last executing test programs: 13.649018926s ago: executing program 3: r0 = syz_io_uring_setup(0x16d2, &(0x7f0000000080)={0x0, 0x0, 0x10100}, &(0x7f0000000040)=0x0, &(0x7f0000000140)=0x0) socket(0x80000000000000a, 0x2, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f00000001c0)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}) r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0) write$UHID_CREATE2(r3, &(0x7f00000001c0)=ANY=[@ANYBLOB='/'], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_MKDIRAT={0x25, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}) io_uring_enter(r0, 0x2d7e, 0x0, 0x0, 0x0, 0x0) 13.111136649s ago: executing program 3: syz_mount_image$vfat(&(0x7f0000003880), &(0x7f0000000200)='./file1\x00', 0x0, &(0x7f0000000700)=ANY=[@ANYBLOB="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"], 0x6, 0x2a7, &(0x7f00000011c0)="$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") r0 = creat(0x0, 0x0) creat(&(0x7f00000001c0)='./file1\x00', 0x0) ftruncate(r0, 0x4) 12.412192429s ago: executing program 3: r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000000), 0xc0802, 0x0) ioctl$PPPIOCNEWUNIT(r0, 0xc004743e, &(0x7f00000000c0)) pwritev(r0, &(0x7f0000000540)=[{0x0}], 0x1, 0x0, 0x0) 11.827386367s ago: executing program 3: openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4010ae68, &(0x7f0000000100)) 11.458538732s ago: executing program 3: setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, &(0x7f0000ab9ff0)={0x2, &(0x7f0000000000)=[{}, {0x6}]}, 0x10) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_NEXT_DEVICE(0xffffffffffffffff, 0xc10c5541, &(0x7f0000000000)) 11.172811842s ago: executing program 3: syz_mount_image$vfat(&(0x7f0000003880), &(0x7f0000000200)='./file1\x00', 0x0, &(0x7f0000000700)=ANY=[@ANYBLOB="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"], 0x6, 0x2a7, &(0x7f00000011c0)="$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") r0 = creat(0x0, 0x0) creat(&(0x7f00000001c0)='./file1\x00', 0x0) ftruncate(r0, 0x4) 9.55159584s ago: executing program 2: r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000000), 0xc0802, 0x0) ioctl$PPPIOCNEWUNIT(r0, 0xc004743e, &(0x7f00000000c0)) pwritev(r0, &(0x7f0000000540)=[{0x0}], 0x1, 0x0, 0x0) 8.807254362s ago: executing program 2: chdir(0x0) syz_mount_image$hfsplus(&(0x7f0000000600), &(0x7f0000000640)='./file0\x00', 0x108a860, &(0x7f0000002600)=ANY=[], 0x1, 0x613, &(0x7f0000000dc0)="$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") prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) preadv(r0, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0) mlock(&(0x7f0000000000/0x800000)=nil, 0x800000) mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x0, 0x401d031, 0xffffffffffffffff, 0x0) 6.295289177s ago: executing program 1: r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000000), 0xc0802, 0x0) ioctl$PPPIOCNEWUNIT(r0, 0xc004743e, &(0x7f00000000c0)) pwritev(r0, &(0x7f0000000540)=[{&(0x7f0000000140)}], 0x1, 0x0, 0x0) 5.772681189s ago: executing program 2: socket$nl_route(0x10, 0x3, 0x0) ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0x40305839, 0x0) syz_open_dev$hidraw(&(0x7f0000000080), 0x0, 0x0) r0 = syz_usb_connect$cdc_ncm(0x0, 0x6e, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000090000082502000000000000000109025c00020100f92a0904000001020900000524060001053408fa6e0d240f0100000000000d000a0006471a010000190581"], 0x0) syz_open_dev$char_usb(0xc, 0xb4, 0x0) syz_usb_disconnect(r0) syz_usb_connect$uac1(0x1, 0x71, &(0x7f00000000c0)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1d6b, 0x101, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x5f, 0x3, 0x1, 0x0, 0x0, 0x0, {{}, {}, {0x9, 0x4, 0x1, 0x1, 0x1, 0x1, 0x2, 0x0, 0x0, {}, {{0x9, 0x5, 0x1, 0x9, 0x0, 0x0, 0x0, 0x0, {0x7}}}}, {}, {0x9, 0x4, 0x2, 0x1, 0x1, 0x1, 0x2, 0x0, 0x0, {}, {{0x9, 0x5, 0x82, 0x9, 0x0, 0x0, 0x0, 0x0, {0x7}}}}}}}]}}, 0x0) ioctl$FS_IOC_SET_ENCRYPTION_POLICY(0xffffffffffffffff, 0x800c6613, 0x0) 5.159956049s ago: executing program 1: syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000580)='./file1\x00', 0x40, &(0x7f0000000340), 0x1, 0x548, &(0x7f0000000b40)="$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") r0 = openat(0xffffffffffffff9c, &(0x7f00000001c0)='./file1\x00', 0x20201, 0x0) write$cgroup_subtree(r0, &(0x7f0000000240)=ANY=[], 0x6c9f) r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x103042, 0x0) pwritev2(r1, &(0x7f00000001c0)=[{&(0x7f0000000140)="1d", 0x1}], 0x1, 0x17fff, 0x0, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x0, 0x0) r3 = openat$incfs(0xffffffffffffff9c, &(0x7f0000000040)='.log\x00', 0x10042, 0x0) pwrite64(r3, &(0x7f0000000000)="ec", 0x40000, 0x0) sendfile(r1, r2, 0x0, 0x400000000d612) r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0) ioctl$FS_IOC_RESVSP(r4, 0x40305839, &(0x7f0000000180)={0x0, 0x0, 0x0, 0xde5}) 4.332588521s ago: executing program 0: r0 = syz_open_dev$sndctrl(0x0, 0x2, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_NEXT_DEVICE(r0, 0xc10c5541, &(0x7f0000000000)) 4.326949989s ago: executing program 4: syz_mount_image$vfat(&(0x7f0000003880), &(0x7f0000000200)='./file1\x00', 0x0, &(0x7f0000000700)=ANY=[@ANYBLOB="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"], 0x6, 0x2a7, &(0x7f00000011c0)="$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") r0 = creat(&(0x7f0000000000)='./bus\x00', 0x0) creat(0x0, 0x0) ftruncate(r0, 0x4) 3.829737046s ago: executing program 0: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='memory.events\x00', 0x26e1, 0x0) openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x7a05, 0x1700) r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$TUNSETOFFLOAD(r0, 0x40047438, 0x0) 3.690352087s ago: executing program 1: prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0) openat$hwrng(0xffffffffffffff9c, 0x0, 0x0, 0x0) r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0) ioctl$VHOST_SET_VRING_BASE(r0, 0xaf01, 0x0) r1 = open(&(0x7f0000000040)='./bus\x00', 0x14507e, 0x0) r2 = eventfd2(0x45, 0x0) dup2(r2, r1) write$eventfd(r2, &(0x7f0000000000)=0xfffffffffffffffe, 0x8) ioctl$VHOST_SET_VRING_ERR(r0, 0x4008af22, &(0x7f0000000000)={0x0, r1}) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000140)={0x0, 0x0, 0x0, &(0x7f0000000240)=""/53, 0x0}) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000280)={0x1, 0x0, 0x0, &(0x7f0000000500)=""/73, 0x0}) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f00000006c0)) ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f00000001c0)=0xffffffff) ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f00000000c0)={0x0, r2}) r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x275a, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x0, 0x12, r3, 0x0) 3.551182183s ago: executing program 4: socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00'}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000240)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x8}]}, 0x24}}, 0x0) 3.301976887s ago: executing program 0: prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0) openat$hwrng(0xffffffffffffff9c, 0x0, 0x0, 0x0) r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0) ioctl$VHOST_SET_VRING_BASE(r0, 0xaf01, 0x0) r1 = open(&(0x7f0000000040)='./bus\x00', 0x14507e, 0x0) r2 = eventfd2(0x45, 0x0) dup2(r2, r1) write$eventfd(r2, &(0x7f0000000000)=0xfffffffffffffffe, 0x8) ioctl$VHOST_SET_VRING_ERR(r0, 0x4008af22, &(0x7f0000000000)={0x0, r1}) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000140)={0x0, 0x0, 0x0, &(0x7f0000000240)=""/53, 0x0}) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000280)={0x1, 0x0, 0x0, &(0x7f0000000500)=""/73, 0x0}) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f00000006c0)) ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f00000001c0)=0xffffffff) ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f00000000c0)={0x0, r2}) 2.621619259s ago: executing program 4: r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000000), 0xc0802, 0x0) ioctl$PPPIOCNEWUNIT(r0, 0xc004743e, &(0x7f00000000c0)) pwritev(r0, &(0x7f0000000540)=[{&(0x7f0000000140)}], 0x1, 0x0, 0x0) 2.009144502s ago: executing program 4: r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$KVM_IRQFD(r0, 0x4010ae68, &(0x7f0000000100)) 1.812588985s ago: executing program 0: r0 = openat$audio(0xffffffffffffff9c, &(0x7f00000000c0), 0x109842, 0x0) ioctl$SNDCTL_DSP_SETFRAGMENT(r0, 0xc004500a, &(0x7f0000000040)) writev(r0, &(0x7f0000000340)=[{&(0x7f0000000100)="6fd1aa7981c5acf935c47b8ad0a4e6d7935fae4ef2b31430fbd6ce505b7f3e0a12db57e51c3ed1802495ff50bd844971e94497b0514d4ef8ad8b4efdb8c85685d963243d278e770827231689e06f664d1d4d849b690189", 0x57}, {&(0x7f0000000180)="93fd84b536ebbd4e", 0x8}], 0x2) 1.783256655s ago: executing program 2: prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff}) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x0, 0x0) r2 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fc00100}]}) ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, 0x0) ioctl$SECCOMP_IOCTL_NOTIF_RECV(r2, 0xc0502100, &(0x7f0000000280)={0x0}) ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r2, 0x40182103, &(0x7f0000000180)={r3, 0x3, r2}) 1.776294235s ago: executing program 1: syz_mount_image$hfs(&(0x7f0000000180), &(0x7f0000000040)='./file0\x00', 0x208400, &(0x7f0000000500)=ANY=[@ANYBLOB="696f636861727365743d6d616363726f617469616e2c636f6465706167653d69736f383835392d392c747970653d8806e6d92c007c3da50838b213e45c60dfa80dde3ce87abe5e338e4e6a59adcbbcd8c1298ca6754466db1a8a1278dabca7f2fe40cf27dc1fb941304798bf42ba7569909de3630242504efec00c875fa448eb7bdaa7ba31d37ec3e7d64cd77624a0da2b05469cfb6ff12378569cc8b28d1168e0b17c24be8bc7e84cc44764d86c47497b7f98bc4582fe16504124539d5e1c09b9294efa2dd7"], 0x1, 0x2db, &(0x7f0000000600)="$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") r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='cpu.stat\x00', 0x275a, 0x0) syz_mount_image$iso9660(&(0x7f0000000240), &(0x7f0000000280)='./file1\x00', 0x0, &(0x7f0000000040)=ANY=[], 0x3, 0x79c, &(0x7f00000002c0)="$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") write$binfmt_script(r0, &(0x7f00000001c0), 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x800001, 0x28011, r0, 0x0) open(&(0x7f0000000100)='./bus\x00', 0x143142, 0x0) 1.482944891s ago: executing program 4: r0 = syz_open_dev$sndctrl(0x0, 0x2, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_NEXT_DEVICE(r0, 0xc10c5541, &(0x7f0000000000)) 1.043540918s ago: executing program 1: r0 = syz_io_uring_setup(0x24f9, &(0x7f0000000000)={0x0, 0x0, 0x10100}, &(0x7f0000000080)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f00000001c0)=@IORING_OP_REMOVE_BUFFERS={0x1f, 0x0, 0x0, 0x400}) io_uring_enter(r0, 0x2d3e, 0x0, 0x0, 0x0, 0x0) 991.844665ms ago: executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) write$RDMA_USER_CM_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000000280)={0x6, 0x118, 0xfa00, {{0x0, 0x0, "2deaa485b19ce8b495847608eaee50aeacc387946d36040e883dbc3c2a8a9f3cbf784d4d30e95e941a6d829b03509144ac9271c884511368c5f0e103fd73983fc0baabcb6976d6d230e7779dfb5ab8ef23b2739ad39a83f7a2fa5d11a3788a2926fa8fcfdfb89feb5c21c0152069f1ca187702c1d29ef6152e98d8469ee8612594a269435a668f7d5227266ce16765a2fbe64c5f829d3e9c6a24d0d0a8774cdaccab3e5a4905b8bfe2c82b68d4e2142b760c26875a38cff370364ce3eeffbc6bb1188c949135853934dae3cab71b35c743b8541a8c19ea22a51d5f0ffc7284e24b1c407bc9731741d81372b9f9aba02cb8e13f9d273fe8795591c43e1ebd08c9"}}}, 0x120) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, 0x0}], 0x1, 0x8, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 958.0005ms ago: executing program 4: syz_mount_image$udf(&(0x7f0000000f00), &(0x7f00000000c0)='./bus\x00', 0x210008, &(0x7f0000000e00)=ANY=[@ANYBLOB='uid=', @ANYRESDEC=0x0, @ANYBLOB="2c756e64656c6574652c6e6f7672732c6164696e6963622c766f6c756d653d30303030303030303030303030303030303030322c7569643d666f726765742c6769643d666f726765742c6e6f7374726963742c6e6f7672732c0085f95733019d784ca386da1fd41ffabd4b47acca2b8d488be702157dd8711c31732d"], 0xff, 0xc2d, &(0x7f00000001c0)="$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") dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0) mkdirat(r0, &(0x7f0000000180)='./bus\x00', 0x0) renameat2(r0, &(0x7f00000001c0)='./file0\x00', r0, &(0x7f0000000200)='./bus/file0\x00', 0x0) creat(&(0x7f00000000c0)='./file0\x00', 0x0) 801.887426ms ago: executing program 2: socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00'}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000240)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x8}]}, 0x24}}, 0x0) 292.321039ms ago: executing program 2: r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000000), 0xc0802, 0x0) ioctl$PPPIOCNEWUNIT(r0, 0xc004743e, &(0x7f00000000c0)) pwritev(r0, &(0x7f0000000540)=[{&(0x7f0000000140)}], 0x1, 0x0, 0x0) 250.675628ms ago: executing program 0: prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0) openat$hwrng(0xffffffffffffff9c, 0x0, 0x0, 0x0) r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0) ioctl$VHOST_SET_VRING_BASE(r0, 0xaf01, 0x0) r1 = open(&(0x7f0000000040)='./bus\x00', 0x14507e, 0x0) r2 = eventfd2(0x45, 0x0) dup2(r2, r1) write$eventfd(r2, &(0x7f0000000000)=0xfffffffffffffffe, 0x8) ioctl$VHOST_SET_VRING_ERR(r0, 0x4008af22, &(0x7f0000000000)={0x0, r1}) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000140)={0x0, 0x0, 0x0, &(0x7f0000000240)=""/53, 0x0}) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000280)={0x1, 0x0, 0x0, &(0x7f0000000500)=""/73, 0x0}) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f00000006c0)) ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f00000001c0)=0xffffffff) ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f00000000c0)={0x0, r2}) 0s ago: executing program 1: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000000)={0x26, 'aead\x00', 0x0, 0x0, 'aegis128-generic\x00'}, 0x58) sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000000)={&(0x7f00000007c0)=@l2tp6={0xa, 0x0, 0x0, @dev}, 0x80, &(0x7f0000000080)=[{&(0x7f0000000480)="f4", 0x1}], 0x1}, 0xc810) r1 = accept4(r0, 0x0, 0x0, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r2 = socket$inet_tcp(0x2, 0x1, 0x0) ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, &(0x7f0000000200)={'batadv_slave_0\x00'}) setsockopt$inet_tcp_buf(r2, 0x6, 0x1f, &(0x7f00000000c0), 0x0) getsockopt$inet_tcp_buf(r2, 0x6, 0x23, 0x0, &(0x7f0000000080)) getsockopt$IPT_SO_GET_REVISION_TARGET(r2, 0x0, 0x43, 0x0, &(0x7f0000000280)) socket$inet_smc(0x2b, 0x1, 0x0) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000200)="ad00"/16, 0x10) sendmsg$can_raw(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000001c0)={0x0}}, 0x0) recvmmsg(r1, &(0x7f0000002440), 0x3ffffffffffff67, 0x0, 0x0) kernel console output (not intermixed with test programs): utor.2' launched './file0' with NULL argv: empty string added [ 326.111905][ T6009] A link change request failed with some changes committed already. Interface bridge_slave_1 may have been left with an inconsistent configuration, please check. [ 328.721191][ T6043] A link change request failed with some changes committed already. Interface bridge_slave_1 may have been left with an inconsistent configuration, please check. [ 330.849957][ T6071] A link change request failed with some changes committed already. Interface bridge_slave_1 may have been left with an inconsistent configuration, please check. [ 333.616421][ T6106] A link change request failed with some changes committed already. Interface bridge_slave_1 may have been left with an inconsistent configuration, please check. [ 334.787998][ T6119] syz-executor.3 uses obsolete (PF_INET,SOCK_PACKET) [ 337.313896][ T6141] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'. [ 337.454230][ T6141] futex_wake_op: syz-executor.3 tries to shift op by 144; fix this program [ 337.635156][ T29] audit: type=1326 audit(1717452461.416:12): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6140 comm="syz-executor.3" exe="/root/syz-executor.3" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f436707cee9 code=0x0 [ 337.757124][ T6151] A link change request failed with some changes committed already. Interface bridge_slave_1 may have been left with an inconsistent configuration, please check. [ 338.838561][ T6167] netlink: 165 bytes leftover after parsing attributes in process `syz-executor.1'. [ 339.159155][ T5075] Bluetooth: hci1: command 0x0406 tx timeout [ 339.168667][ T4432] Bluetooth: hci4: command 0x0406 tx timeout [ 339.175118][ T4432] Bluetooth: hci3: command 0x0406 tx timeout [ 339.794224][ T6174] mac80211_hwsim hwsim11 CTY<: renamed from wlan1 (while UP) [ 340.238972][ T6176] kvm_intel: kvm [6175]: vcpu0, guest rIP: 0x1be Unhandled WRMSR(0x1d9) = 0xa700000097 [ 340.520628][ T6187] A link change request failed with some changes committed already. Interface bridge_slave_1 may have been left with an inconsistent configuration, please check. [ 342.104172][ T1221] ieee802154 phy0 wpan0: