last executing test programs: 23.658474002s ago: executing program 5 (id=1925): r0 = socket$inet6(0xa, 0x800000000000002, 0x0) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @mcast2, 0xffffffff}, 0x1c) setsockopt$inet6_IPV6_ADDRFORM(r0, 0x29, 0x11, &(0x7f0000000000), 0x4) 23.544501065s ago: executing program 5 (id=1928): r0 = fsopen(&(0x7f00000001c0)='ecryptfs\x00', 0x0) fsconfig$FSCONFIG_SET_STRING(r0, 0x6, 0x0, 0x0, 0x0) ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r0, 0xc08c5332, &(0x7f0000000180)={0x4, 0x0, 0x0, 'queue0\x00'}) 23.411763436s ago: executing program 5 (id=1930): r0 = bpf$MAP_CREATE(0x100000000000000, &(0x7f0000000440)=@base={0x14, 0x4, 0x4, 0x6, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) r1 = socket$inet_udplite(0x2, 0x2, 0x88) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000280)={r0, &(0x7f0000000200), &(0x7f0000000240)=@udp=r1}, 0x20) 23.350007349s ago: executing program 5 (id=1932): syz_mount_image$vfat(&(0x7f0000000280), &(0x7f00000002c0)='./file0\x00', 0x10000, 0xffffffffffffffff, 0x0, 0x0, 0x0) mount(0x0, &(0x7f0000000040)='./file0/../file0/../file0\x00', &(0x7f0000000000)='hugetlbfs\x00', 0x0, 0x0) mount$tmpfs(0x0, &(0x7f0000000080)='./file0\x00', 0x0, 0x28928e1, &(0x7f0000000100)={[{@mode}]}) 23.295774411s ago: executing program 5 (id=1934): r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='oom_score_adj\x00') preadv(r0, &(0x7f00000003c0)=[{&(0x7f0000000380)=""/44, 0x2c}], 0x1, 0x0, 0x0) writev(r0, &(0x7f00000003c0), 0x100000000000022d) 23.128204524s ago: executing program 5 (id=1939): socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) mount$9p_fd(0x0, &(0x7f0000000140)='.\x00', &(0x7f0000000180), 0x0, &(0x7f0000000000)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r0}}) 13.033805271s ago: executing program 3 (id=2033): unshare(0x22020400) r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000080)={0x26, 'rng\x00', 0x2000000, 0x2d, 'drbg_nopr_hmac_sha1\x00'}, 0x58) 12.670544142s ago: executing program 3 (id=2036): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000200), 0xffffffffffffffff) sendmsg$ETHTOOL_MSG_LINKMODES_SET(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000040)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="0100000000000000000024000000180001801400020073797a5f74756e"], 0x2c}}, 0x0) 12.288855996s ago: executing program 3 (id=2039): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0x6, &(0x7f00000005c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x70) r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000580)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10) bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000140)={r1, 0x34}, 0x9) 11.870890791s ago: executing program 3 (id=2045): r0 = syz_open_dev$cec(&(0x7f0000000040), 0x0, 0x0) ioctl$CEC_S_MODE(r0, 0x40046109, &(0x7f0000000800)=0x2) ioctl$CEC_S_MODE(r0, 0x40046109, &(0x7f0000000100)) 11.328125061s ago: executing program 3 (id=2051): syz_mount_image$exfat(&(0x7f00000000c0), &(0x7f0000000080)='./file0\x00', 0x800, &(0x7f00000002c0)={[{@keep_last_dots}, {@umask={'umask', 0x3d, 0x9}}, {@dmask={'dmask', 0x3d, 0x3}}, {@discard}, {@allow_utime={'allow_utime', 0x3d, 0x40}}, {@errors_remount}, {@sys_tz}, {@errors_remount}, {@umask={'umask', 0x3d, 0x8}}, {@iocharset={'iocharset', 0x3d, 'cp861'}}]}, 0x4, 0x1510, &(0x7f00000037c0)="$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") syz_mount_image$fuse(0x0, &(0x7f0000002080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='tracefs\x00', 0x0, 0x0) 10.550708188s ago: executing program 3 (id=2056): open$dir(&(0x7f0000000440)='./file0\x00', 0x40, 0x0) pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) mount$9p_fd(0x0, &(0x7f0000000500)='./file0\x00', &(0x7f0000000540), 0x0, &(0x7f0000000e80)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB="2c63616368653d8f"]) 7.484604946s ago: executing program 4 (id=2081): r0 = socket(0x10, 0x3, 0x0) write(r0, &(0x7f0000000180)="2000000012005f0214f9f4070000fbe40a0000000000", 0x41d) recvmmsg(r0, &(0x7f00000015c0)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, &(0x7f0000000100)=[{&(0x7f00000021c0)=""/250, 0xfa}, {&(0x7f00000001c0)=""/178, 0xb2}, {&(0x7f0000000300)=""/4072, 0xfe8}, {&(0x7f00000000c0)=""/19, 0x13}], 0x4}, 0x1e00000}], 0x2, 0x2000, 0x0) 6.807230361s ago: executing program 1 (id=2086): r0 = socket$inet_sctp(0x2, 0x5, 0x84) listen(r0, 0x7fffffff) setsockopt$inet_sctp_SCTP_AUTO_ASCONF(r0, 0x84, 0x1e, &(0x7f0000000040), 0x4) 6.479387767s ago: executing program 1 (id=2089): r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x10, 0x1b1c, 0x1c1e, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x5}}}}]}}]}}, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io(r0, &(0x7f00000003c0)={0x18, &(0x7f0000000040)={0x0, 0x0, 0x5, {0x5, 0x0, "a7ea31"}}, 0x0, 0x0, 0x0, 0x0}, 0x0) 6.440649843s ago: executing program 4 (id=2090): r0 = socket$packet(0x11, 0x2, 0x300) setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000040)={0x4, 0x1000}, 0x4) setsockopt$packet_fanout_data(r0, 0x107, 0x16, 0x0, 0x0) 6.144326671s ago: executing program 4 (id=2092): r0 = syz_genetlink_get_family_id$devlink(&(0x7f0000000080), 0xffffffffffffffff) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$DEVLINK_CMD_TRAP_POLICER_SET(r1, &(0x7f0000000340)={0x0, 0x7, &(0x7f00000002c0)={&(0x7f0000000240)={0x54, r0, 0x1, 0x0, 0x0, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0x8e, 