last executing test programs: 13m7.062420992s ago: executing program 5 (id=5965): r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000b00)=@updsa={0x14c, 0x1a, 0x1, 0x0, 0x0, {{@in=@loopback, @in6=@empty}, {@in6=@dev, 0x4d4, 0x33}, @in6=@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', {}, {}, {}, 0x40, 0x0, 0xa, 0x0, 0x3}, [@algo_auth_trunc={0x5c, 0x14, {{'cmac(aes)\x00'}, 0x80, 0x0, "0ee40e3f770bdb5b69a253238bf1e5b9"}}]}, 0x14c}}, 0x0) 13m6.872403537s ago: executing program 5 (id=5969): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="0e000000040000000800000007"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0xc, 0xd, &(0x7f0000000880)=ANY=[@ANYBLOB="1800000000000000000000000000000018150000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b5af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001e000000850000008b00000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) 13m6.547576117s ago: executing program 5 (id=5975): r0 = syz_mount_image$msdos(&(0x7f0000000380), &(0x7f0000000080)='./file0\x00', 0x2000c0, &(0x7f0000000740)={[{@dots}, {@fat=@codepage={'codepage', 0x3d, '1255'}}, {@nodots}, {@fat=@nocase}, {}, {@fat=@codepage={'codepage', 0x3d, '855'}}, {@dots}, {@dots}, {@dots}, {@fat=@tz_utc}, {@nodots}, {@nodots}, {@fat=@dos1xfloppy}, {@fat=@time_offset={'time_offset', 0x3d, 0xb4}}, {@nodots}, {@dots}, {@nodots}, {@nodots}, {@fat=@dmask={'dmask', 0x3d, 0x4}}, {@nodots}, {@dots}, {@fat=@errors_remount}]}, 0x0, 0x1dc, &(0x7f00000009c0)="$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") getdents64(r0, &(0x7f0000000100)=""/151, 0x97) 13m6.178676445s ago: executing program 5 (id=5981): syz_mount_image$udf(&(0x7f0000000080), &(0x7f0000000000)='./file1\x00', 0x4040, &(0x7f00000015c0)=ANY=[@ANYBLOB='lastblock=00000000000000000000,umask=00000000000000000000002,dmode=00000000000000000077777,novrs,shortad,shortad,undelete,iocharset=cp437,shortad,umask=00000000000000000000006,dmode=00000000000000000000011,fileset=00000000000000000011,uid=', @ANYRES64=0x0, @ANYRES32=0x0, @ANYBLOB="cdf7c0c4ada580d5d36bd90806b670b73bb5112f75ca483652cf9b8a22555c3af34a84c5747ac51aa890ca205a0f27d7dde81ad3a01f21810b6de2d56be05416c54e1c6e8459e1643b129327581f7716b38db3d3f3bbeb6d1b846a2aad654e17ff850a1f82ac738387d9c3009d18eb2a78258fcc4ac4eb6a12a5650e10ebf077d9ab33f24de7cbffe0", @ANYRESHEX], 0x2, 0xc33, &(0x7f0000001780)="$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") mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000180), 0x0, &(0x7f0000000200)={[{@metacopy_on}, {@lowerdir={'lowerdir', 0x3d, './file0'}, 0x3a}], [], 0x2f}) 13m5.424865505s ago: executing program 5 (id=5993): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000140)=@setneightbl={0x24, 0x43, 0x1, 0x0, 0x0, {}, [@NDTA_NAME={0xe, 0x1, '!+-#.&-%*\x00'}]}, 0x24}}, 0x0) 13m4.579402046s ago: executing program 5 (id=6007): r0 = socket$kcm(0x10, 0x2, 0x0) sendmsg$kcm(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000240)=[{&(0x7f00000000c0)="d800000018008103e00312ba0d8105040a600300ff0f040b067c55a1bc000900b80006990700000015000500fef32702d3001500030001400200000901ac040098007f6f94007100a007a290457f0189b316277ce06bbace8017cbec4c2ee5a7cef4090000001fb791643a5ee4b11602b2a10c11ce1b14d6d930dfe1d9d322fe04000000730d7a5025ccca262f3d40fad95667e04adcdf634c1f215ce3bb9ad809d5e1cace81ed0b66bce0b42a9ecbee5de6ccd40dd6e4edef3d93452a92307f00000e970300"/216, 0xd8}], 0x1}, 0x48002) 13m3.959111027s ago: executing program 32 (id=6007): r0 = socket$kcm(0x10, 0x2, 0x0) sendmsg$kcm(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000240)=[{&(0x7f00000000c0)="d800000018008103e00312ba0d8105040a600300ff0f040b067c55a1bc000900b80006990700000015000500fef32702d3001500030001400200000901ac040098007f6f94007100a007a290457f0189b316277ce06bbace8017cbec4c2ee5a7cef4090000001fb791643a5ee4b11602b2a10c11ce1b14d6d930dfe1d9d322fe04000000730d7a5025ccca262f3d40fad95667e04adcdf634c1f215ce3bb9ad809d5e1cace81ed0b66bce0b42a9ecbee5de6ccd40dd6e4edef3d93452a92307f00000e970300"/216, 0xd8}], 0x1}, 0x48002) 9m20.500930521s ago: executing program 2 (id=9421): pipe(&(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) vmsplice(r0, &(0x7f0000000440)=[{0x0}], 0x1, 0x0) 9m20.29056522s ago: executing program 2 (id=9424): r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0xfffffffffffffce5, &(0x7f0000001140)={&(0x7f0000000140)=@newlink={0x48, 0x10, 0x503, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @macsec={{0xb}, {0x18, 0x2, 0x0, 0x1, [@IFLA_MACSEC_CIPHER_SUITE={0xc, 0x4, 0x80c20001000003}, @IFLA_MACSEC_ICV_LEN={0x5, 0x3, 0x4}]}}}]}, 0x48}}, 0x0) 9m20.033815604s ago: executing program 2 (id=9428): r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x40, &(0x7f0000000000)=@filter={'filter\x00', 0xe, 0x4, 0x358, 0xffffffff, 0x0, 0x1b8, 0xe8, 0xffffffff, 0xffffffff, 0xe8, 0x288, 0xe8, 0xffffffff, 0x4, 0x0, {[{{@uncond, 0x0, 0xa8, 0xe8}, @common=@inet=@TCPOPTSTRIP={0x40}}, {{@uncond, 0x0, 0xa8, 0xd0}, @common=@unspec=@STANDARD={0x28, '\x00', 0x0, 0xffffffffffffffff}}, {{@uncond, 0x0, 0xa8, 0xd0}, @common=@inet=@SYNPROXY={0x28}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x3b8) 9m19.82047304s ago: executing program 2 (id=9431): syz_mount_image$exfat(&(0x7f00000000c0), &(0x7f0000000100)='./file1\x00', 0x0, &(0x7f0000001a00)=ANY=[@ANYBLOB='time_offset=0x00000000000000c7,keep_last_dots,fmask=00000000000000000077777,utf8,errors=remount-ro,time_offset=0x0000000000000000,fmask=00000000000000000002001,errors=remount-ro,sys_tz,gid=', @ANYRESHEX=0x0, @ANYBLOB="0080"], 0x1, 0x154d, &(0x7f0000001b00)="$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") mount(0x0, &(0x7f0000000040)='./file0/../file0/../file0\x00', &(0x7f00000000c0)='securityfs\x00', 0x0, 0x0) 9m19.283816746s ago: executing program 2 (id=9439): r0 = openat$iommufd(0xffffffffffffff9c, &(0x7f00000007c0), 0x880, 0x0) ioctl$IOMMU_VFIO_IOMMU_GET_INFO(r0, 0x3b70, 0x0) 9m18.720379342s ago: executing program 2 (id=9447): r0 = syz_init_net_socket$ax25(0x3, 0x3, 0x0) bind$ax25(r0, &(0x7f0000000380)={{0x3, @null, 0x1}, [@null={0x40, 0x40, 0x40, 0x40, 0x40, 0x40, 0x2}, @null, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x1}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, @default, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null]}, 0x3c) 9m18.144979833s ago: executing program 33 (id=9447): r0 = syz_init_net_socket$ax25(0x3, 0x3, 0x0) bind$ax25(r0, &(0x7f0000000380)={{0x3, @null, 0x1}, [@null={0x40, 0x40, 0x40, 0x40, 0x40, 0x40, 0x2}, @null, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x1}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, @default, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null]}, 0x3c) 4m52.634841077s ago: executing program 6 (id=13542): r0 = socket$kcm(0x10, 0x400000002, 0x0) sendmsg$inet(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f00000005c0)="240000002e007f0d08f3283375d92096685be87b1be63b48390e62e03c05150222548eb6", 0x24}], 0x1}, 0x0) 4m52.404079488s ago: executing program 6 (id=13545): r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='attr/keycreate\x00') write$binfmt_script(r0, 0x0, 0x0) 4m52.061986389s ago: executing program 6 (id=13550): r0 = openat$vicodec0(0xffffffffffffff9c, &(0x7f0000000480), 0x2, 0x0) ioctl$VIDIOC_ENUM_FMT(r0, 0xc0405602, &(0x7f0000000040)={0x3c, 0xa, 0x0, "1506ddff0900941000a8210c4e89b9f1a100000000000a00000000613dbda5f7", 0x42474752}) 4m51.622802562s ago: executing program 6 (id=13553): syz_mount_image$hfsplus(&(0x7f0000007340), &(0x7f0000000000)='./file0\x00', 0x1600008, &(0x7f0000000080)=ANY=[@ANYBLOB="6e6f6465636f6d706f73652c63726561746f723d3e8bef9c2c666f7263652c747970653d726965722c747970653d05f2875e2c6e6c733d6370313235352c00"/73], 0x3, 0x646, &(0x7f0000000900)="$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") mount$bind(&(0x7f0000000380)='./file0\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x2125099, 0x0) 4m51.217540469s ago: executing program 6 (id=13558): r0 = fsopen(&(0x7f0000000000)='jfs\x00', 0x1) fsconfig$FSCONFIG_SET_STRING(r0, 0x1, &(0x7f00000000c0)='resize', &(0x7f0000000100)='0', 0x0) 4m50.630858951s ago: executing program 6 (id=13566): r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x50) bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0xf, 0xf, &(0x7f0000000d80)=ANY=[@ANYBLOB="1808000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000008000000bf0910000000000035090100700000000600000003000000bf98000000000000760800000000000085000000bb000000b70000000000000095"], &(0x7f0000000200)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @cgroup_device=0x33, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) 4m49.806086265s ago: executing program 34 (id=13566): r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x50) bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0xf, 0xf, &(0x7f0000000d80)=ANY=[@ANYBLOB="1808000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000008000000bf0910000000000035090100700000000600000003000000bf98000000000000760800000000000085000000bb000000b70000000000000095"], &(0x7f0000000200)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @cgroup_device=0x33, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) 2m58.91146523s ago: executing program 3 (id=14906): r0 = syz_open_dev$loop(&(0x7f0000000440), 0x81, 0x101000) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.stat\x00', 0x275a, 0x0) ioctl$LOOP_CONFIGURE(r0, 0x4c0a, &(0x7f0000000180)={r1, 0x3, {0x2a00, 0x80010000, 0x0, 0x7, 0x4, 0x0, 0x0, 0x1a, 0x1c, "fee8a2ab78fc179fd1f855a71ddaaca7bd64c6a4b4b216e6a8313011a7a86a35b700000000800000000000000000000300000000000a00", "2809e8dbe108598948ff4ad54afac11d875397bdb22d0000b420a1a93c5200000000000000023d3e8dd4992861ac00000000000000db0fcd619c6f70d400", "91be8b1c55126501000700fdb300", [0x9, 0x800000000000007b]}}) 2m58.527479382s ago: executing program 3 (id=14912): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000080)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000001e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0) sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000380)={{0x14, 0x10, 0x1, 0x0, 0x0, {0xa}}, [@NFT_MSG_NEWRULE={0x54, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x28, 0x4, 0x0, 0x1, [{0x24, 0x1, 0x0, 0x1, @hash={{0x9}, @val={0x14, 0x2, 0x0, 0x1, [@NFTA_HASH_SREG={0x8, 0x1, 0x1, 0x0, 0x3}, @NFTA_HASH_DREG={0x8, 0x2, 0x1, 0x0, 0x12}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x7c}}, 0x2400c840) 2m58.19879339s ago: executing program 3 (id=14916): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0) sendmsg$NFT_BATCH(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000680)={{0x14}, [@NFT_MSG_NEWRULE={0x70, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x44, 0x4, 0x0, 0x1, [{0x40, 0x1, 0x0, 0x1, @match={{0xa}, @val={0x30, 0x2, 0x0, 0x1, [@NFTA_MATCH_REV={0x8, 0x2, 0x1, 0x0, 0x1}, @NFTA_MATCH_INFO={0x18, 0x3, "c6a41d106c720000000000000000000002000000"}, @NFTA_MATCH_NAME={0xa, 0x1, 'owner\x00'}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x98}}, 0x24048014) 2m57.884600797s ago: executing program 3 (id=14921): r0 = syz_open_dev$loop(&(0x7f0000000100), 0xd79, 0x0) mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1) ioctl$LOOP_CONFIGURE(r0, 0x4c0a, &(0x7f00000002c0)={0xffffffffffffffff, 0x0, {0x2a00, 0x80010000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x13, 0x1c, "fee8a2ab78fcffffffffffffff2000b8785d960000000000000000000000000f00000000000100000000000000000000000000000200", "2809e897bdb2128bfc82525edd665240f45f819e01982861ac0000000000000000001100", "90be8b1c551265406c7f306003d8a0f4bd00", [0x20]}}) 2m57.683212144s ago: executing program 3 (id=14925): r0 = socket(0x10, 0x3, 0x0) setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0xc, &(0x7f00000001c0)={0x5813}, 0x10) sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000000c0)=@ipv6_getaddrlabel={0x30, 0x1e, 0x492dfc465ae32a8d, 0x70bd29, 0x25dfdbfb, {}, [@IFAL_ADDRESS={0x14, 0x1, @ipv4={'\x00', '\xff\xff', @initdev={0xac, 0x1e, 0x4, 0x0}}}]}, 0x30}, 0x1, 0x0, 0x0, 0x20000000}, 0x0) 2m57.402085791s ago: executing program 3 (id=14930): r0 = socket$nl_rdma(0x10, 0x3, 0x14) sendmsg$RDMA_NLDEV_CMD_NEWLINK(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000080)=ANY=[@ANYBLOB="38000000031401002cbd7000fcdbdf250900020073797a32000004000800410073697700140033006c6f"], 0x38}, 0x1, 0x0, 0x0, 0x44}, 0x810) sendmsg$RDMA_NLDEV_CMD_DELLINK(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000003c0)={0x18, 0x1404, 0x1, 0x70bd2d, 0x25d7dbfa, "", [@RDMA_NLDEV_ATTR_DEV_INDEX={0x8}]}, 0x18}, 0x1, 0x0, 0x0, 0x671ec167a4b72164}, 0xd4) 2m41.084708874s ago: executing program 35 (id=14930): r0 = socket$nl_rdma(0x10, 0x3, 0x14) sendmsg$RDMA_NLDEV_CMD_NEWLINK(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000080)=ANY=[@ANYBLOB="38000000031401002cbd7000fcdbdf250900020073797a32000004000800410073697700140033006c6f"], 0x38}, 0x1, 0x0, 0x0, 0x44}, 0x810) sendmsg$RDMA_NLDEV_CMD_DELLINK(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000003c0)={0x18, 0x1404, 0x1, 0x70bd2d, 0x25d7dbfa, "", [@RDMA_NLDEV_ATTR_DEV_INDEX={0x8}]}, 0x18}, 0x1, 0x0, 0x0, 0x671ec167a4b72164}, 0xd4) 5.959721999s ago: executing program 0 (id=17001): r0 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$TCSETA(r0, 0x5406, &(0x7f00000000c0)={0x9, 0x7, 0x3, 0x8046, 0x6, "01718f66f4553a00"}) ioctl$TIOCL_GETMOUSEREPORTING(r0, 0x5412, &(0x7f00000006c0)=0x16) 5.730036665s ago: executing program 0 (id=17003): r0 = syz_usb_connect$hid(0x3, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x10, 0x4b4, 0xed81, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0xfffc, 0x0, 0x1, {0x22, 0x3}}, {{{0x9, 0x5, 0x81, 0x3, 0x0, 0x0, 0xd}}}}}]}}]}}, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, &(0x7f0000000480)={0x24, 0x0, 0x0, &(0x7f0000000040)={0x0, 0x22, 0x5, {[@local=@item_4={0x3, 0x2, 0x1, "209efe39"}]}}, 0x0}, 0x0) 4.333262288s ago: executing program 7 (id=17020): r0 = syz_open_procfs(0x0, &(0x7f0000000040)='ns\x00') getdents64(r0, &(0x7f0000000080)=""/98, 0x62) getdents(r0, 0xffffffffffffffff, 0x18) 4.105574993s ago: executing program 7 (id=17024): setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x1b, &(0x7f0000000380)={@ipv4={'\x00', '\xff\xff', @remote}, 0x8, 0x0, 0x2, 0x5, 0x0, 0xfffe}, 0x20) r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$KDGKBMETA(r0, 0x4b62, &(0x7f0000000880)) 3.914742152s ago: executing program 7 (id=17027): r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) r1 = dup(r0) write$UHID_INPUT(r1, &(0x7f0000001040)={0xfc, {"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", 0x1000}}, 0x1006) 3.737390693s ago: executing program 7 (id=17031): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x11, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="180100002100000000000000000000008500000075000000a50000002300000095"], &(0x7f00000000c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000001c0)='mmap_lock_acquire_returned\x00', r0}, 0x10) pivot_root(0x0, 0x0) 3.6049754s ago: executing program 4 (id=17033): syz_mount_image$romfs(&(0x7f0000000040), &(0x7f0000000000)='./file0\x00', 0x4, &(0x7f0000000300)=ANY=[@ANYBLOB="00f3000000be5500200800000000c19e57fc847c52a19b0b247df0690ca7d757194d0335d8e8a065e069e1294e9f28bcee7085d4988309e751e0eec20f77d6c68ae8", @ANYRESOCT, @ANYRESHEX], 0x1, 0x14a, &(0x7f00000006c0)="$eJzs2j9Lw0AYBvBXEJSOjk6FShQ0/7WuOoqbu0OouTR4MSURpP0C4iQonINfQvAT+Akko5suRfwSkWsPTaNCFk2E57f0gbe93r0HN716Ekc2S3WijcHVwXgpiaN2193uMZt5NLVHRG0Zsjy/MeiL5496lpPxzRfqtfI2/eysBWL/goXcd+reEgAAAAAAAAAAAAAAAAAAAAAAVKS1VGj1RXTOQu7bhWo6HB17nPtJSrRY0w7rpbXVDBcxwW9lf9yZVqzLvCNTKHYTWbdmf3+twmpf8Jdyf83TaGCmw5EeRl7gB/6J47hda9OythxzspZZXlG7U3uiLL+3CuNkxuOhK+uFebOnKvNm6v7nl0NxeVb+t8/7R2hCmKPfWfm1KQdE+Ceh+gvacJP3b0xEC27nQb5/Ri/mR6r4F+2s9/gA8JP3AAAA///ltzsl") r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0) getdents64(r0, 0x0, 0x18) 3.4909156s ago: executing program 7 (id=17036): r0 = openat$ttyprintk(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0x15) ioctl$TCSETSF(r0, 0x804c4700, &(0x7f0000000100)={0x2, 0xca37, 0xdf6, 0xff, 0x6, "17cc05b2184f066f050fb138438d33b90c5eb7"}) 3.23070721s ago: executing program 7 (id=17039): r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000080)=ANY=[@ANYBLOB="1201000000000040ac05624200000000000109022400010000000009040000010300000009210000000122050009058103"], 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, &(0x7f0000000000)={0xff8d, 0x0, 0x0, &(0x7f0000000040)=ANY=[@ANYBLOB="002205000000a9ce56"], 0x0}, 0x0) 3.205715555s ago: executing program 4 (id=17040): unshare(0x22020400) r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='mountinfo\x00') lseek(r0, 0x10001, 0x0) 3.057148161s ago: executing program 8 (id=17042): r0 = socket(0x2, 0x80805, 0x0) listen(r0, 0x5) sendmmsg$inet_sctp(r0, &(0x7f0000001b80)=[{0x0, 0x0, 0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="2000000000000000840000000200000003003e86"], 0x20, 0x20000004}], 0x1, 0x20004094) 2.859529135s ago: executing program 8 (id=17044): r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000200)='/proc/bus/input/devices\x00', 0x0, 0x0) r1 = epoll_create(0x6) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000080)) 2.854033192s ago: executing program 4 (id=17045): r0 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000000), 0x481, 0x0) syz_usb_connect(0x4, 0x24, &(0x7f0000000740)={{0x12, 0x1, 0x300, 0x34, 0xaf, 0xc9, 0x40, 0x46d, 0x8c6, 0xa65b, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0xc0, 0x1, 0x0, 0x7, [{{0x9, 0x4, 0x4a, 0x4, 0x0, 0xff, 0x1, 0x0, 0x5}}]}}]}}, 0x0) ioctl$SNAPSHOT_PLATFORM_SUPPORT(r0, 0x330f, 0x0) 2.652066457s ago: executing program 8 (id=17047): r0 = syz_usb_connect(0x2, 0x2d, &(0x7f0000000000)=ANY=[@ANYBLOB="120100007e3dc410cd0621013ddd0102030109021b000100094000090485000189fe1f000905820220"], 0x0) syz_usb_ep_write$ath9k_ep1(r0, 0x82, 0x90, &(0x7f0000000540)={[{0x85, 0x4e00, "73abc46d102002c9e5309db97b2821e70b9cd13912cc8ebaa89a0fe1b771994ce7882353d0bddc6324dc2186b334499b95faf277c0263dc8ed4929d7648906dc5fee2baefc28a79c003d23edbbaed332ee558f00e19baa6d296caa8126b0ad2bd568d742ce8c996aa4e9beedb154b2260ec56c0d4b048024d8e16418ca39e78d0221a0a1d4"}, {}]}) syz_usb_control_io$cdc_ecm(r0, &(0x7f0000000300)={0x14, 0x0, &(0x7f00000002c0)={0x0, 0x3, 0x1a, {0x1a}}}, 0x0) 2.606535189s ago: executing program 1 (id=17048): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$devlink(&(0x7f00000000c0), 0xffffffffffffffff) sendmsg$DEVLINK_CMD_TRAP_SET(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000140)={0x58, r1, 0x1, 0x70bd27, 0x25dfdbfb, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x1c}, {0x5, 0x83, 0x1}}]}, 0x58}, 0x1, 0x0, 0x0, 0x408484c}, 0x80) 2.390717251s ago: executing program 1 (id=17049): r0 = openat$audio1(0xffffffffffffff9c, &(0x7f0000000080), 0x16b202, 0x0) ioctl$SNDCTL_DSP_SETFMT(r0, 0xc0045005, &(0x7f0000000000)=0x20) close(0x3) 2.339556842s ago: executing program 0 (id=17050): r0 = syz_open_dev$usbfs(&(0x7f0000003f00), 0x1ff, 0xa401) ioctl$USBDEVFS_DISCONNECT_CLAIM(r0, 0x8108551b, &(0x7f0000000000)={0x0, 0x0, "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"}) ioctl$USBDEVFS_CLEAR_HALT(r0, 0x80045515, &(0x7f0000000380)={0x1, 0x1}) 2.234005284s ago: executing program 1 (id=17051): r0 = syz_open_dev$dri(&(0x7f00000000c0), 0x1ff, 0x0) ioctl$DRM_IOCTL_MODE_CREATEPROPBLOB(r0, 0xc01064bd, &(0x7f00000003c0)={&(0x7f0000000340)="4cba", 0x2, 0x0}) ioctl$DRM_IOCTL_MODE_OBJ_SETPROPERTY(r0, 0xc01864ba, &(0x7f0000000400)={0x25b, 0x0, r1, 0xbbbbbbbb}) 2.210023339s ago: executing program 0 (id=17052): syz_mount_image$msdos(&(0x7f0000000040), &(0x7f0000000240)='./file0\x00', 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB='nodots,allow_utime=000000000034,usefree,check=strict,dots,\x00'/70], 0x1, 0x1e9, &(0x7f00000002c0)="$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") truncate(&(0x7f0000000900)='./file1\x00', 0xbf39) renameat2(0xffffffffffffff9c, &(0x7f0000000a00)='./file1\x00', 0xffffffffffffff9c, &(0x7f0000000600)='./file2\x00', 0x0) 2.106226929s ago: executing program 0 (id=17053): syz_mount_image$udf(&(0x7f00000004c0), &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="00089aafc727346c3e0d8728525a2641b3b31621730c58dcf8e0ca2e6767a45a978776e9d2c689feab83a160d00a77ae5112cd4e7141cad333d7cbb69dc6b314609d3827059c11066ba0b4b95c12d2d9ff9c8896d9e247bd55f9ff578a14e0e9d0ca07693396b00d2ef44adb4858475a07d5e8fa3ef5b306fe8a5d1cd2d8e06e7f88226ece092c6aabf8870e140124d5a48670513e0c419c99b7c5105959e7a535f12694634c114600000000"], 