encryption failed: -22 [ 342.110967][ T1221] ieee802154 phy1 wpan1: encryption failed: -22 [ 342.626849][ T6209] loop3: detected capacity change from 0 to 256 [ 342.818984][ T6209] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0x72685a33, utbl_chksum : 0xe619d30d) [ 344.966009][ T6227] A link change request failed with some changes committed already. Interface bridge_slave_1 may have been left with an inconsistent configuration, please check. [ 345.349997][ T6229] veth0_vlan: entered allmulticast mode [ 345.648140][ T6231] veth0_vlan: left promiscuous mode [ 345.657523][ T6231] veth0_vlan: entered promiscuous mode [ 347.679217][ T6256] syzkaller0: entered promiscuous mode [ 347.685145][ T6256] syzkaller0: entered allmulticast mode [ 348.464339][ T6268] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.4'. [ 350.956305][ T6310] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.3'. [ 353.485914][ C1] hrtimer: interrupt took 207313 ns [ 353.722028][ T6349] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.2'. [ 354.406281][ T6355] loop2: detected capacity change from 0 to 512 [ 354.471537][ T6356] loop3: detected capacity change from 0 to 64 [ 354.516908][ T6355] FAT-fs (loop2): bogus number of FAT sectors [ 354.523331][ T6355] FAT-fs (loop2): Can't find a valid FAT filesystem [ 354.623224][ T6356] MINIX-fs: mounting unchecked file system, running fsck is recommended [ 354.661655][ T6356] MINIX-fs warning: remounting unchecked fs, running fsck is recommended [ 354.742023][ T6356] MINIX-fs warning: remounting unchecked fs, running fsck is recommended [ 355.206500][ T5248] I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 0 [ 358.272511][ T6389] input: syz0 as /devices/virtual/input/input7 [ 359.127704][ T6394] loop2: detected capacity change from 0 to 2048 [ 359.277467][ T6394] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 359.277881][ T6394] ext4 filesystem being mounted at /root/syzkaller-testdir154143280/syzkaller.RkJsUA/29/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 359.662945][ T5605] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 364.284663][ T6445] netlink: 32 bytes leftover after parsing attributes in process `syz-executor.0'. [ 365.257223][ T29] audit: type=1804 audit(1717452488.996:13): pid=6461 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir2402548988/syzkaller.fkoQqI/90/file0" dev="sda1" ino=1952 res=1 errno=0 [ 366.299683][ T6469] netlink: 28 bytes leftover after parsing attributes in process `syz-executor.4'. [ 366.309498][ T6469] netlink: 28 bytes leftover after parsing attributes in process `syz-executor.4'. [ 366.556773][ T6471] 9pnet_fd: p9_fd_create_unix (6471): problem connecting socket: ./file0: -111 [ 366.899561][ T43] kernel write not supported for file bpf-prog (pid: 43 comm: kworker/1:1) [ 366.946997][ T25] usb 5-1: new high-speed USB device number 6 using dummy_hcd [ 367.237364][ T25] usb 5-1: Using ep0 maxpacket: 8 [ 367.356417][ T25] usb 5-1: config 179 has an invalid interface number: 65 but max is 0 [ 367.365115][ T25] usb 5-1: config 179 has no interface number 0 [ 367.371856][ T25] usb 5-1: config 179 interface 65 altsetting 0 endpoint 0xF has an invalid bInterval 0, changing to 7 [ 367.384639][ T25] usb 5-1: config 179 interface 65 altsetting 0 endpoint 0xF has invalid maxpacket 1025, setting to 1024 [ 367.396508][ T25] usb 5-1: config 179 interface 65 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 7 [ 367.408200][ T25] usb 5-1: config 179 interface 65 altsetting 0 endpoint 0x83 has invalid maxpacket 41728, setting to 1024 [ 367.424986][ T25] usb 5-1: config 179 interface 65 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 23 [ 367.440710][ T25] usb 5-1: New USB device found, idVendor=12ab, idProduct=90a3, bcdDevice=1e.eb [ 367.451597][ T25] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 367.603408][ T6480] loop0: detected capacity change from 0 to 512 [ 367.624019][ T6473] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22 [ 367.662205][ T4432] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 367.681170][ T4432] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 367.701108][ T4432] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 367.755325][ T4432] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 367.762516][ T6480] EXT4-fs (loop0): feature flags set on rev 0 fs, running e2fsck is recommended [ 367.762626][ T6480] EXT4-fs (loop0): blocks per group (64) and clusters per group (32768) inconsistent [ 367.795380][ T4432] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 367.807131][ T4432] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 368.662902][ T3240] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 368.823314][ T3240] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 369.143673][ T3240] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 369.412295][ T3240] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 369.756446][ T5130] usb 3-1: new high-speed USB device number 2 using dummy_hcd [ 369.839609][ T6454] usb 5-1: USB disconnect, device number 6 [ 369.856020][ C1] xpad 5-1:179.65: xpad_irq_in - usb_submit_urb failed with result -19 [ 369.889566][ T5075] Bluetooth: hci5: command tx timeout [ 370.068419][ T3240] bridge_slave_1: left allmulticast mode [ 370.074483][ T3240] bridge_slave_1: left promiscuous mode [ 370.086329][ T5130] usb 3-1: Using ep0 maxpacket: 16 [ 370.094497][ T3240] bridge0: port 2(bridge_slave_1) entered disabled state [ 370.234994][ T3240] bridge_slave_0: left allmulticast mode [ 370.242100][ T3240] bridge_slave_0: left promiscuous mode [ 370.249060][ T3240] bridge0: port 1(bridge_slave_0) entered disabled state [ 370.306895][ T5130] usb 3-1: config 0 has an invalid interface number: 2 but max is 0 [ 370.315204][ T5130] usb 3-1: config 0 has no interface number 0 [ 370.616943][ T5130] usb 3-1: New USB device found, idVendor=0582, idProduct=0005, bcdDevice= f.88 [ 370.626502][ T5130] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 370.634795][ T5130] usb 3-1: Product: syz [ 370.639970][ T5130] usb 3-1: Manufacturer: syz [ 370.644865][ T5130] usb 3-1: SerialNumber: syz [ 370.756772][ T5130] usb 3-1: config 0 descriptor?? [ 371.351118][ T5130] snd-usb-audio 3-1:0.2: probe with driver snd-usb-audio failed with error -2 [ 371.398127][ T3240] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 371.425138][ T5130] usb 3-1: USB disconnect, device number 2 [ 371.486790][ T3240] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 371.531910][ T3240] bond0 (unregistering): Released all slaves [ 371.563764][ T5419] udevd[5419]: error opening ATTR{/sys/devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.2/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 371.729132][ T6481] chnl_net:caif_netlink_parms(): no params data found [ 371.968036][ T5075] Bluetooth: hci5: command tx timeout [ 372.216502][ T29] audit: type=1804 audit(1717452495.996:14): pid=6517 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.4" name="/root/syzkaller-testdir3092861737/syzkaller.9qilaL/95/bus" dev="sda1" ino=1945 res=1 errno=0 [ 372.245205][ T29] audit: type=1804 audit(1717452496.026:15): pid=6517 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz-executor.4" name="/root/syzkaller-testdir3092861737/syzkaller.9qilaL/95/bus" dev="sda1" ino=1945 res=1 errno=0 [ 373.056690][ T3240] hsr_slave_0: left promiscuous mode [ 373.139302][ T3240] hsr_slave_1: left promiscuous mode [ 373.195245][ T3240] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 373.203428][ T3240] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 373.293563][ T3240] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 373.301436][ T3240] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 373.403582][ T3240] veth1_macvtap: left promiscuous mode [ 373.409937][ T3240] veth0_macvtap: left promiscuous mode [ 373.416144][ T3240] veth1_vlan: left promiscuous mode [ 373.421726][ T3240] veth0_vlan: left promiscuous mode [ 374.063197][ T5075] Bluetooth: hci5: command tx timeout [ 374.633137][ T5130] usb 2-1: new high-speed USB device number 5 using dummy_hcd [ 374.824725][ T3240] team0 (unregistering): Port device team_slave_1 removed [ 374.908288][ T3240] team0 (unregistering): Port device team_slave_0 removed [ 374.943823][ T6549] loop4: detected capacity change from 0 to 512 [ 375.043464][ T5130] usb 2-1: Using ep0 maxpacket: 8 [ 375.268142][ T5130] usb 2-1: config 179 has an invalid interface number: 65 but max is 0 [ 375.276989][ T5130] usb 2-1: config 179 has no interface number 0 [ 375.282359][ T6549] EXT4-fs error (device loop4): ext4_orphan_get:1394: inode #15: comm syz-executor.4: casefold flag without casefold feature [ 375.283586][ T5130] usb 2-1: config 179 interface 65 altsetting 0 endpoint 0xF has an invalid bInterval 0, changing to 7 [ 375.283758][ T5130] usb 2-1: config 179 interface 65 altsetting 0 endpoint 0xF has invalid maxpacket 1025, setting to 1024 [ 375.327187][ T5130] usb 2-1: config 179 interface 65 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 7 [ 375.339902][ T5130] usb 2-1: config 179 interface 65 altsetting 0 endpoint 0x83 has invalid maxpacket 41728, setting to 1024 [ 375.354464][ T5130] usb 2-1: config 179 interface 65 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 23 [ 375.369109][ T5130] usb 2-1: New USB device found, idVendor=12ab, idProduct=90a3, bcdDevice=1e.eb [ 375.379280][ T5130] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 375.414781][ T6549] EXT4-fs error (device loop4): ext4_orphan_get:1399: comm syz-executor.4: couldn't read orphan inode 15 (err -117) [ 375.429394][ T6542] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22 [ 375.489055][ T6531] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.2'. [ 375.490671][ T6549] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 375.961780][ T6549] loop4: detected capacity change from 512 to 64 [ 376.116214][ T5075] Bluetooth: hci5: command tx timeout [ 376.332349][ T5074] syz-executor.4: attempt to access beyond end of device [ 376.332349][ T5074] loop4: rw=14337, sector=72, nr_sectors = 2 limit=64 [ 376.348202][ T5074] Buffer I/O error on dev loop4, logical block 36, lost sync page write [ 376.355292][ T6481] bridge0: port 1(bridge_slave_0) entered blocking state [ 376.361097][ T5074] EXT4-fs error (device loop4): ext4_handle_dirty_dirblock:439: inode #2: block 36: comm syz-executor.4: IO error syncing itable block [ 376.367027][ T6481] bridge0: port 1(bridge_slave_0) entered disabled state [ 376.391026][ T6481] bridge_slave_0: entered allmulticast mode [ 376.400904][ T6481] bridge_slave_0: entered promiscuous mode [ 376.415466][ T5074] EXT4-fs error (device loop4) in ext4_delete_entry:2747: IO failure [ 376.578133][ T6481] bridge0: port 2(bridge_slave_1) entered blocking state [ 376.586418][ T6481] bridge0: port 2(bridge_slave_1) entered disabled state [ 376.594475][ T6481] bridge_slave_1: entered allmulticast mode [ 376.611421][ T6481] bridge_slave_1: entered promiscuous mode [ 376.946372][ T6481] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 377.032593][ T6481] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 377.110868][ T5074] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 377.299714][ T6481] team0: Port device team_slave_0 added [ 377.324770][ T6454] usb 2-1: USB disconnect, device number 5 [ 377.330988][ C0] xpad 2-1:179.65: xpad_irq_in - usb_submit_urb failed with result -19 [ 377.331222][ C0] xpad 2-1:179.65: xpad_irq_out - usb_submit_urb failed with result -19 [ 377.419924][ T6481] team0: Port device team_slave_1 added [ 377.843841][ T6481] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 377.853443][ T6481] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 377.887225][ T6481] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 377.956411][ T29] audit: type=1804 audit(1717452501.696:16): pid=6565 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.1" name="/root/syzkaller-testdir1737767925/syzkaller.87WG6w/105/bus" dev="sda1" ino=1956 res=1 errno=0 [ 377.985451][ T29] audit: type=1804 audit(1717452501.756:17): pid=6565 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz-executor.1" name="/root/syzkaller-testdir1737767925/syzkaller.87WG6w/105/bus" dev="sda1" ino=1956 res=1 errno=0 [ 378.107169][ T6481] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 378.114345][ T6481] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 378.141527][ T6481] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 378.614196][ T6481] hsr_slave_0: entered promiscuous mode [ 378.659070][ T6481] hsr_slave_1: entered promiscuous mode [ 378.707792][ T6481] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 378.715683][ T6481] Cannot create hsr debugfs directory [ 379.968874][ T29] audit: type=1326 audit(1717452503.746:18): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6574 comm="syz-executor.1" exe="/root/syz-executor.1" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fee5567cee9 code=0x0 [ 380.247791][ T4704] usb 3-1: new high-speed USB device number 3 using dummy_hcd [ 380.525978][ T4704] usb 3-1: Using ep0 maxpacket: 16 [ 380.771053][ T4704] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 380.783700][ T4704] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 380.794015][ T4704] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 380.807265][ T4704] usb 3-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00 [ 380.816743][ T4704] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 380.950749][ T4704] usb 3-1: config 0 descriptor?? [ 381.264305][ T6590] loop1: detected capacity change from 0 to 512 [ 381.396615][ T6481] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 381.420033][ T6590] EXT4-fs error (device loop1): ext4_orphan_get:1394: inode #15: comm syz-executor.1: casefold flag without casefold feature [ 381.439723][ T6592] netlink: 20 bytes leftover after parsing attributes in process `syz-executor.0'. [ 381.523583][ T4704] microsoft 0003:045E:07DA.0008: collection stack underflow [ 381.527709][ T6481] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 381.531191][ T4704] microsoft 0003:045E:07DA.0008: item 0 4 0 12 parsing failed [ 381.564030][ T6590] EXT4-fs error (device loop1): ext4_orphan_get:1399: comm syz-executor.1: couldn't read orphan inode 15 (err -117) [ 381.667117][ T6590] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 381.690783][ T6481] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 381.703443][ T4704] microsoft 0003:045E:07DA.0008: parse failed [ 381.714198][ T4704] microsoft 0003:045E:07DA.0008: probe with driver microsoft failed with error -22 [ 381.767353][ T4704] usb 3-1: USB disconnect, device number 3 [ 381.773234][ T4432] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 381.821953][ T4432] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 381.835383][ T4432] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 381.867848][ T6481] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 381.892706][ T4432] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 381.924135][ T4432] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 381.938959][ T4432] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 382.194712][ T3240] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 382.233637][ T5073] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 382.541655][ T3240] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 382.803183][ T3240] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 382.994987][ T29] audit: type=1804 audit(1717452506.746:19): pid=6607 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.1" name="/root/syzkaller-testdir1737767925/syzkaller.87WG6w/109/bus" dev="sda1" ino=1950 res=1 errno=0 [ 383.022690][ T29] audit: type=1804 audit(1717452506.826:20): pid=6607 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz-executor.1" name="/root/syzkaller-testdir1737767925/syzkaller.87WG6w/109/bus" dev="sda1" ino=1950 res=1 errno=0 [ 383.102650][ T3240] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 383.767482][ T3240] bridge_slave_1: left allmulticast mode [ 383.775202][ T3240] bridge_slave_1: left promiscuous mode [ 383.782012][ T3240] bridge0: port 2(bridge_slave_1) entered disabled state [ 383.869711][ T3240] bridge_slave_0: left allmulticast mode [ 383.875637][ T3240] bridge_slave_0: left promiscuous mode [ 383.882987][ T3240] bridge0: port 1(bridge_slave_0) entered disabled state [ 384.038639][ T5075] Bluetooth: hci1: command tx timeout [ 384.916262][ T3240] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 384.987350][ T3240] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 385.030870][ T3240] bond0 (unregistering): Released all slaves [ 385.463275][ T6481] 8021q: adding VLAN 0 to HW filter on device bond0 [ 385.664352][ T6634] netlink: 20 bytes leftover after parsing attributes in process `syz-executor.2'. [ 385.798653][ T6637] loop1: detected capacity change from 0 to 512 [ 386.015017][ T6481] 8021q: adding VLAN 