0x1}, {0xc, 0x90}, {0xc}}]}, 0x54}}, 0x0) 5.847906894s ago: executing program 4 (id=2094): r0 = socket$kcm(0x21, 0x2, 0x2) sendmsg$kcm(r0, &(0x7f0000000080)={&(0x7f0000000140)=@rxrpc=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x0, @broadcast}}, 0x80, 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="18000000000000001001000001"], 0x18}, 0x0) recvmsg$kcm(r0, &(0x7f0000001a80)={0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe}, 0x0) 5.54268013s ago: executing program 4 (id=2095): syz_mount_image$exfat(&(0x7f0000000280), &(0x7f00000001c0)='./file0\x00', 0x810, &(0x7f00000008c0)=ANY=[@ANYRES32=0x0, @ANYRESHEX, @ANYRES16=0x0, @ANYRESHEX=0x0, @ANYRESHEX=0x0], 0xfd, 0x1517, &(0x7f0000002080)="$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") chdir(&(0x7f0000000140)='./file0\x00') open(&(0x7f0000001780)='./bus\x00', 0x64842, 0x0) 4.961609034s ago: executing program 4 (id=2096): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$ETHTOOL_MSG_FEATURES_SET(r0, &(0x7f0000000680)={0x0, 0x0, &(0x7f0000000640)={&(0x7f0000000340)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="df4800000000000000000c0000002c000380280003801400018008000100020000000500020000000000100001800900020073697430d0000000180001801400020073697430"], 0x58}}, 0x0) 4.252905456s ago: executing program 1 (id=2097): close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) r0 = socket(0x15, 0x5, 0x0) setsockopt$RDS_CANCEL_SENT_TO(r0, 0x114, 0x5, 0x0, 0x2000000) 3.960982262s ago: executing program 1 (id=2098): bpf$ENABLE_STATS(0x20, 0x0, 0x0) r0 = bpf$PROG_LOAD(0x5, &(0x7f00002a0fb8)={0x4, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="85000000a0000000250000000000000085000000080000009500000000000000"], &(0x7f0000000140)='GPL\x00', 0x0, 0x6e, &(0x7f0000000180)=""/153, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x15) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000440)={r0, 0x0, 0xe, 0x0, &(0x7f00000000c0)="61df712bc884fed5722780b6c2a7", 0x0, 0x12c4, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) 3.644830866s ago: executing program 1 (id=2100): r0 = syz_open_dev$evdev(&(0x7f0000000040), 0x0, 0x0) readv(r0, &(0x7f0000002140)=[{&(0x7f00000010c0)=""/29, 0x1d}], 0x1) ioctl$EVIOCGABS20(r0, 0x40044591, 0x0) 3.337018775s ago: executing program 0 (id=2103): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xf, 0x4, 0x4, 0x4, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000780)={{r0}, &(0x7f0000000700), &(0x7f0000000740)=r1, 0x2}, 0x20) 3.334880924s ago: executing program 1 (id=2104): r0 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_MCAST_JOIN_GROUP(r0, 0x29, 0x2a, &(0x7f0000000140)={0x0, {{0xa, 0x0, 0x0, @mcast1}}}, 0x88) setsockopt$inet6_MCAST_MSFILTER(r0, 0x29, 0x30, &(0x7f0000000a80)={0xb, {{0xa, 0x0, 0x0, @mcast2}}, 0x1, 0x1, [{{0xa, 0x0, 0x0, @dev}}]}, 0x110) 3.158774499s ago: executing program 0 (id=2105): r0 = socket$inet6(0xa, 0x1, 0x84) setsockopt$inet6_int(r0, 0x29, 0x1a, &(0x7f0000000080)=0x2, 0x4) sendto$inet6(r0, &(0x7f00000002c0)="e742", 0x2, 0x0, &(0x7f00000000c0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @private=0xa010102}}, 0x1c) 3.049255751s ago: executing program 0 (id=2106): r0 = socket$inet(0x2, 0x2, 0x0) pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) splice(r0, &(0x7f0000000280)=0x7aa4, r1, 0x0, 0x10000000800, 0x0) 2.932412825s ago: executing program 0 (id=2107): mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000080)='devpts\x00', 0x0, 0x0) mount$tmpfs(0x0, &(0x7f0000000080)='./file0/../file0/../file0\x00', 0x0, 0x1210020, &(0x7f0000000340)=ANY=[@ANYBLOB='uid=', @ANYRESHEX=0x0, @ANYRESDEC]) 2.805006222s ago: executing program 0 (id=2108): r0 = fsopen(&(0x7f0000000100)='cifs\x00', 0x0) fsconfig$FSCONFIG_SET_STRING(r0, 0x1, &(0x7f0000000000)='user\x00N\xac]\x86\x8a\xa3\x7f\x00', &(0x7f00000000c0), 0x0) fsconfig$FSCONFIG_SET_STRING(r0, 0x1, &(0x7f0000000040)='user\x00N\xac]\x86\x8a\xa3\x7f\x00', &(0x7f00000000c0)='\xda+\x9d\x14\r\n', 0x0) 2.678165673s ago: executing program 0 (id=2109): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$IPVS_CMD_NEW_DAEMON(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000080)={0x50, r1, 0x1, 0x0, 0x0, {}, [@IPVS_CMD_ATTR_DAEMON={0x3c, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_MCAST_IFN={0x14, 0x2, 'vcan0\x00'}, @IPVS_DAEMON_ATTR_SYNC_ID={0x8}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x1}, @IPVS_DAEMON_ATTR_MCAST_GROUP6={0x14, 0x6, @mcast2}]}]}, 0x50}}, 0x0) 1.024640487s ago: executing program 2 (id=2114): syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0) r0 = syz_open_dev$vim2m(&(0x7f0000000000), 0x7, 0x2) ioctl$vim2m_VIDIOC_G_FMT(r0, 0xc0285629, &(0x7f0000000080)={0x3, @win={{0x2}, 0x0, 0x0, &(0x7f0000000040), 0x0, 0x0}}) 898.9748ms ago: executing program 2 (id=2115): r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000001840), 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000000)=0xe) ioctl$TIOCSSOFTCAR(r0, 0x541a, &(0x7f0000000080)=0x4fb) 781.581726ms ago: executing program 2 (id=2116): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0) sendmsg$NFT_BATCH(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000b00)={&(0x7f0000000140)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a78000000060a01040000000000000000020000004c000480480001800c00010062697477697365003800028008000340000000090800014000000016140004801000028009fe8e3301797a3100000000090002400000001608000580040001000900010073797a30000000000900020073797a32"], 