last executing test programs: 20m31.101572356s ago: executing program 32 (id=309): r0 = gettid() clock_nanosleep(0x7, 0xca9a3b, &(0x7f0000000040)={0x77359400}, 0x0) tkill(r0, 0x7) 19m53.10650759s ago: executing program 33 (id=447): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000280)=ANY=[@ANYBLOB="5c0000000206010100000000000000000000000005000400000000000900020073797a31000000000500010007000000050005000000000014000780080011400000000005001500030000000d000300686173683a6d6163"], 0x5c}}, 0x0) sendmsg$IPSET_CMD_DESTROY(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000100)={0x28, 0x3, 0x6, 0x5, 0x0, 0x0, {}, [@IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}]}, 0x28}}, 0x0) 16m50.163900791s ago: executing program 34 (id=1085): r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000780), r0) sendmsg$NL802154_CMD_DEL_SEC_LEVEL(r0, &(0x7f00000008c0)={0x0, 0x0, &(0x7f0000000880)={&(0x7f0000000800)={0x3c, r1, 0x1, 0x70bd2d, 0x25dfdbfb, {}, [@NL802154_ATTR_SEC_LEVEL={0x1c, 0x2d, 0x0, 0x1, [@NL802154_SECLEVEL_ATTR_LEVELS={0x5, 0x1, 0xfa}, @NL802154_SECLEVEL_ATTR_FRAME={0x8, 0x2, 0x1}, @NL802154_SECLEVEL_ATTR_DEV_OVERRIDE={0x5, 0x4, 0x1}]}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x100000001}]}, 0x3c}, 0x1, 0x0, 0x0, 0x40804}, 0x0) 12m40.89486217s ago: executing program 35 (id=1523): r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0) bind$bt_l2cap(r0, &(0x7f0000000080)={0x1f, 0x0, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x11}}, 0xe) setsockopt$bt_BT_DEFER_SETUP(r0, 0x112, 0xf, &(0x7f00000000c0)=0x3, 0x4) 11m8.278499367s ago: executing program 2 (id=1663): r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0) setsockopt$bt_l2cap_L2CAP_LM(r0, 0x6, 0x3, &(0x7f0000003c00)=0x17, 0x4) getsockopt$bt_l2cap_L2CAP_LM(r0, 0x6, 0x3, &(0x7f0000000580), &(0x7f00000005c0)=0x4) 11m6.030830004s ago: executing program 2 (id=1667): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000ae00000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f00000005c0)='sys_enter\x00', r0}, 0x10) copy_file_range(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x1, 0x0) 11m4.987759029s ago: executing program 2 (id=1669): close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) connect$802154_dgram(r0, &(0x7f0000000200)={0x2, @long={0x2}}, 0x14) 11m3.627702648s ago: executing program 2 (id=1672): prlimit64(0x0, 0x7, &(0x7f0000004080), 0x0) rseq(&(0x7f0000000300), 0x20, 0x0, 0x0) socket(0x200000000000011, 0x2, 0x0) 11m2.75343211s ago: executing program 4 (id=1674): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0xa, 0x1, 0x42, 0x40, 0xc2, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000240)="cb423a11b33192d673ba4c831a9adca48ca7eb0d2f073f36dfc3a94144bfd9d81639fd65ac4e557e12e7b0d2dfea051a7b440ade19d879e209596bf44477ecf6370e0133e541ef9f9e3631dde33dabf7842deb7a72c3ffe0f611062628683e3db2c685af", &(0x7f0000000640), 0x1003, r0}, 0x38) bpf$MAP_DELETE_BATCH(0x1b, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000500)="af", 0x0, 0x2, r0}, 0x38) 11m2.381903942s ago: executing program 2 (id=1676): sched_setscheduler(0x0, 0x2, &(0x7f0000000040)=0x1) r0 = add_key$keyring(&(0x7f0000000000), &(0x7f00000000c0)={'syz', 0x0}, 0x0, 0x0, 0xfffffffffffffffe) add_key(&(0x7f0000000140)='ceph\x00', &(0x7f0000000180), &(0x7f0000000040), 0x1d4, r0) 11m1.898790147s ago: executing program 6 (id=1677): syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x408e, &(0x7f0000000240)={[{@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x2e}}, {@min_batch_time={'min_batch_time', 0x3d, 0xfff}}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x80}}, {@stripe={'stripe', 0x3d, 0x4000}}, {@errors_remount}, {@max_batch_time={'max_batch_time', 0x3d, 0x4}}]}, 0x3, 0x43a, &(0x7f0000000340)="$eJzs28tvG0UYAPBv13FKXySU8ugDCBRExCNp0gI9cAGBxAEkJDiUY0jSqtRtUBMkWlUQECpHVIk74ojEX8AJLgg4IXGFO6pUoVxaOBmtvZs4jp0mwY5L/ftJm8zsjjPzeXbs2Z1sAH1rJPuRROyJiN8jYqieXV1gpP7r5tLl6b+XLk8nUa2+9VdSK3dj6fJ0UbR43e48M5pGpJ8lcahFvfMXL52dqlRmL+T58YVz74/PX7z07JlzU6dnT8+enzxx4vixiReen3yuI3Fmbbpx8KO5wwdee+fqG9Mnr77787dJEX9THB0yst7BJ6rVDlfXW3sb0slADxvCppQiIuuucm38D0UpVjpvKF79tKeNA7qqWq1Wd7c/vFgF7mBJbLTk2fzzArgzFF/02fVvsW3T1OO2cP2l+gVQFvfNfKsfGYg0L1Nuur7tpJGIOLn4z1fZFt25DwEAsMr32fznmVbzvzTubyh3d742NBwR90TEvoi4NyL2R8R9EbWyD0TEg5usv3mRZO38J722pcA2KJv/vZivba2e/xWzvxgu5bm9tfjLyakzldmj+XsyGuUdWX5inTp+eOW3L9oda5z/ZVtWfzEXzNtxbWDH6tfMTC1M/ZeYG13/JOLgQKv4k+WVgCQiDkTEwS3Wceapbw63O9Yu/vJG/nAH1pmqX0c8We//xWiKv5Csvz45fldUZo+OF2fFWr/8euXNdvXfuv+7K+v/XS3P/+X4h5PG9dr5zddx5Y/P217TbPX8H0zerqUH830fTi0sXJiIGExerze6cf/kymuLfFE+i3/0SOvxvy9W3olDEZGdxA9FxMMR8Uje9kcj4rGIOLJO/D+9/Ph7W4+/u7L4ZzbV/yuJwWje0zpROvvjd6sqHd5M/Fn/H6+lRvM9G/n820i7tnY2AwAAwP9PGhF7IknHltNpOjZW/3/5/bErrczNLzx9au6D8zP1ZwSGo5wWd7qGGu6HTuSX9UV+sil/LL9v/GVpZy0/Nj1Xmel18NDndrcZ/5k/S71uHdB1nteC/mX8Q/8y/qF/Gf/Qv1qM/529aAew/Vp9/3/cg3YA269p/Fv2gz7i+h/6l/EP/cv4h740vzNu/ZC8hMSaRKS3RTMkupTo9ScTAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABAZ/wbAAD//9E940M=") setxattr$trusted_overlay_upper(&(0x7f0000000380)='./file0/file0\x00', &(0x7f00000001c0), &(0x7f0000001400)=ANY=[], 0x835, 0x0) unlink(&(0x7f0000000000)='./file0/file0\x00') 11m1.499183727s ago: executing program 2 (id=1678): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x48241, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32}) ioctl$TUNSETTXFILTER(r0, 0x400454d1, &(0x7f0000000080)=ANY=[@ANYBLOB="000005"]) 11m0.983121333s ago: executing program 4 (id=1679): r0 = memfd_create(&(0x7f0000001840)='\b\x9d\x85\xf0\xce\x95\xe2\n\xa1c\xdc\xdc\xf2>c\rG\xfcO\x8c=\xc1\x00\x8aSpA\xd4\x91\x9a\x02n(\xa0<\x01\x16\x98\x85D\x89>N\x8ar\x17O\x05KR\xe2{mn\xcc\xbfS\xc0\xa7\v\xb5$\xee\x02\x00\x00\x00\xa9\x1cn,B\xd5?\xe5\x04\x00+P\x00\x00\x10\x00\x00]\xdeL\xdb\x95\x80\x00\x00\x00\x00\x00\x00\x1d\xe7m\x04A\xdb\x8d\x01\x00\x00\x00\x00\x00\x00\x00\x00\xdd\x06\x00\xcfF\x032+\x9b\x7f\x19\xc6\xa2w\xb0\x87\xf8\xc1\xd8\xc2\x92\xb6\x19\"\x9a\xe8\xdf\x95Bh~\xec\xefD%Xl\xe6/\xf2\xc4\xeb]\x84\x8b o\xbb]\xac\"%\xe7\a\x7f\xc3\xae\xe5\xd4\x91\x05\x13\x110\xbb\az\xd4\x1e\x1b/\xfc\x1d\xb0\x8b\x0eQs\x81I`I\xe97\xe3B\xa9\xe7\x19Wy\xa0[,\xe8\xe9\xa9\x8dn\xe4%6\xe0\xe0\xe2W\x11}bq\xebS\x1b\xe1\xcb\x90~F1\xd5\xc3\xc52m\x15\x96y\xa9/-\x04\xb1\xe2\xa50\x90\xcb\x1f\xd8\x03\xb7\xc06\x1db\xd6\xcc\xf5\t\x00\xdd\xe9H5\xf4h\x8e\x8c1\xadx\xa4\xb4\xe1+\x1d $2wu\xfe\x87\x19\x9a\xe1F}+\xf3\xccg\"\xb3~%!\x99\x8b+\xa8\xb1\x99\x9ev\x1f(\xd6i|V\r\xf4\x19\xd2[b\xf4\x17S~n\t(\xb4k\xdf\x8d\x1fH\xa6!V\x1b\x18\x81\x14G\x10\x9b>#\x18]\xa3\x06@\xf5\x0f\x03\x15\x13\xb7\xeb\x18pU\xbe\xf4\x81S\x00\x98\xa8\xdaT\xcb\x06\xa7\xc7\xd8G]\xc4\x81E\xd3\xee\xc3\xfa\x8a\x91\xb3u\x18nM\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\xa9\xa0:\xde\xf3F4\xed1\x05\x91Q\xa0\xf3\xea\xd9\xe2I\x1a=\x9d\xc6\x96T\xaa\xa46\xbc~\xef\x89\x1f0G\x95\xe1bH\xcck\xa0/`\x1a\x96@\x9ep4\xe4N\x015S\xd1\xf6', 0x0) pipe2(&(0x7f0000000000)={0xffffffffffffffff}, 0x0) splice(r1, 0x0, r0, &(0x7f0000000140)=0x7fffffffffffffff, 0x2, 0x0) 11m0.65335048s ago: executing program 6 (id=1680): seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000140)=[{0x6, 0x0, 0x0, 0x7ffffdc1}]}) r0 = socket$packet(0x11, 0x3, 0x300) getsockname$packet(r0, 0x0, &(0x7f0000000200)) 11m0.428425718s ago: executing program 4 (id=1681): r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)={0x2, 0x4, 0x8, 0x1, 0x80, 0x1, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x16, 0xf, &(0x7f00000003c0)=@ringbuf={{0x18, 0x8}, {{0x18, 0x1, 0x1, 0x0, r0}, {}, {}, {0x85, 0x0, 0x0, 0x5}}, {{0x5, 0x0, 0x3}}, [], {{0x6, 0x1, 0xd, 0x8}, {0x6, 0x0, 0x5, 0x8}, {0x85, 0x0, 0x0, 0x5}}}, &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r1, 0x18000000000002a0, 0xe, 0x0, &(0x7f0000000200)="9e36d448b388dd965f7a3312779a", 0x0, 0x0, 0xe8030000, 0x0, 0x0, 0x0, 0x0}, 0x50) 10m59.995990586s ago: executing program 4 (id=1682): r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000540), 0x2, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000140)={0xffffffffffffffff}, 0x2}}, 0x20) write$RDMA_USER_CM_CMD_RESOLVE_IP(r0, &(0x7f0000000180)={0x3, 0x40, 0xfa02, {{0x6000000, 0x0, 0x0, @mcast1}, {0x2, 0x0, 0x6199, @loopback}, r1}}, 0x48) 10m59.669285672s ago: executing program 4 (id=1683): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$tipc2(&(0x7f00000005c0), 0xffffffffffffffff) sendmsg$TIPC_NL_LINK_SET(r0, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000000)={0x2c, r1, 0x601, 0x0, 0xfffffffe, {}, [@TIPC_NLA_LINK={0x18, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_NAME={0x13, 0x1, 'broadcast-link\x00'}]}]}, 0x2c}}, 0x0) 10m59.261185676s ago: executing program 4 (id=1684): r0 = socket$igmp(0x2, 0x3, 0x2) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000180)={'bond0\x00', 0x0}) bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)={0x2, 0x4, 0x8, 0x1, 0x80, 0x1, 0x0, '\x00', r1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50) 10m52.598094769s ago: executing program 6 (id=1685): r0 = openat$vim2m(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0) ioctl$vim2m_VIDIOC_REQBUFS(r0, 0xc0145608, &(0x7f00000002c0)={0x2, 0x2, 0x1, 0x0, 0x8}) ioctl$vim2m_VIDIOC_REQBUFS(r0, 0xc0585609, &(0x7f0000000080)={0x0, 0x2, 0x0, 0x0, 0x3}) 10m52.186706197s ago: executing program 6 (id=1686): unshare(0x24020400) r0 = syz_open_procfs$namespace(0x0, &(0x7f0000004ac0)='ns/mnt\x00') lseek(r0, 0x5, 0x1) 10m45.885601028s ago: executing program 36 (id=1678): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x48241, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32}) ioctl$TUNSETTXFILTER(r0, 0x400454d1, &(0x7f0000000080)=ANY=[@ANYBLOB="000005"]) 10m43.994976653s ago: executing program 37 (id=1684): r0 = socket$igmp(0x2, 0x3, 0x2) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000180)={'bond0\x00', 0x0}) bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)={0x2, 0x4, 0x8, 0x1, 0x80, 0x1, 0x0, '\x00', r1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50) 10m43.122094862s ago: executing program 6 (id=1689): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$devlink(&(0x7f0000000640), 0xffffffffffffffff) sendmsg$DEVLINK_CMD_RATE_SET(r0, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000200)={0x44, r1, 0x1, 0x0, 0x0, {0x2a}, [@DEVLINK_ATTR_PORT_INDEX={0x8, 0x58}, @handle=@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_PORT_INDEX={0x8, 0x3, 0xfffffffd}]}, 0x44}}, 0x0) 10m41.84540531s ago: executing program 6 (id=1690): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0) r1 = dup(r0) ioctl$FIONREAD(r1, 0x541b, 0x0) 10m26.243555689s ago: executing program 38 (id=1690): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0) r1 = dup(r0) ioctl$FIONREAD(r1, 0x541b, 0x0) 4m20.323077465s ago: executing program 1 (id=2168): r0 = socket(0x10, 0x3, 0x0) setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0xc, &(0x7f00000001c0)={0x5813}, 0x10) sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=@ipv6_getaddrlabel={0x24, 0x1e, 0x492dfc465ae32a8d, 0xfffffffa, 0x0, {}, [@IFAL_LABEL={0x8, 0x2, 0x6}]}, 0x24}}, 0x4044) 4m19.676903697s ago: executing program 1 (id=2173): sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000200)=@ipv4_newrule={0x24, 0x20, 0x301, 0x0, 0x25dfdbfd, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, [@FRA_FLOW={0x8, 0xb, 0x5}]}, 0x24}, 0x1, 0x0, 0x0, 0x40000}, 0x0) r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000200)=ANY=[@ANYBLOB="2800000021000100"], 0x28}}, 0x0) 4m18.97165572s ago: executing program 1 (id=2178): r0 = socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000200)={'xfrm0\x00', 0x0}) sendmsg$nl_route_sched(r0, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000000)=@newqdisc={0x3c, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, r1, {}, {0xffff, 0xffff}, {0x7}}, [@qdisc_kind_options=@q_codel={{0xa}, {0xc, 0x2, [@TCA_CODEL_TARGET={0x8, 0x1, 0x6}]}}]}, 0x3c}}, 0x4800) 4m18.207634796s ago: executing program 1 (id=2182): bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="0b00000007000000010001000900001501000000adef5090d8b496457f58a710c1f97dbc3be723cae20077b5032cbd23f73e5e0dffae92f64ad68a01380f9edd8aca110000000000", @ANYRES32], 0x48) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPCTNL_MSG_CT_DELETE(r0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000240)=ANY=[@ANYBLOB="e40000000201010800000000000000000a000000d00001800c000280050001000000000014000180080001000000000008000200000000002c00018014000300ff01000000000000000000000000000114000400ff0100000000000000000000000000010c00028005000100000000004700028005000100010000000600064000000000060005"], 0xe4}}, 0x0) 4m17.514053348s ago: executing program 1 (id=2186): r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f00000001c0)=0x10) symlink(&(0x7f0000000040)='.\x00', &(0x7f0000000100)='./file0\x00') 4m16.777486319s ago: executing program 1 (id=2189): r0 = socket$kcm(0x10, 0x2, 0x0) recvmsg(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000003600)=[{&(0x7f0000000500)=""/109, 0x6d}, {&(0x7f0000001040)=""/4090, 0xffa}, {&(0x7f0000000340)=""/85, 0x55}, {&(0x7f0000000d80)=""/142, 0x8e}, {&(0x7f0000002040)=""/4093, 0xffd}, {&(0x7f0000000140)=""/112, 0x70}], 0x6}, 0x2002) sendmsg$inet(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000fc0)="5c00000012006bab9a3fe3d86e17aa0a046b4877c4aaf68187bae53dca2ba35bda6a876c1d0048007ea608649e7524765f0ef82e3c0000a705259a3651f60a84c9f4d4938037e70e4509c5bb00000000e513aeac9bf2bee150d5fe86", 0x5c}], 0x1, 0x0, 0x0, 0x1f00c00e}, 0x0) 4m10.792129815s ago: executing program 7 (id=2215): syz_mount_image$vfat(&(0x7f00000000c0), &(0x7f0000000000)='./file1\x00', 0x2010000, &(0x7f00000001c0)=ANY=[@ANYBLOB="6e6f6e756d7461696c3d302c756e695f786c6174653d312c696f636861727365743d63703836352c73686f72746e616d653d77696e39352c636f6465706167653d3836392c726f6469722c616c6c6f775f7574696d653d30303030303030303030303030303030303137373737372c73686f72746e616d653d6d697865642c757466383d312c636865636b3d7374726963742c73686f72746e616d653d6c6f7765722c696f636861727365743d6d61636761656c69632c009fe7a64148646d78b2352fb82c3564f8d2296b6f8512835d329176768472a65dd4d0804d842d71bb377c"], 0x25, 0x34c, &(0x7f0000001740)="$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") r0 = open(&(0x7f00000000c0)='.\x00', 0x50080, 0x0) getdents(r0, &(0x7f0000001fc0)=""/184, 0x20002078) 4m9.191259119s ago: executing program 7 (id=2221): sendmmsg$inet(0xffffffffffffffff, &(0x7f0000000c40)=[{{0x0, 0x0, &(0x7f0000000500)=[{&(0x7f0000000180)="d75e123dd6160e7a5a22db53fdbaa2bd3b2e3fe93e52628f09f61bcacf076c03f298dd89542f33a3d93132177e345a4ccfc45837ca", 0x35}], 0x1}}], 0x1, 0x0) r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f00000014c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)={0x2, 0xd, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, [@sadb_x_policy={0x8, 0x12, 0x2, 0x2, 0x0, 0x0, 0x0, {0x10, 0x32, 0x3, 0x0, 0x0, 0x0, 0x0, @in=@rand_addr=0x10003c00, @in6=@private2}}, @sadb_address={0x3, 0x5, 0x0, 0x0, 0x0, @in={0x2, 0x0, @local}}, @sadb_address={0x3, 0x6, 0x0, 0x0, 0x0, @in={0x2, 0x0, @private}}]}, 0x80}}, 0x0) 4m8.193401743s ago: executing program 7 (id=2224): r0 = socket$netlink(0x10, 0x3, 0xb) setsockopt$netlink_NETLINK_ADD_MEMBERSHIP(r0, 0x10e, 0x1, 0x0, 0x0) getsockopt$netlink(r0, 0x10e, 0x9, &(0x7f0000001840)=""/42, &(0x7f0000000100)=0x2a) 4m7.498910535s ago: executing program 7 (id=2228): syz_mount_image$hfsplus(&(0x7f0000000100), &(0x7f0000000080)='./file1\x00', 0x80, &(0x7f0000000480)={[{@uid}, {@barrier}, {}, {@type={'type', 0x3d, "3d21b0c7"}}, {@nobarrier}, {@uid}, {@nls={'nls', 0x3d, 'iso8859-7'}}]}, 0x44, 0x6ff, &(0x7f0000000500)="$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") mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0) rename(&(0x7f0000001980)='./file1\x00', &(0x7f00000001c0)='./file0/file1\x00') 4m6.318386292s ago: executing program 7 (id=2234): syz_mount_image$exfat(&(0x7f00000000c0), &(0x7f0000000300)='./file1\x00', 0x800, &(0x7f0000000440)=ANY=[@ANYBLOB='zero_size_dir,discard,keep_last_dots,allow_utime=00000000000000000003777,allow_utime=000000000000000000040,errors=continue,iocharset=macroman,allow_utime=00000000000000000000007,discard,\x00'], 0x3, 0x150f, &(0x7f0000001f80)="$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") r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='mountinfo\x00') read$FUSE(r0, &(0x7f0000004180)={0x2020}, 0x2020) 4m5.616333391s ago: executing program 7 (id=2238): r0 = syz_io_uring_setup(0x5c2, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x8003}, &(0x7f0000000240)=0x0, &(0x7f0000000200)) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000080)=0xfffffff8, 0x0, 0x4) io_uring_enter(r0, 0x6e2, 0x0, 0xb, 0x0, 0x0) 4m2.856028405s ago: executing program 39 (id=2238): r0 = syz_io_uring_setup(0x5c2, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x8003}, &(0x7f0000000240)=0x0, &(0x7f0000000200)) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000080)=0xfffffff8, 0x0, 0x4) io_uring_enter(r0, 0x6e2, 0x0, 0xb, 0x0, 0x0) 4m1.399574658s ago: executing program 40 (id=2189): r0 = socket$kcm(0x10, 0x2, 0x0) recvmsg(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000003600)=[{&(0x7f0000000500)=""/109, 0x6d}, {&(0x7f0000001040)=""/4090, 0xffa}, {&(0x7f0000000340)=""/85, 0x55}, {&(0x7f0000000d80)=""/142, 0x8e}, {&(0x7f0000002040)=""/4093, 0xffd}, {&(0x7f0000000140)=""/112, 0x70}], 0x6}, 0x2002) sendmsg$inet(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000fc0)="5c00000012006bab9a3fe3d86e17aa0a046b4877c4aaf68187bae53dca2ba35bda6a876c1d0048007ea608649e7524765f0ef82e3c0000a705259a3651f60a84c9f4d4938037e70e4509c5bb00000000e513aeac9bf2bee150d5fe86", 0x5c}], 0x1, 0x0, 0x0, 0x1f00c00e}, 0x0) 3.506764878s ago: executing program 8 (id=3514): set_mempolicy(0x8006, &(0x7f0000000040)=0xfff, 0x5) socket$inet_mptcp(0x2, 0x1, 0x106) mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x2, 0x4c831, 0xffffffffffffffff, 0x0) 3.419803417s ago: executing program 3 (id=3515): r0 = socket$unix(0x1, 0x2, 0x0) bind$unix(r0, &(0x7f0000000180)=@file={0x1, './file0\x00'}, 0x6e) truncate(&(0x7f0000000200)='./file0\x00', 0x10) 3.342018402s ago: executing program 9 (id=3516): r0 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$inet_MCAST_JOIN_GROUP(r0, 0x0, 0x2a, &(0x7f0000000080)={0x2, {{0x2, 0x0, @multicast1}}}, 0x84) setsockopt$inet_group_source_req(r0, 0x0, 0x2c, &(0x7f00000004c0)={0x2, {{0x2, 0x0, @multicast2}}, {{0x2, 0x0, @empty}}}, 0x104) 3.241330229s ago: executing program 0 (id=3518): r0 = socket$inet_smc(0x2b, 0x1, 0x0) sendto$inet(r0, 0x0, 0x0, 0x200408c4, &(0x7f0000000200)={0x2, 0x4e21, @local}, 0x10) ppoll(&(0x7f0000000480)=[{r0}], 0x1, 0x0, 0x0, 0x0) 2.825111568s ago: executing program 3 (id=3519): r0 = socket$inet6_udp(0xa, 0x2, 0x0) r1 = socket$nl_rdma(0x10, 0x3, 0x14) sendmsg$RDMA_NLDEV_CMD_RES_MR_GET(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000340)=ANY=[@ANYBLOB="200000001a140100000000000000000008000300000000000800", @ANYRES64=r0], 0x20}, 0x1, 0x0, 0x0, 0x4000015}, 0x24008000) 2.718129075s ago: executing program 5 (id=3520): r0 = syz_open_dev$evdev(&(0x7f00000001c0), 0x0, 0x0) ioctl$EVIOCSMASK(r0, 0x40104593, &(0x7f0000000080)={0x0, 0x0, 0x0}) ioctl$EVIOCSKEYCODE_V2(r0, 0x80104592, &(0x7f0000000040)={0x0, 0x0, 0x0, 0xf773, "00207d2000000020201b14700c1e0ac74f000000001200000000000900"}) 2.712350352s ago: executing program 9 (id=3521): r0 = syz_open_procfs(0x0, &(0x7f0000002140)='fdinfo\x00') lseek(r0, 0x1, 0x0) getdents64(r0, &(0x7f00000004c0)=""/131, 0x83) 2.641391628s ago: executing program 8 (id=3522): r0 = socket$nl_route(0x10, 0x3, 0x0) setsockopt$netlink_NETLINK_NO_ENOBUFS(r0, 0x10e, 0xc, &(0x7f0000000340)=0x6, 0x4) sendmsg$nl_route(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000300)=ANY=[@ANYBLOB="240000001a0001000000ff7f00000000802000", @ANYRES16=0x0, @ANYRES32], 0x24}}, 0x200080d0) 2.566422303s ago: executing program 0 (id=3523): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100001c0000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000000c0)='sys_enter\x00', r0}, 0x10) times(0x0) 2.245583598s ago: executing program 3 (id=3524): socket$nl_route(0x10, 0x3, 0x0) r0 = socket$nl_rdma(0x10, 0x3, 0x14) sendmsg$RDMA_NLDEV_CMD_STAT_GET(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000000)={0x20, 0x1411, 0x1, 0x0, 0x0, "", [@RDMA_NLDEV_ATTR_DEV_INDEX={0x8}, @RDMA_NLDEV_ATTR_PORT_INDEX={0x8, 0x3, 0x1}]}, 0x20}}, 0x0) 2.236940143s ago: executing program 5 (id=3525): shmat(0x0, &(0x7f0000000000/0x2000)=nil, 0x5000) r0 = socket(0x40000000015, 0x5, 0x0) getsockopt(r0, 0x200000000114, 0x271b, 0x0, &(0x7f0000000000)) 2.079262085s ago: executing program 9 (id=3526): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$devlink(&(0x7f00000000c0), 0xffffffffffffffff) sendmsg$DEVLINK_CMD_RELOAD(r0, &(0x7f0000000180)={0x0, 0x600, &(0x7f0000000140)={&(0x7f0000000100)={0x3c, r1, 0x1, 0x0, 0x0, {0x24}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8}}]}, 0x3c}}, 0x0) 2.017945245s ago: executing program 8 (id=3527): mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$IPT_SO_SET_REPLACE(r0, 0x4000000000000, 0x40, &(0x7f0000000180)=@raw={'raw\x00', 0xc01, 0x3, 0x200, 0x2c8, 0x5002004a, 0x6, 0x2c8, 0x3, 0x3c8, 0x3c8, 0x3c8, 0x3c8, 0x3c8, 0x7fffffe, 0x0, {[{{@ip={@dev, @broadcast=0xfeffffff, 0x0, 0x0, 'hsr0\x00', 'bridge0\x00'}, 0x0, 0x70, 0x98, 0x0, {0x0, 0x3fa}}, @common=@unspec=@NFQUEUE2={0x28, 'NFQUEUE\x00', 0x2, {0x0, 0x180}}}, {{@uncond, 0x0, 0x70, 0xd0}, @common=@CLUSTERIP={0x60, 'CLUSTERIP\x00', 0x0, {0x0, @link_local}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28, '\x00', 0x4}}}}, 0x260) 1.830752909s ago: executing program 0 (id=3528): syz_mount_image$msdos(&(0x7f0000000180), &(0x7f0000000100)='.