0 to HW filter on device team0 [ 386.047578][ T6637] EXT4-fs error (device loop1): ext4_orphan_get:1394: inode #15: comm syz-executor.1: casefold flag without casefold feature [ 386.081719][ T6595] chnl_net:caif_netlink_parms(): no params data found [ 386.129863][ T5075] Bluetooth: hci1: command tx timeout [ 386.196609][ T6637] EXT4-fs error (device loop1): ext4_orphan_get:1399: comm syz-executor.1: couldn't read orphan inode 15 (err -117) [ 386.270961][ T3240] hsr_slave_0: left promiscuous mode [ 386.279429][ T6637] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 386.293745][ T3240] hsr_slave_1: left promiscuous mode [ 386.308290][ T3240] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 386.316818][ T3240] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 386.350465][ T3240] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 386.361167][ T3240] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 386.430518][ T3240] veth1_macvtap: left promiscuous mode [ 386.436802][ T3240] veth0_macvtap: left promiscuous mode [ 386.442704][ T3240] veth1_vlan: left promiscuous mode [ 386.448711][ T3240] veth0_vlan: left promiscuous mode [ 386.682692][ T5073] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 387.538247][ T3240] team0 (unregistering): Port device team_slave_1 removed [ 387.645405][ T3240] team0 (unregistering): Port device team_slave_0 removed [ 387.974162][ T29] audit: type=1804 audit(1717452511.816:21): pid=6650 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.1" name="/root/syzkaller-testdir1737767925/syzkaller.87WG6w/113/bus" dev="sda1" ino=1954 res=1 errno=0 [ 388.024542][ T6456] bridge0: port 1(bridge_slave_0) entered blocking state [ 388.032471][ T6456] bridge0: port 1(bridge_slave_0) entered forwarding state [ 388.034010][ T29] audit: type=1804 audit(1717452511.856:22): pid=6650 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz-executor.1" name="/root/syzkaller-testdir1737767925/syzkaller.87WG6w/113/bus" dev="sda1" ino=1954 res=1 errno=0 [ 388.049656][ T6456] bridge0: port 2(bridge_slave_1) entered blocking state [ 388.074767][ T6456] bridge0: port 2(bridge_slave_1) entered forwarding state [ 388.213519][ T5075] Bluetooth: hci1: command tx timeout [ 390.046081][ T0] NOHZ tick-stop error: local softirq work is pending, handler #242!!! [ 390.284939][ T5075] Bluetooth: hci1: command tx timeout [ 390.460926][ T6595] bridge0: port 1(bridge_slave_0) entered blocking state [ 390.470174][ T6595] bridge0: port 1(bridge_slave_0) entered disabled state [ 390.478145][ T6595] bridge_slave_0: entered allmulticast mode [ 390.487249][ T6595] bridge_slave_0: entered promiscuous mode [ 390.641113][ T6595] bridge0: port 2(bridge_slave_1) entered blocking state [ 390.649261][ T6595] bridge0: port 2(bridge_slave_1) entered disabled state [ 390.659126][ T6595] bridge_slave_1: entered allmulticast mode [ 390.668268][ T6595] bridge_slave_1: entered promiscuous mode [ 391.089269][ T6595] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 391.157316][ T6481] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 391.227306][ T6595] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 391.615273][ T6595] team0: Port device team_slave_0 added [ 391.708853][ T6595] team0: Port device team_slave_1 added [ 392.116218][ T6595] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 392.123402][ T6595] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 392.154578][ T6595] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 392.336499][ T6481] veth0_vlan: entered promiscuous mode [ 392.406411][ T6595] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 392.413582][ T6595] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 392.441158][ T6595] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 392.549963][ T6481] veth1_vlan: entered promiscuous mode [ 393.160809][ T6595] hsr_slave_0: entered promiscuous mode [ 393.228814][ T6595] hsr_slave_1: entered promiscuous mode [ 393.246414][ T5127] usb 3-1: new high-speed USB device number 4 using dummy_hcd [ 393.283237][ T6595] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 393.291477][ T6595] Cannot create hsr debugfs directory [ 393.387065][ T6481] veth0_macvtap: entered promiscuous mode [ 393.596845][ T6481] veth1_macvtap: entered promiscuous mode [ 393.616224][ T5127] usb 3-1: Using ep0 maxpacket: 8 [ 393.746873][ T5127] usb 3-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 393.760635][ T5127] usb 3-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 393.771354][ T5127] usb 3-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 393.938089][ T6481] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 393.953227][ T6481] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 393.966214][ T6481] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 393.978183][ T6481] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 393.988359][ T6481] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 393.999169][ T6481] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 394.014370][ T6481] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 394.123565][ T5127] usb 3-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.40 [ 394.133994][ T5127] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 394.147026][ T5127] usb 3-1: Product: syz [ 394.154722][ T5127] usb 3-1: Manufacturer: syz [ 394.160059][ T5127] usb 3-1: SerialNumber: syz [ 394.489050][ T6481] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 394.500133][ T6481] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 394.510307][ T6481] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 394.523038][ T6481] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 394.533270][ T6481] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 394.544088][ T6481] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 394.564371][ T6481] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 394.603645][ T6699] netlink: 40 bytes leftover after parsing attributes in process `syz-executor.0'. [ 394.738006][ T5127] usbhid 3-1:1.0: can't add hid device: -22 [ 394.744722][ T5127] usbhid 3-1:1.0: probe with driver usbhid failed with error -22 [ 394.874195][ T6481] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 394.883668][ T6481] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 394.893332][ T6481] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 394.902568][ T6481] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 394.944231][ T43] usb 3-1: USB disconnect, device number 4 [ 396.107975][ T6595] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 396.209871][ T6595] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 396.298610][ T6595] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 396.373139][ T6595] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 397.763201][ T6595] 8021q: adding VLAN 0 to HW filter on device bond0 [ 397.984491][ T6595] 8021q: adding VLAN 0 to HW filter on device team0 [ 398.072855][ T6454] bridge0: port 1(bridge_slave_0) entered blocking state [ 398.080866][ T6454] bridge0: port 1(bridge_slave_0) entered forwarding state [ 398.192940][ T6454] bridge0: port 2(bridge_slave_1) entered blocking state [ 398.200794][ T6454] bridge0: port 2(bridge_slave_1) entered forwarding state [ 399.813206][ T6749] netlink: 40 bytes leftover after parsing attributes in process `syz-executor.0'. [ 400.306985][ T29] audit: type=1804 audit(1717452524.066:23): pid=6753 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.2" name="/root/syzkaller-testdir154143280/syzkaller.RkJsUA/57/file0" dev="sda1" ino=1954 res=1 errno=0 [ 401.015397][ T6595] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 401.040240][ T6760] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 402.728399][ T6790] netlink: 'syz-executor.2': attribute type 4 has an invalid length. [ 403.537080][ T1221] ieee802154 phy0 wpan0: encryption failed: -22 [ 403.543865][ T1221] ieee802154 phy1 wpan1: encryption failed: -22 [ 403.599369][ T6799] netlink: 40 bytes leftover after parsing attributes in process `syz-executor.2'. [ 403.732293][ T3240] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 403.740814][ T3240] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 404.019878][ T3752] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 404.029059][ T3752] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 404.228105][ T6595] veth0_vlan: entered promiscuous mode [ 404.336188][ T6595] veth1_vlan: entered promiscuous mode [ 404.746576][ T6454] usb 3-1: new high-speed USB device number 5 using dummy_hcd [ 404.765615][ T6595] veth0_macvtap: entered promiscuous mode [ 404.844916][ T6595] veth1_macvtap: entered promiscuous mode [ 405.019216][ T6454] usb 3-1: Using ep0 maxpacket: 32 [ 405.155214][ T6595] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 405.171245][ T6595] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 405.182258][ T6595] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 405.193193][ T6595] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 405.207733][ T6595] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 405.221993][ T6595] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 405.232381][ T6595] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 405.250887][ T6595] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 405.267691][ T6595] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 405.293863][ T6454] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 405.308611][ T6454] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 405.320012][ T6454] usb 3-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40 [ 405.329599][ T6454] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 405.424491][ T6454] usb 3-1: config 0 descriptor?? [ 405.545410][ T6454] hub 3-1:0.0: USB hub found [ 405.661502][ T6595] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 405.673159][ T6595] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 405.683684][ T6595] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 405.694793][ T6595] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 405.705337][ T6595] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 405.724048][ T6595] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 405.736089][ T6595] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 405.747770][ T6595] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 405.766695][ T6595] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 405.857163][ T6454] hub 3-1:0.0: 1 port detected [ 405.990902][ T6595] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 406.000463][ T6595] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 406.010863][ T6595] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 406.024626][ T6595] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 406.644459][ T6819] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 406.875433][ T6454] hub 3-1:0.0: activate --> -90 [ 407.223502][ T6456] usb 3-1: USB disconnect, device number 5 [ 407.778340][ T43] usb 2-1: new high-speed USB device number 6 using dummy_hcd [ 408.055149][ T6835] netlink: 'syz-executor.3': attribute type 4 has an invalid length. [ 408.156527][ T43] usb 2-1: Using ep0 maxpacket: 16 [ 408.300593][ T43] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x9 has invalid maxpacket 1911, setting to 1024 [ 408.312124][ T43] usb 2-1: config 0 interface 0 altsetting 0 bulk endpoint 0x9 has invalid maxpacket 1024 [ 408.322575][ T43] usb 2-1: config 0 interface 0 altsetting 0 has an invalid endpoint with address 0x9A, skipping [ 408.333494][ T43] usb 2-1: config 0 interface 0 altsetting 0 has an invalid endpoint with address 0x0, skipping [ 408.344633][ T43] usb 2-1: config 0 interface 0 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 2 [ 408.620478][ T43] usb 2-1: New USB device found, idVendor=12d1, idProduct=7f8d, bcdDevice=d6.ce [ 408.631946][ T43] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 408.641248][ T43] usb 2-1: Product: syz [ 408.645922][ T43] usb 2-1: Manufacturer: syz [ 408.650768][ T43] usb 2-1: SerialNumber: syz [ 408.748765][ T43] usb 2-1: config 0 descriptor?? [ 408.771838][ T6829] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22 [ 408.837613][ T6829] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22 [ 408.921877][ T43] option 2-1:0.0: GSM modem (1-port) converter detected [ 409.080540][ T6843] netlink: 40 bytes leftover after parsing attributes in process `syz-executor.3'. [ 409.167339][ T25] usb 2-1: USB disconnect, device number 6 [ 409.177399][ T25] option 2-1:0.0: device disconnected [ 412.960763][ T6877] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 414.089168][ T4381] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 414.097482][ T4381] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 414.401412][ T1086] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 414.410735][ T1086] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 414.940217][ T6895] netlink: 'syz-executor.0': attribute type 4 has an invalid length. [ 415.614849][ T6901] netlink: 40 bytes leftover after parsing attributes in process `syz-executor.2'. [ 415.774540][ T6904] bridge: RTM_NEWNEIGH bridge0 without NUD_PERMANENT [ 415.798762][ T4432] Bluetooth: hci2: command 0x0406 tx timeout [ 417.438097][ T6923] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 417.548523][ T6931] netlink: 'syz-executor.1': attribute type 4 has an invalid length. [ 423.988457][ T7032] netlink: 40 bytes leftover after parsing attributes in process `syz-executor.0'. [ 424.697632][ T7042] syzkaller0: default qdisc (pfifo_fast) fail, fallback to noqueue [ 424.727230][ T7042] syzkaller0: entered promiscuous mode [ 424.732950][ T7042] syzkaller0: entered allmulticast mode [ 425.267487][ T29] audit: type=1800 audit(1717452549.026:24): pid=7052 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.4" name="memory.events" dev="sda1" ino=1960 res=0 errno=0 [ 425.293347][ T29] audit: type=1804 audit(1717452549.086:25): pid=7052 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz-executor.4" name="/root/syzkaller-testdir3288556898/syzkaller.CtmDEd/15/memory.events" dev="sda1" ino=1960 res=1 errno=0 [ 425.320254][ T29] audit: type=1804 audit(1717452549.096:26): pid=7052 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz-executor.4" name="/root/syzkaller-testdir3288556898/syzkaller.CtmDEd/15/memory.events" dev="sda1" ino=1960 res=1 errno=0 [ 425.348478][ T29] audit: type=1804 audit(1717452549.106:27): pid=7052 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz-executor.4" name="/root/syzkaller-testdir3288556898/syzkaller.CtmDEd/15/memory.events" dev="sda1" ino=1960 res=1 errno=0 [ 425.378461][ T29] audit: type=1804 audit(1717452549.186:28): pid=7056 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz-executor.4" name="/root/syzkaller-testdir3288556898/syzkaller.CtmDEd/15/memory.events" dev="sda1" ino=1960 res=1 errno=0 [ 425.406227][ T29] audit: type=1804 audit(1717452549.186:29): pid=7056 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz-executor.4" name="/root/syzkaller-testdir3288556898/syzkaller.CtmDEd/15/memory.events" dev="sda1" ino=1960 res=1 errno=0 [ 425.469459][ T7049] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.1'. [ 426.228528][ T7071] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.3'. [ 426.663792][ T7073] netlink: 40 bytes leftover after parsing attributes in process `syz-executor.0'. [ 427.414594][ T7089] netlink: 60 bytes leftover after parsing attributes in process `syz-executor.4'. [ 428.748786][ T7109] netlink: 40 bytes leftover after parsing attributes in process `syz-executor.0'. [ 429.521316][ T7122] netlink: 60 bytes leftover after parsing attributes in process `syz-executor.0'. [ 431.473626][ T7146] netlink: 40 bytes leftover after parsing attributes in process `syz-executor.0'. [ 432.157984][ T7153] netlink: 60 bytes leftover after parsing attributes in process `syz-executor.3'. [ 433.457801][ T7171] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET. [ 434.081189][ T0] NOHZ tick-stop error: local softirq work is pending, handler #242!!! [ 434.642371][ T7187] netlink: 60 bytes leftover after parsing attributes in process `syz-executor.3'. [ 434.902873][ T0] NOHZ tick-stop error: local softirq work is pending, handler #42!!! [ 436.127776][ T0] NOHZ tick-stop error: local softirq work is pending, handler #2c2!!! [ 436.228862][ T0] NOHZ tick-stop error: local softirq work is pending, handler #2c2!!! [ 437.712146][ T7221] loop4: detected capacity change from 0 to 16 [ 438.247679][ T7221] erofs: (device loop4): erofs_fc_fill_super: rootino(nid 36) is not a directory(i_mode 125300) [ 439.570259][ T7218] loop1: detected capacity change from 0 to 1764 [ 439.689821][ T7218] ISOFS: root inode is unusable. Disabling Rock Ridge and switching to Joliet. [ 439.700045][ T7218] ISOFS: unable to read i-node block [ 439.705644][ T7218] isofs_fill_super: get root inode failed [ 439.871804][ T7227] netlink: 60 bytes