0x81, 0x4ac, &(0x7f00000011c0)="$eJzs20tsG1UXwPFzPLbruPk+3Adpi6piCSRCS9skLmmrIKE8iEBqG0gaEBUPhdgJJk4cxSkkVUu7BHYsumTJlgUrxBZVYolYoCDUXemGjVeUHeiO52XXSewm8TT1/1e1dx7H7r33zMy914kFAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACIDL022NOrYdcCAAC00qWJ8Z4M4z8AAG3lMut/AACAdqJiyR+icnKurBft/YrEhfzC1ZXJkdH6L+tQUYmIZcebv4nevsyZl/vPnnPLjV+/3Y7I2MTlwfRwcX5xKVcq5bLpyYX8dDGba/gdtvr6WsftDkjPz13NzsyU0n2nMlWnV1L39+ztSg30vz8cd2MnR0ZHJwIx0dgj/+8PWW+GHxdLXhSVT374Ti+JSES23hebXDs7rcNuxHG7EZMjo3ZDCvmphWVzUiNOVKS6T+JuH7UgF1sSETH10vj2rNliYsmPojJ0uqxjImK5/XDC/mC4ofqEIWqWriLSLbsgZ4+xPWLJh6Jy53RK3nT61c5/XOR62JXDjos6939Ry/qW/Tww95N5bF54O/3GwkwxEKsR545qZnyocw+GPj600mP+bEqIJWP2HV/W8bArg5brEEvmRSX+9af2vELseelTA2ePPXs+OMM4tMn7mNhTzs3VyJgcc6YOGjF/HqHa2BYJteRPUXnwe8Le73Zyw08E2oRaUhCVf26UVWvWpVZgfe/Z7WvDna1/R2K4uLi6lJ/9eLnu+WRi8KPS8tLUdP3TlbWrFTyy2Tq2VqS5JVlSKyu+Lz4re69z1gD/q+z5tfn2un8tdNeUruD108h2w8+ZJuZRpk6qltwTlZkPDlfGGUk23TftwOR/VFRK5V/UzbST/2hlL5D/V/z+S2h16bFz+//K51ruXOLIlYPrHd+J/Js6mfy/KypDfx92PtOo5N+qiTVxXaLy3u2jTlwkbuKibnMq7ziTL+R6TOy/orL/ZzdW7NikE3vAj+01sSVR+fJOdexeJ/agH9tnYtdE5e5v9WOf9mMzJnbV5Otu2o1NmthjTmyXH3tquljIbtatJv99ovLOzdfVbfO6+Q/c/7dqSs9DOd94e7vynwocu+Xk9YqT/+gm+f9KVFb/Ouq22+5797LaZ//r59/Mlb+/XR3rTkb3+7G9jTYrbCb/+0Tl/qtrXpudtjm7foaC+X8mWl16/RpS/vcFjqWcesWb7It2VFq9NjdVKOSW2GCDDTa8jbCfTGgFM/6Pm1G931J3HuOM/52VPX/G9OBzf/wfqCk9IY3/+wPHBpxZSywqklieX4wdEkmUVq+dzM9PzeZmcwuZM/09fefP9GTOxeLu5M7farjvngQm/ydE5cZPv3rrmOr5X/35f7Km9ISU/wPBNlXNaxruirZk8t8pKv331rz15kbzf3f93/1cdendfyHl/2DgWMqpV2eTfQEAAAAAAAAAAAAAAAAAu0lSLXleVFbGX1L3O0SN/P5ftqb0hPT7X12BY9nt/16D+9WoqlONVh0AAAAAAAAAAKCVImLJN6LygpT1pjnQKXIxWOKJ9l8AAAD//16uQhc=") r0 = openat(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x0, 0x0) lseek(r0, 0x1, 0x3) 2.080683044s ago: executing program 1 (id=17054): syz_mount_image$ext4(&(0x7f00000001c0)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x1400c, &(0x7f0000000840)={[{@noblock_validity}, {@init_itable}, {@mb_optimize_scan={'mb_optimize_scan', 0x3d, 0x1}}]}, 0x3, 0x460, &(0x7f00000008c0)="$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") syz_mount_image$vfat(&(0x7f0000000140), &(0x7f0000000280)='./bus\x00', 0x2081413, 0x0, 0x1, 0x0, &(0x7f0000000080)) mount$overlay(0x0, &(0x7f00000003c0)='./file0\x00', &(0x7f0000000200), 0x0, &(0x7f0000001100)={[{@upperdir={'upperdir', 0x3d, './file0'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@workdir={'workdir', 0x3d, './bus'}}], [], 0x2c}) 2.003463532s ago: executing program 0 (id=17055): r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000002c80)={{0x12, 0x1, 0x0, 0x41, 0x7, 0xf5, 0x40, 0xcf3, 0x9375, 0x1a9e, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0xbe, 0xe4, 0xf9}}]}}]}}, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io$cdc_ecm(r0, 0x0, &(0x7f0000000200)={0x10, &(0x7f0000000100)={0x0, 0xa}, 0x0, 0x0}) 1.783076121s ago: executing program 1 (id=17056): r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000480), 0x200) ioctl$SNDRV_SEQ_IOCTL_SET_CLIENT_POOL(r0, 0x4058534c, &(0x7f0000000180)={0x80, 0x2b, 0x8, 0xd, 0x9}) ioctl$SNDRV_SEQ_IOCTL_SET_CLIENT_POOL(r0, 0x4058534c, &(0x7f0000000040)={0x80, 0x2b, 0x0, 0x0, 0x5}) 1.634435352s ago: executing program 4 (id=17057): r0 = socket$can_raw(0x1d, 0x3, 0x1) setsockopt$CAN_RAW_FILTER(r0, 0x65, 0x1, &(0x7f0000000040)=[{{0x0, 0x0, 0x1}, {0x0, 0x0, 0x1, 0x1}}, {{0x0, 0x0, 0x0, 0x1}, {0x0, 0x0, 0x1, 0x1}}], 0x10) setsockopt$CAN_RAW_FILTER(r0, 0x65, 0x1, 0x0, 0x0) 1.42942754s ago: executing program 4 (id=17060): r0 = socket$inet6(0xa, 0x3, 0x6) setsockopt$inet6_buf(r0, 0x29, 0x39, &(0x7f0000000040)="ff02040000ffffffffffffffff1f2be82db1af0000000000", 0x18) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x4e2b, 0xb, @private1={0xfc, 0x1, '\x00', 0x6}, 0x6}, 0x1c) 1.369885948s ago: executing program 4 (id=17061): r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)=ANY=[@ANYBLOB="12013f00000000407f04ffff000000000001090224000100000000090400001503000000092140000001220f00090581d7"], 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, &(0x7f0000000080)={0x24, 0x0, 0x0, &(0x7f0000000040)=ANY=[@ANYBLOB="00220f000000b30000ea00176487ed1fb31d"], 0x0}, 0x0) 1.348495235s ago: executing program 1 (id=17062): r0 = syz_open_dev$vim2m(&(0x7f0000000080), 0x400000000000003, 0x2) ioctl$vim2m_VIDIOC_S_CTRL(r0, 0xc008561c, &(0x7f00000000c0)={0xf0f041}) syz_open_dev$vim2m(&(0x7f0000000000), 0x7, 0x2) 910.408063ms ago: executing program 36 (id=17062): r0 = syz_open_dev$vim2m(&(0x7f0000000080), 0x400000000000003, 0x2) ioctl$vim2m_VIDIOC_S_CTRL(r0, 0xc008561c, &(0x7f00000000c0)={0xf0f041}) syz_open_dev$vim2m(&(0x7f0000000000), 0x7, 0x2) 765.700079ms ago: executing program 9 (id=17066): r0 = socket(0xa, 0x3, 0x3a) setsockopt$MRT6_ADD_MFC(r0, 0x29, 0xcc, &(0x7f0000000000)={{0xa, 0x0, 0x49, @private1={0xfc, 0x1, '\x00', 0x1}, 0x809}, {0xa, 0x0, 0xfffe0000, @empty, 0x80}, 0x2, {[0x1c01f8db, 0x10001, 0xfffffffe, 0x0, 0x80, 0x0, 0x0, 0x8000000]}}, 0x5c) setsockopt$MRT6_FLUSH(r0, 0x29, 0xd4, &(0x7f0000000140)=0x5, 0x4) 708.464551ms ago: executing program 9 (id=17067): r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000400)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50) bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x10, 0x1c, &(0x7f0000000040)=@ringbuf={{0x18, 0x8, 0x0, 0x0, 0xe0}, {{0x18, 0x1, 0x1, 0x0, r1}, {}, {}, {0x85, 0x0, 0x0, 0x5}, {0x4, 0x1, 0xb, 0x9, 0xa}}, {{0x5, 0x0, 0x3}}, [@snprintf={{0x7, 0x0, 0xb, 0x2}, {0x3, 0x3, 0x3, 0xa, 0x9}, {0x5, 0x0, 0xb, 0x9, 0x0, 0x2, 0x2}, {0x3, 0x3, 0x6, 0xa, 0xa, 0xfff8, 0x50}, {0x7, 0x1, 0xb, 0x2, 0x8}, {0x7, 0x0, 0x0, 0x8}, {}, {0x7, 0x0, 0x0, 0x9}, {0x7, 0x0, 0xc}, {0x18, 0x2, 0x2, 0x0, r0}, {}, {0x46, 0x8, 0xfff1, 0x76}}], {{0x7, 0x1, 0xb, 0x8}, {0x6, 0x0, 0x5, 0x8}, {0x85, 0x0, 0x0, 0x7}}}, &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_msg, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff, @void, @value}, 0x94) 575.214132ms ago: executing program 9 (id=17068): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000001000000850000000e000000850000002a00000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000480)={&(0x7f0000000040)='sys_exit\x00', r0}, 0x10) mlock2(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x0) 450.778842ms ago: executing program 9 (id=17069): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000240), 0xffffffffffffffff) sendmsg$ETHTOOL_MSG_LINKMODES_SET(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000300)={0x50, r1, 0x1, 0x70bd27, 0x0, {}, [@ETHTOOL_A_LINKMODES_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'syz_tun\x00'}]}, @ETHTOOL_A_LINKMODES_OURS={0x24, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_BITS={0x1c, 0x3, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_INDEX={0x8}]}, {0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_INDEX={0x8}]}]}, @ETHTOOL_A_BITSET_NOMASK={0x4}]}]}, 0x50}}, 0x0) 397.127314ms ago: executing program 9 (id=17070): r0 = socket(0x2b, 0x80801, 0x1) connect$inet6(r0, &(0x7f00000001c0)={0xa, 0x4, 0x3ff, @empty, 0x1}, 0x1c) setsockopt$inet6_mtu(r0, 0x29, 0x17, &(0x7f0000000000)=0x2, 0x4) 355.937647ms ago: executing program 8 (id=17071): r0 = gettid() prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x4, 0xffffffff, &(0x7f0000000100)) rt_sigqueueinfo(r0, 0x2e, &(0x7f0000000000)={0x1e, 0xc, 0xfd}) 249.42803ms ago: executing program 9 (id=17072): mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x4) futex(&(0x7f0000000000), 0x1, 0x1, 0x0, 0x0, 0x2) 94.755049ms ago: executing program 8 (id=17073): r0 = syz_io_uring_setup(0x1d86, &(0x7f00000000c0)={0x0, 0xb38c, 0x10100, 0x0, 0x2e2}, &(0x7f0000002000)=0x0, &(0x7f0000000000)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000080)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x2004, @fd=r0, 0xffffffffffffffff, 0x0, 0x0, 0x3d}) io_uring_enter(r0, 0x48e9, 0x0, 0x2, 0x0, 0x0) 0s ago: executing program 8 (id=17074): r0 = syz_open_dev$usbfs(&(0x7f0000000000), 0x12, 0x141341) ioctl$USBDEVFS_DROP_PRIVILEGES(r0, 0x4004551e, &(0x7f0000000080)=0x5924ba) ioctl$USBDEVFS_BULK(r0, 0xc0185502, &(0x7f00000005c0)={{{0x1, 0x1}}, 0x0, 0xfffffffd, 0x0}) kernel console output (not intermixed with test programs): 9 code=0x0 [ 1337.205593][ T8401] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1337.450795][ T9647] loop1: detected capacity change from 0 to 2048 [ 1337.478530][ T9647] EXT4-fs: inline encryption not supported [ 1337.514706][ T9647] EXT4-fs: Ignoring removed oldalloc option [ 1337.577113][ T9653] netlink: 32 bytes leftover after parsing attributes in process `syz.8.15654'. [ 1337.605486][ T9653] netlink: 32 bytes leftover after parsing attributes in process `syz.8.15654'. [ 1337.623402][ T9647] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1337.642842][ T9647] EXT4-fs error (device loop1): ext4_ext_precache:631: inode #2: comm syz.1.15649: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 5(5) [ 1337.739375][ T5829] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1337.825294][ T9659] netlink: 4 bytes leftover after parsing attributes in process `syz.0.15657'. [ 1338.090562][ T9669] loop4: detected capacity change from 0 to 512 [ 1338.226938][ T9669] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 1338.284730][ T9673] loop9: detected capacity change from 0 to 256 [ 1338.309732][ T9669] EXT4-fs (loop4): 1 truncate cleaned up [ 1338.332079][ T9669] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1338.421962][ T9680] loop1: detected capacity change from 0 to 64 [ 1338.441667][ T9673] exFAT-fs (loop9): failed to load upcase table (idx : 0x00010000, chksum : 0xc2dc8e67, utbl_chksum : 0xe619d30d) [ 1338.542988][ T5841] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1338.572041][ T10] usb 9-1: new high-speed USB device number 9 using dummy_hcd [ 1338.759956][ T10] usb 9-1: Using ep0 maxpacket: 16 [ 1338.801029][ T10] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 1338.866820][ T10] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 1338.913527][ T10] usb 9-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 1338.996731][ T10] usb 9-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00 [ 1339.029070][ T10] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1339.080065][ T10] usb 9-1: config 0 descriptor?? [ 1339.171303][ T9698] netlink: 'syz.1.15671': attribute type 1 has an invalid length. [ 1339.219284][ T9702] netlink: 8 bytes leftover after parsing attributes in process `syz.7.15674'. [ 1339.298056][ T9700] loop9: detected capacity change from 0 to 2048 [ 1339.365955][ T9700] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1339.457698][ T30] audit: type=1800 audit(3829.611:2187): pid=9700 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.9.15673" name="file1" dev="loop9" ino=15 res=0 errno=0 [ 1339.591398][ T10] microsoft 0003:045E:07DA.000F: No inputs registered, leaving [ 1339.612959][ T8401] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1339.644956][ T10] microsoft 0003:045E:07DA.000F: hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.8-1/input0 [ 1339.660392][ T9704] loop4: detected capacity change from 0 to 4096 [ 1339.686202][ T10] microsoft 0003:045E:07DA.000F: no inputs found [ 1339.694306][ T10] microsoft 0003:045E:07DA.000F: could not initialize ff, continuing anyway [ 1339.846521][ T10] usb 9-1: USB disconnect, device number 9 [ 1339.930089][ T9715] fido_id[9715]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.8/usb9/9-1/report_descriptor': No such file or directory [ 1339.950477][ T9718] loop7: detected capacity change from 0 to 64 [ 1339.973032][ T9722] loop9: detected capacity change from 0 to 256 [ 1340.130360][ T9722] exFAT-fs (loop9): failed to load upcase table (idx : 0x00010000, chksum : 0xf6dff195, utbl_chksum : 0xe619d30d) [ 1340.407532][ T9729] loop1: detected capacity change from 0 to 1024 [ 1340.439191][ T9731] loop4: detected capacity change from 0 to 256 [ 1340.495722][ T9731] FAT-fs (loop4): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 1340.580436][ T30] audit: type=1800 audit(3830.645:2188): pid=9729 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.15685" name="file1" dev="loop1" ino=20 res=0 errno=0 [ 1340.641352][ T9731] FAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 1340.730502][ T12] hfsplus: b-tree write err: -5, ino 4 [ 1340.889065][ T9741] loop7: detected capacity change from 0 to 2048 [ 1341.000401][ T9741] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1341.052311][ T9752] netlink: 4 bytes leftover after parsing attributes in process `syz.8.15695'. [ 1341.104996][ T30] audit: type=1800 audit(3831.135:2189): pid=9741 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.7.15694" name="file1" dev="loop7" ino=15 res=0 errno=0 [ 1341.138020][ T9752] netlink: 2 bytes leftover after parsing attributes in process `syz.8.15695'. [ 1341.288129][T27483] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1341.606247][ T9767] loop8: detected capacity change from 0 to 256 [ 1341.666039][ T9767] UDF-fs: error (device loop8): udf_read_tagged: read failed, block=256, location=256 [ 1341.724618][ T9767] UDF-fs: error (device loop8): udf_read_tagged: read failed, block=512, location=512 [ 1341.787124][ T9767] UDF-fs: warning (device loop8): udf_load_vrs: No anchor found [ 1341.849240][ T9767] UDF-fs: Scanning with blocksize 512 failed [ 1341.904872][ T9767] UDF-fs: error (device loop8): udf_read_tagged: read failed, block=256, location=256 [ 1341.968303][ T9767] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 1342.129369][ T9787] loop1: detected capacity change from 0 to 8 [ 1342.510005][ T9797] usb usb8: usbfs: process 9797 (syz.8.15720) did not claim interface 0 before use [ 1342.560586][ T9797] usb usb8: Requested nonsensical USBDEVFS_URB_ZERO_PACKET. [ 1343.498926][ T9791] loop7: detected capacity change from 0 to 32768 [ 1343.541736][ T9791] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop7 (7:7) scanned by syz.7.15716 (9791) [ 1343.641799][ T9791] BTRFS info (device loop7): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 1343.689393][ T9791] BTRFS info (device loop7): using sha256 (sha256-ni) checksum algorithm [ 1343.744365][ T9791] BTRFS info (device loop7): using free-space-tree [ 1343.859901][ T9841] loop1: detected capacity change from 0 to 64 [ 1344.167156][ T9860] loop4: detected capacity change from 0 to 2048 [ 1344.236177][ T9864] loop8: detected capacity change from 0 to 1024 [ 1344.288115][ T9860] EXT4-fs: inline encryption not supported [ 1344.348791][ T36] BTRFS info (device loop7): qgroup scan completed (inconsistency flag cleared) [ 1344.364288][ T9860] EXT4-fs: Ignoring removed oldalloc option [ 1344.424190][ T9867] loop1: detected capacity change from 0 to 256 [ 1344.477909][ T9867] exfat: Deprecated parameter 'utf8' [ 1344.603024][T27483] BTRFS info (device loop7): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 1344.614982][ T9860] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1344.635437][ T9867] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x5441951d, utbl_chksum : 0xe619d30d) [ 1344.750190][ T9860] EXT4-fs error (device loop4): ext4_ext_precache:631: inode #2: comm syz.4.15741: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 5(5) [ 1344.985242][ T5841] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1345.749573][ T9904] netlink: 8 bytes leftover after parsing attributes in process `syz.1.15774'. [ 1345.763669][ T9906] netlink: 4 bytes leftover after parsing attributes in process `syz.9.15761'. [ 1345.782907][ T9904] netlink: 12 bytes leftover after parsing attributes in process `syz.1.15774'. [ 1346.147374][ T9918] loop9: detected capacity change from 0 to 512 [ 1346.189652][ T9918] EXT4-fs (loop9): encrypted files will use data=ordered instead of data journaling mode [ 1346.311830][ T9918] EXT4-fs (loop9): 1 truncate cleaned up [ 1346.339866][ T9918] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1346.508248][ T9902] loop4: detected capacity change from 0 to 32768 [ 1346.540558][ T9902] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop4 (7:4) scanned by syz.4.15760 (9902) [ 1346.590408][ T8401] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1346.638249][ T9902] BTRFS info (device loop4): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 1346.678611][ T9902] BTRFS info (device loop4): using sha256 (sha256-ni) checksum algorithm [ 1346.709194][ T9902] BTRFS info (device loop4): using free-space-tree [ 1346.816490][ T9937] netlink: 8 bytes leftover after parsing attributes in process `syz.9.15777'. [ 1347.300949][ T3521] BTRFS info (device loop4): qgroup scan completed (inconsistency flag cleared) [ 1347.421672][ T5841] BTRFS info (device loop4): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 1348.042918][ T9987] loop1: detected capacity change from 0 to 2048 [ 1348.125325][ T9987] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1348.212253][ T9991] loop7: detected capacity change from 0 to 2048 [ 1348.255033][ T9991] UDF-fs: error (device loop7): udf_read_tagged: read failed, block=26504, location=26504 [ 1348.345260][ T9991] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 1348.378285][ T5829] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1348.596959][T10001] loop4: detected capacity change from 0 to 1024 [ 1348.747099][T10005] loop7: detected capacity change from 0 to 1764 [ 1348.777479][ T36] hfsplus: b-tree write err: -5, ino 4 [ 1348.864570][T10005] iso9660: Corrupted directory entry in block 2 of inode 1920 [ 1349.434126][T10024] loop8: detected capacity change from 0 to 8 [ 1349.884952][T10034] netlink: 8 bytes leftover after parsing attributes in process `syz.8.15815'. [ 1349.918379][T10034] netlink: 12 bytes leftover after parsing attributes in process `syz.8.15815'. [ 1350.195595][T10047] loop7: detected capacity change from 0 to 128 [ 1350.240415][T10049] loop1: detected capacity change from 0 to 512 [ 1350.255910][T10047] EXT4-fs (loop7): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: writeback. [ 1350.315483][T10049] EXT4-fs error (device loop1): ext4_iget_extra_inode:4693: inode #12: comm syz.1.15819: corrupted in-inode xattr: bad e_name length [ 1350.366501][T10049] EXT4-fs error (device loop1): ext4_orphan_get:1396: comm syz.1.15819: couldn't read orphan inode 12 (err -117) [ 1350.440835][T10049] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1350.464500][T27483] EXT4-fs (loop7): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 1350.619214][T10028] loop4: detected capacity change from 0 to 32768 [ 1350.657183][T10061] loop8: detected capacity change from 0 to 64 [ 1350.686263][T10028] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop4 (7:4) scanned by syz.4.15810 (10028) [ 1350.777334][T10028] BTRFS info (device loop4): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 1350.790325][T10066] netlink: 8 bytes leftover after parsing attributes in process `syz.9.15829'. [ 1350.809316][ T5829] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1350.844460][T10028] BTRFS info (device loop4): using crc32c (crc32c-x86_64) checksum algorithm [ 1350.889174][T10028] BTRFS info (device loop4): using free-space-tree [ 1351.029167][T10072] loop1: detected capacity change from 0 to 256 [ 1351.102814][ T30] audit: type=1800 audit(3840.371:2190): pid=10072 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.15830" name="file1" dev="loop1" ino=1048849 res=0 errno=0 [ 1351.159836][T10084] loop9: detected capacity change from 0 to 1024 [ 1351.502636][T10097] netlink: 8 bytes leftover after parsing attributes in process `syz.1.15834'. [ 1351.505935][ T5841] BTRFS info (device loop4): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 1351.566489][T10097] netlink: 12 bytes leftover after parsing attributes in process `syz.1.15834'. [ 1352.106072][T10111] [U]  [ 1353.377383][T10155] netlink: 8 bytes leftover after parsing attributes in process `syz.8.15861'. [ 1353.386823][T10155] netlink: 12 bytes leftover after parsing attributes in process `syz.8.15861'. [ 1353.534965][ T4371] usb 2-1: new high-speed USB device number 6 using dummy_hcd [ 1353.637914][T10142] loop7: detected capacity change from 0 to 40427 [ 1353.649009][T10142] F2FS-fs (loop7): Small segment_count (9 < 1 * 24) [ 1353.656085][T10142] F2FS-fs (loop7): Can't find valid F2FS filesystem in 1th superblock [ 1353.698539][ T4371] usb 2-1: Using ep0 maxpacket: 8 [ 1353.717945][ T4371] usb 2-1: config