\x00', 0x1a4243c, &(0x7f0000005600)=ANY=[@ANYRES16, @ANYRES64, @ANYRES8=0x0, @ANYBLOB="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", @ANYRESDEC, @ANYRESDEC=0x0, @ANYRES32=0x0, @ANYBLOB="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", @ANYRES8, @ANYBLOB="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"], 0x0, 0x0, &(0x7f0000000000)) open(&(0x7f0000000000)='./bus\x00', 0x14bc63, 0x19a) mount(&(0x7f0000000100), &(0x7f0000000280)='./bus\x00', &(0x7f00000002c0)='9p\x00', 0x0, &(0x7f0000000300)='trans=rdma,') 1.655297164s ago: executing program 5 (id=3529): close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) r0 = socket(0x2000000015, 0x80005, 0x0) bind$inet6(r0, &(0x7f0000000180)={0xa, 0x4e21, 0x0, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}}, 0x1c) 1.582361744s ago: executing program 3 (id=3530): r0 = socket$tipc(0x1e, 0x5, 0x0) sendmsg$tipc(r0, &(0x7f0000000240)={&(0x7f0000000300)=@id={0x1e, 0x3, 0x0, {0x4e23}}, 0x10, &(0x7f0000000040)=[{&(0x7f0000000680)="bc", 0x1}], 0x1, 0x0, 0x0, 0x10}, 0x0) recvmmsg(r0, &(0x7f0000000c80)=[{{0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f00000005c0)=""/24, 0x18}], 0x1, &(0x7f0000000440)=""/78, 0x4e}}], 0x1, 0x0, 0x0) 1.517962016s ago: executing program 9 (id=3531): getsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, &(0x7f0000000100)={@dev={0xfe, 0x80, '\x00', 0x4}, 0x0, 0x1}, 0x0) r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3) ioctl$FS_IOC_GETFSLABEL(r0, 0x400452c8, &(0x7f0000000100)) 1.451255944s ago: executing program 8 (id=3532): r0 = io_uring_setup(0x177f, &(0x7f00000002c0)) close_range(r0, 0xffffffffffffffff, 0x0) getrandom(&(0x7f0000000040)=""/133, 0xfffffffffffffdde, 0x800000000000000) 1.235358682s ago: executing program 5 (id=3533): r0 = socket$inet_smc(0x2b, 0x1, 0x0) sendto$inet(r0, 0x0, 0x0, 0x200408c4, &(0x7f0000000200)={0x2, 0x4e21, @local}, 0x10) ppoll(&(0x7f0000000480)=[{r0}], 0x1, 0x0, 0x0, 0x0) 1.220794039s ago: executing program 0 (id=3534): capset(&(0x7f0000000100)={0x20071026}, &(0x7f0000000140)) r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$TIOCSLCKTRMIOS(r0, 0x5457, 0x0) 905.196781ms ago: executing program 3 (id=3535): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$DEVLINK_CMD_TRAP_POLICER_SET(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000002200)={0x54, r1, 0x1, 0x0, 0x0, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0x8e, 0x3}, {0xc, 0x8f, 0x1429ba60}, {0xc}}]}, 0x54}}, 0x0) 904.897984ms ago: executing program 9 (id=3536): r0 = syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0) ioctl$DRM_IOCTL_MODE_GET_LEASE(r0, 0xc01064c8, &(0x7f0000000280)={0x1, 0x0, &(0x7f0000000200)=[0x0]}) ioctl$DRM_IOCTL_MODE_SETGAMMA(r0, 0xc02064a5, &(0x7f0000000480)={r1, 0x0, 0x0, 0x0, 0x0}) 802.219113ms ago: executing program 8 (id=3537): r0 = syz_open_procfs(0x0, &(0x7f0000002140)='fdinfo\x00') lseek(r0, 0x1, 0x0) getdents64(r0, &(0x7f00000004c0)=""/131, 0x83) 642.852575ms ago: executing program 0 (id=3538): r0 = open(&(0x7f0000000080)='./file0\x00', 0x40, 0x19a) r1 = syz_open_dev$midi(&(0x7f0000000fc0), 0x84, 0x81) mount$9p_fd(0x0, &(0x7f0000000f40)='./file0\x00', &(0x7f0000000f80), 0x808000, &(0x7f00000010c0)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 541.064783ms ago: executing program 5 (id=3539): rt_sigaction(0x40, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0, 0x8, &(0x7f00000002c0)) r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='stat\x00') preadv(r0, &(0x7f00000001c0)=[{&(0x7f0000000100)=""/24, 0x18}], 0x1, 0x0, 0x0) 320.111557ms ago: executing program 3 (id=3540): r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/softnet_stat\x00') r1 = open(&(0x7f0000000080)='./file1\x00', 0x10b942, 0x0) sendfile(r1, r0, 0x0, 0x80000000) 317.646873ms ago: executing program 9 (id=3541): syz_mount_image$nilfs2(&(0x7f0000000ec0), &(0x7f0000000080)='./file0\x00', 0x4040, &(0x7f0000000400)=ANY=[], 0x1, 0xf56, &(0x7f0000001e40)="$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") mkdir(&(0x7f00000003c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) rename(&(0x7f0000000440)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', &(0x7f0000000080)='./file0\x00') 169.209199ms ago: executing program 8 (id=3542): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x20000000}, 0x14) sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a80000000060a0b04200000000000000002000000540004803c0001800a0001006c696d69740000002c0002800c000240000000000000000008000540000000000c00014000000000000000010800044000000001140001800b0001007470726f78790000040002800900010073797a30000000000900020073797a32"], 0xa8}}, 0x0) 525.695µs ago: executing program 0 (id=3543): r0 = syz_open_dev$vbi(&(0x7f0000000080), 0x1, 0x2) ioctl$VIDIOC_S_OUTPUT(r0, 0xc004562f, &(0x7f00000000c0)=0x1) ioctl$VIDIOC_S_DV_TIMINGS(r0, 0xc0845657, &(0x7f0000000200)={0x0, @reserved}) 0s ago: executing program 5 (id=3544): bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="00eb010018000000000001000cdfd61c1dee2a4e9a38"], 0x0, 0x26, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x28) r0 = socket$inet6_sctp(0xa, 0x1, 0x84) ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f0000000040)={'netdevsim0\x00', &(0x7f0000000000)=@ethtool_pauseparam={0x11}}) kernel console output (not intermixed with test programs): 4: comm syz.3.2266: couldn't read orphan inode 13 (err -117) [ 1307.625347][T12715] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1307.628979][ T3695] hsr_slave_0: left promiscuous mode [ 1307.670552][ T3695] hsr_slave_1: left promiscuous mode [ 1307.681214][ T3695] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 1307.689229][ T3695] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 1307.714983][ T3695] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 1307.723023][ T3695] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 1307.774389][ T3695] veth1_macvtap: left promiscuous mode [ 1307.780134][ T3695] veth0_macvtap: left promiscuous mode [ 1307.786399][ T3695] veth1_vlan: left promiscuous mode [ 1307.791944][ T3695] veth0_vlan: left promiscuous mode [ 1308.123040][T10839] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1308.276370][ T9947] Bluetooth: hci5: command tx timeout [ 1308.696997][ T3695] team0 (unregistering): Port device team_slave_1 removed [ 1308.751541][ T3695] team0 (unregistering): Port device team_slave_0 removed [ 1309.169759][T12637] hsr_slave_0: entered promiscuous mode [ 1309.182495][T12637] hsr_slave_1: entered promiscuous mode [ 1309.191335][T12637] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 1309.200492][T12637] Cannot create hsr debugfs directory [ 1310.857361][T12625] netdevsim netdevsim5 netdevsim0: renamed from eth0 [ 1310.938271][T12625] netdevsim netdevsim5 netdevsim1: renamed from eth1 [ 1311.054334][T12625] netdevsim netdevsim5 netdevsim2: renamed from eth2 [ 1311.186874][T12625] netdevsim netdevsim5 netdevsim3: renamed from eth3 [ 1311.678773][T12637] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 1311.843268][T12637] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 1311.954077][T12637] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 1312.048057][T12637] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 1312.651649][T12763] batadv0: entered promiscuous mode [ 1312.657584][T12763] macvtap1: entered promiscuous mode [ 1312.668766][T12763] 8021q: adding VLAN 0 to HW filter on device macvtap1 [ 1312.791835][T12763] batadv0: left promiscuous mode [ 1313.277261][T12625] 8021q: adding VLAN 0 to HW filter on device bond0 [ 1313.527932][T12625] 8021q: adding VLAN 0 to HW filter on device team0 [ 1313.591232][ T55] bridge0: port 1(bridge_slave_0) entered blocking state [ 1313.598941][ T55] bridge0: port 1(bridge_slave_0) entered forwarding state [ 1313.678555][ T55] bridge0: port 2(bridge_slave_1) entered blocking state [ 1313.686260][ T55] bridge0: port 2(bridge_slave_1) entered forwarding state [ 1313.750380][T12637] 8021q: adding VLAN 0 to HW filter on device bond0 [ 1314.003670][T12637] 8021q: adding VLAN 0 to HW filter on device team0 [ 1314.141626][ T4026] bridge0: port 1(bridge_slave_0) entered blocking state [ 1314.149363][ T4026] bridge0: port 1(bridge_slave_0) entered forwarding state [ 1314.277512][ T4026] bridge0: port 2(bridge_slave_1) entered blocking state [ 1314.285249][ T4026] bridge0: port 2(bridge_slave_1) entered forwarding state [ 1314.358019][T12778] loop9: detected capacity change from 0 to 2048 [ 1314.665756][T12778] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1315.320530][T10793] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1316.398089][T12625] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 1317.071326][T12637] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 1317.671697][T12637] veth0_vlan: entered promiscuous mode [ 1317.819708][T12637] veth1_vlan: entered promiscuous mode [ 1318.255524][T12637] veth0_macvtap: entered promiscuous mode [ 1318.362716][T12637] veth1_macvtap: entered promiscuous mode [ 1318.590763][T12637] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 1318.602943][T12637] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1318.617000][T12637] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 1318.628211][T12637] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1318.638900][T12637] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 1318.652346][T12637] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1318.666394][T12637] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 1318.680662][T12637] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1318.696128][T12637] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 1318.964557][T12839] loop3: detected capacity change from 0 to 128 [ 1318.993257][T12839] qnx6: unable to set blocksize [ 1319.052478][T12637] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 1319.066278][T12637] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1319.077244][T12637] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 1319.088475][T12637] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1319.101153][T12637] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 1319.111994][T12637] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1319.122160][T12637] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 1319.137912][T12637] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1319.158789][T12637] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 1319.410061][T12637] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 1319.420516][T12637] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 1319.435417][T12637] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 1319.448792][T12637] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 1319.590251][T12625] veth0_vlan: entered promiscuous mode [ 1319.709476][T12625] veth1_vlan: entered promiscuous mode [ 1319.733271][T12843] loop9: detected capacity change from 0 to 1024 [ 1319.922119][T12847] loop3: detected capacity change from 0 to 1024 [ 1320.010122][T12847] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1320.058045][T12852] hfsplus: cannot replace xattr [ 1320.180436][T12625] veth0_macvtap: entered promiscuous mode [ 1320.206834][T12847] EXT4-fs error (device loop3): __ext4_remount:6749: comm syz.3.2304: Abort forced by user [ 1320.261191][T12847] EXT4-fs (loop3): Remounting filesystem read-only [ 1320.269324][T12847] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000000000 r/w. Quota mode: writeback. [ 1320.291103][T12625] veth1_macvtap: entered promiscuous mode [ 1320.475489][T10394] hfsplus: b-tree write err: -5, ino 4 [ 1320.543140][T12625] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 1320.555762][T12625] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1320.572827][T12625] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 1320.585620][T12625] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1320.595763][T12625] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 1320.606590][T12625] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1320.616816][T12625] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 1320.627576][T12625] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1320.637958][T12625] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 1320.648730][T12625] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1320.673087][T12625] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 1320.827902][T12625] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 1320.840101][T12625] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1320.847103][T10839] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1320.851337][T12625] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 1320.877042][T12625] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1320.889171][T12625] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 1320.900075][T12625] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1320.910345][T12625] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 1320.921173][T12625] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1320.931364][T12625] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 1320.942154][T12625] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1320.959033][T12625] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 1321.400025][T12625] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 1321.409262][T12625] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 1321.418486][T12625] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 1321.427609][T12625] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 1322.098162][T12863] loop8: detected capacity change from 0 to 4096 [ 1322.509070][ T29] audit: type=1800 audit(1737612408.210:74): pid=12863 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.8.2308" name="file1" dev="loop8" ino=30 res=0 errno=0 [ 1323.126237][T12888] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2312'. [ 1325.145484][T12922] loop8: detected capacity change from 0 to 128 [ 1325.276899][T12922] EXT4-fs (loop8): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 1325.313560][T12922] ext4 filesystem being mounted at /137/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 1325.345778][ C0] vkms_vblank_simulate: vblank timer overrun [ 1325.865603][T10812] EXT4-fs (loop8): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 1326.351964][T12945] netlink: 'syz.8.2325': attribute type 228 has an invalid length. [ 1326.361326][T12945] netlink: 8 bytes leftover after parsing attributes in process `syz.8.2325'. [ 1327.041171][ T3543] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1327.049420][ T3543] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1327.091429][T12954] loop9: detected capacity change from 0 to 128 [ 1327.317718][ T3695] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1327.328921][ T3695] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1327.846085][T12963] loop3: detected capacity change from 0 to 512 [ 1327.914551][T12963] EXT4-fs: Ignoring removed nobh option [ 1327.920611][T12963] EXT4-fs: Ignoring removed oldalloc option [ 1328.087236][T12963] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1328.100474][T12963] ext4 filesystem being mounted at /138/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 1328.203100][T12963] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.2329: bg 0: block 224: padding at end of block bitmap is not set [ 1328.219201][T12963] EXT4-fs (loop3): Remounting filesystem read-only [ 1328.497894][T10839] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1328.923115][ T55] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1328.931239][ T55] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1329.025271][T12980] tipc: Can't bind to reserved service type 1 [ 1329.117729][ T3695] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1329.126018][ T3695] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1329.482795][T12975] loop0: detected capacity change from 0 to 8192 [ 1329.701482][T12985] loop8: detected capacity change from 0 to 1024 [ 1329.769978][T12985] EXT4-fs: Ignoring removed orlov option [ 1329.867488][T12985] EXT4-fs (loop8): Test dummy encryption mode enabled [ 1329.911471][T12985] EXT4-fs (loop8): stripe (7) is not aligned with cluster size (16), stripe is disabled [ 