leftover after parsing attributes in process `syz-executor.4'. [ 440.009905][ T7229] netlink: 340 bytes leftover after parsing attributes in process `syz-executor.2'. [ 440.187844][ T7215] kvm: vcpu 1: requested lapic timer restore with starting count register 0x390=4091629214 (65466067424 ns) > initial count (185248 ns). Using initial count to start timer. [ 441.600228][ T7256] netlink: 132 bytes leftover after parsing attributes in process `syz-executor.2'. [ 441.622846][ T7257] netlink: 60 bytes leftover after parsing attributes in process `syz-executor.3'. [ 442.040610][ T7259] netlink: 340 bytes leftover after parsing attributes in process `syz-executor.1'. [ 443.341155][ T7280] netlink: 40 bytes leftover after parsing attributes in process `syz-executor.0'. [ 443.596989][ T7286] netlink: 60 bytes leftover after parsing attributes in process `syz-executor.2'. [ 443.887793][ T7291] netlink: 340 bytes leftover after parsing attributes in process `syz-executor.1'. [ 445.799121][ T7307] loop3: detected capacity change from 0 to 40427 [ 445.835376][ T7307] F2FS-fs (loop3): invalid crc value [ 445.980594][ T7307] F2FS-fs (loop3): Found nat_bits in checkpoint [ 446.316316][ T7307] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e4 [ 446.416485][ T7317] netlink: 40 bytes leftover after parsing attributes in process `syz-executor.2'. [ 446.755673][ T7319] netlink: 60 bytes leftover after parsing attributes in process `syz-executor.4'. [ 447.547091][ T29] audit: type=1800 audit(1717452571.026:30): pid=7321 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.3" name="file2" dev="loop3" ino=10 res=0 errno=0 [ 447.998291][ T7324] netlink: 332 bytes leftover after parsing attributes in process `syz-executor.0'. [ 449.400627][ T6481] syz-executor.3: attempt to access beyond end of device [ 449.400627][ T6481] loop3: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 450.819498][ T7355] netlink: 60 bytes leftover after parsing attributes in process `syz-executor.0'. [ 450.899394][ T7359] netlink: 332 bytes leftover after parsing attributes in process `syz-executor.1'. [ 452.503617][ T7371] capability: warning: `syz-executor.0' uses deprecated v2 capabilities in a way that may be insecure [ 452.538025][ T7365] loop1: detected capacity change from 0 to 40427 [ 452.577460][ T7365] F2FS-fs (loop1): invalid crc value [ 452.694298][ T7365] F2FS-fs (loop1): Found nat_bits in checkpoint [ 452.988681][ T7365] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e4 [ 454.267987][ T29] audit: type=1800 audit(1717452577.746:31): pid=7382 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.1" name="file2" dev="loop1" ino=10 res=0 errno=0 [ 455.365995][ T7394] netlink: 60 bytes leftover after parsing attributes in process `syz-executor.0'. [ 455.423894][ T7395] netlink: 332 bytes leftover after parsing attributes in process `syz-executor.4'. [ 456.109957][ T5073] syz-executor.1: attempt to access beyond end of device [ 456.109957][ T5073] loop1: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 458.099481][ T7419] netlink: 332 bytes leftover after parsing attributes in process `syz-executor.2'. [ 458.300547][ T7422] netlink: 60 bytes leftover after parsing attributes in process `syz-executor.0'. [ 459.546800][ T7424] loop3: detected capacity change from 0 to 40427 [ 459.592055][ T7424] F2FS-fs (loop3): invalid crc value [ 459.670215][ T7424] F2FS-fs (loop3): Found nat_bits in checkpoint [ 460.047569][ T7424] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e4 [ 461.258385][ T29] audit: type=1800 audit(1717452584.756:32): pid=7449 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.3" name="file2" dev="loop3" ino=10 res=0 errno=0 [ 462.436783][ T7459] netlink: 332 bytes leftover after parsing attributes in process `syz-executor.0'. [ 463.101046][ T6481] syz-executor.3: attempt to access beyond end of device [ 463.101046][ T6481] loop3: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 463.460692][ T7465] netlink: 60 bytes leftover after parsing attributes in process `syz-executor.0'. [ 463.738548][ T29] audit: type=1326 audit(1717452587.476:33): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7464 comm="syz-executor.2" exe="/root/syz-executor.2" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f35f407cee9 code=0x0 [ 464.963661][ T1221] ieee802154 phy0 wpan0: encryption failed: -22 [ 464.971934][ T1221] ieee802154 phy1 wpan1: encryption failed: -22 [ 465.168634][ T7485] netlink: 332 bytes leftover after parsing attributes in process `syz-executor.1'. [ 466.571411][ T7488] loop2: detected capacity change from 0 to 40427 [ 466.628344][ T7488] F2FS-fs (loop2): invalid crc value [ 466.828892][ T7488] F2FS-fs (loop2): Found nat_bits in checkpoint [ 467.142381][ T7488] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e4 [ 468.299586][ T29] audit: type=1800 audit(1717452591.886:34): pid=7504 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.2" name="file2" dev="loop2" ino=10 res=0 errno=0 [ 469.770050][ T7517] netlink: 'syz-executor.1': attribute type 12 has an invalid length. [ 470.206476][ T5605] syz-executor.2: attempt to access beyond end of device [ 470.206476][ T5605] loop2: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 470.574167][ T7521] netlink: 324 bytes leftover after parsing attributes in process `syz-executor.1'. [ 471.937787][ T7524] loop4: detected capacity change from 0 to 4096 [ 472.376808][ T7524] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore [ 472.387640][ T7524] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent [ 473.267066][ T7539] loop0: detected capacity change from 0 to 40427 [ 473.307079][ T7539] F2FS-fs (loop0): invalid crc value [ 473.428872][ T7539] F2FS-fs (loop0): Found nat_bits in checkpoint [ 473.836997][ T7539] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e4 [ 474.286685][ T7555] netlink: 324 bytes leftover after parsing attributes in process `syz-executor.3'. [ 475.152689][ T29] audit: type=1800 audit(1717452598.606:35): pid=7559 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.0" name="file2" dev="loop0" ino=10 res=0 errno=0 [ 476.952426][ T5087] syz-executor.0: attempt to access beyond end of device [ 476.952426][ T5087] loop0: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 478.204125][ T7586] netlink: 324 bytes leftover after parsing attributes in process `syz-executor.3'. [ 478.307588][ T7574] loop1: detected capacity change from 0 to 4096 [ 479.205550][ T7574] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore [ 479.216143][ T7574] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent [ 480.527340][ T7600] loop4: detected capacity change from 0 to 40427 [ 480.568484][ T7600] F2FS-fs (loop4): invalid crc value [ 480.616756][ T7600] F2FS-fs (loop4): Found nat_bits in checkpoint [ 480.898621][ T7600] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e4 [ 481.669059][ T7620] kernel read not supported for file /${$ (pid: 7620 comm: syz-executor.1) [ 481.908043][ T7624] kernel read not supported for file /${$ (pid: 7624 comm: syz-executor.2) [ 481.923896][ T29] audit: type=1800 audit(1717452605.526:36): pid=7620 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz-executor.1" name="${$" dev="mqueue" ino=16311 res=0 errno=0 [ 481.946186][ T29] audit: type=1800 audit(1717452605.766:37): pid=7624 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz-executor.2" name="${$" dev="mqueue" ino=16316 res=0 errno=0 [ 484.159104][ T7633] loop2: detected capacity change from 0 to 4096 [ 484.999121][ T7633] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore [ 485.008336][ T7633] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent [ 486.644897][ T29] audit: type=1800 audit(1717452610.426:38): pid=7665 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.2" name="bus" dev="sda1" ino=1957 res=0 errno=0 [ 487.206145][ T7668] loop0: detected capacity change from 0 to 4096 [ 487.266322][ T7668] ntfs3: loop0: Different NTFS sector size (2048) and media sector size (512). [ 487.486433][ T7668] ntfs3: loop0: Mark volume as dirty due to NTFS errors [ 488.098503][ T3752] ntfs3: loop0: ino=5, ntfs3_write_inode failed, -22. [ 489.050262][ T7680] loop4: detected capacity change from 0 to 4096 [ 489.605950][ T7680] overlayfs: missing 'lowerdir' [ 490.599013][ T7704] netlink: 36 bytes leftover after parsing attributes in process `syz-executor.3'. [ 490.625938][ T7702] ax25_connect(): syz-executor.1 uses autobind, please contact jreuter@yaina.de [ 491.097405][ T7703] loop4: detected capacity change from 0 to 4096 [ 491.170373][ T7703] ntfs3: loop4: Different NTFS sector size (4096) and media sector size (512). [ 491.599070][ T7703] ntfs3: loop4: Mark volume as dirty due to NTFS errors [ 492.603967][ T4432] Bluetooth: hci5: command 0x0406 tx timeout [ 492.806591][ T7713] overlayfs: upper fs does not support RENAME_WHITEOUT. [ 492.813825][ T7713] overlayfs: failed to set xattr on upper [ 492.820214][ T7713] overlayfs: ...falling back to redirect_dir=nofollow. [ 492.827295][ T7713] overlayfs: ...falling back to index=off. [ 492.833343][ T7713] overlayfs: ...falling back to uuid=null. [ 493.005164][ T29] audit: type=1800 audit(1717452616.776:39): pid=7716 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.4" name="bus" dev="sda1" ino=1966 res=0 errno=0 [ 493.728859][ T7721] loop0: detected capacity change from 0 to 256 [ 494.076841][ T7721] FAT-fs (loop0): Directory bread(block 64) failed [ 494.087630][ T7721] FAT-fs (loop0): Directory bread(block 65) failed [ 494.094551][ T7721] FAT-fs (loop0): Directory bread(block 66) failed [ 494.103228][ T7721] FAT-fs (loop0): Directory bread(block 67) failed [ 494.110292][ T7721] FAT-fs (loop0): Directory bread(block 68) failed [ 494.117416][ T7721] FAT-fs (loop0): Directory bread(block 69) failed [ 494.124451][ T7721] FAT-fs (loop0): Directory bread(block 70) failed [ 494.131618][ T7721] FAT-fs (loop0): Directory bread(block 71) failed [ 494.138856][ T7721] FAT-fs (loop0): Directory bread(block 72) failed [ 494.145649][ T7721] FAT-fs (loop0): Directory bread(block 73) failed [ 494.818173][ T7723] loop2: detected capacity change from 0 to 4096 [ 496.124651][ T7732] overlayfs: missing 'lowerdir' [ 497.953200][ T29] audit: type=1800 audit(1717452621.736:40): pid=7742 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.3" name="bus" dev="sda1" ino=1962 res=0 errno=0 [ 498.872758][ T7747] loop0: detected capacity change from 0 to 4096 [ 498.994357][ T7747] ntfs3: loop0: Different NTFS sector size (4096) and media sector size (512). [ 499.257709][ T29] audit: type=1804 audit(1717452623.066:41): pid=7758 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.4" name="/root/syzkaller-testdir3288556898/syzkaller.CtmDEd/75/bus" dev="sda1" ino=1960 res=1 errno=0 [ 499.532512][ T7747] ntfs3: loop0: Mark volume as dirty due to NTFS errors [ 499.896532][ T7763] loop1: detected capacity change from 0 to 4096 [ 499.987537][ T7762] loop4: detected capacity change from 0 to 4096 [ 500.086706][ T7763] ntfs3: loop1: Different NTFS sector size (4096) and media sector size (512). [ 500.138221][ T7762] ntfs3: loop4: Different NTFS sector size (2048) and media sector size (512). [ 500.262162][ T7763] ntfs3: loop1: Mark volume as dirty due to NTFS errors [ 500.620830][ T7765] loop3: detected capacity change from 0 to 4096 [ 500.641837][ T7762] ntfs3: loop4: Failed to initialize $Extend/$ObjId. [ 501.760268][ T7765] overlayfs: missing 'lowerdir' [ 502.638442][ T4704] usb 1-1: new high-speed USB device number 5 using dummy_hcd [ 502.917483][ T4704] usb 1-1: Using ep0 maxpacket: 32 [ 503.087706][ T4704] usb 1-1: New USB device found, idVendor=0458, idProduct=7006, bcdDevice=69.91 [ 503.100611][ T4704] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 503.329344][ T4704] usb 1-1: config 0 descriptor?? [ 503.444649][ T4704] gspca_main: sunplus-2.14.0 probing 0458:7006 [ 503.690416][ T7780] loop3: detected capacity change from 0 to 256 [ 503.893750][ T7781] loop4: detected capacity change from 0 to 1024 [ 504.306492][ T7780] FAT-fs (loop3): Directory bread(block 64) failed [ 504.313311][ T7780] FAT-fs (loop3): Directory bread(block 65) failed [ 504.320459][ T7780] FAT-fs (loop3): Directory bread(block 66) failed [ 504.333776][ T7780] FAT-fs (loop3): Directory bread(block 67) failed [ 504.342652][ T7780] FAT-fs (loop3): Directory bread(block 68) failed [ 504.349545][ T7780] FAT-fs (loop3): Directory bread(block 69) failed [ 504.356704][ T7780] FAT-fs (loop3): Directory bread(block 70) failed [ 504.363479][ T7780] FAT-fs (loop3): Directory bread(block 71) failed [ 504.370645][ T7780] FAT-fs (loop3): Directory bread(block 72) failed [ 504.377546][ T7780] FAT-fs (loop3): Directory bread(block 73) failed [ 504.483188][ T4704] gspca_sunplus: reg_w_riv err -71 [ 504.489565][ T4704] sunplus 1-1:0.0: probe with driver sunplus failed with error -71 [ 504.548370][ T4704] usb 1-1: USB disconnect, device number 5 [ 507.227248][ T29] audit: type=1800 audit(1717452630.906:42): pid=7787 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.1" name="bus" dev="sda1" ino=1938 res=0 errno=0 [ 508.347343][ T7804] loop0: detected capacity change from 0 to 4096 [ 508.382814][ T7804] ntfs3: loop0: Different NTFS sector size (4096) and media sector size (512). [ 508.616740][ T7804] ntfs3: loop0: Mark volume as dirty due to NTFS errors [ 508.837958][ T7811] loop1: detected capacity change from 0 to 4096 [ 508.851294][ T5075] Bluetooth: hci1: command 0x0406 tx timeout [ 509.762336][ T7811] overlayfs: missing 'workdir' [ 509.876886][ T7826] loop4: detected capacity change from 0 to 256 [ 509.910052][ T7825] loop0: detected capacity change from 0 to 512 [ 509.992567][ T7825] EXT4-fs: Ignoring removed mblk_io_submit option [ 510.389295][ T7826] FAT-fs (loop4): Directory bread(block 64) failed [ 510.396687][ T7826] FAT-fs (loop4): Directory bread(block 65) failed [ 510.403625][ T7826] FAT-fs (loop4): Directory bread(block 66) failed [ 510.410594][ T7826] FAT-fs (loop4): Directory bread(block 67) failed [ 510.417692][ T7826] FAT-fs (loop4): Directory bread(block 68) failed [ 510.424464][ T7826] FAT-fs (loop4): Directory bread(block 69) failed [ 510.431751][ T7826] FAT-fs (loop4): Directory bread(block 70) failed [ 510.440788][ T7826] FAT-fs (loop4): Directory bread(block 71) failed [ 510.448414][ T7826] FAT-fs (loop4): Directory bread(block 72) failed [ 510.455275][ T7826] FAT-fs (loop4): Directory bread(block 73) failed [ 511.367009][ T7825] EXT4-fs (loop0): Test dummy encryption mode enabled [ 512.952706][ T7825] workqueue: Failed to create a rescuer kthread for wq "ext4-rsv-conversion": -EINTR [ 512.952970][ T7825] EXT4-fs: failed to create workqueue [ 512.968555][ T7825] EXT4-fs (loop0): mount failed [ 513.088790][ T29] audit: type=1800 audit(1717452635.206:43): pid=7848 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.1" name="bus" dev="sda1" ino=1966 res=0 errno=0 [ 514.467186][ T7854] loop2: detected capacity change from 0 to 4096 [ 514.489097][ T7869] loop0: detected capacity change from 0 to 64 [ 514.522605][ T7854] ntfs3: loop2: Different NTFS sector size (4096) and media sector size (512). [ 514.581189][ T7869] hfs: unable to locate alternate MDB [ 514.587000][ T7869] hfs: continuing without an alternate MDB [ 514.763576][ T7854] ntfs3: loop2: Mark volume as dirty due to NTFS errors [ 515.012399][ T7873] loop4: detected capacity change from 0 to 8 [ 515.158112][ T7873] SQUASHFS error: Failed to read block 0x4e8: -5 [ 515.247357][ T29] audit: type=1800 audit(1717452639.016:44): pid=7873 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz-executor.4" name="file1" dev="loop4" ino=5 res=0 errno=0 [ 516.245218][ T7888] loop2: detected capacity change from 0 to 256 [ 516.766164][ T7888] FAT-fs (loop2): Directory bread(block 64) failed [ 516.773014][ T7888] FAT-fs (loop2): Directory bread(block 65) failed [ 516.780255][ T7888] FAT-fs (loop2): Directory bread(block 66) failed [ 516.787179][ T7888] FAT-fs (loop2): Directory bread(block 67) failed [ 516.794250][ T7888] FAT-fs (loop2): Directory bread(block 68) failed [ 516.801915][ T7888] FAT-fs (loop2): Directory bread(block 69) failed [ 516.808844][ T7888] FAT-fs (loop2): Directory bread(block 70) failed [ 516.820741][ T7888] FAT-fs (loop2): Directory bread(block 71) failed [ 516.833281][ T7888] FAT-fs (loop2): Directory bread(block 72) failed [ 516.840228][ T7888] FAT-fs (loop2): Directory bread(block 73) failed [ 517.290471][ T7891] loop4: detected capacity change from 0 to 4096 [ 519.138202][ T7911] overlayfs: missing 'workdir' [ 519.617292][ T7914] loop3: detected capacity change from 0 to 8 [ 519.882789][ T7914] SQUASHFS error: Failed to read block 0x4e8: -5 [ 520.006482][ T29] audit: type=1800 audit(1717452643.746:45): pid=7914 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz-executor.3" name="file1" dev="loop3" ino=5 res=0 errno=0 [ 522.578338][ T7949] loop3: detected capacity change from 0 to 256 [ 522.855290][ T7949] FAT-fs (loop3): Directory bread(block 64) failed [ 522.868405][ T7949] FAT-fs (loop3): Directory bread(block 65) failed [ 522.875362][ T7949] FAT-fs (loop3): Directory bread(block 66) failed [ 522.882387][ T7949] FAT-fs (loop3): Directory bread(block 67) failed [ 522.889475][ T7949] FAT-fs (loop3): Directory bread(block 68) failed [ 522.896445][ T7949] FAT-fs (loop3): Directory bread(block 69) failed [ 522.903400][ T7949] FAT-fs (loop3): Directory bread(block 70) failed [ 522.910389][ T7949] FAT-fs (loop3): Directory bread(block 71) failed [ 522.917547][ T7949] FAT-fs (loop3): Directory bread(block 72) failed [ 522.924781][ T7949] FAT-fs (loop3): Directory bread(block 73) failed [ 522.990514][ T7955] loop0: detected capacity change from 0 to 8 [ 523.148862][ T7955] SQUASHFS error: Failed to read block 0x4e8: -5 [ 523.206521][ T29] audit: type=1800 audit(1717452647.006:46): pid=7955 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz-executor.0" name="file1" dev="loop0" ino=5 res=0 errno=0 [ 525.688095][ T7977] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.2'. [ 526.445299][ T1221] ieee802154 phy0 wpan0: encryption failed: -22 [ 526.452338][ T1221] ieee802154 phy1 wpan1: encryption failed: -22 [ 527.294094][ T7999] loop4: detected capacity change from 0 to 8 [ 527.426159][ T7999] SQUASHFS error: Failed to read block 0x4e8: -5 [ 527.481188][ T29] audit: type=1800 audit(1717452651.276:47): pid=7999 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz-executor.4" name="file1" dev="loop4" ino=5 res=0 errno=0 [ 528.881958][ T5075] Bluetooth: hci1: unexpected cc 0x2040 length: 7 > 1 [ 528.889168][ T5075] Bluetooth: hci1: unexpected event for opcode 0x2040 [ 528.963338][ T8017] loop4: detected capacity change from 0 to 764 [ 529.074612][ T8018] loop3: detected capacity change from 0 to 256 [ 529.521783][ T8018] FAT-fs (loop3): Directory bread(block 64) failed [ 529.533361][ T8018] FAT-fs (loop3): Directory bread(block 65) failed [ 529.540578][ T8018] FAT-fs (loop3): Directory bread(block 66) failed [ 529.547680][ T8018] FAT-fs (loop3): Directory bread(block 67) failed [ 529.554636][ T8018] FAT-fs (loop3): Directory bread(block 68) failed [ 529.561589][ T8018] FAT-fs (loop3): Directory bread(block 69) failed [ 529.568621][ T8018] FAT-fs (loop3): Directory bread(block 70) failed [ 529.575399][ T8018] FAT-fs (loop3): Directory bread(block 71) failed [ 529.582597][ T8018] FAT-fs (loop3): Directory bread(block 72) failed [ 529.589469][ T8018] FAT-fs (loop3): Directory bread(block 73) failed [ 532.918843][ T5075] Bluetooth: hci1: Controller not accepting commands anymore: ncmd = 0 [ 532.927824][ T5075] Bluetooth: hci1: Injecting HCI hardware error event [ 532.937687][ T5075] Bluetooth: hci1: hardware error 0x00 [ 533.114056][ T8042] loop3: detected capacity change from 0 to 8 [ 533.675825][ T8046] loop3: detected capacity change from 0 to 256 [ 533.686342][ T25] usb 3-1: new high-speed USB device number 6 using dummy_hcd [ 534.080967][ T8046] FAT-fs (loop3): Directory bread(block 64) failed [ 534.087959][ T8046] FAT-fs (loop3): Directory bread(block 65) failed [ 534.094886][ T8046] FAT-fs (loop3): Directory bread(block 66) failed [ 534.101868][ T8046] FAT-fs (loop3): Directory bread(block 67) failed [ 534.109045][ T8046] FAT-fs (loop3): Directory bread(block 68) failed [ 534.116042][ T8046] FAT-fs (loop3): Directory bread(block 69) failed [ 534.130114][ T8046] FAT-fs (loop3): Directory bread(block 70) failed [ 534.138918][ T8046] FAT-fs (loop3): Directory bread(block 71) failed [ 534.146246][ T8046] FAT-fs (loop3): Directory bread(block 72) failed [ 534.147467][ T25] usb 3-1: New USB device found, idVendor=05ac, idProduct=0252, bcdDevice=65.5a [ 534.152976][ T8046] FAT-fs (loop3): Directory bread(block 73) failed [ 534.169634][ T25] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 534.232650][ T25] usb 3-1: config 0 descriptor?? [ 534.388267][ T25] input: bcm5974 as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.0/input/input8 [ 534.506683][ T4473] bcm5974 3-1:0.0: could not read from device [ 534.562204][ T4473] bcm5974 3-1:0.0: could not read from device [ 534.586272][ T29] audit: type=1326 audit(1717452658.346:48): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8053 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fee5567cee9 code=0x7ffc0000 [ 534.610147][ T29] audit: type=1326 audit(1717452658.356:49): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8053 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fee5567cee9 code=0x7ffc0000 [ 534.638263][ T29] audit: type=1326 audit(1717452658.366:50): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8053 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=132 compat=0 ip=0x7fee5567cee9 code=0x7ffc0000 [ 534.664728][ T29] audit: type=1326 audit(1717452658.396:51): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8053 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fee5567cee9 code=0x7ffc0000 [ 534.730163][ T4473] bcm5974 3-1:0.0: could not read from device [ 534.795108][ T25] usb 3-1: USB disconnect, device number 6 [ 534.997684][ T5075] Bluetooth: hci1: Opcode 0x0c03 failed: -110 [ 535.172757][ T8059] dlm: Unknown command passed to DLM device : 0 [ 535.172757][ T8059] [ 535.375170][ T8064] af_packet: tpacket_rcv: packet too big, clamped from 60 to 4294967272. macoff=96 [ 535.833557][ T8067] loop2: detected capacity change from 0 to 256 [ 536.084108][ T2974] kworker/u8:11: attempt to access beyond end of device [ 536.084108][ T2974] loop3: rw=1, sector=1224, nr_sectors = 192 limit=256 [ 536.222365][ T8067] FAT-fs (loop2): Directory bread(block 64) failed [ 536.229428][ T8067] FAT-fs (loop2): Directory bread(block 65) failed [ 536.237377][ T8067] FAT-fs (loop2): Directory bread(block 66) failed [ 536.244888][ T8067] FAT-fs (loop2): Directory bread(block 67) failed [ 536.252115][ T8067] FAT-fs (loop2): Directory bread(block 68) failed [ 536.259041][ T8067] FAT-fs (loop2): Directory bread(block 69) failed [ 536.266143][ T8067] FAT-fs (loop2): Directory bread(block 70) failed [ 536.279024][ T8067] FAT-fs (loop2): Directory bread(block 71) failed [ 536.290535][ T8067] FAT-fs (loop2): Directory bread(block 72) failed [ 536.297992][ T8067] FAT-fs (loop2): Directory bread(block 73) failed [ 536.366266][ T8072] loop0: detected capacity change from 0 to 8 [ 539.996066][ T8101] loop0: detected capacity change from 0 to 256 [ 540.393589][ T8106] loop2: detected capacity change from 0 to 8 [ 540.421932][ T8101] FAT-fs (loop0): Directory bread(block 64) failed [ 540.429501][ T8101] FAT-fs (loop0): Directory bread(block 65) failed [ 540.443362][ T8101] FAT-fs (loop0): Directory bread(block 66) failed [ 540.451366][ T8101] FAT-fs (loop0): Directory bread(block 67) failed [ 540.458799][ T8101] FAT-fs (loop0): Directory bread(block 68) failed [ 540.465577][ T8101] FAT-fs (loop0): Directory bread(block 69) failed [ 540.478703][ T8101] FAT-fs (loop0): Directory bread(block 70) failed [ 540.485502][ T8101] FAT-fs (loop0): Directory bread(block 71) failed [ 540.494241][ T8101] FAT-fs (loop0): Directory bread(block 72) failed [ 540.501346][ T8101] FAT-fs (loop0): Directory bread(block 73) failed [ 540.797909][ T8111] loop4: detected capacity change from 0 to 256 [ 541.047428][ T8111] FAT-fs (loop4): Directory bread(block 64) failed [ 541.054338][ T8111] FAT-fs (loop4): Directory bread(block 65) failed [ 541.061507][ T8111] FAT-fs (loop4): Directory bread(block 66) failed [ 541.068500][ T8111] FAT-fs (loop4): Directory bread(block 67) failed [ 541.075444][ T8111] FAT-fs (loop4): Directory bread(block 68) failed [ 541.089758][ T8111] FAT-fs (loop4): Directory bread(block 69) failed [ 541.098770][ T8111] FAT-fs (loop4): Directory bread(block 70) failed [ 541.105552][ T8111] FAT-fs (loop4): Directory bread(block 71) failed [ 541.112701][ T8111] FAT-fs (loop4): Directory bread(block 72) failed [ 541.119705][ T8111] FAT-fs (loop4): Directory bread(block 73) failed [ 544.334821][ T8146] loop2: detected capacity change from 0 to 512 [ 544.382089][ T8151] loop0: detected capacity change from 0 to 256 [ 544.424718][ T29] audit: type=1326 audit(1717452668.196:52): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8145 comm="syz-executor.4" exe="/root/syz-executor.4" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f470c67cee9 code=0x0 [ 544.513261][ T8146] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support! [ 544.527087][ T8146] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 544.683504][ T8151] FAT-fs (loop0): Directory bread(block 64) failed [ 544.691670][ T8151] FAT-fs (loop0): Directory bread(block 65) failed [ 544.699573][ T8151] FAT-fs (loop0): Directory bread(block 66) failed [ 544.706554][ T8151] FAT-fs (loop0): Directory bread(block 67) failed [ 544.713477][ T8151] FAT-fs (loop0): Directory bread(block 68) failed [ 544.720474][ T8151] FAT-fs (loop0): Directory bread(block 69) failed [ 544.727590][ T8151] FAT-fs (loop0): Directory bread(block 70) failed [ 544.728590][ T8146] EXT4-fs (loop2): 1 orphan inode deleted [ 544.734456][ T8151] FAT-fs (loop0): Directory bread(block 71) failed [ 544.741369][ T8146] EXT4-fs (loop2): 1 truncate cleaned up [ 544.750047][ T8151] FAT-fs (loop0): Directory bread(block 72) failed [ 544.755525][ T8146] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 544.762425][ T8151] FAT-fs (loop0): Directory bread(block 73) failed [ 546.086748][ T5605] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 546.141749][ T8168] loop3: detected capacity change from 0 to 256 [ 546.543316][ T8168] FAT-fs (loop3): Directory bread(block 64) failed [ 546.550442][ T8168] FAT-fs (loop3): Directory bread(block 65) failed [ 546.558256][ T8168] FAT-fs (loop3): Directory bread(block 66) failed [ 546.565036][ T8168] FAT-fs (loop3): Directory bread(block 67) failed [ 546.572134][ T8168] FAT-fs (loop3): Directory bread(block 68) failed [ 546.579017][ T8168] FAT-fs (loop3): Directory bread(block 69) failed [ 546.586090][ T8168] FAT-fs (loop3): Directory bread(block 70) failed [ 546.592858][ T8168] FAT-fs (loop3): Directory bread(block 71) failed [ 546.600021][ T8168] FAT-fs (loop3): Directory bread(block 72) failed [ 546.606915][ T8168] FAT-fs (loop3): Directory bread(block 73) failed [ 548.431734][ T8198] loop2: detected capacity change from 0 to 512 [ 548.528693][ T8198] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 548.786096][ T8198] EXT4-fs (loop2): 1 orphan inode deleted [ 548.792082][ T8198] EXT4-fs (loop2): 1 truncate cleaned up [ 548.798213][ T8198] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 549.187929][ T5605] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 550.748904][ T8237] loop1: detected capacity change from 0 to 512 [ 550.824053][ T8237] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 550.961205][ T8240] input: syz0 as /devices/virtual/input/input9 [ 550.973437][ T8237] EXT4-fs (loop1): 1 orphan inode deleted [ 550.980352][ T8237] EXT4-fs (loop1): 1 truncate cleaned up [ 550.986331][ T8237] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 551.468187][ T5073] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 553.537327][ T8280] loop4: detected capacity change from 0 to 8 [ 553.546258][ T8277] input: syz0 as /devices/virtual/input/input10 [ 555.750101][ T8310] input: syz0 as /devices/virtual/input/input11 [ 555.949034][ T8315] loop3: detected capacity change from 0 to 8 [ 557.772067][ T8343] loop4: detected capacity change from 0 to 512 [ 557.838853][ T8343] EXT4-fs: Ignoring removed mblk_io_submit option [ 557.909573][ T8343] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a064e01c, mo2=0002] [ 557.961787][ T8343] System zones: 1-12 [ 558.047381][ T8343] EXT4-fs error (device loop4): ext4_orphan_get:1394: inode #15: comm syz-executor.4: iget: bad extended attribute block 262144 [ 558.144631][ T8343] EXT4-fs error (device loop4): ext4_orphan_get:1399: comm syz-executor.4: couldn't read orphan inode 15 (err -117) [ 558.203428][ T8349] input: syz0 as /devices/virtual/input/input12 [ 558.234445][ T8343] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 559.483254][ T8364] loop2: detected capacity change from 0 to 8 [ 559.559261][ T6595] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 565.385258][ T8376] bond0: (slave bond_slave_0): Releasing backup interface [ 566.539270][ T8387] input: syz0 as /devices/virtual/input/input13 [ 567.750990][ T8391] nbd2: detected capacity change from 0 to 8388607 [ 567.838772][ T8391] block nbd2: shutting down sockets [ 567.864479][ C0] I/O error, dev nbd2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 567.874052][ C0] Buffer I/O error on dev nbd2, logical block 0, async page read [ 567.891146][ T5306] I/O error, dev nbd2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 567.900934][ T5306] Buffer I/O error on dev nbd2, logical block 0, async page read [ 567.909257][ T5306] I/O error, dev nbd2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 567.926519][ T5306] Buffer I/O error on dev nbd2, logical block 0, async page read [ 567.936995][ T5306] I/O error, dev nbd2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 567.946631][ T5306] Buffer I/O error on dev nbd2, logical block 0, async page read [ 567.954948][ T5306] I/O error, dev nbd2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 567.967522][ T5306] Buffer I/O error on dev nbd2, logical block 0, async page read [ 567.976420][ T5306] I/O error, dev nbd2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 567.985950][ T5306] Buffer I/O error on dev nbd2, logical block 0, async page read [ 567.994286][ T5306] I/O error, dev nbd2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 568.003984][ T5306] Buffer I/O error on dev nbd2, logical block 0, async page read [ 568.012225][ T5306] I/O error, dev nbd2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 568.029707][ T5306] Buffer I/O error on dev nbd2, logical block 0, async page read [ 568.040151][ T5306] ldm_validate_partition_table(): Disk read failed. [ 568.047274][ T5306] I/O error, dev nbd2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 568.056647][ T5306] Buffer I/O error on dev nbd2, logical block 0, async page read [ 568.064832][ T5306] I/O error, dev nbd2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 568.074511][ T5306] Buffer I/O error on dev nbd2, logical block 0, async page read [ 568.083000][ T5306] Dev nbd2: unable to read RDB block 0 [ 568.089614][ T5306] nbd2: unable to read partition table [ 569.055364][ T5306] ldm_validate_partition_table(): Disk read failed. [ 569.063302][ T5306] Dev nbd2: unable to read RDB block 0 [ 569.070050][ T5306] nbd2: unable to read partition table [ 569.440842][ T8402] loop0: detected capacity change from 0 to 8 [ 569.700130][ T8402] SQUASHFS error: Failed to read block 0x4e8: -5 [ 569.786276][ T29] audit: type=1800 audit(1717452693.556:53): pid=8402 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz-executor.0" name="file1" dev="loop0" ino=5 res=0 errno=0 [ 572.466073][ T8418] input: syz0 as /devices/virtual/input/input14 [ 573.049304][ T8420] loop4: detected capacity change from 0 to 512 [ 573.141330][ T8420] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 573.327015][ T8420] EXT4-fs warning (device loop4): ext4_expand_extra_isize_ea:2847: Unable to expand inode 15. Delete some EAs or run e2fsck. [ 573.436716][ T8420] EXT4-fs (loop4): 1 truncate cleaned up [ 573.451866][ T8420] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 573.595806][ T29] audit: type=1804 audit(1717452697.416:54): pid=8420 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.4" name="/root/syzkaller-testdir3288556898/syzkaller.CtmDEd/124/file2/bus" dev="loop4" ino=18 res=1 errno=0 [ 573.911155][ T6595] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 574.486295][ T8432] nbd4: detected capacity change from 0 to 8388607 [ 574.573211][ T8432] block nbd4: shutting down sockets [ 574.594521][ C1] blk_print_req_error: 24 callbacks suppressed [ 574.594595][ C1] I/O error, dev nbd4, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 574.610825][ C1] buffer_io_error: 23 callbacks suppressed [ 574.610892][ C1] Buffer I/O error on dev nbd4, logical block 0, async page read [ 574.637126][ T5306] I/O error, dev nbd4, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 574.646925][ T5306] Buffer I/O error on dev nbd4, logical block 0, async page read [ 574.655324][ T5306] I/O error, dev nbd4, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 574.665091][ T5306] Buffer I/O error on dev nbd4, logical block 0, async page read [ 574.682406][ T5306] I/O error, dev nbd4, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 574.694251][ T5306] Buffer I/O error on dev nbd4, logical block 0, async page read [ 574.702593][ T5306] I/O error, dev nbd4, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 574.712092][ T5306] Buffer I/O error on dev nbd4, logical block 0, async page read [ 574.720588][ T5306] I/O error, dev