0xa0}}, 0x0) 620.198964ms ago: executing program 2 (id=2117): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x11, 0x3, &(0x7f0000000200)=@framed, &(0x7f00000003c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000140)='contention_end\x00', r0}, 0x10) membarrier(0x4, 0x0) 493.458083ms ago: executing program 2 (id=2118): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0) sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)={{0x14}, [@NFT_MSG_NEWRULE={0x54, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x28, 0x4, 0x0, 0x1, [{0x24, 0x1, 0x0, 0x1, @meta={{0x9}, @val={0x14, 0x2, 0x0, 0x1, [@NFTA_META_DREG={0x8}, @NFTA_META_KEY={0x8, 0x2, 0x1, 0x0, 0x20}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x7c}}, 0x0) 0s ago: executing program 2 (id=2120): r0 = socket$netlink(0x10, 0x3, 0x0) setsockopt$netlink_NETLINK_DROP_MEMBERSHIP(r0, 0x10e, 0xc, &(0x7f0000000640)=0x4, 0x4) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)=ANY=[@ANYBLOB="1c0000001a00010000000000000000008020000000000002"], 0x1c}}, 0x0) kernel console output (not intermixed with test programs): 70:FF00.001F: probe with driver gt683r_led failed with error -22 [ 200.511083][ T6890] syz-executor: attempt to access beyond end of device [ 200.511083][ T6890] loop4: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 200.550246][ T6890] F2FS-fs (loop4): Stopped filesystem due to reason: 3 [ 200.595809][ T5293] usb 4-1: USB disconnect, device number 9 [ 200.784335][ T8731] loop5: detected capacity change from 0 to 32768 [ 200.789880][ T8738] loop0: detected capacity change from 0 to 32768 [ 200.819525][ T8738] BTRFS: device fsid 14d642db-7b15-43e4-81e6-4b8fac6a25f8 devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.1141 (8738) [ 200.844788][ T8738] BTRFS info (device loop0): first mount of filesystem 14d642db-7b15-43e4-81e6-4b8fac6a25f8 [ 200.855457][ T8738] BTRFS info (device loop0): using blake2b (blake2b-256-generic) checksum algorithm [ 200.865274][ T8738] BTRFS info (device loop0): using free-space-tree [ 200.926595][ T8731] ocfs2: Mounting device (7,5) on (node local, slot 0) with ordered data mode. [ 200.997505][ T29] audit: type=1800 audit(1727252580.530:104): pid=8738 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.1141" name="file1" dev="loop0" ino=260 res=0 errno=0 [ 201.081666][ T8744] loop2: detected capacity change from 0 to 40427 [ 201.099046][ T8744] F2FS-fs (loop2): invalid crc value [ 201.118155][ T5241] ocfs2: Unmounting device (7,5) on (node local) [ 201.146752][ T8775] skbuff: bad partial csum: csum=65489/0 headroom=64 headlen=65491 [ 201.168258][ T8744] F2FS-fs (loop2): Found nat_bits in checkpoint [ 201.170856][ T5228] BTRFS info (device loop0): last unmount of filesystem 14d642db-7b15-43e4-81e6-4b8fac6a25f8 [ 201.353081][ T8744] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e4 [ 201.512927][ T8784] loop1: detected capacity change from 0 to 512 [ 201.527265][ T8784] EXT4-fs: Ignoring removed i_version option [ 201.535324][ T8784] EXT4-fs: Ignoring removed nobh option [ 201.600482][ T8784] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 201.616075][ T5225] syz-executor: attempt to access beyond end of device [ 201.616075][ T5225] loop2: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 201.617680][ T5293] IPVS: starting estimator thread 0... [ 201.645944][ T5225] F2FS-fs (loop2): Stopped filesystem due to reason: 3 [ 201.687563][ T8784] EXT4-fs (loop1): 1 truncate cleaned up [ 201.701556][ T8784] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 201.770400][ T8791] IPVS: using max 16 ests per chain, 38400 per kthread [ 201.867389][ T8784] EXT4-fs (loop1): re-mounted 00000000-0000-0000-0000-000000000000 r/w. Quota mode: writeback. [ 202.018941][ T5224] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 202.252089][ T8803] loop5: detected capacity change from 0 to 16 [ 202.260706][ T8787] loop4: detected capacity change from 0 to 32768 [ 202.270690][ T8787] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop4 (7:4) scanned by syz.4.1154 (8787) [ 202.277774][ T8803] erofs: (device loop5): mounted with root inode @ nid 36. [ 202.322258][ T8787] BTRFS info (device loop4): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 202.348136][ T8787] BTRFS info (device loop4): using sha256 (sha256-ni) checksum algorithm [ 202.360509][ T8787] BTRFS info (device loop4): using free-space-tree [ 202.613993][ T8799] loop3: detected capacity change from 0 to 32768 [ 202.664650][ T8815] loop2: detected capacity change from 0 to 256 [ 202.786236][ T8815] FAT-fs (loop2): Directory bread(block 64) failed [ 202.798531][ T8815] FAT-fs (loop2): Directory bread(block 65) failed [ 202.808206][ T8815] FAT-fs (loop2): Directory bread(block 66) failed [ 202.962941][ T8816] loop1: detected capacity change from 0 to 32768 [ 202.970458][ T8815] FAT-fs (loop2): Directory bread(block 67) failed [ 202.979889][ T8815] FAT-fs (loop2): Directory bread(block 68) failed [ 203.000406][ T8815] FAT-fs (loop2): Directory bread(block 69) failed [ 203.007079][ T8815] FAT-fs (loop2): Directory bread(block 70) failed [ 203.024854][ T8815] FAT-fs (loop2): Directory bread(block 71) failed [ 203.031659][ T8815] FAT-fs (loop2): Directory bread(block 72) failed [ 203.038345][ T8815] FAT-fs (loop2): Directory bread(block 73) failed [ 203.041161][ T8790] loop0: detected capacity change from 0 to 32768 [ 203.054594][ T8790] BTRFS: device /dev/loop0 (7:0) using temp-fsid ccd854e2-beed-4dcf-b04f-572d82c8955c [ 203.066760][ T8790] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.1148 (8790) [ 203.149211][ T8829] netlink: 'syz.5.1167': attribute type 1 has an invalid length. [ 203.157619][ T8829] netlink: 9352 bytes leftover after parsing attributes in process `syz.5.1167'. [ 203.169652][ T8829] netlink: 'syz.5.1167': attribute type 2 has an invalid length. [ 203.179623][ T8829] netlink: 'syz.5.1167': attribute type 1 has an invalid length. [ 203.193525][ T8790] BTRFS info (device loop0): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 203.212549][ T8790] BTRFS info (device loop0): using sha256 (sha256-ni) checksum algorithm [ 203.237169][ T8790] BTRFS info (device loop0): using free-space-tree [ 203.269695][ T8799] XFS (loop3): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 203.281930][ T8816] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode. [ 203.304325][ T8843] UBIFS error (pid: 8843): cannot open "ub ", error -22 [ 203.395300][ T6890] BTRFS info (device loop4): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 203.403669][ T8799] XFS (loop3): Ending clean mount [ 203.457446][ T8799] XFS (loop3): Quotacheck needed: Please wait. [ 203.532484][ T5224] ocfs2: Unmounting device (7,1) on (node local) [ 203.602195][ T8799] XFS (loop3): Quotacheck: Done. [ 203.756984][ T5240] XFS (loop3): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 203.839508][ T5228] BTRFS info (device loop0): last unmount of filesystem ccd854e2-beed-4dcf-b04f-572d82c8955c [ 203.967332][ T5293] IPVS: starting estimator thread 0... [ 204.107791][ T8880] IPVS: using max 16 ests per chain, 38400 per kthread [ 204.453766][ T8893] loop4: detected capacity change from 0 to 32768 [ 204.484204][ T8896] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1180'. [ 204.892709][ T8893] ocfs2: Mounting device (7,4) on (node local, slot 0) with ordered data mode. [ 204.905123][ T8891] loop1: detected capacity change from 0 to 32768 [ 205.156476][ T8895] loop2: detected capacity change from 0 to 32768 [ 205.190935][ T8895] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop2 (7:2) scanned by syz.2.1183 (8895) [ 205.236747][ T8895] BTRFS info (device loop2): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 205.247282][ T8895] BTRFS info (device loop2): using sha256 (sha256-ni) checksum algorithm [ 205.250388][ T29] audit: type=1800 audit(1727252584.770:105): pid=8891 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.1181" name="file1" dev="loop1" ino=4 res=0 errno=0 [ 205.264364][ T8895] BTRFS info (device loop2): using free-space-tree [ 205.300987][ T6890] ocfs2: Unmounting device (7,4) on (node local) [ 205.656956][ T5225] BTRFS info (device loop2): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 205.841572][ T8932] loop4: detected capacity change from 0 to 32768 [ 205.852302][ T25] usb 6-1: new high-speed USB device number 10 using dummy_hcd [ 205.931372][ T8932] XFS (loop4): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 206.032525][ T25] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 206.044289][ T25] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 206.055058][ T25] usb 6-1: New USB device found, idVendor=056a, idProduct=005b, bcdDevice= 0.00 [ 206.057201][ T5331] IPVS: starting estimator thread 0... [ 206.065669][ T25] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 206.121074][ T25] usb 6-1: config 0 descriptor?? [ 206.310554][ T8946] IPVS: using max 17 ests per chain, 40800 per kthread [ 206.312508][ T8914] loop3: detected capacity change from 0 to 32768 [ 206.380450][ T8914] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop3 (7:3) scanned by syz.3.1190 (8914) [ 206.476610][ T8932] XFS (loop4): Ending clean mount [ 206.478262][ T8914] BTRFS info (device loop3): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 206.486506][ T8932] XFS (loop4): Quotacheck needed: Please wait. [ 206.502745][ T8914] BTRFS info (device loop3): using sha256 (sha256-ni) checksum algorithm [ 206.519709][ T8914] BTRFS info (device loop3): using free-space-tree [ 206.576912][ T25] wacom 0003:056A:005B.0020: unknown main item tag 0x0 [ 206.612194][ T25] wacom 0003:056A:005B.0020: hidraw0: USB HID v0.00 Device [HID 056a:005b] on usb-dummy_hcd.5-1/input0 [ 206.629495][ T8932] XFS (loop4): Quotacheck: Done. [ 206.759381][ T6890] XFS (loop4): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 206.839182][ T5331] usb 6-1: USB disconnect, device number 10 [ 206.937248][ T5240] BTRFS info (device loop3): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 207.143858][ T8979] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1199'. [ 207.185199][ T8953] loop2: detected capacity change from 0 to 32768 [ 207.276488][ T8953] XFS (loop2): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d [ 207.365633][ T8953] XFS (loop2): Ending clean mount [ 207.375716][ T8953] XFS (loop2): Quotacheck needed: Please wait. [ 207.428024][ T8953] XFS (loop2): Quotacheck: Done. [ 207.475691][ T5225] XFS (loop2): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d [ 207.480408][ T5331] usb 5-1: new high-speed USB device number 9 using dummy_hcd [ 207.594508][ T8993] loop1: detected capacity change from 0 to 256 [ 207.670485][ T5331] usb 5-1: Using ep0 maxpacket: 8 [ 207.684884][ T5331] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 