last executing test programs: 17.277980307s ago: executing program 3 (id=1160): bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000140)='contention_end\x00'}, 0x10) r0 = syz_open_dev$evdev(&(0x7f0000000000), 0x0, 0x0) ioctl$EVIOCGMASK(r0, 0x80104592, &(0x7f0000000300)={0x0, 0xffffffffffffff36, &(0x7f0000000200)="952bb3e006ae9a4c3a"}) ioctl$EVIOCGPROP(r0, 0x80404509, 0x0) 15.353468413s ago: executing program 3 (id=1170): mkdir(&(0x7f0000000000)='./cgroup/../file0\x00', 0x0) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) r1 = openat$cgroup_int(r0, &(0x7f0000001700)='cpu.weight.nice\x00', 0x2, 0x0) write$cgroup_subtree(r1, &(0x7f0000001cc0)=ANY=[@ANYRESDEC], 0x27) 14.786808149s ago: executing program 3 (id=1176): r0 = socket$netlink(0x10, 0x3, 0x0) r1 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'bridge_slave_0\x00', 0x0}) sendmsg$nl_route(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000040)=ANY=[@ANYBLOB="3400000011000500000000000000000007000000", @ANYRES32=r2, @ANYBLOB="000000000000000014001a80100004"], 0x34}, 0x1, 0x0, 0x0, 0x20000000}, 0x44048010) 14.334919277s ago: executing program 3 (id=1179): syz_mount_image$udf(&(0x7f00000000c0), &(0x7f0000000180)='./file1\x00', 0x2000002, &(0x7f0000000200)=ANY=[@ANYBLOB='iocharset=macceltic,gid=', @ANYRESDEC=0x0, @ANYBLOB=',\x00\x00d<', @ANYRESDEC=0x0, @ANYBLOB=',rootdir=00000000000000000004,uid=ignore,uid=ignore,gid=ignore,iocharset=koi8-u,umask=00000000000000000077777,\x00'], 0x1, 0xc32, &(0x7f0000001a40)="$eJzs3U1sXNd9N+D/uRyKI/l9KyZ2FCeNi0lbpLJiufqKqViFO6pptgFkWQjF7AJwJI7UgSmSIKlGNtKC6aaLLgIURRdZEWiNAikaGE0RdMm0LpBsvCiy6opoYSMoumCLAFkFLO6dM9KQIm1GFCVKeh6b+s3ce86dc+4Z3ysLOvcEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABDxe6+dP3EyPexWAAAP0sXxr5445f4PAE+Uy/7/HwAAAAAAAAAAAAAA9rsURTwdKeYurqXJ6n1X/UJn8OatidGxrasdTFXNgap8+VM/eer0mS+9NHK2lxc6Mx9R/377bLwxfvl849XZG3Pz7YWF9lRjYqZzdXaqveMj7Lb+ZseqE9C48ebNqWvXFhqnXjy9Yfet4Q+HnjoyfG7k+ePP9cpOjI6Njd8pUu8vX7vnhnRtN8PjQBRxPFK88L2fplZEFLH7c1F/sGO/2cGqE8eqTkyMjlUdme60ZhbLnZd6J6KIaPRVavbO0dZjEbXBB9qH7TUjlsrmlw0+VnZvfK4137oy3W5cas0vdhY7szOXUre1ZX8aUcTZFLEcEatDdx9uMIqoRYrvHF5LVyJioHcevlhNDN6+HcUe9nEHynY2BiOWi0dgzPaxoSji9Ujxs/eOxtV8namuNV+IeL3MH0S8U+YrEan8YpyJ+GCL7xGPploU8efl+J9bS1PV9aB3XbnwtcZXZq7N9pXtXVd+yfvDXVeKh3R/OLgpH4x9fm2qRxGt6oq/lu79NzsAAAAAAAAAAAAAAAAA3G8Ho4jPRIrX/u2PqnnFUc1LP3xu5PeH/3//nPFnP+Y4ZdkXI2Kp2Nmc3AN5YuCldCmlhzyX+ElWjyL+OM//+9bDbgwAAAAAAAAAAAAAAAAAAMATrYifRIqX3z+alqN/TfHOzPXG5daV6e6qsL21f3trpq+vr683UjebOSdzLuVczrmSczVnFLl+zmbOyZxLOZdzruRczRkDuX7OZs7JnEs5l3Ou5FzNGbVcP2cz52TOpZzLOVdyruaMfbJ2LwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADA46SIIn4RKb79jbUUKSKaEZPRzZWhh906AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAKA0lIr4fqRo/EHz9rZaRKTq366j5S9nonmgzE9Gc6TMV6J5PmerylrzWw+h/ezOYCrix5FiqP7u7QHP4z/YfXf7axDvfPPOu8/WujnQ2zn84dBTRw6fGxn7tWe3e522asCxC52Zm7caE6NjY+N9m2v50z/Zt204f25xf7pORCy89fabrenp9vy9vyi/Aruo/gi9SLUnpadeVC+iti+a8XD6zhOgvP9/ECl++/1/793wu/f/evy/7rvbd/j4+Z/cuf+/vPlAO7z/1zbXy/f/8p6+1f3/6b5tL+ffjQzWIuqLN+YGj0TUF956+3jnRut6+3p75syJE18eGfny6RODByLq1zrT7b5X9+V0AQAAAAAAAAAAAAAAADw4qYjfjRStH6+lRkTcquZrDZ8bef74cwMxUM232jBv+43xy+cbr87emJtvLyy0pxoTM52rs1PtnX5cvZruNTE6tied+VgH97j9B+uvzs69Nd+5/oeLW+4/VD9/ZWFxvnV1691xMIqIZv+WY1WDJ0bHqkZPd1ozVdVLW06m/+UNpiL+I1JcPdNIn8/b8vz/zTP8N8z/X9p8oD2a//+Jvm3lZ6ZUxM8jxW/9xbPx+aqdh+Kuc5bL/U2kOHb2c7lcHCjL9drQfa5Ad2ZgWfZ/IsU//GJj2d58yKfvlD254xP7iCjH/3Ck+P6ffTd+PW/b+PyHrcf/0OYD7dH4P9O37dCG5xXsuuvk8T8eKV55+t34jbzto57/0Xv2xtFc+PbzOfZo/D/Vt204f+5v3p+uAwAAAAAAAAAAPNIGUxF/Gyl+OFZLL+VtO/n7f1ObD7RHf//r033bpu7PekUf+2LXJxUAAAAA9onBVMRPIsX1xXdvz6HeOP+7b/7n79yZ/zmaNu2t/pzvV6rnBtzPP//rN5w/d3L33QYAAAAAAAAAAAAAAAAAAIB9JaUiXsrrqU9W8/mntl1PfSVSvPZfL+Ry6UhZrrcO/HD1a/3i7Mzx89PTs1dbi60r0+3G+Fzrarus+0ykWPvrz+W6RbW+em+9+e4a73fWYp+PFGN/1yvbXYu9tzb5M72yS+2TZdlPRIr//PuNZXvrWH/qznFPlWX/KlJ8/Z+2LnvkTtnTZdnvRooffb3RK3uoLNt7Puqn75R98epssQejAgAAAAAAAAAAAAAAAAAAwJNmMBXxp5Hiv28s357Ln9f/H+x7W3nnm33r/W9yq1rnf7ha/3+71/ey/n/1XIGl7T4VAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAeTymKeDtSzF1cSytD5fuu+oXOzM1bE6NjW1c7mKqaA1X58qd+8tTpM196aeRsLz+6/v32mXhj/PL5xquzN+bm2wsL7anGxEzn6uxUe8dH2G39zY5VJ6Bx482bU9euLTROvXh6w+5bwx8OPXVk+NzI88ef65WdGB0bG+8rUxu850+/S9pm+4Eo4i8jxQvf+2n64VBEEbs/Fx/z3dlrB6tOHKs6MTE6VnVkutOaWSx3XuqdiCKi0Vep2TtHD2AsdqUZsVQ2v2zwsbJ743Ot+daV6XbjUmt+sbPYmZ25lLqtLfvTiCLOpojliFgduvtwg1HEm5HiO4fX0j8PRQz0zsMXL45/9cSp7dtR7GEfd6BsZ2MwYrn4qDHbosNsMBRF/GOk+Nl7R+NfhiJq0f2JL0S8XuYPIt6J7nin8otxJuIDp/WxUYsi/rcc/3Nr6b2h8nrQu65c+FrjKzPXZvvK9q4rj/z94UHa5/eTehTxo+qKv5b+1X/XAAAAAAAAAAAAAAAAAPtIEb8aKV5+/2iq5gffnlPcmbneuNy6Mt2d1teb+9ebM72+vr7eSN1s5pzMuZRzOedKztWcUeT6OZtl1tfXJ/P7pZzLOVdyruaMgVw/ZzPnZM6lnMs5V3Ku5oxarp+zmXMy51LO5ZwrOVdzxj6ZuwcAAAAAAAAAAAAAAAAAADxeiuqfFN/+xlpaH6rWlx7o7VuxHuhj7/8CAAD//0pa+Ck=") mkdir(&(0x7f00000000c0)='./bus\x00', 0x0) mkdir(&(0x7f0000000440)='./file1\x00', 0x11) mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f00000002c0)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]}) 13.336159921s ago: executing program 3 (id=1187): r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpuset.effective_cpus\x00', 0x275a, 0x0) fcntl$lock(r0, 0x7, &(0x7f0000000000)={0x1, 0x0, 0x7, 0xfff}) fcntl$lock(r0, 0x25, &(0x7f0000000040)={0x0, 0x0, 0xd240, 0x3ff}) fcntl$lock(r0, 0x7, &(0x7f00000002c0)={0x1, 0x1, 0x2000000000008004, 0x2}) 12.678998984s ago: executing program 3 (id=1192): openat$nvme_fabrics(0xffffffffffffff9c, &(0x7f0000000140), 0x240303, 0x0) mknodat$loop(0xffffffffffffff9c, &(0x7f0000000180)='./file2\x00', 0x6000, 0x1) r0 = open(&(0x7f0000000040)='./file2\x00', 0x81, 0x0) ioctl$BTRFS_IOC_DEFRAG(r0, 0x4c06, 0x3) 11.086725047s ago: executing program 32 (id=1192): openat$nvme_fabrics(0xffffffffffffff9c, &(0x7f0000000140), 0x240303, 0x0) mknodat$loop(0xffffffffffffff9c, &(0x7f0000000180)='./file2\x00', 0x6000, 0x1) r0 = open(&(0x7f0000000040)='./file2\x00', 0x81, 0x0) ioctl$BTRFS_IOC_DEFRAG(r0, 0x4c06, 0x3) 4.844286098s ago: executing program 2 (id=1234): r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)=ANY=[@ANYBLOB="1201000000000040260933334000000000010902240001000000000904000001030100000921000000012201000905810308"], 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, &(0x7f0000000080)={0x2c, &(0x7f0000000100)=ANY=[@ANYBLOB="000002"], 0x0, 0x0, 0x0, 0x0}, 0x0) syz_usb_ep_write(r0, 0x81, 0x3b, &(0x7f00000002c0)="b9425b44651dd23241963599000000110000004a16941ff5f4b4f1f0add7fcf2b877fceafffffffffff1ffdf4cd9f5d3969890522c77157d880100") 3.672751652s ago: executing program 1 (id=1238): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$ethtool(&(0x7f00000000c0), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000100)={'ipvlan0\x00', 0x0}) sendmsg$ETHTOOL_MSG_DEBUG_SET(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000005540)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010000000000000000000800000018000280100003800c0001800800010000000000040001000c00018008000100", @ANYRES32=r2], 0x38}}, 0x0) 3.559412931s ago: executing program 4 (id=1239): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_CONNECT(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000200)={0x2c, r1, 0x5, 0x70bd2e, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_SSID={0xa, 0x34, @default_ibss_ssid}, @NL80211_ATTR_WANT_1X_4WAY_HS={0x4}]}, 0x2c}, 0x1, 0x0, 0x0, 0x44840}, 0x0) 3.335755826s ago: executing program 0 (id=1240): r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000940)='./binderfs/binder0\x00', 0x800, 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x100000a, 0x12, r0, 0xa9616000) r1 = syz_init_net_socket$bt_rfcomm(0x1f, 0x1, 0x3) setsockopt$bt_rfcomm_RFCOMM_LM(r1, 0x12, 0x3, &(0x7f0000000000)=0x20, 0x4) 2.915646291s ago: executing program 1 (id=1241): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="18010000000000000000000001000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x78) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000500)={&(0x7f0000000280)='netlink_extack\x00', r0}, 0x10) r1 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000006c0)=@newlink={0x3c, 0x10, 0x49920d862a92153b, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x64802, 0x2002}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @bond={{0x9}, {0xc, 0x2, 0x0, 0x1, [@IFLA_BOND_MODE={0x5, 0x1, 0x25}]}}}]}, 0x3c}}, 0x0) 2.789279627s ago: executing program 4 (id=1242): r0 = socket(0x10, 0x3, 0x0) r1 = socket$packet(0x11, 0x2, 0x300) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'lo\x00', 0x0}) sendmsg$nl_route_sched(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000000c0)=@newqdisc={0x44, 0x24, 0x3fe3aa0262d8c583, 0x70bd27, 0x0, {0x0, 0x0, 0x0, r2, {0x0, 0x5}, {0xffff, 0xffff}, {0xfff1}}, [@qdisc_kind_options=@q_fq_pie={{0xb}, {0x14, 0x8002, [@TCA_FQ_PIE_ECN_PROB={0x8, 0x9, 0x50}, @TCA_FQ_PIE_ECN={0x8, 0xa, 0x1}]}}]}, 0x44}}, 0x400c4) 2.730292648s ago: executing program 0 (id=1244): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_MSRS(r2, 0x4008ae89, &(0x7f0000000000)=ANY=[@ANYBLOB="010000000000000003010040"]) 2.464366225s ago: executing program 2 (id=1245): r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x14, &(0x7f0000000140)={0xffffffffffffffff}, 0x106, 0x9}}, 0x20) write$RDMA_USER_CM_CMD_BIND_IP(r0, &(0x7f0000000040)={0x2, 0x28, 0xfa00, {0x0, {0xa, 0x4e24, 0x0, @remote, 0xf}, r1}}, 0x30) write$RDMA_USER_CM_CMD_RESOLVE_IP(r0, &(0x7f0000000180)={0x3, 0x40, 0xfa02, {{0x6000000, 0x4e24, 0x40001, @mcast1}, {0x2, 0xfff9, 0xc00, @remote, 0xffffffff}, r1, 0x9dffffff}}, 0x48) 2.240758326s ago: executing program 4 (id=1246): r0 = socket(0x10, 0x3, 0x0) setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0xc, &(0x7f0000000000)={0x5}, 0x10) write(r0, &(0x7f0000000040)="240000001e005f02143502fffffffff807000000050000060000eeff044a69000500004e", 0x24) syz_usb_connect(0x5, 0x0, 0x0, 0x0) 2.167296231s ago: executing program 1 (id=1247): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$tipc2(&(0x7f00000002c0), 0xffffffffffffffff) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000780)={0x6, 0x4, &(0x7f00000006c0)=ANY=[@ANYBLOB="180200000000000000000000000000008500000017000000950000000000000060bda1"], 0x0}, 0x94) sendmsg$TIPC_NL_NET_SET(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f00000006c0)=ANY=[@ANYBLOB='`\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010080000000fedbdf250f000000040003803c000780080001"], 0x60}, 0x1, 0x0, 0x0, 0x2805}, 0x0) 2.061684484s ago: executing program 0 (id=1248): unshare(0x2040400) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x1, 0x4, 0x1, 0x2, 0x0, 0x1}, 0x50) r1 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=@base={0xc, 0x4, 0x4, 0x8, 0x0, r0}, 0x48) bpf$MAP_CREATE(0x0, &(0x7f0000000240)=@base={0xc, 0x4, 0x4, 0x9, 0x0, r1}, 0x50) 1.925501021s ago: executing program 2 (id=1249): r0 = socket(0x10, 0x3, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'lo\x00', 0x0}) sendmsg$nl_route_sched(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000001b00)=@newqdisc={0x78, 0x24, 0xd0f, 0x0, 0x25dfdbff, {0x60, 0x0, 0x0, r2, {0x0, 0xffe0}, {0xffff, 0xffff}, {0x4, 0x1}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x18, 0x2, {{0x7fffffff, 0x14, 0xfcc, 0x400, 0x9}, 0x81, 0x0, 0xc8c3, 0x40, 0x4, 0x1c, 0x11, 0x9, 0x8, 0xffffffff, {0xfffffff5, 0x4, 0xad8, 0x7, 0x4, 0x4}}}}]}, 0x78}}, 0x0) 1.567623943s ago: executing program 0 (id=1250): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), r0) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_AUTHENTICATE(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000140)=ANY=[@ANYBLOB='`\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="310d2dbd7000ffdbdf002500000008000300", @ANYRES32=r2, @ANYBLOB="05000800000000000a00340001010101010100000800350007000000080026006c090000090007004121c2c5be0000000800090001ac0f000a0006"], 0x60}, 0x1, 0x0, 0x0, 0x4000001}, 0x10) 1.567217941s ago: executing program 1 (id=1251): r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'veth1_macvtap\x00', 0x0}) r2 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000380)=@newlink={0x50, 0x10, 0x503, 0x70bd2a, 0x4, {0x0, 0x0, 0x0, 0x0, 0x3a, 0x201a0}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0xc, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6, 0x1, 0x2}]}}}, @IFLA_LINK={0x8, 0x5, r1}, @IFLA_ADDRESS={0xa, 0x1, @local}]}, 0x50}}, 0x800) 1.409365456s ago: executing program 2 (id=1252): r0 = userfaultfd(0x80001) ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f00000000c0)) ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000000180)={{&(0x7f0000000000/0xc00000)=nil, 0xc00000}, 0x3}) mremap(&(0x7f0000000000/0x9000)=nil, 0x600002, 0x600002, 0x7, &(0x7f0000a00000/0x600000)=nil) 1.137090299s ago: executing program 4 (id=1253): mkdirat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000200)='hugetlbfs\x00', 0xa08000, 0x0) chdir(&(0x7f00000001c0)='./file0\x00') mknod(&(0x7f0000000040)='./file0\x00', 0x8001420, 0x0) 982.729917ms ago: executing program 0 (id=1254): r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nfc(&(0x7f0000000040), r1) sendmsg$NFC_CMD_LLC_SDREQ(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, r2, 0x1, 0x70bd25, 0x25dfdbfb, {}, [@NFC_ATTR_DEVICE_INDEX={0x8}]}, 0x1c}, 0x1, 0x0, 0x0, 0x526c41b91a75882e}, 0x40000094) 982.28284ms ago: executing program 2 (id=1255): r0 = socket$inet(0x2, 0x3, 0x33) add_key(0x0, 0x0, &(0x7f0000000000)="0000000000000040e261", 0xa, 0xfffffffffffffffe) seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x7, 0x0, 0x0, 0xfffffffb}]}) getsockopt$inet_mreqsrc(r0, 0x0, 0x53, &(0x7f0000000000)={@dev, @local, @broadcast}, &(0x7f0000000040)=0x28) 846.711489ms ago: executing program 1 (id=1256): bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000010180)={0x18, 0x4, &(0x7f0000010240)=ANY=[], &(0x7f00000000c0)='GPL\x00', 0x5, 0x9c, &(0x7f0000000000)=""/156}, 0x94) setsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x0, &(0x7f0000000000)=0x200, 0x4) r0 = syz_open_dev$evdev(&(0x7f0000000240), 0x20000, 0x0) ioctl$EVIOCGLED(r0, 0x80284504, &(0x7f0000000000)=""/56) 590.540251ms ago: executing program 4 (id=1257): r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0) ioctl$SNDRV_TIMER_IOCTL_TREAD_OLD(r0, 0x40045402, &(0x7f0000000140)=0x1) ioctl$SNDRV_TIMER_IOCTL_SELECT(r0, 0x40345410, &(0x7f00000083c0)={{0x1}}) ioctl$SNDRV_TIMER_IOCTL_PARAMS(r0, 0x40505412, &(0x7f00000000c0)={0x7, 0x9dc5, 0x101, 0x0, 0xe}) 474.817366ms ago: executing program 0 (id=1258): r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000300)=ANY=[@ANYBLOB="1201000000000008411215500000000000010902240001000000000904000001030000000921ffff000122050009058103"], 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x3, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io(r0, &(0x7f0000000180)={0x2c, &(0x7f0000000100)=ANY=[@ANYBLOB='\x00\x00\f'], 0x0, 0x0, 0x0, 0x0}, 0x0) 474.411591ms ago: executing program 2 (id=1259): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000140)={'pim6reg1\x00', 0x2}) r1 = epoll_create1(0x80000) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000200)={0xa000000c}) 281.01229ms ago: executing program 1 (id=1260): r0 = socket$inet6_sctp(0xa, 0x1, 0x84) setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000140)={0x0, @in={{0x2, 0xfffe, @empty}}, 0x0, 0x0, 0x3f8, 0x0, 0x32, 0x8000}, 0x9c) bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) sendto$inet6(r0, &(0x7f0000847fff)='X', 0xfee4, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) 0s ago: executing program 4 (id=1261): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000740)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000e000000a50000002a00000095"], &(0x7f0000000b40)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000007c0)={&(0x7f0000000780)='netlink_extack\x00', r0}, 0x18) r1 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=@delneigh={0x30, 0x1a, 0x1, 0x200000, 0x0, {0x1c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6}, [@NDA_DST_IPV6={0x14, 0x1, @mcast1}]}, 0x30}}, 0x0) kernel console output (not intermixed with test programs): ce bond0 [ 228.923403][ T5817] 8021q: adding VLAN 0 to HW filter on device team0 [ 229.005563][ T5823] 8021q: adding VLAN 0 to HW filter on device team0 [ 229.056469][ T57] bridge0: port 1(bridge_slave_0) entered blocking state [ 229.064107][ T57] bridge0: port 1(bridge_slave_0) entered forwarding state [ 229.252785][ T57] bridge0: port 1(bridge_slave_0) entered blocking state [ 229.260310][ T57] bridge0: port 1(bridge_slave_0) entered forwarding state [ 229.275894][ T57] bridge0: port 2(bridge_slave_1) entered blocking state [ 229.284002][ T57] bridge0: port 2(bridge_slave_1) entered forwarding state [ 229.299792][ T57] bridge0: port 2(bridge_slave_1) entered blocking state [ 229.307439][ T57] bridge0: port 2(bridge_slave_1) entered forwarding state [ 230.795890][ T5813] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 230.847765][ T5814] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 230.948978][ T5809] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 231.368871][ T5813] veth0_vlan: entered promiscuous mode [ 231.443202][ T5813] veth1_vlan: entered promiscuous mode [ 231.546874][ T5809] veth0_vlan: entered promiscuous mode [ 231.593603][ T5817] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 231.605215][ T5814] veth0_vlan: entered promiscuous mode [ 231.652678][ T5814] veth1_vlan: entered promiscuous mode [ 231.678716][ T5809] veth1_vlan: entered promiscuous mode [ 231.784568][ T5823] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 232.019476][ T5813] veth0_macvtap: entered promiscuous mode [ 232.085973][ T5814] veth0_macvtap: entered promiscuous mode [ 232.099868][ T5813] veth1_macvtap: entered promiscuous mode [ 232.149206][ T5809] veth0_macvtap: entered promiscuous mode [ 232.225519][ T5809] veth1_macvtap: entered promiscuous mode [ 232.245024][ T5814] veth1_macvtap: entered promiscuous mode [ 232.329401][ T5817] veth0_vlan: entered promiscuous mode [ 232.378983][ T5813] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 232.463588][ T5814] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 232.498809][ T5817] veth1_vlan: entered promiscuous mode [ 232.529533][ T5813] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 232.573000][ T5809] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 232.596979][ T5814] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 232.654113][ T5813] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 232.663321][ T5813] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 232.672506][ T5813] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 232.681608][ T5813] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 232.716351][ T5809] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 232.764335][ T5814] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 232.773567][ T5814] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 232.782903][ T5814] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 232.791999][ T5814] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 232.815508][ T5809] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 232.824742][ T5809] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 232.834000][ T5809] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 232.844594][ T5809] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 233.047189][ T5817] veth0_macvtap: entered promiscuous mode [ 233.106147][ T5817] veth1_macvtap: entered promiscuous mode [ 233.269861][ T5817] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 233.355361][ T5817] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 233.444938][ T5817] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 233.454137][ T5817] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 233.463375][ T5817] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 233.473711][ T5817] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 234.389425][ T5823] veth0_vlan: entered promiscuous mode [ 234.520585][ T5823] veth1_vlan: entered promiscuous mode [ 234.898896][ T5823] veth0_macvtap: entered promiscuous mode [ 234.942874][ T5823] veth1_macvtap: entered promiscuous mode [ 235.100300][ T5823] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 235.209294][ T5823] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 235.310159][ T5823] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 235.321902][ T5823] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 235.330940][ T5823] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 235.340198][ T5823] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 238.746848][ T4451] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 238.756003][ T4451] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 238.951815][ T4229] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 238.959893][ T4229] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 239.114835][ T4229] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 239.124535][ T4229] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 239.338467][ T4229] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 239.347016][ T4229] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 239.476730][ T4229] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 239.485851][ T4229] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 239.500776][ T5809] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 239.540377][ T57] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 239.548604][ T57] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 239.712077][ T4451] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 239.720146][ T4451] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 240.080352][ T4281] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 240.092141][ T4281] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 241.096592][ T5996] loop2: detected capacity change from 0 to 256 [ 241.138344][ T5989] syz.0.1 (5989) used greatest stack depth: 4824 bytes left [ 241.370410][ T5996] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0x1a9973fb, utbl_chksum : 0xe619d30d) [ 241.783575][ T6004] netlink: 4 bytes leftover after parsing attributes in process `syz.1.8'. [ 242.248341][ T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 242.257188][ T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 242.596684][ T4451] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 242.605415][ T4451] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 243.401468][ T6023] capability: warning: `syz.2.15' uses deprecated v2 capabilities in a way that may be insecure [ 243.941018][ T6030] loop3: detected capacity change from 0 to 1024 [ 244.080335][ T6030] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 244.554507][ T5814] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 244.877075][ T6044] sctp: [Deprecated]: syz.1.21 (pid 6044) Use of int in max_burst socket option. [ 244.877075][ T6044] Use struct sctp_assoc_value instead [ 244.933252][ T6046] netlink: 'syz.2.23': attribute type 4 has an invalid length. [ 246.430403][ T6064] tap0: tun_chr_ioctl cmd 2147767506 [ 246.848381][ T6066] loop3: detected capacity change from 0 to 1024 [ 246.978763][ T6071] loop4: detected capacity change from 0 to 512 [ 247.003791][ T6068] loop0: detected capacity change from 0 to 1024 [ 247.031896][ T6071] ======================================================= [ 247.031896][ T6071] WARNING: The mand mount option has been deprecated and [ 247.031896][ T6071] and is ignored by this kernel. Remove the mand [ 247.031896][ T6071] option from the mount to silence this warning. [ 247.031896][ T6071] ======================================================= [ 247.137005][ T6071] EXT4-fs (loop4): external journal device major/minor numbers have changed [ 247.152992][ T6066] hfsplus: xattr searching failed [ 247.169275][ T6077] hfsplus: xattr searching failed [ 247.209878][ T6068] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 247.250803][ T6071] block device autoloading is deprecated and will be removed. [ 247.289341][ T6071] EXT4-fs (loop4): external journal has bad superblock [ 247.371568][ T30] audit: type=1800 audit(1751812047.404:2): pid=6068 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.32" name="file1" dev="loop0" ino=15 res=0 errno=0 [ 247.554472][ T4451] hfsplus: bad catalog file entry [ 247.573850][ T4451] hfsplus: b-tree write err: -5, ino 3 [ 247.768759][ T5809] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 247.931001][ T6083] loop2: detected capacity change from 0 to 8 [ 247.964141][ T6082] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details. [ 248.154697][ T6085] netlink: 20 bytes leftover after parsing attributes in process `syz.3.38'. [ 248.279028][ T6090] loop4: detected capacity change from 0 to 128 [ 248.292896][ T6089] netlink: 20 bytes leftover after parsing attributes in process `syz.3.38'. [ 248.603986][ T6093] netlink: 4 bytes leftover after parsing attributes in process `syz.0.39'. [ 250.074995][ T6106] netlink: 16 bytes leftover after parsing attributes in process `syz.3.45'. [ 250.782637][ T6116] netlink: 4 bytes leftover after parsing attributes in process `syz.0.49'. [ 251.221612][ T11] usb 5-1: new high-speed USB device number 2 using dummy_hcd [ 251.358528][ T6124] loop2: detected capacity change from 0 to 256 [ 251.450833][ T11] usb 5-1: config 127 has an invalid interface number: 32 but max is 0 [ 251.459672][ T11] usb 5-1: config 127 has no interface number 0 [ 251.466454][ T11] usb 5-1: New USB device found, idVendor=07ab, idProduct=fc01, bcdDevice=64.06 [ 251.475924][ T11] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 251.623281][ T6128] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 251.651562][ T11] ums-freecom 5-1:127.32: USB Mass Storage device detected [ 251.899345][ T11] usb 5-1: USB disconnect, device number 2 [ 251.926233][ T6132] netlink: 8 bytes leftover after parsing attributes in process `syz.0.56'. [ 251.936519][ T6132] netlink: 'syz.0.56': attribute type 30 has an invalid length. [ 252.045196][ T6132] netdevsim netdevsim0 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0 [ 252.054551][ T6132] netdevsim netdevsim0 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0 [ 252.063757][ T6132] netdevsim netdevsim0 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0 [ 252.072987][ T6132] netdevsim netdevsim0 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0 [ 252.129559][ T6132] Zero length message leads to an empty skb [ 252.587140][ T6139] loop2: detected capacity change from 0 to 8 [ 252.703661][ T6139] SQUASHFS error: xz decompression failed, data probably corrupt [ 252.712426][ T6139] SQUASHFS error: Failed to read block 0x108: -5 [ 252.719040][ T6139] SQUASHFS error: Unable to read metadata cache entry [106] [ 252.726904][ T6139] SQUASHFS error: Unable to read inode 0x11f [ 253.158389][ T6145] loop0: detected capacity change from 0 to 1024 [ 253.686672][ T6153] loop2: detected capacity change from 0 to 47 [ 254.203605][ T6160] loop0: detected capacity change from 0 to 128 [ 254.349331][ T6160] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 254.391624][ T6160] ext4 filesystem being mounted at /11/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 255.033617][ T5809] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 256.003679][ T6182] netlink: 4 bytes leftover after parsing attributes in process `syz.4.78'. [ 256.528853][ T6189] Bluetooth: MGMT ver 1.23 [ 256.537465][ T6188] loop2: detected capacity change from 0 to 256 [ 257.635075][ T6203] loop2: detected capacity change from 0 to 1024 [ 257.753897][ T6203] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 259.089004][ T6224] C: renamed from veth0_to_batadv (while UP) [ 259.158264][ T6224] netlink: 'syz.4.96': attribute type 2 has an invalid length. [ 259.166425][ T6224] netlink: 116 bytes leftover after parsing attributes in process `syz.4.96'. [ 259.175786][ T6224] A link change request failed with some changes committed already. Interface C may have been left with an inconsistent configuration, please check. [ 259.255262][ T6230] loop1: detected capacity change from 0 to 512 [ 259.362349][ T5102] Bluetooth: hci2: command tx timeout [ 259.471942][ T6230] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support! [ 259.486144][ T6230] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 259.641102][ T6230] EXT4-fs (loop1): 1 truncate cleaned up [ 259.649464][ T6230] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 259.689272][ T6236] loop2: detected capacity change from 0 to 64 [ 259.745358][ T6230] EXT4-fs (loop1): shut down requested (1) [ 260.029089][ T5813] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 260.312814][ T6239] warning: `syz.3.100' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211 [ 261.912390][ T6258] loop0: detected capacity change from 0 to 1024 [ 262.030460][ T6258] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 262.043267][ T6258] ext4 filesystem being mounted at /19/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 262.178059][ T6258] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 21 vs 268369941 free clusters [ 262.217098][ T6258] EXT4-fs (loop0): Delayed block allocation failed for inode 15 at logical offset 319 with max blocks 1 with error 28 [ 262.230603][ T6258] EXT4-fs (loop0): This should not happen!! Data will be lost [ 262.230603][ T6258] [ 262.240679][ T6258] EXT4-fs (loop0): Total free blocks count 0 [ 262.254103][ T6258] EXT4-fs (loop0): Free/Dirty block details [ 262.260244][ T6258] EXT4-fs (loop0): free_blocks=4293918720 [ 262.272934][ T6258] EXT4-fs (loop0): dirty_blocks=16 [ 262.278286][ T6258] EXT4-fs (loop0): Block reservation details [ 262.285803][ T6258] EXT4-fs (loop0): i_reserved_data_blocks=1 [ 262.669809][ T5809] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 262.848283][ T6274] loop3: detected capacity change from 0 to 512 [ 262.926564][ T6274] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 263.062152][ T6274] EXT4-fs (loop3): 1 truncate cleaned up [ 263.144286][ T6274] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 263.308816][ T30] audit: type=1800 audit(1751812063.344:3): pid=6274 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.115" name="file1" dev="loop3" ino=15 res=0 errno=0 [ 264.003775][ T5814] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 264.035630][ T30] audit: type=1326 audit(1751812064.074:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6286 comm="syz.2.120" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707e539 code=0x7ffc0000 [ 264.057939][ T30] audit: type=1326 audit(1751812064.084:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6286 comm="syz.2.120" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707e539 code=0x7ffc0000 [ 264.080348][ T30] audit: type=1326 audit(1751812064.104:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6286 comm="syz.2.120" exe="/root/syz-executor" sig=0 arch=40000003 syscall=428 compat=1 ip=0xf707e539 code=0x7ffc0000 [ 264.105275][ T30] audit: type=1326 audit(1751812064.104:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6286 comm="syz.2.120" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707e539 code=0x7ffc0000 [ 264.128469][ T30] audit: type=1326 audit(1751812064.104:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6286 comm="syz.2.120" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707e539 code=0x7ffc0000 [ 264.151343][ T30] audit: type=1326 audit(1751812064.114:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6286 comm="syz.2.120" exe="/root/syz-executor" sig=0 arch=40000003 syscall=429 compat=1 ip=0xf707e539 code=0x7ffc0000 [ 264.178939][ T30] audit: type=1326 audit(1751812064.114:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6286 comm="syz.2.120" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707e539 code=0x7ffc0000 [ 264.351664][ T6294] loop4: detected capacity change from 0 to 164 [ 264.573159][ T6296] netlink: 100 bytes leftover after parsing attributes in process `syz.3.123'. [ 265.586381][ T6310] netlink: 4 bytes leftover after parsing attributes in process `syz.0.129'. [ 266.003919][ T30] audit: type=1326 audit(1751812066.054:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6311 comm="syz.3.130" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf708e539 code=0x7ffc0000 [ 266.026748][ T30] audit: type=1326 audit(1751812066.054:12): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6311 comm="syz.3.130" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf708e539 code=0x7ffc0000 [ 267.020849][ T6323] loop2: detected capacity change from 0 to 2048 [ 267.200715][ T6328] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 267.231614][ T1609] usb 2-1: new full-speed USB device number 2 using dummy_hcd [ 267.447516][ T1609] usb 2-1: config 150 has an invalid interface number: 204 but max is 1 [ 267.456445][ T1609] usb 2-1: config 150 has no interface number 0 [ 267.463166][ T1609] usb 2-1: config 150 interface 204 has no altsetting 0 [ 267.470395][ T1609] usb 2-1: config 150 interface 1 has no altsetting 0 [ 267.641049][ T1609] usb 2-1: New USB device found, idVendor=04e2, idProduct=1424, bcdDevice=c7.eb [ 267.650651][ T1609] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 267.659304][ T1609] usb 2-1: Product: syz [ 267.665182][ T1609] usb 2-1: Manufacturer: syz [ 267.670014][ T1609] usb 2-1: SerialNumber: syz [ 267.883736][ T6335] netem: change failed [ 268.038074][ T1609] xr_serial 2-1:150.204: xr_serial converter detected [ 268.099826][ T1609] xr_serial ttyUSB0: Failed to set reg 0x60: -71 [ 268.106689][ T1609] xr_serial ttyUSB0: probe with driver xr_serial failed with error -71 [ 268.228687][ T1609] usb 2-1: USB disconnect, device number 2 [ 268.238325][ T1609] xr_serial 2-1:150.204: device disconnected [ 270.562641][ T30] kauditd_printk_skb: 6 callbacks suppressed [ 270.562711][ T30] audit: type=1326 audit(1751812070.584:19): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6365 comm="syz.2.156" exe="/root/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf707e539 code=0x0 [ 270.833856][ T6368] loop3: detected capacity change from 0 to 2048 [ 270.892773][ T6368] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 271.458150][ T6375] loop0: detected capacity change from 0 to 2048 [ 271.554805][ T6375] UDF-fs: error (device loop0): udf_process_sequence: Primary Volume Descriptor not found! [ 271.685709][ T6375] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 271.884505][ T6379] loop2: detected capacity change from 0 to 512 [ 271.939778][ T6371] loop1: detected capacity change from 0 to 8192 [ 271.996558][ T6379] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 272.123064][ T6379] EXT4-fs (loop2): 1 truncate cleaned up [ 272.130904][ T6379] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 272.150169][ T6385] syz.4.163 uses obsolete (PF_INET,SOCK_PACKET) [ 272.446113][ T30] audit: type=1800 audit(1751812072.484:20): pid=6379 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.162" name="file1" dev="loop2" ino=15 res=0 errno=0 [ 273.084755][ T5817] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 273.692918][ T6399] netlink: 16 bytes leftover after parsing attributes in process `syz.2.168'. [ 273.845216][ T6406] tap0: tun_chr_ioctl cmd 1074025677 [ 273.851416][ T6406] tap0: linktype set to 773 [ 273.949168][ T6407] loop1: detected capacity change from 0 to 512 [ 274.014395][ T6407] EXT4-fs (loop1): external journal device major/minor numbers have changed [ 274.024419][ T6407] EXT4-fs (loop1): external journal has bad superblock [ 274.420655][ T6409] IPv6: NLM_F_CREATE should be specified when creating new route [ 274.579504][ T6413] loop4: detected capacity change from 0 to 1024 [ 274.626648][ T6413] /dev/loop4: Can't open blockdev [ 275.336458][ T6426] netlink: 56 bytes leftover after parsing attributes in