nbd4, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 574.730762][ T5306] Buffer I/O error on dev nbd4, logical block 0, async page read [ 574.739295][ T5306] I/O error, dev nbd4, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 574.748787][ T5306] Buffer I/O error on dev nbd4, logical block 0, async page read [ 574.757321][ T5306] I/O error, dev nbd4, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 574.766861][ T5306] Buffer I/O error on dev nbd4, logical block 0, async page read [ 574.783688][ T5306] ldm_validate_partition_table(): Disk read failed. [ 574.792821][ T5306] I/O error, dev nbd4, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 574.802386][ T5306] Buffer I/O error on dev nbd4, logical block 0, async page read [ 574.810882][ T5306] I/O error, dev nbd4, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 574.820372][ T5306] Buffer I/O error on dev nbd4, logical block 0, async page read [ 574.828943][ T5306] Dev nbd4: unable to read RDB block 0 [ 574.835684][ T5306] nbd4: unable to read partition table [ 574.855940][ T5306] ldm_validate_partition_table(): Disk read failed. [ 574.863502][ T5306] Dev nbd4: unable to read RDB block 0 [ 574.870233][ T5306] nbd4: unable to read partition table [ 575.050286][ T8435] loop3: detected capacity change from 0 to 8 [ 575.165624][ T8435] SQUASHFS error: Failed to read block 0x4e8: -5 [ 575.255507][ T29] audit: type=1800 audit(1717452699.016:55): pid=8435 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz-executor.3" name="file1" dev="loop3" ino=5 res=0 errno=0 [ 576.588311][ T8447] input: syz0 as /devices/virtual/input/input15 [ 576.996333][ T4704] usb 5-1: new high-speed USB device number 7 using dummy_hcd [ 577.256489][ T4704] usb 5-1: Using ep0 maxpacket: 32 [ 577.396453][ T4704] usb 5-1: config 1 has an invalid descriptor of length 1, skipping remainder of the config [ 577.407323][ T4704] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 2 [ 577.416740][ T4704] usb 5-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1 [ 577.668030][ T4704] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 577.677788][ T4704] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 577.686291][ T4704] usb 5-1: Manufacturer: 铕캽䫅쀛텪쒓㦋ᝳ鈥껧ᤎ꿠謎ෙ쐥訲ᧃ흢ᵸᲆ爊㐾豶꼺䀠綂繘豿ꛠ [ 577.699412][ T4704] usb 5-1: SerialNumber: 㙗睍Úቋ㭩怼䟾卌ᬔ忊롵Ċ廷䰶ጕ覾鵁摞ﮆᴓ頚蒜彦䧂帙ෝㅙ⺶謁햵䴝⚱ϸ芧涓蟜⸰沞牒뇼床퉒㒳䴎豞ۅ쪥밃捨͙ႀꀟ [ 577.911501][ T4704] cdc_ncm 5-1:1.0: skipping garbage [ 577.917442][ T4704] cdc_ncm 5-1:1.0: skipping garbage [ 577.922881][ T4704] cdc_ncm 5-1:1.0: skipping garbage [ 577.928799][ T4704] cdc_ncm 5-1:1.0: CDC Union missing and no IAD found [ 577.936730][ T4704] cdc_ncm 5-1:1.0: bind() failure [ 578.244803][ T25] usb 5-1: USB disconnect, device number 7 [ 578.947568][ T8459] loop2: detected capacity change from 0 to 512 [ 579.039953][ T8459] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 579.194330][ T8459] EXT4-fs (loop2): 1 truncate cleaned up [ 579.200616][ T8459] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 579.395280][ T29] audit: type=1804 audit(1717452703.166:56): pid=8459 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.2" name="/root/syzkaller-testdir154143280/syzkaller.RkJsUA/190/file2/bus" dev="loop2" ino=18 res=1 errno=0 [ 579.702861][ T5605] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 580.280633][ T8471] loop3: detected capacity change from 0 to 8 [ 580.367456][ T8472] nbd2: detected capacity change from 0 to 8388607 [ 580.440616][ T8472] block nbd2: shutting down sockets [ 580.472887][ T8471] SQUASHFS error: Failed to read block 0x4e8: -5 [ 580.564545][ T29] audit: type=1800 audit(1717452704.326:57): pid=8471 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz-executor.3" name="file1" dev="loop3" ino=5 res=0 errno=0 [ 581.280125][ T8482] input: syz0 as /devices/virtual/input/input16 [ 581.957276][ T8496] Bluetooth: MGMT ver 1.22 [ 582.014997][ T8495] loop2: detected capacity change from 0 to 512 [ 582.093007][ T8495] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 582.346767][ T8495] EXT4-fs (loop2): 1 truncate cleaned up [ 582.356403][ T8495] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 582.608910][ T29] audit: type=1804 audit(1717452706.386:58): pid=8495 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.2" name="/root/syzkaller-testdir154143280/syzkaller.RkJsUA/193/file2/bus" dev="loop2" ino=18 res=1 errno=0 [ 582.879733][ T5605] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 582.887317][ T8506] nbd0: detected capacity change from 0 to 8388607 [ 582.896858][ T8506] block nbd0: shutting down sockets [ 583.321819][ T8514] loop3: detected capacity change from 0 to 8 [ 583.462256][ T8514] SQUASHFS error: Failed to read block 0x4e8: -5 [ 583.549063][ T29] audit: type=1800 audit(1717452707.316:59): pid=8514 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz-executor.3" name="file1" dev="loop3" ino=5 res=0 errno=0 [ 584.338205][ T8522] input: syz0 as /devices/virtual/input/input17 [ 584.897210][ T8530] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.1'. [ 584.971653][ T8533] netlink: 'syz-executor.0': attribute type 1 has an invalid length. [ 585.056771][ T8533] bond1: entered promiscuous mode [ 585.225037][ T8538] bond0: (slave bond_slave_0): Releasing backup interface [ 585.700582][ T8547] nbd2: detected capacity change from 0 to 8388607 [ 585.708020][ T8547] block nbd2: shutting down sockets [ 586.218158][ T8554] loop1: detected capacity change from 0 to 8 [ 586.316412][ T8554] SQUASHFS error: Failed to read block 0x4e8: -5 [ 586.381487][ T29] audit: type=1800 audit(1717452710.166:60): pid=8554 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz-executor.1" name="file1" dev="loop1" ino=5 res=0 errno=0 [ 586.397988][ T8556] input: syz0 as /devices/virtual/input/input18 [ 587.869370][ T1221] ieee802154 phy0 wpan0: encryption failed: -22 [ 587.876098][ T1221] ieee802154 phy1 wpan1: encryption failed: -22 [ 588.826120][ T8580] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.0'. [ 588.850785][ T8580] syz_tun: entered promiscuous mode [ 589.062925][ T4432] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 589.092446][ T4432] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 589.122239][ T4432] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 589.145043][ T8583] input: syz0 as /devices/virtual/input/input19 [ 589.172387][ T4432] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 589.184096][ T4432] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 589.193620][ T4432] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 589.603625][ T8587] loop0: detected capacity change from 0 to 8 [ 589.808128][ T8587] SQUASHFS error: Failed to read block 0x4e8: -5 [ 589.854399][ T29] audit: type=1800 audit(1717452713.666:61): pid=8587 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz-executor.0" name="file1" dev="loop0" ino=5 res=0 errno=0 [ 590.637610][ T3752] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 590.691484][ T8582] chnl_net:caif_netlink_parms(): no params data found [ 590.813075][ T3752] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 591.065550][ T3752] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 591.307806][ T8600] netlink: 36 bytes leftover after parsing attributes in process `syz-executor.0'. [ 591.316676][ T3752] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 591.324782][ T5075] Bluetooth: hci4: command tx timeout [ 591.691110][ T3752] bridge_slave_1: left allmulticast mode [ 591.697402][ T3752] bridge_slave_1: left promiscuous mode [ 591.704006][ T3752] bridge0: port 2(bridge_slave_1) entered disabled state [ 591.764713][ T3752] bridge_slave_0: left allmulticast mode [ 591.776960][ T3752] bridge_slave_0: left promiscuous mode [ 591.785183][ T3752] bridge0: port 1(bridge_slave_0) entered disabled state [ 592.788652][ T3752] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 592.852172][ T3752] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 592.941428][ T3752] bond0 (unregistering): Released all slaves [ 593.192460][ T8613] input: syz0 as /devices/virtual/input/input20 [ 593.397292][ T5075] Bluetooth: hci4: command tx timeout [ 593.643847][ T8617] loop0: detected capacity change from 0 to 8 [ 593.816901][ T8617] SQUASHFS error: Failed to read block 0x4e8: -5 [ 593.888940][ T29] audit: type=1800 audit(1717452717.676:62): pid=8617 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz-executor.0" name="file1" dev="loop0" ino=5 res=0 errno=0 [ 594.021546][ T3752] hsr_slave_0: left promiscuous mode [ 594.087482][ T3752] hsr_slave_1: left promiscuous mode [ 594.106201][ T3752] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 594.113975][ T3752] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 594.154350][ T3752] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 594.162296][ T3752] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 594.268447][ T3752] veth1_macvtap: left promiscuous mode [ 594.274236][ T3752] veth0_macvtap: left promiscuous mode [ 594.280429][ T3752] veth1_vlan: left promiscuous mode [ 594.286096][ T3752] veth0_vlan: left promiscuous mode [ 594.648101][ T8629] netlink: 36 bytes leftover after parsing attributes in process `syz-executor.0'. [ 595.039165][ T3752] team0 (unregistering): Port device team_slave_1 removed [ 595.112312][ T3752] team0 (unregistering): Port device team_slave_0 removed [ 595.487453][ T5075] Bluetooth: hci4: command tx timeout [ 595.608333][ T8582] bridge0: port 1(bridge_slave_0) entered blocking state [ 595.616175][ T8582] bridge0: port 1(bridge_slave_0) entered disabled state [ 595.623941][ T8582] bridge_slave_0: entered allmulticast mode [ 595.633661][ T8582] bridge_slave_0: entered promiscuous mode [ 595.799057][ T8582] bridge0: port 2(bridge_slave_1) entered blocking state [ 595.808796][ T8582] bridge0: port 2(bridge_slave_1) entered disabled state [ 595.817600][ T8582] bridge_slave_1: entered allmulticast mode [ 595.826875][ T8582] bridge_slave_1: entered promiscuous mode [ 595.861341][ T8634] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'. [ 595.892614][ T8634] vlan2: entered allmulticast mode [ 595.898119][ T8634] mac80211_hwsim hwsim15 wlan1: entered allmulticast mode [ 596.131087][ T8582] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 596.189280][ T8582] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 596.448950][ T8582] team0: Port device team_slave_0 added [ 596.497508][ T8582] team0: Port device team_slave_1 added [ 596.762085][ T8582] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 596.769552][ T8582] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 596.800186][ T8582] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 596.863283][ T8640] input: syz0 as /devices/virtual/input/input21 [ 596.949501][ T8582] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 596.956796][ T8582] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 596.983229][ T8582] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 597.359583][ T8582] hsr_slave_0: entered promiscuous mode [ 597.394331][ T8650] loop0: detected capacity change from 0 to 8 [ 597.413254][ T8582] hsr_slave_1: entered promiscuous mode [ 597.552594][ T8650] SQUASHFS error: Failed to read block 0x4e8: -5 [ 597.576459][ T5075] Bluetooth: hci4: command tx timeout [ 597.624482][ T29] audit: type=1800 audit(1717452721.406:63): pid=8650 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz-executor.0" name="file1" dev="loop0" ino=5 res=0 errno=0 [ 598.810677][ T8582] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 598.907382][ T8582] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 599.008778][ T8582] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 599.093252][ T8582] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 600.347546][ T8582] 8021q: adding VLAN 0 to HW filter on device bond0 [ 600.503723][ T8582] 8021q: adding VLAN 0 to HW filter on device team0 [ 600.531512][ T8679] input: syz0 as /devices/virtual/input/input22 [ 600.583423][ T5127] bridge0: port 1(bridge_slave_0) entered blocking state [ 600.591355][ T5127] bridge0: port 1(bridge_slave_0) entered forwarding state [ 600.697392][ T5127] bridge0: port 2(bridge_slave_1) entered blocking state [ 600.705090][ T5127] bridge0: port 2(bridge_slave_1) entered forwarding state [ 601.038488][ T8683] loop1: detected capacity change from 0 to 8 [ 601.138693][ T8683] SQUASHFS error: Failed to read block 0x4e8: -5 [ 601.180118][ T29] audit: type=1800 audit(1717452724.996:64): pid=8683 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz-executor.1" name="file1" dev="loop1" ino=5 res=0 errno=0 [ 602.394720][ T8582] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 602.900474][ T8709] input: syz0 as /devices/virtual/input/input23 [ 602.901895][ T8582] veth0_vlan: entered promiscuous mode [ 602.995357][ T8582] veth1_vlan: entered promiscuous mode [ 603.414912][ T8714] loop1: detected capacity change from 0 to 8 [ 603.462595][ T8582] veth0_macvtap: entered promiscuous mode [ 603.552642][ T8714] SQUASHFS error: Failed to read block 0x4e8: -5 [ 603.562743][ T8582] veth1_macvtap: entered promiscuous mode [ 603.587547][ T29] audit: type=1800 audit(1717452727.416:65): pid=8714 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz-executor.1" name="file1" dev="loop1" ino=5 res=0 errno=0 [ 603.779725][ T8582] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 603.791139][ T8582] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 603.801388][ T8582] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 603.812155][ T8582] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 603.822383][ T8582] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 603.833831][ T8582] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 603.844140][ T8582] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 603.859211][ T8582] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 603.875241][ T8582] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 604.032980][ T8582] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 604.043958][ T8582] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 604.054034][ T8582] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 604.069031][ T8582] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 604.080369][ T8582] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 604.091242][ T8582] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 604.101397][ T8582] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 604.112251][ T8582] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 604.129587][ T8582] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 604.186331][ T8582] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 604.195430][ T8582] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 604.204699][ T8582] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 604.213885][ T8582] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 605.644104][ T8749] loop3: detected capacity change from 0 to 8 [ 605.808996][ T8749] SQUASHFS error: Failed to read block 0x4e8: -5 [ 605.865013][ T29] audit: type=1800 audit(1717452729.666:66): pid=8749 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz-executor.3" name="file1" dev="loop3" ino=5 res=0 errno=0 [ 606.603808][ T8765] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.4'. [ 607.381619][ T8776] input: syz0 as /devices/virtual/input/input24 [ 607.874156][ T8787] loop4: detected capacity change from 0 to 8 [ 607.984522][ T8787] SQUASHFS error: Failed to read block 0x4e8: -5 [ 608.059926][ T29] audit: type=1800 audit(1717452731.836:67): pid=8787 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz-executor.4" name="file1" dev="loop4" ino=5 res=0 errno=0 [ 608.663653][ T8799] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.0'. [ 609.771919][ T8817] input: syz0 as /devices/virtual/input/input25 [ 610.446156][ T6456] usb 1-1: new high-speed USB device number 6 using dummy_hcd [ 610.588945][ T4381] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 610.597360][ T4381] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 610.726273][ T6456] usb 1-1: Using ep0 maxpacket: 16 [ 610.812709][ T5130] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 610.824887][ T5130] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 611.047005][ T6456] usb 1-1: New USB device found, idVendor=23a7, idProduct=fedc, bcdDevice=e0.0b [ 611.056517][ T6456] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 611.064777][ T6456] usb 1-1: Product: syz [ 611.069357][ T6456] usb 1-1: Manufacturer: syz [ 611.074608][ T6456] usb 1-1: SerialNumber: syz [ 611.117592][ T6456] usb 1-1: config 0 descriptor?? [ 611.527258][ T6456] usb 1-1: MIDIStreaming interface descriptor not found [ 611.694022][ T8836] nbd2: detected capacity change from 0 to 8388607 [ 611.710518][ T6456] usb 1-1: USB disconnect, device number 6 [ 612.343583][ T5075] block nbd2: Receive control failed (result -32) [ 612.360294][ T8836] block nbd2: shutting down sockets [ 614.040307][ T8855] input: syz0 as /devices/virtual/input/input26 [ 614.152837][ T8857] loop4: detected capacity change from 0 to 64 [ 614.447557][ T8862] loop1: detected capacity change from 0 to 8 [ 615.219386][ T8875] nbd3: detected capacity change from 0 to 8388607 [ 615.846904][ T5075] block nbd3: Receive control failed (result -32) [ 615.857488][ T8875] block nbd3: shutting down sockets [ 616.252615][ T8888] loop4: detected capacity change from 0 to 2048 [ 616.409817][ T8891] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 616.448948][ T8890] loop0: detected capacity change from 0 to 128 [ 616.519688][ T8890] UDF-fs: error (device loop0): udf_read_tagged: read failed, block=256, location=256 [ 616.882382][ T8893] loop3: detected capacity change from 0 to 2048 [ 616.995987][ T8893] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 618.575950][ T8915] nbd4: detected capacity change from 0 to 8388607 [ 618.737279][ T8920] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'. [ 619.162155][ T5075] block nbd4: Receive control failed (result -32) [ 619.162854][ T8915] block nbd4: shutting down sockets [ 619.800840][ T8927] loop1: detected capacity change from 0 to 256 [ 620.309509][ T8927] FAT-fs (loop1): Directory bread(block 64) failed [ 620.316519][ T8927] FAT-fs (loop1): Directory bread(block 65) failed [ 620.327671][ T8927] FAT-fs (loop1): Directory bread(block 66) failed [ 620.334458][ T8927] FAT-fs (loop1): Directory bread(block 67) failed [ 620.346820][ T8927] FAT-fs (loop1): Directory bread(block 68) failed [ 620.353614][ T8927] FAT-fs (loop1): Directory bread(block 69) failed [ 620.361990][ T8927] FAT-fs (loop1): Directory bread(block 70) failed [ 620.368886][ T8927] FAT-fs (loop1): Directory bread(block 71) failed [ 620.376037][ T8927] FAT-fs (loop1): Directory bread(block 72) failed [ 620.382807][ T8927] FAT-fs (loop1): Directory bread(block 73) failed [ 620.606972][ T5127] usb 1-1: new high-speed USB device number 7 using dummy_hcd [ 620.667531][ T8932] loop4: detected capacity change from 0 to 2048 [ 620.781073][ T8932] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 621.007455][ T5127] usb 1-1: config index 0 descriptor too short (expected 65535, got 36) [ 621.016358][ T5127] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 621.026914][ T5127] usb 1-1: config 0 has no interfaces? [ 621.032931][ T5127] usb 1-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 621.042581][ T5127] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 621.121180][ T5127] usb 1-1: config 0 descriptor?? [ 621.423192][ T8930] netlink: 'syz-executor.0': attribute type 4 has an invalid length. [ 621.431879][ T8930] netlink: 17 bytes leftover after parsing attributes in process `syz-executor.0'. [ 621.634424][ T6456] usb 1-1: USB disconnect, device number 7 [ 621.958318][ T8948] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.2'. [ 622.306734][ T8951] nbd4: detected capacity change from 0 to 8388607 [ 622.987304][ T8951] block nbd4: shutting down sockets [ 623.027291][ T8953] loop3: detected capacity change from 0 to 8192 [ 623.666589][ T8953] FAT-fs (loop3): error, fat_get_cluster: invalid cluster chain (i_pos 0) [ 623.675500][ T8953] FAT-fs (loop3): Filesystem has been set read-only [ 624.896409][ T8974] loop3: detected capacity change from 0 to 2048 [ 625.128316][ T8974] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 626.201611][ T8988] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'. [ 626.397784][ T8994] nbd4: detected capacity change from 0 to 8388607 [ 627.046568][ T5075] block nbd4: Receive control failed (result -32) [ 627.144443][ T8994] block nbd4: shutting down sockets [ 627.160515][ T9005] TCP: request_sock_TCPv6: Possible SYN flooding on port [::]:20002. Sending cookies. [ 627.170557][ T9005] TCP: tcp_parse_options: Illegal window scaling value 64 > 14 received [ 628.052677][ T9011] loop4: detected capacity change from 0 to 256 [ 628.193776][ T9015] loop1: detected capacity change from 0 to 256 [ 628.414228][ T9015] FAT-fs (loop1): Directory bread(block 64) failed [ 628.421435][ T9015] FAT-fs (loop1): Directory bread(block 65) failed [ 628.428657][ T9015] FAT-fs (loop1): Directory bread(block 66) failed [ 628.440603][ T9015] FAT-fs (loop1): Directory bread(block 67) failed [ 628.449072][ T9015] FAT-fs (loop1): Directory bread(block 68) failed [ 628.455990][ T9015] FAT-fs (loop1): Directory bread(block 69) failed [ 628.462892][ T9015] FAT-fs (loop1): Directory bread(block 70) failed [ 628.469832][ T9015] FAT-fs (loop1): Directory bread(block 71) failed [ 628.476869][ T9015] FAT-fs (loop1): Directory bread(block 72) failed [ 628.483630][ T9015] FAT-fs (loop1): Directory bread(block 73) failed [ 628.583999][ T9011] FAT-fs (loop4): Directory bread(block 64) failed [ 628.591117][ T9011] FAT-fs (loop4): Directory bread(block 65) failed [ 628.598176][ T9011] FAT-fs (loop4): Directory bread(block 66) failed [ 628.605077][ T9011] FAT-fs (loop4): Directory bread(block 67) failed [ 628.612985][ T9011] FAT-fs (loop4): Directory bread(block 68) failed [ 628.620005][ T9011] FAT-fs (loop4): Directory bread(block 69) failed [ 628.626930][ T9011] FAT-fs (loop4): Directory bread(block 70) failed [ 628.633580][ T9011] FAT-fs (loop4): Directory bread(block 71) failed [ 628.643604][ T9011] FAT-fs (loop4): Directory bread(block 72) failed [ 628.651248][ T9011] FAT-fs (loop4): Directory bread(block 73) failed [ 628.774358][ T9016] loop3: detected capacity change from 0 to 2048 [ 628.921670][ T9016] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 629.567779][ T1086] kworker/u8:7: attempt to access beyond end of device [ 629.567779][ T1086] loop1: rw=1, sector=1224, nr_sectors = 12 limit=256 [ 631.351076][ T9041] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'. [ 631.788168][ T9044] TCP: request_sock_TCPv6: Possible SYN flooding on port [::]:20002. Sending cookies. [ 631.798180][ T9044] TCP: tcp_parse_options: Illegal window scaling value 64 > 14 received [ 632.011289][ T9047] nbd0: detected capacity change from 0 to 8388607 [ 632.067747][ T9047] block nbd0: shutting down sockets [ 632.648225][ T9053] loop2: detected capacity change from 0 to 2048 [ 632.659943][ T9057] loop3: detected capacity change from 0 to 16 [ 632.724155][ T9057] erofs: (device loop3): mounted with root inode @ nid 36. [ 632.786540][ T9057] syz-executor.3: attempt to access beyond end of device [ 632.786540][ T9057] loop3: rw=0, sector=4294967295, nr_sectors = 1 limit=16 [ 632.832545][ T9053] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 632.889843][ T9057] syz-executor.3: attempt to access beyond end of device [ 632.889843][ T9057] loop3: rw=0, sector=4294967295, nr_sectors = 1 limit=16 [ 635.205997][ T9074] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.3'. [ 636.127765][ T9084] nbd2: detected capacity change from 0 to 8388607 [ 636.198939][ T9084] block nbd2: shutting down sockets [ 636.536241][ T9089] loop1: detected capacity change from 0 to 2048 [ 636.606239][ T9089] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 636.719546][ T9095] netlink: 'syz-executor.3': attribute type 3 has an invalid length. [ 636.733651][ T9095] netlink: 199836 bytes leftover after parsing attributes in process `syz-executor.3'. [ 637.577585][ T9102] loop3: detected capacity change from 0 to 1024 [ 637.593798][ T9102] EXT4-fs: Ignoring removed nobh option [ 637.646567][ T9102] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 637.920154][ T9112] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.0'. [ 638.162943][ T6481] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 639.349835][ T9124] loop0: detected capacity change from 0 to 2048 [ 639.439897][ T9124] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 639.527668][ T9131] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.4'. [ 639.971529][ T9136] TCP: request_sock_TCPv6: Possible SYN flooding on port [::]:20002. Sending cookies. [ 639.981674][ T9136] TCP: tcp_parse_options: Illegal window scaling value 64 > 14 received [ 640.732405][ T9145] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.2'. [ 641.706076][ T9152] nbd2: detected capacity change from 0 to 8388607 [ 641.768328][ T9152] block nbd2: shutting down sockets [ 642.839894][ T9162] Cannot find add_set index 0 as target [ 642.944898][ T9166] loop1: detected capacity change from 0 to 64 [ 643.622637][ T9175] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 643.705103][ T9178] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'. [ 645.200505][ T9188] loop1: detected capacity change from 0 to 2048 [ 645.341960][ T9188] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 645.595424][ T9201] loop2: detected capacity change from 0 to 256 [ 645.683733][ T9201] FAT-fs (loop2): error, invalid access to FAT (entry 0x00000001) [ 645.692043][ T9201] FAT-fs (loop2): Filesystem has been set read-only [ 646.631538][ T9212] veth0_vlan: entered allmulticast mode [ 647.046349][ T5127] usb 1-1: new high-speed USB device number 8 using dummy_hcd [ 647.306113][ T5127] usb 1-1: Using ep0 maxpacket: 32 [ 647.436908][ T5127] usb 1-1: New USB device found, idVendor=0458, idProduct=7006, bcdDevice=69.91 [ 647.446677][ T5127] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 647.537946][ T5127] usb 1-1: config 0 descriptor?? [ 647.613587][ T5127] gspca_main: sunplus-2.14.0 probing 0458:7006 [ 647.743097][ T9228] loop2: detected capacity change from 0 to 256 [ 647.862779][ T9228] FAT-fs (loop2): error, invalid access to FAT (entry 0x00000001) [ 647.871122][ T9228] FAT-fs (loop2): Filesystem has been set read-only [ 648.020383][ T9215] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 648.029890][ T9215] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 648.371043][ T9234] syzkaller0: entered allmulticast mode [ 648.450929][ T9234] syzkaller0 (unregistering): left allmulticast mode [ 648.682368][ T9240] netlink: 48 bytes leftover after parsing attributes in process `syz-executor.3'. [ 649.088719][ T5127] gspca_sunplus: reg_w_riv err -71 [ 649.094314][ T5127] sunplus 1-1:0.0: probe with driver sunplus failed with error -71 [ 649.174062][ T5127] usb 1-1: USB disconnect, device number 8 [ 649.259628][ T1221] ieee802154 phy0 wpan0: encryption failed: -22 [ 649.266568][ T1221] ieee802154 phy1 wpan1: encryption failed: -22 [ 650.259539][ T9263] loop3: detected capacity change from 0 to 256 [ 650.289393][ T9260] loop0: detected capacity change from 0 to 2048 [ 650.376535][ T9260] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 650.450621][ T9268] syzkaller0: entered allmulticast mode [ 650.485487][ T9268] syzkaller0 (unregistering): left allmulticast mode [ 651.656331][ T5127] usb 4-1: new high-speed USB device number 7 using dummy_hcd [ 651.916329][ T5127] usb 4-1: Using ep0 maxpacket: 32 [ 652.106957][ T5127] usb 4-1: New USB device found, idVendor=0458, idProduct=7006, bcdDevice=69.91 [ 652.117129][ T5127] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 652.182797][ T5127] usb 4-1: config 0 descriptor?? [ 652.274186][ T5127] gspca_main: sunplus-2.14.0 probing 0458:7006 [ 652.663349][ T9302] loop2: detected capacity change from 0 to 256 [ 652.680755][ T9284] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 652.690119][ T9284] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 653.367004][ T6454] usb 5-1: new high-speed USB device number 8 using dummy_hcd [ 653.629554][ T6454] usb 5-1: Using ep0 maxpacket: 32 [ 653.673193][ T5127] gspca_sunplus: reg_w_riv err -71 [ 653.679123][ T5127] sunplus 4-1:0.0: probe with driver sunplus failed with error -71 [ 653.712723][ T5127] usb 4-1: USB disconnect, device number 7 [ 653.777129][ T6454] usb 5-1: New USB device found, idVendor=0458, idProduct=7006, bcdDevice=69.91 [ 653.786673][ T6454] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 653.860620][ T6454] usb 5-1: config 0 descriptor?? [ 653.942553][ T6454] gspca_main: sunplus-2.14.0 probing 0458:7006 [ 654.870743][ T9335] loop3: detected capacity change from 0 to 256 [ 655.036642][ T6454] gspca_sunplus: reg_w_riv err -71 [ 655.042253][ T6454] sunplus 5-1:0.0: probe with driver sunplus failed with error -71 [ 655.097158][ T6454] usb 5-1: USB disconnect, device number 8 [ 656.155250][ T29] audit: type=1800 audit(1717452779.956:68): pid=9358 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.3" name="file0" dev="sda1" ino=1954 res=0 errno=0 [ 656.697230][ T9367] loop3: detected capacity change from 0 to 256 [ 656.741970][ T9367] FAT-fs (loop3): error, invalid access to FAT (entry 0x00000001) [ 656.750191][ T9367] FAT-fs (loop3): Filesystem has been set read-only [ 657.886965][ T6454] usb 4-1: new high-speed USB device number 8 using dummy_hcd [ 658.197515][ T6454] usb 4-1: Using ep0 maxpacket: 32 [ 658.326679][ T6454] usb 4-1: New USB device found, idVendor=0458, idProduct=7006, bcdDevice=69.91 [ 658.341630][ T6454] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 658.371396][ T6454] usb 4-1: config 0 descriptor?? [ 658.465089][ T6454] gspca_main: sunplus-2.14.0 probing 0458:7006 [ 658.809839][ T9400] loop4: detected capacity change from 0 to 256 [ 658.895242][ T9400] FAT-fs (loop4): error, invalid access to FAT (entry 0x00000001) [ 658.903910][ T9400] FAT-fs (loop4): Filesystem has been set read-only [ 659.550490][ T6454] gspca_sunplus: reg_w_riv err -71 [ 659.556255][ T6454] sunplus 4-1:0.0: probe with driver sunplus failed with error -71 [ 659.611209][ T6454] usb 4-1: USB disconnect, device number 8 [ 661.894349][ T9445] loop0: detected capacity change from 0 to 2048 [ 662.040430][ T9445] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 662.075264][ T9448] loop4: detected capacity change from 0 to 256 [ 662.138363][ T9437] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 662.219359][ T9448] FAT-fs (loop4): error, invalid access to FAT (entry 0x00000001) [ 662.232293][ T9448] FAT-fs (loop4): Filesystem has been set read-only [ 662.758629][ T5127] usb 2-1: new high-speed USB device number 7 using dummy_hcd [ 663.066074][ T5127] usb 2-1: Using ep0 maxpacket: 32 [ 663.206689][ T5127] usb 2-1: New USB device found, idVendor=0458, idProduct=7006, bcdDevice=69.91 [ 663.216919][ T5127] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 663.283476][ T5127] usb 2-1: config 0 descriptor?? [ 663.389236][ T5127] gspca_main: sunplus-2.14.0 probing 0458:7006 [ 665.960059][ T9486] loop0: detected capacity change from 0 to 256 [ 669.200428][ T5127] gspca_sunplus: reg_w_riv err -71 [ 669.209676][ T5127] sunplus 2-1:0.0: probe with driver sunplus failed with error -71 [ 669.237044][ T5127] usb 2-1: USB disconnect, device number 7 [ 669.742594][ T780] kworker/dying (780) used greatest stack depth: 4064 bytes left [ 671.802150][ T9517] loop0: detected capacity change from 0 to 256 [ 671.974165][ T9517] FAT-fs (loop0): error, invalid access to FAT (entry 0x00000001) [ 671.982891][ T9517] FAT-fs (loop0): Filesystem has been set read-only [ 672.170143][ T5075] Bluetooth: hci5: unexpected event for opcode 0x0c7b [ 674.078179][ T9553] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.2'. [ 674.463393][ T5075] Bluetooth: hci3: unexpected event for opcode 0x0c7b [ 674.980175][ T9564] loop3: detected capacity change from 0 to 256 [ 675.193026][ T9564] FAT-fs (loop3): error, invalid access to FAT (entry 0x00000001) [ 675.201371][ T9564] FAT-fs (loop3): Filesystem has been set read-only [ 676.196258][ T5075] Bluetooth: hci5: Controller not accepting commands anymore: ncmd = 0 [ 676.204920][ T5075] Bluetooth: hci5: Injecting HCI hardware error event [ 676.213197][ T5075] Bluetooth: hci5: hardware error 0x00 [ 677.486460][ T9606] syzkaller0: entered allmulticast mode [ 677.570377][ T9604] syzkaller0: left allmulticast mode [ 678.276752][ T5075] Bluetooth: hci5: Opcode 0x0c03 failed: -110 [ 678.387145][ T9625] netlink: 763 bytes leftover after parsing attributes in process `syz-executor.0'. [ 678.519873][ T5075] Bluetooth: hci3: Controller not accepting commands anymore: ncmd = 0 [ 678.528597][ T5075] Bluetooth: hci3: Injecting HCI hardware error event [ 678.536317][ T5075] Bluetooth: hci3: hardware error 0x00 [ 679.350105][ T9644] syzkaller0: entered allmulticast mode [ 679.405419][ T9638] syzkaller0: left allmulticast mode [ 679.859026][ T9582] Bluetooth: hci3: unexpected event for opcode 0x0c7b [ 680.596159][ T5075] Bluetooth: hci3: Opcode 0x0c03 failed: -110 [ 680.867704][ T9678] syzkaller0: entered allmulticast mode [ 680.876224][ T9676] syzkaller0: left allmulticast mode [ 681.076359][ T5075] Bluetooth: hci4: Controller not accepting commands anymore: ncmd = 0 [ 681.084955][ T5075] Bluetooth: hci4: Injecting HCI hardware error event [ 681.092934][ T5075] Bluetooth: hci4: hardware error 0x00 [ 682.646386][ T6454] usb 3-1: new high-speed USB device number 7 using dummy_hcd [ 682.921626][ T6454] usb 3-1: Using ep0 maxpacket: 8 [ 683.087233][ T6454] usb 3-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 683.097949][ T6454] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 2 [ 