207.713423][ T5331] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 207.723710][ T5331] usb 5-1: New USB device found, idVendor=06a3, idProduct=0ccd, bcdDevice= 0.00 [ 207.732912][ T5331] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 207.751337][ T5331] usb 5-1: config 0 descriptor?? [ 207.785666][ T8993] FAT-fs (loop1): Directory bread(block 64) failed [ 207.792745][ T8993] FAT-fs (loop1): Directory bread(block 65) failed [ 207.799556][ T8993] FAT-fs (loop1): Directory bread(block 66) failed [ 207.806519][ T8993] FAT-fs (loop1): Directory bread(block 67) failed [ 207.814814][ T8993] FAT-fs (loop1): Directory bread(block 68) failed [ 207.821649][ T8993] FAT-fs (loop1): Directory bread(block 69) failed [ 207.828749][ T8993] FAT-fs (loop1): Directory bread(block 70) failed [ 207.835524][ T8993] FAT-fs (loop1): Directory bread(block 71) failed [ 207.843028][ T8993] FAT-fs (loop1): Directory bread(block 72) failed [ 207.852127][ T8993] FAT-fs (loop1): Directory bread(block 73) failed [ 208.172551][ T9004] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1203'. [ 208.215527][ T5331] saitek 0003:06A3:0CCD.0021: unknown main item tag 0x0 [ 208.224186][ T5331] saitek 0003:06A3:0CCD.0021: unknown main item tag 0x0 [ 208.231638][ T5331] saitek 0003:06A3:0CCD.0021: unknown main item tag 0x0 [ 208.245862][ T5331] saitek 0003:06A3:0CCD.0021: unknown main item tag 0x0 [ 208.254740][ T5331] saitek 0003:06A3:0CCD.0021: unknown main item tag 0x0 [ 208.275621][ T5331] saitek 0003:06A3:0CCD.0021: unknown main item tag 0x0 [ 208.285758][ T5331] saitek 0003:06A3:0CCD.0021: unknown main item tag 0x0 [ 208.296476][ T5331] saitek 0003:06A3:0CCD.0021: unknown main item tag 0x0 [ 208.353590][ T5331] saitek 0003:06A3:0CCD.0021: unknown main item tag 0x0 [ 208.360937][ T5331] saitek 0003:06A3:0CCD.0021: unknown main item tag 0x0 [ 208.371090][ T5331] saitek 0003:06A3:0CCD.0021: unknown main item tag 0x0 [ 208.390980][ T5331] saitek 0003:06A3:0CCD.0021: hidraw0: USB HID v0.00 Device [HID 06a3:0ccd] on usb-dummy_hcd.4-1/input0 [ 208.446787][ T5331] usb 5-1: USB disconnect, device number 9 [ 208.677294][ T9014] loop1: detected capacity change from 0 to 32768 [ 208.685848][ T9014] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop1 (7:1) scanned by syz.1.1212 (9014) [ 208.706126][ T9014] BTRFS info (device loop1): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 208.716529][ T9014] BTRFS info (device loop1): using sha256 (sha256-ni) checksum algorithm [ 208.725705][ T9014] BTRFS info (device loop1): using free-space-tree [ 208.849765][ T5224] BTRFS info (device loop1): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 209.163852][ T9036] loop5: detected capacity change from 0 to 32768 [ 209.185242][ T9036] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop5 (7:5) scanned by syz.5.1229 (9036) [ 209.243573][ T9036] BTRFS info (device loop5): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 209.260371][ T9036] BTRFS info (device loop5): using sha256 (sha256-ni) checksum algorithm [ 209.269590][ T9036] BTRFS info (device loop5): using free-space-tree [ 209.293478][ T5293] usb 4-1: new high-speed USB device number 10 using dummy_hcd [ 209.390435][ T25] usb 3-1: new high-speed USB device number 9 using dummy_hcd [ 209.451868][ T5293] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 209.470379][ T5293] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 209.481084][ T5293] usb 4-1: New USB device found, idVendor=1345, idProduct=3008, bcdDevice= 0.00 [ 209.490554][ T5293] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 209.501155][ T5293] usb 4-1: config 0 descriptor?? [ 209.537060][ T5241] BTRFS info (device loop5): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 209.570286][ T25] usb 3-1: Using ep0 maxpacket: 8 [ 209.577970][ T25] usb 3-1: config 32 interface 0 altsetting 0 endpoint 0x85 has an invalid bInterval 0, changing to 7 [ 209.596426][ T25] usb 3-1: config 32 interface 0 altsetting 0 endpoint 0x85 has invalid wMaxPacketSize 0 [ 209.623553][ T25] usb 3-1: New USB device found, idVendor=19b5, idProduct=0021, bcdDevice=98.c7 [ 209.665070][ T25] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 209.908423][ T25] usb 3-1: string descriptor 0 read error: -71 [ 209.915125][ T25] hub 3-1:32.0: USB hub found [ 209.926768][ T5293] sony 0003:1345:3008.0022: item fetching failed at offset 5/7 [ 209.935142][ T5293] sony 0003:1345:3008.0022: parse failed [ 209.941274][ T5293] sony 0003:1345:3008.0022: probe with driver sony failed with error -22 [ 209.950703][ T25] hub 3-1:32.0: config failed, can't read hub descriptor (err -22) [ 210.093196][ T9049] loop1: detected capacity change from 0 to 32768 [ 210.140471][ T25] usb 3-1: USB disconnect, device number 9 [ 210.167008][ T5331] usb 4-1: USB disconnect, device number 10 [ 210.247807][ T9049] XFS (loop1): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 210.327018][ T9059] loop4: detected capacity change from 0 to 32768 [ 210.336412][ T9059] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop4 (7:4) scanned by syz.4.1235 (9059) [ 210.406002][ T9059] BTRFS info (device loop4): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 210.434526][ T9059] BTRFS info (device loop4): using sha256 (sha256-ni) checksum algorithm [ 210.464455][ T9059] BTRFS info (device loop4): using free-space-tree [ 210.482091][ T9049] XFS (loop1): Ending clean mount [ 210.494039][ T9049] XFS (loop1): Quotacheck needed: Please wait. [ 210.554309][ T9049] XFS (loop1): Quotacheck: Done. [ 210.618194][ T9096] loop0: detected capacity change from 0 to 164 [ 210.747944][ T6890] BTRFS info (device loop4): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 210.768139][ T5224] XFS (loop1): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 211.009829][ T9109] loop4: detected capacity change from 0 to 256 [ 211.017685][ T9109] exfat: Deprecated parameter 'utf8' [ 211.023347][ T9109] exfat: Deprecated parameter 'utf8' [ 211.346360][ T9109] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0xdc42f586, utbl_chksum : 0xe619d30d) [ 211.346605][ T9111] loop5: detected capacity change from 0 to 32768 [ 211.376910][ T9117] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1239'. [ 211.641194][ T9136] loop0: detected capacity change from 0 to 1024 [ 211.668793][ T9111] XFS (loop5): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d [ 211.699418][ T9135] loop3: detected capacity change from 0 to 1024 [ 211.790326][ T9136] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 211.835026][ T9150] loop4: detected capacity change from 0 to 164 [ 211.901784][ T5228] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 211.939985][ T9153] loop1: detected capacity change from 0 to 256 [ 211.963014][ T9111] XFS (loop5): Ending clean mount [ 211.996047][ T62] hfsplus: b-tree write err: -5, ino 4 [ 211.999099][ T9111] XFS (loop5): Quotacheck needed: Please wait. [ 212.046351][ T9153] exFAT-fs (loop1): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x3963664b, utbl_chksum : 0xe619d30d) [ 212.417809][ T9111] XFS (loop5): Quotacheck: Done. [ 212.532507][ T9161] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1258'. [ 212.535270][ T9155] loop0: detected capacity change from 0 to 32768 [ 212.648057][ T5241] XFS (loop5): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d [ 212.842948][ T9183] netlink: 'syz.2.1267': attribute type 1 has an invalid length. [ 212.851309][ T9183] netlink: 9352 bytes leftover after parsing attributes in process `syz.2.1267'. [ 212.863047][ T9183] netlink: 'syz.2.1267': attribute type 1 has an invalid length. [ 212.871431][ T9183] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1267'. [ 212.972111][ T9175] loop3: detected capacity change from 0 to 32768 [ 212.986107][ T9175] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop3 (7:3) scanned by syz.3.1263 (9175) [ 213.080349][ T9175] BTRFS info (device loop3): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 213.094770][ T9175] BTRFS info (device loop3): using sha256 (sha256-ni) checksum algorithm [ 213.120568][ T9155] XFS (loop0): Mounting V5 Filesystem a2f82aab-77f8-4286-afd4-a8f747a74bab [ 213.127737][ T9175] BTRFS info (device loop3): using free-space-tree [ 213.147832][ T9188] Driver unsupported XDP return value 0 on prog (id 92) dev N/A, expect packet loss! [ 213.631576][ T9155] XFS (loop0): Ending clean mount [ 213.639982][ T9155] XFS (loop0): Quotacheck needed: Please wait. [ 213.729478][ T9155] XFS (loop0): Quotacheck: Done. [ 213.779424][ T5240] BTRFS info (device loop3): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 213.823936][ T5228] XFS (loop0): Unmounting Filesystem a2f82aab-77f8-4286-afd4-a8f747a74bab [ 214.787176][ T9248] loop1: detected capacity change from 0 to 32768 [ 214.818681][ T9248] XFS (loop1): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 214.895327][ T9274] loop0: detected capacity change from 0 to 512 [ 214.917788][ T9274] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.1298: bg 0: block 131: padding at end of block bitmap is not set [ 214.948893][ T9274] EXT4-fs error (device loop0) in ext4_mb_clear_bb:6550: Corrupt filesystem [ 214.959092][ T9274] EXT4-fs (loop0): 1 truncate cleaned up [ 214.987313][ T9274] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 215.129254][ T9248] XFS (loop1): Ending clean mount [ 215.154502][ T5228] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 215.166747][ T9248] XFS (loop1): Quotacheck needed: Please wait. [ 215.223621][ T9286] netlink: 'syz.3.1302': attribute type 1 has an invalid length. [ 215.238193][ T9248] XFS (loop1): Quotacheck: Done. [ 215.270473][ T9286] netlink: 9352 bytes leftover after parsing attributes in process `syz.3.1302'. [ 215.280585][ T9286] netlink: 'syz.3.1302': attribute type 1 has an invalid length. [ 215.288565][ T9286] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1302'. [ 215.403487][ T5224] XFS (loop1): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 215.505642][ T9299] loop5: detected capacity change from 0 to 1024 [ 215.668718][ T1064] hfsplus: b-tree write err: -5, ino 4 [ 215.730510][ T5293] usb 4-1: new high-speed USB device number 11 using dummy_hcd [ 215.912209][ T5293] usb 4-1: New USB device found, idVendor=8086, idProduct=0110, bcdDevice=bf.ad [ 215.937216][ T5293] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 215.967494][ T5293] usb 4-1: config 0 descriptor?? [ 215.987379][ T5293] gspca_main: spca508-2.14.0 probing 8086:0110 [ 216.094418][ T9325] loop5: detected capacity change from 0 to 512 [ 216.154496][ T9325] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 216.170544][ T9325] ext4 filesystem being mounted at /224/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 216.202407][ T5293] gspca_spca508: reg_read err -32 [ 216.276048][ T5241] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 