1326 audit(1748296378.074:81): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12714 comm="syz.6.2609" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc7539 code=0x7ffc0000 [ 956.548940][ T30] audit: type=1326 audit(1748296378.074:82): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12714 comm="syz.6.2609" exe="/root/syz-executor" sig=0 arch=40000003 syscall=218 compat=1 ip=0xf7fc7539 code=0x7ffc0000 [ 956.571416][ T30] audit: type=1326 audit(1748296378.074:83): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12714 comm="syz.6.2609" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc7539 code=0x7ffc0000 [ 958.411497][T12741] syz.6.2620 calls setitimer() with new_value NULL pointer. Misfeature support will be removed [ 960.195502][T12759] netlink: 8 bytes leftover after parsing attributes in process `syz.9.2630'. [ 960.211499][T12759] netlink: 'syz.9.2630': attribute type 18 has an invalid length. [ 960.222051][T12759] netlink: 4 bytes leftover after parsing attributes in process `syz.9.2630'. [ 961.576528][T12774] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2638'. [ 962.109307][ T9054] usb 7-1: new high-speed USB device number 5 using dummy_hcd [ 962.330026][ T9054] usb 7-1: Using ep0 maxpacket: 16 [ 962.380581][ T9054] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 962.392995][ T9054] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 962.406535][ T9054] usb 7-1: New USB device found, idVendor=04d8, idProduct=f002, bcdDevice= 0.00 [ 962.417133][ T9054] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 962.505091][ T9054] usb 7-1: config 0 descriptor?? [ 962.891923][T12787] netlink: 28 bytes leftover after parsing attributes in process `syz.9.2644'. [ 962.901732][T12787] netlink: 28 bytes leftover after parsing attributes in process `syz.9.2644'. [ 962.950909][T12787] gretap0: entered promiscuous mode [ 962.965822][T12787] macvlan0: entered promiscuous mode [ 963.098901][ T9054] hid-picolcd 0003:04D8:F002.001C: No report with id 0xf3 found [ 963.106881][ T9054] hid-picolcd 0003:04D8:F002.001C: No report with id 0xf4 found [ 963.260598][ T9056] usb 7-1: USB disconnect, device number 5 [ 963.266031][T12791] loop0: detected capacity change from 0 to 256 [ 963.391871][T12791] exFAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 963.574268][T12791] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010364, chksum : 0x43f9f21b, utbl_chksum : 0xe619d30d) [ 963.683765][ T30] audit: type=1800 audit(1748296385.454:84): pid=12791 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.2645" name="file1" dev="loop0" ino=1048750 res=0 errno=0 [ 965.890105][T12805] loop8: detected capacity change from 0 to 40427 [ 965.935085][T12805] F2FS-fs (loop8): Invalid log_blocksize (268), supports only 12 [ 965.946860][T12805] F2FS-fs (loop8): Can't find valid F2FS filesystem in 1th superblock [ 965.987807][T12805] F2FS-fs (loop8): Wrong NAT boundary, start(2560) end(3584) blocks(512) [ 965.998269][T12805] F2FS-fs (loop8): Can't find valid F2FS filesystem in 2th superblock [ 966.807052][ T1285] ieee802154 phy0 wpan0: encryption failed: -22 [ 966.814772][ T1285] ieee802154 phy1 wpan1: encryption failed: -22 [ 967.384885][T12821] loop0: detected capacity change from 0 to 512 [ 967.460186][T12821] EXT4-fs (loop0): Test dummy encryption mode enabled [ 967.467283][T12821] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 967.562621][T12821] EXT4-fs (loop0): 1 truncate cleaned up [ 967.571408][T12821] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 968.301994][T10465] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 968.901498][T12835] tipc: Started in network mode [ 968.906627][T12835] tipc: Node identity -:, cluster identity 4711 [ 968.913576][T12835] tipc: Enabling of bearer rejected, failed to enable media [ 969.977578][T12842] loop5: detected capacity change from 0 to 256 [ 970.059547][T12842] FAT-fs (loop5): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 970.671948][T12850] loop0: detected capacity change from 0 to 256 [ 970.725244][T12850] exfat: Deprecated parameter 'utf8' [ 970.731275][T12850] exfat: Deprecated parameter 'utf8' [ 970.737591][T12850] exfat: Deprecated parameter 'utf8' [ 970.838061][T12850] exFAT-fs (loop0): failed to load upcase table (idx : 0x00011f41, chksum : 0xf6d3f72e, utbl_chksum : 0xe619d30d) [ 971.401996][ T9054] usb 6-1: new high-speed USB device number 9 using dummy_hcd [ 971.550847][T12860] loop8: detected capacity change from 0 to 512 [ 971.588877][ T9054] usb 6-1: Using ep0 maxpacket: 16 [ 971.613489][T12860] EXT4-fs error (device loop8): ext4_orphan_get:1391: inode #17: comm syz.8.2677: iget: bogus i_mode (0) [ 971.652382][ T9054] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0 [ 971.708148][ T9054] usb 6-1: New USB device found, idVendor=0b57, idProduct=2bbd, bcdDevice=e7.cc [ 971.711833][T12860] EXT4-fs error (device loop8): ext4_orphan_get:1396: comm syz.8.2677: couldn't read orphan inode 17 (err -117) [ 971.718263][ T9054] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 971.747444][ T9054] usb 6-1: Product: syz [ 971.753597][ T9054] usb 6-1: Manufacturer: syz [ 971.761574][ T9054] usb 6-1: SerialNumber: syz [ 971.764228][T12860] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 971.797531][ T9054] usb 6-1: config 0 descriptor?? [ 971.927877][ T9054] usbhid 6-1:0.0: couldn't find an input interrupt endpoint [ 972.015243][T12860] EXT4-fs error (device loop8): ext4_validate_block_bitmap:432: comm syz.8.2677: bg 0: block 7: invalid block bitmap [ 972.022738][ T9054] usb 6-1: USB disconnect, device number 9 [ 972.337668][ T9448] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 972.580784][T12874] bridge0: port 1(bridge_slave_0) entered blocking state [ 972.588719][T12874] bridge0: port 1(bridge_slave_0) entered forwarding state [ 972.648252][T12875] binder: Binderfs stats mode cannot be changed during a remount [ 973.407676][T12883] loop9: detected capacity change from 0 to 256 [ 973.498814][T12883] FAT-fs (loop9): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 973.754094][T12888] loop8: detected capacity change from 0 to 256 [ 973.807686][T12888] exfat: Deprecated parameter 'utf8' [ 973.815929][T12888] exfat: Deprecated parameter 'utf8' [ 973.822209][T12888] exfat: Deprecated parameter 'utf8' [ 973.981065][T12888] exFAT-fs (loop8): failed to load upcase table (idx : 0x00011f41, chksum : 0xf6d3f72e, utbl_chksum : 0xe619d30d) [ 974.000193][ T5090] Bluetooth: hci2: command 0x0406 tx timeout [ 975.418221][T12910] bridge0: port 1(bridge_slave_0) entered blocking state [ 975.426049][T12910] bridge0: port 1(bridge_slave_0) entered forwarding state [ 977.142782][T12929] loop6: detected capacity change from 0 to 256 [ 977.241340][T12929] exfat: Deprecated parameter 'utf8' [ 977.247058][T12929] exfat: Deprecated parameter 'utf8' [ 977.253468][T12929] exfat: Deprecated parameter 'utf8' [ 977.472053][T12929] exFAT-fs (loop6): failed to load upcase table (idx : 0x00011f41, chksum : 0xf6d3f72e, utbl_chksum : 0xe619d30d) [ 979.983594][T12963] loop8: detected capacity change from 0 to 256 [ 980.063029][T12965] loop5: detected capacity change from 0 to 256 [ 980.103256][T12963] FAT-fs (loop8): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 980.116531][T12967] loop9: detected capacity change from 0 to 512 [ 980.125513][T12965] exFAT-fs (loop5): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 