index 0 descriptor too short (expected 5924, got 36) [ 1353.736070][ T4371] usb 2-1: config 250 has an invalid interface number: 228 but max is -1 [ 1353.746930][ T4371] usb 2-1: config 250 has 1 interface, different from the descriptor's value: 0 [ 1353.762434][ T4371] usb 2-1: config 250 has no interface number 0 [ 1353.768844][ T4371] usb 2-1: config 250 interface 228 altsetting 255 endpoint 0x1 has invalid maxpacket 65280, setting to 1024 [ 1353.788817][ T4371] usb 2-1: config 250 interface 228 altsetting 255 bulk endpoint 0x1 has invalid maxpacket 1024 [ 1353.804995][ T4371] usb 2-1: config 250 interface 228 altsetting 255 endpoint 0x82 has invalid maxpacket 65535, setting to 1024 [ 1353.809217][T10142] F2FS-fs (loop7): Try to recover 1th superblock, ret: 0 [ 1353.817329][ T4371] usb 2-1: config 250 interface 228 altsetting 255 bulk endpoint 0x82 has invalid maxpacket 1024 [ 1353.836158][ T4371] usb 2-1: config 250 interface 228 altsetting 255 has 2 endpoint descriptors, different from the interface descriptor's value: 17 [ 1353.839595][T10142] F2FS-fs (loop7): Mounted with checkpoint version = 48b305e5 [ 1353.849884][ T4371] usb 2-1: config 250 interface 228 has no altsetting 0 [ 1353.851974][ T4371] usb 2-1: New USB device found, idVendor=0525, idProduct=d292, bcdDevice= 0.07 [ 1353.880988][ T4371] usb 2-1: New USB device strings: Mfr=0, Product=106, SerialNumber=59 [ 1353.895433][ T4371] usb 2-1: Product: syz [ 1353.899627][ T4371] usb 2-1: SerialNumber: syz [ 1353.914708][ T4371] hub 2-1:250.228: bad descriptor, ignoring hub [ 1353.921092][ T30] audit: type=1800 audit(3842.975:2191): pid=10142 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.7.15856" name="file1" dev="loop7" ino=10 res=0 errno=0 [ 1353.941452][ T4371] hub 2-1:250.228: probe with driver hub failed with error -5 [ 1353.962482][T27483] syz-executor: attempt to access beyond end of device [ 1353.962482][T27483] loop7: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 1353.977561][T27483] CPU: 1 UID: 0 PID: 27483 Comm: syz-executor Not tainted 6.15.0-rc7-syzkaller-00144-gb1427432d3b6 #0 PREEMPT(full) [ 1353.977593][T27483] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 1353.977609][T27483] Call Trace: [ 1353.977619][T27483] [ 1353.977630][T27483] dump_stack_lvl+0x189/0x250 [ 1353.977679][T27483] ? __pfx_dump_stack_lvl+0x10/0x10 [ 1353.977712][T27483] ? _raw_spin_unlock_irqrestore+0xa8/0x110 [ 1353.977742][T27483] ? __pfx_queue_work_on+0x10/0x10 [ 1353.977767][T27483] ? _raw_spin_unlock_irqrestore+0xad/0x110 [ 1353.977796][T27483] ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10 [ 1353.977827][T27483] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1353.977868][T27483] f2fs_handle_critical_error+0x37c/0x540 [ 1353.977908][T27483] f2fs_write_end_io+0x4e2/0x6d0 [ 1353.977964][T27483] __submit_merged_bio+0x27a/0x6a0 [ 1353.978003][T27483] __submit_merged_write_cond+0x255/0x530 [ 1353.978043][T27483] f2fs_write_data_pages+0x2854/0x31f0 [ 1353.978075][T27483] ? unwind_next_frame+0x19ae/0x2390 [ 1353.978155][T27483] ? __pfx_f2fs_write_data_pages+0x10/0x10 [ 1353.978185][T27483] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1353.978289][T27483] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1353.978323][T27483] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1353.978350][T27483] ? do_raw_spin_unlock+0x122/0x240 [ 1353.978405][T27483] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1353.978433][T27483] ? __lock_acquire+0xaac/0xd20 [ 1353.978482][T27483] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1353.978527][T27483] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1353.978555][T27483] ? do_raw_spin_unlock+0x122/0x240 [ 1353.978590][T27483] ? __pfx_f2fs_write_data_pages+0x10/0x10 [ 1353.978639][T27483] do_writepages+0x3b1/0x7b0 [ 1353.978700][T27483] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1353.978729][T27483] ? do_raw_spin_lock+0x121/0x290 [ 1353.978759][T27483] ? __pfx_do_writepages+0x10/0x10 [ 1353.978800][T27483] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1353.978834][T27483] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1353.978862][T27483] ? do_raw_spin_unlock+0x122/0x240 [ 1353.978900][T27483] filemap_fdatawrite+0x191/0x230 [ 1353.978936][T27483] ? __pfx_filemap_fdatawrite+0x10/0x10 [ 1353.979033][T27483] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1353.979068][T27483] ? do_raw_spin_unlock+0x122/0x240 [ 1353.979106][T27483] f2fs_sync_dirty_inodes+0x31f/0x830 [ 1353.979164][T27483] f2fs_write_checkpoint+0x94a/0x1de0 [ 1353.979234][T27483] ? __pfx_f2fs_write_checkpoint+0x10/0x10 [ 1353.979266][T27483] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1353.979364][T27483] ? call_rcu+0x6dd/0x990 [ 1353.979387][T27483] ? kill_f2fs_super+0x298/0x6c0 [ 1353.979429][T27483] kill_f2fs_super+0x2c3/0x6c0 [ 1353.979473][T27483] ? __pfx_kill_f2fs_super+0x10/0x10 [ 1353.979504][T27483] ? radix_tree_delete_item+0x2b6/0x400 [ 1353.979545][T27483] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1353.979573][T27483] ? shrinker_free+0x2ce/0x3e0 [ 1353.979605][T27483] deactivate_locked_super+0xbc/0x130 [ 1353.979635][T27483] cleanup_mnt+0x425/0x4c0 [ 1353.979658][T27483] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1353.979686][T27483] ? lockdep_hardirqs_on+0x9c/0x150 [ 1353.979722][T27483] task_work_run+0x1d4/0x260 [ 1353.979761][T27483] ? __pfx_task_work_run+0x10/0x10 [ 1353.979797][T27483] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1353.979842][T27483] resume_user_mode_work+0x5e/0x80 [ 1353.979879][T27483] syscall_exit_to_user_mode+0x9a/0x120 [ 1353.979914][T27483] do_syscall_64+0x103/0x210 [ 1353.979949][T27483] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1353.979977][T27483] ? exc_page_fault+0x91/0x110 [ 1353.980011][T27483] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1353.980035][T27483] RIP: 0033:0x7f719db8fc97 [ 1353.980057][T27483] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8 [ 1353.980079][T27483] RSP: 002b:00007ffd0947fe18 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6 [ 1353.980104][T27483] RAX: 0000000000000000 RBX: 00007f719dc1089d RCX: 00007f719db8fc97 [ 1353.980122][T27483] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffd0947fed0 [ 1353.980138][T27483] RBP: 00007ffd0947fed0 R08: 0000000000000000 R09: 0000000000000000 [ 1353.980154][T27483] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffd09480f60 [ 1353.980172][T27483] R13: 00007f719dc1089d R14: 0000000000134d6d R15: 00007ffd09480fa0 [ 1353.980216][T27483] [ 1354.397340][ C1] vkms_vblank_simulate: vblank timer overrun [ 1354.462190][T27483] F2FS-fs (loop7): Stopped filesystem due to reason: 3 [ 1354.469591][ T4371] usblp 2-1:250.228: usblp0: USB Bidirectional printer dev 6 if 228 alt 255 proto 3 vid 0x0525 pid 0xD292 [ 1354.875677][T10171] loop8: detected capacity change from 0 to 256 [ 1354.954122][T10171] exfat: Deprecated parameter 'utf8' [ 1354.961344][ C0] usblp0: nonzero read bulk status received: -71 [ 1354.986107][ T24] usb 2-1: USB disconnect, device number 6 [ 1355.003759][ T24] usblp0: removed [ 1355.065469][T10171] exFAT-fs (loop8): failed to load upcase table (idx : 0x00010000, chksum : 0xabf88b1f, utbl_chksum : 0xe619d30d) [ 1356.047426][ T10] usb 10-1: new full-speed USB device number 6 using dummy_hcd [ 1356.133339][ T970] usb 9-1: new low-speed USB device number 10 using dummy_hcd [ 1356.213943][ T10] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 1023, setting to 64 [ 1356.241067][ T10] usb 10-1: New USB device found, idVendor=0eef, idProduct=72c4, bcdDevice= 0.00 [ 1356.261391][ T10] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1356.278193][ T10] usb 10-1: config 0 descriptor?? [ 1356.291330][T10195] raw-gadget.0 gadget.9: fail, usb_ep_enable returned -22 [ 1356.340176][ T970] usb 9-1: config 0 interface 0 altsetting 6 endpoint 0x81 has an invalid bInterval 0, changing to 10 [ 1356.373737][ T970] usb 9-1: config 0 interface 0 altsetting 6 endpoint 0x81 has invalid maxpacket 1024, setting to 8 [ 1356.395627][ T970] usb 9-1: config 0 interface 0 has no altsetting 0 [ 1356.402789][ T970] usb 9-1: New USB device found, idVendor=04d9, idProduct=a067, bcdDevice= 0.00 [ 1356.423447][ T970] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1356.446380][ T970] usb 9-1: config 0 descriptor?? [ 1356.455856][T10197] raw-gadget.1 gadget.8: fail, usb_ep_enable returned -22 [ 1356.754311][T10227] netlink: 8 bytes leftover after parsing attributes in process `syz.0.15892'. [ 1356.776049][ T10] hid-multitouch 0003:0EEF:72C4.0010: item fetching failed at offset 3/5 [ 1356.800954][ T10] hid-multitouch 0003:0EEF:72C4.0010: probe with driver hid-multitouch failed with error -22 [ 1356.938897][ T5889] usb 5-1: new high-speed USB device number 17 using dummy_hcd [ 1356.950504][ T970] holtek_mouse 0003:04D9:A067.0011: unknown main item tag 0x3 [ 1356.992366][ T970] holtek_mouse 0003:04D9:A067.0011: hidraw0: USB HID v0.00 Device [HID 04d9:a067] on usb-dummy_hcd.8-1/input0 [ 1357.001078][ T4371] usb 10-1: USB disconnect, device number 6 [ 1357.124843][T10237] dummy0: entered allmulticast mode [ 1357.129334][ T5889] usb 5-1: Using ep0 maxpacket: 8 [ 1357.143035][ T5889] usb 5-1: config index 0 descriptor too short (expected 5924, got 36) [ 1357.152988][ T5889] usb 5-1: config 250 has an invalid interface number: 228 but max is -1 [ 1357.294214][ T5889] usb 5-1: config 250 has 1 interface, different from the descriptor's value: 0 [ 1357.325198][ T970] usb 9-1: USB disconnect, device number 10 [ 1357.349624][ T5889] usb 5-1: config 250 has no interface number 0 [ 1357.403373][ T5889] usb 5-1: config 250 interface 228 altsetting 255 endpoint 0x1 has invalid maxpacket 65280, setting to 1024 [ 1357.443784][ T5889] usb 5-1: config 250 interface 228 altsetting 255 bulk endpoint 0x1 has invalid maxpacket 1024 [ 1357.467055][ T5889] usb 5-1: config 250 interface 228 altsetting 255 endpoint 0x82 has invalid maxpacket 65535, setting to 1024 [ 1357.486579][ T5889] usb 5-1: config 250 interface 228 altsetting 255 bulk endpoint 0x82 has invalid maxpacket 1024 [ 1357.497116][ T5889] usb 5-1: config 250 interface 228 altsetting 255 has 2 endpoint descriptors, different from the interface descriptor's value: 17 [ 1357.524905][ T5889] usb 5-1: config 250 interface 228 has no altsetting 0 [ 1357.539445][ T5889] usb 5-1: New USB device found, idVendor=0525, idProduct=d292, bcdDevice= 0.07 [ 1357.585347][ T5889] usb 5-1: New USB device strings: Mfr=0, Product=106, SerialNumber=59 [ 1357.610775][ T5889] usb 5-1: Product: syz [ 1357.625916][ T5889] usb 5-1: SerialNumber: syz [ 1357.681142][ T5889] hub 5-1:250.228: bad descriptor, ignoring hub [ 1357.699116][ T5889] hub 5-1:250.228: probe with driver hub failed with error -5 [ 1357.923610][ T5889] usblp 5-1:250.228: usblp0: USB Bidirectional printer dev 17 if 228 alt 255 proto 3 vid 0x0525 pid 0xD292 [ 1358.278846][ C0] usblp0: nonzero read bulk status received: -71 [ 1358.299189][ T4371] usb 5-1: USB disconnect, device number 17 [ 1358.325924][ T4371] usblp0: removed [ 1358.671692][T10245] loop9: detected capacity change from 0 to 32768 [ 1358.704996][T10245] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop9 (7:9) scanned by syz.9.15900 (10245) [ 1358.773006][T10245] BTRFS info (device loop9): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 1358.802443][T10245] BTRFS info (device loop9): using crc32c (crc32c-x86_64) checksum algorithm [ 1358.826459][T10245] BTRFS info (device loop9): using free-space-tree [ 1358.915940][ T30] audit: type=1326 audit(3847.566:2192): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10252 comm="syz.0.15905" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe5a3d8e969 code=0x7fc00000 [ 1359.418131][ T8401] BTRFS info (device loop9): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 1359.471400][T10307] netlink: 28 bytes leftover after parsing attributes in process `syz.4.15922'. [ 1359.760303][ T5889] usb 9-1: new high-speed USB device number 11 using dummy_hcd [ 1359.985679][ T5889] usb 9-1: config 0 has an invalid interface number: 1 but max is 0 [ 1360.004924][ T5889] usb 9-1: config 0 has no interface number 0 [ 1360.044237][ T5889] usb 9-1: New USB device found, idVendor=18b4, idProduct=fffb, bcdDevice=dc.7b [ 1360.088067][ T5889] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1360.112186][ T5889] usb 9-1: Product: syz [ 1360.116359][ T5889] usb 9-1: Manufacturer: syz [ 1360.131701][ T5889] usb 9-1: SerialNumber: syz [ 1360.159799][ T5889] usb 9-1: config 0 descriptor?? [ 1360.424385][ T5889] usb 9-1: dvb_usb_v2: found a 'E3C EC168 reference design' in warm state [ 1360.458588][ T5889] usb 9-1: dvb_usb_v2: will pass the complete MPEG2 transport stream to the software demuxer [ 1360.527829][ T5889] dvbdev: DVB: registering new adapter (E3C EC168 reference design) [ 1360.551986][ T5889] usb 9-1: media controller created [ 1360.627941][ T5889] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered. [ 1360.841136][T10345] netlink: 28 bytes leftover after parsing attributes in process `syz.9.15939'. [ 1360.949630][ T4371] usb 9-1: USB disconnect, device number 11 [ 1361.045242][T10349] netlink: 4768 bytes leftover after parsing attributes in process `syz.1.15954'. [ 1361.643635][T10372] netlink: 'syz.9.15953': attribute type 3 has an invalid length. [ 1362.564296][T10403] loop4: detected capacity change from 0 to 4096 [ 1362.671446][T10403] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1362.769188][T10379] loop1: detected capacity change from 0 to 32768 [ 1362.780531][T10403] Quota error (device loop4): do_check_range: Getting block 327682 out of range 1-5 [ 1362.823132][T10403] Quota error (device loop4): qtree_read_dquot: Can't read quota structure for id 0 [ 1362.856812][ T4371] usb 9-1: new full-speed USB device number 12 using dummy_hcd [ 1363.018684][T10403] EXT4-fs error (device loop4): ext4_acquire_dquot:6935: comm syz.4.15967: Failed to acquire dquot type 1 [ 1363.073325][T10413] Quota error (device loop4): do_check_range: Getting block 327682 out of range 1-5 [ 1363.082746][T10413] Quota error (device loop4): qtree_read_dquot: Can't read quota structure for id 0 [ 1363.094800][ T4371] usb 9-1: New USB device found, idVendor=13d3, idProduct=3224, bcdDevice=cb.0d [ 1363.118020][ T4371] usb 9-1: New USB device strings: Mfr=1, Product=12, SerialNumber=3 [ 1363.148646][ T4371] usb 9-1: Product: syz [ 1363.169813][ T4371] usb 9-1: Manufacturer: syz [ 1363.180914][ T4371] usb 9-1: SerialNumber: syz [ 1363.214148][T10413] EXT4-fs error (device loop4): ext4_acquire_dquot:6935: comm syz.4.15967: Failed to acquire dquot type 1 [ 1363.258837][ T4371] dvb-usb: found a 'DigitalNow TinyUSB 2 DVB-t Receiver' in warm state. [ 1363.428664][ T5841] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1363.672793][ T4371] dvb-usb: This USB2.0 device cannot be run on a USB1.1 port. (it lacks a hardware PID filter) [ 1363.694705][ T4371] dvb-usb: DigitalNow TinyUSB 2 DVB-t Receiver error while loading driver (-19) [ 1363.900577][ T4371] usb 9-1: USB disconnect, device number 12 [ 1363.953917][T10412] loop9: detected capacity change from 0 to 32768 [ 1364.009829][T10412] XFS (loop9): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb [ 1364.105193][T10412] XFS (loop9): Ending clean mount [ 1364.110373][T10442] loop4: detected capacity change from 0 to 256 [ 1364.121349][T10442] exfat: Deprecated parameter 'namecase' [ 1364.130938][T10412] XFS (loop9): Quotacheck needed: Please wait. [ 1364.136811][T10442] exfat: Deprecated parameter 'namecase' [ 1364.230193][T10442] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0xfcc0b04e, utbl_chksum : 0xe619d30d) [ 1364.249006][T10412] XFS (loop9): Quotacheck: Done. [ 1364.336955][T10444] netlink: 4 bytes leftover after parsing attributes in process `syz.1.15983'. [ 1364.395903][ T8401] XFS (loop9): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb [ 1364.737523][T10453] loop4: detected capacity change from 0 to 512 [ 1364.832182][T10453] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 1364.876090][T10453] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1365.000551][T10461] netlink: 'syz.7.15991': attribute type 3 has an invalid length. [ 1365.102109][ T5841] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1365.415630][T10476] loop1: detected capacity change from 0 to 128 [ 1365.445808][ T10] usb 10-1: new high-speed USB device number 7 using dummy_hcd [ 1365.641275][ T10] usb 10-1: Using ep0 maxpacket: 8 [ 1365.650472][ T10] usb 10-1: config index 0 descriptor too short (expected 5924, got 36) [ 1365.671337][ T10] usb 10-1: config 250 has an invalid interface number: 228 but max is -1 [ 1365.700761][ T10] usb 10-1: config 250 has 1 interface, different from the descriptor's value: 0 [ 1365.731148][ T10] usb 10-1: config 250 has no interface number 0 [ 1365.755632][ T10] usb 10-1: config 250 interface 228 altsetting 255 endpoint 0x1 has invalid maxpacket 65280, setting to 1024 [ 1365.803679][ T10] usb 10-1: config 250 interface 228 altsetting 255 bulk endpoint 0x1 has invalid maxpacket 1024 [ 1365.826371][ T10] usb 10-1: config 250 interface 228 altsetting 255 endpoint 0x82 has invalid maxpacket 65535, setting to 1024 [ 1365.840013][ T10] usb 10-1: config 250 interface 228 altsetting 255 bulk endpoint 0x82 has invalid maxpacket 1024 [ 1365.851992][ T10] usb 10-1: config 250 interface 228 altsetting 255 has 2 endpoint descriptors, different from the interface descriptor's value: 17 [ 1365.866549][ T10] usb 10-1: config 250 interface 228 has no altsetting 0 [ 1365.876571][ T10] usb 10-1: New USB device found, idVendor=0525, idProduct=d292, bcdDevice= 0.07 [ 1365.892207][ T10] usb 10-1: New USB device strings: Mfr=0, Product=106, SerialNumber=59 [ 1365.900782][ T10] usb 10-1: Product: syz [ 1365.905140][ T10] usb 10-1: SerialNumber: syz [ 1365.949190][ T10] hub 10-1:250.228: bad descriptor, ignoring hub [ 1365.955773][ T10] hub 10-1:250.228: probe with driver hub failed with error -5 [ 1365.983259][T10487] loop1: detected capacity change from 0 to 4096 [ 1366.024080][T10487] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1366.132192][T10493] loop7: detected capacity change from 0 to 512 [ 1366.140119][T10479] loop8: detected capacity change from 0 to 32768 [ 1366.169721][T10487] Quota error (device loop1): do_check_range: Getting block 327682 out of range 1-5 [ 1366.182366][T10479] XFS (loop8): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb [ 1366.191105][T10487] Quota error (device loop1): qtree_read_dquot: Can't read quota structure for id 0 [ 1366.192596][ T10] usblp 10-1:250.228: usblp0: USB Bidirectional printer dev 7 if 228 alt 255 proto 3 vid 0x0525 pid 0xD292 [ 1366.241231][T10487] EXT4-fs error (device loop1): ext4_acquire_dquot:6935: comm syz.1.16014: Failed to acquire dquot type 1 [ 1366.302356][T10493] EXT4-fs (loop7): revision level too high, forcing read-only mode [ 1366.327251][T10500] Quota error (device loop1): do_check_range: Getting block 327682 out of range 1-5 [ 1366.329073][T10493] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 1366.350592][T10479] XFS (loop8): Ending clean mount [ 1366.375636][T10500] Quota error (device loop1): qtree_read_dquot: Can't read quota structure for id 0 [ 1366.398771][T10479] XFS (loop8): Quotacheck needed: Please wait. [ 1366.401543][T10500] EXT4-fs error (device loop1): ext4_acquire_dquot:6935: comm syz.1.16014: Failed to acquire dquot type 1 [ 1366.427346][T10493] EXT4-fs (loop7): shut down requested (0) [ 1366.569532][T10479] XFS (loop8): Quotacheck: Done. [ 1366.626845][T27483] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1366.635463][ T5829] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1366.656133][ C0] usblp0: nonzero read bulk status received: -71 [ 1366.744676][ T970] usb 10-1: USB disconnect, device number 7 [ 1366.764342][ T970] usblp0: removed [ 1366.828745][ T4380] XFS (loop8): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb [ 1367.028496][T10516] netlink: 60 bytes leftover after parsing attributes in process `syz.1.16007'. [ 1367.090455][T10513] netlink: 60 bytes leftover after parsing attributes in process `syz.1.16007'. [ 1367.173276][T10518] loop7: detected capacity change from 0 to 4096 [ 1367.201808][T10520] netlink: 4 bytes leftover after parsing attributes in process `syz.4.16010'. [ 