216.421847][ T5293] gspca_spca508: reg_read err -71 [ 216.443270][ T5293] gspca_spca508: reg_read err -71 [ 216.459445][ T5293] gspca_spca508: reg_read err -71 [ 216.474570][ T5293] gspca_spca508: reg write: error -71 [ 216.497638][ T5293] spca508 4-1:0.0: probe with driver spca508 failed with error -71 [ 216.524327][ T5293] usb 4-1: USB disconnect, device number 11 [ 216.541609][ T9342] loop0: detected capacity change from 0 to 2048 [ 216.592187][ T9342] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 216.712735][ T5228] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 216.930326][ T5298] usb 5-1: new high-speed USB device number 10 using dummy_hcd [ 217.023204][ T9358] loop0: detected capacity change from 0 to 1024 [ 217.030766][ T9358] ext4: Unknown parameter 'smackfstransmute' [ 217.141372][ T5298] usb 5-1: config 0 has an invalid descriptor of length 75, skipping remainder of the config [ 217.158882][ T5298] usb 5-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 2 [ 217.186238][ T5298] usb 5-1: New USB device found, idVendor=112a, idProduct=0001, bcdDevice=9e.7f [ 217.207193][ T5298] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 217.215878][ T5298] usb 5-1: Product: syz [ 217.220661][ T5298] usb 5-1: Manufacturer: syz [ 217.227569][ T5298] usb 5-1: SerialNumber: syz [ 217.234981][ T5298] usb 5-1: config 0 descriptor?? [ 217.359883][ T9372] netlink: 84 bytes leftover after parsing attributes in process `syz.1.1336'. [ 217.376676][ T9372] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check. [ 217.458459][ T5298] redrat3 5-1:0.0: Couldn't find all endpoints [ 217.499429][ T5298] usb 5-1: USB disconnect, device number 10 [ 217.983821][ T5298] usb 5-1: new high-speed USB device number 11 using dummy_hcd [ 218.057264][ T9381] loop5: detected capacity change from 0 to 32768 [ 218.065644][ T9381] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop5 (7:5) scanned by syz.5.1344 (9381) [ 218.100495][ T9381] BTRFS info (device loop5): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 218.118350][ T9381] BTRFS info (device loop5): using sha256 (sha256-ni) checksum algorithm [ 218.136186][ T9381] BTRFS info (device loop5): using free-space-tree [ 218.160377][ T5298] usb 5-1: Using ep0 maxpacket: 16 [ 218.178132][ T5298] usb 5-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xC5, changing to 0x85 [ 218.208058][ T5298] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x85 has invalid maxpacket 31265, setting to 1024 [ 218.236239][ T5298] usb 5-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 1024 [ 218.256954][ T5298] usb 5-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0x9A, changing to 0x8A [ 218.289790][ T5298] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x8A has invalid wMaxPacketSize 0 [ 218.313661][ T5298] usb 5-1: New USB device found, idVendor=1286, idProduct=2046, bcdDevice=b4.5b [ 218.330307][ T5298] usb 5-1: New USB device strings: Mfr=1, Product=130, SerialNumber=3 [ 218.349026][ T5298] usb 5-1: Product: syz [ 218.359209][ T5298] usb 5-1: Manufacturer: syz [ 218.369392][ T5298] usb 5-1: SerialNumber: syz [ 218.381864][ T5298] usb 5-1: config 0 descriptor?? [ 218.416853][ T5298] usb 5-1: NFC: intf ffff88802f2bc000 id ffffffff8f31b040 [ 218.437406][ T9383] loop1: detected capacity change from 0 to 32768 [ 218.451907][ T5241] BTRFS info (device loop5): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 218.481367][ T9383] XFS (loop1): Mounting V5 Filesystem a2f82aab-77f8-4286-afd4-a8f747a74bab [ 218.576879][ T9383] XFS (loop1): Ending clean mount [ 218.596540][ T9383] XFS (loop1): Quotacheck needed: Please wait. [ 218.617481][ T5363] usb 5-1: USB disconnect, device number 11 [ 218.739717][ T9383] XFS (loop1): Quotacheck: Done. [ 218.869512][ T5224] XFS (loop1): Unmounting Filesystem a2f82aab-77f8-4286-afd4-a8f747a74bab [ 218.870040][ T9389] loop3: detected capacity change from 0 to 32768 [ 218.953404][ T9389] XFS (loop3): Mounting V5 Filesystem a2f82aab-77f8-4286-afd4-a8f747a74bab [ 219.047835][ T9389] XFS (loop3): Ending clean mount [ 219.091090][ T5363] usb 6-1: new high-speed USB device number 11 using dummy_hcd [ 219.116704][ T9389] XFS (loop3): Quotacheck needed: Please wait. [ 219.190988][ T9389] XFS (loop3): Quotacheck: Done. [ 219.253180][ T5363] usb 6-1: New USB device found, idVendor=8086, idProduct=0110, bcdDevice=bf.ad [ 219.265247][ T5363] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 219.289911][ T5363] usb 6-1: config 0 descriptor?? [ 219.319755][ T5363] gspca_main: spca508-2.14.0 probing 8086:0110 [ 219.370848][ T5240] XFS (loop3): Unmounting Filesystem a2f82aab-77f8-4286-afd4-a8f747a74bab [ 219.389473][ T9432] loop1: detected capacity change from 0 to 1024 [ 219.397104][ T9432] ext4: Unknown parameter 'smackfstransmute' [ 219.524847][ T5363] gspca_spca508: reg_read err -32 [ 219.749024][ T5363] gspca_spca508: reg_read err -71 [ 219.756795][ T9430] loop4: detected capacity change from 0 to 40427 [ 219.765577][ T5363] gspca_spca508: reg_read err -71 [ 219.766993][ T9430] F2FS-fs (loop4): build fault injection attr: rate: 690, type: 0x1fffff [ 219.777654][ T5363] gspca_spca508: reg_read err -71 [ 219.781220][ T9430] F2FS-fs (loop4): Image doesn't support compression [ 219.789057][ T5363] gspca_spca508: reg write: error -71 [ 219.791371][ T9430] F2FS-fs (loop4): Image doesn't support compression [ 219.796644][ T5363] spca508 6-1:0.0: probe with driver