process `syz.4.180'. [ 275.552126][ T6425] sctp: [Deprecated]: syz.2.179 (pid 6425) Use of int in maxseg socket option. [ 275.552126][ T6425] Use struct sctp_assoc_value instead [ 275.922372][ T6425] syz.2.179 (6425) used greatest stack depth: 4392 bytes left [ 276.478282][ T6439] syzkaller1: tun_chr_ioctl cmd 1074025672 [ 276.484775][ T6439] syzkaller1: ignored: set checksum enabled [ 277.365886][ T6448] loop1: detected capacity change from 0 to 256 [ 277.485333][ T6453] loop3: detected capacity change from 0 to 512 [ 277.518986][ T5868] usb 3-1: new high-speed USB device number 2 using dummy_hcd [ 277.537131][ T6453] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349) [ 277.653741][ T6453] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=c842e12c, mo2=0002] [ 277.663136][ T6453] EXT4-fs (loop3): orphan cleanup on readonly fs [ 277.679377][ T6453] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.192: bg 0: block 361: padding at end of block bitmap is not set [ 277.682280][ T5868] usb 3-1: Using ep0 maxpacket: 16 [ 277.721010][ T6453] EXT4-fs (loop3): Remounting filesystem read-only [ 277.755237][ T6453] EXT4-fs (loop3): 1 truncate cleaned up [ 277.763545][ T6453] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000007 ro without journal. Quota mode: none. [ 277.807881][ T5868] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 277.823293][ T5868] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7 [ 277.837080][ T5868] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x2 has invalid wMaxPacketSize 0 [ 277.847954][ T5868] usb 3-1: config 0 interface 0 altsetting 0 bulk endpoint 0x2 has invalid maxpacket 0 [ 277.858040][ T5868] usb 3-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 277.968632][ T6453] EXT4-fs warning (device loop3): dx_probe:861: inode #2: comm syz.3.192: dx entry: limit 0 != root limit 125 [ 277.981864][ T6453] EXT4-fs warning (device loop3): dx_probe:934: inode #2: comm syz.3.192: Corrupt directory, running e2fsck is recommended [ 278.080932][ T5868] usb 3-1: New USB device found, idVendor=2040, idProduct=b138, bcdDevice= 1.42 [ 278.091514][ T5868] usb 3-1: New USB device strings: Mfr=4, Product=0, SerialNumber=0 [ 278.099786][ T5868] usb 3-1: Manufacturer: syz [ 278.236089][ T5868] usb 3-1: config 0 descriptor?? [ 278.375357][ T5814] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000007. [ 278.487877][ T6446] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 278.499003][ T6446] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 278.942647][ T5868] rc_core: IR keymap rc-hauppauge not found [ 278.955557][ T5868] Registered IR keymap rc-empty [ 278.961095][ T5868] mceusb 3-1:0.0: Error: mce write submit urb error = -90 [ 279.006120][ T5868] mceusb 3-1:0.0: Error: mce write submit urb error = -90 [ 279.069994][ T5868] rc rc0: Conexant Hybrid TV (cx231xx) MCE IR no TX as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.0/rc/rc0 [ 279.124562][ T5868] input: Conexant Hybrid TV (cx231xx) MCE IR no TX as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.0/rc/rc0/input5 [ 279.210868][ T5868] mceusb 3-1:0.0: Error: mce write submit urb error = -90 [ 279.321949][ T5868] mceusb 3-1:0.0: Error: mce write submit urb error = -90 [ 279.342111][ T5868] mceusb 3-1:0.0: Error: mce write submit urb error = -90 [ 279.383790][ T5868] mceusb 3-1:0.0: Error: mce write submit urb error = -90 [ 279.434796][ T5868] mceusb 3-1:0.0: Error: mce write submit urb error = -90 [ 279.476859][ T5868] mceusb 3-1:0.0: Error: mce write submit urb error = -90 [ 279.541763][ T5868] mceusb 3-1:0.0: Error: mce write submit urb error = -90 [ 279.570219][ T5868] mceusb 3-1:0.0: Error: mce write submit urb error = -90 [ 279.602287][ T5868] mceusb 3-1:0.0: Error: mce write submit urb error = -90 [ 279.629203][ T5868] mceusb 3-1:0.0: Error: mce write submit urb error = -90 [ 279.681730][ T5868] mceusb 3-1:0.0: Registered with mce emulator interface version 1 [ 279.690014][ T5868] mceusb 3-1:0.0: 2 tx ports (0x0 cabled) and 2 rx sensors (0x0 active) [ 279.746914][ T5868] usb 3-1: USB disconnect, device number 2 [ 280.395279][ C1] IPv4: Oversized IP packet from 172.20.20.24 [ 280.687284][ T6489] Driver unsupported XDP return value 0 on prog (id 18) dev N/A, expect packet loss! [ 280.847217][ T1286] ieee802154 phy0 wpan0: encryption failed: -22 [ 280.854321][ T1286] ieee802154 phy1 wpan1: encryption failed: -22 [ 281.284137][ T6497] loop1: detected capacity change from 0 to 1024 [ 281.528942][ T6497] hfsplus: extend alloc file! (8192,327680,366) [ 281.549436][ T6501] loop2: detected capacity change from 0 to 16 [ 281.665368][ T6501] erofs (device loop2): mounted with root inode @ nid 36. [ 281.781364][ T30] audit: type=1800 audit(1751812081.824:21): pid=6501 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.213" name="file1" dev="loop2" ino=86 res=0 errno=0 [ 282.298577][ T30] audit: type=1326 audit(1751812082.334:22): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6506 comm="syz.4.217" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf703e539 code=0x7ffc0000 [ 282.418072][ T30] audit: type=1326 audit(1751812082.414:23): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6506 comm="syz.4.217" exe="/root/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf703e539 code=0x7ffc0000 [ 282.443259][ T30] audit: type=1326 audit(1751812082.434:24): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6506 comm="syz.4.217" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf703e539 code=0x7ffc0000 [ 282.466442][ T30] audit: type=1326 audit(1751812082.444:25): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6506 comm="syz.4.217" exe="/root/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf703e539 code=0x7ffc0000 [ 282.488728][ T30] audit: type=1326 audit(1751812082.444:26): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6506 comm="syz.4.217" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf703e539 code=0x7ffc0000 [ 282.511233][ T30] audit: type=1326 audit(1751812082.454:27): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6506 comm="syz.4.217" exe="/root/syz-executor" sig=0 arch=40000003 syscall=20 compat=1 ip=0xf703e539 code=0x7ffc0000 [ 282.535449][ T30] audit: type=1326 audit(1751812082.454:28): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6506 comm="syz.4.217" exe="/root/syz-executor" sig=0 arch=40000003 syscall=173 compat=1 ip=0xf703e567 code=0x7ffc0000 [ 282.558435][ T30] audit: type=1326 audit(1751812082.454:29): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6506 comm="syz.4.217" exe="/root/syz-executor" sig=0 arch=40000003 syscall=20 compat=1 ip=0xf703e539 code=0x7ffc0000 [ 282.580778][ T30] audit: type=1326 audit(1751812082.454:30): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6506 comm="syz.4.217" exe="/root/syz-executor" sig=0 arch=40000003 syscall=173 compat=1 ip=0xf703e567 code=0x7ffc0000 [ 282.999012][ T6516] loop3: detected capacity change from 0 to 256 [ 283.070703][ T6516] exfat: Deprecated parameter 'utf8' [ 283.076815][ T6516] exfat: Deprecated parameter 'namecase' [ 283.084737][ T6516] exfat: Deprecated parameter 'namecase' [ 283.091775][ T6516] exfat: Deprecated parameter 'utf8' [ 283.195907][ T6516] exFAT-fs (loop3): failed to load upcase table (idx : 0x00012153, chksum : 0x5270ca8d, utbl_chksum : 0xe619d30d) [ 283.440883][ T6527] loop0: detected capacity change from 0 to 164 [ 283.704434][ T6528] loop4: detected capacity change from 0 to 2048 [ 283.786539][ T6528] loop4: p1 < > p3 [ 283.835812][ T6528] loop4: p3 size 134217728 extends beyond EOD, truncated [ 285.621459][ T11] usb 3-1: new high-speed USB device number 3 using dummy_hcd [ 285.842942][ T11] usb 3-1: New USB device found, idVendor=1604, idProduct=8001, bcdDevice=44.1f [ 285.852440][ T11] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 285.860763][ T11] usb 3-1: Product: syz [ 285.865352][ T11] usb 3-1: Manufacturer: syz [ 285.870194][ T11] usb 3-1: SerialNumber: syz [ 285.943895][ T11] usb 3-1: config 0 descriptor?? [ 286.206841][ T11] usb 3-1: USB disconnect, device number 3 [ 286.580119][ T6576] tun0: tun_chr_ioctl cmd 1074025675 [ 286.585905][ T6576] tun0: persist disabled [ 287.606634][ T6590] loop4: detected capacity change from 0 to 64 [ 287.645242][ T6590] BFS-fs: bfs_fill_super(): loop4 is unclean, continuing [ 288.284529][ T6600] netlink: 4 bytes leftover after parsing attributes in process `syz.2.258'. [ 288.315132][ T6602] netlink: 76 bytes leftover after parsing attributes in process `syz.0.259'. [ 288.349841][ T6604] loop1: detected capacity change from 0 to 64 [ 288.448609][ T6606] vlan2: entered promiscuous mode [ 288.454074][ T6606] mac80211_hwsim hwsim7 wlan1: entered promiscuous mode [ 288.502226][ T30] kauditd_printk_skb: 11 callbacks suppressed [ 288.502304][ T30] audit: type=1800 audit(1751812088.554:42): pid=6604 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.260" name="file1" dev="loop1" ino=18 res=0 errno=0 [ 289.160211][ T6619] loop1: detected capacity change from 0 to 512 [ 289.239107][ T6619] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 289.252487][ T6619] ext4 filesystem being mounted at /52/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 289.401885][ T6619] EXT4-fs error (device loop1): __ext4_new_inode:1279: comm syz.1.266: failed to insert inode 16: doubly allocated? [ 289.668909][ T5813] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 290.650998][ T6646] loop1: detected capacity change from 0 to 22 [ 290.690560][ T6646] romfs: Mounting image 'rom 637cf1fa' through the block layer [ 290.868462][ T6648] netlink: 'syz.3.279': attribute type 4 has an invalid length. [ 290.989127][ T6652] binder: 6649:6652 ioctl 4018620d 0 returned -22 [ 291.799901][ T6663] dummy0: entered promiscuous mode [ 291.821652][ T6662] dummy0: left promiscuous mode [ 292.044894][ T6667] netlink: 12 bytes leftover after parsing attributes in process `syz.4.286'. [ 292.068102][ T6666] netlink: 4 bytes leftover after parsing attributes in process `syz.3.287'. [ 293.001554][ T6675] loop1: detected capacity change from 0 to 1024 [ 293.214678][ T6681] loop0: detected capacity change from 0 to 64 [ 293.991951][ T11] usb 4-1: new high-speed USB device number 2 using dummy_hcd [ 294.343471][ T11] usb 4-1: New USB device found, idVendor=6189, idProduct=182d, bcdDevice= 1.73 [ 294.353067][ T11] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 294.361831][ T11] usb 4-1: Product: syz [ 294.366225][ T11] usb 4-1: Manufacturer: syz [ 294.371050][ T11] usb 4-1: SerialNumber: syz [ 294.468648][ T11] usb 4-1: config 0 descriptor?? [ 295.362224][ T11] asix 4-1:0.0 (unnamed net_device) (uninitialized): Failed to write reg index 0x0000: -71 [ 295.373709][ T11] asix 4-1:0.0 (unnamed net_device) (uninitialized): Failed to write RX_CTL mode to 0x0080: ffffffb9 [ 295.385634][ T11] asix 4-1:0.0: probe with driver asix failed with error -71 [ 295.475996][ T11] usb 4-1: USB disconnect, device number 2 [ 295.524613][ C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 295.620272][ T6719] binder: 6718:6719 ioctl 4018620d 0 returned -22 [ 296.729368][ T6737] loop2: detected capacity change from 0 to 256 [ 296.776102][ T6737] FAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 296.874608][ T6737] FAT-fs (loop2): error, invalid access to FAT (entry 0x00000001) [ 297.131775][ T30] audit: type=1326 audit(1751812097.174:43): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6745 comm="syz.4.323" exe="/root/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf703e539 code=0x0 [ 297.230921][ T6739] loop1: detected capacity change from 0 to 4096 [ 297.368924][ T6750] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 297.538908][ T6752] ------------[ cut here ]------------ [ 297.545096][ T6752] WARNING: CPU: 1 PID: 6752 at fs/exec.c:119 path_noexec+0x2ac/0x310 [ 297.553661][ T6752] Modules linked in: [ 297.557873][ T6752] CPU: 1 UID: 0 PID: 6752 Comm: syz.0.325 Not tainted 6.16.0-rc4-syzkaller-00324-g1f988d0788f5 #0 PREEMPT(undef) [ 297.570336][ T6752] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 297.583620][ T6752] RIP: 0010:path_noexec+0x2ac/0x310 [ 297.589186][ T6752] Code: 49 89 ff 8b 7d d4 e8 53 b2 e1 ff 4c 89 ff e9 c8 fe ff ff 44 89 e7 e8 43 b2 e1 ff 4d 85 ed 0f 85 a3 fe ff ff e8 65 bc 3e ff 90 <0f> 0b 90 48 8b 7d c0 4c 8b 37 e8 05 a7 e1 ff 48 8b 00 48 89 45 c8 [ 297.610292][ T6752] RSP: 0018:ffff888053063b90 EFLAGS: 00010283 [ 297.617176][ T6752] RAX: ffffffff82b5c76b RBX: ffff888029c4ccd8 RCX: 0000000000080000 [ 297.632142][ T6752] RDX: ffffc90008801000 RSI: 0000000000000060 RDI: 0000000000000061 [ 297.640392][ T6752] RBP: ffff888053063bd0 R08: ffffea000000000f R09: 0000000000000003 [ 297.648787][ T6752] R10: 0000000000000003 R11: 0000000000000002 R12: 0000000000000000 [ 297.659155][ T6752] R13: 0000000000000000 R14: ffff888103548aa0 R15: 0000000000000000 [ 297.667931][ T6752] FS: 0000000000000000(0000) GS:ffff8881aa95c000(0063) knlGS:00000000f5056b40 [ 297.677319][ T6752] CS: 0010 DS: 002b ES: 002b CR0: 0000000080050033 [ 297.686882][ T6752] CR2: 000000000c3fbdfd CR3: 0000000029e44000 CR4: 00000000003526f0 [ 297.695976][ T6752] Call Trace: [ 297.699462][ T6752] [ 297.702833][ T6752] do_mmap+0x1570/0x1d70 [ 297.707433][ T6752] vm_mmap_pgoff+0x48e/0x770 [ 297.712647][ T6752] ksys_mmap_pgoff+0x51b/0x7c0 [ 297.717746][ T6752] __ia32_sys_mmap_pgoff+0x11a/0x1d0 [ 297.723531][ T6752] ia32_sys_call+0x33d6/0x42c0 [ 297.728584][ T6752] __do_fast_syscall_32+0xb0/0x150 [ 297.734163][ T6752] do_fast_syscall_32+0x38/0x80 [ 297.739359][ T6752] do_SYSENTER_32+0x1f/0x30 [ 297.744347][ T6752] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 297.751013][ T6752] RIP: 0023:0xf7f35539 [ 297.755495][ T6752] Code: 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 [ 297.775908][ T6752] RSP: 002b:00000000f505655c EFLAGS: 00000206 ORIG_RAX: 00000000000000c0 [ 297.787863][ T6752] RAX: ffffffffffffffda RBX: 0000000080000000 RCX: 0000000000fbe000 [ 297.797103][ T6752] RDX: 0000000000000002 RSI: 0000000000000013 RDI: 0000000000000004 [ 297.805523][ T6752] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 297.813993][ T6752] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000 [ 297.822324][ T6752] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 297.830697][ T6752] [ 297.834064][ T6752] ---[ end trace 0000000000000000 ]--- [ 298.272285][ T1609] usb 3-1: new high-speed USB device number 4 using dummy_hcd [ 298.439542][ T1609] usb 3-1: config 0 has an invalid interface number: 255 but max is 0 [ 298.448113][ T1609] usb 3-1: config 0 has no interface number 0 [ 298.454658][ T1609] usb 3-1: too many endpoints for config 0 interface 255 altsetting 255: 255, using maximum allowed: 30 [ 298.466555][ T1609] usb 3-1: config 0 interface 255 altsetting 255 has 0 endpoint descriptors, different from the interface descriptor's value: 255 [ 298.480386][ T1609] usb 3-1: config 0 interface 255 has no altsetting 0 [ 298.487614][ T1609] usb 3-1: New USB device found, idVendor=0bda, idProduct=0177, bcdDevice=7d.0b [ 298.497135][ T1609] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 298.543363][ T1609] usb 3-1: config 0 descriptor?? [ 298.668696][ T6764] loop0: detected capacity change from 0 to 256 [ 298.671314][ T1609] ums-realtek 3-1:0.255: USB Mass Storage device detected [ 298.682549][ T6766] netlink: 32 bytes leftover after parsing attributes in process `syz.1.328'. [ 298.832203][ T6764] exfat: Deprecated parameter 'namecase' [ 298.838377][ T6764] exfat: Deprecated parameter 'utf8' [ 298.844305][ T6764] exfat: Deprecated parameter 'namecase' [ 298.850242][ T6764] exfat: Deprecated parameter 'utf8' [ 298.966241][ T1609] usb 3-1: USB disconnect, device number 4 [ 298.995926][ T6764] exFAT-fs (loop0): failed to load upcase table (idx : 0x00012153, chksum : 0x555ffa9e, utbl_chksum : 0xe619d30d) [ 299.455429][ T6776] netlink: 8 bytes leftover after parsing attributes in process `syz.3.334'. [ 300.609617][ T6794] loop2: detected capacity change from 0 to 1024 [ 300.631850][ T1609] usb 5-1: new high-speed USB device number 3 using dummy_hcd [ 300.730152][ T6798] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 300.739685][ C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 300.840593][ T1609] usb 5-1: Using ep0 maxpacket: 16 [ 300.853365][ T1609] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 300.866443][ T1609] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7 [ 300.878558][ T1609] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x2 has invalid wMaxPacketSize 0 [ 300.889049][ T1609] usb 5-1: config 0 interface 0 altsetting 0 bulk endpoint 0x2 has invalid maxpacket 0 [ 300.899176][ T1609] usb 5-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 300.967167][ T1609] usb 5-1: New USB device found, idVendor=2040, idProduct=b138, bcdDevice= 1.42 [ 300.976798][ T1609] usb 5-1: New USB device strings: Mfr=4, Product=0, SerialNumber=0 [ 300.985274][ T1609] usb 5-1: Manufacturer: syz [ 301.039857][ T1609] usb 5-1: config 0 descriptor?? [ 301.653030][ T1609] rc_core: IR keymap rc-hauppauge not found [ 301.659166][ T1609] Registered IR keymap rc-empty [ 301.664886][ T1609] mceusb 5-1:0.0: Error: mce write submit urb error = -90 [ 301.708279][ T6808] loop1: detected capacity change from 0 to 256 [ 301.726635][ T6809] netlink: 4 bytes leftover after parsing attributes in process `syz.2.348'. [ 301.739032][ T1609] mceusb 5-1:0.0: Error: mce write submit urb error = -90 [ 301.782930][ T1609] rc rc0: Conexant Hybrid TV (cx231xx) MCE IR no TX as /devices/platform/dummy_hcd.4/usb5/5-1/5-1:0.0/rc/rc0 [ 301.798269][ T1609] input: Conexant Hybrid TV (cx231xx) MCE IR no TX as /devices/platform/dummy_hcd.4/usb5/5-1/5-1:0.0/rc/rc0/input6 [ 301.839424][ T1609] mceusb 5-1:0.0: Error: mce write submit urb error = -90 [ 301.909677][ T1609] mceusb 5-1:0.0: Error: mce write submit urb error = -90 [ 301.933200][ T1609] mceusb 5-1:0.0: Error: mce write submit urb error = -90 [ 301.972070][ T1609] mceusb 5-1:0.0: Error: mce write submit urb error = -90 [ 301.991943][ T1609] mceusb 5-1:0.0: Error: mce write submit urb error = -90 [ 302.026661][ T1609] mceusb 5-1:0.0: Error: mce write submit urb error = -90 [ 302.061992][ T1609] mceusb 5-1:0.0: Error: mce write submit urb error = -90 [ 302.110182][ T1609] mceusb 5-1:0.0: Error: mce write submit urb error = -90 [ 302.162745][ T1609] mceusb 5-1:0.0: Error: mce write submit urb error = -90 [ 302.192269][ T1609] mceusb 5-1:0.0: Error: mce write submit urb error = -90 [ 302.215393][ T1609] mceusb 5-1:0.0: Error: mce write submit urb error = -90 [ 302.268195][ T1609] mceusb 5-1:0.0: Registered with mce emulator interface version 1 [ 302.277914][ T1609] mceusb 5-1:0.0: 2 tx ports (0x0 cabled) and 2 rx sensors (0x0 active) [ 302.307831][ T1609] usb 5-1: USB disconnect, device number 3 [ 302.930292][ T6823] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 302.941515][ T6823] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 302.972777][ T6823] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 302.993081][ T6823] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 303.003914][ T6823] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 303.119597][ T6821] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 303.291628][ T6830] loop4: detected capacity change from 0 to 256 [ 303.644753][ T6830] FAT-fs (loop4): Directory bread(block 64) failed [ 303.651819][ T6830] FAT-fs (loop4): Directory bread(block 65) failed [ 303.659164][ T6830] FAT-fs (loop4): Directory bread(block 66) failed [ 303.666314][ T6830] FAT-fs (loop4): Directory bread(block 67) failed [ 303.673502][ T6830] FAT-fs (loop4): Directory bread(block 68) failed [ 303.680275][ T6830] FAT-fs (loop4): Directory bread(block 69) failed [ 303.687374][ T6830] FAT-fs (loop4): Directory bread(block 70) failed [ 303.694328][ T6830] FAT-fs (loop4): Directory bread(block 71) failed [ 303.703099][ T6830] FAT-fs (loop4): Directory bread(block 72) failed [ 303.709858][ T6830] FAT-fs (loop4): Directory bread(block 73) failed [ 303.964966][ T6840] netlink: 'syz.2.362': attribute type 5 has an invalid length. [ 303.993707][ T6841] raw_sendmsg: syz.1.361 forgot to set AF_INET. Fix it! [ 304.161738][ T11] usb 4-1: new full-speed USB device number 3 using dummy_hcd [ 304.332590][ T11] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10 [ 304.348567][ T11] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 304.360253][ T11] usb 4-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40 [ 304.369737][ T11] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 304.456162][ T11] usb 4-1: config 0 descriptor?? [ 304.469060][ T11] hub 4-1:0.0: USB hub found [ 304.692313][ T11] hub 4-1:0.0: 1 port detected [ 304.743417][ T6850] loop4: detected capacity change from 0 to 1024 [ 304.808186][ T6850] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 304.903799][ T6850] overlayfs: upper fs needs to support d_type. [ 304.914431][ T6850] overlayfs: upper fs does not support RENAME_WHITEOUT. [ 304.921831][ T6850] overlayfs: failed to set xattr on upper [ 304.927949][ T6850] overlayfs: ...falling back to redirect_dir=nofollow. [ 304.935338][ T6850] overlayfs: ...falling back to index=off. [ 304.941559][ T6850] overlayfs: ...falling back to uuid=null. [ 305.108850][ T11] usb 4-1: USB disconnect, device number 3 [ 305.124069][ T6854] netlink: 4 bytes leftover after parsing attributes in process `syz.1.369'. [ 305.870396][ T6865] loop0: detected capacity change from 0 to 512 [ 305.907093][ T6865] EXT4-fs: Ignoring removed orlov option [ 305.917282][ T6865] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 305.990371][ T6865] EXT4-fs (loop0): 1 orphan inode deleted [ 305.997045][ T6865] EXT4-fs (loop0): 1 truncate cleaned up [ 306.005176][ T6865] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 306.226936][ T6865] syz.0.374 (pid 6865) is setting deprecated v1 encryption policy; recommend upgrading to v2. [ 306.265822][ T6865] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 191 vs 220 free clusters [ 306.582546][ T30] audit: type=1326 audit(1751812106.604:44): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6874 comm="syz.4.378" exe="/root/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf703e539 code=0x0 [ 306.683086][ T5809] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 307.696307][ T6895] netlink: 12 bytes leftover after parsing attributes in process `syz.3.386'. [ 308.494067][ T6911] loop6: detected capacity change from 0 to 524287999 [ 309.185958][ T6923] netlink: 8 bytes leftover after parsing attributes in process `syz.0.402'. [ 309.195239][ T6923] bridge: RTM_NEWNEIGH bridge0 without NUD_PERMANENT [ 309.534618][ T6929] loop4: detected capacity change from 0 to 128 [ 309.650617][ T11] kernel write not supported for file /amidi2 (pid: 11 comm: kworker/0:1) [ 309.673514][ T6929] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 309.744858][ T6929] ext4 filesystem being mounted at /77/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 309.843567][ T6929] EXT4-fs (loop4): shut down requested (0) [ 310.033102][ T5823] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 310.448620][ T6948] netlink: 8 bytes leftover after parsing attributes in process `syz.0.412'. [ 310.458482][ T6948] netlink: 8 bytes leftover after parsing attributes in process `syz.0.412'. [ 310.467857][ T6948] netlink: 4 bytes leftover after parsing attributes in process `syz.0.412'. [ 310.601481][ T11] usb 5-1: new high-speed USB device number 4 using dummy_hcd [ 310.796904][ T11] usb 5-1: Using ep0 maxpacket: 32 [ 310.815511][ T11] usb 5-1: New USB device found, idVendor=0fd9, idProduct=0025, bcdDevice=29.40 [ 310.825010][ T11] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 310.863899][ T11] usb 5-1: config 0 descriptor?? [ 311.124795][ T11] dvb-usb: found a 'Elgato EyeTV Sat' in warm state. [ 311.169824][ T11] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer. [ 311.214468][ T11] dvbdev: DVB: registering new adapter (Elgato EyeTV Sat) [ 311.222350][ T11] usb 5-1: media controller created [ 311.298213][ T6959] loop0: detected capacity change from 0 to 512 [ 311.344264][ T11] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered. [ 311.352750][ T6959] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 311.369887][ T6959] EXT4-fs (loop0): 1 truncate cleaned up [ 311.378481][ T6959] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 311.532917][ T5809] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 311.677919][ T11] az6027: usb out operation failed. (-71) [ 311.702131][ T11] az6027: usb out operation failed. (-71) [ 311.708207][ T11] stb0899_attach: Driver disabled by Kconfig [ 311.722343][ T11] az6027: no front-end attached [ 311.722343][ T11] [ 311.781730][ T11] az6027: usb out operation failed. (-71) [ 311.787678][ T11] dvb-usb: no frontend was attached by 'Elgato EyeTV Sat' [ 311.798046][ T11] input: IR-receiver inside an USB DVB receiver as /devices/platform/dummy_hcd.4/usb5/5-1/input/input7 [ 311.880014][ T11] dvb-usb: schedule remote query interval to 400 msecs. [ 311.887444][ T11] dvb-usb: Elgato EyeTV Sat successfully initialized and connected. [ 311.902678][ T11] usb 5-1: USB disconnect, device number 4 [ 312.078098][ T6968] loop0: detected capacity change from 0 to 512 [ 312.232291][ T11] dvb-usb: Elgato EyeTV Sat successfully deinitialized and disconnected. [ 312.260369][ T6968] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 312.273967][ T6968] ext4 filesystem being mounted at /82/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 312.394744][ T5809] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 312.420504][ T6972] loop2: detected capacity change from 0 to 1024 [ 312.575896][ T6972] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 313.008752][ T5817] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 313.803438][ T7000] netlink: 4 bytes leftover after parsing attributes in process `syz.0.436'. [ 313.838105][ T7000] netlink: 4 bytes leftover after parsing attributes in process `syz.0.436'. [ 314.222294][ T7006] loop3: detected capacity change from 0 to 164 [ 314.434045][ T7010] loop0: detected capacity change from 0 to 256 [ 314.466727][ T7010] exFAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 314.483648][ T7010] exFAT-fs (loop0): Medium has reported failures. Some data may be lost. [ 314.631823][ T7010] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d) [ 314.763400][ T7014] netlink: 4 bytes leftover after parsing attributes in process `syz.1.441'. [ 314.832806][ T7016] netlink: 'syz.3.442': attribute type 10 has an invalid length. [ 314.922280][ T7016] team0: Port device geneve1 added [ 315.497959][ T11] kernel write not supported for file /amidi2 (pid: 11 comm: kworker/0:1) [ 315.931817][ T1609] usb 5-1: new high-speed USB device number 5 using dummy_hcd [ 315.960386][ T7034] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 316.086772][ T7028] loop0: detected capacity change from 0 to 4096 [ 316.106714][ T1609] usb 5-1: Using ep0 maxpacket: 16 [ 316.139018][ T1609] usb 5-1: config 0 has no interfaces? [ 316.187750][ T1609] usb 5-1: New USB device found, idVendor=134c, idProduct=0002, bcdDevice=ec.7e [ 316.197344][ T1609] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 316.205706][ T1609] usb 5-1: Product: syz [ 316.210093][ T1609] usb 5-1: Manufacturer: syz [ 316.216243][ T1609] usb 5-1: SerialNumber: syz [ 316.229106][ T1609] usb 5-1: config 0 descriptor?? [ 316.457960][ T1609] usb 5-1: USB disconnect, device number 5 [ 316.579755][ T7039] loop2: detected capacity change from 0 to 2048 [ 316.595681][ T7039] UDF-fs: error (device loop2): udf_read_tagged: read failed, block=3932051, location=3932051 [ 316.683517][ T7039] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 317.409348][ T7049] loop2: detected capacity change from 0 to 2048 [ 318.033385][ T7055] loop1: detected capacity change from 0 to 4096 [ 319.265481][ T7076] netlink: 32 bytes leftover after parsing attributes in process `syz.2.469'. [ 319.778034][ T7084] loop1: detected capacity change from 0 to 512 [ 319.792474][ T7084] EXT4-fs: Ignoring removed nomblk_io_submit option [ 319.800330][ T7084] EXT4-fs: Ignoring removed i_version option [ 319.870339][ T7084] EXT4-fs (loop1): 1 orphan inode deleted [ 319.878944][ T7084] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 320.243708][ T5813] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 320.368261][ T7098] loop3: detected capacity change from 0 to 512 [ 320.402312][ T7098] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 320.458822][ T7098] EXT4-fs warning (device loop3): ext4_expand_extra_isize_ea:2848: Unable to expand inode 15. Delete some EAs or run e2fsck. [ 320.517156][ T7098] EXT4-fs (loop3): 1 truncate cleaned up [ 320.533626][ T7098] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 320.616362][ T7103] loop0: detected capacity change from 0 to 1024 [ 320.623172][ T1609] usb 5-1: new high-speed USB device number 6 using dummy_hcd [ 320.715282][ T7103] hfsplus: bad catalog entry type [ 320.803807][ T1609] usb 5-1: Using ep0 maxpacket: 16 [ 320.871700][ T1609] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 320.882419][ T1609] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7 [ 320.893952][ T1609] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x2 has invalid wMaxPacketSize 0 [ 320.904002][ T1609] usb 5-1: config 0 interface 0 altsetting 0 bulk endpoint 0x2 has invalid maxpacket 0 [ 320.914140][ T1609] usb 5-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 320.942576][ T5814] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 320.977162][ T12] hfsplus: b-tree write err: -5, ino 4 [ 321.085952][ T1609] usb 5-1: New USB device found, idVendor=2040, idProduct=b138, bcdDevice= 1.42 [ 321.095510][ T1609] usb 5-1: New USB device strings: Mfr=4, Product=0, SerialNumber=0 [ 321.104603][ T1609] usb 5-1: Manufacturer: syz [ 321.159477][ T1609] usb 5-1: config 0 descriptor?? [ 321.736842][ T1609] rc_core: IR keymap rc-hauppauge not found [ 321.743077][ T1609] Registered IR keymap rc-empty [ 321.752180][ T1609] mceusb 5-1:0.0: Error: mce write submit urb error = -90 [ 321.794280][ T1609] mceusb 5-1:0.0: Error: mce write submit urb error = -90 [ 321.826735][ T1609] rc rc0: Conexant Hybrid TV (cx231xx) MCE IR no TX as /devices/platform/dummy_hcd.4/usb5/5-1/5-1:0.0/rc/rc0 [ 321.841110][ T1609] input: Conexant Hybrid TV (cx231xx) MCE IR no TX as /devices/platform/dummy_hcd.4/usb5/5-1/5-1:0.0/rc/rc0/input8 [ 321.929460][ T1609] mceusb 5-1:0.0: Error: mce write submit urb error = -90 [ 322.002157][ T1609] mceusb 5-1:0.0: Error: mce write submit urb error = -90 [ 322.032271][ T1609] mceusb 5-1:0.0: Error: mce write submit urb error = -90 [ 322.064641][ T1609] mceusb 5-1:0.0: Error: mce write submit urb error = -90 [ 322.092248][ T1609] mceusb 5-1:0.0: Error: mce write submit urb error = -90 [ 322.112543][ T1609] mceusb 5-1:0.0: Error: mce write submit urb error = -90 [ 322.134878][ T1609] mceusb 5-1:0.0: Error: mce write submit urb error = -90 [ 322.190168][ T1609] mceusb 5-1:0.0: Error: mce write submit urb error = -90 [ 322.199950][ T7120] loop3: detected capacity change from 0 to 2048 [ 322.228748][ T1609] mceusb 5-1:0.0: Error: mce write submit urb error = -90 [ 322.261840][ T1609] mceusb 5-1:0.0: Error: mce write submit urb error = -90 [ 322.309091][ T1609] mceusb 5-1:0.0: Registered with mce emulator interface version 1 [ 322.317850][ T1609] mceusb 5-1:0.0: 2 tx ports (0x0 cabled) and 2 rx sensors (0x0 active) [ 322.367039][ T7120] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 322.468626][ T1609] usb 5-1: USB disconnect, device number 6 [ 322.602544][ T7132] netlink: 4 bytes leftover after parsing attributes in process `syz.0.491'. [ 322.726195][ T5814] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 323.149390][ T7136] loop3: detected capacity change from 0 to 16 [ 323.149551][ T7134] loop1: detected capacity change from 0 to 256 [ 323.240662][ T7136] erofs (device loop3): mounted with root inode @ nid 36. [ 323.312712][ T7136] erofs (device loop3): bogus lookback distance 1388 @ lcn 42 of nid 36 [ 323.338125][ T7136] erofs (device loop3): read error -117 @ 43 of nid 36 [ 323.452397][ T7134] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x36bd6320, utbl_chksum : 0xe619d30d) [ 324.397016][ T7114] loop2: detected capacity change from 0 to 32768 [ 325.039913][ T7143] syz.4.496 (7143): drop_caches: 2 [ 325.369639][ T7160] vlan2: entered allmulticast mode [ 325.379178][ T7160] mac80211_hwsim hwsim4 wlan0: entered allmulticast mode [ 325.447533][ T7161] input: syz1 as /devices/virtual/input/input9 [ 326.127690][ T7169] loop1: detected capacity change from 0 to 512 [ 326.374084][ T7169] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 326.387387][ T7169] ext4 filesystem being mounted at /108/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 326.426222][ T7174] loop4: detected capacity change from 0 to 1764 [ 326.556648][ T7174] iso9660: Corrupted directory entry in block 2 of inode 1920 [ 327.572397][ T5813] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 327.927133][ T7198] netlink: 4 bytes leftover after parsing attributes in process `syz.3.520'. [ 328.551878][ T7209] serio: Serial port ptm0 [ 329.422296][ T11] usb 1-1: new high-speed USB device number 2 using dummy_hcd [ 329.614217][ T11] usb 1-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3 [ 329.624168][ T11] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 329.683772][ T11] usb 1-1: config 0 descriptor?? [ 329.695417][ T11] cp210x 1-1:0.0: cp210x converter detected [ 329.741719][ T5862] usb 4-1: new full-speed USB device number 4 using dummy_hcd [ 329.921952][ T11] cp210x 1-1:0.0: failed to get vendor val 0x370b size 1: -121 [ 329.929996][ T11] cp210x 1-1:0.0: querying part number failed [ 329.947557][ T7235] netlink: 56 bytes leftover after parsing attributes in process `syz.2.536'. [ 329.982369][ T5862] usb 4-1: config 150 has an invalid interface number: 204 but max is 1 [ 329.991376][ T5862] usb 4-1: config 150 has no interface number 0 [ 329.997174][ T11] usb 1-1: cp210x converter now attached to ttyUSB0 [ 329.997787][ T5862] usb 4-1: config 150 interface 204 has no altsetting 0 [ 330.014882][ T5862] usb 4-1: config 150 interface 1 has no altsetting 0 [ 330.131760][ T5862] usb 4-1: New USB device found, idVendor=04e2, idProduct=1424, bcdDevice=c7.eb [ 330.141107][ T5862] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 330.151047][ T5862] usb 4-1: Product: syz [ 330.156125][ T5862] usb 4-1: Manufacturer: syz [ 330.160943][ T5862] usb 4-1: SerialNumber: syz [ 330.471279][ T5862] xr_serial 4-1:150.204: xr_serial converter detected [ 330.490935][ T5862] xr_serial ttyUSB1: Failed to set reg 0x60: -71 [ 330.497975][ T5862] xr_serial ttyUSB1: probe with driver xr_serial failed with error -71 [ 330.528784][ T5862] usb 4-1: USB disconnect, device number 4 [ 330.537456][ T5862] xr_serial 4-1:150.204: device disconnected [ 331.678031][ T7262] loop2: detected capacity change from 0 to 1024 [ 331.765131][ T7262] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 332.060568][ T5817] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 332.407110][ T11] usb 1-1: USB disconnect, device number 2 [ 332.419801][ T11] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0 [ 332.432361][ T11] cp210x 1-1:0.0: device disconnected [ 333.458466][ T7295] netlink: 4 bytes leftover after parsing attributes in process `syz.0.572'. [ 333.975361][ T7305] team0: No ports can be present during mode change [ 334.730932][ T7316] loop2: detected capacity change from 0 to 256 [ 338.159821][ T7372] vlan2: entered allmulticast mode [ 338.165404][ T7372] mac80211_hwsim hwsim8 wlan0: entered allmulticast mode [ 339.187793][ T7390] loop2: detected capacity change from 0 to 128 [ 339.231861][ T7390] FAT-fs (loop2): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 339.302327][ T7390] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 339.889073][ T7398] loop3: detected capacity change from 0 to 2048 [ 340.023918][ T7398] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 340.036716][ T7398] ext4 filesystem being mounted at /128/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 340.269696][ T7409] vlan2: entered allmulticast mode [ 340.275420][ T7409] mac80211_hwsim hwsim10 wlan0: entered allmulticast mode [ 340.450205][ T5814] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 340.636664][ T7413] loop2: detected capacity change from 0 to 64 [ 340.740133][ T7415] loop1: detected capacity change from 0 to 128 [ 340.867682][ T7415] FAT-fs (loop1): error, invalid access to FAT (entry 0x0fffff00) [ 340.875990][ T7415] FAT-fs (loop1): Filesystem has been set read-only [ 340.876323][ T30] audit: type=1800 audit(1751812140.914:45): pid=7413 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.610" name="file2" dev="loop2" ino=21 res=0 errno=0 [ 341.067883][ T30] audit: type=1326 audit(1751812141.104:46): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7420 comm="syz.0.614" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f35539 code=0x7ffc0000 [ 341.163681][ T30] audit: type=1326 audit(1751812141.154:47): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7420 comm="syz.0.614" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f35539 code=0x7ffc0000 [ 341.186178][ T30] audit: type=1326 audit(1751812141.164:48): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7420 comm="syz.0.614" exe="/root/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf7f35539 code=0x7ffc0000 [ 341.212933][ T30] audit: type=1326 audit(1751812141.184:49): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7420 comm="syz.0.614" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f35539 code=0x7ffc0000 [ 341.236701][ T30] audit: type=1326 audit(1751812141.204:50): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7420 comm="syz.0.614" exe="/root/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf7f35539 code=0x7ffc0000 [ 341.259177][ T30] audit: type=1326 audit(1751812141.214:51): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7420 comm="syz.0.614" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f35539 code=0x7ffc0000 [ 341.491636][ T30] audit: type=1326 audit(1751812141.334:52): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7420 comm="syz.0.614" exe="/root/syz-executor" sig=0 arch=40000003 syscall=20 compat=1 ip=0xf7f35539 code=0x7ffc0000 [ 341.518526][ T30] audit: type=1326 audit(1751812141.334:53): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7420 comm="syz.0.614" exe="/root/syz-executor" sig=0 arch=40000003 syscall=173 compat=1 ip=0xf7f35567 code=0x7ffc0000 [ 341.542216][ T30] audit: type=1326 audit(1751812141.334:54): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7420 comm="syz.0.614" exe="/root/syz-executor" sig=0 arch=40000003 syscall=20 compat=1 ip=0xf7f35539 code=0x7ffc0000 [ 341.824443][ T7428] loop2: detected capacity change from 0 to 256 [ 341.955951][ T7426] loop4: detected capacity change from 0 to 2048 [ 342.009624][ T7426] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 342.176611][ T7428] FAT-fs (loop2): Directory bread(block 64) failed [ 342.183651][ T7428] FAT-fs (loop2): Directory bread(block 65) failed [ 342.190713][ T7428] FAT-fs (loop2): Directory bread(block 66) failed [ 342.197724][ T7428] FAT-fs (loop2): Directory bread(block 67) failed [ 342.212339][ T7428] FAT-fs (loop2): Directory bread(block 68) failed [ 342.219119][ T7428] FAT-fs (loop2): Directory bread(block 69) failed [ 342.226225][ T7428] FAT-fs (loop2): Directory bread(block 70) failed [ 342.234969][ T7428] FAT-fs (loop2): Directory bread(block 71) failed [ 342.242561][ T7428] FAT-fs (loop2): Directory bread(block 72) failed [ 342.282344][ T7428] FAT-fs (loop2): Directory bread(block 73) failed [ 342.343317][ T1286] ieee802154 phy0 wpan0: encryption failed: -22 [ 342.349969][ T1286] ieee802154 phy1 wpan1: encryption failed: -22 [ 342.474654][ T7435] vlan2: entered promiscuous mode [ 342.479949][ T7435] mac80211_hwsim hwsim5 wlan1: entered promiscuous mode [ 342.675249][ T7437] loop0: detected capacity change from 0 to 1024 [ 342.831615][ T7437] hfsplus: extend alloc file! (8192,327680,366) [ 344.173946][ T7463] loop0: detected capacity change from 0 to 64 [ 344.370399][ T7468] netlink: 8 bytes leftover after parsing attributes in process `syz.1.637'. [ 344.406351][ T5815] Bluetooth: hci3: command 0x0406 tx timeout [ 344.407628][ T5818] Bluetooth: hci2: command 0x0406 tx timeout [ 344.414115][ T5815] Bluetooth: hci1: command 0x0406 tx timeout [ 344.419076][ T5821] Bluetooth: hci4: command 0x0406 tx timeout [ 344.549456][ T7465] loop4: detected capacity change from 0 to 4096 [ 344.683006][ T7465] ntfs3(loop4): Mark volume as dirty due to NTFS errors [ 344.867212][ T7465] ntfs3(loop4): Failed to load $Extend (-22). [ 344.873829][ T7465] ntfs3(loop4): Failed to initialize $Extend. [ 344.903285][ T7473] netlink: 108 bytes leftover after parsing attributes in process `syz.1.640'. [ 346.379393][ T7500] loop6: detected capacity change from 0 to 63 [ 346.437525][ T7500] Buffer I/O error on dev loop6, logical block 0, async page read [ 346.446179][ T7500] Buffer I/O error on dev loop6, logical block 0, async page read [ 346.454711][ T7500] Buffer I/O error on dev loop6, logical block 0, async page read [ 346.463039][ T7500] Buffer I/O error on dev loop6, logical block 0, async page read [ 346.471304][ T7500] Buffer I/O error on dev loop6, logical block 0, async page read [ 346.479465][ T7500] Buffer I/O error on dev loop6, logical block 0, async page read [ 346.487881][ T7500] Buffer I/O error on dev loop6, logical block 0, async page read [ 346.496193][ T7500] Buffer I/O error on dev loop6, logical block 0, async page read [ 346.504492][ T7500] ldm_validate_partition_table(): Disk read failed. [ 346.511871][ T7500] Buffer I/O error on dev loop6, logical block 0, async page read [ 346.520022][ T7500] Buffer I/O error on dev loop6, logical block 0, async page read [ 346.535066][ T7500] Dev loop6: unable to read RDB block 0 [ 346.543258][ T7500] loop6: unable to read partition table [ 346.619900][ T7500] loop_reread_partitions: partition scan of loop6 (3Ÿ ¾‚³˜) failed (rc=-5) [ 347.633828][ T7517] tun0: tun_chr_ioctl cmd 1074025675 [ 347.639487][ T7517] tun0: persist disabled [ 348.087779][ T7525] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 348.101438][ C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 348.116841][ T7524] netlink: 'syz.1.658': attribute type 4 has an invalid length. [ 349.336759][ T7547] dummy0: entered promiscuous mode [ 349.388633][ T7545] dummy0: left promiscuous mode [ 349.412944][ T5862] usb 1-1: new high-speed USB device number 3 using dummy_hcd [ 349.633353][ T5862] usb 1-1: New USB device found, idVendor=6189, idProduct=182d, bcdDevice= 1.73 [ 349.645884][ T5862] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 349.654286][ T5862] usb 1-1: Product: syz [ 349.658669][ T5862] usb 1-1: Manufacturer: syz [ 349.663679][ T5862] usb 1-1: SerialNumber: syz [ 349.714122][ T5862] usb 1-1: config 0 descriptor?? [ 350.040445][ T7557] loop4: detected capacity change from 0 to 2048 [ 350.192253][ T7557] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 350.378405][ T30] kauditd_printk_skb: 64 callbacks suppressed [ 350.378475][ T30] audit: type=1800 audit(1751812150.424:119): pid=7557 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.677" name="file1" dev="loop4" ino=15 res=0 errno=0 [ 350.613367][ T5862] asix 1-1:0.0 (unnamed net_device) (uninitialized): Failed to write reg index 0x0000: -71 [ 350.626242][ T5862] asix 1-1:0.0 (unnamed net_device) (uninitialized): Failed to write RX_CTL mode to 0x0080: ffffffb9 [ 350.638813][ T5862] asix 1-1:0.0: probe with driver asix failed with error -71 [ 350.666878][ T5862] usb 1-1: USB disconnect, device number 3 [ 350.700664][ T5823] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 351.881716][ T5862] usb 5-1: new high-speed USB device number 7 using dummy_hcd [ 352.092332][ T5862] usb 5-1: Using ep0 maxpacket: 16 [ 352.108151][ T5862] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 352.118916][ T5862] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7 [ 352.130217][ T5862] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x2 has invalid wMaxPacketSize 0 [ 352.140255][ T5862] usb 5-1: config 0 interface 0 altsetting 0 bulk endpoint 0x2 has invalid maxpacket 0 [ 352.150383][ T5862] usb 5-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 352.293263][ T7585] loop0: detected capacity change from 0 to 4096 [ 352.312205][ T5862] usb 5-1: New USB device found, idVendor=2040, idProduct=b138, bcdDevice= 1.42 [ 352.322183][ T5862] usb 5-1: New USB device strings: Mfr=4, Product=0, SerialNumber=0 [ 352.330426][ T5862] usb 5-1: Manufacturer: syz [ 352.387396][ T7590] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 352.411890][ T5862] usb 5-1: config 0 descriptor?? [ 352.658510][ T7580] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 352.668334][ T7580] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 353.145483][ T5862] rc_core: IR keymap rc-hauppauge not found [ 353.151878][ T5862] Registered IR keymap rc-empty [ 353.157451][ T5862] mceusb 5-1:0.0: Error: mce write submit urb error = -90 [ 353.242955][ T5862] mceusb 5-1:0.0: Error: mce write submit urb error = -90 [ 353.244398][ T7600] netlink: 32 bytes leftover after parsing attributes in process `syz.2.693'. [ 353.291874][ T5862] rc rc0: Conexant Hybrid TV (cx231xx) MCE IR no TX as /devices/platform/dummy_hcd.4/usb5/5-1/5-1:0.0/rc/rc0 [ 353.307103][ T5862] input: Conexant Hybrid TV (cx231xx) MCE IR no TX as /devices/platform/dummy_hcd.4/usb5/5-1/5-1:0.0/rc/rc0/input10 [ 353.385453][ T5862] mceusb 5-1:0.0: Error: mce write submit urb error = -90 [ 353.448080][ T5862] mceusb 5-1:0.0: Error: mce write submit urb error = -90 [ 353.497572][ T5862] mceusb 5-1:0.0: Error: mce write submit urb error = -90 [ 353.522768][ T5862] mceusb 5-1:0.0: Error: mce write submit urb error = -90 [ 353.543977][ T5862] mceusb 5-1:0.0: Error: mce write submit urb error = -90 [ 353.582025][ T5862] mceusb 5-1:0.0: Error: mce write submit urb error = -90 [ 353.604421][ T7602] loop1: detected capacity change from 0 to 2048 [ 353.619518][ T5862] mceusb 5-1:0.0: Error: mce write submit urb error = -90 [ 353.654971][ T5862] mceusb 5-1:0.0: Error: mce write submit urb error = -90 [ 353.691991][ T5862] mceusb 5-1:0.0: Error: mce write submit urb error = -90 [ 353.695110][ T7602] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 353.702123][ T7602] ext4 filesystem being mounted at /148/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 353.741656][ T5862] mceusb 5-1:0.0: Error: mce write submit urb error = -90 [ 353.764095][ T5862] mceusb 5-1:0.0: Registered with mce emulator interface version 1 [ 353.772656][ T5862] mceusb 5-1:0.0: 2 tx ports (0x0 cabled) and 2 rx sensors (0x0 active) [ 353.786810][ T5862] usb 5-1: USB disconnect, device number 7 [ 353.956452][ T7612] loop3: detected capacity change from 0 to 256 [ 353.973946][ T7612] FAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 354.033031][ T7612] FAT-fs (loop3): error, invalid access to FAT (entry 0x00000001) [ 354.107056][ T5813] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 354.436475][ T7616] loop2: detected capacity change from 0 to 1024 [ 354.746217][ T57] hfsplus: b-tree write err: -5, ino 4 [ 355.388292][ T7635] loop0: detected capacity change from 0 to 128 [ 355.399049][ T7634] Context (ID=0x0) not attached to queue pair (handle=0xffffffff:0x4) [ 355.454898][ T7635] FAT-fs (loop0): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 355.482830][ T7635] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 355.660859][ T7641] process 'syz.3.712' launched './file1' with NULL argv: empty string added [ 355.840370][ T7644] loop4: detected capacity change from 0 to 1024 [ 355.889234][ T7644] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 356.002719][ T7651] loop3: detected capacity change from 0 to 22 [ 356.013988][ T7651] romfs: Mounting image 'rom 637cf1fa' through the block layer [ 356.109935][ T5823] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 356.221642][ T11] usb 1-1: new high-speed USB device number 4 using dummy_hcd [ 356.434407][ T11] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 356.445996][ T11] usb 1-1: New USB device found, idVendor=0926, idProduct=3333, bcdDevice= 0.40 [ 356.455443][ T11] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 356.530518][ T11] usb 1-1: config 0 descriptor?? [ 356.961789][ T11] keytouch 0003:0926:3333.0001: fixing up Keytouch IEC report descriptor [ 356.993397][ T11] input: HID 0926:3333 as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/0003:0926:3333.0001/input/input11 [ 357.031448][ T7661] loop2: detected capacity change from 0 to 512 [ 357.046015][ T7661] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 357.142127][ T7661] EXT4-fs error (device loop2): xattr_find_entry:333: inode #15: comm syz.2.720: corrupted xattr entries [ 357.168000][ T11] keytouch 0003:0926:3333.0001: input,hidraw0: USB HID v0.00 Keyboard [HID 0926:3333] on usb-dummy_hcd.0-1/input0 [ 357.179947][ T7661] EXT4-fs (loop2): Remounting filesystem read-only [ 357.187339][ T7661] EXT4-fs (loop2): 1 truncate cleaned up [ 357.199809][ T7661] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 357.396818][ T5817] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 357.422520][ T11] usb 1-1: USB disconnect, device number 4 [ 357.983823][ T7676] binder: 7675:7676 ioctl 4018620d 0 returned -22 [ 358.094901][ T7678] netlink: 8 bytes leftover after parsing attributes in process `syz.4.726'. [ 358.286715][ T7680] loop3: detected capacity change from 0 to 1024 [ 358.755236][ T7688] netlink: 4 bytes leftover after parsing attributes in process `syz.0.731'. [ 359.045646][ T7691] loop2: detected capacity change from 0 to 256 [ 359.062840][ T7691] vfat: Unknown parameter 'utf`ÊŠß+Â8' [ 359.154349][ T7694] loop1: detected capacity change from 0 to 256 [ 359.254599][ T7696] netlink: 12 bytes leftover after parsing attributes in process `syz.0.736'. [ 359.429122][ T7693] loop3: detected capacity change from 0 to 4096 [ 359.719246][ T7693] ntfs3(loop3): ino=5, "/" mi_enum_attr [ 359.725507][ T7693] ntfs3(loop3): Mark volume as dirty due to NTFS errors [ 361.118091][ T7726] netlink: 60 bytes leftover after parsing attributes in process `syz.2.750'. [ 361.754843][ T7740] netlink: 12 bytes leftover after parsing attributes in process `syz.4.756'. [ 363.295231][ T7768] loop1: detected capacity change from 0 to 256 [ 363.332181][ T7767] loop3: detected capacity change from 0 to 1024 [ 363.412663][ T7768] exFAT-fs (loop1): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x467a0815, utbl_chksum : 0xe619d30d) [ 363.428254][ T7768] exFAT-fs (loop1): bogus allocation bitmap size(need : 2, cur : 17179869186) [ 363.578159][ T7772] loop0: detected capacity change from 0 to 256 [ 363.608105][ T7767] hfsplus: request for non-existent node 211 in B*Tree [ 363.615524][ T7767] hfsplus: request for non-existent node 211 in B*Tree [ 363.867487][ T7772] FAT-fs (loop0): Directory bread(block 64) failed [ 363.874688][ T7772] FAT-fs (loop0): Directory bread(block 65) failed [ 363.882022][ T7772] FAT-fs (loop0): Directory bread(block 66) failed [ 363.888767][ T7772] FAT-fs (loop0): Directory bread(block 67) failed [ 363.895855][ T7772] FAT-fs (loop0): Directory bread(block 68) failed [ 363.902740][ T7772] FAT-fs (loop0): Directory bread(block 69) failed [ 363.909718][ T7772] FAT-fs (loop0): Directory bread(block 70) failed [ 363.916765][ T7772] FAT-fs (loop0): Directory bread(block 71) failed [ 363.923921][ T7772] FAT-fs (loop0): Directory bread(block 72) failed [ 363.930678][ T7772] FAT-fs (loop0): Directory bread(block 73) failed [ 363.952724][ T7776] loop2: detected capacity change from 0 to 256 [ 364.029330][ T30] audit: type=1326 audit(1751812164.074:120): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7775 comm="syz.2.770" exe="/root/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf707e539 code=0x0 [ 364.269263][ T7781] loop1: detected capacity change from 0 to 512 [ 364.285548][ T7781] EXT4-fs: Ignoring removed orlov option [ 364.307823][ T7781] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 364.387649][ T7781] EXT4-fs (loop1): 1 orphan inode deleted [ 364.393927][ T7781] EXT4-fs (loop1): 1 truncate cleaned up [ 364.402046][ T7781] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 364.509376][ T7781] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 191 vs 220 free clusters [ 364.660938][ T5813] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 365.051088][ T7792] loop0: detected capacity change from 0 to 1024 [ 365.160650][ T7792] hfsplus: bad catalog entry type [ 365.211701][ T11] usb 2-1: new high-speed USB device number 3 using dummy_hcd [ 365.404888][ T11] usb 2-1: Using ep0 maxpacket: 8 [ 365.425945][ T11] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 365.437622][ T11] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 365.447979][ T11] usb 2-1: New USB device found, idVendor=1241, idProduct=5015, bcdDevice= 0.00 [ 365.457474][ T11] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 365.480942][ T4281] hfsplus: b-tree write err: -5, ino 4 [ 365.587972][ T11] usb 2-1: config 0 descriptor?? [ 365.978551][ T7806] netlink: 8 bytes leftover after parsing attributes in process `syz.3.785'. [ 365.989930][ T7806] bridge: RTM_NEWNEIGH bridge0 without NUD_PERMANENT [ 366.012389][ T7808] netlink: 4 bytes leftover after