1367.255790][T10518] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1367.400409][T10524] netlink: 'syz.8.16008': attribute type 3 has an invalid length. [ 1367.519075][T10528] netlink: 4768 bytes leftover after parsing attributes in process `syz.9.16012'. [ 1367.699357][T10534] netlink: 40 bytes leftover after parsing attributes in process `syz.4.16015'. [ 1367.705170][T27483] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1368.035350][T10544] loop1: detected capacity change from 0 to 256 [ 1368.103548][T10544] exfat: Deprecated parameter 'namecase' [ 1368.177214][T10544] exfat: Deprecated parameter 'namecase' [ 1368.266501][T10544] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0xfcc0b04e, utbl_chksum : 0xe619d30d) [ 1368.678899][T10559] netlink: 4 bytes leftover after parsing attributes in process `syz.9.16029'. [ 1368.944647][T10536] loop8: detected capacity change from 0 to 32768 [ 1368.981199][T10536] BTRFS: device fsid e417788f-7a09-42b2-9266-8ddc5d5d35d2 devid 1 transid 8 /dev/loop8 (7:8) scanned by syz.8.16020 (10536) [ 1369.038782][T10536] BTRFS info (device loop8): first mount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2 [ 1369.104239][T10536] BTRFS info (device loop8): using xxhash64 (xxhash64-generic) checksum algorithm [ 1369.154964][T10536] BTRFS info (device loop8): disk space caching is enabled [ 1369.200906][T10536] BTRFS warning (device loop8): space cache v1 is being deprecated and will be removed in a future release, please use -o space_cache=v2 [ 1369.400839][T10592] netlink: 40 bytes leftover after parsing attributes in process `syz.0.16050'. [ 1369.459887][T10536] BTRFS info (device loop8): rebuilding free space tree [ 1369.567682][T10536] BTRFS info (device loop8): disabling free space tree [ 1369.580783][T10536] BTRFS info (device loop8): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1) [ 1369.590447][T10536] BTRFS info (device loop8): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2) [ 1369.812705][T10536] BTRFS info (device loop8): balance: start -d -m [ 1369.865895][T10536] BTRFS info (device loop8): relocating block group 6881280 flags data|metadata [ 1370.034104][T10536] BTRFS info (device loop8): relocating block group 5242880 flags data|metadata [ 1370.182961][T10536] BTRFS info (device loop8): balance: canceled [ 1370.232026][T10624] loop4: detected capacity change from 0 to 16 [ 1370.260710][T10624] erofs (device loop4): mounted with root inode @ nid 36. [ 1370.301805][ T30] audit: type=1800 audit(3858.104:2193): pid=10624 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.16052" name="file1" dev="loop4" ino=86 res=0 errno=0 [ 1370.369474][T10619] xt_CT: No such helper "pptp" [ 1370.379332][ T4380] BTRFS info (device loop8): last unmount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2 [ 1370.478562][T10627] netlink: 104 bytes leftover after parsing attributes in process `syz.9.16053'. [ 1370.547165][T10630] loop4: detected capacity change from 0 to 64 [ 1370.626764][T10630] Trying to free block not in datazone [ 1371.317730][T10652] netlink: 40 bytes leftover after parsing attributes in process `syz.8.16054'. [ 1371.669186][T10662] loop4: detected capacity change from 0 to 4096 [ 1371.743563][T10668] netlink: 8 bytes leftover after parsing attributes in process `syz.0.16070'. [ 1371.764082][T10668] netlink: 'syz.0.16070': attribute type 11 has an invalid length. [ 1371.792767][T10662] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1371.999024][ T5841] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1373.036619][T10715] loop4: detected capacity change from 0 to 512 [ 1373.061365][T10715] EXT4-fs (loop4): mounting ext3 file system using the ext4 subsystem [ 1373.137045][T10717] A link change request failed with some changes committed already. Interface batadv_slave_0 may have been left with an inconsistent configuration, please check. [ 1373.138203][T10715] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8042c118, mo2=0002] [ 1373.192372][T10715] EXT4-fs error (device loop4): ext4_orphan_get:1417: comm syz.4.16094: bad orphan inode 7 [ 1373.237450][T10715] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1373.289847][T10715] EXT4-fs error (device loop4): htree_dirblock_to_tree:1082: inode #2: block 13: comm syz.4.16094: bad entry in directory: rec_len % 4 != 0 - offset=60, inode=15, rec_len=199, size=1024 fake=0 [ 1373.345256][T10726] __nla_validate_parse: 2 callbacks suppressed [ 1373.345275][T10726] netlink: 8 bytes leftover after parsing attributes in process `syz.9.16099'. [ 1373.362817][T10726] netlink: 48 bytes leftover after parsing attributes in process `syz.9.16099'. [ 1373.374339][T10726] vlan1: entered allmulticast mode [ 1373.379531][T10726] veth0_vlan: entered allmulticast mode [ 1373.416543][ T5841] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1373.500668][ T970] usb 2-1: new high-speed USB device number 7 using dummy_hcd [ 1373.662586][ T970] usb 2-1: Using ep0 maxpacket: 32 [ 1373.701606][ T970] usb 2-1: unable to get BOS descriptor or descriptor too short [ 1373.717223][ T970] usb 2-1: unable to read config index 0 descriptor/start: -71 [ 1373.724806][ T970] usb 2-1: can't read configurations, error -71 [ 1373.866510][T10722] loop8: detected capacity change from 0 to 32768 [ 1373.878871][ T4371] usb 5-1: new high-speed USB device number 18 using dummy_hcd [ 1373.895420][T10722] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop8 (7:8) scanned by syz.8.16096 (10722) [ 1373.947322][T10722] BTRFS info (device loop8): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 1373.967685][T10722] BTRFS info (device loop8): using sha256 (sha256-ni) checksum algorithm [ 1373.984653][T10722] BTRFS info (device loop8): using free-space-tree [ 1374.073634][ T4371] usb 5-1: Using ep0 maxpacket: 32 [ 1374.087046][ T4371] usb 5-1: config 0 has an invalid interface number: 35 but max is 0 [ 1374.125518][ T4371] usb 5-1: config 0 has no interface number 0 [ 1374.192013][ T4371] usb 5-1: New USB device found, idVendor=10c4, idProduct=818a, bcdDevice=7d.8f [ 1374.219763][ T4371] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1374.232343][ T4371] usb 5-1: Product: syz [ 1374.246928][ T4371] usb 5-1: Manufacturer: syz [ 1374.251606][ T4371] usb 5-1: SerialNumber: syz [ 1374.275125][ T4371] usb 5-1: config 0 descriptor?? [ 1374.329141][ T4371] radio-si470x 5-1:0.35: could not find interrupt in endpoint [ 1374.373473][ T4371] radio-si470x 5-1:0.35: probe with driver radio-si470x failed with error -5 [ 1374.468139][T30123] BTRFS info (device loop8): qgroup scan completed (inconsistency flag cleared) [ 1374.529599][ T4380] BTRFS info (device loop8): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 1374.546482][ T4371] radio-raremono 5-1:0.35: Thanko's Raremono connected: (10C4:818A) [ 1374.816349][ T4371] radio-raremono 5-1:0.35: V4L2 device registered as radio48 [ 1375.002393][ T4371] usb 5-1: USB disconnect, device number 18 [ 1375.032226][ T4371] radio-raremono 5-1:0.35: Thanko's Raremono disconnected [ 1375.413183][T10792] netlink: 4 bytes leftover after parsing attributes in process `syz.1.16122'. [ 1375.771259][T10804] loop8: detected capacity change from 0 to 8 [ 1375.835151][T10808] pimreg: entered allmulticast mode [ 1375.869657][T10804] SQUASHFS error: Failed to read block 0x1ec: -5 [ 1375.893959][T10808] pimreg: left allmulticast mode [ 1375.905076][T10812] netlink: 8 bytes leftover after parsing attributes in process `syz.7.16132'. [ 1375.936338][T10813] SQUASHFS error: Unable to read metadata cache entry [1ea] [ 1375.943145][T10804] SQUASHFS error: Unable to read metadata cache entry [1ea] [ 1376.246348][ T30] audit: type=1326 audit(3863.591:2194): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10820 comm="syz.4.16136" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1eb898e969 code=0x7ffc0000 [ 1376.295176][T10823] loop4: detected capacity change from 0 to 256 [ 1376.329333][ T30] audit: type=1326 audit(3863.591:2195): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10820 comm="syz.4.16136" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1eb898e969 code=0x7ffc0000 [ 1376.431602][T10823] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0xff532d92, utbl_chksum : 0xe619d30d) [ 1376.467508][ T30] audit: type=1326 audit(3863.637:2196): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10820 comm="syz.4.16136" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f1eb898e969 code=0x7ffc0000 [ 1376.531481][ T5891] usb 9-1: new high-speed USB device number 13 using dummy_hcd [ 1376.571116][ T30] audit: type=1326 audit(3863.637:2197): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10820 comm="syz.4.16136" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f1eb898e9a3 code=0x7ffc0000 [ 1376.658909][ T30] audit: type=1326 audit(3863.637:2198): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10820 comm="syz.4.16136" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f1eb898d41f code=0x7ffc0000 [ 1376.737004][ T5891] usb 9-1: Using ep0 maxpacket: 32 [ 1376.757133][ T30] audit: type=1326 audit(3863.637:2199): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10820 comm="syz.4.16136" exe="/root/syz-executor" sig=0 arch=c000003e syscall=11 compat=0 ip=0x7f1eb898e9f7 code=0x7ffc0000 [ 1376.811987][ T5891] usb 9-1: config 4 has an invalid descriptor of length 0, skipping remainder of the config [ 1376.874702][ T30] audit: type=1326 audit(3863.646:2200): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10820 comm="syz.4.16136" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f1eb898d2d0 code=0x7ffc0000 [ 1376.875639][ T5891] usb 9-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40 [ 1376.920105][ T5891] usb 9-1: New USB device strings: Mfr=10, Product=131, SerialNumber=0 [ 1376.928853][ T5891] usb 9-1: Product: syz [ 1376.934240][ T5891] usb 9-1: Manufacturer: syz [ 1376.958516][ T5891] hub 9-1:4.0: bad descriptor, ignoring hub [ 1376.968173][ T5891] hub 9-1:4.0: probe with driver hub failed with error -5 [ 1376.974240][ T30] audit: type=1326 audit(3863.646:2201): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10820 comm="syz.4.16136" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f1eb898e56b code=0x7ffc0000 [ 1376.998489][ T10] usb 5-1: new high-speed USB device number 19 using dummy_hcd [ 1377.026197][T10839] loop9: detected capacity change from 0 to 4096 [ 1377.063260][ T30] audit: type=1326 audit(3863.664:2202): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10820 comm="syz.4.16136" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f1eb898d5ca code=0x7ffc0000 [ 1377.085113][ C1] vkms_vblank_simulate: vblank timer overrun [ 1377.121114][ T30] audit: type=1326 audit(3863.664:2203): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10820 comm="syz.4.16136" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f1eb898d5ca code=0x7ffc0000 [ 1377.190137][T10844] NILFS (loop9): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 1377.212043][ T10] usb 5-1: config 0 has an invalid interface number: 117 but max is 0 [ 1377.235249][ T10] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 1377.302138][ T10] usb 5-1: config 0 has no interface number 0 [ 1377.326178][ T10] usb 5-1: config 0 interface 117 altsetting 0 endpoint 0x88 has invalid wMaxPacketSize 0 [ 1377.338840][ T10] usb 5-1: config 0 interface 117 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 1377.417517][ T10] usb 5-1: New USB device found, idVendor=0afa, idProduct=03e8, bcdDevice=99.d0 [ 1377.448276][ T10] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1377.474192][ T10] usb 5-1: Product: syz [ 1377.492422][ T10] usb 5-1: Manufacturer: syz [ 1377.511024][ T10] usb 5-1: SerialNumber: syz [ 1377.551483][ T10] usb 5-1: config 0 descriptor?? [ 1377.574201][ T5891] usb 9-1: reset high-speed USB device number 13 using dummy_hcd [ 1377.683810][T10856] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 1377.744050][ T5889] usb 2-1: new low-speed USB device number 9 using dummy_hcd [ 1377.787512][ T24] usb 10-1: new low-speed USB device number 8 using dummy_hcd [ 1377.933935][T10862] netlink: 224 bytes leftover after parsing attributes in process `syz.7.16156'. [ 1377.934985][ T5889] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10 [ 1377.963460][ T24] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10 [ 1377.965423][ T5889] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 1377.984541][ T24] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 32, setting to 8 [ 1377.984577][ T24] usb 10-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 1377.984626][ T24] usb 10-1: New USB device found, idVendor=06a3, idProduct=0621, bcdDevice= 0.00 [ 1377.984655][ T24] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1378.031099][ T24] usb 10-1: config 0 descriptor?? [ 1378.040960][ T10] usbtouchscreen 5-1:0.117: probe with driver usbtouchscreen failed with error -71 [ 1378.051285][T10852] raw-gadget.4 gadget.9: fail, usb_ep_enable returned -22 [ 1378.069137][ T5889] usb 2-1: New USB device found, idVendor=17ef, idProduct=6047, bcdDevice= 0.00 [ 1378.091524][ T10] usb 5-1: USB disconnect, device number 19 [ 1378.115401][ T5889] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1378.143007][ T5889] usb 2-1: config 0 descriptor?? [ 1378.167950][ T5891] usb 9-1: USB disconnect, device number 13 [ 1378.266381][ T970] kernel write not supported for file /input/mouse0 (pid: 970 comm: kworker/0:2) [ 1378.460822][T10870] loop7: detected capacity change from 0 to 2048 [ 1378.468461][T10870] ext4: Unknown parameter 'noacl' [ 1378.520412][ T24] saitek 0003:06A3:0621.0012: unknown main item tag 0x0 [ 1378.570509][ T24] saitek 0003:06A3:0621.0012: unbalanced collection at end of report description [ 1378.587573][ T24] saitek 0003:06A3:0621.0012: parse failed [ 1378.621923][ T24] saitek 0003:06A3:0621.0012: probe with driver saitek failed with error -22 [ 1378.659350][ T5889] lenovo 0003:17EF:6047.0013: unknown main item tag 0x0 [ 1378.711721][ T5889] lenovo 0003:17EF:6047.0013: hidraw0: USB HID v0.00 Device [HID 17ef:6047] on usb-dummy_hcd.1-1/input0 [ 1378.727377][ T24] usb 10-1: USB disconnect, device number 8 [ 1378.863002][T10877] loop4: detected capacity change from 0 to 128 [ 1378.894215][ T4371] usb 2-1: USB disconnect, device number 9 [ 1378.926217][T10877] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 1379.068256][T10873] fido_id[10873]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.1/usb2/report_descriptor': No such file or directory [ 1379.157816][ T5841] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 1379.422603][ T970] usb 9-1: new high-speed USB device number 14 using dummy_hcd [ 1379.540209][T10902] netdevsim netdevsim4 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0 [ 1379.550171][T10902] netdevsim netdevsim4 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0 [ 1379.559053][T10902] netdevsim netdevsim4 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0 [ 1379.567835][T10902] netdevsim netdevsim4 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0 [ 1379.644695][T10904] loop1: detected capacity change from 0 to 128 [ 1379.669289][T10904] FAT-fs (loop1): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 1379.681330][ T970] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 94, changing to 10 [ 1379.714468][ T970] usb 9-1: New USB device found, idVendor=18d1, idProduct=9400, bcdDevice= 0.00 [ 1379.723540][ T970] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1379.736405][T10904] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 1379.777879][ T970] usb 9-1: config 0 descriptor?? [ 1379.935143][T10909] dummy0 speed is unknown, defaulting to 1000 [ 1380.269675][ T970] stadia 0003:18D1:9400.0014: hidraw0: USB HID v0.04 Device [HID 18d1:9400] on usb-dummy_hcd.8-1/input0 [ 1380.289680][ T970] stadia 0003:18D1:9400.0014: no inputs found [ 1380.295782][ T970] stadia 0003:18D1:9400.0014: force feedback init failed [ 1380.349551][T10925] overlayfs: conflicting options: userxattr,redirect_dir=on [ 1380.494413][ T970] usb 9-1: USB disconnect, device number 14 [ 1380.697310][T10938] MTD: Couldn't look up 'memory.events': -15 [ 1380.705358][T10936] loop9: detected capacity change from 0 to 512 [ 1380.718900][T10926] fido_id[10926]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.8/usb9/report_descriptor': No such file or directory [ 1380.773267][T10936] EXT4-fs (loop9): feature flags set on rev 0 fs, running e2fsck is recommended [ 1380.838927][T10936] EXT4-fs (loop9): mounting ext2 file system using the ext4 subsystem [ 1380.888096][T10933] netlink: 'syz.1.16187': attribute type 1 has an invalid length. [ 1380.898357][T10936] EXT4-fs (loop9): warning: mounting unchecked fs, running e2fsck is recommended [ 1380.959773][T10936] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a002e01c, mo2=0006] [ 1381.016367][T10936] System zones: 0-2, 18-18, 34-35 [ 1381.059252][T10936] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1381.290400][ T8401] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1381.509785][T10956] loop9: detected capacity change from 0 to 512 [ 1381.573316][T10956] EXT4-fs (loop9): mounting ext3 file system using the ext4 subsystem [ 1381.606083][T10922] loop4: detected capacity change from 0 to 40427 [ 1381.634662][T10956] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8042c118, mo2=0002] [ 1381.648670][T10922] F2FS-fs (loop4): build fault injection attr: rate: 771, type: 0x3fffff [ 1381.727579][T10956] EXT4-fs error (device loop9): ext4_iget_extra_inode:4693: inode #15: comm syz.9.16196: corrupted in-inode xattr: e_value size too large [ 1381.756811][T10922] F2FS-fs (loop4): invalid crc value [ 1381.790109][T10965] loop7: detected capacity change from 0 to 64 [ 1381.834233][T10969] overlayfs: conflicting options: nfs_export=on,metacopy=on [ 1381.845558][T10956] EXT4-fs error (device loop9): ext4_orphan_get:1396: comm syz.9.16196: couldn't read orphan inode 15 (err -117) [ 1381.917475][T10956] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1382.149633][T10922] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5 [ 1382.174967][ T8401] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1382.388101][T10918] Bluetooth: hci4: command 0x0406 tx timeout [ 1382.440518][T10984] tipc: Started in network mode [ 1382.467102][T10984] tipc: Node identity b63df8ed17d2, cluster identity 4711 [ 1382.508912][T10984] tipc: Enabled bearer , priority 10 [ 1383.174690][T11008] sg_write: data in/out 124/1 bytes for SCSI command 0x1c-- guessing data in; [ 1383.174690][T11008] program syz.4.16219 not setting count and/or reply_len properly [ 1383.630620][T11022] netlink: 204 bytes leftover after parsing attributes in process `syz.4.16226'. [ 1383.720618][ T970] tipc: Node number set to 2716858605 [ 1383.941079][T11030] loop4: detected capacity change from 0 to 1024 [ 1384.004230][T11030] EXT4-fs: Ignoring removed orlov option [ 1384.092591][T11030] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1384.233229][T11039] loop1: detected capacity change from 0 to 256 [ 1384.329169][T11043] xt_NFQUEUE: number of queues (32767) out of range (got 96758) [ 1384.400826][T11045] loop9: detected capacity change from 0 to 8 [ 1384.455878][T11018] loop8: detected capacity change from 0 to 32768 [ 1384.464173][T11045] SQUASHFS error: zstd decompression error: 10 [ 1384.465210][T11039] FAT-fs (loop1): Directory bread(block 64) failed [ 1384.488146][T11039] FAT-fs (loop1): Directory bread(block 65) failed [ 1384.495167][ T5841] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1384.523526][T11039] FAT-fs (loop1): Directory bread(block 66) failed [ 1384.534007][T11045] SQUASHFS error: zstd decompression failed, data probably corrupt [ 1384.541901][T11039] FAT-fs (loop1): Directory bread(block 67) failed [ 1384.542027][T11039] FAT-fs (loop1): Directory bread(block 68) failed [ 1384.569857][T11039] FAT-fs (loop1): Directory bread(block 69) failed [ 1384.580402][T11039] FAT-fs (loop1): Directory bread(block 70) failed [ 1384.587236][T11039] FAT-fs (loop1): Directory bread(block 71) failed [ 1384.593943][T11039] FAT-fs (loop1): Directory bread(block 72) failed [ 1384.602609][T11039] FAT-fs (loop1): Directory bread(block 73) failed [ 1384.620598][T11018] XFS (loop8): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb [ 1384.634602][T11045] SQUASHFS error: Failed to read block 0x60: -5 [ 