683.107206][ T6454] usb 3-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 100, changing to 10 [ 683.122530][ T6454] usb 3-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 24936, setting to 1024 [ 683.135244][ T6454] usb 3-1: New USB device found, idVendor=0225, idProduct=0000, bcdDevice= 0.00 [ 683.144664][ T6454] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 683.168633][ T5075] Bluetooth: hci4: Opcode 0x0c03 failed: -110 [ 683.268638][ T6454] hub 3-1:1.0: bad descriptor, ignoring hub [ 683.274932][ T6454] hub 3-1:1.0: probe with driver hub failed with error -5 [ 683.284339][ T6454] cdc_wdm 3-1:1.0: skipping garbage [ 683.289882][ T6454] cdc_wdm 3-1:1.0: skipping garbage [ 683.376283][ T6454] cdc_wdm 3-1:1.0: cdc-wdm0: USB WDM device [ 683.382450][ T6454] cdc_wdm 3-1:1.0: Unknown control protocol [ 683.620591][ T6454] usb 3-1: USB disconnect, device number 7 [ 684.022792][ T9740] loop3: detected capacity change from 0 to 256 [ 684.046364][ T6454] usb 3-1: new low-speed USB device number 8 using dummy_hcd [ 684.183076][ T9740] FAT-fs (loop3): error, invalid access to FAT (entry 0x00000001) [ 684.191904][ T9740] FAT-fs (loop3): Filesystem has been set read-only [ 684.421252][ T6454] usb 3-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 684.431947][ T6454] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 2 [ 684.444607][ T6454] usb 3-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 26984, setting to 8 [ 684.459364][ T6454] usb 3-1: New USB device found, idVendor=0225, idProduct=0000, bcdDevice= 0.00 [ 684.469525][ T6454] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 684.567681][ T9713] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22 [ 684.609182][ T6454] hub 3-1:1.0: bad descriptor, ignoring hub [ 684.615362][ T6454] hub 3-1:1.0: probe with driver hub failed with error -5 [ 684.625353][ T6454] cdc_wdm 3-1:1.0: skipping garbage [ 684.631512][ T6454] cdc_wdm 3-1:1.0: skipping garbage [ 684.667269][ T6454] cdc_wdm 3-1:1.0: cdc-wdm0: USB WDM device [ 684.673646][ T6454] cdc_wdm 3-1:1.0: Unknown control protocol [ 684.978067][ T6454] usb 3-1: USB disconnect, device number 8 [ 685.824913][ T9774] loop3: detected capacity change from 0 to 256 [ 685.954042][ T9774] FAT-fs (loop3): error, invalid access to FAT (entry 0x00000001) [ 685.962353][ T9774] FAT-fs (loop3): Filesystem has been set read-only [ 687.587570][ T6454] usb 1-1: new high-speed USB device number 9 using dummy_hcd [ 687.693337][ T9808] loop3: detected capacity change from 0 to 256 [ 687.776092][ T29] audit: type=1800 audit(1717452811.586:69): pid=9805 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.2" name="bus" dev="sda1" ino=1965 res=0 errno=0 [ 687.779218][ T9808] FAT-fs (loop3): error, invalid access to FAT (entry 0x00000001) [ 687.805181][ T9808] FAT-fs (loop3): Filesystem has been set read-only [ 687.876623][ T6454] usb 1-1: Using ep0 maxpacket: 8 [ 688.037558][ T6454] usb 1-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 688.048070][ T6454] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 2 [ 688.057347][ T6454] usb 1-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 100, changing to 10 [ 688.068873][ T6454] usb 1-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 24936, setting to 1024 [ 688.080454][ T6454] usb 1-1: New USB device found, idVendor=0225, idProduct=0000, bcdDevice= 0.00 [ 688.089990][ T6454] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 688.243356][ T6454] hub 1-1:1.0: bad descriptor, ignoring hub [ 688.249755][ T6454] hub 1-1:1.0: probe with driver hub failed with error -5 [ 688.258576][ T6454] cdc_wdm 1-1:1.0: skipping garbage [ 688.264144][ T6454] cdc_wdm 1-1:1.0: skipping garbage [ 688.319350][ T6454] cdc_wdm 1-1:1.0: cdc-wdm0: USB WDM device [ 688.325517][ T6454] cdc_wdm 1-1:1.0: Unknown control protocol [ 688.657619][ T5127] usb 1-1: USB disconnect, device number 9 [ 689.767020][ T5127] usb 1-1: new low-speed USB device number 10 using dummy_hcd [ 690.171090][ T9582] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 690.209095][ T9582] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 690.218878][ T9582] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 690.244477][ T9582] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 690.256104][ T9582] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 690.265442][ T9582] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 690.488437][ T5127] usb 1-1: unable to read config index 0 descriptor/all [ 690.495939][ T5127] usb 1-1: can't read configurations, error -71 [ 690.526063][ T4381] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 690.608639][ T9826] loop2: detected capacity change from 0 to 1024 [ 690.641405][ T4381] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 690.788831][ T4381] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 691.035338][ T4381] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 691.696013][ T9840] loop1: detected capacity change from 0 to 256 [ 691.731341][ T4381] bridge_slave_1: left allmulticast mode [ 691.737501][ T4381] bridge_slave_1: left promiscuous mode [ 691.744058][ T4381] bridge0: port 2(bridge_slave_1) entered disabled state [ 691.804369][ T4381] bridge_slave_0: left allmulticast mode [ 691.810637][ T4381] bridge_slave_0: left promiscuous mode [ 691.821716][ T4381] bridge0: port 1(bridge_slave_0) entered disabled state [ 692.356489][ T9582] Bluetooth: hci2: command tx timeout [ 692.569948][ T29] audit: type=1800 audit(1717452816.316:70): pid=9843 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.0" name="bus" dev="sda1" ino=1951 res=0 errno=0 [ 692.686201][ T4381] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 692.839181][ T4381] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 692.934602][ T4381] bond0 (unregistering): Released all slaves [ 693.396549][ T4381] mac80211_hwsim hwsim15 wlan1 (unregistering): left allmulticast mode [ 693.457828][ T6453] usb 3-1: new high-speed USB device number 9 using dummy_hcd [ 693.530744][ T9821] chnl_net:caif_netlink_parms(): no params data found [ 693.756112][ T6453] usb 3-1: Using ep0 maxpacket: 8 [ 693.858312][ T4381] hsr_slave_0: left promiscuous mode [ 693.884065][ T9861] loop1: detected capacity change from 0 to 1024 [ 693.898459][ T4381] hsr_slave_1: left promiscuous mode [ 693.915367][ T4381] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 693.924159][ T4381] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 693.927513][ T6453] usb 3-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 693.941917][ T6453] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 2 [ 693.951271][ T6453] usb 3-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 100, changing to 10 [ 693.962929][ T6453] usb 3-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 24936, setting to 1024 [ 693.976210][ T6453] usb 3-1: New USB device found, idVendor=0225, idProduct=0000, bcdDevice= 0.00 [ 693.986374][ T6453] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 694.020293][ T4381] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 694.028149][ T4381] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 694.059558][ T6453] hub 3-1:1.0: bad descriptor, ignoring hub [ 694.066617][ T6453] hub 3-1:1.0: probe with driver hub failed with error -5 [ 694.077317][ T6453] cdc_wdm 3-1:1.0: skipping garbage [ 694.082745][ T6453] cdc_wdm 3-1:1.0: skipping garbage [ 694.092237][ T4381] veth1_macvtap: left promiscuous mode [ 694.098902][ T4381] veth0_macvtap: left promiscuous mode [ 694.104832][ T4381] veth1_vlan: left promiscuous mode [ 694.110552][ T4381] veth0_vlan: left promiscuous mode [ 694.118873][ T6453] cdc_wdm 3-1:1.0: cdc-wdm0: USB WDM device [ 694.126514][ T6453] cdc_wdm 3-1:1.0: Unknown control protocol [ 694.218905][ T9861] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 694.231839][ T9861] ext4 filesystem being mounted at /root/syzkaller-testdir1737767925/syzkaller.87WG6w/369/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 694.321582][ T6453] usb 3-1: USB disconnect, device number 9 [ 694.458077][ T9582] Bluetooth: hci2: command tx timeout [ 694.624895][ T29] audit: type=1804 audit(1717452818.416:71): pid=9861 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.1" name="/root/syzkaller-testdir1737767925/syzkaller.87WG6w/369/file1/file1" dev="loop1" ino=15 res=1 errno=0 [ 694.665061][ T9871] loop4: detected capacity change from 0 to 256 [ 694.876418][ T29] audit: type=1804 audit(1717452818.586:72): pid=9872 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz-executor.1" name="/root/syzkaller-testdir1737767925/syzkaller.87WG6w/369/file1/file1" dev="loop1" ino=15 res=1 errno=0 [ 694.995615][ T4381] team0 (unregistering): Port device team_slave_1 removed [ 695.070603][ T4381] team0 (unregistering): Port device team_slave_0 removed [ 695.087860][ T6453] usb 3-1: new low-speed USB device number 10 using dummy_hcd [ 695.151358][ T5073] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 695.564910][ T6453] usb 3-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 695.575820][ T6453] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 2 [ 695.585083][ T6453] usb 3-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 26984, setting to 8 [ 695.596511][ T6453] usb 3-1: New USB device found, idVendor=0225, idProduct=0000, bcdDevice= 0.00 [ 695.607398][ T6453] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 695.699296][ T9855] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22 [ 695.768799][ T6453] hub 3-1:1.0: bad descriptor, ignoring hub [ 695.774981][ T6453] hub 3-1:1.0: probe with driver hub failed with error -5 [ 695.782395][ T29] audit: type=1800 audit(1717452819.576:73): pid=9881 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.0" name="bus" dev="sda1" ino=1954 res=0 errno=0 [ 695.808338][ T6453] cdc_wdm 3-1:1.0: skipping garbage [ 695.816621][ T6453] cdc_wdm 3-1:1.0: skipping garbage [ 695.854574][ T29] audit: type=1800 audit(1717452819.696:74): pid=9880 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.1" name="bus" dev="sda1" ino=1960 res=0 errno=0 [ 695.903699][ T6453] cdc_wdm 3-1:1.0: cdc-wdm0: USB WDM device [ 695.910356][ T6453] cdc_wdm 3-1:1.0: Unknown control protocol [ 696.227794][ T6453] usb 3-1: USB disconnect, device number 10 [ 696.529280][ T9582] Bluetooth: hci2: command tx timeout [ 696.879049][ T9821] bridge0: port 1(bridge_slave_0) entered blocking state [ 696.886877][ T9821] bridge0: port 1(bridge_slave_0) entered disabled state [ 696.894624][ T9821] bridge_slave_0: entered allmulticast mode [ 696.905418][ T9821] bridge_slave_0: entered promiscuous mode [ 697.007824][ T9821] bridge0: port 2(bridge_slave_1) entered blocking state [ 697.017529][ T9821] bridge0: port 2(bridge_slave_1) entered disabled state [ 697.025475][ T9821] bridge_slave_1: entered allmulticast mode [ 697.035587][ T9821] bridge_slave_1: entered promiscuous mode [ 697.213896][ T9900] loop1: detected capacity change from 0 to 64 [ 697.332575][ T9821] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 697.440158][ T9821] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 697.777084][ T9821] team0: Port device team_slave_0 added [ 697.839697][ T9821] team0: Port device team_slave_1 added [ 698.131945][ T9821] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 698.139292][ T9821] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 698.169046][ T9821] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 698.243765][ T9821] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 698.252867][ T9821] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 698.284060][ T9821] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 698.342020][ T9907] loop4: detected capacity change from 0 to 2048 [ 698.602531][ T9582] Bluetooth: hci2: command tx timeout [ 698.614210][ T9907] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 698.692185][ T9821] hsr_slave_0: entered promiscuous mode [ 698.749729][ T9821] hsr_slave_1: entered promiscuous mode [ 698.793732][ T29] audit: type=1800 audit(1717452822.626:75): pid=9919 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.0" name="bus" dev="sda1" ino=1949 res=0 errno=0 [ 698.826030][ T9821] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 698.834453][ T9821] Cannot create hsr debugfs directory [ 698.928712][ T9907] ===================================================== [ 698.936373][ T9907] BUG: KMSAN: uninit-value in crc_itu_t+0x287/0x2e0 [ 698.943269][ T9907] crc_itu_t+0x287/0x2e0 [ 698.947948][ T9907] udf_update_tag+0x5c/0x2a0 [ 698.952676][ T9907] udf_rename+0x1202/0x16d0 [ 698.957500][ T9907] vfs_rename+0x1d9a/0x2280 [ 698.962114][ T9907] do_renameat2+0x18cc/0x1d50 [ 698.967077][ T9907] __x64_sys_renameat2+0x153/0x200 [ 698.972361][ T9907] x64_sys_call+0x2993/0x3b50 [ 698.977287][ T9907] do_syscall_64+0xcf/0x1e0 [ 698.981928][ T9907] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 698.988926][ T9907] [ 698.991297][ T9907] Local variable diriter created at: [ 698.996897][ T9907] udf_rename+0xbe/0x16d0 [ 699.001415][ T9907] vfs_rename+0x1d9a/0x2280 [ 699.006252][ T9907] [ 699.008652][ T9907] CPU: 0 PID: 9907 Comm: syz-executor.4 Not tainted 6.9.0-syzkaller-02707-g614da38e2f7a #0 2024/06/03 22:13:42 SYZFATAL: failed to recv *flatrpc.HostMessageRaw: EOF [ 699.019513][ T9907] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/02/2024 [ 699.030350][ T9907] ===================================================== [ 699.037529][ T9907] Disabling lock debugging due to kernel taint [ 699.043804][ T9907] Kernel panic - not syncing: kmsan.panic set ... [ 699.050346][ T9907] CPU: 0 PID: 9907 Comm: syz-executor.4 Tainted: G B 6.9.0-syzkaller-02707-g614da38e2f7a #0 [ 699.061965][ T9907] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/02/2024 [ 699.072106][ T9907] Call Trace: [ 699.075444][ T9907] [ 699.078439][ T9907] dump_stack_lvl+0x216/0x2d0 [ 699.083243][ T9907] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 699.089179][ T9907] dump_stack+0x1e/0x30 [ 699.093453][ T9907] panic+0x4e2/0xcd0 [ 699.097483][ T9907] ? kmsan_get_metadata+0xf1/0x1d0 [ 699.102733][ T9907] kmsan_report+0x2d5/0x2e0 [ 699.107549][ T9907] ? kmsan_internal_poison_memory+0x49/0x90 [ 699.114556][ T9907] ? kmsan_slab_free+0xd6/0x140 [ 699.119526][ T9907] ? kfree+0x20f/0xa60 [ 699.123707][ T9907] ? udf_fiiter_release+0x115/0x160 [ 699.129137][ T9907] ? __msan_warning+0x95/0x120 [ 699.134106][ T9907] ? crc_itu_t+0x287/0x2e0 [ 699.138653][ T9907] ? udf_update_tag+0x5c/0x2a0 [ 699.143524][ T9907] ? udf_rename+0x1202/0x16d0 [ 699.148321][ T9907] ? vfs_rename+0x1d9a/0x2280 [ 699.153085][ T9907] ? do_renameat2+0x18cc/0x1d50 [ 699.158022][ T9907] ? __x64_sys_renameat2+0x153/0x200 [ 699.163403][ T9907] ? x64_sys_call+0x2993/0x3b50 [ 699.168371][ T9907] ? do_syscall_64+0xcf/0x1e0 [ 699.173166][ T9907] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 699.179359][ T9907] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 699.185276][ T9907] ? current_time+0x44/0x550 [ 699.189997][ T9907] ? filter_irq_stacks+0x60/0x1a0 [ 699.195233][ T9907] ? kmsan_get_metadata+0x146/0x1d0 [ 699.200533][ T9907] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 699.206461][ T9907] ? kmsan_get_metadata+0x146/0x1d0 [ 699.211757][ T9907] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 699.218210][ T9907] ? kmsan_get_metadata+0x146/0x1d0 [ 699.224348][ T9907] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 699.230268][ T9907] __msan_warning+0x95/0x120 [ 699.234958][ T9907] crc_itu_t+0x287/0x2e0 [ 699.239337][ T9907] udf_update_tag+0x5c/0x2a0 [ 699.244043][ T9907] udf_rename+0x1202/0x16d0 [ 699.248668][ T9907] ? kmsan_internal_set_shadow_origin+0x66/0xe0 [ 699.255053][ T9907] ? from_kgid+0x370/0x9a0 [ 699.259611][ T9907] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 699.265559][ T9907] ? __pfx_udf_rename+0x10/0x10 [ 699.270533][ T9907] vfs_rename+0x1d9a/0x2280 [ 699.275155][ T9907] do_renameat2+0x18cc/0x1d50 [ 699.279944][ T9907] __x64_sys_renameat2+0x153/0x200 [ 699.285154][ T9907] x64_sys_call+0x2993/0x3b50 [ 699.289949][ T9907] do_syscall_64+0xcf/0x1e0 [ 699.294595][ T9907] ? clear_bhb_loop+0x25/0x80 [ 699.299395][ T9907] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 699.305416][ T9907] RIP: 0033:0x7f470c67cee9 [ 699.309904][ T9907] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 699.329712][ T9907] RSP: 002b:00007f470d33f0c8 EFLAGS: 00000246 ORIG_RAX: 000000000000013c [ 699.338485][ T9907] RAX: ffffffffffffffda RBX: 00007f470c7b3fa0 RCX: 00007f470c67cee9 [ 699.346552][ T9907] RDX: 0000000000000004 RSI: 00000000200001c0 RDI: 0000000000000004 [ 699.354603][ T9907] RBP: 00007f470c6c947f R08: 0000000000000000 R09: 0000000000000000 [ 699.362660][ T9907] R10: 0000000020000200 R11: 0000000000000246 R12: 0000000000000000 [ 699.370713][ T9907] R13: 000000000000000b R14: 00007f470c7b3fa0 R15: 00007fff6cc1c178 [ 699.378788][ T9907] [ 699.382192][ T9907] Kernel Offset: disabled [ 699.386580][ T9907] Rebooting in 86400 seconds..