parsing attributes in process `syz.4.784'. [ 366.057433][ T11] holtek 0003:1241:5015.0002: unknown main item tag 0x0 [ 366.064990][ T11] holtek 0003:1241:5015.0002: unknown main item tag 0x0 [ 366.072684][ T11] holtek 0003:1241:5015.0002: item fetching failed at offset 2/5 [ 366.123010][ T11] holtek 0003:1241:5015.0002: parse failed [ 366.129493][ T11] holtek 0003:1241:5015.0002: probe with driver holtek failed with error -22 [ 366.269591][ T11] usb 2-1: USB disconnect, device number 3 [ 366.620075][ T7816] netlink: 8 bytes leftover after parsing attributes in process `syz.2.789'. [ 366.756728][ T7818] loop0: detected capacity change from 0 to 128 [ 366.829287][ T7818] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 366.913723][ T7818] ext4 filesystem being mounted at /154/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 367.042335][ T7818] EXT4-fs (loop0): shut down requested (0) [ 367.336751][ T5809] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 367.733750][ T7837] loop1: detected capacity change from 0 to 64 [ 367.884962][ T5862] usb 3-1: new high-speed USB device number 5 using dummy_hcd [ 368.064937][ T5862] usb 3-1: New USB device found, idVendor=1645, idProduct=0008, bcdDevice=cf.36 [ 368.074514][ T5862] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 368.109904][ T5862] usb 3-1: config 0 descriptor?? [ 368.352880][ T7844] binder: 7843:7844 ioctl 541b 0 returned -22 [ 368.371070][ T5862] kaweth 3-1:0.0: Firmware present in device. [ 368.580106][ T5862] kaweth 3-1:0.0: Statistics collection: 0 [ 368.586415][ T5862] kaweth 3-1:0.0: Multicast filter limit: 0 [ 368.593154][ T5862] kaweth 3-1:0.0: MTU: 0 [ 368.597638][ T5862] kaweth 3-1:0.0: Read MAC address 00:00:00:00:00:00 [ 368.988941][ T5862] kaweth 3-1:0.0: Error setting SOFS wait [ 368.995944][ T5862] kaweth 3-1:0.0: probe with driver kaweth failed with error -5 [ 369.037007][ T5862] usb 3-1: USB disconnect, device number 5 [ 369.092235][ T30] audit: type=1326 audit(1751812169.134:121): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7851 comm="syz.0.806" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f35539 code=0x7ffc0000 [ 369.114882][ T30] audit: type=1326 audit(1751812169.134:122): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7851 comm="syz.0.806" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f35539 code=0x7ffc0000 [ 369.137439][ T30] audit: type=1326 audit(1751812169.134:123): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7851 comm="syz.0.806" exe="/root/syz-executor" sig=0 arch=40000003 syscall=431 compat=1 ip=0xf7f35539 code=0x7ffc0000 [ 369.159423][ C0] vkms_vblank_simulate: vblank timer overrun [ 369.170397][ T30] audit: type=1326 audit(1751812169.164:124): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7851 comm="syz.0.806" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f35539 code=0x7ffc0000 [ 369.192482][ C0] vkms_vblank_simulate: vblank timer overrun [ 369.200357][ T30] audit: type=1326 audit(1751812169.164:125): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7851 comm="syz.0.806" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f35539 code=0x7ffc0000 [ 369.223503][ T30] audit: type=1326 audit(1751812169.244:126): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7851 comm="syz.0.806" exe="/root/syz-executor" sig=0 arch=40000003 syscall=432 compat=1 ip=0xf7f35539 code=0x7ffc0000 [ 369.246785][ T30] audit: type=1326 audit(1751812169.244:127): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7851 comm="syz.0.806" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f35539 code=0x7ffc0000 [ 369.274176][ T30] audit: type=1326 audit(1751812169.244:128): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7851 comm="syz.0.806" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f35539 code=0x7ffc0000 [ 369.809598][ T7859] loop4: detected capacity change from 0 to 4096 [ 369.868424][ T7859] ntfs3(loop4): Different NTFS sector size (1024) and media sector size (512). [ 370.136995][ T7859] ntfs3(loop4): ino=0, attr_set_size [ 370.142972][ T7859] ntfs3(loop4): Mark volume as dirty due to NTFS errors [ 370.245181][ T7859] ntfs3(loop4): ino=0, attr_set_size [ 370.512397][ T5862] usb 1-1: new high-speed USB device number 5 using dummy_hcd [ 370.712245][ T5862] usb 1-1: Using ep0 maxpacket: 8 [ 370.764536][ T5862] usb 1-1: New USB device found, idVendor=0ccd, idProduct=0039, bcdDevice=90.7b [ 370.774247][ T5862] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 370.845901][ T5862] pvrusb2: Hardware description: Terratec Grabster AV400 [ 370.857578][ T5862] pvrusb2: ********** [ 370.862011][ T5862] pvrusb2: ***WARNING*** Support for this device (Terratec Grabster AV400) is experimental. [ 370.872404][ T5862] pvrusb2: Important functionality might not be entirely working. [ 370.888435][ T5862] pvrusb2: Please consider contacting the driver author to help with further stabilization of the driver. [ 370.902322][ T5862] pvrusb2: ********** [ 370.945278][ T7881] netlink: 4 bytes leftover after parsing attributes in process `syz.4.817'. [ 370.995686][ T7881] netlink: 4 bytes leftover after parsing attributes in process `syz.4.817'. [ 371.075997][ T2327] pvrusb2: Invalid write control endpoint [ 371.300909][ T5862] usb 1-1: USB disconnect, device number 5 [ 371.372083][ T2327] pvrusb2: Invalid write control endpoint [ 371.378212][ T2327] pvrusb2: ***WARNING*** Detected a wedged cx25840 chip; the device will not work. [ 371.389285][ T2327] pvrusb2: ***WARNING*** Try power cycling the pvrusb2 device. [ 371.397414][ T2327] pvrusb2: ***WARNING*** Disabling further access to the device to prevent other foul-ups. [ 371.407907][ T2327] pvrusb2: Device being rendered inoperable [ 371.416172][ T2327] cx25840 1-0044: Unable to detect h/w, assuming cx23887 [ 371.424115][ T2327] cx25840 1-0044: cx23887 A/V decoder found @ 0x88 (pvrusb2_a) [ 371.433225][ T2327] pvrusb2: Attached sub-driver cx25840 [ 371.438888][ T2327] pvrusb2: ***WARNING*** pvrusb2 device hardware appears to be jammed and I can't clear it. [ 371.449263][ T2327] pvrusb2: You might need to power cycle the pvrusb2 device in order to recover. [ 371.485673][ T7888] netlink: 8 bytes leftover after parsing attributes in process `syz.1.820'. [ 371.495013][ T7888] netlink: 8 bytes leftover after parsing attributes in process `syz.1.820'. [ 371.504170][ T7888] netlink: 4 bytes leftover after parsing attributes in process `syz.1.820'. [ 372.313778][ T7902] netlink: 4 bytes leftover after parsing attributes in process `syz.0.825'. [ 372.369437][ T7905] loop2: detected capacity change from 0 to 128 [ 372.484522][ T30] audit: type=1800 audit(1751812172.534:129): pid=7905 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.828" name="file1" dev="loop2" ino=1048650 res=0 errno=0 [ 372.816210][ T7912] loop0: detected capacity change from 0 to 16 [ 372.876036][ T7912] erofs (device loop0): mounted with root inode @ nid 36. [ 372.946149][ T30] audit: type=1800 audit(1751812172.994:130): pid=7912 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.830" name="file1" dev="loop0" ino=86 res=0 errno=0 [ 373.696104][ T7922] loop0: detected capacity change from 0 to 2048 [ 373.736595][ T7922] EXT4-fs: Ignoring removed mblk_io_submit option [ 373.827578][ T7922] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 373.903047][ T7934] loop2: detected capacity change from 0 to 512 [ 374.033773][ T7934] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 374.040553][ T7941] loop3: detected capacity change from 0 to 1024 [ 374.046997][ T7934] ext4 filesystem being mounted at /162/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 374.316212][ T5809] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 374.356843][ T5817] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 374.357738][ T4229] hfsplus: b-tree write err: -5, ino 4 [ 374.828558][ T7949] loop2: detected capacity change from 0 to 1024 [ 374.860207][ T7952] loop3: detected capacity change from 0 to 2048 [ 374.916872][ T7949] hfsplus: bad catalog entry type [ 374.958537][ T7952] EXT4-fs (loop3): mounted filesystem 00000800-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 374.964276][ T7955] loop4: detected capacity change from 0 to 512 [ 374.986745][ T7955] EXT4-fs (loop4): mounting ext3 file system using the ext4 subsystem [ 375.012795][ T7955] EXT4-fs (loop4): invalid journal inode [ 375.018980][ T7955] EXT4-fs (loop4): can't get journal size [ 375.058459][ T30] audit: type=1800 audit(1751812175.104:131): pid=7952 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.847" name="file1" dev="loop3" ino=15 res=0 errno=0 [ 375.080524][ T7952] EXT4-fs (loop3): Online defrag not supported with bigalloc [ 375.102812][ T3936] hfsplus: b-tree write err: -5, ino 4 [ 375.130457][ T7955] EXT4-fs (loop4): 1 truncate cleaned up [ 375.138825][ T7955] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 375.203769][ T7952] EXT4-fs (loop3): unmounting filesystem 00000800-0000-0000-0000-000000000000. [ 375.537171][ T5823] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 375.637308][ T7960] loop1: detected capacity change from 0 to 4096 [ 375.647487][ T7964] netlink: 36 bytes leftover after parsing attributes in process `syz.3.852'. [ 375.657055][ T7964] netlink: 16 bytes leftover after parsing attributes in process `syz.3.852'. [ 375.667378][ T7964] netlink: 36 bytes leftover after parsing attributes in process `syz.3.852'. [ 375.677222][ T7964] netlink: 36 bytes leftover after parsing attributes in process `syz.3.852'. [ 375.961481][ T7960] ntfs3(loop1): Mark volume as dirty due to NTFS errors [ 376.001745][ T7960] ntfs3(loop1): Failed to load $Extend (-22). [ 376.008088][ T7960] ntfs3(loop1): Failed to initialize $Extend. [ 376.072844][ T7971] netlink: 232 bytes leftover after parsing attributes in process `syz.0.855'. [ 376.082364][ T7971] NCSI netlink: No device for ifindex 0 [ 376.145303][ T7969] loop4: detected capacity change from 0 to 2048 [ 376.153470][ T7960] ntfs3(loop1): ino=1b, "file0" ntfs_readdir [ 376.161927][ T5815] Bluetooth: hci2: command 0x0406 tx timeout [ 376.195997][ T7969] UDF-fs: error (device loop4): udf_read_tagged: read failed, block=3932051, location=3932051 [ 376.283225][ T7969] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 376.593839][ T7975] loop0: detected capacity change from 0 to 512 [ 376.739459][ T7975] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.857: bg 0: block 248: padding at end of block bitmap is not set [ 376.822516][ T7975] Quota error (device loop0): write_blk: dquota write failed [ 376.830654][ T7975] Quota error (device loop0): qtree_write_dquot: Error -117 occurred while creating quota [ 376.847681][ T7975] EXT4-fs error (device loop0): ext4_acquire_dquot:6933: comm syz.0.857: Failed to acquire dquot type 1 [ 376.884458][ T7980] netlink: 32 bytes leftover after parsing attributes in process `syz.1.858'. [ 376.900909][ T7975] EXT4-fs (loop0): 1 truncate cleaned up [ 376.909581][ T7975] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 376.922755][ T7975] ext4 filesystem being mounted at /164/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 377.063103][ T7981] loop3: detected capacity change from 0 to 4096 [ 377.081090][ T7984] loop4: detected capacity change from 0 to 164 [ 377.086115][ T7975] Quota error (device loop0): find_tree_dqentry: Cycle in quota tree detected: block 2 index 2 [ 377.098965][ T7975] Quota error (device loop0): qtree_read_dquot: Can't read quota structure for id 131074 [ 377.109162][ T7975] EXT4-fs error (device loop0): ext4_acquire_dquot:6933: comm syz.0.857: Failed to acquire dquot type 1 [ 377.416186][ T7975] syz.0.857 (7975) used greatest stack depth: 3528 bytes left [ 377.514920][ T5809] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 378.146624][ T7997] loop3: detected capacity change from 0 to 512 [ 378.204443][ T7997] EXT4-fs: Ignoring removed nomblk_io_submit option [ 378.213383][ T7997] EXT4-fs: Ignoring removed i_version option [ 378.290523][ T7997] EXT4-fs (loop3): 1 orphan inode deleted [ 378.299542][ T7997] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 378.633856][ T5814] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 379.393331][ T8006] loop0: detected capacity change from 0 to 4096 [ 379.532624][ T8012] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 379.623932][ T8006] NILFS error (device loop0): nilfs_readdir: zero-length directory entry [ 379.679581][ T8006] Remounting filesystem read-only [ 379.788673][ T8016] IPv6: addrconf: prefix option has invalid lifetime [ 381.367534][ T8043] KVM: debugfs: duplicate directory 8043-4 [ 382.301489][ T5862] usb 1-1: new full-speed USB device number 6 using dummy_hcd [ 382.348596][ T8060] netlink: 'syz.3.894': attribute type 3 has an invalid length. [ 382.486475][ T5862] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10 [ 382.498164][ T5862] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 1024, setting to 64 [ 382.509737][ T5862] usb 1-1: New USB device found, idVendor=0461, idProduct=4e72, bcdDevice= 0.00 [ 382.515587][ T8063] loop4: detected capacity change from 0 to 256 [ 382.519090][ T5862] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 382.619873][ T5862] usb 1-1: config 0 descriptor?? [ 382.627925][ T8055] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22 [ 382.727029][ T8063] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0x36bd6320, utbl_chksum : 0xe619d30d) [ 383.071642][ T11] usb 4-1: new full-speed USB device number 5 using dummy_hcd [ 383.113213][ T5862] hid-rmi 0003:0461:4E72.0003: unknown main item tag 0x0 [ 383.120678][ T5862] hid-rmi 0003:0461:4E72.0003: unknown main item tag 0x0 [ 383.128243][ T5862] hid-rmi 0003:0461:4E72.0003: unknown main item tag 0x0 [ 383.135816][ T5862] hid-rmi 0003:0461:4E72.0003: unknown main item tag 0x0 [ 383.143266][ T5862] hid-rmi 0003:0461:4E72.0003: unknown main item tag 0x0 [ 383.163662][ T5862] hid-rmi 0003:0461:4E72.0003: hidraw0: USB HID v0.00 Device [HID 0461:4e72] on usb-dummy_hcd.0-1/input0 [ 383.279905][ T11] usb 4-1: config 0 has no interfaces? [ 383.315067][ T5862] usb 1-1: USB disconnect, device number 6 [ 383.317408][ T11] usb 4-1: New USB device found, idVendor=084e, idProduct=1001, bcdDevice=ed.ae [ 383.330625][ T11] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 383.339089][ T11] usb 4-1: Product: syz [ 383.343545][ T11] usb 4-1: Manufacturer: syz [ 383.348358][ T11] usb 4-1: SerialNumber: syz [ 383.372419][ T11] usb 4-1: config 0 descriptor?? [ 383.550218][ T8075] serio: Serial port ptm0 [ 383.660868][ T8067] netlink: 136 bytes leftover after parsing attributes in process `syz.3.898'. [ 383.670533][ T8067] A link change request failed with some changes committed already. Interface erspan0 may have been left with an inconsistent configuration, please check. [ 383.729802][ T5862] usb 4-1: USB disconnect, device number 5 [ 386.105512][ T8116] loop3: detected capacity change from 0 to 2048 [ 386.230605][ T8116] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 386.342958][ T30] audit: type=1800 audit(1751812186.384:132): pid=8116 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.917" name="file1" dev="loop3" ino=1415 res=0 errno=0 [ 386.461948][ T8130] netlink: 12 bytes leftover after parsing attributes in process `syz.1.923'. [ 387.653198][ T8141] loop0: detected capacity change from 0 to 4096 [ 387.682241][ T8141] ntfs3(loop0): Different NTFS sector size (4096) and media sector size (512). [ 387.923190][ T8148] loop2: detected capacity change from 0 to 4096 [ 387.983675][ T8141] ntfs3(loop0): ino=19, mi_enum_attr [ 387.989325][ T8141] ntfs3(loop0): Mark volume as dirty due to NTFS errors [ 388.123391][ T30] audit: type=1800 audit(1751812188.164:133): pid=8141 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.927" name="file0" dev="loop0" ino=0 res=0 errno=0 [ 388.181814][ T8148] ntfs3(loop2): Mark volume as dirty due to NTFS errors [ 388.257294][ T30] audit: type=1800 audit(1751812188.304:134): pid=8148 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.929" name="file1" dev="loop2" ino=30 res=0 errno=0 [ 389.020505][ T8163] loop3: detected capacity change from 0 to 2048 [ 389.193323][ T8173] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 389.444335][ T8176] sch_fq: defrate 0 ignored. [ 389.451613][ T5868] usb 3-1: new high-speed USB device number 6 using dummy_hcd [ 389.656262][ T5868] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 389.667779][ T5868] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 389.678000][ T5868] usb 3-1: New USB device found, idVendor=1d34, idProduct=0004, bcdDevice= 0.00 [ 389.687517][ T5868] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 389.726715][ T5868] usb 3-1: config 0 descriptor?? [ 389.963156][ T8183] loop0: detected capacity change from 0 to 512 [ 389.971933][ T8184] netlink: 'syz.3.946': attribute type 3 has an invalid length. [ 389.998662][ T8183] EXT4-fs (loop0): mounting ext3 file system using the ext4 subsystem [ 390.029554][ T8183] EXT4-fs (loop0): invalid journal inode [ 390.035912][ T8183] EXT4-fs (loop0): can't get journal size [ 390.083061][ T8183] EXT4-fs (loop0): 1 truncate cleaned up [ 390.092365][ T8183] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 390.209278][ T5868] hid-led 0003:1D34:0004.0004: unknown main item tag 0x0 [ 390.323699][ T5809] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 390.395204][ T8191] loop4: detected capacity change from 0 to 512 [ 390.408947][ T5868] hid-led 0003:1D34:0004.0004: probe with driver hid-led failed with error -71 [ 390.439470][ T5868] usb 3-1: USB disconnect, device number 6 [ 390.533559][ T8191] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 390.547240][ T8191] ext4 filesystem being mounted at /182/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 390.718301][ T8199] overlay: filesystem on ./file0 not supported [ 390.956763][ T8203] netpci0: tun_chr_ioctl cmd 1074812118 [ 391.443985][ T8208] input: syz1 as /devices/virtual/input/input12 [ 391.671701][ T5868] usb 2-1: new full-speed USB device number 4 using dummy_hcd [ 391.796737][ T5823] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 391.937587][ T5868] usb 2-1: config 0 has an invalid interface number: 239 but max is 0 [ 391.946327][ T5868] usb 2-1: config 0 has no interface number 0 [ 391.952808][ T5868] usb 2-1: config 0 interface 239 altsetting 0 endpoint 0x1 has invalid maxpacket 1023, setting to 64 [ 391.964235][ T5868] usb 2-1: config 0 interface 239 altsetting 0 endpoint 0x82 has invalid maxpacket 511, setting to 64 [ 392.070685][ T5868] usb 2-1: New USB device found, idVendor=6189, idProduct=182d, bcdDevice= 1.73 [ 392.080240][ T5868] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 392.088803][ T5868] usb 2-1: Product: syz [ 392.093437][ T5868] usb 2-1: Manufacturer: syz [ 392.103155][ T5868] usb 2-1: SerialNumber: syz [ 392.122890][ T5868] usb 2-1: config 0 descriptor?? [ 392.130903][ T8210] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22 [ 392.156589][ T8210] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22 [ 392.410173][ T8210] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22 [ 392.462531][ T8210] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22 [ 392.538434][ T8225] sctp: [Deprecated]: syz.3.964 (pid 8225) Use of int in maxseg socket option. [ 392.538434][ T8225] Use struct sctp_assoc_value instead [ 392.800932][ T8229] loop4: detected capacity change from 0 to 256 [ 392.840073][ T8227] loop0: detected capacity change from 0 to 1024 [ 392.900619][ T8227] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 393.061547][ T8227] EXT4-fs error (device loop0): ext4_read_block_bitmap_nowait:483: comm syz.0.965: Invalid block bitmap block 0 in block_group 0 [ 393.151887][ T5868] asix 2-1:0.239 (unnamed net_device) (uninitialized): Failed to write reg index 0x0000: -71 [ 393.163312][ T5868] asix 2-1:0.239: probe with driver asix failed with error -71 [ 393.192464][ T8227] Quota error (device loop0): write_blk: dquota write failed [ 393.200176][ T8227] Quota error (device loop0): qtree_write_dquot: Error -117 occurred while creating quota [ 393.210645][ T8227] EXT4-fs error (device loop0): ext4_acquire_dquot:6933: comm syz.0.965: Failed to acquire dquot type 0 [ 393.213300][ T5868] usb 2-1: USB disconnect, device number 4 [ 393.295565][ T8227] EXT4-fs error (device loop0): ext4_free_blocks:6587: comm syz.0.965: Freeing blocks not in datazone - block = 0, count = 4096 [ 393.353435][ T8227] EXT4-fs error (device loop0): ext4_read_inode_bitmap:139: comm syz.0.965: Invalid inode bitmap blk 0 in block_group 0 [ 393.374072][ T3936] Quota error (device loop0): do_check_range: Getting block 0 out of range 1-8 [ 393.384409][ T3936] EXT4-fs error (device loop0): ext4_release_dquot:6969: comm kworker/u8:13: Failed to release dquot type 0 [ 393.451537][ T8227] EXT4-fs error (device loop0) in ext4_free_inode:361: Corrupt filesystem [ 393.481654][ T8227] EXT4-fs (loop0): 1 orphan inode deleted [ 393.489753][ T8227] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 393.680930][ T8227] syz.0.965 (8227) used greatest stack depth: 3400 bytes left [ 393.726133][ T5809] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 396.507383][ T8293] netlink: 'syz.2.994': attribute type 21 has an invalid length. [ 396.515850][ T8293] netlink: 164 bytes leftover after parsing attributes in process `syz.2.994'. [ 396.657285][ T8298] loop4: detected capacity change from 0 to 512 [ 396.870823][ T8298] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 396.884244][ T8298] ext4 filesystem being mounted at /190/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 397.402768][ T5823] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 397.892509][ T8315] loop4: detected capacity change from 0 to 2048 [ 398.038094][ T8315] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 398.050952][ T8315] ext4 filesystem being mounted at /191/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 398.175801][ T5823] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 398.760712][ T30] audit: type=1326 audit(1751812198.804:135): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8334 comm="syz.2.1013" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707e539 code=0x7ffc0000 [ 398.823292][ T30] audit: type=1326 audit(1751812198.854:136): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8334 comm="syz.2.1013" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707e539 code=0x7ffc0000 [ 398.832087][ T5868] usb 2-1: new high-speed USB device number 5 using dummy_hcd [ 398.847214][ T30] audit: type=1326 audit(1751812198.854:137): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8334 comm="syz.2.1013" exe="/root/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf707e539 code=0x7ffc0000 [ 398.954858][ T8331] netlink: 76 bytes leftover after parsing attributes in process `syz.1.1011'. [ 399.007919][ T30] audit: type=1326 audit(1751812198.924:138): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8334 comm="syz.2.1013" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707e539 code=0x7ffc0000 [ 399.030889][ T30] audit: type=1326 audit(1751812198.924:139): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8334 comm="syz.2.1013" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707e539 code=0x7ffc0000 [ 399.053471][ T30] audit: type=1326 audit(1751812198.934:140): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8334 comm="syz.2.1013" exe="/root/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf707e539 code=0x7ffc0000 [ 399.077088][ T30] audit: type=1326 audit(1751812198.934:141): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8334 comm="syz.2.1013" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707e539 code=0x7ffc0000 [ 399.100017][ T30] audit: type=1326 audit(1751812198.944:142): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8334 comm="syz.2.1013" exe="/root/syz-executor" sig=0 arch=40000003 syscall=20 compat=1 ip=0xf707e539 code=0x7ffc0000 [ 399.122464][ T30] audit: type=1326 audit(1751812198.944:143): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8334 comm="syz.2.1013" exe="/root/syz-executor" sig=0 arch=40000003 syscall=173 compat=1 ip=0xf707e567 code=0x7ffc0000 [ 399.144976][ T30] audit: type=1326 audit(1751812198.944:144): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8334 comm="syz.2.1013" exe="/root/syz-executor" sig=0 arch=40000003 syscall=20 compat=1 ip=0xf707e539 code=0x7ffc0000 [ 399.271803][ T5868] usb 2-1: device not accepting address 5, error -71 [ 399.797752][ T8348] vlan2: entered promiscuous mode [ 399.803311][ T8348] mac80211_hwsim hwsim11 wlan1: entered promiscuous mode [ 400.042904][ T8353] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1022'. [ 400.111025][ T8354] loop2: detected capacity change from 0 to 1024 [ 401.163540][ T8373] loop1: detected capacity change from 0 to 8 [ 401.230668][ T8373] SQUASHFS error: xz decompression failed, data probably corrupt [ 401.239142][ T8373] SQUASHFS error: Failed to read block 0x108: -5 [ 401.246168][ T8373] SQUASHFS error: Unable to read metadata cache entry [106] [ 401.253848][ T8373] SQUASHFS error: Unable to read inode 0x11f [ 402.250402][ T8393] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1040'. [ 402.295410][ T8393] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1040'. [ 403.088495][ T8412] usb usb8: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK. [ 403.413847][ T8418] binder: 8416:8418 ioctl c018620c 80000100 returned -1 [ 403.616855][ T8422] A link change request failed with some changes committed already. Interface geneve0 may have been left with an inconsistent configuration, please check. [ 403.635342][ T24] usb 4-1: new high-speed USB device number 6 using dummy_hcd [ 403.722844][ T1286] ieee802154 phy0 wpan0: encryption failed: -22 [ 403.729516][ T1286] ieee802154 phy1 wpan1: encryption failed: -22 [ 403.823431][ T24] usb 4-1: Using ep0 maxpacket: 8 [ 403.840720][ T24] usb 4-1: config index 0 descriptor too short (expected 301, got 45) [ 403.849858][ T24] usb 4-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0 [ 403.860060][ T24] usb 4-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0 [ 403.870159][ T24] usb 4-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32 [ 403.881711][ T24] usb 4-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 403.895774][ T24] usb 4-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23 [ 403.905334][ T24] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 404.124156][ T8429] loop4: detected capacity change from 0 to 524255232 [ 404.272106][ T24] usb 4-1: GET_CAPABILITIES returned 0 [ 404.277938][ T24] usbtmc 4-1:16.0: can't read capabilities [ 404.499237][ T5868] usb 4-1: USB disconnect, device number 6 [ 405.449639][ T8450] netlink: 76 bytes leftover after parsing attributes in process `syz.3.1066'. [ 405.459736][ T8450] nbd: illegal input index -65456 [ 405.695074][ T8457] loop4: detected capacity change from 0 to 64 [ 405.855126][ T30] kauditd_printk_skb: 9 callbacks suppressed [ 405.855212][ T30] audit: type=1800 audit(1751812205.894:154): pid=8457 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.1069" name="file2" dev="loop4" ino=21 res=0 errno=0 [ 406.045267][ T8461] netlink: 'syz.0.1071': attribute type 4 has an invalid length. [ 406.469108][ T8467] loop4: detected capacity change from 0 to 64 [ 406.959797][ T8478] C: renamed from veth0_to_batadv (while UP) [ 406.995918][ T8480] loop1: detected capacity change from 0 to 64 [ 407.010881][ T8478] netlink: 'syz.0.1079': attribute type 3 has an invalid length. [ 407.019214][ T8478] netlink: 120 bytes leftover after parsing attributes in process `syz.0.1079'. [ 407.166385][ T8475] loop2: detected capacity change from 0 to 4096 [ 407.190687][ T8475] ntfs3(loop2): Different NTFS sector size (4096) and media sector size (512). [ 407.412462][ T8475] ntfs3(loop2): Mark volume as dirty due to NTFS errors [ 407.477716][ T8475] ntfs3(loop2): ino=1a, mi_enum_attr [ 407.483892][ T8475] ntfs3(loop2): Failed to initialize $Extend/$ObjId. [ 407.586328][ T8486] overlayfs: missing 'workdir' [ 407.716378][ T8492] loop0: detected capacity change from 0 to 256 [ 408.048250][ T8492] FAT-fs (loop0): Directory bread(block 64) failed [ 408.055323][ T8492] FAT-fs (loop0): Directory bread(block 65) failed [ 408.062353][ T8492] FAT-fs (loop0): Directory bread(block 66) failed [ 408.069189][ T8492] FAT-fs (loop0): Directory bread(block 67) failed [ 408.082849][ T8492] FAT-fs (loop0): Directory bread(block 68) failed [ 408.089632][ T8492] FAT-fs (loop0): Directory bread(block 69) failed [ 408.096677][ T8492] FAT-fs (loop0): Directory bread(block 70) failed [ 408.103653][ T8492] FAT-fs (loop0): Directory bread(block 71) failed [ 408.110575][ T8492] FAT-fs (loop0): Directory bread(block 72) failed [ 408.117554][ T8492] FAT-fs (loop0): Directory bread(block 73) failed [ 408.722781][ T8506] loop1: detected capacity change from 0 to 164 [ 409.393994][ T8517] netdevsim netdevsim2: Direct firmware load for ./file0 failed with error -2 [ 409.404924][ T8517] netdevsim netdevsim2: Falling back to sysfs fallback for: ./file0 [ 409.748239][ T8525] loop0: detected capacity change from 0 to 1024 [ 409.838397][ T8525] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 410.224999][ T5809] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 410.392925][ T8530] loop3: detected capacity change from 0 to 4096 [ 410.448370][ T8538] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1106'. [ 411.305412][ T8543] loop0: detected capacity change from 0 to 4096 [ 411.561658][ T8543] ntfs3(loop0): Mark volume as dirty due to NTFS errors [ 411.705257][ T8543] ntfs3(loop0): Failed to load $Extend (-22). [ 411.711892][ T8543] ntfs3(loop0): Failed to initialize $Extend. [ 413.019471][ T8559] loop4: detected capacity change from 0 to 40427 [ 413.057725][ T8559] F2FS-fs (loop4): Invalid log_blocksize (268), supports only 12 [ 413.066035][ T8559] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock [ 413.084483][ T8559] F2FS-fs (loop4): invalid crc value [ 413.406357][ T8559] F2FS-fs (loop4): Try to recover 1th superblock, ret: -30 [ 413.414081][ T8559] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5 [ 414.188633][ T8583] loop0: detected capacity change from 0 to 512 [ 414.219912][ T8583] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 414.312798][ T8583] EXT4-fs (loop0): 1 truncate cleaned up [ 414.323215][ T8583] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 414.411658][ T8589] loop3: detected capacity change from 0 to 64 [ 414.613528][ T30] audit: type=1800 audit(1751812214.654:155): pid=8589 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.1127" name="file1" dev="loop3" ino=18 res=0 errno=0 [ 414.638924][ T8589] syz.3.1127: attempt to access beyond end of device [ 414.638924][ T8589] loop3: rw=34817, sector=18, nr_sectors = 400 limit=64 [ 414.653740][ T8589] syz.3.1127: attempt to access beyond end of device [ 414.653740][ T8589] loop3: rw=34817, sector=420, nr_sectors = 20 limit=64 [ 414.669313][ T8589] syz.3.1127: attempt to access beyond end of device [ 414.669313][ T8589] loop3: rw=34817, sector=441, nr_sectors = 64 limit=64 [ 414.762325][ T5809] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 415.652825][ T8602] netlink: 128 bytes leftover after parsing attributes in process `syz.1.1132'. [ 415.875465][ T24] usb 5-1: new high-speed USB device number 8 using dummy_hcd [ 415.921107][ T8607] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1134'. [ 415.931569][ T8607] netlink: 43 bytes leftover after parsing attributes in process `syz.3.1134'. [ 416.051457][ T24] usb 5-1: Using ep0 maxpacket: 16 [ 416.074730][ T24] usb 5-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xF3, changing to 0x83 [ 416.086994][ T24] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 7 [ 416.172076][ T24] usb 5-1: New USB device found, idVendor=2040, idProduct=0264, bcdDevice=4e.d1 [ 416.181806][ T24] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 416.194176][ T24] usb 5-1: Product: syz [ 416.198654][ T24] usb 5-1: Manufacturer: syz [ 416.203778][ T24] usb 5-1: SerialNumber: syz [ 416.243712][ T24] usb 5-1: config 0 descriptor?? [ 416.260042][ T24] em28xx 5-1:0.0: New device syz syz @ 480 Mbps (2040:0264, interface 0, class 0) [ 416.272306][ T24] em28xx 5-1:0.0: Audio interface 0 found (Vendor Class) [ 416.460009][ T8613] loop3: detected capacity change from 0 to 256 [ 416.557857][ T8613] FAT-fs (loop3): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000005) [ 416.569341][ T8613] FAT-fs (loop3): Filesystem has been set read-only [ 416.874400][ T24] em28xx 5-1:0.0: unknown em28xx chip ID (48) [ 416.919732][ T5814] FAT-fs (loop3): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000005) [ 417.079022][ T24] em28xx 5-1:0.0: Config register raw data: 0xfffffffb [ 417.122080][ T24] em28xx 5-1:0.0: AC97 chip type couldn't be determined [ 417.129305][ T24] em28xx 5-1:0.0: No AC97 audio processor [ 417.181409][ T24] usb 5-1: USB disconnect, device number 8 [ 417.190484][ T24] em28xx 5-1:0.0: Disconnecting em28xx [ 417.250413][ T24] em28xx 5-1:0.0: Freeing device [ 417.328356][ T8625] loop1: detected capacity change from 0 to 1024 [ 417.342946][ T8627] sch_tbf: burst 3298 is lower than device lo mtu (65550) ! [ 417.950315][ T8631] loop2: detected capacity change from 0 to 4096 [ 418.075771][ T8640] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 418.114158][ T8639] loop0: detected capacity change from 0 to 256 [ 418.167034][ T8639] vfat: Unknown parameter 'utf`ÊŠß+Â8' [ 418.541590][ T8646] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1151'. [ 418.653665][ T8649] netlink: 'syz.3.1152': attribute type 8 has an invalid length. [ 418.662808][ T8649] bridge0: port 2(bridge_slave_1) entered disabled state [ 418.672622][ T8649] bridge0: port 1(bridge_slave_0) entered disabled state [ 418.683909][ T8649] bridge0: entered allmulticast mode [ 418.983441][ T8653] loop0: detected capacity change from 0 to 1024 [ 419.837478][ T8664] loop0: detected capacity change from 0 to 4096 [ 420.037559][ T8669] loop1: detected capacity change from 0 to 512 [ 420.070808][ T8669] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 420.167224][ T8671] loop4: detected capacity change from 0 to 256 [ 420.179937][ T8669] EXT4-fs error (device loop1): xattr_find_entry:333: inode #15: comm syz.1.1161: corrupted xattr entries [ 420.203740][ T8669] EXT4-fs (loop1): Remounting filesystem read-only [ 420.210798][ T8669] EXT4-fs (loop1): 1 truncate cleaned up [ 420.218819][ T8669] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 420.423759][ T8664] ntfs3(loop0): ino=5, "/" mi_enum_attr [ 420.429731][ T8664] ntfs3(loop0): Mark volume as dirty due to NTFS errors [ 420.485040][ T5813] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 421.411962][ T8687] tap0: tun_chr_ioctl cmd 21731 [ 421.651732][ T8694] fanotify: failed to encode fid (type=0, len=0, err=-2) [ 422.159105][ T8699] loop1: detected capacity change from 0 to 2048 [ 422.252506][ T8699] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 422.653889][ T8710] loop3: detected capacity change from 0 to 2048 [ 422.764454][ T8710] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 422.864853][ T8710] overlayfs: upper fs needs to support d_type. [ 422.901532][ T8710] overlayfs: upper fs does not support RENAME_WHITEOUT. [ 422.908868][ T8710] overlayfs: failed to set xattr on upper [ 422.915042][ T8710] overlayfs: ...falling back to redirect_dir=nofollow. [ 422.923557][ T8710] overlayfs: ...falling back to index=off. [ 422.929645][ T8710] overlayfs: ...falling back to uuid=null. [ 423.256068][ T5814] UDF-fs: error (device loop3): udf_read_inode: (ino 1317) failed !bh [ 