1330.077707][T12985] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1330.296856][ T1284] ieee802154 phy0 wpan0: encryption failed: -22 [ 1330.303743][ T1284] ieee802154 phy1 wpan1: encryption failed: -22 [ 1330.829236][T10812] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1332.022960][T10855] usb 10-1: new high-speed USB device number 5 using dummy_hcd [ 1332.243445][T10914] usb 9-1: new high-speed USB device number 5 using dummy_hcd [ 1332.313425][T10855] usb 10-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08 [ 1332.323030][T10855] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1332.331414][T10855] usb 10-1: Product: syz [ 1332.343407][T10855] usb 10-1: Manufacturer: syz [ 1332.348329][T10855] usb 10-1: SerialNumber: syz [ 1332.461331][T10855] usb 10-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested [ 1332.489547][T10914] usb 9-1: config 0 interface 0 altsetting 255 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 1332.503193][T10914] usb 9-1: config 0 interface 0 has no altsetting 0 [ 1332.510299][T10914] usb 9-1: New USB device found, idVendor=056a, idProduct=00c2, bcdDevice= 0.00 [ 1332.519857][T10914] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1332.675647][T10914] usb 9-1: config 0 descriptor?? [ 1332.878454][T10866] usb 10-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008 [ 1333.211257][T10914] wacom 0003:056A:00C2.002B: unknown main item tag 0x0 [ 1333.219661][T10914] wacom 0003:056A:00C2.002B: unknown main item tag 0x0 [ 1333.227826][T10914] wacom 0003:056A:00C2.002B: unknown main item tag 0x0 [ 1333.236908][T10914] wacom 0003:056A:00C2.002B: unknown main item tag 0x0 [ 1333.244995][T10914] wacom 0003:056A:00C2.002B: unknown main item tag 0x0 [ 1333.310677][T10914] wacom 0003:056A:00C2.002B: hidraw0: USB HID ve.4e Device [HID 056a:00c2] on usb-dummy_hcd.8-1/input0 [ 1333.440337][ T5412] usb 9-1: USB disconnect, device number 5 [ 1333.615291][ T8] usb 10-1: USB disconnect, device number 5 [ 1334.273218][T10866] usb 10-1: Service connection timeout for: 256 [ 1334.290723][T10866] ath9k_htc 10-1:1.0: ath9k_htc: Unable to initialize HTC services [ 1334.301961][T10866] ath9k_htc: Failed to initialize the device [ 1334.413333][ T8] usb 10-1: ath9k_htc: USB layer deinitialized [ 1335.056610][T13056] loop0: detected capacity change from 0 to 16 [ 1335.103072][ T8] usb 10-1: new high-speed USB device number 6 using dummy_hcd [ 1335.166656][T13056] erofs (device loop0): mounted with root inode @ nid 36. [ 1335.234779][T13056] syz.0.2360: attempt to access beyond end of device [ 1335.234779][T13056] loop0: rw=524288, sector=7864328, nr_sectors = 8 limit=16 [ 1335.249854][T13056] syz.0.2360: attempt to access beyond end of device [ 1335.249854][T13056] loop0: rw=0, sector=7864328, nr_sectors = 8 limit=16 [ 1335.253228][T13062] pimreg: entered allmulticast mode [ 1335.263776][T13056] erofs (device loop0): read error -5 @ 0 of nid 89 [ 1335.287140][ T8] usb 10-1: Using ep0 maxpacket: 16 [ 1335.306648][ T29] audit: type=1800 audit(1737612420.980:75): pid=13056 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.2360" name="file3" dev="loop0" ino=89 res=0 errno=0 [ 1335.342668][ T8] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 1335.354204][ T8] usb 10-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 1335.370142][ T8] usb 10-1: New USB device found, idVendor=046d, idProduct=c295, bcdDevice= 0.00 [ 1335.379811][ T8] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1335.399521][T13064] pimreg: left allmulticast mode [ 1335.449866][ T8] usb 10-1: config 0 descriptor?? [ 1335.545456][T13065] netlink: 28 bytes leftover after parsing attributes in process `syz.8.2363'. [ 1335.555450][T13065] netlink: 28 bytes leftover after parsing attributes in process `syz.8.2363'. [ 1335.998269][ T8] logitech 0003:046D:C295.002C: hidraw0: USB HID v0.00 Device [HID 046d:c295] on usb-dummy_hcd.9-1/input0 [ 1336.010295][ T8] logitech 0003:046D:C295.002C: no inputs found [ 1336.064885][T13070] loop0: detected capacity change from 0 to 256 [ 1336.143284][T13070] FAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 1336.179609][ T8] usb 10-1: USB disconnect, device number 6 [ 1337.197672][T13083] loop0: detected capacity change from 0 to 256 [ 1337.338110][T13083] exFAT-fs (loop0): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d) [ 1338.263306][T13100] netlink: 8 bytes leftover after parsing attributes in process `syz.9.2376'. [ 1338.998160][T13110] support for the xor transformation has been removed. [ 1339.348513][T13118] loop5: detected capacity change from 0 to 512 [ 1339.479483][T13118] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a856c098, mo2=0002] [ 1339.537739][T13118] System zones: 1-12 [ 1339.583650][T13118] EXT4-fs error (device loop5): ext4_xattr_ibody_find:2240: inode #15: comm syz.5.2382: corrupted in-inode xattr: invalid ea_ino [ 1339.693199][T13118] EXT4-fs error (device loop5): ext4_orphan_get:1394: comm syz.5.2382: couldn't read orphan inode 15 (err -117) [ 1339.801015][T13118] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1340.076352][T13128] loop9: detected capacity change from 0 to 2048 [ 1340.114542][T13128] NILFS (loop9): broken superblock, retrying with spare superblock (blocksize = 1024) [ 1340.299127][T12625] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1340.415238][T13136] NILFS (loop9): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 1340.559762][T13139] loop8: detected capacity change from 0 to 256 [ 1340.621814][T13139] exfat: Deprecated parameter 'utf8' [ 1340.627856][T13139] exfat: Deprecated parameter 'utf8' [ 1340.645440][T13139] exfat: Deprecated parameter 'utf8' [ 1340.855276][T13139] exFAT-fs (loop8): failed to load upcase table (idx : 0x00010000, chksum : 0x18acca35, utbl_chksum : 0xe619d30d) [ 1342.437903][T13164] loop8: detected capacity change from 0 to 512 [ 1342.483539][T13164] EXT4-fs (loop8): encrypted files will use data=ordered instead of data journaling mode [ 1342.680411][T13164] EXT4-fs (loop8): 1 orphan inode deleted [ 1342.680508][T13164] EXT4-fs (loop8): 1 truncate cleaned up [ 1342.682280][T13164] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1342.925826][T13173] loop5: detected capacity change from 0 to 1024 [ 1343.064046][T10812] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1343.529945][T13177] netlink: 'syz.8.2403': attribute type 1 has an invalid length. [ 1343.538809][T13177] netlink: 236 bytes leftover after parsing attributes in process `syz.8.2403'. [ 1344.493946][T13198] loop3: detected capacity change from 0 to 512 [ 1344.719370][T13198] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1344.741139][T13198] ext4 filesystem being mounted at /159/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 1345.218688][T10839] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1345.797862][T13216] sg_write: data in/out 6554589/20 bytes for SCSI command 0x0-- guessing data in; [ 1345.797862][T13216] program syz.8.2418 not setting count and/or reply_len properly [ 1345.884058][T13218] netlink: 16 bytes leftover after parsing attributes in process `syz.3.2417'. [ 1346.255568][ T5412] usb 6-1: new high-speed USB device number 9 using dummy_hcd [ 1346.450880][ T5412] usb 6-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3 [ 1346.460626][ T5412] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1346.565223][ T5412] usb 6-1: config 0 descriptor?? [ 1346.625430][ T5412] cp210x 6-1:0.0: cp210x converter detected [ 1347.087349][ T5412] usb 6-1: cp210x converter now attached to ttyUSB0 [ 1347.270770][T10914] usb 6-1: USB disconnect, device number 9 [ 1347.311532][T10914] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0 [ 1347.400736][T10914] cp210x 6-1:0.0: device disconnected [ 1347.637858][ T29] audit: type=1326 audit(1737612433.320:76): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13238 comm="syz.3.2426" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf746d579 code=0x7ffc0000 [ 1347.660590][ T29] audit: type=1326 audit(1737612433.320:77): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13238 comm="syz.3.2426" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf746d579 code=0x7ffc0000 [ 1347.812793][ T29] audit: type=1326 audit(1737612433.390:78): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13238 comm="syz.3.2426" exe="/root/syz-executor" sig=0 arch=40000003 syscall=224 compat=1 ip=0xf746d579 code=0x7ffc0000 [ 1347.838164][ T29] audit: type=1326 audit(1737612433.400:79): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13238 comm="syz.3.2426" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf746d579 code=0x7ffc0000 [ 1347.860703][ T29] audit: type=1326 audit(1737612433.400:80): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13238 comm="syz.3.2426" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf746d579 code=0x7ffc0000 [ 1348.921713][T13259] program syz.8.2434 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 1349.361748][T13269] loop0: detected capacity change from 0 to 64 [ 1349.702298][T13273] dummy0: entered promiscuous mode [ 1349.753609][T13272] dummy0: left promiscuous mode [ 1349.966521][ T8] usb 10-1: new high-speed USB device number 7 using dummy_hcd [ 1350.204493][ T8] usb 10-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3 [ 1350.214122][ T8] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1350.271761][ T8] usb 10-1: config 0 descriptor?? [ 1350.294024][ T8] cp210x 10-1:0.0: cp210x converter detected [ 1350.576688][T13284] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2444'. [ 1350.632031][T13286] loop0: detected capacity change from 0 to 256 [ 1350.747420][ T8] usb 10-1: cp210x converter now attached to ttyUSB0 [ 1350.963938][T10914] usb 10-1: USB disconnect, device number 7 [ 1350.983463][T13286] FAT-fs (loop0): Directory bread(block 64) failed [ 1350.990452][T13286] FAT-fs (loop0): Directory bread(block 65) failed [ 1350.997671][T13286] FAT-fs (loop0): Directory bread(block 66) failed [ 1351.007197][T13286] FAT-fs (loop0): Directory bread(block 67) failed [ 1351.014286][T13286] FAT-fs (loop0): Directory bread(block 68) failed [ 1351.021042][T13286] FAT-fs (loop0): Directory bread(block 69) failed [ 1351.028083][T13286] FAT-fs (loop0): Directory bread(block 70) failed [ 1351.037666][T13286] FAT-fs (loop0): Directory bread(block 71) failed [ 1351.044755][T13286] FAT-fs (loop0): Directory bread(block 72) failed [ 1351.051506][T13286] FAT-fs (loop0): Directory bread(block 73) failed [ 1351.054102][T10914] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0 [ 1351.185597][T10914] cp210x 10-1:0.0: device disconnected [ 1352.061963][T13300] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2449'. [ 1352.793720][T13312] tipc: Started in network mode [ 1352.799060][T13312] tipc: Node identity ff000000000000000000000000000001, cluster identity 4711 [ 1352.811928][T13312] tipc: Enabling of bearer rejected, failed to enable media [ 1353.950196][T13330] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2461'. [ 1354.274927][T13336] netlink: 8 bytes leftover after parsing attributes in process `syz.9.2463'. [ 1354.284388][T13336] netlink: 4 bytes leftover after parsing attributes in process `syz.9.2463'. [ 1354.293833][T13336] netlink: 'syz.9.2463': attribute type 11 has an invalid length. [ 1354.403169][ T8] usb 9-1: new high-speed USB device number 6 using dummy_hcd [ 1354.644925][ T8] usb 9-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3 [ 1354.654502][ T8] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1354.736300][ T8] usb 9-1: config 0 descriptor?? [ 1354.794731][ T8] cp210x 9-1:0.0: cp210x converter detected [ 1355.167734][T13346] netlink: 100 bytes leftover after parsing attributes in process `syz.5.2467'. [ 1355.207598][T13348] netlink: 'syz.3.2468': attribute type 2 has an invalid length. [ 1355.216028][T13348] netlink: 'syz.3.2468': attribute type 9 has an invalid length. [ 1355.224304][T13348] netlink: 'syz.3.2468': attribute type 1 has an invalid length. [ 1355.232229][T13348] netlink: 209836 bytes leftover after parsing attributes in process `syz.3.2468'. [ 1355.258364][ T8] usb 9-1: cp210x converter now attached to ttyUSB0 [ 1355.452070][ T8] usb 9-1: USB disconnect, device number 6 [ 1355.494005][ T8] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0 [ 1355.543036][ T8] cp210x 9-1:0.0: device disconnected [ 1355.880547][T13357] loop5: detected capacity change from 0 to 256 [ 1356.930373][T13361] loop9: detected capacity change from 0 to 4096 [ 1357.155884][T13372] NILFS (loop9): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 1357.232194][ T29] audit: type=1800 audit(1737612442.930:81): pid=13361 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.9.2472" name="bus" dev="loop9" ino=18 res=0 errno=0 [ 1357.713780][T13383] netlink: 260 bytes leftover after parsing attributes in process `syz.3.2480'. [ 1357.723285][T13383] netlink: 256 bytes leftover after parsing attributes in process `syz.3.2480'. [ 1357.738995][T13383] unsupported nlmsg_type 40 [ 1357.823719][T10914] usb 9-1: new high-speed USB device number 7 using dummy_hcd [ 1357.986653][T13380] loop5: detected capacity change from 0 to 4096 [ 1358.063682][T10914] usb 9-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 1358.074557][T10914] usb 9-1: config 1 has 1 interface, different from the descriptor's value: 3 [ 1358.118126][T10914] usb 9-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00 [ 1358.127740][T10914] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3 [ 1358.136277][T10914] usb 9-1: SerialNumber: syz [ 1358.397824][T13380] ntfs3(loop5): Failed to initialize $Extend/$ObjId. [ 1358.460556][T10914] usb 9-1: 0:2 : does not exist [ 1358.578281][T10914] usb 9-1: USB disconnect, device number 7 [ 1358.592938][T13393] loop3: detected capacity change from 0 to 128 [ 1358.794128][T13395] loop0: detected capacity change from 0 to 256 [ 1359.440752][T13400] loop3: detected capacity change from 0 to 512 [ 1359.570139][T13400] EXT4-fs (loop3): orphan cleanup on readonly fs [ 1359.578733][T13400] EXT4-fs error (device loop3): ext4_quota_enable:7108: comm syz.3.2487: Bad quota inum: 134217728, type: 1 [ 1359.649348][T13408] loop8: detected capacity change from 0 to 512 [ 1359.672360][T13408] EXT4-fs: journaled quota format not specified [ 1359.705252][T13400] EXT4-fs warning (device loop3): ext4_enable_quotas:7156: Failed to enable quota tracking (type=1, err=-117, ino=134217728). Please run e2fsck to fix. [ 1359.725499][T13400] EXT4-fs (loop3): Cannot turn on quotas: error -117 [ 1359.735173][T13400] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 1360.096092][T13413] netlink: 8 bytes leftover after parsing attributes in process `syz.9.2491'. [ 1360.249732][T10839] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1361.300535][T13432] loop3: detected capacity change from 0 to 8 [ 1361.426055][T13432] SQUASHFS error: Unable to read directory block [1d0:2e] [ 1361.499402][T13436] loop9: detected capacity change from 0 to 512 [ 1361.540391][T13436] EXT4-fs (loop9): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349) [ 1361.607704][T13436] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8842e12c, mo2=0002] [ 1361.630470][T13436] EXT4-fs (loop9): orphan cleanup on readonly fs [ 1361.650887][T13436] EXT4-fs error (device loop9): ext4_validate_block_bitmap:441: comm syz.9.2499: bg 0: block 361: padding at end of block bitmap is not set [ 1361.705789][T13441] loop8: detected capacity change from 0 to 128 [ 1361.709412][T13436] EXT4-fs (loop9): Remounting filesystem read-only [ 1361.721178][T13436] EXT4-fs (loop9): 1 truncate cleaned up [ 1361.731600][T13436] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000007 ro without journal. Quota mode: none. [ 1361.768500][T13436] EXT4-fs warning (device loop9): dx_probe:893: inode #2: comm syz.9.2499: dx entry: limit 0 != root limit 125 [ 1361.778171][T13441] FAT-fs (loop8): bogus number of reserved sectors [ 1361.783446][T13436] EXT4-fs warning (device loop9): dx_probe:966: inode #2: comm syz.9.2499: Corrupt directory, running e2fsck is recommended [ 1361.787362][T13441] FAT-fs (loop8): This doesn't look like a DOS 1.x volume; DOS 2.x BPB is non-zero [ 1361.810417][T13441] FAT-fs (loop8): Can't find a valid FAT filesystem [ 1362.196407][T10793] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000007. [ 1362.320288][T13446] loop5: detected capacity change from 0 to 512 [ 1362.395039][T13446] EXT4-fs: Ignoring removed mblk_io_submit option [ 1362.401881][T13446] EXT4-fs: Ignoring removed orlov option [ 1362.635039][T13446] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1362.650365][T13446] ext4 filesystem being mounted at /33/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 1362.716308][T13455] netlink: 16178 bytes leftover after parsing attributes in process `syz.9.2505'. [ 1363.091794][T12625] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1363.315686][ T9947] Bluetooth: hci0: unexpected event for opcode 0x0c1c [ 1363.856952][T13469] netlink: 48 bytes leftover after parsing attributes in process `syz.5.2510'. [ 1364.366512][T13480] loop3: detected capacity change from 0 to 128 [ 1364.405834][T13480] FAT-fs (loop3): bogus number of reserved sectors [ 1364.413558][T13480] FAT-fs (loop3): This doesn't look like a DOS 1.x volume; DOS 2.x BPB is non-zero [ 1364.423318][T13480] FAT-fs (loop3): Can't find a valid FAT filesystem [ 1364.689380][T13487] loop9: detected capacity change from 0 to 128 [ 1365.352371][T10866] IPVS: starting estimator thread 0... [ 1365.423100][T10914] usb 9-1: new high-speed USB device number 8 using dummy_hcd [ 1365.453506][T13499] IPVS: using max 240 ests per chain, 12000 per kthread [ 1365.626428][T10914] usb 9-1: Using ep0 maxpacket: 16 [ 1365.686745][T10914] usb 9-1: New USB device found, idVendor=046d, idProduct=c298, bcdDevice= 0.00 [ 1365.696496][T10914] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1365.765810][T10914] usb 9-1: config 0 descriptor?? [ 1366.262330][T10914] logitech 0003:046D:C298.002D: unknown main item tag 0x0 [ 1366.270226][T10914] logitech 0003:046D:C298.002D: unknown main item tag 0x0 [ 1366.278043][T10914] logitech 0003:046D:C298.002D: unknown main item tag 0x0 [ 1366.285631][T10914] logitech 0003:046D:C298.002D: unknown main item tag 0x0 [ 1366.293277][T10914] logitech 0003:046D:C298.002D: unknown main item tag 0x0 [ 1366.401632][T10914] logitech 0003:046D:C298.002D: hidraw0: USB HID v0.00 Device [HID 046d:c298] on usb-dummy_hcd.8-1/input0 [ 1366.413899][T10914] logitech 0003:046D:C298.002D: no inputs found [ 1366.577371][ T8] usb 9-1: USB disconnect, device number 8 [ 1367.046012][T13522] netlink: 8 bytes leftover after parsing attributes in process `syz.9.2531'. [ 1367.810034][T13534] loop8: detected capacity change from 0 to 128 [ 1367.966553][T13535] loop9: detected capacity change from 0 to 1024 [ 1368.040857][T13534] FAT-fs (loop8): error, fat_get_cluster: invalid start