980.125603][T12965] exFAT-fs (loop5): Medium has reported failures. Some data may be lost. [ 980.221616][T12965] exFAT-fs (loop5): failed to load upcase table (idx : 0x0000ff98, chksum : 0xc64c1d22, utbl_chksum : 0xe619d30d) [ 980.286956][T12967] EXT4-fs error (device loop9): ext4_orphan_get:1391: inode #17: comm syz.9.2721: iget: bogus i_mode (0) [ 980.367000][T12967] EXT4-fs error (device loop9): ext4_orphan_get:1396: comm syz.9.2721: couldn't read orphan inode 17 (err -117) [ 980.428919][T12967] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 980.701491][T12967] EXT4-fs error (device loop9): ext4_validate_block_bitmap:432: comm syz.9.2721: bg 0: block 7: invalid block bitmap [ 981.201729][ T9574] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 982.457534][T12993] loop0: detected capacity change from 0 to 1024 [ 982.674407][ T30] audit: type=1800 audit(1748296404.434:85): pid=12993 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.2734" name="file1" dev="loop0" ino=20 res=0 errno=0 [ 984.922786][T13018] binder: Binderfs stats mode cannot be changed during a remount [ 985.907926][T13035] netlink: 8 bytes leftover after parsing attributes in process `syz.6.2752'. [ 986.888711][ T9054] usb 9-1: new high-speed USB device number 11 using dummy_hcd [ 987.068806][ T9054] usb 9-1: Using ep0 maxpacket: 32 [ 987.120112][ T9054] usb 9-1: New USB device found, idVendor=0fd9, idProduct=0025, bcdDevice=29.40 [ 987.132944][ T9054] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 987.164349][ T9054] usb 9-1: config 0 descriptor?? [ 987.482563][ T9054] dvb-usb: found a 'Elgato EyeTV Sat' in warm state. [ 987.524094][ T9054] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer. [ 987.575932][ T9054] dvbdev: DVB: registering new adapter (Elgato EyeTV Sat) [ 987.586721][ T9054] usb 9-1: media controller created [ 987.737452][T13044] ===================================================== [ 987.740226][ T9054] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered. [ 987.747347][T13044] BUG: KMSAN: kernel-infoleak in _copy_to_user+0xcc/0x120 [ 987.763039][T13044] _copy_to_user+0xcc/0x120 [ 987.767796][T13044] i2cdev_ioctl_smbus+0x586/0x660 [ 987.773314][T13044] compat_i2cdev_ioctl+0x48f/0xb40 [ 987.781008][T13044] __ia32_compat_sys_ioctl+0x7f9/0x1260 [ 987.786967][T13044] ia32_sys_call+0x2d07/0x42c0 [ 987.792331][T13044] __do_fast_syscall_32+0xb0/0x110 [ 987.797738][T13044] do_fast_syscall_32+0x38/0x80 [ 987.805269][T13044] do_SYSENTER_32+0x1f/0x30 [ 987.811512][T13044] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 987.823837][T13044] [ 987.826319][T13044] Uninit was stored to memory at: [ 987.836315][T13044] __i2c_smbus_xfer+0x254d/0x2f60 [ 987.842302][T13044] i2c_smbus_xfer+0x31d/0x4d0 [ 987.847261][T13044] i2cdev_ioctl_smbus+0x4a1/0x660 [ 987.854975][T13044] compat_i2cdev_ioctl+0x48f/0xb40 [ 987.860466][T13044] __ia32_compat_sys_ioctl+0x7f9/0x1260 [ 987.866263][T13044] ia32_sys_call+0x2d07/0x42c0 [ 987.873691][T13044] __do_fast_syscall_32+0xb0/0x110 [ 987.879300][T13044] do_fast_syscall_32+0x38/0x80 [ 987.884439][T13044] do_SYSENTER_32+0x1f/0x30 [ 987.891567][T13044] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 987.898187][T13044] [ 987.901388][T13044] Local variable msgbuf1.i created at: [ 987.907992][T13044] __i2c_smbus_xfer+0x86a/0x2f60 [ 987.916777][T13044] i2c_smbus_xfer+0x31d/0x4d0 [ 987.926739][T13044] [ 987.933208][T13044] Bytes 0-1 of 2 are uninitialized [ 987.938685][T13044] Memory access of size 2 starts at ffff88813f3dfc86 [ 987.945546][T13044] Data copied to user address 0000000080000080 [ 987.954298][T13044] [ 987.956840][T13044] CPU: 0 UID: 0 PID: 13044 Comm: syz.8.2755 Not