1384.642073][T11045] SQUASHFS error: zstd decompression error: 10 [ 1384.676503][T11045] SQUASHFS error: zstd decompression failed, data probably corrupt [ 1384.725753][T11045] SQUASHFS error: Failed to read block 0x60: -5 [ 1384.774377][T11018] XFS (loop8): Ending clean mount [ 1384.788800][T11018] XFS (loop8): Quotacheck needed: Please wait. [ 1384.810925][ T30] kauditd_printk_skb: 7 callbacks suppressed [ 1384.810942][ T30] audit: type=1326 audit(3871.506:2211): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11059 comm="syz.4.16238" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1eb898e969 code=0x7ffc0000 [ 1384.923269][ T30] audit: type=1326 audit(3871.506:2212): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11059 comm="syz.4.16238" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1eb898e969 code=0x7ffc0000 [ 1384.948870][T11018] XFS (loop8): Quotacheck: Done. [ 1385.004533][T11057] loop7: detected capacity change from 0 to 4096 [ 1385.068399][T11057] ntfs3(loop7): Different NTFS sector size (4096) and media sector size (512). [ 1385.101061][ T30] audit: type=1326 audit(3871.515:2213): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11059 comm="syz.4.16238" exe="/root/syz-executor" sig=0 arch=c000003e syscall=322 compat=0 ip=0x7f1eb898e969 code=0x7ffc0000 [ 1385.167030][ T4380] XFS (loop8): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb [ 1385.203021][T11065] siw: device registration error -23 [ 1385.258016][ T30] audit: type=1326 audit(3871.515:2214): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11059 comm="syz.4.16238" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1eb898e969 code=0x7ffc0000 [ 1385.317128][ T30] audit: type=1326 audit(3871.515:2215): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11059 comm="syz.4.16238" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1eb898e969 code=0x7ffc0000 [ 1385.361689][T11057] ntfs3(loop7): ino=19, mi_enum_attr [ 1385.391117][T11071] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 1385.412536][T11057] ntfs3(loop7): Mark volume as dirty due to NTFS errors [ 1386.238274][T11095] loop9: detected capacity change from 0 to 2048 [ 1386.312824][T11100] NILFS (loop9): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 1386.484376][T11104] loop7: detected capacity change from 0 to 1024 [ 1386.900219][T11115] loop1: detected capacity change from 0 to 4096 [ 1387.619012][ T5930] kernel write not supported for file /dsp1 (pid: 5930 comm: kworker/1:5) [ 1388.001851][T11154] loop4: detected capacity change from 0 to 512 [ 1388.018880][ T5930] usb 9-1: new high-speed USB device number 15 using dummy_hcd [ 1388.101372][T11154] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1388.204474][ T5930] usb 9-1: Using ep0 maxpacket: 32 [ 1388.235914][ T5930] usb 9-1: config 2 has an invalid descriptor of length 0, skipping remainder of the config [ 1388.253184][T11164] loop1: detected capacity change from 0 to 256 [ 1388.321302][ T5930] usb 9-1: New USB device found, idVendor=3344, idProduct=22f0, bcdDevice=ef.4d [ 1388.332295][ T5930] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1388.343730][ T5930] usb 9-1: Product: syz [ 1388.348372][ T5930] usb 9-1: Manufacturer: syz [ 1388.352993][ T5930] usb 9-1: SerialNumber: syz [ 1388.430952][ T5841] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1388.530969][T11168] loop9: detected capacity change from 0 to 4096 [ 1388.611383][ T5930] usb 9-1: selecting invalid altsetting 1 [ 1388.618410][T11168] EXT4-fs (loop9): Test dummy encryption mode enabled [ 1388.644736][T11168] [EXT4 FS bs=4096, gc=1, bpg=524288, ipg=32, mo=a042c018, mo2=0003] [ 1388.708170][T11168] System zones: 0-5 [ 1388.736402][T11168] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1388.823087][ T5930] LME2510(C): Firmware Status: 06 03 dc 7b 91 0d [ 1388.823207][ T5930] dvb_usb_lmedm04 9-1:2.0: probe with driver dvb_usb_lmedm04 failed with error -22 [ 1389.019434][ T8401] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1389.064446][ T10] usb 9-1: USB disconnect, device number 15 [ 1389.415541][ T970] usb 2-1: new high-speed USB device number 10 using dummy_hcd [ 1389.599588][ T970] usb 2-1: Using ep0 maxpacket: 32 [ 1389.619758][T11182] loop4: detected capacity change from 0 to 32768 [ 1389.638513][ T970] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 1389.686674][T11182] ocfs2: Slot 0 on device (7,4) was already allocated to this node! [ 1389.694936][ T970] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 1389.772460][ T970] usb 2-1: New USB device found, idVendor=0e8f, idProduct=0012, bcdDevice= 0.00 [ 1389.814553][T11182] ocfs2: Mounting device (7,4) on (node local, slot 0) with ordered data mode. [ 1389.828789][ T970] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1389.871093][ T970] usb 2-1: config 0 descriptor?? [ 1390.025965][ T5841] ocfs2: Unmounting device (7,4) on (node local) [ 1390.402575][ T970] greenasia 0003:0E8F:0012.0015: hidraw0: USB HID v0.00 Device [HID 0e8f:0012] on usb-dummy_hcd.1-1/input0 [ 1390.426175][ T970] greenasia 0003:0E8F:0012.0015: no inputs found [ 1390.592232][ T5930] usb 2-1: USB disconnect, device number 10 [ 1390.690694][T11204] fido_id[11204]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.1/usb2/report_descriptor': No such file or directory [ 1390.740293][T11193] loop9: detected capacity change from 0 to 32768 [ 1390.857303][T11193] XFS (loop9): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb [ 1390.884325][T11220] loop4: detected capacity change from 0 to 256 [ 1390.934120][T11220] exfat: Deprecated parameter 'utf8' [ 1390.976432][T11220] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0x36e00b20, utbl_chksum : 0xe619d30d) [ 1391.014511][T11193] XFS (loop9): Ending clean mount [ 1391.351135][T11228] netlink: 8 bytes leftover after parsing attributes in process `syz.0.16314'. [ 1391.382251][ T8401] XFS (loop9): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb [ 1391.701342][ T970] usb 5-1: new low-speed USB device number 20 using dummy_hcd [ 1391.737885][T11236] loop8: detected capacity change from 0 to 1024 [ 1391.766020][T11240] devtmpfs: Cannot change global quota limit on remount [ 1391.867616][ T970] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10 [ 1391.912150][ T970] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 1391.959911][ T970] usb 5-1: New USB device found, idVendor=0c70, idProduct=f0bd, bcdDevice= 0.00 [ 1392.008002][ T970] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1392.029693][ T36] hfsplus: b-tree write err: -5, ino 4 [ 1392.095902][ T970] usb 5-1: config 0 descriptor?? [ 1392.471973][T11260] hsr_slave_0: hsr_addr_subst_dest: Unknown node [ 1392.478954][T11260] hsr_slave_1: hsr_addr_subst_dest: Unknown node [ 1392.532012][T11260] hsr_slave_0: hsr_addr_subst_dest: Unknown node [ 1392.538497][T11260] hsr_slave_1: hsr_addr_subst_dest: Unknown node [ 1392.567399][T11260] hsr_slave_0: hsr_addr_subst_dest: Unknown node [ 1392.573871][T11260] hsr_slave_1: hsr_addr_subst_dest: Unknown node [ 1392.602218][ T970] aquacomputer_d5next 0003:0C70:F0BD.0016: hidraw0: USB HID v0.00 Device [HID 0c70:f0bd] on usb-dummy_hcd.4-1/input0 [ 1392.629945][T11260] hsr_slave_0: hsr_addr_subst_dest: Unknown node [ 1392.636413][T11260] hsr_slave_1: hsr_addr_subst_dest: Unknown node [ 1392.668967][T11260] hsr_slave_0: hsr_addr_subst_dest: Unknown node [ 1392.676904][T11260] hsr_slave_1: hsr_addr_subst_dest: Unknown node [ 1392.784516][ T970] usb 5-1: USB disconnect, device number 20 [ 1392.926989][T11267] fido_id[11267]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.4/usb5/report_descriptor': No such file or directory [ 1393.031278][T11275] loop7: detected capacity change from 0 to 2048 [ 1393.050014][T11279] netlink: 11320 bytes leftover after parsing attributes in process `syz.9.16337'. [ 1393.075240][ T5889] usb 9-1: new high-speed USB device number 16 using dummy_hcd [ 1393.119227][T11282] NILFS (loop7): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 1393.269909][ T5889] usb 9-1: Using ep0 maxpacket: 16 [ 1393.288206][ T5889] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 1393.318107][ T5889] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 1393.368410][ T5889] usb 9-1: New USB device found, idVendor=06a3, idProduct=0ccb, bcdDevice= 0.00 [ 1393.396939][ T5889] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1393.402289][T11288] loop9: detected capacity change from 0 to 1024 [ 1393.429494][ T5889] usb 9-1: config 0 descriptor?? [ 1393.595872][ T36] hfsplus: b-tree write err: -5, ino 4 [ 1393.737869][T11298] netlink: 8 bytes leftover after parsing attributes in process `syz.9.16344'. [ 1393.753248][T11296] netdevsim netdevsim7 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0 [ 1393.762960][T11296] netdevsim netdevsim7 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0 [ 1393.772250][T11296] netdevsim netdevsim7 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0 [ 1393.782303][T11296] netdevsim netdevsim7 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0 [ 1393.959718][ T5889] saitek 0003:06A3:0CCB.0017: hidraw0: USB HID v0.00 Device [HID 06a3:0ccb] on usb-dummy_hcd.8-1/input0 [ 1394.007102][T11299] [U] ^C [ 1394.180940][ T5889] usb 9-1: USB disconnect, device number 16 [ 1394.215630][T11301] fido_id[11301]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.8/usb9/9-1/report_descriptor': No such file or directory [ 1394.386984][ T30] audit: type=1326 audit(3880.345:2216): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11311 comm="syz.4.16352" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1eb898e969 code=0x7ffc0000 [ 1394.424183][ T30] audit: type=1326 audit(3880.345:2217): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11311 comm="syz.4.16352" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1eb898e969 code=0x7ffc0000 [ 1394.506765][ T30] audit: type=1326 audit(3880.354:2218): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11311 comm="syz.4.16352" exe="/root/syz-executor" sig=0 arch=c000003e syscall=278 compat=0 ip=0x7f1eb898e969 code=0x7ffc0000 [ 1394.515291][T11289] loop1: detected capacity change from 0 to 32768 [ 1394.543474][ T30] audit: type=1326 audit(3880.354:2219): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11311 comm="syz.4.16352" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1eb898e969 code=0x7ffc0000 [ 1394.565475][ C0] vkms_vblank_simulate: vblank timer overrun [ 1394.574951][ T30] audit: type=1326 audit(3880.354:2220): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11311 comm="syz.4.16352" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1eb898e969 code=0x7ffc0000 [ 1394.632131][T11289] ERROR: (device loop1): dbAlloc: unable to allocate blocks [ 1394.632131][T11289] [ 1394.664379][T11289] ERROR: (device loop1): remounting filesystem as read-only [ 1394.829502][ T5930] usb 5-1: new high-speed USB device number 21 using dummy_hcd [ 1394.875778][T11322] loop8: detected capacity change from 0 to 64 [ 1394.992126][ T5930] usb 5-1: Using ep0 maxpacket: 32 [ 1395.008818][ T5930] usb 5-1: unable to get BOS descriptor or descriptor too short [ 1395.042941][ T5930] usb 5-1: config 128 has an invalid interface number: 127 but max is 3 [ 1395.067462][ T5930] usb 5-1: config 128 has an invalid descriptor of length 0, skipping remainder of the config [ 1395.119567][ T5930] usb 5-1: config 128 has 1 interface, different from the descriptor's value: 4 [ 1395.177993][ T5930] usb 5-1: config 128 has no interface number 0 [ 1395.215443][ T5930] usb 5-1: config 128 interface 127 altsetting 14 endpoint 0x5 has an invalid bInterval 0, changing to 7 [ 1395.263982][ T5930] usb 5-1: config 128 interface 127 altsetting 14 endpoint 0x5 has invalid wMaxPacketSize 0 [ 1395.310529][ T5930] usb 5-1: config 128 interface 127 has no altsetting 0 [ 1395.324529][T11332] netlink: 12 bytes leftover after parsing attributes in process `syz.7.16362'. [ 1395.360123][ T5930] usb 5-1: language id specifier not provided by device, defaulting to English [ 1395.412085][ T5930] usb 5-1: New USB device found, idVendor=0582, idProduct=295c, bcdDevice=d4.55 [ 1395.451722][ T5930] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1395.492749][ T5930] usb 5-1: Product: syz [ 1395.496943][ T5930] usb 5-1: Manufacturer: syz [ 1395.520036][ T5930] usb 5-1: SerialNumber: syz [ 1395.578905][T11336] loop8: detected capacity change from 0 to 4096 [ 1395.882971][ T5930] usb 5-1: USB disconnect, device number 21 [ 1395.901367][ T24] usb 2-1: new high-speed USB device number 11 using dummy_hcd [ 1395.968207][ T5848] udevd[5848]: error opening ATTR{/sys/devices/platform/dummy_hcd.4/usb5/5-1/5-1:128.127/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 1396.067883][T11352] loop8: detected capacity change from 0 to 2048 [ 1396.105157][ T24] usb 2-1: config 0 interface 0 altsetting 1 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 1396.108693][T11352] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 1396.125878][ T24] usb 2-1: config 0 interface 0 altsetting 1 endpoint 0x81 has invalid wMaxPacketSize 0 [ 1396.145673][ T24] usb 2-1: config 0 interface 0 altsetting 1 has 1 endpoint descriptor, different from the interface descriptor's value: 5 [ 1396.161145][ T24] usb 2-1: config 0 interface 0 has no altsetting 0 [ 1396.171235][ T24] usb 2-1: New USB device found, idVendor=1ea7, idProduct=0907, bcdDevice= 0.00 [ 1396.196823][ T24] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1396.248876][ T24] usb 2-1: config 0 descriptor?? [ 1396.733471][ T24] semitek 0003:1EA7:0907.0018: item fetching failed at offset 6/7 [ 1396.779485][ T24] semitek 0003:1EA7:0907.0018: probe with driver semitek failed with error -22 [ 1396.936041][T11378] loop7: detected capacity change from 0 to 64 [ 1396.937911][ T24] usb 2-1: USB disconnect, device number 11 [ 1397.747305][T11405] usb usb8: usbfs: process 11405 (syz.7.16399) did not claim interface 0 before use [ 1398.730363][T11447] loop1: detected capacity change from 0 to 256 [ 1399.129306][T11464] loop1: detected capacity change from 0 to 256 [ 1399.191379][T11464] exFAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 1399.264367][T11464] exFAT-fs (loop1): Medium has reported failures. Some data may be lost. [ 1399.319383][T11472] loop4: detected capacity change from 0 to 512 [ 1399.348236][T11464] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d) [ 1399.446132][ T30] audit: type=1800 audit(3885.009:2221): pid=11464 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.16424" name="file1" dev="loop1" ino=1048880 res=0 errno=0 [ 1399.505000][T11472] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1399.524334][T11471] loop9: detected capacity change from 0 to 4096 [ 1399.551373][T11471] ntfs3(loop9): Different NTFS sector size (2048) and media sector size (512). [ 1399.759067][ T5841] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1399.789322][T11483] loop1: detected capacity change from 0 to 256 [ 1399.867854][T11483] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0xd137a500, utbl_chksum : 0xe619d30d) [ 1400.229122][T11496] loop8: detected capacity change from 0 to 512 [ 1400.232949][T11494] netlink: 332 bytes leftover after parsing attributes in process `syz.0.16438'. [ 1400.421961][T11496] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1400.426129][T11501] loop4: detected capacity change from 0 to 1024 [ 1400.531167][T11501] EXT4-fs: Ignoring removed bh option [ 1400.624686][T11501] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1400.748288][ T4380] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1400.929403][ T5841] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1401.233042][T11533] loop8: detected capacity change from 0 to 256 [ 1401.907907][T11559] netlink: 4 bytes leftover after parsing attributes in process `syz.4.16468'. [ 1402.338161][T11576] loop9: detected capacity change from 0 to 8 [ 1402.354588][T11578] netlink: 8 bytes leftover after parsing attributes in process `syz.4.16478'. [ 1402.399583][T11576] SQUASHFS error: Failed to read block 0x1ec: -5 [ 1402.405926][T11576] SQUASHFS error: Unable to read metadata cache entry [1ea] [ 1402.457561][T11576] SQUASHFS error: Unable to read metadata cache entry [1ea] [ 1402.992924][ T10] usb 2-1: new high-speed USB device number 12 using dummy_hcd [ 1403.079430][ T5891] usb 9-1: new high-speed USB device number 17 using dummy_hcd [ 1403.178402][ T10] usb 2-1: Using ep0 maxpacket: 32 [ 1403.199567][ T10] usb 2-1: config 4 has an invalid descriptor of length 0, skipping remainder of the config [ 1403.219531][T11600] loop4: detected capacity change from 0 to 4096 [ 1403.252527][ T5891] usb 9-1: Using ep0 maxpacket: 32 [ 1403.253978][ T10] usb 2-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40 [ 1403.268365][ T5891] usb 9-1: config 0 has an invalid interface number: 35 but max is 0 [ 1403.290113][ T10] usb 2-1: New USB device strings: Mfr=10, Product=131, SerialNumber=0 [ 1403.294344][ T5891] usb 9-1: config 0 has no interface number 0 [ 1403.306748][ T10] usb 2-1: Product: syz [ 1403.317282][ T10] usb 2-1: Manufacturer: syz [ 1403.330375][ T10] hub 2-1:4.0: bad descriptor, ignoring hub [ 1403.356768][ T5891] usb 9-1: New USB device found, idVendor=10c4, idProduct=818a, bcdDevice=7d.8f [ 1403.360801][ T10] hub 2-1:4.0: probe with driver hub failed with error -5 [ 1403.376853][ T5891] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1403.396630][ T5891] usb 9-1: Product: syz [ 1403.405054][T11604] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 1403.434122][ T5891] usb 9-1: Manufacturer: syz [ 1403.439974][ T5891] usb 9-1: SerialNumber: syz [ 1403.478142][ T5891] usb 9-1: config 0 descriptor?? [ 1403.509401][ T5891] radio-si470x 9-1:0.35: could not find interrupt in endpoint [ 1403.521044][ T5891] radio-si470x 9-1:0.35: probe with driver radio-si470x failed with error -5 [ 1403.733697][ T5891] radio-raremono 9-1:0.35: Thanko's Raremono connected: (10C4:818A) [ 1403.797135][T11613] netlink: 224 bytes leftover after parsing attributes in process `syz.9.16493'. [ 1403.937359][ T24] usb 2-1: reset high-speed USB device number 12 using dummy_hcd [ 1403.968745][ T5891] radio-raremono 9-1:0.35: V4L2 device registered as radio48 [ 1404.157270][T11623] netlink: 'syz.9.16499': attribute type 1 has an invalid length. [ 1404.180698][T11623] netlink: 248 bytes leftover after parsing attributes in process `syz.9.16499'. [ 1404.239649][ T10] usb 9-1: USB disconnect, device number 17 [ 1404.254941][ T10] radio-raremono 9-1:0.35: Thanko's Raremono disconnected [ 1404.304797][ T5848] udevd[5848]: setting owner of /dev/radio48 to uid=0, gid=28 failed: No such file or directory [ 1404.465955][T11632] smc: net device ip6tnl0 applied user defined pnetid SYZ1 [ 1404.541082][ T5889] usb 2-1: USB disconnect, device number 12 [ 1405.027086][T11650] MTD: Couldn't look up 'memory.events': -15 [ 1405.357191][T11658] dummy0 speed is unknown, defaulting to 1000 [ 1405.544796][T11670] tipc: Started in network mode [ 1405.570588][T11670] tipc: Node identity ee518aef740a, cluster identity 4711 [ 1405.594821][T11670] tipc: Enabled bearer , priority 10 [ 1405.681148][T11626] loop4: detected capacity change from 0 to 40427 [ 1405.777823][T11626] F2FS-fs (loop4): invalid crc value [ 1406.108703][T11687] netlink: 392 bytes leftover after parsing attributes in process `syz.0.16527'. [ 1406.133803][T11626] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5 [ 1406.168181][T11686] loop9: detected capacity change from 0 to 1024 [ 1406.270352][T11686] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1406.417228][ T5841] syz-executor: attempt to access beyond end of device [ 1406.417228][ T5841] loop4: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 1406.479133][ T5841] CPU: 1 UID: 0 PID: 5841 Comm: syz-executor Not tainted 6.15.0-rc7-syzkaller-00144-gb1427432d3b6 #0 PREEMPT(full) [ 1406.479166][ T5841] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 1406.479182][ T5841] Call Trace: [ 1406.479192][ T5841] [ 1406.479203][ T5841] dump_stack_lvl+0x189/0x250 [ 1406.479248][ T5841] ? __pfx_dump_stack_lvl+0x10/0x10 [ 1406.479285][ T5841] ? __pfx_queue_work_on+0x10/0x10 [ 1406.479317][ T5841] ? _raw_spin_unlock_irqrestore+0xad/0x110 [ 1406.479347][ T5841] ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10 [ 1406.479378][ T5841] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1406.479417][ T5841] f2fs_handle_critical_error+0x37c/0x540 [ 1406.479454][ T5841] f2fs_write_end_io+0x4e2/0x6d0 [ 1406.479506][ T5841] __submit_merged_bio+0x27a/0x6a0 [ 1406.479541][ T5841] __submit_merged_write_cond+0x255/0x530 [ 1406.479578][ T5841] f2fs_write_data_pages+0x2854/0x31f0 [ 1406.479609][ T5841] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1406.479678][ T5841] ? __pfx_f2fs_write_data_pages+0x10/0x10 [ 1406.479772][ T5841] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1406.479799][ T5841] ? __lock_acquire+0xaac/0xd20 [ 1406.479854][ T5841] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1406.479882][ T5841] ? __lock_acquire+0xaac/0xd20 [ 1406.479927][ T5841] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1406.479969][ T5841] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1406.479997][ T5841] ? do_raw_spin_unlock+0x122/0x240 [ 1406.480028][ T5841] ? __pfx_f2fs_write_data_pages+0x10/0x10 [ 1406.480060][ T5841] do_writepages+0x3b1/0x7b0 [ 1406.480114][ T5841] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1406.480142][ T5841] ? do_raw_spin_lock+0x121/0x290 [ 1406.480170][ T5841] ? __pfx_do_writepages+0x10/0x10 [ 1406.480208][ T5841] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1406.480242][ T5841] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1406.480269][ T5841] ? do_raw_spin_unlock+0x122/0x240 [ 1406.480310][ T5841] filemap_fdatawrite+0x191/0x230 [ 1406.480346][ T5841] ? __pfx_filemap_fdatawrite+0x10/0x10 [ 1406.480432][ T5841] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1406.480466][ T5841] ? do_raw_spin_unlock+0x122/0x240 [ 1406.480502][ T5841] f2fs_sync_dirty_inodes+0x31f/0x830 [ 1406.480554][ T5841] f2fs_write_checkpoint+0x94a/0x1de0 [ 1406.480618][ T5841] ? __pfx_f2fs_write_checkpoint+0x10/0x10 [ 1406.480702][ T5841] ? f2fs_stop_gc_thread+0x7f/0xb0 [ 1406.480736][ T5841] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1406.480763][ T5841] ? kfree+0x193/0x440 [ 1406.480795][ T5841] ? kill_f2fs_super+0x298/0x6c0 [ 1406.480835][ T5841] kill_f2fs_super+0x2c3/0x6c0 [ 1406.480877][ T5841] ? __pfx_kill_f2fs_super+0x10/0x10 [ 1406.480908][ T5841] ? radix_tree_delete_item+0x2b6/0x400 [ 1406.480947][ T5841] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1406.480974][ T5841] ? shrinker_free+0x2ce/0x3e0 [ 1406.481004][ T5841] deactivate_locked_super+0xbc/0x130 [ 1406.481033][ T5841] cleanup_mnt+0x425/0x4c0 [ 1406.481056][ T5841] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1406.481084][ T5841] ? lockdep_hardirqs_on+0x9c/0x150 [ 1406.481119][ T5841] task_work_run+0x1d4/0x260 [ 1406.481158][ T5841] ? __pfx_task_work_run+0x10/0x10 [ 1406.481192][ T5841] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1406.481233][ T5841] resume_user_mode_work+0x5e/0x80 [ 1406.481270][ T5841] syscall_exit_to_user_mode+0x9a/0x120 [ 1406.481307][ T5841] do_syscall_64+0x103/0x210 [ 1406.481340][ T5841] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1406.481368][ T5841] ? exc_page_fault+0x91/0x110 [ 1406.481402][ T5841] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1406.481426][ T5841] RIP: 0033:0x7f1eb898fc97 [ 1406.481447][ T5841] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8 [ 1406.481467][ T5841] RSP: 002b:00007ffcbdbe8038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6 [ 1406.481493][ T5841] RAX: 0000000000000000 RBX: 00007f1eb8a1089d RCX: 00007f1eb898fc97 [ 1406.481511][ T5841] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffcbdbe80f0 [ 1406.481526][ T5841] RBP: 00007ffcbdbe80f0 R08: 0000000000000000 R09: 0000000000000000 [ 1406.481542][ T5841] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffcbdbe9180 [ 1406.481559][ T5841] R13: 00007f1eb8a1089d R14: 0000000000140a4e R15: 00007ffcbdbe91c0 [ 1406.481598][ T5841] [ 1406.481609][ T5841] F2FS-fs (loop4): Stopped filesystem due to reason: 3 [ 1406.582950][ T8401] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1406.713404][T11668] loop7: detected capacity change from 0 to 32768 [ 1406.849030][ T10] tipc: Node number set to 2589690607 [ 1407.000208][ T24] kernel write not supported for file /5560/attr/exec (pid: 24 comm: kworker/1:0) [ 1407.094167][T11668] ocfs2: Mounting device (7,7) on (node local, slot 0) with ordered data mode. [ 1407.203478][T11668] (syz.7.16532,11668,0):ocfs2_reflink_ioctl:4417 ERROR: status = -14 [ 1407.423110][T27483] ocfs2: Unmounting device (7,7) on (node local) [ 1407.426633][T11722] sg_write: data in/out 124/1 bytes for SCSI command 0x1c-- guessing data in; [ 1407.426633][T11722] program syz.8.16539 not setting count and/or reply_len properly [ 1407.659135][ T10] usb 2-1: new high-speed USB device number 13 using dummy_hcd [ 1407.856108][ T10] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 94, changing to 10 [ 1407.889398][ T10] usb 2-1: New USB device found, idVendor=18d1, idProduct=9400, bcdDevice= 0.00 [ 1407.912231][T11734] loop7: detected capacity change from 0 to 1024 [ 1407.940599][ T10] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1407.942464][T11734] EXT4-fs: Ignoring removed orlov option [ 1407.995760][ T10] usb 2-1: config 0 descriptor?? [ 1408.036689][T11734] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1408.057693][T11732] loop8: detected capacity change from 0 to 4096 [ 1408.172785][T11732] ntfs3(loop8): Different NTFS sector size (4096) and media sector size (512). [ 1408.383062][T27483] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1408.392149][T11732] ntfs3(loop8): ino=19, mi_enum_attr [ 1408.392183][T11732] ntfs3(loop8): Mark volume as dirty due to NTFS errors [ 1408.492913][ T10] stadia 0003:18D1:9400.0019: hidraw0: USB HID v0.04 Device [HID 18d1:9400] on usb-dummy_hcd.1-1/input0 [ 1408.553891][ T10] stadia 0003:18D1:9400.0019: no inputs found [ 1408.574720][ T10] stadia 0003:18D1:9400.0019: force feedback init failed [ 1408.731098][ T5891] usb 10-1: new high-speed USB device number 9 using dummy_hcd [ 1408.745956][ T10] usb 2-1: USB disconnect, device number 13 [ 1408.869267][T11746] fido_id[11746]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.1/usb2/report_descriptor': No such file or directory [ 1408.926563][ T5891] usb 10-1: config 0 has too many interfaces: 129, using maximum allowed: 32 [ 1408.943240][ T5891] usb 10-1: config 0 has 1 interface, different from the descriptor's value: 129 [ 1408.987805][ T5891] usb 10-1: New USB device found, idVendor=0856, idProduct=ac31, bcdDevice=93.1e [ 1409.026890][ T5891] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1409.066999][ T5891] usb 10-1: Product: syz [ 1409.078793][ T5891] usb 10-1: Manufacturer: syz [ 1409.094042][ T5891] usb 10-1: SerialNumber: syz [ 1409.116160][ T5891] usb 10-1: config 0 descriptor?? [ 1409.449742][ T30] audit: type=1326 audit(3894.264:2222): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11762 comm="syz.8.16557" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fc5c458e969 code=0x0 [ 1409.483992][ T30] audit: type=1326 audit(3894.264:2223): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11763 comm="syz.0.16558" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe5a3d8e969 code=0x7ffc0000 [ 1409.523295][ T30] audit: type=1326 audit(3894.264:2224): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11763 comm="syz.0.16558" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe5a3d8e969 code=0x7ffc0000 [ 1409.555885][ T30] audit: type=1326 audit(3894.264:2225): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11763 comm="syz.0.16558" exe="/root/syz-executor" sig=0 arch=c000003e syscall=322 compat=0 ip=0x7fe5a3d8e969 code=0x7ffc0000 [ 1409.580421][ T30] audit: type=1326 audit(3894.264:2226): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11763 comm="syz.0.16558" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe5a3d8e969 code=0x7ffc0000 [ 1409.589590][ T5891] mos7840 10-1:0.0: required endpoints missing [ 1409.607081][ T30] audit: type=1326 audit(3894.264:2227): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11763 comm="syz.0.16558" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe5a3d8e969 code=0x7ffc0000 [ 1409.629317][ T5891] usb 10-1: USB disconnect, device number 9 [ 1410.279257][T11769] loop1: detected capacity change from 0 to 32768 [ 1411.048471][T11810] netlink: 232 bytes leftover after parsing attributes in process `syz.4.16578'. [ 1411.059561][T32242] Bluetooth: hci6: command tx timeout [ 1411.527911][ T4371] IPVS: starting estimator thread 0... [ 1411.657013][T11824] IPVS: using max 26 ests per chain, 62400 per kthread [ 1412.181638][T11845] loop8: detected capacity change from 0 to 256 [ 1412.294538][T11854] loop9: detected capacity change from 0 to 512 [ 1412.326637][T11845] exfat: Deprecated parameter 'utf8' [ 1412.397739][T11845] exFAT-fs (loop8): failed to load upcase table (idx : 0x00010000, chksum : 0x11bbdf60, utbl_chksum : 0xe619d30d) [ 1412.410249][T11854] EXT4-fs (loop9): encrypted files will use data=ordered instead of data journaling mode [ 1412.496617][T11854] EXT4-fs error (device loop9): ext4_orphan_get:1417: comm syz.9.16599: bad orphan inode 131083 [ 1412.566696][T11854] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1412.800246][T11869] loop1: detected capacity change from 0 to 1024 [ 1412.825338][ T8401] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1413.077032][T11878] sg_write: data in/out 209152/1 bytes for SCSI command 0xf2-- guessing data in; [ 1413.077032][T11878] program syz.4.16609 not setting count and/or reply_len properly [ 1413.114298][T11879] loop7: detected capacity change from 0 to 512 [ 1413.154353][ T82] hfsplus: b-tree write err: -5, ino 4 [ 1413.229547][T11879] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1413.289345][T11887] netlink: 'syz.8.16612': attribute type 1 has an invalid length. [ 1413.338144][T11891] loop1: detected capacity change from 0 to 256 [ 1413.348719][T11891] exfat: Deprecated parameter 'utf8' [ 1413.358055][T11887] netlink: 'syz.8.16612': attribute type 2 has an invalid length. [ 1413.386527][ C0] ip6_tunnel: ip6tnl3 xmit: Local address not yet configured! [ 1413.403961][T11887] netlink: 1172 bytes leftover after parsing attributes in process `syz.8.16612'. [ 1413.438338][T11891] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x36e00b20, utbl_chksum : 0xe619d30d) [ 1413.547129][T27483] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1413.560944][T11895] program syz.4.16617 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 1414.433921][ T5889] kernel write not supported for file /dsp1 (pid: 5889 comm: kworker/0:4) [ 1414.463176][T11927] overlayfs: conflicting options: nfs_export=on,metacopy=on [ 1414.713084][T11937] loop9: detected capacity change from 0 to 1024 [ 1414.756611][T11937] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1414.887075][T11937] EXT4-fs error (device loop9): ext4_validate_block_bitmap:441: comm syz.9.16637: bg 0: block 88: padding at end of block bitmap is not set [ 1414.925716][T11946] net_ratelimit: 66 callbacks suppressed [ 1414.925733][T11946] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 1415.102780][ T8401] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1416.473916][T11951] loop4: detected capacity change from 0 to 32768 [ 1416.501466][T11951] BTRFS: device fsid e417788f-7a09-42b2-9266-8ddc5d5d35d2 devid 1 transid 8 /dev/loop4 (7:4) scanned by syz.4.16643 (11951) [ 1416.556345][T11951] BTRFS info (device loop4): first mount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2 [ 1416.579178][T11951] BTRFS info (device loop4): using xxhash64 (xxhash64-generic) checksum algorithm [ 1416.634303][T11951] BTRFS info (device loop4): disk space caching is enabled [ 1416.656172][T11951] BTRFS warning (device loop4): space cache v1 is being deprecated and will be removed in a future release, please use -o space_cache=v2 [ 1416.752956][T11970] loop9: detected capacity change from 0 to 8192 [ 1416.907514][T11951] BTRFS info (device loop4): rebuilding free space tree [ 1417.034476][T11951] BTRFS info (device loop4): disabling free space tree [ 1417.046476][T11970] FAT-fs (loop9): error, fat_get_cluster: invalid cluster chain (i_pos 0) [ 1417.055490][T11970] FAT-fs (loop9): Filesystem has been set read-only [ 1417.063159][T11951] BTRFS info (device loop4): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1) [ 1417.111130][T11951] BTRFS info (device loop4): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2) [ 1417.129489][T11993] loop8: detected capacity change from 0 to 256 [ 1417.246705][T11993] exFAT-fs (loop8): failed to load upcase table (idx : 0x00010000, chksum : 0x36e00b20, utbl_chksum : 0xe619d30d) [ 1417.371921][T11951] BTRFS info (device loop4): balance: start -d -m [ 1417.436254][T11951] BTRFS info (device loop4): relocating block group 6881280 flags data|metadata [ 1417.715205][T11951] BTRFS info (device loop4): relocating block group 5242880 flags data|metadata [ 1417.750956][T12000] loop9: detected capacity change from 0 to 2048 [ 1417.834617][T12005] NILFS (loop9): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 1417.889339][T11951] BTRFS info (device loop4): balance: canceled [ 1418.033247][ T5889] usb 9-1: new high-speed USB device number 18 using dummy_hcd [ 1418.099961][ T5841] BTRFS info (device loop4): last unmount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2 [ 1418.249849][ T5889] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 1418.300374][ T5889] usb 9-1: New USB device found, idVendor=1532, idProduct=010d, bcdDevice= 0.00 [ 1418.343857][ T5889] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1418.421491][ T5889] usb 9-1: config 0 descriptor?? [ 1418.966662][ T5889] razer 0003:1532:010D.001A: unknown main item tag 0x2 [ 1419.022326][ T5889] razer 0003:1532:010D.001A: unknown main item tag 0x2 [ 1419.058042][ T5889] razer 0003:1532:010D.001A: unbalanced delimiter at end of report description [ 1419.089457][ T5889] razer 0003:1532:010D.001A: probe with driver razer failed with error -22 [ 1419.152086][ T5889] usb 9-1: USB disconnect, device number 18 [ 1419.231833][T11953] syz.1.16645 (11953): drop_caches: 1 [ 1419.534629][T12038] loop1: detected capacity change from 0 to 256 [ 1419.543910][T12036] usb usb8: usbfs: process 12036 (syz.9.16673) did not claim interface 0 before use [ 1419.588169][T12038] exFAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 1419.630951][T12038] exFAT-fs (loop1): Medium has reported failures. Some data may be lost. [ 1419.720855][T12038] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0xe5674ec2, utbl_chksum : 0xe619d30d) [ 1419.984925][T12013] loop4: detected capacity change from 0 to 32768 [ 1420.211172][T12013] ocfs2: Mounting device (7,4) on (node local, slot 0) with ordered data mode. [ 1420.221936][T12063] netlink: 8 bytes leftover after parsing attributes in process `syz.8.16687'. [ 1420.258689][T12063] netlink: 4 bytes leftover after parsing attributes in process `syz.8.16687'. [ 1420.488697][ T5841] ocfs2: Unmounting device (7,4) on (node local) [ 1420.856639][T12078] loop1: detected capacity change from 0 to 512 [ 1420.910249][T12078] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 1420.920328][ T4371] usb 9-1: new low-speed USB device number 19 using dummy_hcd [ 1420.973522][T12082] netlink: 'syz.7.16696': attribute type 16 has an invalid length. [ 1421.017482][T12078] EXT4-fs (loop1): 1 truncate cleaned up [ 1421.075734][T12078] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1421.116276][T12086] netlink: 'syz.4.16697': attribute type 1 has an invalid length. [ 1421.137269][ T4371] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10 [ 1421.182693][ T4371] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 1421.255246][ T4371] usb 9-1: New USB device found, idVendor=0c70, idProduct=f0bd, bcdDevice= 0.00 [ 1421.297963][ T4371] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1421.342292][ T4371] usb 9-1: config 0 descriptor?? [ 1421.391382][ T5829] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1421.620070][T12047] loop9: detected capacity change from 0 to 32768 [ 1421.725682][T12047] XFS (loop9): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb [ 1421.811322][ T4371] aquacomputer_d5next 0003:0C70:F0BD.001B: hidraw0: USB HID v0.00 Device [HID 0c70:f0bd] on usb-dummy_hcd.8-1/input0 [ 1421.855685][T12047] XFS (loop9): Ending clean mount [ 1421.907949][T12047] XFS (loop9): Quotacheck needed: Please wait. [ 1421.925073][T12116] netlink: 'syz.7.16705': attribute type 62 has an invalid length. [ 1422.045822][ T4371] usb 9-1: USB disconnect, device number 19 [ 1422.063919][T12047] XFS (loop9): Quotacheck: Done. [ 1422.297665][ T8401] XFS (loop9): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb [ 1422.451656][T12120] fido_id[12120]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.8/usb9/report_descriptor': No such file or directory [ 1422.653231][T12134] netlink: 16 bytes leftover after parsing attributes in process `syz.4.16717'. [ 1422.884351][T12139] overlayfs: "xino" feature enabled using 3 upper inode bits. [ 1423.044263][T12145] netlink: 12 bytes leftover after parsing attributes in process `syz.4.16721'. [ 1423.238865][T12152] overlay: Unknown parameter '\/file0' [ 1423.560126][T12162] loop8: detected capacity change from 0 to 2048 [ 1423.573025][T12167] loop9: detected capacity change from 0 to 512 [ 1423.605997][T12170] netlink: 8 bytes leftover after parsing attributes in process `syz.7.16732'. [ 1423.628565][T12162] NILFS (loop8): broken superblock, retrying with spare superblock (blocksize = 1024) [ 1423.635952][T12167] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a846e02c, mo2=0002] [ 1423.665227][T12167] System zones: 1-12 [ 1423.705066][T12167] EXT4-fs error (device loop9): dx_probe:793: inode #2: comm syz.9.16733: Directory hole found for htree index block 0 [ 1423.810210][T12177] NILFS (loop8): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 1423.841261][T12167] EXT4-fs (loop9): Remounting filesystem read-only [ 1423.886497][T12167] EXT4-fs (loop9): Cannot turn on journaled quota: type 0: error -117 [ 1423.918776][T12167] EXT4-fs (loop9): Cannot turn on journaled quota: type 1: error -117 [ 1423.944585][T12167] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1424.223421][ T8401] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1424.708137][T12176] loop4: detected capacity change from 0 to 32768 [ 1424.754114][T12176] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop4 (7:4) scanned by syz.4.16735 (12176) [ 1424.808891][ T10] usb 9-1: new high-speed USB device number 20 using dummy_hcd [ 1424.836510][T12202] loop1: detected capacity change from 0 to 4096 [ 1424.843556][T12176] BTRFS info (device loop4): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 1424.868096][T12176] BTRFS info (device loop4): using sha256 (sha256-ni) checksum algorithm [ 1424.876993][T12202] ntfs3(loop1): Primary boot: invalid bytes per MFT record 0 (0). [ 1424.891152][T12204] loop9: detected capacity change from 0 to 4096 [ 1424.900710][T12176] BTRFS info (device loop4): using free-space-tree [ 1424.932539][T12202] ntfs3(loop1): try to read out of volume at offset 0x1ffe00 [ 1424.993399][ T10] usb 9-1: Using ep0 maxpacket: 8 [ 1425.014388][ T10] usb 9-1: unable to get BOS descriptor or descriptor too short [ 1425.038424][T12202] netlink: 8 bytes leftover after parsing attributes in process `syz.1.16746'. [ 1425.063823][T12202] netlink: 12 bytes leftover after parsing attributes in process `syz.1.16746'. [ 1425.066417][ T10] usb 9-1: config 4 interface 0 has no altsetting 0 [ 1425.095734][ T10] usb 9-1: string descriptor 0 read error: -22 [ 1425.106609][ T10] usb 9-1: New USB device found, idVendor=058f, idProduct=6610, bcdDevice=48.05 [ 1425.117776][ T10] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1425.159647][T12204] ntfs3(loop9): Mark volume as dirty due to NTFS errors [ 1425.222209][T12204] ntfs3(loop9): Failed to load $Extend (-22). [ 1425.226452][ T10] usb 9-1: dvb_usb_v2: found a 'Sigmatek DVB-110' in warm state [ 1425.245917][T12204] ntfs3(loop9): Failed to initialize $Extend. [ 1425.310079][ T10] usb 9-1: dvb_usb_v2: will pass the complete MPEG2 transport stream to the software demuxer [ 1425.382996][ T10] dvbdev: DVB: registering new adapter (Sigmatek DVB-110) [ 1425.393649][ T10] usb 9-1: media controller created [ 1425.520859][ T10] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered. [ 1425.529682][ T13] BTRFS info (device loop4): qgroup scan completed (inconsistency flag cleared) [ 1425.682047][ T5841] BTRFS info (device loop4): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 1425.705972][ T10] zl10353_read_register: readreg error (reg=127, ret==0) [ 1425.737095][T12204] ntfs3: Cannot use different iocharset when remounting! [ 1425.898138][ T10] usb 9-1: USB disconnect, device number 20 [ 1426.606602][T12250] loop8: detected capacity change from 0 to 1024 [ 1426.616005][T12250] EXT4-fs: Ignoring removed bh option [ 1426.664609][T12255] dummy0 speed is unknown, defaulting to 1000 [ 1426.697327][T12250] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1426.840632][T12250] EXT4-fs error (device loop8): ext4_xattr_set_entry:1660: inode #15: comm syz.8.16763: corrupted xattr entries [ 1426.885232][T12250] EXT4-fs (loop8): Remounting filesystem read-only [ 1426.915007][T12250] EXT4-fs warning (device loop8): ext4_xattr_block_set:2190: inode #19: comm syz.8.16763: dec ref error=-30 [ 1427.275863][ T4380] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1427.546865][T12283] loop1: detected capacity change from 0 to 2048 [ 1427.571503][T12283] UDF-fs: error (device loop1): udf_read_tagged: tag checksum failed, block 99: 0x27 != 0x4d [ 1427.594908][T12283] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 1427.845602][T12260] loop7: detected capacity change from 0 to 32768 [ 1427.857455][T12291] loop1: detected capacity change from 0 to 64 [ 1427.889731][T12260] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop7 (7:7) scanned by syz.7.16766 (12260) [ 1427.970372][T12260] BTRFS info (device loop7): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 1428.009129][T12260] BTRFS info (device loop7): using sha256 (sha256-ni) checksum algorithm [ 1428.047575][T12260] BTRFS info (device loop7): using free-space-tree [ 1428.372409][T12320] loop9: detected capacity change from 0 to 1024 [ 1428.605214][ T36] hfsplus: b-tree write err: -5, ino 4 [ 1428.620237][T30123] BTRFS info (device loop7): qgroup scan completed (inconsistency flag cleared) [ 1428.735680][T27483] BTRFS info (device loop7): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 1428.839170][T12330] tipc: Enabling of bearer rejected, failed to enable media [ 1429.443534][ T24] usb 10-1: new high-speed USB device number 10 using dummy_hcd [ 1429.616454][ T24] usb 10-1: Using ep0 maxpacket: 32 [ 1429.634128][ T24] usb 10-1: config 0 has an invalid interface number: 235 but max is 0 [ 1429.661059][T12357] tipc: Enabling of bearer rejected, failed to enable media [ 1429.666119][ T24] usb 10-1: config 0 has no interface number 0 [ 1429.705697][ T24] usb 10-1: New USB device found, idVendor=085a, idProduct=0009, bcdDevice=a3.47 [ 1429.726716][T12356] loop1: detected capacity change from 0 to 1024 [ 1429.733268][ T24] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1429.765612][ T24] usb 10-1: Product: syz [ 1429.787635][ T24] usb 10-1: Manufacturer: syz [ 1429.811774][ T24] usb 10-1: SerialNumber: syz [ 1429.841257][ T24] usb 10-1: config 0 descriptor?? [ 1430.099516][T12366] Cannot find add_set index 4 as target [ 1430.122125][ T24] kaweth 10-1:0.235: Firmware present in device. [ 1430.302776][ T24] kaweth 10-1:0.235: Statistics collection: 0 [ 1430.324966][ T24] kaweth 10-1:0.235: Multicast filter limit: 0 [ 1430.343475][ T24] kaweth 10-1:0.235: MTU: 0 [ 1430.347999][ T24] kaweth 10-1:0.235: Read MAC address 00:00:00:00:00:00 [ 1430.525749][ T24] kaweth 10-1:0.235: probe with driver kaweth failed with error -5 [ 1430.553510][ T24] usb 10-1: USB disconnect, device number 10 [ 1431.021124][T12361] loop4: detected capacity change from 0 to 32768 [ 1431.166412][T12393] loop8: detected capacity change from 0 to 4096 [ 1431.171932][T12361] XFS (loop4): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 1431.183433][T12393] ntfs3(loop8): Different NTFS sector size (4096) and media sector size (512). [ 1431.417932][T12393] ntfs3(loop8): failed to convert "c46c" to maccenteuro [ 1431.477501][T12393] ntfs3(loop8): ino=20, mi_enum_attr [ 1431.533404][T12393] ntfs3(loop8): Mark volume as dirty due to NTFS errors [ 1431.734209][T12361] XFS (loop4): Ending clean mount [ 1431.796610][T12361] XFS (loop4): Quotacheck needed: Please wait. [ 1431.938352][T12361] XFS (loop4): Quotacheck: Done. [ 1432.174789][T12427] loop9: detected capacity change from 0 to 64 [ 1432.176280][ T5841] XFS (loop4): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 1432.182290][T12400] loop1: detected capacity change from 0 to 32768 [ 1432.910818][T12444] loop7: detected capacity change from 0 to 16 [ 1432.943075][T12436] loop8: detected capacity change from 0 to 8192 [ 1432.996285][T12444] erofs (device loop7): mounted with root inode @ nid 36. [ 1433.070294][T12444] erofs (device loop7): read error -95 @ 8200 of nid 36 [ 1433.239378][T12457] loop9: detected capacity change from 0 to 256 [ 1433.439003][ T5891] usb 5-1: new high-speed USB device number 22 using dummy_hcd [ 1433.473438][T12462] loop7: detected capacity change from 0 to 256 [ 1433.535951][T12462] exfat: Deprecated parameter 'namecase' [ 1433.568772][T12462] exfat: Deprecated parameter 'namecase' [ 1433.640369][ T5891] usb 5-1: New USB device found, idVendor=0b95, idProduct=772b, bcdDevice=a2.4c [ 1433.656539][T12462] exFAT-fs (loop7): failed to load upcase table (idx : 0x00010000, chksum : 0xbe675ead, utbl_chksum : 0xe619d30d) [ 1433.662385][ T5891] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1433.719860][ T5891] usb 5-1: Product: syz [ 1433.755373][ T5891] usb 5-1: Manufacturer: syz [ 1433.761253][ T30] audit: type=1800 audit(3916.717:2228): pid=12462 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.7.16847" name="file2" dev="loop7" ino=1048894 res=0 errno=0 [ 1433.766794][ T5891] usb 5-1: SerialNumber: syz [ 1433.840487][ T10] usb 2-1: new high-speed USB device number 14 using dummy_hcd [ 1433.867994][ T30] audit: type=1804 audit(3916.745:2229): pid=12462 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.7.16847" name="/newroot/1196/file0/file2" dev="loop7" ino=1048894 res=1 errno=0 [ 1433.875924][ T5891] usb 5-1: config 0 descriptor?? [ 1434.002819][ T970] usb 9-1: new full-speed USB device number 21 using dummy_hcd [ 1434.046457][ T10] usb 2-1: New USB device found, idVendor=055f, idProduct=c230, bcdDevice=b6.ac [ 1434.066085][ T10] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1434.096098][ T10] usb 2-1: Product: syz [ 1434.106999][ T10] usb 2-1: Manufacturer: syz [ 1434.117890][ T10] usb 2-1: SerialNumber: syz [ 1434.162068][ T10] usb 2-1: config 0 descriptor?? [ 1434.188248][ T10] gspca_main: sunplus-2.14.0 probing 055f:c230 [ 1434.206860][ T970] usb 9-1: config 0 has an invalid interface number: 1 but max is 0 [ 1434.214862][ T970] usb 9-1: config 0 has no interface number 0 [ 1434.243204][ T970] usb 9-1: New USB device found, idVendor=0b48, idProduct=1005, bcdDevice=8c.1e [ 1434.292861][ T970] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1434.321821][ T970] usb 9-1: config 0 descriptor?? [ 1434.356423][ T970] usb 9-1: selecting invalid altsetting 1 [ 1434.383466][ T970] dvb_ttusb_budget: ttusb_init_controller: error [ 1434.414234][ T970] dvbdev: DVB: registering new adapter (Technotrend/Hauppauge Nova-USB) [ 1434.528184][T12492] netlink: 16 bytes leftover after parsing attributes in process `syz.7.16860'. [ 1434.582070][ T5891] asix 5-1:0.0 (unnamed net_device) (uninitialized): Failed to read reg index 0x0000: -71 [ 1434.612331][ T5891] asix 5-1:0.0: probe with driver asix failed with error -71 [ 1434.650802][ T970] DVB: Unable to find symbol cx22700_attach() [ 1434.663936][ T5891] usb 5-1: USB disconnect, device number 22 [ 1434.779037][ T970] DVB: Unable to find symbol tda10046_attach() [ 1434.805615][ T970] dvb_ttusb_budget: no frontend driver found for device [0b48:1005] [ 1434.852223][ T10] gspca_sunplus: reg_r err -71 [ 1434.858082][ T10] sunplus 2-1:0.0: probe with driver sunplus failed with error -71 [ 1434.866308][ T970] usb 9-1: USB disconnect, device number 21 [ 1434.884087][ T10] usb 2-1: USB disconnect, device number 14 [ 1435.022457][T12500] netlink: 8 bytes leftover after parsing attributes in process `syz.9.16864'. [ 1435.302125][T12509] loop8: detected capacity change from 0 to 256 [ 1435.393598][T12509] FAT-fs (loop8): Directory bread(block 64) failed [ 1435.428668][T12509] FAT-fs (loop8): Directory bread(block 65) failed [ 1435.458764][T12509] FAT-fs (loop8): Directory bread(block 66) failed [ 1435.490037][T12509] FAT-fs (loop8): Directory bread(block 67) failed [ 1435.523913][T12509] FAT-fs (loop8): Directory bread(block 68) failed [ 1435.536342][T12509] FAT-fs (loop8): Directory bread(block 69) failed [ 1435.556573][T12509] FAT-fs (loop8): Directory bread(block 70) failed [ 1435.602400][T12509] FAT-fs (loop8): Directory bread(block 71) failed [ 1435.646877][T12509] FAT-fs (loop8): Directory bread(block 72) failed [ 1435.680212][T12509] FAT-fs (loop8): Directory bread(block 73) failed [ 1435.753614][T12523] [U]  [ 1435.907117][T12526] binder: 12525:12526 unknown command 24 [ 1435.927810][T12526] binder: 12525:12526 ioctl c0306201 200000000280 returned -22 [ 1435.982785][ T5891] usb 5-1: new high-speed USB device number 23 using dummy_hcd [ 1436.124925][T12536] loop9: detected capacity change from 0 to 512 [ 1436.178169][ T5891] usb 5-1: New USB device found, idVendor=0867, idProduct=9812, bcdDevice=16.e3 [ 1436.200347][ T5891] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1436.226942][ T5891] usb 5-1: Product: syz [ 1436.231128][ T5891] usb 5-1: Manufacturer: syz [ 1436.267618][T12536] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1436.302893][ T5891] usb 5-1: SerialNumber: syz [ 1436.357494][ T5891] usb 5-1: config 0 descriptor?? [ 1436.391234][T12536] EXT4-fs error (device loop9): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 41 vs 39667 free clusters [ 1436.407498][ T5891] comedi comedi0: Wrong number of endpoints [ 1436.413408][ T5891] dt9812 5-1:0.0: driver 'dt9812' failed to auto-configure device. [ 1436.446189][T12536] EXT4-fs (loop9): Remounting filesystem read-only [ 1436.552465][ T8401] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1436.606004][T30123] Quota error (device loop9): dquot_write_dquot: Can't write quota structure (error -30). Quota may get out of sync! [ 1436.636951][ T10] usb 5-1: USB disconnect, device number 23 [ 1436.644483][T30123] Quota error (device loop9): dquot_write_dquot: Can't write quota structure (error -30). Quota may get out of sync! [ 1436.707448][T12549] loop1: detected capacity change from 0 to 4096 [ 1436.726748][T12549] ntfs3(loop1): Different NTFS sector size (2048) and media sector size (512). [ 1436.872233][T12559] loop9: detected capacity change from 0 to 256 [ 1437.593705][T12580] loop8: detected capacity change from 0 to 2048 [ 1437.679703][T12580] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1437.751514][T12580] EXT4-fs error (device loop8): ext4_find_inline_data_nolock:169: inode #12: comm syz.8.16902: inline data xattr refers to an external xattr inode [ 1437.769381][T12580] EXT4-fs (loop8): Remounting filesystem read-only [ 1437.883575][ T4380] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1438.168146][T12595] loop8: detected capacity change from 0 to 1024 [ 1438.190391][T12595] hfsplus: bad catalog entry type [ 1438.355322][ T13] hfsplus: b-tree write err: -5, ino 4 [ 1438.531289][T32242] Bluetooth: hci4: unexpected event for opcode 0x2005 [ 1438.634573][T12609] loop8: detected capacity change from 0 to 512 [ 1438.651178][T12584] loop4: detected capacity change from 0 to 32768 [ 1438.708294][T12615] netlink: 8 bytes leftover after parsing attributes in process `syz.9.16916'. [ 1438.735498][T12609] EXT4-fs (loop8): revision level too high, forcing read-only mode [ 1438.776459][T12609] EXT4-fs (loop8): orphan cleanup on readonly fs [ 1438.782969][T12615] netlink: 4 bytes leftover after parsing attributes in process `syz.9.16916'. [ 1438.798293][T12615] netlink: 'syz.9.16916': attribute type 7 has an invalid length. [ 1438.798428][T12584] XFS (loop4): Mounting V5 Filesystem 9f1cad42-11bd-4e12-8f0b-f07876b81d9a [ 1438.808244][T12609] EXT4-fs warning (device loop8): ext4_enable_quotas:7170: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix. [ 1438.898218][T12609] EXT4-fs (loop8): Cannot turn on quotas: error -22 [ 1438.927694][T12609] EXT4-fs error (device loop8): ext4_orphan_get:1391: inode #16: comm syz.8.16914: casefold flag without casefold feature [ 1439.018537][T12609] EXT4-fs error (device loop8): ext4_orphan_get:1396: comm syz.8.16914: couldn't read orphan inode 16 (err -117) [ 1439.058558][T12584] XFS (loop4): Ending clean mount [ 1439.071612][T12609] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 1439.094990][T12584] XFS (loop4): Metadata CRC error detected at xfs_inobt_read_verify+0x42/0xe0, xfs_finobt block 0x20 [ 1439.136416][T12584] XFS (loop4): Unmount and run xfs_repair [ 1439.175046][T12584] XFS (loop4): First 128 bytes of corrupted metadata buffer: [ 1439.197442][T12584] 00000000: 46 49 42 33 00 00 00 01 ff ff ff ff ff ff ff ff FIB3............ [ 1439.234971][T12584] 00000010: 00 00 00 00 00 00 00 20 00 00 00 01 00 00 00 40 ....... .......@ [ 1439.267439][T12584] 00000020: 9f 1c ad 42 11 bd 4e 12 8f 0b f0 78 76 b8 1d 9a ...B..N....xv... [ 1439.306238][T12584] 00000030: 00 00 00 00 8a d2 18 46 00 00 16 80 00 00 40 37 .......F......@7 [ 1439.337010][T12584] 00000040: ff ff ff ff ff ff fe 00 00 00 00 00 00 00 00 00 ................ [ 1439.379061][T12584] 00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 09 00 00 ................ [ 1439.416600][ T4380] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1439.419726][T12584] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ [ 1439.471130][T12584] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ [ 1439.496333][T12584] XFS (loop4): metadata I/O error in "xfs_btree_read_buf_block+0x290/0x470" at daddr 0x20 len 8 error 74 [ 1439.508813][T12584] XFS (loop4): Failed to initialize disk quotas, err -117. [ 1439.814756][ T5841] XFS (loop4): Unmounting Filesystem 9f1cad42-11bd-4e12-8f0b-f07876b81d9a [ 1439.852233][ T5841] XFS (loop4): Uncorrected metadata errors detected; please run xfs_repair. [ 1440.284372][T12657] loop9: detected capacity change from 0 to 4096 [ 1440.342785][T12657] ntfs3(loop9): Different NTFS sector size (4096) and media sector size (512). [ 1440.449133][T12657] ntfs3(loop9): Mark volume as dirty due to NTFS errors [ 1440.502906][T12657] ntfs3(loop9): ino=1a, mi_enum_attr [ 1440.523725][T12657] ntfs3(loop9): Failed to initialize $Extend/$ObjId. [ 1440.592552][T12657] ntfs3(loop9): ino=5, "/" ntfs_readdir [ 1440.919719][T12643] loop1: detected capacity change from 0 to 32768 [ 1440.971056][T12643] XFS: noikeep mount option is deprecated. [ 1441.050617][T12643] XFS (loop1): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 1441.278447][T12658] loop8: detected capacity change from 0 to 32768 [ 1441.332364][T12658] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop8 (7:8) scanned by syz.8.16934 (12658) [ 1441.445259][T12658] BTRFS info (device loop8): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 1441.456050][ T5810] usb 5-1: new high-speed USB device number 24 using dummy_hcd [ 1441.477194][T12658] BTRFS info (device loop8): using sha256 (sha256-ni) checksum algorithm [ 1441.499227][T12643] XFS (loop1): Ending clean mount [ 1441.521866][T12643] XFS (loop1): Quotacheck needed: Please wait. [ 1441.596382][T12643] XFS (loop1): Quotacheck: Done. [ 1441.645886][ T5810] usb 5-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7 [ 1441.674371][ T5810] usb 5-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47 [ 1441.706471][ T5810] usb 5-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d [ 1441.764401][ T5810] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1441.788423][ T5829] XFS (loop1): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 1441.802144][T12685] raw-gadget.1 gadget.4: fail, usb_ep_enable returned -22 [ 1441.872880][ T5810] usb 5-1: Quirk or no altset; falling back to MIDI 1.0 [ 1441.990374][ T4380] BTRFS info (device loop8): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 1442.125447][T12685] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(5) [ 1442.132011][T12685] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed) [ 1442.194085][T12685] vhci_hcd vhci_hcd.0: Device attached [ 1442.257298][T12716] vhci_hcd: connection closed [ 1442.276141][ T13] vhci_hcd: stop threads [ 1442.317009][ T5891] usb 5-1: USB disconnect, device number 24 [ 1442.344827][ T13] vhci_hcd: release socket [ 1442.373544][ T13] vhci_hcd: disconnect device [ 1442.435360][ T4371] vhci_hcd: vhci_device speed not set [ 1442.647542][T12729] mkiss: ax0: crc mode is auto. [ 1442.986908][T12737] loop7: detected capacity change from 0 to 1024 [ 1443.024334][T12737] EXT4-fs: Ignoring removed nobh option [ 1443.109740][T12737] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1443.425449][T27483] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1443.509074][T12756] loop8: detected capacity change from 0 to 64 [ 1443.921623][T12770] netlink: 8 bytes leftover after parsing attributes in process `syz.9.16973'. [ 1443.940779][ T4371] usb 5-1: new high-speed USB device number 25 using dummy_hcd [ 1444.086467][T12774] loop1: detected capacity change from 0 to 128 [ 1444.095525][T12774] UDF-fs: error (device loop1): udf_read_tagged: read failed, block=256, location=256 [ 1444.118066][T12774] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 1444.146592][ T4371] usb 5-1: Using ep0 maxpacket: 16 [ 1444.158819][ T4371] usb 5-1: config 8 has an invalid interface number: 39 but max is 0 [ 1444.172620][ T4371] usb 5-1: config 8 has no interface number 0 [ 1444.210921][ T4371] usb 5-1: config 8 interface 39 altsetting 1 has an endpoint descriptor with address 0xDF, changing to 0x8F [ 1444.262254][ T4371] usb 5-1: config 8 interface 39 altsetting 1 endpoint 0x8F has invalid wMaxPacketSize 0 [ 1444.294893][ T4371] usb 5-1: config 8 interface 39 altsetting 1 bulk endpoint 0x8F has invalid maxpacket 0 [ 1444.354568][ T4371] usb 5-1: config 8 interface 39 has no altsetting 0 [ 1444.386263][ T4371] usb 5-1: New USB device found, idVendor=05ac, idProduct=c704, bcdDevice=62.77 [ 1444.414284][ T4371] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1444.434924][ T4371] usb 5-1: Product: syz [ 1444.449149][ T4371] usb 5-1: Manufacturer: syz [ 1444.464957][ T4371] usb 5-1: SerialNumber: syz [ 1444.476892][T12777] loop9: detected capacity change from 0 to 8192 [ 1444.916704][T12789] loop1: detected capacity change from 0 to 256 [ 1444.938470][T12789] exfat: Deprecated parameter 'utf8' [ 1444.943792][T12789] exfat: Deprecated parameter 'utf8' [ 1444.949581][ T4371] ipheth 5-1:8.39: ipheth_get_macaddr: usb_control_msg: short packet: 0 bytes [ 1444.990059][T12789] exfat: Deprecated parameter 'utf8' [ 1444.996185][ T4371] ipheth 5-1:8.39: probe with driver ipheth failed with error -22 [ 1445.081911][T12789] exFAT-fs (loop1): failed to load upcase table (idx : 0x00011f3f, chksum : 0x96b62a4c, utbl_chksum : 0xe619d30d) [ 1445.149772][ T4371] IPVS: starting estimator thread 0... [ 1445.174513][ T30] audit: type=1800 audit(3927.246:2230): pid=12789 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.16982" name="file1" dev="loop1" ino=1048900 res=0 errno=0 [ 1445.210345][ T5810] usb 5-1: USB disconnect, device number 25 [ 1445.316939][T12794] IPVS: using max 26 ests per chain, 62400 per kthread [ 1445.439279][T12775] loop8: detected capacity change from 0 to 32768 [ 1445.498964][T12775] XFS: noikeep mount option is deprecated. [ 1445.576073][T12775] XFS (loop8): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 1445.845653][T12814] loop9: detected capacity change from 0 to 256 [ 1445.868711][T12814] exfat: Deprecated parameter 'utf8' [ 1445.913779][T12775] XFS (loop8): Ending clean mount [ 1445.956059][T12775] XFS (loop8): Quotacheck needed: Please wait. [ 1445.975587][T12814] exFAT-fs (loop9): failed to load upcase table (idx : 0x00010000, chksum : 0x11bbdf60, utbl_chksum : 0xe619d30d) [ 1446.094222][T12775] XFS (loop8): Quotacheck: Done. [ 1446.199209][ T30] audit: type=1800 audit(3928.197:2231): pid=12775 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.8.16974" name="file2" dev="loop8" ino=9287 