cluster (i_pos 548, start 0002b005) [ 1368.053075][T13534] FAT-fs (loop8): Filesystem has been set read-only [ 1368.103532][T13534] FAT-fs (loop8): error, invalid access to FAT (entry 0x0002b005) [ 1368.106916][T13535] EXT4-fs: Ignoring removed nomblk_io_submit option [ 1368.221981][T13535] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1368.350639][T13543] loop3: detected capacity change from 0 to 1024 [ 1368.538416][T13543] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1368.728807][T10793] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1369.241257][T13560] netlink: 24 bytes leftover after parsing attributes in process `syz.0.2543'. [ 1369.481134][T10839] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1370.855651][T13586] loop5: detected capacity change from 0 to 256 [ 1370.895025][T13587] loop3: detected capacity change from 0 to 64 [ 1371.180421][T13586] FAT-fs (loop5): Directory bread(block 64) failed [ 1371.190213][T13586] FAT-fs (loop5): Directory bread(block 65) failed [ 1371.197488][T13586] FAT-fs (loop5): Directory bread(block 66) failed [ 1371.207008][T13586] FAT-fs (loop5): Directory bread(block 67) failed [ 1371.216787][T13586] FAT-fs (loop5): Directory bread(block 68) failed [ 1371.224036][T13586] FAT-fs (loop5): Directory bread(block 69) failed [ 1371.230925][T13586] FAT-fs (loop5): Directory bread(block 70) failed [ 1371.239185][T13586] FAT-fs (loop5): Directory bread(block 71) failed [ 1371.248897][T13586] FAT-fs (loop5): Directory bread(block 72) failed [ 1371.257767][T13586] FAT-fs (loop5): Directory bread(block 73) failed [ 1371.934476][T13600] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2557'. [ 1372.446607][T13605] loop9: detected capacity change from 0 to 512 [ 1372.542204][T13605] EXT4-fs (loop9): Cannot turn on journaled quota: type 0: error -2 [ 1372.551857][T13605] EXT4-fs (loop9): Cannot turn on journaled quota: type 1: error -2 [ 1372.574107][T13610] netlink: 16 bytes leftover after parsing attributes in process `syz.0.2563'. [ 1372.589936][T13605] EXT4-fs (loop9): 1 truncate cleaned up [ 1372.597811][T13605] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1372.974896][T10793] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1374.163030][ T8] usb 6-1: new high-speed USB device number 10 using dummy_hcd [ 1374.417360][ T8] usb 6-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3 [ 1374.431012][ T8] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1374.503754][ T8] usb 6-1: config 0 descriptor?? [ 1374.530792][ T8] cp210x 6-1:0.0: cp210x converter detected [ 1374.883685][T13644] loop0: detected capacity change from 0 to 256 [ 1374.970468][ T8] usb 6-1: cp210x converter now attached to ttyUSB0 [ 1375.004245][T13647] loop9: detected capacity change from 0 to 1024 [ 1375.054671][T13644] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0x1a9973fb, utbl_chksum : 0xe619d30d) [ 1375.096877][T13647] hfsplus: invalid catalog entry type in lookup [ 1375.196752][ T8] usb 6-1: USB disconnect, device number 10 [ 1375.247326][ T8] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0 [ 1375.305915][ T8] cp210x 6-1:0.0: device disconnected [ 1375.500561][T13651] loop8: detected capacity change from 0 to 512 [ 1375.521594][T13651] EXT4-fs error (device loop8): ext4_ext_check_inode:524: inode #15: comm syz.8.2582: pblk 0 bad header/extent: invalid eh_entries - magic f30a, entries 24833, max 4(4), depth 0(0) [ 1375.561946][T13651] EXT4-fs error (device loop8): ext4_orphan_get:1394: comm syz.8.2582: couldn't read orphan inode 15 (err -117) [ 1375.580088][T13651] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1375.593186][T13651] ext4 filesystem being mounted at /193/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 1375.783964][T10812] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1375.929038][T13658] overlayfs: option "workdir=./file1" is useless in a non-upper mount, ignore [ 1375.938617][T13658] overlayfs: missing 'lowerdir' [ 1377.053535][T13675] loop0: detected capacity change from 0 to 64 [ 1377.065294][T13676] loop5: detected capacity change from 0 to 512 [ 1377.300302][T10914] usb 10-1: new full-speed USB device number 8 using dummy_hcd [ 1377.516511][T10914] usb 10-1: config 0 interface 0 altsetting 3 endpoint 0x81 has invalid wMaxPacketSize 0 [ 1377.526937][T10914] usb 10-1: config 0 interface 0 altsetting 3 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 1377.540418][T10914] usb 10-1: config 0 interface 0 has no altsetting 0 [ 1377.547498][T10914] usb 10-1: New USB device found, idVendor=28bd, idProduct=0075, bcdDevice= 0.00 [ 1377.557133][T10914] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1377.674426][T10914] usb 10-1: config 0 descriptor?? [ 1377.930880][T13686] loop0: detected capacity change from 0 to 1024 [ 1378.007999][T13687] loop3: detected capacity change from 0 to 512 [ 1378.069244][T13687] EXT4-fs (loop3): filesystem is read-only [ 1378.126973][T10914] uclogic 0003:28BD:0075.002E: interface is invalid, ignoring [ 1378.197336][T13690] tipc: Enabled bearer , priority 0 [ 1378.358975][T10914] usb 10-1: USB disconnect, device number 8 [ 1379.287287][T13700] loop5: detected capacity change from 0 to 512 [ 1379.313057][T10914] tipc: Node number set to 4278190081 [ 1379.366313][T13700] EXT4-fs (loop5): mounting ext3 file system using the ext4 subsystem [ 1379.423524][T13700] EXT4-fs error (device loop5): ext4_xattr_ibody_find:2240: inode #15: comm syz.5.2605: corrupted in-inode xattr: e_value out of bounds [ 1379.493166][T13700] EXT4-fs (loop5): Remounting filesystem read-only [ 1379.501656][T13700] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1379.685065][T13712] 9pnet_fd: p9_fd_create_tcp (13712): problem binding to privport [ 1379.931625][T12625] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1380.024590][T13714] 9pnet_rdma: rdma_create_trans (13714): problem binding to privport: 13 [ 1380.265955][T13719] usb usb8: usbfs: process 13719 (syz.9.2615) did not claim interface 7 before use [ 1381.163505][T13734] tipc: Enabling of bearer rejected, failed to enable media [ 1383.511734][T13742] loop3: detected capacity change from 0 to 1024 [ 1385.453012][T13752] loop8: detected capacity change from 0 to 256 [ 1385.773565][ T3695] hfsplus: b-tree write err: -5, ino 4 [ 1386.846916][T13770] netlink: 100 bytes leftover after parsing attributes in process `syz.5.2637'. [ 1386.857028][T13770] netlink: 24 bytes leftover after parsing attributes in process `syz.5.2637'. [ 1387.204207][T13774] loop9: detected capacity change from 0 to 256 [ 1387.360311][T13774] exFAT-fs (loop9): failed to load upcase table (idx : 0x00010000, chksum : 0x1a9973fb, utbl_chksum : 0xe619d30d) [ 1388.053257][T10914] usb 6-1: new high-speed USB device number 11 using dummy_hcd [ 1388.255513][T10914] usb 6-1: Using ep0 maxpacket: 16 [ 1388.308544][T10914] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 1388.319647][T10914] usb 6-1: config 0 has no interfaces? [ 1388.325552][T10914] usb 6-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00 [ 1388.335058][T10914] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1388.406265][T10914] usb 6-1: config 0 descriptor?? [ 1388.666399][T13784] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check. [ 1388.850255][T10914] usb 6-1: USB disconnect, device number 11 [ 1390.379726][T13794] netlink: 20 bytes leftover after parsing attributes in process `syz.5.2648'. [ 1391.696839][T13803] netlink: 4 bytes leftover after parsing attributes in process `syz.8.2652'. [ 1391.745779][ T1284] ieee802154 phy0 wpan0: encryption failed: -22 [ 1391.752404][ T1284] ieee802154 phy1 wpan1: encryption failed: -22 [ 1392.942943][ T8] usb 9-1: new full-speed USB device number 9 using dummy_hcd [ 1393.139089][ T8] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 1024, setting to 64 [ 1393.153165][ T8] usb 9-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 4 [ 1393.168099][ T8] usb 9-1: New USB device found, idVendor=05ac, idProduct=0225, bcdDevice= 0.00 [ 1393.178109][ T8] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1393.318990][ T8] usb 9-1: config 0 descriptor?? [ 1393.330762][T13809] raw-gadget.0 gadget.8: fail, usb_ep_enable returned -22 [ 1393.837759][ T8] apple 0003:05AC:0225.002F: unknown main item tag 0x0 [ 1393.847675][ T8] apple 0003:05AC:0225.002F: unknown main item tag 0x0 [ 1393.855022][ T8] apple 0003:05AC:0225.002F: unknown main item tag 0x0 [ 1393.862184][ T8] apple 0003:05AC:0225.002F: unknown main item tag 0x0 [ 1393.869566][ T8] apple 0003:05AC:0225.002F: unknown main item tag 0x0 [ 1394.025929][ T8] apple 0003:05AC:0225.002F: hidraw0: USB HID v0.08 Device [HID 05ac:0225] on usb-dummy_hcd.8-1/input0 [ 1394.104112][ T8] usb 9-1: USB disconnect, device number 9 [ 1394.328059][T13832] loop9: detected capacity change from 0 to 8 [ 1394.523451][T13833] loop5: detected capacity change from 0 to 1024 [ 1394.608000][T13832] SQUASHFS error: Unable to read directory block [2c0:35] [ 1394.817518][ T3543] hfsplus: b-tree write err: -5, ino 4 [ 1395.508696][T13837] loop3: detected capacity change from 0 to 4096 [ 1396.967924][T13865] netlink: 40 bytes leftover after parsing attributes in process `syz.0.2679'. [ 1397.079792][T13867] loop8: detected capacity change from 0 to 128 [ 1397.213307][ T29] audit: type=1800 audit(1737612482.900:82): pid=13867 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.8.2680" name="file1" dev="loop8" ino=1048879 res=0 errno=0 [ 1397.241200][T13867] FAT-fs (loop8): error, invalid access to FAT (entry 0x0fffff00) [ 1397.249953][T13867] FAT-fs (loop8): Filesystem has been set read-only [ 1397.284478][T13867] FAT-fs (loop8): error, invalid access to FAT (entry 0x0fffff00) [ 1397.610537][T13875] loop0: detected capacity change from 0 to 64 [ 1398.069247][T13883] loop3: detected capacity change from 0 to 16 [ 1398.142488][T13883] erofs (device loop3): mounted with root inode @ nid 36. [ 1398.228255][T13883] syz.3.2688: attempt to access beyond end of device [ 1398.228255][T13883] loop3: rw=0, sector=48, nr_sectors = 16 limit=16 [ 1398.242112][T13883] erofs (device loop3): read error -5 @ 43 of nid 36 [ 1398.249682][ T8] usb 9-1: new high-speed USB device number 10 using dummy_hcd [ 1398.435429][ T8] usb 9-1: Using ep0 maxpacket: 32 [ 1398.455102][T13889] CIFS: No dialect specified on mount. Default has changed to a more secure dialect, SMB2.1 or later (e.g. SMB3.1.1), from CIFS (SMB1). To use the less secure SMB1 dialect to access old servers which do not support SMB3.1.1 (or even SMB3 or SMB2.1) specify vers=1.0 on mount. [ 1398.458837][ T8] usb 9-1: New USB device found, idVendor=09da, idProduct=022b, bcdDevice= 0.00 [ 1398.481786][T13889] CIFS mount error: No usable UNC path provided in device string! [ 1398.481786][T13889] [ 1398.481871][T13889] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string! [ 1398.517877][ T8] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1398.657280][ T8] usb 9-1: config 0 descriptor?? [ 1398.912245][ T8] usbhid 9-1:0.0: can't add hid device: -71 [ 1398.919462][ T8] usbhid 9-1:0.0: probe with driver usbhid failed with error -71 [ 1398.936288][T13893] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2692'. [ 1398.966877][ T8] usb 9-1: USB disconnect, device number 10 [ 1399.402968][T13899] loop3: detected capacity change from 0 to 512 [ 1399.520502][T13899] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1399.534200][T13899] ext4 filesystem being mounted at /218/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 1399.650426][T13899] EXT4-fs error (device loop3): ext4_do_update_inode:5154: inode #2: comm syz.3.2697: corrupted inode contents [ 1399.721545][T13899] EXT4-fs error (device loop3): ext4_dirty_inode:6042: inode #2: comm syz.3.2697: mark_inode_dirty error [ 1399.740917][T13899] EXT4-fs error (device loop3): ext4_do_update_inode:5154: inode #2: comm syz.3.2697: corrupted inode contents [ 1399.763731][T10914] usb 6-1: new high-speed USB device number 12 using dummy_hcd [ 1399.772265][T13907] EXT4-fs error (device loop3): ext4_do_update_inode:5154: inode #2: comm syz.3.2697: corrupted inode contents [ 1399.847050][T13907] EXT4-fs error (device loop3): ext4_dirty_inode:6042: inode #2: comm syz.3.2697: mark_inode_dirty error [ 1399.880303][T13907] EXT4-fs error (device loop3): ext4_do_update_inode:5154: inode #2: comm syz.3.2697: corrupted inode contents [ 1399.903874][T13907] EXT4-fs error (device loop3): __ext4_ext_dirty:207: inode #2: comm syz.3.2697: mark_inode_dirty error [ 1399.947483][T13907] EXT4-fs error (device loop3): ext4_do_update_inode:5154: inode #2: comm syz.3.2697: corrupted inode contents [ 1399.976248][T10914] usb 6-1: Using ep0 maxpacket: 16 [ 1399.979553][T13907] EXT4-fs error (device loop3): ext4_dirty_inode:6042: inode #2: comm syz.3.2697: mark_inode_dirty error [ 1399.998188][T10914] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 1400.010680][T10914] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 1400.028604][T10914] usb 6-1: New USB device found, idVendor=056a, idProduct=00f0, bcdDevice= 0.00 [ 1400.040414][T10914] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1400.153383][T10914] usb 6-1: config 0 descriptor?? [ 1400.305548][T10839] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1400.600313][T10914] wacom 0003:056A:00F0.0030: unknown main item tag 0x0 [ 1400.633788][T10914] wacom 0003:056A:00F0.0030: hidraw0: USB HID v0.00 Device [HID 056a:00f0] on usb-dummy_hcd.5-1/input0 [ 1400.788649][T10914] usb 6-1: USB disconnect, device number 12 [ 1400.904210][T13919] netlink: 4 bytes leftover after parsing attributes in process `syz.8.2704'. [ 1401.311003][T13925] loop8: detected capacity change from 0 to 64 [ 1401.637882][T13928] loop9: detected capacity change from 0 to 1024 [ 1401.672968][T13928] EXT4-fs: Ignoring removed i_version option [ 1401.705583][T13928] EXT4-fs (loop9): stripe (4) is not aligned with cluster size (16), stripe is disabled [ 1401.830008][T13928] Quota error (device loop9): do_check_range: Getting block 64 out of range 1-5 [ 1401.839885][T13928] Quota error (device loop9): qtree_read_dquot: Can't read quota structure for id 0 [ 1401.849863][T13928] EXT4-fs error (device loop9): ext4_acquire_dquot:6938: comm syz.9.2708: Failed to acquire dquot type 0 [ 1401.882033][T13928] EXT4-fs error (device loop9): mb_free_blocks:1948: group 0, inode 13: block 144:freeing already freed block (bit 9); block bitmap corrupt. [ 1401.900305][T13928] EXT4-fs error (device loop9): ext4_do_update_inode:5154: inode #13: comm syz.9.2708: corrupted inode contents [ 1401.930692][T13928] EXT4-fs error (device loop9): ext4_dirty_inode:6042: inode #13: comm syz.9.2708: mark_inode_dirty error [ 1401.994496][T13928] EXT4-fs error (device loop9): ext4_do_update_inode:5154: inode #13: comm syz.9.2708: corrupted inode contents [ 1402.053414][T13928] EXT4-fs error (device loop9): __ext4_ext_dirty:207: inode #13: comm syz.9.2708: mark_inode_dirty error [ 1402.135743][T13928] EXT4-fs error (device loop9): ext4_do_update_inode:5154: inode #13: comm syz.9.2708: corrupted inode contents [ 1402.190024][T13928] EXT4-fs error (device loop9) in ext4_orphan_del:305: Corrupt filesystem [ 1402.235013][T13928] EXT4-fs error (device loop9): ext4_do_update_inode:5154: inode #13: comm syz.9.2708: corrupted inode contents [ 1402.293031][T13928] EXT4-fs error (device loop9): ext4_truncate:4240: inode #13: comm syz.9.2708: mark_inode_dirty error [ 1402.310343][T13928] EXT4-fs error (device loop9) in ext4_process_orphan:347: Corrupt filesystem [ 1402.341741][T13928] EXT4-fs (loop9): 1 truncate cleaned up [ 1402.343738][T13928] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1402.440277][T13928] EXT4-fs (loop9): re-mounted 00000000-0000-0000-0000-000000000000 ro. Quota mode: writeback. [ 1402.722498][T10793] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1402.825378][T13943] loop5: detected capacity change from 0 to 1024 [ 1403.160700][ T3695] hfsplus: b-tree write err: -5, ino 4 [ 1403.188029][T13945] loop9: detected capacity change from 0 to 512 [ 1403.235597][T13945] EXT4-fs: Ignoring removed i_version option [ 1403.251118][T13945] EXT4-fs (loop9): encrypted files will use data=ordered instead of data journaling mode [ 1403.413112][T13945] EXT4-fs (loop9): 1 truncate cleaned up [ 1403.420707][T13945] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1404.067738][T10793] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1404.635640][T13962] loop9: detected capacity change from 0 to 1764 [ 1404.746225][T13962] iso9660: Corrupted directory entry in block 2 of inode 1920 [ 1405.003437][ T29] audit: type=1326 audit(1737612490.670:83): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13966 comm="syz.5.2724" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf739d579 code=0x7ffc0000 [ 1405.026481][ T29] audit: type=1326 audit(1737612490.670:84): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13966 comm="syz.5.2724" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf739d579 code=0x7ffc0000 [ 1405.056062][ T29] audit: type=1326 audit(1737612490.700:85): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13966 comm="syz.5.2724" exe="/root/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf739d579 code=0x7ffc0000 [ 1405.081320][ T29] audit: type=1326 audit(1737612490.710:86): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13966 comm="syz.5.2724" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf739d579 code=0x7ffc0000 [ 1405.103957][ T29] audit: type=1326 audit(1737612490.710:87): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13966 comm="syz.5.2724" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf739d579 code=0x7ffc0000 [ 1405.280565][ T29] audit: type=1326 audit(1737612490.910:88): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13966 comm="syz.5.2724" exe="/root/syz-executor" sig=0 arch=40000003 syscall=95 compat=1 ip=0xf739d579 code=0x7ffc0000 [ 1405.306484][ T29] audit: type=1326 audit(1737612490.910:89): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13966 comm="syz.5.2724" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf739d579 code=0x7ffc0000 [ 1405.725036][T13977] netlink: 'syz.9.2728': attribute type 1 has an invalid length. [ 1405.733358][T13977] netlink: 'syz.9.2728': attribute type 2 has an invalid length. [ 1405.741324][T13977] netlink: 4 bytes leftover after parsing attributes in process `syz.9.2728'. [ 1406.310012][T13985] loop8: detected capacity change from 0 to 256 [ 1406.490976][T13985] exFAT-fs (loop8): failed to load upcase table (idx : 0x00010000, chksum : 0x1d0c1f25, utbl_chksum : 0xe619d30d) [ 1406.566692][ T29] audit: type=1326 audit(1737612492.240:90): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13973 comm="syz.0.2730" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f8f579 code=0x7fc00000 [ 1406.614968][T13988] loop3: detected capacity change from 0 to 64 [ 1406.728556][T13988] overlayfs: upper fs needs to support d_type. [ 1406.791987][T13988] overlayfs: upper fs does not support RENAME_WHITEOUT. [ 1406.800672][T13988] overlayfs: failed to set xattr on upper [ 1406.807440][T13988] overlayfs: ...falling back to redirect_dir=nofollow. [ 1406.814574][T13988] overlayfs: ...falling back to index=off. [ 1406.820543][T13988] overlayfs: ...falling back to uuid=null. [ 1407.296263][T10839] Trying to free block not in datazone [ 1407.783944][T13998] loop9: detected capacity change from 0 to 256 [ 1407.792411][T13998] exfat: Deprecated parameter 'utf8' [ 1407.999843][T13998] exFAT-fs (loop9): failed to load upcase table (idx : 0x00010000, chksum : 0x5441951d, utbl_chksum : 0xe619d30d) [ 1408.835603][T14009] loop5: detected capacity change from 0 to 1024 [ 1408.896092][T14015] loop8: detected capacity change from 0 to 256 [ 1408.903524][T10914] usb 4-1: new full-speed USB device number 8 using dummy_hcd [ 1409.092293][T10914] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10 [ 1409.103794][T10914] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 1409.114176][T10914] usb 4-1: New USB device found, idVendor=1044, idProduct=7a4d, bcdDevice= 0.00 [ 1409.123730][T10914] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1409.264912][T10914] usb 4-1: config 0 descriptor?? [ 1409.314254][T10394] hfsplus: b-tree write err: -5, ino 4 [ 1409.729685][T10914] waterforce 0003:1044:7A4D.0031: unbalanced collection at end of report description [ 1409.787204][T10914] waterforce 0003:1044:7A4D.0031: hid parse failed with -22 [ 1409.795854][T10914] waterforce 0003:1044:7A4D.0031: probe with driver waterforce failed with error -22 [ 1409.921500][ T8] usb 4-1: USB disconnect, device number 8 [ 1410.019450][T14022] loop8: detected capacity change from 0 to 1024 [ 1410.074249][T14022] EXT4-fs (loop8): ext4_check_descriptors: Block bitmap for group 0 overlaps block group descriptors [ 1410.085685][T14022] EXT4-fs (loop8): ext4_check_descriptors: Checksum for group 0 failed (38281!