423.276421][ T5814] UDF-fs: error (device loop3): udf_read_inode: (ino 1317) failed !bh [ 423.366407][ T30] audit: type=1326 audit(1751812223.414:156): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8721 comm="syz.2.1185" exe="/root/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf707e539 code=0x0 [ 423.811747][ T4229] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 423.993733][ T4229] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 424.136183][ T4229] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 424.325698][ T4229] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 424.382099][ T8735] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1193'. [ 424.760139][ T4229] bridge_slave_1: left allmulticast mode [ 424.767938][ T4229] bridge_slave_1: left promiscuous mode [ 424.774851][ T4229] bridge0: port 2(bridge_slave_1) entered disabled state [ 424.797601][ T4229] bridge_slave_0: left allmulticast mode [ 424.804335][ T4229] bridge_slave_0: left promiscuous mode [ 424.811242][ T4229] bridge0: port 1(bridge_slave_0) entered disabled state [ 425.187212][ T4229] team0: Port device geneve1 removed [ 425.271964][ T4229] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 425.320256][ T4229] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 425.353172][ T4229] bond0 (unregistering): Released all slaves [ 425.666035][ T8742] loop4: detected capacity change from 0 to 256 [ 425.806601][ T8742] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0xbe66f6fd, utbl_chksum : 0xe619d30d) [ 426.134586][ T4229] hsr_slave_0: left promiscuous mode [ 426.211838][ T4229] hsr_slave_1: left promiscuous mode [ 426.219824][ T4229] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 426.227776][ T4229] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 426.273206][ T4229] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 426.280965][ T4229] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 426.346641][ T4229] veth1_macvtap: left promiscuous mode [ 426.352700][ T4229] veth0_macvtap: left promiscuous mode [ 426.358564][ T4229] veth1_vlan: left promiscuous mode [ 426.364294][ T4229] veth0_vlan: left promiscuous mode [ 426.712158][ T5810] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 426.752315][ T5810] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 426.762300][ T5810] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 426.775519][ T5810] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 426.786852][ T5810] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 427.041028][ T4229] team0 (unregistering): Port device team_slave_1 removed [ 427.121862][ T4229] team0 (unregistering): Port device team_slave_0 removed [ 428.103058][ T8770] loop4: detected capacity change from 0 to 1024 [ 428.261653][ T8770] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 428.287535][ T8773] loop0: detected capacity change from 0 to 1024 [ 428.324315][ T8770] EXT4-fs error (device loop4): ext4_get_first_dir_block:3547: inode #11: comm syz.4.1208: directory missing '..' [ 428.430849][ T8773] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 428.475756][ T5823] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 428.659883][ T8753] chnl_net:caif_netlink_parms(): no params data found [ 428.737713][ T5809] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 428.881841][ T5815] Bluetooth: hci2: command tx timeout [ 428.930703][ T8788] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1212'. [ 428.940310][ T8788] bridge: RTM_NEWNEIGH bridge0 without NUD_PERMANENT [ 429.776320][ T9] IPVS: starting estimator thread 0... [ 429.816846][ T8753] bridge0: port 1(bridge_slave_0) entered blocking state [ 429.824720][ T8753] bridge0: port 1(bridge_slave_0) entered disabled state [ 429.832641][ T8753] bridge_slave_0: entered allmulticast mode [ 429.842697][ T8753] bridge_slave_0: entered promiscuous mode [ 429.889026][ T8808] IPVS: using max 240 ests per chain, 12000 per kthread [ 429.914052][ T8753] bridge0: port 2(bridge_slave_1) entered blocking state [ 429.921800][ T8753] bridge0: port 2(bridge_slave_1) entered disabled state [ 429.929486][ T8753] bridge_slave_1: entered allmulticast mode [ 429.938829][ T8753] bridge_slave_1: entered promiscuous mode [ 430.199124][ T8753] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 430.250196][ T8753] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 430.475574][ T8819] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1227'. [ 430.499377][ T8753] team0: Port device team_slave_0 added [ 430.549364][ T8753] team0: Port device team_slave_1 added [ 430.553023][ T8817] loop4: detected capacity change from 0 to 1024 [ 430.585257][ T8820] netlink: 'syz.0.1226': attribute type 21 has an invalid length. [ 430.594172][ T8820] netlink: 'syz.0.1226': attribute type 1 has an invalid length. [ 430.608058][ T8820] netlink: 144 bytes leftover after parsing attributes in process `syz.0.1226'. [ 430.687051][ T30] audit: type=1800 audit(1751812230.734:157): pid=8817 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.1225" name="file1" dev="loop4" ino=20 res=0 errno=0 [ 430.818894][ T8753] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 430.826646][ T8753] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 430.854298][ T8753] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 430.969518][ T5815] Bluetooth: hci2: command tx timeout [ 430.996229][ T8753] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 431.003945][ T8753] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 431.030120][ C0] vkms_vblank_simulate: vblank timer overrun [ 431.043512][ T8753] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 431.263578][ T8753] hsr_slave_0: entered promiscuous mode [ 431.273795][ T8753] hsr_slave_1: entered promiscuous mode [ 431.445583][ T5876] kernel write not supported for file /input/mice (pid: 5876 comm: kworker/1:5) [ 431.470271][ T8830] mac80211_hwsim hwsim10 wlan0: entered promiscuous mode [ 431.841073][ T8832] loop1: detected capacity change from 0 to 1024 [ 431.950805][ T8832] hfsplus: bad catalog entry type [ 432.163551][ T5876] usb 3-1: new high-speed USB device number 7 using dummy_hcd [ 432.215325][ T8753] netdevsim netdevsim5 netdevsim0: renamed from eth0 [ 432.226162][ T4281] hfsplus: b-tree write err: -5, ino 4 [ 432.267884][ T8753] netdevsim netdevsim5 netdevsim1: renamed from eth1 [ 432.322855][ T8753] netdevsim netdevsim5 netdevsim2: renamed from eth2 [ 432.328672][ T5876] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 432.342402][ T5876] usb 3-1: New USB device found, idVendor=0926, idProduct=3333, bcdDevice= 0.40 [ 432.352379][ T5876] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 432.392945][ T8753] netdevsim netdevsim5 netdevsim3: renamed from eth3 [ 432.415495][ T5876] usb 3-1: config 0 descriptor?? [ 432.882229][ T5876] keytouch 0003:0926:3333.0005: fixing up Keytouch IEC report descriptor [ 432.946579][ T5876] input: HID 0926:3333 as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.0/0003:0926:3333.0005/input/input13 [ 433.041638][ T5815] Bluetooth: hci2: command tx timeout [ 433.154435][ T5876] keytouch 0003:0926:3333.0005: input,hidraw0: USB HID v0.00 Keyboard [HID 0926:3333] on usb-dummy_hcd.2-1/input0 [ 433.297662][ T5876] usb 3-1: USB disconnect, device number 7 [ 433.350835][ T8753] 8021q: adding VLAN 0 to HW filter on device bond0 [ 433.498361][ T8753] 8021q: adding VLAN 0 to HW filter on device team0 [ 433.552005][ T4281] bridge0: port 1(bridge_slave_0) entered blocking state [ 433.559543][ T4281] bridge0: port 1(bridge_slave_0) entered forwarding state [ 433.586520][ T8850] binder: binder_mmap: 8849 80000000-80b36000 bad vm_flags failed -1 [ 433.673993][ T4281] bridge0: port 2(bridge_slave_1) entered blocking state [ 433.681598][ T4281] bridge0: port 2(bridge_slave_1) entered forwarding state [ 434.153968][ T8852] (unnamed net_device) (uninitialized): option mode: invalid value (37) [ 434.695702][ T8864] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1247'. [ 434.708151][ T8864] netlink: 48 bytes leftover after parsing attributes in process `syz.1.1247'. [ 434.944735][ T8870] netlink: 52 bytes leftover after parsing attributes in process `syz.2.1249'. [ 435.121417][ T5815] Bluetooth: hci2: command tx timeout [ 435.360367][ T8753] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 436.633340][ T8898] ===================================================== [ 436.641887][ T8898] BUG: KMSAN: uninit-value in sctp_inq_pop+0x14dc/0x19e0 [ 436.646559][ T9] usb 1-1: new high-speed USB device number 7 using dummy_hcd [ 436.649046][ T8898] sctp_inq_pop+0x14dc/0x19e0 [ 436.664869][ T8898] sctp_assoc_bh_rcv+0x1a0/0xbc0 [ 436.670049][ T8898] sctp_inq_push+0x2a6/0x350 [ 436.675006][ T8898] sctp_backlog_rcv+0x3c7/0xda0 [ 436.680037][ T8898] sk_backlog_rcv+0x13f/0x420 [ 436.687601][ T8898] __release_sock+0x1d3/0x330 [ 436.693030][ T8898] release_sock+0x6b/0x270 [ 436.697659][ T8898] sctp_wait_for_connect+0x458/0x820 [ 436.703266][ T8898] sctp_sendmsg_to_asoc+0x223a/0x2260 [ 436.708883][ T8898] sctp_sendmsg+0x3910/0x49f0 [ 436.716446][ T8898] inet_sendmsg+0x26c/0x2a0 [ 436.721326][ T8898] __sock_sendmsg+0x278/0x3d0 [ 436.726192][ T8898] __sys_sendto+0x593/0x720 SYZFAIL: failed to recv rpc fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor) [ 436.730898][ T8898] __ia32_sys_sendto+0x12f/0x200 [ 436.736210][ T8898] ia32_sys_call+0x1397/0x42c0 [ 436.742375][ T8898] __do_fast_syscall_32+0xb0/0x150 [ 436.752858][ T8898] do_fast_syscall_32+0x38/0x80 [ 436.758442][ T8898] do_SYSENTER_32+0x1f/0x30 [ 436.763298][ T8898] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 436.769858][ T8898] [ 436.774975][ T8898] Uninit was stored to memory at: [ 436.780259][ T8898] sctp_inq_pop+0x144a/0x19e0 [ 436.785378][ T8898] sctp_assoc_bh_rcv+0x1a0/0xbc0 [ 436.790530][ T8898] sctp_inq_push+0x2a6/0x350 [ 436.795430][ T8898] sctp_backlog_rcv+0x3c7/0xda0 [ 436.800476][ T8898] sk_backlog_rcv+0x13f/0x420 [ 436.807974][ T8898] __release_sock+0x1d3/0x330 [ 436.812977][ T8898] release_sock+0x6b/0x270 [ 436.817612][ T8898] sctp_wait_for_connect+0x458/0x820 [ 436.817955][ T9] usb 1-1: Using ep0 maxpacket: 8 [ 436.823110][ T8898] sctp_sendmsg_to_asoc+0x223a/0x2260 [ 436.823271][ T8898] sctp_sendmsg+0x3910/0x49f0 [ 436.823410][ T8898] inet_sendmsg+0x26c/0x2a0 [ 436.847509][ T8898] __sock_sendmsg+0x278/0x3d0 [ 436.852802][ T8898] __sys_sendto+0x593/0x720 [ 436.857603][ T8898] __ia32_sys_sendto+0x12f/0x200 [ 436.865435][ T8898] ia32_sys_call+0x1397/0x42c0 [ 436.870484][ T8898] __do_fast_syscall_32+0xb0/0x150 [ 436.875993][ T8898] do_fast_syscall_32+0x38/0x80 [ 436.881068][ T8898] do_SYSENTER_32+0x1f/0x30 [ 436.885897][ T8898] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 436.895128][ T8898] [ 436.897559][ T8898] Uninit was created at: [ 436.902178][ T8898] __kmalloc_node_track_caller_noprof+0x96d/0x12f0 [ 436.908880][ T8898] kmalloc_reserve+0x22f/0x4b0 [ 436.914018][ T8898] __alloc_skb+0x347/0x7d0 [ 436.918629][ T8898] sctp_packet_transmit+0x18a1/0x46d0 [ 436.926889][ T8898] sctp_outq_flush+0x1c7d/0x67c0 [ 436.932175][ T8898] sctp_outq_uncork+0x9e/0xc0 [ 436.937038][ T8898] sctp_do_sm+0x8c8e/0x9720 [ 436.941844][ T8898] sctp_assoc_bh_rcv+0x88b/0xbc0 [ 436.947975][ T8898] sctp_inq_push+0x2a6/0x350 [ 436.955677][ T8898] sctp_backlog_rcv+0x3c7/0xda0 [ 436.960708][ T8898] sk_backlog_rcv+0x13f/0x420 [ 436.965764][ T8898] __release_sock+0x1d3/0x330 [ 436.970600][ T8898] release_sock+0x6b/0x270 [ 436.975330][ T8898] sctp_wait_for_connect+0x458/0x820 [ 436.980798][ T8898] sctp_sendmsg_to_asoc+0x223a/0x2260 [ 436.989179][ T8898] sctp_sendmsg+0x3910/0x49f0 [ 436.991337][ T9] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 436.994159][ T8898] inet_sendmsg+0x26c/0x2a0 [ 437.005525][ T9] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 437.009631][ T8898] __sock_sendmsg+0x278/0x3d0 [ 437.019574][ T9] usb 1-1: New USB device found, idVendor=1241, idProduct=5015, bcdDevice= 0.00 [ 437.019714][ T9] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 437.044727][ T8898] __sys_sendto+0x593/0x720 [ 437.050671][ T8898] __ia32_sys_sendto+0x12f/0x200 [ 437.058936][ T8898] ia32_sys_call+0x1397/0x42c0 [ 437.064010][ T8898] __do_fast_syscall_32+0xb0/0x150 [ 437.069357][ T8898] do_fast_syscall_32+0x38/0x80 [ 437.074559][ T8898] do_SYSENTER_32+0x1f/0x30 [ 437.079293][ T8898] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 437.088396][ T8898] [ 437.090878][ T8898] CPU: 1 UID: 0 PID: 8898 Comm: syz.1.1260 Tainted: G W 6.16.0-rc4-syzkaller-00324-g1f988d0788f5 #0 PREEMPT(undef) [ 437.104947][ T8898] Tainted: [W]=WARN [ 437.108889][ T8898] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 437.115858][ T9] usb 1-1: config 0 descriptor?? [ 437.121855][ T8898] ===================================================== [ 437.131365][ T8898] Disabling lock debugging due to kernel taint [ 437.137663][ T8898] Kernel panic - not syncing: kmsan.panic set ... [ 437.144232][ T8898] CPU: 1 UID: 0 PID: 8898 Comm: syz.1.1260 Tainted: G B W 6.16.0-rc4-syzkaller-00324-g1f988d0788f5 #0 PREEMPT(undef) [ 437.158108][ T8898] Tainted: [B]=BAD_PAGE, [W]=WARN [ 437.163237][ T8898] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 437.173452][ T8898] Call Trace: [ 437.177016][ T8898] [ 437.180054][ T8898] __dump_stack+0x26/0x30 [ 437.184587][ T8898] dump_stack_lvl+0x53/0x270 [ 437.189362][ T8898] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 437.195397][ T8898] dump_stack+0x1e/0x25 [ 437.199728][ T8898] panic+0x4bd/0xd50 [ 437.203854][ T8898] kmsan_report+0x31c/0x320 [ 437.208583][ T8898] ? __msan_warning+0x1b/0x30 [ 437.213435][ T8898] ? sctp_inq_pop+0x14dc/0x19e0 [ 437.218446][ T8898] ? sctp_assoc_bh_rcv+0x1a0/0xbc0 [ 437.223727][ T8898] ? sctp_inq_push+0x2a6/0x350 [ 437.228658][ T8898] ? sctp_backlog_rcv+0x3c7/0xda0 [ 437.233848][ T8898] ? sk_backlog_rcv+0x13f/0x420 [ 437.238874][ T8898] ? __release_sock+0x1d3/0x330 [ 437.243888][ T8898] ? release_sock+0x6b/0x270 [ 437.248653][ T8898] ? sctp_wait_for_connect+0x458/0x820 [ 437.254270][ T8898] ? sctp_sendmsg_to_asoc+0x223a/0x2260 [ 437.260040][ T8898] ? sctp_sendmsg+0x3910/0x49f0 [ 437.265094][ T8898] ? inet_sendmsg+0x26c/0x2a0 [ 437.270016][ T8898] ? __sock_sendmsg+0x278/0x3d0 [ 437.275031][ T8898] ? __sys_sendto+0x593/0x720 [ 437.279891][ T8898] ? __ia32_sys_sendto+0x12f/0x200 [ 437.285198][ T8898] ? ia32_sys_call+0x1397/0x42c0 [ 437.290290][ T8898] ? __do_fast_syscall_32+0xb0/0x150 [ 437.295788][ T8898] ? do_fast_syscall_32+0x38/0x80 [ 437.301012][ T8898] ? do_SYSENTER_32+0x1f/0x30 [ 437.305887][ T8898] ? entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 437.312583][ T8898] ? entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 437.319278][ T8898] ? sched_clock_cpu+0x59/0xa80 [ 437.324295][ T8898] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 437.330310][ T8898] ? kmsan_get_metadata+0xfb/0x160 [ 437.335618][ T8898] ? kmsan_internal_set_shadow_origin+0x79/0x110 [ 437.342142][ T8898] ? kmsan_get_metadata+0xfb/0x160 [ 437.347450][ T8898] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 437.353469][ T8898] ? load_gs_index+0x41/0x100 [ 437.358345][ T8898] ? kmsan_get_metadata+0xfb/0x160 [ 437.363677][ T8898] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 437.369714][ T8898] ? kmsan_get_metadata+0xfb/0x160 [ 437.375039][ T8898] __msan_warning+0x1b/0x30 [ 437.379721][ T8898] sctp_inq_pop+0x14dc/0x19e0 [ 437.384594][ T8898] sctp_assoc_bh_rcv+0x1a0/0xbc0 [ 437.389720][ T8898] ? __schedule+0x2682/0x76c0 [ 437.394573][ T8898] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 437.400591][ T8898] ? __pfx_sctp_assoc_bh_rcv+0x10/0x10 [ 437.406229][ T8898] sctp_inq_push+0x2a6/0x350 [ 437.410994][ T8898] sctp_backlog_rcv+0x3c7/0xda0 [ 437.416012][ T8898] ? kmsan_get_metadata+0xfb/0x160 [ 437.421341][ T8898] ? __pfx_sctp_backlog_rcv+0x10/0x10 [ 437.426895][ T8898] sk_backlog_rcv+0x13f/0x420 [ 437.431769][ T8898] __release_sock+0x1d3/0x330 [ 437.436632][ T8898] release_sock+0x6b/0x270 [ 437.441232][ T8898] sctp_wait_for_connect+0x458/0x820 [ 437.446763][ T8898] ? __pfx_autoremove_wake_function+0x10/0x10 [ 437.453075][ T8898] sctp_sendmsg_to_asoc+0x223a/0x2260 [ 437.458680][ T8898] ? kmsan_get_metadata+0xfb/0x160 [ 437.464023][ T8898] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 437.470087][ T8898] sctp_sendmsg+0x3910/0x49f0 [ 437.475062][ T8898] ? kmsan_save_stack_with_flags+0x60/0x60 [ 437.481131][ T8898] ? __pfx_sctp_sendmsg+0x10/0x10 [ 437.486371][ T8898] inet_sendmsg+0x26c/0x2a0 [ 437.491088][ T8898] __sock_sendmsg+0x278/0x3d0 [ 437.496060][ T8898] __sys_sendto+0x593/0x720 [ 437.500796][ T8898] ? do_futex+0x416/0x480 [ 437.505330][ T8898] ? kmsan_get_metadata+0xfb/0x160 [ 437.510647][ T8898] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 437.516708][ T8898] __ia32_sys_sendto+0x12f/0x200 [ 437.521877][ T8898] ia32_sys_call+0x1397/0x42c0 [ 437.526803][ T8898] __do_fast_syscall_32+0xb0/0x150 [ 437.532131][ T8898] ? irqentry_exit_to_user_mode+0x82/0xa0 [ 437.538061][ T8898] do_fast_syscall_32+0x38/0x80 [ 437.543128][ T8898] do_SYSENTER_32+0x1f/0x30 [ 437.547828][ T8898] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 437.554355][ T8898] RIP: 0023:0xf7fd7539 [ 437.558546][ T8898] Code: 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 [ 437.578485][ T8898] RSP: 002b:00000000f50f655c EFLAGS: 00000206 ORIG_RAX: 0000000000000171 [ 437.587091][ T8898] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080847fff [ 437.595296][ T8898] RDX: 000000000000fee4 RSI: 0000000000000000 RDI: 000000008005ffe4 [ 437.603405][ T8898] RBP: 000000000000001c R08: 0000000000000000 R09: 0000000000000000 [ 437.611512][ T8898] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000 [ 437.619729][ T8898] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 437.627907][ T8898] [ 437.631309][ T8898] Kernel Offset: disabled [ 437.635700][ T8898] Rebooting in 86400 seconds..