tainted 6.15.0-syzkaller #0 PREEMPT(undef) [ 987.967305][T13044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 987.979973][T13044] ===================================================== [ 987.987103][T13044] Disabling lock debugging due to kernel taint [ 987.994191][T13044] Kernel panic - not syncing: kmsan.panic set ... [ 988.000819][T13044] CPU: 0 UID: 0 PID: 13044 Comm: syz.8.2755 Tainted: G B 6.15.0-syzkaller #0 PREEMPT(undef) [ 988.012740][T13044] Tainted: [B]=BAD_PAGE [ 988.017044][T13044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 988.027301][T13044] Call Trace: [ 988.030750][T13044] [ 988.033831][T13044] __dump_stack+0x26/0x30 [ 988.038419][T13044] dump_stack_lvl+0x53/0x270 [ 988.043607][T13044] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 988.049844][T13044] dump_stack+0x1e/0x25 [ 988.054254][T13044] panic+0x4bd/0xd50 [ 988.058444][T13044] kmsan_report+0x29d/0x2a0 [ 988.063230][T13044] ? kmsan_internal_check_memory+0x496/0x570 [ 988.069483][T13044] ? kmsan_copy_to_user+0xca/0xe0 [ 988.074791][T13044] ? _copy_to_user+0xcc/0x120 [ 988.079724][T13044] ? i2cdev_ioctl_smbus+0x586/0x660 [ 988.085172][T13044] ? compat_i2cdev_ioctl+0x48f/0xb40 [ 988.090692][T13044] ? __ia32_compat_sys_ioctl+0x7f9/0x1260 [ 988.096687][T13044] ? ia32_sys_call+0x2d07/0x42c0 [ 988.101849][T13044] ? __do_fast_syscall_32+0xb0/0x110 [ 988.107435][T13044] ? do_fast_syscall_32+0x38/0x80 [ 988.112746][T13044] ? do_SYSENTER_32+0x1f/0x30 [ 988.117716][T13044] ? entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 988.124531][T13044] ? __pfx_az6027_i2c_xfer+0x10/0x10 [ 988.130077][T13044] ? __i2c_transfer+0x11ca/0x30e0 [ 988.135344][T13044] ? kmsan_get_metadata+0x105/0x1b0 [ 988.140854][T13044] ? kmsan_internal_set_shadow_origin+0x79/0x110 [ 988.147506][T13044] ? kmsan_get_metadata+0x105/0x1b0 [ 988.152996][T13044] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 988.159092][T13044] ? __i2c_smbus_xfer+0x1e93/0x2f60 [ 988.164571][T13044] ? kmsan_get_metadata+0x105/0x1b0 [ 988.170029][T13044] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 988.176106][T13044] kmsan_internal_check_memory+0x496/0x570 [ 988.182178][T13044] kmsan_copy_to_user+0xca/0xe0 [ 988.187262][T13044] ? should_fail_usercopy+0x2e/0x40 [ 988.192680][T13044] _copy_to_user+0xcc/0x120 [ 988.197392][T13044] i2cdev_ioctl_smbus+0x586/0x660 [ 988.202653][T13044] compat_i2cdev_ioctl+0x48f/0xb40 [ 988.208015][T13044] ? __pfx_compat_i2cdev_ioctl+0x10/0x10 [ 988.213865][T13044] __ia32_compat_sys_ioctl+0x7f9/0x1260 [ 988.219665][T13044] ? kmsan_get_metadata+0x105/0x1b0 [ 988.225157][T13044] ? kmsan_get_metadata+0x105/0x1b0 [ 988.230640][T13044] ia32_sys_call+0x2d07/0x42c0 [ 988.235609][T13044] __do_fast_syscall_32+0xb0/0x110 [ 988.240979][T13044] ? irqentry_exit_to_user_mode+0x82/0xa0 [ 988.246942][T13044] do_fast_syscall_32+0x38/0x80 [ 988.252040][T13044] do_SYSENTER_32+0x1f/0x30 [ 988.256778][T13044] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 988.263349][T13044] RIP: 0023:0xf7ff1539 [ 988.267576][T13044] Code: 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 [ 988.287417][T13044] RSP: 002b:00000000f511655c EFLAGS: 00000206 ORIG_RAX: 0000000000000036 [ 988.296042][T13044] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000000000720 [ 988.304306][T13044] RDX: 0000000080000140 RSI: 0000000000000000 RDI: 0000000000000000 [ 988.312456][T13044] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 988.320604][T13044] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000 [ 988.328754][T13044] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 988.336940][T13044] [ 988.340372][T13044] Kernel Offset: disabled [ 988.344825][T13044] Rebooting in 86400 seconds..