=20869) [ 1410.095764][T14022] EXT4-fs (loop8): stripe (65535) is not aligned with cluster size (16), stripe is disabled [ 1410.188417][T14022] EXT4-fs error (device loop8): ext4_ext_check_inode:524: inode #3: comm syz.8.2752: pblk 82 bad header/extent: invalid extent entries - magic f30a, entries 2, max 4(4), depth 0(0) [ 1410.281589][T14022] EXT4-fs (loop8): no journal found [ 1410.288551][T14022] EXT4-fs (loop8): can't get journal size [ 1410.328301][T14022] EXT4-fs error (device loop8): ext4_ext_check_inode:524: inode #3: comm syz.8.2752: pblk 82 bad header/extent: invalid extent entries - magic f30a, entries 2, max 4(4), depth 0(0) [ 1410.412122][T14022] EXT4-fs (loop8): failed to initialize system zone (-117) [ 1410.487003][T14022] EXT4-fs (loop8): mount failed [ 1410.560570][T14026] loop9: detected capacity change from 0 to 8192 [ 1410.581938][T14031] loop0: detected capacity change from 0 to 16 [ 1410.608112][T14031] erofs (device loop0): mounted with root inode @ nid 36. [ 1410.655645][T14026] FAT-fs (loop9): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 1411.848031][T14047] loop0: detected capacity change from 0 to 256 [ 1412.171108][T14047] FAT-fs (loop0): Directory bread(block 64) failed [ 1412.178146][T14047] FAT-fs (loop0): Directory bread(block 65) failed [ 1412.185721][T14047] FAT-fs (loop0): Directory bread(block 66) failed [ 1412.192460][T14047] FAT-fs (loop0): Directory bread(block 67) failed [ 1412.204101][T14047] FAT-fs (loop0): Directory bread(block 68) failed [ 1412.210941][T14047] FAT-fs (loop0): Directory bread(block 69) failed [ 1412.227207][T14047] FAT-fs (loop0): Directory bread(block 70) failed [ 1412.236994][T14047] FAT-fs (loop0): Directory bread(block 71) failed [ 1412.244084][T14047] FAT-fs (loop0): Directory bread(block 72) failed [ 1412.250828][T14047] FAT-fs (loop0): Directory bread(block 73) failed [ 1412.778095][T10914] IPVS: starting estimator thread 0... [ 1412.885660][T14056] IPVS: using max 240 ests per chain, 12000 per kthread [ 1413.779466][T14072] loop0: detected capacity change from 0 to 64 [ 1415.081291][T14083] loop3: detected capacity change from 0 to 4096 [ 1415.357631][T14091] netlink: 12 bytes leftover after parsing attributes in process `syz.5.2781'. [ 1415.871880][T14096] loop8: detected capacity change from 0 to 2048 [ 1416.081208][T14096] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1416.484981][T10812] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1417.078767][T14115] IPVS: Error joining to the multicast group [ 1419.753819][T14152] program syz.9.2811 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 1420.259756][ T29] audit: type=1326 audit(1737612505.950:91): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14157 comm="syz.8.2814" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f56579 code=0x7ffc0000 [ 1420.325152][ T29] audit: type=1326 audit(1737612506.000:92): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14157 comm="syz.8.2814" exe="/root/syz-executor" sig=0 arch=40000003 syscall=257 compat=1 ip=0xf7f56579 code=0x7ffc0000 [ 1420.426863][ T29] audit: type=1326 audit(1737612506.060:93): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14157 comm="syz.8.2814" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f56579 code=0x7ffc0000 [ 1420.450017][ T29] audit: type=1326 audit(1737612506.070:94): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14157 comm="syz.8.2814" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f56579 code=0x7ffc0000 [ 1420.566208][ T8] usb 10-1: new high-speed USB device number 9 using dummy_hcd [ 1420.775453][ T8] usb 10-1: Using ep0 maxpacket: 32 [ 1420.793020][ T8] usb 10-1: config 0 interface 0 altsetting 1 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 1420.807347][ T8] usb 10-1: config 0 interface 0 altsetting 1 endpoint 0x81 has invalid wMaxPacketSize 0 [ 1420.820287][ T8] usb 10-1: config 0 interface 0 has no altsetting 0 [ 1420.827392][ T8] usb 10-1: New USB device found, idVendor=28de, idProduct=1205, bcdDevice= 0.00 [ 1420.839565][ T8] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1420.963400][ T8] usb 10-1: config 0 descriptor?? [ 1421.142983][T14166] loop0: detected capacity change from 0 to 4096 [ 1421.214435][T14166] NILFS (loop0): invalid segment: Checksum error in segment payload [ 1421.227371][T14166] NILFS (loop0): trying rollback from an earlier position [ 1421.348771][T14166] NILFS (loop0): recovery complete [ 1421.359848][T14171] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 1421.479408][ T29] audit: type=1800 audit(1737612507.180:95): pid=14166 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.2818" name="file1" dev="loop0" ino=12 res=0 errno=0 [ 1421.500583][ T8] hid-steam 0003:28DE:1205.0032: unknown main item tag 0x0 [ 1421.500770][ T8] hid-steam 0003:28DE:1205.0032: unknown main item tag 0x0 [ 1421.501008][ T8] hid-steam 0003:28DE:1205.0032: unknown main item tag 0x0 [ 1421.526296][ T8] hid-steam 0003:28DE:1205.0032: unknown main item tag 0x0 [ 1421.536519][ T8] hid-steam 0003:28DE:1205.0032: unknown main item tag 0x0 [ 1421.700535][ T8] hid-steam 0003:28DE:1205.0032: hidraw0: USB HID v0.00 Device [HID 28de:1205] on usb-dummy_hcd.9-1/input0 [ 1421.851953][ T8] usb 10-1: USB disconnect, device number 9 [ 1422.193510][T14179] can0: slcan on ptm0. [ 1422.203140][T14181] loop3: detected capacity change from 0 to 256 [ 1422.316487][T14178] can0 (unregistered): slcan off ptm0. [ 1422.656249][ T8] kernel write not supported for file /adsp1 (pid: 8 comm: kworker/0:0) [ 1423.071856][T14191] loop3: detected capacity change from 0 to 256 [ 1423.523155][T14191] FAT-fs (loop3): Directory bread(block 64) failed [ 1423.530009][T14191] FAT-fs (loop3): Directory bread(block 65) failed [ 1423.537189][T14191] FAT-fs (loop3): Directory bread(block 66) failed [ 1423.544181][T14191] FAT-fs (loop3): Directory bread(block 67) failed [ 1423.551038][T14191] FAT-fs (loop3): Directory bread(block 68) failed [ 1423.558025][T14191] FAT-fs (loop3): Directory bread(block 69) failed [ 1423.565028][T14191] FAT-fs (loop3): Directory bread(block 70) failed [ 1423.571769][T14191] FAT-fs (loop3): Directory bread(block 71) failed [ 1423.587936][T14191] FAT-fs (loop3): Directory bread(block 72) failed [ 1423.597504][T14191] FAT-fs (loop3): Directory bread(block 73) failed [ 1423.737862][T14198] syz.0.2832 (14198): drop_caches: 0 [ 1424.239876][T14201] loop9: detected capacity change from 0 to 256 [ 1424.303227][T14201] FAT-fs (loop9): bogus sectors per cluster 0 [ 1424.309541][T14201] FAT-fs (loop9): Can't find a valid FAT filesystem [ 1424.523042][ T9019] Bluetooth: hci1: command 0x0406 tx timeout [ 1424.529299][ T9019] Bluetooth: hci5: command 0x0406 tx timeout [ 1424.818980][T14207] loop3: detected capacity change from 0 to 64 [ 1424.928092][T14207] Trying to free block not in datazone [ 1425.003071][T14213] Trying to free block not in datazone [ 1425.017679][T14213] minix_free_inode: bit 5 already cleared [ 1426.782817][T14237] loop8: detected capacity change from 0 to 64 [ 1426.868043][T14237] Trying to free block not in datazone [ 1426.975673][ T8] usb 10-1: new high-speed USB device number 10 using dummy_hcd [ 1427.164071][ T8] usb 10-1: Using ep0 maxpacket: 16 [ 1427.218941][ T8] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 1427.230716][ T8] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 1427.241277][ T8] usb 10-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 1427.257443][ T8] usb 10-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00 [ 1427.268838][ T8] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1427.354207][ T8] usb 10-1: config 0 descriptor?? [ 1427.813906][ T8] microsoft 0003:045E:07DA.0033: ignoring exceeding usage max [ 1427.831123][ T8] microsoft 0003:045E:07DA.0033: usage index exceeded [ 1427.840938][ T8] microsoft 0003:045E:07DA.0033: item 0 1 2 0 parsing failed [ 1427.843686][T14244] loop8: detected capacity change from 0 to 4096 [ 1427.981184][ T8] microsoft 0003:045E:07DA.0033: parse failed [ 1427.990824][ T8] microsoft 0003:045E:07DA.0033: probe with driver microsoft failed with error -22 [ 1428.064637][ T8] usb 10-1: USB disconnect, device number 10 [ 1428.159142][T14244] ntfs3(loop8): failed to convert "0000" to cp949 [ 1428.301186][T14250] netlink: 'syz.3.2858': attribute type 10 has an invalid length. [ 1428.325665][T14250] batman_adv: batadv0: Adding interface: team0 [ 1428.332143][T14250] batman_adv: batadv0: The MTU of interface team0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 1428.360504][T14250] batman_adv: batadv0: Not using interface team0 (retrying later): interface not active [ 1428.459218][T14250] netlink: 'syz.3.2858': attribute type 10 has an invalid length. [ 1428.467745][T14250] netlink: 2 bytes leftover after parsing attributes in process `syz.3.2858'. [ 1428.479962][T14250] team0: entered promiscuous mode [ 1428.485344][T14250] team_slave_0: entered promiscuous mode [ 1428.495037][T14250] team_slave_1: entered promiscuous mode [ 1428.512057][T14250] 8021q: adding VLAN 0 to HW filter on device team0 [ 1428.520050][T14250] batman_adv: batadv0: Interface activated: team0 [ 1428.527042][T14250] batman_adv: batadv0: Interface deactivated: team0 [ 1428.536676][T14250] batman_adv: batadv0: Removing interface: team0 [ 1428.621051][T14250] bridge0: port 3(team0) entered blocking state [ 1428.630873][T14250] bridge0: port 3(team0) entered disabled state [ 1428.638187][T14250] team0: entered allmulticast mode [ 1428.643756][T14250] team_slave_0: entered allmulticast mode [ 1428.649701][T14250] team_slave_1: entered allmulticast mode [ 1428.666435][T14250] bridge0: port 3(team0) entered blocking state [ 1428.673497][T14250] bridge0: port 3(team0) entered forwarding state [ 1429.595703][T14262] loop5: detected capacity change from 0 to 512 [ 1429.906863][T14268] loop9: detected capacity change from 0 to 1024 [ 1429.916742][T14262] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1429.931769][T14262] ext4 filesystem being mounted at /102/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 1430.110945][T14268] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1430.124149][T14268] ext4 filesystem being mounted at /256/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 1430.372066][T14277] EXT4-fs warning (device loop5): ext4_empty_dir:3105: inode #12: comm syz.5.2861: directory missing '.' [ 1430.512512][T10793] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1430.709648][T12625] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1431.275386][T14287] loop9: detected capacity change from 0 to 16 [ 1431.306471][T14281] loop8: detected capacity change from 0 to 8192 [ 1431.328696][T14287] erofs (device loop9): mounted with root inode @ nid 36. [ 1432.285533][ T8] usb 4-1: new high-speed USB device number 9 using dummy_hcd [ 1432.471407][ T8] usb 4-1: Using ep0 maxpacket: 8 [ 1432.506359][ T8] usb 4-1: New USB device found, idVendor=0c45, idProduct=613b, bcdDevice=c4.6d [ 1432.516151][ T8] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1432.527250][ T8] usb 4-1: Product: syz [ 1432.531624][ T8] usb 4-1: Manufacturer: syz [ 1432.536553][ T8] usb 4-1: SerialNumber: syz [ 1432.569629][ T8] usb 4-1: config 0 descriptor?? [ 1432.590582][ T8] gspca_main: sonixj-2.14.0 probing 0c45:613b [ 1433.247954][ T8] gspca_sonixj: reg_w1 err -71 [ 1433.253463][ T8] sonixj 4-1:0.0: probe with driver sonixj failed with error -71 [ 1433.283145][ T8] usb 4-1: USB disconnect, device number 9 [ 1433.762962][T10914] usb 6-1: new high-speed USB device number 13 using dummy_hcd [ 1434.015070][T10914] usb 6-1: Using ep0 maxpacket: 32 [ 1434.095481][T10914] usb 6-1: config 0 interface 0 has no altsetting 0 [ 1434.102500][T10914] usb 6-1: New USB device found, idVendor=046d, idProduct=ca03, bcdDevice= 0.00 [ 1434.112252][T10914] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1434.213823][T10914] usb 6-1: config 0 descriptor?? [ 1434.823637][T10914] logitech 0003:046D:CA03.0034: hidraw0: USB HID v8.00 Device [HID 046d:ca03] on usb-dummy_hcd.5-1/input0 [ 1434.835419][T10914] logitech 0003:046D:CA03.0034: no inputs found [ 1435.001465][T14323] overlayfs: disabling nfs_export due to verity=on [ 1435.010601][T10914] usb 6-1: USB disconnect, device number 13 [ 1435.018642][T14323] overlayfs: missing 'lowerdir' [ 1435.876911][T14336] netlink: 20 bytes leftover after parsing attributes in process `syz.3.2894'. [ 1435.901509][T14336] vlan3: entered promiscuous mode [ 1435.906886][T14336] gretap0: entered promiscuous mode [ 1436.524387][T14344] netlink: 16 bytes leftover after parsing attributes in process `syz.3.2898'. [ 1436.711533][T10914] usb 6-1: new high-speed USB device number 14 using dummy_hcd [ 1436.902833][T10914] usb 6-1: Using ep0 maxpacket: 16 [ 1436.985299][T10914] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 1437.004130][T10914] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 1437.005611][T14346] sp0: Synchronizing with TNC [ 1437.016845][T10914] usb 6-1: New USB device found, idVendor=0403, idProduct=97c1, bcdDevice= 0.00 [ 1437.030970][T10914] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1437.156981][T10914] usb 6-1: config 0 descriptor?? [ 1437.655807][T10914] hid-retrode 0003:0403:97C1.0035: unbalanced collection at end of report description [ 1437.686908][T10914] hid-retrode 0003:0403:97C1.0035: probe with driver hid-retrode failed with error -22 [ 1437.892984][T10914] usb 6-1: USB disconnect, device number 14 [ 1438.213120][ T8] usb 10-1: new high-speed USB device number 11 using dummy_hcd [ 1438.402946][ T8] usb 10-1: Using ep0 maxpacket: 32 [ 1438.436446][ T8] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 1438.450643][ T8] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 1438.461029][ T8] usb 10-1: New USB device found, idVendor=045e, idProduct=00f9, bcdDevice= 0.00 [ 1438.478278][ T8] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1438.561264][ T8] usb 10-1: config 0 descriptor?? [ 1439.009939][ T8] microsoft 0003:045E:00F9.0036: item fetching failed at offset 6/7 [ 1439.059792][ T8] microsoft 0003:045E:00F9.0036: parse failed [ 1439.066800][ T8] microsoft 0003:045E:00F9.0036: probe with driver microsoft failed with error -22 [ 1439.150339][ T9947] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci4/hci4:201' [ 1439.160430][ T9947] CPU: 1 UID: 0 PID: 9947 Comm: kworker/u9:2 Not tainted 6.13.0-syzkaller-04788-g7004a2e46d16 #0 [ 1439.160558][ T9947] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 1439.160678][ T9947] Workqueue: hci4 hci_rx_work [ 1439.160959][ T9947] Call Trace: [ 1439.161012][ T9947] [ 1439.161063][ T9947] dump_stack_lvl+0x216/0x2d0 [ 1439.161288][ T9947] dump_stack+0x1e/0x24 [ 1439.161433][ T9947] sysfs_create_dir_ns+0x45f/0x4c0 [ 1439.161596][ T9947] kobject_add_internal+0xfe7/0x1900 [ 1439.161820][ T9947] kobject_add+0x28c/0x3c0 [ 1439.161977][ T9947] ? kmsan_get_metadata+0x13e/0x1c0 [ 1439.162138][ T9947] device_add+0xa90/0x1ba0 [ 1439.162384][ T9947] hci_conn_add_sysfs+0x161/0x2c0 [ 1439.162558][ T9947] le_conn_complete_evt+0x1adf/0x1fa0 [ 1439.162766][ T9947] ? kmsan_get_metadata+0x13e/0x1c0 [ 1439.162910][ T9947] hci_le_enh_conn_complete_evt+0x15e/0x210 [ 1439.163096][ T9947] hci_le_meta_evt+0x600/0x850 [ 1439.163252][ T9947] ? __pfx_hci_le_enh_conn_complete_evt+0x10/0x10 [ 1439.163438][ T9947] hci_event_packet+0x11df/0x1c20 [ 1439.163579][ T9947] ? __pfx_hci_le_meta_evt+0x10/0x10 [ 1439.163758][ T9947] hci_rx_work+0x699/0x1260 [ 1439.163914][ T9947] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 1439.164055][ T9947] ? __pfx_hci_rx_work+0x10/0x10 [ 1439.164203][ T9947] ? __pfx_hci_rx_work+0x10/0x10 [ 1439.164350][ T9947] process_scheduled_works+0xae0/0x1c40 [ 1439.164585][ T9947] worker_thread+0xea7/0x14f0 [ 1439.164705][ T9947] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 1439.164863][ T9947] kthread+0x6b9/0xef0 [ 1439.164988][ T9947] ? __pfx_worker_thread+0x10/0x10 [ 1439.165128][ T9947] ? __pfx_kthread+0x10/0x10 [ 1439.165258][ T9947] ret_from_fork+0x6d/0x90 [ 1439.165402][ T9947] ? __pfx_kthread+0x10/0x10 [ 1439.165534][ T9947] ret_from_fork_asm+0x1a/0x30 [ 1439.165719][ T9947] [ 1439.352136][ T9947] kobject: kobject_add_internal failed for hci4:201 with -EEXIST, don't try to register things with the same name in the same directory. [ 1439.369052][ T9947] Bluetooth: hci4: failed to register connection device [ 1439.393914][ T8] usb 10-1: USB disconnect, device number 11 [ 1439.593345][T14362] sctp: failed to load transform for md5: -2 [ 1440.763122][T10914] usb 10-1: new high-speed USB device number 12 using dummy_hcd [ 1440.945897][T10914] usb 10-1: Using ep0 maxpacket: 32 [ 1440.969588][T10914] usb 10-1: unable to get BOS descriptor or descriptor too short [ 1441.007349][T10914] usb 10-1: config 127 has an invalid interface number: 25 but max is 0 [ 1441.014153][T14385] loop8: detected capacity change from 0 to 128 [ 1441.016144][T10914] usb 10-1: config 