res=0 errno=0 [ 1446.299644][T12822] loop1: detected capacity change from 0 to 128 [ 1446.341030][ T4380] XFS (loop8): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 1446.392010][ T24] usb 5-1: new high-speed USB device number 26 using dummy_hcd [ 1446.603963][ T24] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 1446.643057][ T24] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 1446.711921][ T24] usb 5-1: New USB device found, idVendor=0416, idProduct=c168, bcdDevice= 0.00 [ 1446.745056][ T24] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1446.803179][ T24] usb 5-1: config 0 descriptor?? [ 1446.962072][T12835] autofs: Bad value for 'fd' [ 1447.178218][ T5891] usb 10-1: new high-speed USB device number 11 using dummy_hcd [ 1447.257623][ T24] hid-generic 0003:0416:C168.001C: unknown main item tag 0x0 [ 1447.290214][ T24] hid-generic 0003:0416:C168.001C: hidraw0: USB HID v0.00 Device [HID 0416:c168] on usb-dummy_hcd.4-1/input0 [ 1447.351221][ T5891] usb 10-1: Using ep0 maxpacket: 32 [ 1447.365193][T12847] netlink: 4 bytes leftover after parsing attributes in process `syz.8.17005'. [ 1447.379372][ T5891] usb 10-1: config 0 has an invalid interface number: 51 but max is 0 [ 1447.394543][ T5891] usb 10-1: config 0 has no interface number 0 [ 1447.418523][ T5891] usb 10-1: New USB device found, idVendor=061d, idProduct=c150, bcdDevice=ce.6f [ 1447.438788][T12847] veth1_macvtap: left promiscuous mode [ 1447.440167][ T5891] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1447.467145][ T24] usb 5-1: USB disconnect, device number 26 [ 1447.485934][ T5891] usb 10-1: Product: syz [ 1447.496487][ T5891] usb 10-1: Manufacturer: syz [ 1447.514022][ T5891] usb 10-1: SerialNumber: syz [ 1447.546837][ T5891] usb 10-1: config 0 descriptor?? [ 1447.561822][ T5891] quatech2 10-1:0.51: Quatech 2nd gen USB to Serial Driver converter detected [ 1447.791181][ T5891] usb 10-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB0 [ 1447.834548][ T5891] usb 10-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB1 [ 1448.066682][ C1] quatech-serial ttyUSB0: qt2_process_read_urb - port change to invalid port: 49 [ 1448.269553][T12866] netlink: 'syz.4.17015': attribute type 2 has an invalid length. [ 1448.315816][ C1] usb 10-1: qt2_read_bulk_callback - non-zero urb status: -71 [ 1448.317268][ T5810] usb 10-1: USB disconnect, device number 11 [ 1448.398248][ T5810] quatech-serial ttyUSB0: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB0 [ 1448.449986][ T5810] quatech-serial ttyUSB1: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB1 [ 1448.496078][T12875] pimreg3: entered allmulticast mode [ 1448.502950][ T5810] quatech2 10-1:0.51: device disconnected [ 1448.820055][T12885] netlink: 4 bytes leftover after parsing attributes in process `syz.1.17023'. [ 1448.866091][T12887] erspan0: entered promiscuous mode [ 1448.898834][T12887] erspan0: left promiscuous mode [ 1449.359921][T12903] loop4: detected capacity change from 0 to 24 [ 1449.405667][T12903] MTD: Attempt to mount non-MTD device "/dev/loop4" [ 1449.469630][T12903] romfs: Mounting image 'rom 637cf1fa' through the block layer [ 1449.622937][T12911] loop8: detected capacity change from 0 to 164 [ 1449.654027][T12911] isofs: isofs_export_get_parent(): child directory not normalized! [ 1449.883383][T12922] loop1: detected capacity change from 0 to 16 [ 1449.926765][T12922] erofs (device loop1): mounted with root inode @ nid 36. [ 1450.026635][ T5891] usb 10-1: new high-speed USB device number 12 using dummy_hcd [ 1450.088141][T12925] random: crng reseeded on system resumption [ 1450.129492][T12929] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 1450.209450][ T5891] usb 10-1: Using ep0 maxpacket: 32 [ 1450.251356][ T5891] usb 10-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 1024 [ 1450.277658][ T5891] usb 10-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79 [ 1450.301861][ T5891] usb 10-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2 [ 1450.325293][ T5891] usb 10-1: Product: syz [ 1450.335786][ T5891] usb 10-1: Manufacturer: syz [ 1450.344454][ T5891] usb 10-1: SerialNumber: syz [ 1450.359541][ T5891] usb 10-1: config 0 descriptor?? [ 1450.374812][T12917] raw-gadget.1 gadget.9: fail, usb_ep_enable returned -22 [ 1450.621251][ T5891] usb 10-1: USB disconnect, device number 12 [ 1450.719420][ T10] usb 9-1: new full-speed USB device number 22 using dummy_hcd [ 1450.806571][T12946] loop1: detected capacity change from 0 to 512 [ 1450.869269][T12946] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 1450.897595][ T10] usb 9-1: config 0 has an invalid interface number: 133 but max is 0 [ 1450.906712][ T10] usb 9-1: config 0 has no interface number 0 [ 1450.916233][T12946] EXT4-fs error (device loop1): ext4_orphan_get:1417: comm syz.1.17054: bad orphan inode 131083 [ 1450.926021][ T10] usb 9-1: New USB device found, idVendor=06cd, idProduct=0121, bcdDevice=dd.3d [ 1450.929815][T12946] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1450.943421][ T10] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1450.966769][ T10] usb 9-1: Product: syz [ 1450.971286][ T10] usb 9-1: Manufacturer: syz [ 1450.974510][T12946] overlayfs: upper fs needs to support d_type. [ 1450.975869][ T10] usb 9-1: SerialNumber: syz [ 1450.989744][ T10] usb 9-1: config 0 descriptor?? [ 1451.050870][ T5829] EXT4-fs error (device loop1): ext4_readdir:264: inode #2: block 13: comm syz-executor: path /2851/bus: bad entry in directory: rec_len is smaller than minimal - offset=24, inode=11, rec_len=8, size=1024 fake=0 [ 1451.393087][ T5829] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1451.602228][ T10] keyspan 9-1:0.133: Keyspan 1 port adapter converter detected [ 1451.630466][ T10] keyspan 9-1:0.133: found no endpoint descriptor for endpoint 81 [ 1451.641172][T12964] loop9: detected capacity change from 0 to 22 [ 1451.648815][ T10] keyspan 9-1:0.133: found no endpoint descriptor for endpoint 1 [ 1451.666294][ T10] keyspan 9-1:0.133: found no endpoint descriptor for endpoint 2 [ 1451.679097][ T10] usb 9-1: Keyspan 1 port adapter converter now attached to ttyUSB0 [ 1451.689391][T12964] MTD: Attempt to mount non-MTD device "/dev/loop9" [ 1451.711213][T12964] romfs: Mounting image 'rom 637cf1fa' through the block layer [ 1451.856676][ T10] usb 9-1: USB disconnect, device number 22 [ 1451.867121][ T5810] usb 5-1: new high-speed USB device number 27 using dummy_hcd [ 1451.887966][ T10] keyspan_1 ttyUSB0: Keyspan 1 port adapter converter now disconnected from ttyUSB0 [ 1451.926886][ T10] keyspan 9-1:0.133: device disconnected [ 1452.043413][ T5810] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 1452.058459][ T5810] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 1452.069448][ T5810] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 1452.083327][ T5810] usb 5-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 1452.094427][ T5810] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1452.124565][ T5810] usb 5-1: config 0 descriptor?? [ 1452.625078][ T5810] plantronics 0003:047F:FFFF.001D: item 0 4 0 11 parsing failed [ 1452.633524][ T5810] plantronics 0003:047F:FFFF.001D: parse failed [ 1452.658574][ T5810] plantronics 0003:047F:FFFF.001D: probe with driver plantronics failed with error -22 [ 1452.849602][ T24] usb 5-1: USB disconnect, device number 27 [ 1452.883865][ T31] INFO: task syz.3.14930:7934 blocked for more than 143 seconds. [ 1452.891721][ T31] Not tainted 6.15.0-rc7-syzkaller-00144-gb1427432d3b6 #0 SYZFAIL: failed to recv rpc fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor) [ 1452.910416][ T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 1452.934171][ T31] task:syz.3.14930 state:D stack:23688 pid:7934 tgid:7933 ppid:5831 task_flags:0x400140 flags:0x00004004 [ 1452.960663][T12985] usb usb8: usbfs: process 12985 (syz.8.17074) did not claim interface 0 before use [ 1452.961019][ T31] Call Trace: [ 1453.003504][ T31] [ 1453.006466][ T31] __schedule+0x16e2/0x4cd0 [ 1453.025231][T10918] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 1453.035338][T10918] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 1453.067418][T10918] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 1453.081426][ T31] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1453.092547][T10918] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 1453.103478][T10918] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 1453.125993][ T31] ? validate_chain+0x897/0x2140 [ 1453.143172][ T31] ? schedule+0x165/0x360 [ 1453.147535][ T31] ? __pfx___schedule+0x10/0x10 [ 1453.164573][ T31] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1453.170302][ T31] ? schedule+0x91/0x360 [ 1453.174592][ T31] schedule+0x165/0x360 [ 1453.243215][ T31] schedule_timeout+0x9a/0x270 [ 1453.248030][ T31] ? __pfx_schedule_timeout+0x10/0x10 [ 1453.295178][ T31] ? _raw_spin_unlock_irq+0x23/0x50 [ 1453.300405][ T31] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1453.316360][ T31] ? lockdep_hardirqs_on+0x9c/0x150 [ 1453.321595][ T31] ? wait_for_completion+0x267/0x5d0 [ 1453.326908][ T31] wait_for_completion+0x2bf/0x5d0 [ 1453.369202][ T31] ? __pfx_wait_for_completion+0x10/0x10 [ 1453.377301][ T31] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1453.403536][ T31] ? up_write+0x1c4/0x420 [ 1453.407887][ T31] ? remove_client_context+0xc0/0x1e0 [ 1453.413598][ T31] disable_device+0x1c6/0x320 [ 1453.418405][ T31] ? __pfx_disable_device+0x10/0x10 [ 1453.423623][ T31] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1453.429954][ T31] __ib_unregister_device+0x2cb/0x3f0 [ 1453.435359][ T31] ? __pfx_ib_device_get_by_index+0x10/0x10 [ 1453.441408][ T31] ib_unregister_device_and_put+0xb8/0xf0 [ 1453.447590][ T31] nldev_dellink+0x2d1/0x320 [ 1453.452206][ T31] ? __pfx_nldev_dellink+0x10/0x10 [ 1453.457525][ T31] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1453.463871][ T31] ? rcu_is_watching+0x15/0xb0 [ 1453.469118][ T31] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1453.474763][ T31] ? apparmor_capable+0x137/0x1b0 [ 1453.479855][ T31] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1453.485501][ T31] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1453.494386][ T31] ? security_capable+0x7e/0x2e0 [ 1453.499354][ T31] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1453.505086][ T31] ? __pfx_nldev_dellink+0x10/0x10 [ 1453.510223][ T31] rdma_nl_rcv+0x6c2/0x9a0 [ 1453.515169][ T31] ? __pfx_rdma_nl_rcv+0x10/0x10 [ 1453.520136][ T31] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1453.525845][ T31] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1453.531496][ T31] ? netlink_deliver_tap+0x2e/0x1b0 [ 1453.537175][ T31] ? netlink_deliver_tap+0x2e/0x1b0 [ 1453.542388][ T31] netlink_unicast+0x75b/0x8d0 [ 1453.547617][ T31] netlink_sendmsg+0x805/0xb30 [ 1453.552408][ T31] ? __pfx_netlink_sendmsg+0x10/0x10 [ 1453.558664][ T31] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1453.564302][ T31] ? aa_sock_msg_perm+0x94/0x160 [ 1453.569509][ T31] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1453.575407][ T31] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1453.581259][ T31] ? __pfx_netlink_sendmsg+0x10/0x10 [ 1453.586583][ T31] __sock_sendmsg+0x21c/0x270 [ 1453.591527][ T31] ____sys_sendmsg+0x505/0x830 [ 1453.596317][ T31] ? __pfx_____sys_sendmsg+0x10/0x10 [ 1453.601701][ T31] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1453.607380][ T31] ? import_iovec+0x74/0xa0 [ 1453.612164][ T31] ___sys_sendmsg+0x21f/0x2a0 [ 1453.616870][ T31] ? __pfx____sys_sendmsg+0x10/0x10 [ 1453.622183][ T31] ? __fget_files+0x2a/0x420 [ 1453.626829][ T31] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1453.632698][ T31] ? __fget_files+0x3a0/0x420 [ 1453.637411][ T31] __x64_sys_sendmsg+0x19b/0x260 [ 1453.643589][ T31] ? __pfx___x64_sys_sendmsg+0x10/0x10 [ 1453.649107][ T31] ? do_syscall_64+0xba/0x210 [ 1453.653899][ T31] do_syscall_64+0xf6/0x210 [ 1453.658442][ T31] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1453.664561][ T31] ? exc_page_fault+0x91/0x110 [ 1453.669346][ T31] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1453.675811][ T31] RIP: 0033:0x7f577378e969 [ 1453.680253][ T31] RSP: 002b:00007f57745c7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1453.689030][ T31] RAX: ffffffffffffffda RBX: 00007f57739b5fa0 RCX: 00007f577378e969 [ 1453.697120][ T31] RDX: 00000000000000d4 RSI: 00002000000002c0 RDI: 0000000000000003 [ 1453.705095][ T31] RBP: 00007f5773810ab1 R08: 0000000000000000 R09: 0000000000000000 [ 1453.713109][ T31] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1453.721199][ T31] R13: 0000000000000000 R14: 00007f57739b5fa0 R15: 00007ffe041a4158 [ 1453.733436][ T31] [ 1453.736541][ T31] [ 1453.736541][ T31] Showing all locks held in the system: [ 1453.771129][ T31] 3 locks held by kworker/1:0/24: [ 1453.776173][ T31] 1 lock held by khungtaskd/31: [ 1453.781030][ T31] #0: ffffffff8df3dee0 (rcu_read_lock){....}-{1:3}, at: debug_show_all_locks+0x2e/0x180 [ 1453.856802][ T31] 4 locks held by kworker/u8:6/3444: [ 1453.901371][ T31] #0: ffff88801aef6148 ((wq_completion)netns){+.+.}-{0:0}, at: process_scheduled_works+0x9b1/0x17a0 [ 1453.955148][ T31] #1: ffffc9000bd1fc60 (net_cleanup_work){+.+.}-{0:0}, at: process_scheduled_works+0x9ec/0x17a0 [ 1453.965751][ T31] #2: ffffffff8f2ee010 (pernet_ops_rwsem){++++}-{4:4}, at: cleanup_net+0x145/0xbd0 [ 1454.041765][ T31] #3: ffff88805a1c06d0 (&device->unregistration_lock){+.+.}-{4:4}, at: rdma_dev_change_netns+0x39/0x300 [ 1454.085082][ T31] 1 lock held by klogd/5182: [ 1454.089683][ T31] 2 locks held by getty/5584: [ 1454.094359][ T31] #0: ffff88814dc130a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x25/0x70 [ 1454.184274][ T31] #1: ffffc900030062f0 (&ldata->atomic_read_lock){+.+.}-{4:4}, at: n_tty_read+0x43e/0x1400 [ 1454.233173][ T31] 3 locks held by kworker/1:3/5891: [ 1454.269785][ T31] #0: ffff88801a078d48 ((wq_completion)events){+.+.}-{0:0}, at: process_scheduled_works+0x9b1/0x17a0 [ 1454.320676][ T31] #1: ffffc90002f7fc60 (free_ipc_work){+.+.}-{0:0}, at: process_scheduled_works+0x9ec/0x17a0 [ 1454.366594][ T31] #2: ffffffff8df439b8 (rcu_state.exp_mutex){+.+.}-{4:4}, at: synchronize_rcu_expedited+0x3b7/0x730 [ 1454.419131][ T31] 1 lock held by syz-executor/4380: [ 1454.439332][ T31] 2 locks held by syz.3.14930/7934: [ 1454.465064][ T31] #0: ffffffff99bcdfd8 (&rdma_nl_types[idx].sem){.+.+}-{4:4}, at: rdma_nl_rcv+0x316/0x9a0 [ 1454.518541][ T31] #1: ffff88805a1c06d0 (&device->unregistration_lock){+.+.}-{4:4}, at: __ib_unregister_device+0x284/0x3f0 [ 1454.562131][ T31] 1 lock held by syz.0.17055/12949: [ 1454.567343][ T31] 1 lock held by syz.4.17061/12961: [ 1454.616106][ T31] 1 lock held by syz.9.17072/12981: [ 1454.630492][ T31] [ 1454.633726][ T31] ============================================= [ 1454.633726][ T31] [ 1454.688751][ T31] NMI backtrace for cpu 1 [ 1454.688769][ T31] CPU: 1 UID: 0 PID: 31 Comm: khungtaskd Not tainted 6.15.0-rc7-syzkaller-00144-gb1427432d3b6 #0 PREEMPT(full) [ 1454.688798][ T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 1454.688814][ T31] Call Trace: [ 1454.688823][ T31] [ 1454.688834][ T31] dump_stack_lvl+0x189/0x250 [ 1454.688871][ T31] ? __wake_up_klogd+0xd9/0x110 [ 1454.688900][ T31] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1454.688931][ T31] ? __pfx_dump_stack_lvl+0x10/0x10 [ 1454.688966][ T31] ? __pfx__printk+0x10/0x10 [ 1454.689007][ T31] nmi_cpu_backtrace+0x39e/0x3d0 [ 1454.689038][ T31] ? __pfx_nmi_cpu_backtrace+0x10/0x10 [ 1454.689061][ T31] ? _printk+0xcf/0x120 [ 1454.689091][ T31] ? __pfx__printk+0x10/0x10 [ 1454.689118][ T31] ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10 [ 1454.689148][ T31] nmi_trigger_cpumask_backtrace+0x17a/0x300 [ 1454.689178][ T31] watchdog+0xfee/0x1030 [ 1454.689213][ T31] ? watchdog+0x1de/0x1030 [ 1454.689255][ T31] kthread+0x711/0x8a0 [ 1454.689291][ T31] ? __pfx_watchdog+0x10/0x10 [ 1454.689325][ T31] ? __pfx_kthread+0x10/0x10 [ 1454.689355][ T31] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1454.689384][ T31] ? __pfx_kthread+0x10/0x10 [ 1454.689413][ T31] ? _raw_spin_unlock_irq+0x23/0x50 [ 1454.689441][ T31] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1454.689468][ T31] ? lockdep_hardirqs_on+0x9c/0x150 [ 1454.689500][ T31] ? __pfx_kthread+0x10/0x10 [ 1454.689529][ T31] ret_from_fork+0x4e/0x80 [ 1454.689555][ T31] ? __pfx_kthread+0x10/0x10 [ 1454.689585][ T31] ret_from_fork_asm+0x1a/0x30 [ 1454.689627][ T31] [ 1454.689636][ T31] Sending NMI from CPU 1 to CPUs 0: [ 1454.858570][ C0] NMI backtrace for cpu 0 [ 1454.858587][ C0] CPU: 0 UID: 0 PID: 0 Comm: swapper/0 Not tainted 6.15.0-rc7-syzkaller-00144-gb1427432d3b6 #0 PREEMPT(full) [ 1454.858613][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 1454.858626][ C0] RIP: 0010:pv_native_safe_halt+0x13/0x20 [ 1454.858657][ C0] Code: ee ad b9 f5 cc cc cc 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa eb 07 0f 00 2d a3 7f 11 00 f3 0f 1e fa fb f4 c3 ad b9 f5 cc cc cc cc cc cc cc cc 90 90 90 90 90 90 90 90 90 [ 1454.858676][ C0] RSP: 0018:ffffffff8dc07d80 EFLAGS: 00000286 [ 1454.858695][ C0] RAX: ef5525f6ec1a4700 RBX: ffffffff81977108 RCX: ef5525f6ec1a4700 [ 1454.858713][ C0] RDX: 0000000000000001 RSI: ffffffff8d74e2cc RDI: ffffffff8bc1f600 [ 1454.858729][ C0] RBP: ffffffff8dc07ec0 R08: ffff8880b8832b5b R09: 1ffff1101710656b [ 1454.858746][ C0] R10: dffffc0000000000 R11: ffffed101710656c R12: ffffffff8f7f3570 [ 1454.858763][ C0] R13: 0000000000000000 R14: 0000000000000000 R15: 1ffffffff1b92a48 [ 1454.858780][ C0] FS: 0000000000000000(0000) GS:ffff8881260c2000(0000) knlGS:0000000000000000 [ 1454.858798][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1454.858813][ C0] CR2: 00007f9e9e8e5000 CR3: 000000002e09b000 CR4: 0000000000350ef0 [ 1454.858831][ C0] Call Trace: [ 1454.858839][ C0] [ 1454.858847][ C0] default_idle+0x13/0x20 [ 1454.858877][ C0] default_idle_call+0x74/0xb0 [ 1454.858909][ C0] do_idle+0x1e8/0x510 [ 1454.858935][ C0] ? __pfx_do_idle+0x10/0x10 [ 1454.858979][ C0] cpu_startup_entry+0x44/0x60 [ 1454.859001][ C0] rest_init+0x2de/0x300 [ 1454.859033][ C0] ? __pfx_x86_late_time_init+0x10/0x10 [ 1454.859059][ C0] start_kernel+0x470/0x4f0 [ 1454.859096][ C0] x86_64_start_reservations+0x2a/0x30 [ 1454.859119][ C0] x86_64_start_kernel+0x66/0x70 [ 1454.859140][ C0] common_startup_64+0x13e/0x147 [ 1454.859184][ C0] [ 1455.049175][ C0] vkms_vblank_simulate: vblank timer overrun [ 1455.059119][ T31] Kernel panic - not syncing: hung_task: blocked tasks [ 1455.065981][ T31] CPU: 1 UID: 0 PID: 31 Comm: khungtaskd Not tainted 6.15.0-rc7-syzkaller-00144-gb1427432d3b6 #0 PREEMPT(full) [ 1455.077789][ T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 1455.087840][ T31] Call Trace: [ 1455.091114][ T31] [ 1455.094041][ T31] dump_stack_lvl+0x99/0x250 [ 1455.098640][ T31] ? __asan_memcpy+0x40/0x70 [ 1455.103231][ T31] ? __pfx_dump_stack_lvl+0x10/0x10 [ 1455.108436][ T31] ? __pfx__printk+0x10/0x10 [ 1455.113030][ T31] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1455.118670][ T31] panic+0x2db/0x790 [ 1455.122571][ T31] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1455.128212][ T31] ? __pfx_panic+0x10/0x10 [ 1455.132633][ T31] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1455.138266][ T31] ? nmi_backtrace_stall_check+0x433/0x440 [ 1455.144080][ T31] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1455.149711][ T31] ? preempt_schedule_thunk+0x16/0x30 [ 1455.155087][ T31] ? nmi_trigger_cpumask_backtrace+0x2b6/0x300 [ 1455.161245][ T31] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1455.166881][ T31] watchdog+0x102d/0x1030 [ 1455.171221][ T31] ? watchdog+0x1de/0x1030 [ 1455.175650][ T31] kthread+0x711/0x8a0 [ 1455.179725][ T31] ? __pfx_watchdog+0x10/0x10 [ 1455.184404][ T31] ? __pfx_kthread+0x10/0x10 [ 1455.188996][ T31] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1455.194646][ T31] ? __pfx_kthread+0x10/0x10 [ 1455.199240][ T31] ? _raw_spin_unlock_irq+0x23/0x50 [ 1455.204438][ T31] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1455.210068][ T31] ? lockdep_hardirqs_on+0x9c/0x150 [ 1455.215270][ T31] ? __pfx_kthread+0x10/0x10 [ 1455.219863][ T31] ret_from_fork+0x4e/0x80 [ 1455.224280][ T31] ? __pfx_kthread+0x10/0x10 [ 1455.228874][ T31] ret_from_fork_asm+0x1a/0x30 [ 1455.233648][ T31] [ 1455.236860][ T31] Kernel Offset: disabled [ 1455.241181][ T31] Rebooting in 86400 seconds..