127 has no interface number 0 [ 1441.029000][T10914] usb 10-1: config 127 interface 25 has no altsetting 0 [ 1441.105321][T14385] FAT-fs (loop8): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 1441.127894][T10914] usb 10-1: New USB device found, idVendor=1110, idProduct=9000, bcdDevice=f4.11 [ 1441.137796][T10914] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1441.146355][T10914] usb 10-1: Product: syz [ 1441.150877][T10914] usb 10-1: Manufacturer: syz [ 1441.156143][T10914] usb 10-1: SerialNumber: syz [ 1441.204303][T14385] FAT-fs (loop8): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 1441.405126][ T9947] Bluetooth: hci4: command 0x0406 tx timeout [ 1441.544701][T10914] usb 10-1: [ueagle-atm] ADSL device founded vid (0X1110) pid (0X9000) Rev (0XF411): ADI930 [ 1442.194280][T10914] usb 10-1: reset high-speed USB device number 12 using dummy_hcd [ 1442.402328][T14396] loop8: detected capacity change from 0 to 4096 [ 1442.407947][T10914] usb 10-1: unable to get BOS descriptor or descriptor too short [ 1442.494029][T10914] usb 10-1: device firmware changed [ 1442.534288][T10914] ueagle-atm 10-1:127.25: usbatm_usb_probe: bind failed: -19! [ 1442.573989][T10914] usb 10-1: USB disconnect, device number 12 [ 1442.995655][T14407] bridge0: port 3(team0) entered disabled state [ 1443.018572][T14407] team0 (unregistering): left allmulticast mode [ 1443.025347][T14407] team_slave_0: left allmulticast mode [ 1443.045077][T14407] team_slave_1: left allmulticast mode [ 1443.051185][T14407] bridge0: port 3(team0) entered disabled state [ 1443.113402][T14409] binder: 14408:14409 ioctl 400c620e 20000040 returned -22 [ 1443.159195][T14407] team_slave_0: left promiscuous mode [ 1443.199809][T14407] team0 (unregistering): Port device team_slave_0 removed [ 1443.208560][T14407] team_slave_1: left promiscuous mode [ 1443.274258][T14407] team0 (unregistering): Port device team_slave_1 removed [ 1443.369022][T14407] veth1_vlan: left allmulticast mode [ 1443.397004][T14407] team0 (unregistering): Port device macvlan1 removed [ 1444.307553][T14423] loop3: detected capacity change from 0 to 1024 [ 1444.705790][ T8] usb 6-1: new full-speed USB device number 15 using dummy_hcd [ 1444.783406][ T752] hfsplus: b-tree write err: -5, ino 4 [ 1444.886114][ T8] usb 6-1: New USB device found, idVendor=09c0, idProduct=0203, bcdDevice=d3.32 [ 1444.896410][ T8] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1444.935091][ T8] usb 6-1: config 0 descriptor?? [ 1444.976198][ T8] dvb-usb: found a 'Genpix SkyWalker-1 DVB-S receiver' in warm state. [ 1445.207184][T14430] loop8: detected capacity change from 0 to 4096 [ 1445.239452][T14434] netlink: 'syz.3.2939': attribute type 5 has an invalid length. [ 1445.360354][T14432] loop0: detected capacity change from 0 to 4096 [ 1445.413224][T14432] ntfs3(loop0): Different NTFS sector size (2048) and media sector size (512). [ 1445.570816][ T8] gp8psk: usb in 138 operation failed. [ 1445.579476][ T8] dvb-usb: This USB2.0 device cannot be run on a USB1.1 port. (it lacks a hardware PID filter) [ 1445.593561][ T8] dvb-usb: Genpix SkyWalker-1 DVB-S receiver error while loading driver (-19) [ 1445.641037][ T8] usb 6-1: USB disconnect, device number 15 [ 1445.764388][T14432] ntfs3(loop0): Failed to initialize $Extend/$ObjId. [ 1446.045083][T14436] loop3: detected capacity change from 0 to 2048 [ 1446.217310][T14436] UDF-fs: warning (device loop3): udf_load_vrs: No anchor found [ 1446.226879][T14436] UDF-fs: Scanning with blocksize 512 failed [ 1446.316945][T14436] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 1446.423062][ T29] audit: type=1800 audit(1737612532.110:96): pid=14436 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.2940" name="file1" dev="loop3" ino=838 res=0 errno=0 [ 1446.812092][T14440] loop8: detected capacity change from 0 to 4096 [ 1447.494469][T14456] netlink: 16 bytes leftover after parsing attributes in process `syz.5.2949'. [ 1448.097779][T14463] loop5: detected capacity change from 0 to 256 [ 1448.117043][T14463] exfat: Deprecated parameter 'namecase' [ 1448.168811][T14463] exFAT-fs (loop5): failed to load upcase table (idx : 0x00010000, chksum : 0x2eabf3fa, utbl_chksum : 0xe619d30d) [ 1448.638665][T14472] lo: entered allmulticast mode [ 1448.664307][T14472] lo: left allmulticast mode [ 1448.741300][T14471] loop0: detected capacity change from 0 to 1024 [ 1448.792963][T14471] EXT4-fs: Ignoring removed nobh option [ 1448.798905][T14471] EXT4-fs: Ignoring removed bh option [ 1448.892192][T14471] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1449.037275][T14471] EXT4-fs warning (device loop0): ext4_resize_begin:72: won't resize using backup superblock at 1 [ 1449.328578][T12637] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1449.746838][T14485] loop8: detected capacity change from 0 to 4096 [ 1449.833762][T14485] ntfs3(loop8): Different NTFS sector size (2048) and media sector size (512). [ 1450.030255][T14485] ntfs3(loop8): Mark volume as dirty due to NTFS errors [ 1450.857866][T14505] netlink: 18 bytes leftover after parsing attributes in process `syz.0.2971'. [ 1450.934611][T14507] netlink: 18 bytes leftover after parsing attributes in process `syz.0.2971'. [ 1451.265950][T14510] loop8: detected capacity change from 0 to 2048 [ 1451.698466][T14518] loop0: detected capacity change from 0 to 2048 [ 1451.722287][T14518] UDF-fs: error (device loop0): udf_read_tagged: read failed, block=18576, location=18576 [ 1451.895568][T14518] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 1451.932450][T14521] loop5: detected capacity change from 0 to 128 [ 1452.223161][T10914] usb 6-1: new low-speed USB device number 16 using dummy_hcd [ 1452.249156][T14525] program syz.8.2978 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 1452.476860][T10914] usb 6-1: unable to get BOS descriptor or descriptor too short [ 1452.534357][T10914] usb 6-1: config 1 has an invalid descriptor of length 175, skipping remainder of the config [ 1452.545133][T10914] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 16, setting to 8 [ 1452.563966][T10914] usb 6-1: config 1 interface 1 altsetting 35 has 0 endpoint descriptors, different from the interface descriptor's value: 30 [ 1452.580009][T10914] usb 6-1: config 1 interface 1 has no altsetting 0 [ 1452.720526][T10914] usb 6-1: string descriptor 0 read error: -22 [ 1452.727788][T10914] usb 6-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 1452.737304][T10914] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1452.790039][T14521] raw-gadget.0 gadget.5: fail, usb_ep_enable returned -22 [ 1452.804423][T10914] usb 6-1: selecting invalid altsetting 1 [ 1452.810412][T10914] usb 6-1: selecting invalid altsetting 0 [ 1452.816916][T10914] usb 6-1: selecting invalid altsetting 0 [ 1452.823132][T10914] cdc_ncm 6-1:1.0: bind() failure [ 1452.838648][T10914] usb 6-1: selecting invalid altsetting 0 [ 1452.844797][T10914] hub 6-1:1.1: probe with driver hub failed with error -22 [ 1452.856715][T10914] usb 6-1: selecting invalid altsetting 0 [ 1452.874968][T10914] usbtest 6-1:1.1: probe with driver usbtest failed with error -22 [ 1453.028798][T10914] usb 6-1: USB disconnect, device number 16 [ 1453.043324][ T8] usb 9-1: new high-speed USB device number 11 using dummy_hcd [ 1453.210947][ T1284] ieee802154 phy0 wpan0: encryption failed: -22 [ 1453.217942][ T1284] ieee802154 phy1 wpan1: encryption failed: -22 [ 1453.222181][ T8] usb 9-1: config index 0 descriptor too short (expected 23569, got 27) [ 1453.237993][ T8] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 1453.334983][ T8] usb 9-1: New USB device found, idVendor=03eb, idProduct=0002, bcdDevice=ba.c0 [ 1453.344771][ T8] usb 9-1: New USB device strings: Mfr=5, Product=0, SerialNumber=0 [ 1453.355986][ T8] usb 9-1: Manufacturer: syz [ 1453.425179][ T8] usb 9-1: config 0 descriptor?? [ 1453.721184][T14541] tmpfs: Bad value for 'nr_inodes' [ 1453.809539][ T8] rc_core: IR keymap rc-hauppauge not found [ 1453.816013][ T8] Registered IR keymap rc-empty [ 1453.822834][ T8] rc rc0: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.8/usb9/9-1/9-1:0.0/rc/rc0 [ 1453.838065][ T8] input: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.8/usb9/9-1/9-1:0.0/rc/rc0/input34 [ 1454.008334][ C0] igorplugusb 9-1:0.0: receive overflow, at least 23 lost [ 1454.242977][ T8] usb 9-1: USB disconnect, device number 11 [ 1454.538702][T14551] macvlan2: entered promiscuous mode [ 1454.544615][T14551] macvlan2: entered allmulticast mode [ 1455.649015][T14569] loop0: detected capacity change from 0 to 64 [ 1456.457025][T14581] loop3: detected capacity change from 0 to 512 [ 1456.600657][T14581] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1456.616733][T14581] ext4 filesystem being mounted at /284/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 1456.903730][T10839] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1457.464270][ T29] audit: type=1326 audit(1737612543.160:97): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14599 comm="syz.8.3013" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f56579 code=0x7ffc0000 [ 1457.566866][ T29] audit: type=1326 audit(1737612543.210:98): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14599 comm="syz.8.3013" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f56579 code=0x7ffc0000 [ 1457.852163][T14609] netlink: 52 bytes leftover after parsing attributes in process `syz.3.3016'. [ 1457.862080][T14609] netlink: 64 bytes leftover after parsing attributes in process `syz.3.3016'. [ 1457.871827][T14609] netlink: 52 bytes leftover after parsing attributes in process `syz.3.3016'. [ 1459.697418][T14640] netlink: 72 bytes leftover after parsing attributes in process `syz.3.3030'. [ 1459.700974][T14639] netlink: 12 bytes leftover after parsing attributes in process `syz.5.3031'. [ 1459.707767][T14640] netlink: 72 bytes leftover after parsing attributes in process `syz.3.3030'. [ 1459.794433][T14641] loop8: detected capacity change from 0 to 512 [ 1459.894554][T14641] EXT4-fs error (device loop8): ext4_orphan_get:1389: comm syz.8.3028: inode #13: comm syz.8.3028: iget: illegal inode # [ 1459.949570][T14641] EXT4-fs error (device loop8): ext4_orphan_get:1394: comm syz.8.3028: couldn't read orphan inode 13 (err -117) [ 1459.994980][T14641] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1460.385890][T10812] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1460.700388][T14651] loop3: detected capacity change from 0 to 2048 [ 1460.735276][T14651] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1461.204178][T10839] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1462.266875][T14673] loop3: detected capacity change from 0 to 256 [ 1462.806565][ C1] vkms_vblank_simulate: vblank timer overrun [ 1462.923582][ C1] vkms_vblank_simulate: vblank timer overrun [ 1463.114093][ C1] vkms_vblank_simulate: vblank timer overrun [ 1463.503926][ C1] vkms_vblank_simulate: vblank timer overrun [ 1464.025953][ C1] vkms_vblank_simulate: vblank timer overrun [ 1464.224206][ C1] vkms_vblank_simulate: vblank timer overrun [ 1464.341955][ C1] vkms_vblank_simulate: vblank timer overrun [ 1464.448019][ C1] vkms_vblank_simulate: vblank timer overrun [ 1464.895611][T14702] loop3: detected capacity change from 0 to 128 [ 1464.966512][T14702] VFS: Found a Xenix FS (block size = 512) on device loop3 [ 1465.023109][T14702] syz.3.3058: attempt to access beyond end of device [ 1465.023109][T14702] loop3: rw=0, sector=8767744, nr_sectors = 1 limit=128 [ 1465.037178][T14702] Buffer I/O error on dev loop3, logical block 8767744, async page read [ 1465.058568][T14702] syz.3.3058: attempt to access beyond end of device [ 1465.058568][T14702] loop3: rw=0, sector=13269809, nr_sectors = 1 limit=128 [ 1465.075718][T14702] Buffer I/O error on dev loop3, logical block 13269809, async page read [ 1465.084597][T14702] syz.3.3058: attempt to access beyond end of device [ 1465.084597][T14702] loop3: rw=0, sector=1157, nr_sectors = 1 limit=128 [ 1465.098228][T14702] Buffer I/O error on dev loop3, logical block 1157, async page read [ 1465.107002][T14702] syz.3.3058: attempt to access beyond end of device [ 1465.107002][T14702] loop3: rw=0, sector=3211264, nr_sectors = 1 limit=128 [ 1465.121039][T14702] Buffer I/O error on dev loop3, logical block 3211264, async page read [ 1465.129813][T14702] syz.3.3058: attempt to access beyond end of device [ 1465.129813][T14702] loop3: rw=0, sector=8768635, nr_sectors = 1 limit=128 [ 1465.143815][T14702] Buffer I/O error on dev loop3, logical block 8768635, async page read [ 1465.164844][T14702] syz.3.3058: attempt to access beyond end of device [ 1465.164844][T14702] loop3: rw=0, sector=13466417, nr_sectors = 1 limit=128 [ 1465.181833][T14702] Buffer I/O error on dev loop3, logical block 13466417, async page read [ 1465.190716][T14702] syz.3.3058: attempt to access beyond end of device [ 1465.190716][T14702] loop3: rw=0, sector=209285, nr_sectors = 1 limit=128 [ 1465.204663][T14702] Buffer I/O error on dev loop3, logical block 209285, async page read [ 1465.214768][T14702] syz.3.3058: attempt to access beyond end of device [ 1465.214768][T14702] loop3: rw=0, sector=8767744, nr_sectors = 1 limit=128 [ 1465.228648][T14702] Buffer I/O error on dev loop3, logical block 8767744, async page read [ 1465.237424][T14702] syz.3.3058: attempt to access beyond end of device [ 1465.237424][T14702] loop3: rw=0, sector=13269809, nr_sectors = 1 limit=128 [ 1465.262307][T14702] Buffer I/O error on dev loop3, logical block 13269809, async page read [ 1465.274353][T14702] syz.3.3058: attempt to access beyond end of device [ 1465.274353][T14702] loop3: rw=0, sector=1157, nr_sectors = 1 limit=128 [ 1465.288079][T14702] Buffer I/O error on dev loop3, logical block 1157, async page read [ 1465.299433][T14702] erofs (device erofs): cannot read erofs superblock [ 1465.323201][ T29] audit: type=1800 audit(1737612551.000:99): pid=14702 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.3058" name="/" dev="loop3" ino=2 res=0 errno=0 [ 1465.718943][T10839] sysv_free_block: trying to free block not in datazone [ 1465.751217][T10839] sysv_free_inode: inode 0,1,2 or nonexistent inode [ 1465.933299][T10914] usb 10-1: new high-speed USB device number 13 using dummy_hcd [ 1466.133079][T10914] usb 10-1: Using ep0 maxpacket: 8 [ 1466.157622][T10914] usb 10-1: config 2 has an invalid interface number: 158 but max is 0 [ 1466.167378][T10914] usb 10-1: config 2 has no interface number 0 [ 1466.182169][T10914] usb 10-1: config 2 interface 158 has no altsetting 0 [ 1466.308427][T10914] usb 10-1: New USB device found, idVendor=0553, idProduct=0002, bcdDevice=89.b2 [ 1466.318287][T10914] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1466.326915][T10914] usb 10-1: Product: syz [ 1466.331364][T10914] usb 10-1: Manufacturer: syz [ 1466.336481][T10914] usb 10-1: SerialNumber: syz [ 1466.425375][T10914] gspca_main: cpia1-2.14.0 probing 0553:0002 [ 1467.066064][T10914] gspca_cpia1: usb_control_msg 01, error -71 [ 1467.070084][T14730] loop0: detected capacity change from 0 to 512 [ 1467.072255][T10914] cpia1 10-1:2.158: only firmware version 1 is supported (got: 0) [ 1467.140711][T10914] usb 10-1: USB disconnect, device number 13 [ 1467.241900][T14730] EXT4-fs (loop0): 1 truncate cleaned up [ 1467.249698][T14730] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1467.574981][T12637] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1468.066089][T14741] loop8: detected capacity change from 0 to 4096 [ 1468.143359][T14741] ntfs3(loop8): Different NTFS sector size (4096) and media sector size (512). [ 1468.363177][T14741] ntfs3(loop8): Mark volume as dirty due to NTFS errors [ 1468.406400][T14741] ntfs3(loop8): ino=1b, "file0" failed to parse mft record [ 1468.414598][T14741] ntfs3(loop8): ino=1b, "file0" attr_set_size [ 1469.178675][T14754] loop3: detected capacity change from 0 to 128 [ 1469.988947][T14758] loop8: detected capacity change from 0 to 4096 [ 1470.107921][T14768] NILFS (loop8): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 1470.188761][T14758] NILFS (loop8): bad btree root (ino=12): level = 7, flags = 0xff, nchildren = 0 [ 1470.403213][ T8] usb 10-1: new high-speed USB device number 14 using dummy_hcd [ 1470.611914][ T8] usb 10-1: Using ep0 maxpacket: 8 [ 1470.645908][ T8] usb 10-1: config 0 interface 0 altsetting 2 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 1470.660459][ T8] usb 10-1: config 0 interface 0 altsetting 2 endpoint 0x81 has invalid wMaxPacketSize 0 [ 1470.670725][ T8] usb 10-1: config 0 interface 0 altsetting 2 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 1470.688279][ T8] usb 10-1: config 0 interface 0 has no altsetting 0 [ 1470.696223][ T8] usb 10-1: New USB device found, idVendor=0079, idProduct=1846, bcdDevice= 0.00 [ 1470.705789][ T8] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1470.796091][T14775] loop5: detected capacity change from 0 to 512 [ 1470.798623][ T8] usb 10-1: config 0 descriptor?? [ 1470.932738][T14775] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.3092: bg 0: block 248: padding at end of block bitmap is not set [ 1470.981124][T14775] Quota error (device loop5): write_blk: dquota write failed [ 1470.994450][T14775] Quota error (device loop5): qtree_write_dquot: Error -117 occurred while creating quota [ 1471.005754][T14775] EXT4-fs error (device loop5): ext4_acquire_dquot:6938: comm syz.5.3092: Failed to acquire dquot type 1 [ 1471.055442][T14775] EXT4-fs (loop5): 1 truncate cleaned up [ 1471.063495][T14775] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1471.076807][T14775] ext4 filesystem being mounted at /147/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 1471.331965][ T8] hid_mf 0003:0079:1846.0037: unbalanced collection at end of report description [ 1471.410381][ T8] hid_mf 0003:0079:1846.0037: HID parse failed. [ 1471.417262][ T8] hid_mf 0003:0079:1846.0037: probe with driver hid_mf failed with error -22 [ 1471.548954][ T8] usb 10-1: USB disconnect, device number 14 [ 1471.640636][T12625] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1471.663467][ T3543] Quota error (device loop5): do_check_range: Getting block 0 out of range 1-5 [ 1471.673422][ T3543] EXT4-fs error (device loop5): ext4_release_dquot:6961: comm kworker/u8:10: Failed to release dquot type 1 [ 1473.328987][T14807] loop3: detected capacity change from 0 to 64 [ 1473.888718][T10839] hfs: node 4:3 still has 1 user(s)! [ 1474.284117][T14822] RDS: rds_bind could not find a transport for fe80::1a, load rds_tcp or rds_rdma? [ 1474.516802][ T29] audit: type=1326 audit(1737612560.210:100): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14824 comm="syz.0.3115" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f8f579 code=0x7ffc0000 [ 1474.539788][ T29] audit: type=1326 audit(1737612560.220:101): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14824 comm="syz.0.3115" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f8f579 code=0x7ffc0000 [ 1474.576437][T14828] netlink: 8 bytes leftover after parsing attributes in process `syz.9.3116'. [ 1474.590130][T14823] loop8: detected capacity change from 0 to 2048 [ 1474.642073][T14823] NILFS (loop8): broken superblock, retrying with spare superblock (blocksize = 1024) [ 1474.687165][ T29] audit: type=1326 audit(1737612560.320:102): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14824 comm="syz.0.3115" exe="/root/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf7f8f579 code=0x7ffc0000 [ 1474.709875][ T29] audit: type=1326 audit(1737612560.320:103): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14824 comm="syz.0.3115" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f8f579 code=0x7ffc0000 [ 1474.735453][ T29] audit: type=1326 audit(1737612560.320:104): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14824 comm="syz.0.3115" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f8f579 code=0x7ffc0000 [ 1474.758054][ T29] audit: type=1326 audit(1737612560.320:105): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14824 comm="syz.0.3115" exe="/root/syz-executor" sig=0 arch=40000003 syscall=19 compat=1 ip=0xf7f8f579 code=0x7ffc0000 [ 1474.784527][ T29] audit: type=1326 audit(1737612560.320:106): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14824 comm="syz.0.3115" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f8f579 code=0x7ffc0000 [ 1474.865597][T14830] NILFS (loop8): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 1474.865883][T14823] bio_check_eod: 11 callbacks suppressed [ 1474.865943][T14823] syz.8.3114: attempt to access beyond end of device [ 1474.865943][T14823] loop8: rw=524288, sector=33554430, nr_sectors = 2 limit=2048 [ 1475.343702][T14837] program syz.0.3119 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 1475.379255][T14832] loop3: detected capacity change from 0 to 4096 [ 1475.461918][T14838] loop5: detected capacity change from 0 to 1024 [ 1475.808009][T14832] ntfs3(loop3): failed to convert "0080" to cp775 [ 1475.838036][T14832] ntfs3(loop3): failed to convert name for inode 1e. [ 1476.590989][T14851] netlink: 16215 bytes leftover after parsing attributes in process `syz.0.3128'. [ 1477.132368][T14858] loop8: detected capacity change from 0 to 256 [ 1477.189560][T14858] exfat: Deprecated parameter 'namecase' [ 1477.196554][T14858] exfat: Deprecated parameter 'utf8' [ 1477.318014][T14858] exFAT-fs (loop8): failed to load upcase table (idx : 0x00010000, chksum : 0x36dfe6b4, utbl_chksum : 0xe619d30d) [ 1478.484625][T14881] loop0: detected capacity change from 0 to 512 [ 1478.520894][T14881] EXT4-fs: Ignoring removed mblk_io_submit option [ 1478.556536][T14881] EXT4-fs (loop0): mounting ext3 file system using the ext4 subsystem [ 1478.665976][T14881] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a042c118, mo2=0002] [ 1478.693801][T14881] System zones: 1-12 [ 1478.785949][T14881] EXT4-fs error (device loop0): ext4_xattr_ibody_find:2240: inode #15: comm syz.0.3141: corrupted in-inode xattr: e_value size too large [ 1478.873388][T14881] EXT4-fs error (device loop0): ext4_orphan_get:1394: comm syz.0.3141: couldn't read orphan inode 15 (err -117) [ 1478.934833][T14881] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1479.318540][T14895] syz.9.3147 uses obsolete (PF_INET,SOCK_PACKET) [ 1479.405037][T12637] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1479.867402][T14901] netlink: 16 bytes leftover after parsing attributes in process `syz.0.3148'. [ 1480.129886][T14906] veth1_macvtap: left promiscuous mode [ 1480.135795][T14906] macsec0: entered promiscuous mode [ 1480.206124][T14906] veth1_macvtap: entered promiscuous mode [ 1480.216038][T14906] macsec0: left promiscuous mode [ 1480.793049][ T8] usb 9-1: new high-speed USB device number 12 using dummy_hcd [ 1481.015491][ T8] usb 9-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08 [ 1481.029262][ T8] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1481.038227][ T8] usb 9-1: Product: syz [ 1481.042875][ T8] usb 9-1: Manufacturer: syz [ 1481.047709][ T8] usb 9-1: SerialNumber: syz [ 1481.176780][ T8] usb 9-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested [ 1481.348822][ T5412] usb 9-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008 [ 1481.585795][T14926] loop5: detected capacity change from 0 to 256 [ 1481.864261][T14926] FAT-fs (loop5): Directory bread(block 64) failed [ 1481.871191][T14926] FAT-fs (loop5): Directory bread(block 65) failed [ 1481.878486][T14926] FAT-fs (loop5): Directory bread(block 66) failed [ 1481.885415][T14926] FAT-fs (loop5): Directory bread(block 67) failed [ 1481.892312][T14926] FAT-fs (loop5): Directory bread(block 68) failed [ 1481.899370][T14926] FAT-fs (loop5): Directory bread(block 69) failed [ 1481.906425][T14926] FAT-fs (loop5): Directory bread(block 70) failed [ 1481.913295][T14926] FAT-fs (loop5): Directory bread(block 71) failed [ 1481.920206][T14926] FAT-fs (loop5): Directory bread(block 72) failed [ 1481.927101][T14926] FAT-fs (loop5): Directory bread(block 73) failed [ 1482.179156][T10914] usb 9-1: USB disconnect, device number 12 [ 1482.343847][T14930] loop0: detected capacity change from 0 to 512 [ 1482.445714][T14930] EXT4-fs error (device loop0): ext4_clear_blocks:876: inode #13: comm syz.0.3164: attempt to clear invalid blocks 2 len 1 [ 1482.477769][T14930] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 218 vs 220 free clusters [ 1482.493218][T14930] EXT4-fs error (device loop0): ext4_free_branches:1023: inode #13: comm syz.0.3164: invalid indirect mapped block 1819239214 (level 0) [ 1482.521104][T14935] loop9: detected capacity change from 0 to 512 [ 1482.531795][T14935] EXT4-fs: Ignoring removed mblk_io_submit option [ 1482.571308][T14930] EXT4-fs error (device loop0): ext4_free_branches:1023: inode #13: comm syz.0.3164: invalid indirect mapped block 1819239214 (level 1) [ 1482.573030][T14935] EXT4-fs (loop9): mounting ext3 file system using the ext4 subsystem [ 1482.616714][T14930] EXT4-fs (loop0): 1 truncate cleaned up [ 1482.627264][T14930] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1482.673205][ T5412] usb 9-1: Service connection timeout for: 256 [ 1482.679640][ T5412] ath9k_htc 9-1:1.0: ath9k_htc: Unable to initialize HTC services [ 1482.693712][ T5412] ath9k_htc: Failed to initialize the device [ 1482.701571][T14935] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=b042c118, mo2=0002] [ 1482.715772][T14935] System zones: 1-12 [ 1482.727608][T10914] usb 9-1: ath9k_htc: USB layer deinitialized [ 1482.754278][T14935] EXT4-fs error (device loop9): ext4_xattr_ibody_find:2240: inode #15: comm syz.9.3166: corrupted in-inode xattr: e_value size too large [ 1482.830779][T14935] EXT4-fs error (device loop9): ext4_orphan_get:1394: comm syz.9.3166: couldn't read orphan inode 15 (err -117) [ 1482.879650][T14935] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1483.017203][T14935] EXT4-fs (loop9): re-mounted 00000000-0000-0000-0000-000000000000 ro. Quota mode: none. [ 1483.083157][T14935] EXT4-fs (loop9): warning: mounting fs with errors, running e2fsck is recommended [ 1483.133365][T14935] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=b042c118, mo2=0002] [ 1483.141577][T14935] EXT4-fs (loop9): re-mounted 00000000-0000-0000-0000-000000000000 r/w. Quota mode: none. [ 1483.198914][T12637] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1483.529917][T10793] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1483.756845][T14948] netlink: 60 bytes leftover after parsing attributes in process `syz.3.3172'. [ 1484.053358][ T5412] usb 9-1: new high-speed USB device number 13 using dummy_hcd [ 1484.249813][ T5412] usb 9-1: Using ep0 maxpacket: 16 [ 1484.259375][T14956] trusted_key: encrypted_key: key trusted:syz not found [ 1484.269061][ T5412] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 1484.290818][ T5412] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 1484.303104][ T5412] usb 9-1: New USB device found, idVendor=1532, idProduct=011b, bcdDevice= 0.00 [ 1484.312408][ T5412] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1484.504773][ T5412] usb 9-1: config 0 descriptor?? [ 1484.979095][ T5412] hid (null): invalid report_size -1077625177 [ 1485.042875][ T5412] razer 0003:1532:011B.0038: invalid report_size -1077625177 [ 1485.050533][ T5412] razer 0003:1532:011B.0038: item 0 4 1 7 parsing failed [ 1485.121565][ T5412] razer 0003:1532:011B.0038: probe with driver razer failed with error -22 [ 1485.166088][T14964] nftables ruleset with unbound chain [ 1485.186121][T10914] usb 9-1: USB disconnect, device number 13 [ 1485.274634][T14968] loop5: detected capacity change from 0 to 1024 [ 1485.348519][T14968] EXT4-fs: Ignoring removed bh option [ 1485.535660][T14968] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1485.605235][T14972] loop0: detected capacity change from 0 to 2048 [ 1485.684033][T14972] loop0: p1 < > p2 p3 < p5 > p4 [ 1485.689480][T14972] loop0: partition table partially beyond EOD, truncated [ 1485.698062][T14972] loop0: p1 start 4278190080 is beyond EOD, truncated [ 1485.707977][T14972] loop0: p2 start 16908800 is beyond EOD, truncated [ 1485.787204][T14972] loop0: p4 start 11326 is beyond EOD, truncated [ 1485.797554][T14972] loop0: p5 start 16908800 is beyond EOD, truncated [ 1486.014840][T12625] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1486.421694][T14985] loop8: detected capacity change from 0 to 164 [ 1486.602074][T14987] netlink: 92 bytes leftover after parsing attributes in process `syz.5.3187'. [ 1487.639045][T15003] netlink: 48 bytes leftover after parsing attributes in process `syz.3.3196'. [ 1489.802486][T15036] netlink: 'syz.3.3212': attribute type 29 has an invalid length. [ 1489.824711][T15028] loop9: detected capacity change from 0 to 8192 [ 1489.877816][T15038] netlink: 'syz.3.3212': attribute type 29 has an invalid length. [ 1490.830904][T15052] netlink: 8 bytes leftover after parsing attributes in process `syz.5.3219'. [ 1490.840355][T15052] netlink: 12 bytes leftover after parsing attributes in process `syz.5.3219'. [ 1490.859259][T15052] netlink: 'syz.5.3219': attribute type 20 has an invalid length. [ 1491.248893][T15055] netlink: 'syz.0.3222': attribute type 10 has an invalid length. [ 1491.290066][T15055] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 1491.311821][T15055] bond0: (slave batadv0): Enslaving as an active interface with an up link [ 1492.126350][T15066] netlink: 64 bytes leftover after parsing attributes in process `syz.9.3226'. [ 1492.443028][T15070] netlink: 32 bytes leftover after parsing attributes in process `syz.8.3228'. [ 1492.574364][T15065] loop0: detected capacity change from 0 to 4096 [ 1492.742785][T15072] loop3: detected capacity change from 0 to 2048 [ 1492.865322][T15072] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1492.908909][T15072] EXT4-fs error (device loop3): ext4_ext_precache:648: inode #2: comm syz.3.3229: pblk 1 bad header/extent: invalid magic - magic 2, entries 0, max 3(0), depth 0(4) [ 1492.938078][T15072] EXT4-fs (loop3): Remounting filesystem read-only [ 1493.065604][T10839] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1493.933889][T15092] loop0: detected capacity change from 0 to 47 [ 1494.070527][T15092] MINIX-fs: deleted inode referenced: 9 [ 1494.111334][T15092] MINIX-fs: deleted inode referenced: 9 [ 1495.311300][T15114] ./bus: Can't lookup blockdev [ 1495.394459][T15115] mkiss: ax0: crc mode is auto. [ 1495.521909][T15111] loop3: detected capacity change from 0 to 1024 [ 1495.620969][T15111] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1496.047244][T15125] loop8: detected capacity change from 0 to 512 [ 1496.100795][T15125] EXT4-fs (loop8): encrypted files will use data=ordered instead of data journaling mode [ 1496.139239][T15127] program syz.5.3253 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 1496.230104][T15125] EXT4-fs (loop8): 1 truncate cleaned up [ 1496.240785][T15125] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1496.304918][T10839] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1496.447228][T15132] loop9: detected capacity change from 0 to 64 [ 1496.664014][T10812] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1497.270569][T15144] loop9: detected capacity change from 0 to 2048 [ 1497.344210][T15144] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 1497.697689][T15150] loop5: detected capacity change from 0 to 164 [ 1497.836861][T15150] iso9660: Corrupted directory entry in block 4 of inode 1792 [ 1497.991635][T15157] netlink: 4 bytes leftover after parsing attributes in process `syz.9.3267'. [ 1498.522184][T15165] netdevsim netdevsim9: Direct firmware load for /card# failed with error -2 [ 1498.536134][T15165] netdevsim netdevsim9: Falling back to sysfs fallback for: /card# [ 1499.448540][T15170] loop5: detected capacity change from 0 to 4096 [ 1500.056740][T15170] ntfs3(loop5): failed to convert "0080" to cp852 [ 1500.103207][T15170] ntfs3(loop5): Mark volume as dirty due to NTFS errors [ 1500.179489][T15170] ntfs3(loop5): failed to convert name for inode 1e. [ 1500.235273][T15183] loop9: detected capacity change from 0 to 4096 [ 1500.283064][T15183] ntfs3(loop9): It is recommened to use chkdsk. [ 1500.352514][T15183] ntfs3(loop9): try to read out of volume at offset 0x3fffffc0c00 [ 1500.361449][T15183] ntfs3(loop9): try to read out of volume at offset 0x3fffffc0c00 [ 1500.374708][T15183] ntfs3(loop9): try to read out of volume at offset 0x3fffffc0c00 [ 1500.383670][T15183] ntfs3(loop9): try to read out of volume at offset 0x3fffffc0c00 [ 1500.400223][T15183] ntfs3(loop9): try to read out of volume at offset 0x3fffffc1c00 [ 1500.408655][T15183] ntfs3(loop9): try to read out of volume at offset 0x3fffffc2c00 [ 1500.417097][T15183] ntfs3(loop9): try to read out of volume at offset 0x3fffffc4c00 [ 1500.428055][T15183] ntfs3(loop9): try to read out of volume at offset 0x3fffffc8c00 [ 1500.436474][T15183] ntfs3(loop9): try to read out of volume at offset 0x3fffffd0c00 [ 1501.308552][T15194] loop3: detected capacity change from 0 to 4096 [ 1501.467747][T15201] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 1501.487861][T15199] loop9: detected capacity change from 0 to 512 [ 1501.563135][T15199] EXT4-fs (loop9): revision level too high, forcing read-only mode [ 1501.629704][T15206] loop0: detected capacity change from 0 to 512 [ 1501.629896][T15199] EXT4-fs (loop9): orphan cleanup on readonly fs [ 1501.673862][T15199] Quota error (device loop9): v2_read_file_info: Block with free entry 1 out of range (1, 6). [ 1501.685016][T15199] EXT4-fs warning (device loop9): ext4_enable_quotas:7156: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix. [ 1501.685757][T15206] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 1501.723266][T15199] EXT4-fs (loop9): Cannot turn on quotas: error -117 [ 1501.748122][T15199] EXT4-fs error (device loop9): ext4_validate_block_bitmap:441: comm syz.9.3286: bg 0: block 40: padding at end of block bitmap is not set [ 1501.815828][T15199] EXT4-fs error (device loop9) in ext4_mb_clear_bb:6550: Corrupt filesystem [ 1501.877285][T15199] EXT4-fs (loop9): 1 truncate cleaned up [ 1501.887740][T15199] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 1501.938445][T15206] EXT4-fs (loop0): 1 truncate cleaned up [ 1501.946170][T15206] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1501.960456][T15199] EXT4-fs error (device loop9): ext4_get_link:106: inode #16: comm syz.9.3286: bad symlink. [ 1501.991771][T15211] EXT4-fs error (device loop9): ext4_get_link:106: inode #16: comm syz.9.3286: bad symlink. [ 1502.285359][T10793] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1502.312842][T15213] loop8: detected capacity change from 0 to 1024 [ 1502.349857][T15213] EXT4-fs: Ignoring removed orlov option [ 1502.356583][T15213] EXT4-fs: Ignoring removed orlov option [ 1502.459298][T12637] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1502.580762][T15213] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1502.708070][T15222] loop0: detected capacity change from 0 to 512 [ 1502.731520][T15222] EXT4-fs: Ignoring removed i_version option [ 1502.750875][T15222] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 1502.869257][T15222] EXT4-fs (loop0): 1 truncate cleaned up [ 1502.877316][T15222] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1503.016300][T10812] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1503.336002][T12637] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1503.771973][T15240] loop9: detected capacity change from 0 to 256 [ 1504.236007][T15246] netlink: 'syz.3.3304': attribute type 29 has an invalid length. [ 1504.286759][T15236] loop5: detected capacity change from 0 to 4096 [ 1504.318206][T15247] netlink: 'syz.3.3304': attribute type 29 has an invalid length. [ 1504.383401][T15236] ntfs3(loop5): Different NTFS sector size (4096) and media sector size (512). [ 1504.455707][T15236] ntfs3(loop5): It is recommened to use chkdsk. [ 1506.358779][T15276] loop5: detected capacity change from 0 to 1024 [ 1506.542255][T15276] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 1506.688469][T15283] sg_read: process 722 (syz.9.3321) changed security contexts after opening file descriptor, this is not allowed. [ 1507.641741][T15295] loop5: detected capacity change from 0 to 512 [ 1507.670183][T15295] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode [ 1507.718247][T15295] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a00ec019, mo2=0002] [ 1507.718945][T15299] loop9: detected capacity change from 0 to 256 [ 1507.729967][T15295] System zones: 1-12 [ 1507.779777][T15295] EXT4-fs (loop5): 1 truncate cleaned up [ 1507.790176][T15295] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1507.829074][ T29] audit: type=1800 audit(1737612593.530:107): pid=15295 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.3327" name="file1" dev="loop5" ino=15 res=0 errno=0 [ 1508.133168][T12625] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1508.732933][ T29] audit: type=1326 audit(1737612594.430:108): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15313 comm="syz.9.3335" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73dd579 code=0x7ffc0000 [ 1508.758710][ T29] audit: type=1326 audit(1737612594.430:109): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15313 comm="syz.9.3335" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73dd579 code=0x7ffc0000 [ 1508.862782][ T29] audit: type=1326 audit(1737612594.490:110): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15313 comm="syz.9.3335" exe="/root/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf73dd579 code=0x7ffc0000 [ 1508.890234][ T29] audit: type=1326 audit(1737612594.490:111): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15313 comm="syz.9.3335" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73dd579 code=0x7ffc0000 [ 1508.914049][ T29] audit: type=1326 audit(1737612594.490:112): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15313 comm="syz.9.3335" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73dd579 code=0x7ffc0000 [ 1508.940175][ T29] audit: type=1326 audit(1737612594.490:113): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15313 comm="syz.9.3335" exe="/root/syz-executor" sig=0 arch=40000003 syscall=143 compat=1 ip=0xf73dd579 code=0x7ffc0000 [ 1508.956841][T15312] loop8: detected capacity change from 0 to 4096 [ 1508.962817][ T29] audit: type=1326 audit(1737612594.490:114): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15313 comm="syz.9.3335" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73dd579 code=0x7ffc0000 [ 1509.092912][T15312] NILFS (loop8): invalid segment: Checksum error in segment payload [ 1509.101390][T15312] NILFS (loop8): trying rollback from an earlier position [ 1509.207122][T15312] NILFS (loop8): recovery complete [ 1509.224837][T15318] NILFS (loop8): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 1509.344407][T15319] netlink: 8 bytes leftover after parsing attributes in process `syz.5.3337'. [ 1511.052817][ T5412] usb 10-1: new high-speed USB device number 15 using dummy_hcd [ 1511.277778][ T5412] usb 10-1: New USB device found, idVendor=1604, idProduct=8001, bcdDevice=44.1f [ 1511.287585][ T5412] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1511.298689][ T5412] usb 10-1: Product: syz [ 1511.306703][ T5412] usb 10-1: Manufacturer: syz [ 1511.311649][ T5412] usb 10-1: SerialNumber: syz [ 1511.323998][ T5412] usb 10-1: config 0 descriptor?? [ 1511.578947][ T5412] usb 10-1: USB disconnect, device number 15 [ 1511.917684][T15361] loop3: detected capacity change from 0 to 256 [ 1512.720346][T15372] loop9: detected capacity change from 0 to 1024 [ 1512.895759][ T5412] usb 4-1: new high-speed USB device number 10 using dummy_hcd [ 1513.092015][ T5412] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 253, changing to 11 [ 1513.106887][ T5412] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 1513.117169][ T5412] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 1513.130501][ T5412] usb 4-1: New USB device found, idVendor=046d, idProduct=c294, bcdDevice= 0.00 [ 1513.142741][ T5412] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1513.274298][ T5412] usb 4-1: config 0 descriptor?? [ 1513.747030][ T5412] logitech 0003:046D:C294.0039: item fetching failed at offset 0/2 [ 1513.800004][ T5412] logitech 0003:046D:C294.0039: parse failed [ 1513.806839][ T5412] logitech 0003:046D:C294.0039: probe with driver logitech failed with error -22 [ 1513.952318][ T5412] usb 4-1: USB disconnect, device number 10 [ 1514.493180][T15393] mkiss: ax0: crc mode is auto. [ 1514.636714][ T1284] ieee802154 phy0 wpan0: encryption failed: -22 [ 1514.643467][ T1284] ieee802154 phy1 wpan1: encryption failed: -22 [ 1515.312002][T15404] netlink: 12 bytes leftover after parsing attributes in process `syz.0.3375'. [ 1515.766780][T15410] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3378'. [ 1515.816468][T15410] netlink: 168 bytes leftover after parsing attributes in process `syz.3.3378'. [ 1515.825947][T15410] netlink: 168 bytes leftover after parsing attributes in process `syz.3.3378'. [ 1517.765385][T15436] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(3) [ 1517.772178][T15436] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless) [ 1517.780279][T15436] vhci_hcd vhci_hcd.0: Device attached [ 1517.867300][T15440] block nbd8: not configured, cannot reconfigure [ 1517.995953][ T5412] vhci_hcd: vhci_device speed not set [ 1518.073303][ T5412] usb 39-1: new full-speed USB device number 2 using vhci_hcd [ 1518.118059][ T8] usb 4-1: new low-speed USB device number 11 using dummy_hcd [ 1518.185220][T15445] netlink: 12 bytes leftover after parsing attributes in process `syz.5.3394'. [ 1518.301261][ T8] usb 4-1: config 0 has no interfaces? [ 1518.307176][ T8] usb 4-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22 [ 1518.316907][ T8] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1518.388157][ T8] usb 4-1: config 0 descriptor?? [ 1518.512952][ T9947] Bluetooth: hci5: command 0x0406 tx timeout [ 1518.626486][T15438] vhci_hcd: cannot find a urb of seqnum 0 max seqnum 1 [ 1518.629668][ T8] usb 4-1: USB disconnect, device number 11 [ 1518.646300][ T752] vhci_hcd: stop threads [ 1518.650734][ T752] vhci_hcd: release socket [ 1518.655535][ T752] vhci_hcd: disconnect device [ 1518.666811][T15452] netlink: 8 bytes leftover after parsing attributes in process `syz.9.3397'. [ 1518.878620][T15448] loop8: detected capacity change from 0 to 4096 [ 1519.168002][T15456] netlink: 12 bytes leftover after parsing attributes in process `syz.5.3400'. [ 1519.177533][T15456] netlink: 8 bytes leftover after parsing attributes in process `syz.5.3400'. [ 1519.977695][T15467] netlink: 256 bytes leftover after parsing attributes in process `syz.5.3405'. [ 1520.616523][ T29] audit: type=1800 audit(1737612606.310:115): pid=15478 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.5.3410" name="SYSV00000000" dev="hugetlbfs" ino=1 res=0 errno=0 [ 1522.736715][T15513] loop8: detected capacity change from 0 to 1764 [ 1522.812256][T15513] iso9660: Corrupted directory entry in block 2 of inode 1920 [ 1523.185710][T10914] usb 10-1: new full-speed USB device number 16 using dummy_hcd [ 1523.238157][ T5412] vhci_hcd: vhci_device speed not set [ 1523.433667][T10914] usb 10-1: config 0 interface 0 altsetting 3 endpoint 0x81 has an invalid bInterval 0, changing to 10 [ 1523.445422][T10914] usb 10-1: config 0 interface 0 altsetting 3 endpoint 0x81 has invalid wMaxPacketSize 0 [ 1523.455952][T10914] usb 10-1: config 0 interface 0 has no altsetting 0 [ 1523.463052][T10914] usb 10-1: New USB device found, idVendor=28bd, idProduct=0074, bcdDevice= 0.00 [ 1523.472426][T10914] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1523.485476][T10914] usb 10-1: config 0 descriptor?? [ 1523.673041][T15523] loop8: detected capacity change from 0 to 2048 [ 1523.696407][T15528] tipc: Started in network mode [ 1523.701483][T15528] tipc: Node identity 7, cluster identity 4711 [ 1523.708382][T15528] tipc: Node number set to 7 [ 1523.713918][T15528] tipc: Cannot configure node identity twice [ 1523.793612][T15523] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1523.806570][T15523] ext4 filesystem being mounted at /357/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 1523.988480][T10914] uclogic 0003:28BD:0074.003A: interface is invalid, ignoring [ 1524.111745][T15536] netlink: 'syz.3.3436': attribute type 10 has an invalid length. [ 1524.186809][T10914] usb 10-1: USB disconnect, device number 16 [ 1524.221314][T10812] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1525.003164][T15549] loop5: detected capacity change from 0 to 256 [ 1525.357269][T15557] netlink: 60 bytes leftover after parsing attributes in process `syz.9.3444'. [ 1525.368629][T15557] netlink: 16 bytes leftover after parsing attributes in process `syz.9.3444'. [ 1525.381325][T15557] netlink: 60 bytes leftover after parsing attributes in process `syz.9.3444'. [ 1525.800245][T15561] usb usb4: usbfs: process 15561 (syz.8.3446) did not claim interface 0 before use [ 1526.142898][T15569] loop8: detected capacity change from 0 to 512 [ 1526.156866][T15569] EXT4-fs: Ignoring removed bh option [ 1526.166971][T15569] EXT4-fs (loop8): mounting ext3 file system using the ext4 subsystem [ 1526.203037][T15569] EXT4-fs (loop8): invalid journal inode [ 1526.209141][T15569] EXT4-fs (loop8): can't get journal size [ 1526.257768][T15563] loop9: detected capacity change from 0 to 4096 [ 1526.271532][T15569] EXT4-fs (loop8): 1 truncate cleaned up [ 1526.282247][T15569] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1526.433995][T10812] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1526.593198][T15573] Driver unsupported XDP return value 0 on prog (id 124) dev N/A, expect packet loss! [ 1527.390150][T15581] loop5: detected capacity change from 0 to 1764 [ 1527.466889][T15581] iso9660: Corrupted directory entry in block 2 of inode 1920 [ 1527.500320][T15585] loop9: detected capacity change from 0 to 256 [ 1527.520002][T15581] block device autoloading is deprecated and will be removed. [ 1527.719030][T15585] exFAT-fs (loop9): failed to load upcase table (idx : 0x0000fe7f, chksum : 0x39626d3b, utbl_chksum : 0xe619d30d) [ 1527.874772][ T29] audit: type=1800 audit(1737612613.570:116): pid=15585 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.9.3457" name="file1" dev="loop9" ino=1048947 res=0 errno=0 [ 1528.241408][T15592] loop0: detected capacity change from 0 to 512 [ 1528.248470][ T29] audit: type=1326 audit(1737612613.930:117): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15591 comm="syz.5.3460" exe="/root/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf739d579 code=0x0 [ 1528.330833][T15592] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 1528.412764][T15592] EXT4-fs error (device loop0): ext4_orphan_get:1415: comm syz.0.3461: bad orphan inode 131083 [ 1528.486802][T15592] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1528.870771][T12637] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1529.171748][T15610] loop9: detected capacity change from 0 to 256 [ 1529.195194][T15610] exfat: Deprecated parameter 'utf8' [ 1529.200926][T15610] exfat: Deprecated parameter 'utf8' [ 1529.334341][T15610] exFAT-fs (loop9): failed to load upcase table (idx : 0x00010000, chksum : 0x811ad48d, utbl_chksum : 0xe619d30d) [ 1529.608421][ T5412] kernel write not supported for file /snd/seq (pid: 5412 comm: kworker/0:3) [ 1530.209108][T15624] netlink: 8 bytes leftover after parsing attributes in process `syz.9.3474'. [ 1530.285698][T15625] loop5: detected capacity change from 0 to 512 [ 1530.319852][T15627] loop8: detected capacity change from 0 to 128 [ 1530.340471][T15625] EXT4-fs: Ignoring removed oldalloc option [ 1530.399127][T15625] EXT4-fs error (device loop5): ext4_orphan_get:1389: inode #15: comm syz.5.3475: iget: bad extended attribute block 1 [ 1530.457485][T15625] EXT4-fs error (device loop5): ext4_orphan_get:1394: comm syz.5.3475: couldn't read orphan inode 15 (err -117) [ 1530.552019][T15625] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1530.645527][T15625] EXT4-fs error (device loop5): ext4_map_blocks:671: inode #2: block 13: comm syz.5.3475: lblock 0 mapped to illegal pblock 13 (length 1) [ 1530.670276][T15625] EXT4-fs warning (device loop5): htree_dirblock_to_tree:1083: inode #2: lblock 0: comm syz.5.3475: error -117 reading directory block [ 1530.809804][T15633] loop9: detected capacity change from 0 to 512 [ 1531.028848][T15633] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1531.042235][T15633] ext4 filesystem being mounted at /379/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 1531.130051][T12625] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1531.333187][T15633] EXT4-fs: Ignoring removed orlov option [ 1531.339379][T15633] EXT4-fs: Remounting file system with no journal so ignoring journalled data option [ 1531.349349][T15633] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 1531.442961][T15633] EXT4-fs error (device loop9): __ext4_remount:6749: comm syz.9.3479: Abort forced by user [ 1531.466219][T15633] EXT4-fs (loop9): Remounting filesystem read-only [ 1531.476209][T15633] EXT4-fs (loop9): re-mounted 00000000-0000-0000-0000-000000000000 r/w. Quota mode: writeback. [ 1531.814835][T10793] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1531.856850][T15648] netlink: 8 bytes leftover after parsing attributes in process `syz.8.3484'. [ 1532.406702][T15658] netlink: 8 bytes leftover after parsing attributes in process `syz.8.3489'. [ 1532.788353][T15655] loop9: detected capacity change from 0 to 4096 [ 1532.998112][T15655] ntfs3(loop9): Failed to initialize $Extend/$ObjId. [ 1533.561596][T15670] netlink: 44 bytes leftover after parsing attributes in process `syz.0.3497'. [ 1533.571200][T15670] netlink: 43 bytes leftover after parsing attributes in process `syz.0.3497'. [ 1533.580743][T15670] netlink: 'syz.0.3497': attribute type 6 has an invalid length. [ 1533.588956][T15670] netlink: 'syz.0.3497': attribute type 5 has an invalid length. [ 1533.597376][T15670] netlink: 43 bytes leftover after parsing attributes in process `syz.0.3497'. [ 1534.305619][T15684] loop0: detected capacity change from 0 to 512 [ 1534.396893][T15684] EXT4-fs (loop0): orphan cleanup on readonly fs [ 1534.404545][T15684] EXT4-fs error (device loop0): ext4_quota_enable:7108: comm syz.0.3501: Bad quota inum: 134217728, type: 1 [ 1534.431069][T15684] EXT4-fs warning (device loop0): ext4_enable_quotas:7156: Failed to enable quota tracking (type=1, err=-117, ino=134217728). Please run e2fsck to fix. [ 1534.447332][T15684] EXT4-fs (loop0): Cannot turn on quotas: error -117 [ 1534.456642][T15684] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 1534.817821][T12637] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1535.252964][ T9947] Bluetooth: hci4: unexpected event for opcode 0x0c1c [ 1535.261650][T15700] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3506'. [ 1535.360469][T15697] loop8: detected capacity change from 0 to 2048 [ 1535.480271][T15705] NILFS (loop8): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 1535.546016][T15706] loop9: detected capacity change from 0 to 64 [ 1538.555030][T15755] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration [ 1539.160643][ T5412] kernel write not supported for file /midi2 (pid: 5412 comm: kworker/0:3) [ 1539.766169][T15776] ===================================================== [ 1539.774095][T15776] BUG: KMSAN: uninit-value in nsim_get_ringparam+0xa8/0xe0 [ 1539.781583][T15776] nsim_get_ringparam+0xa8/0xe0 [ 1539.786840][T15776] ethtool_set_ringparam+0x268/0x570 [ 1539.792458][T15776] dev_ethtool+0x126d/0x2a40 [ 1539.802138][T15776] dev_ioctl+0xb0e/0x1280 [ 1539.807568][T15776] compat_sock_ioctl+0xeea/0x1360 [ 1539.813234][T15776] __se_compat_sys_ioctl+0x80f/0x1020 [ 1539.819341][T15776] __ia32_compat_sys_ioctl+0x93/0xe0 [ 1539.827647][T15776] ia32_sys_call+0x2226/0x4180 [ 1539.832770][T15776] __do_fast_syscall_32+0xb0/0x110 [ 1539.838168][T15776] do_fast_syscall_32+0x38/0x80 [ 1539.843326][T15776] do_SYSENTER_32+0x1f/0x30 [ 1539.848002][T15776] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 1539.857367][T15776] [ 1539.859793][T15776] Local variable kernel_ringparam created at: [ 1539.867773][T15776] ethtool_set_ringparam+0x96/0x570 [ 1539.873479][T15776] dev_ethtool+0x126d/0x2a40 [ 1539.878285][T15776] [ 1539.880702][T15776] CPU: 0 UID: 0 PID: 15776 Comm: syz.5.3544 Not tainted 6.13.0-syzkaller-04788-g7004a2e46d16 #0 [ 1539.894097][T15776] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 1539.906303][T15776] ===================================================== [ 1539.914053][T15776] Disabling lock debugging due to kernel taint [ 1539.920393][T15776] Kernel panic - not syncing: kmsan.panic set ... [ 1539.926949][T15776] CPU: 0 UID: 0 PID: 15776 Comm: syz.5.3544 Tainted: G B 6.13.0-syzkaller-04788-g7004a2e46d16 #0 [ 1539.939058][T15776] Tainted: [B]=BAD_PAGE [ 1539.943322][T15776] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 1539.953529][T15776] Call Trace: [ 1539.956925][T15776] [ 1539.959964][T15776] dump_stack_lvl+0x216/0x2d0 [ 1539.964858][T15776] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 1539.970866][T15776] dump_stack+0x1e/0x24 [ 1539.975214][T15776] panic+0x4e2/0xcf0 [ 1539.979290][T15776] ? kmsan_get_metadata+0xf1/0x1c0 [ 1539.984598][T15776] kmsan_report+0x2c7/0x2d0 [ 1539.989275][T15776] ? __msan_warning+0x95/0x120 [ 1539.994193][T15776] ? nsim_get_ringparam+0xa8/0xe0 [ 1539.999368][T15776] ? ethtool_set_ringparam+0x268/0x570 [ 1540.005001][T15776] ? dev_ethtool+0x126d/0x2a40 [ 1540.009981][T15776] ? dev_ioctl+0xb0e/0x1280 [ 1540.014644][T15776] ? compat_sock_ioctl+0xeea/0x1360 [ 1540.020050][T15776] ? __se_compat_sys_ioctl+0x80f/0x1020 [ 1540.025811][T15776] ? __ia32_compat_sys_ioctl+0x93/0xe0 [ 1540.031476][T15776] ? ia32_sys_call+0x2226/0x4180 [ 1540.036586][T15776] ? __do_fast_syscall_32+0xb0/0x110 [ 1540.042034][T15776] ? do_fast_syscall_32+0x38/0x80 [ 1540.047216][T15776] ? do_SYSENTER_32+0x1f/0x30 [ 1540.052043][T15776] ? entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 1540.058728][T15776] ? __do_fast_syscall_32+0xb0/0x110 [ 1540.064175][T15776] ? do_fast_syscall_32+0x38/0x80 [ 1540.069367][T15776] ? do_SYSENTER_32+0x1f/0x30 [ 1540.074216][T15776] ? entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 1540.080945][T15776] ? kmsan_get_metadata+0x13e/0x1c0 [ 1540.086332][T15776] ? kmsan_internal_set_shadow_origin+0x69/0x100 [ 1540.092890][T15776] ? kmsan_get_metadata+0x13e/0x1c0 [ 1540.098264][T15776] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 1540.104251][T15776] ? kmsan_get_metadata+0x13e/0x1c0 [ 1540.109645][T15776] ? kmsan_internal_memmove_metadata+0x91/0x230 [ 1540.116128][T15776] ? kmsan_get_metadata+0x13e/0x1c0 [ 1540.121498][T15776] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 1540.127488][T15776] __msan_warning+0x95/0x120 [ 1540.132229][T15776] nsim_get_ringparam+0xa8/0xe0 [ 1540.137235][T15776] ? __pfx_nsim_set_ringparam+0x10/0x10 [ 1540.142937][T15776] ? __pfx_nsim_get_ringparam+0x10/0x10 [ 1540.148640][T15776] ethtool_set_ringparam+0x268/0x570 [ 1540.154095][T15776] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 1540.160093][T15776] dev_ethtool+0x126d/0x2a40 [ 1540.164901][T15776] dev_ioctl+0xb0e/0x1280 [ 1540.169395][T15776] compat_sock_ioctl+0xeea/0x1360 [ 1540.174638][T15776] ? __pfx_compat_sock_ioctl+0x10/0x10 [ 1540.180298][T15776] __se_compat_sys_ioctl+0x80f/0x1020 [ 1540.185880][T15776] ? kmsan_internal_set_shadow_origin+0x69/0x100 [ 1540.192425][T15776] ? kmsan_get_metadata+0x13e/0x1c0 [ 1540.197795][T15776] __ia32_compat_sys_ioctl+0x93/0xe0 [ 1540.203291][T15776] ia32_sys_call+0x2226/0x4180 [ 1540.208221][T15776] __do_fast_syscall_32+0xb0/0x110 [ 1540.213515][T15776] ? switch_fpu_return+0x17/0x20 [ 1540.218622][T15776] do_fast_syscall_32+0x38/0x80 [ 1540.223651][T15776] do_SYSENTER_32+0x1f/0x30 [ 1540.228323][T15776] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 1540.234857][T15776] RIP: 0023:0xf739d579 [ 1540.239047][T15776] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 [ 1540.258838][T15776] RSP: 002b:00000000f502655c EFLAGS: 00000206 ORIG_RAX: 0000000000000036 [ 1540.267420][T15776] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000008946 [ 1540.275528][T15776] RDX: 0000000020000040 RSI: 0000000000000000 RDI: 0000000000000000 [ 1540.283634][T15776] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 1540.291738][T15776] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000 [ 1540.299835][T15776] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 1540.307945][T15776] [ 1540.311335][T15776] Kernel Offset: disabled [ 1540.315738][T15776] Rebooting in 86400 seconds..