spca508 failed with error -71 [ 219.803782][ T9430] F2FS-fs (loop4): build fault injection attr: rate: 0, type: 0x2 [ 219.823085][ T5363] usb 6-1: USB disconnect, device number 11 [ 219.828185][ T9430] F2FS-fs (loop4): invalid crc value [ 219.836446][ T9430] F2FS-fs (loop4): Found nat_bits in checkpoint [ 219.903627][ T9430] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5 [ 219.921422][ T29] audit: type=1800 audit(1727242159.464:106): pid=9430 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.1353" name="file1" dev="loop4" ino=10 res=0 errno=0 [ 219.970474][ T6890] syz-executor: attempt to access beyond end of device [ 219.970474][ T6890] loop4: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 219.984719][ T6890] F2FS-fs (loop4): Stopped filesystem due to reason: 3 [ 220.092820][ T9440] loop1: detected capacity change from 0 to 512 [ 220.111888][ T9440] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.1357: bg 0: block 131: padding at end of block bitmap is not set [ 220.135180][ T9440] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6550: Corrupt filesystem [ 220.144752][ T9440] EXT4-fs (loop1): 1 truncate cleaned up [ 220.152184][ T9440] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 220.217690][ T5224] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 220.540987][ T9452] loop4: detected capacity change from 0 to 64 [ 220.950800][ T9460] netlink: 84 bytes leftover after parsing attributes in process `syz.3.1363'. [ 220.967655][ T9460] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check. [ 221.277141][ T9450] loop5: detected capacity change from 0 to 32768 [ 221.314047][ T9454] loop4: detected capacity change from 0 to 32768 [ 221.326497][ T9454] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop4 (7:4) scanned by syz.4.1362 (9454) [ 221.362001][ T9450] XFS (loop5): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 221.372552][ T9454] BTRFS info (device loop4): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 221.390097][ T9454] BTRFS info (device loop4): using sha256 (sha256-ni) checksum algorithm [ 221.399291][ T9454] BTRFS info (device loop4): using free-space-tree [ 221.497084][ T9450] XFS (loop5): Ending clean mount [ 221.512982][ T9496] loop3: detected capacity change from 0 to 512 [ 221.524111][ T9450] XFS (loop5): Quotacheck needed: Please wait. [ 221.550878][ T9496] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 221.578407][ T9496] ext4 filesystem being mounted at /241/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 221.600457][ T6890] BTRFS info (device loop4): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 221.604214][ T9450] XFS (loop5): Quotacheck: Done. [ 221.733037][ T5241] XFS (loop5): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 221.758772][ T5240] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 222.226669][ T9509] loop1: detected capacity change from 0 to 2048 [ 222.256664][ T9515] netlink: 84 bytes leftover after parsing attributes in process `syz.4.1380'. [ 222.287686][ T9509] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 222.291506][ T9515] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check. [ 222.394659][ T5224] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 222.416467][ T9522] loop5: detected capacity change from 0 to 1024 [ 222.433166][ T9523] netlink: 'syz.3.1384': attribute type 2 has an invalid length. [ 222.558614][ T62] hfsplus: b-tree write err: -5, ino 4 [ 222.944877][ T9529] loop0: detected capacity change from 0 to 32768 [ 223.066587][ T9525] loop4: detected capacity change from 0 to 32768 [ 223.120866][ T9529] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.1386 (9529) [ 223.178927][ T9529] BTRFS info (device loop0): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 223.199084][ T9525] XFS (loop4): Mounting V5 Filesystem a2f82aab-77f8-4286-afd4-a8f747a74bab [ 223.206862][ T9529] BTRFS info (device loop0): using sha256 (sha256-ni) checksum algorithm [ 223.216656][ T9529] BTRFS info (device loop0): using free-space-tree [ 223.277537][ T9525] XFS (loop4): Ending clean mount [ 223.285324][ T9525] XFS (loop4): Quotacheck needed: Please wait. [ 223.367786][ T9525] XFS (loop4): Quotacheck: Done. [ 223.377010][ T9535] loop1: detected capacity change from 0 to 32768 [ 223.448695][ T9535] XFS (loop1): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d [ 223.483867][ T6890] XFS (loop4): Unmounting Filesystem a2f82aab-77f8-4286-afd4-a8f747a74bab [ 223.542351][ T9573] loop3: detected capacity change from 0 to 4096 [ 223.584071][ T9573] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 223.610418][ T9535] XFS (loop1): Ending clean mount [ 223.646852][ T9535] XFS (loop1): Quotacheck needed: Please wait. [ 223.700369][ T9535] XFS (loop1): Quotacheck: Done. [ 223.761218][ T5228] BTRFS info (device loop0): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 223.800854][ T5240] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 223.835187][ T5224] XFS (loop1): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d [ 224.238336][ T9586] loop4: detected capacity change from 0 to 1024 [ 224.394025][ T62] hfsplus: b-tree write err: -5, ino 4 [ 224.565926][ T9602] loop3: detected capacity change from 0 to 256 [ 224.629767][ T9602] FAT-fs (loop3): Directory bread(block 64) failed [ 224.660606][ T9602] FAT-fs (loop3): Directory bread(block 65) failed [ 224.680427][ T9602] FAT-fs (loop3): Directory bread(block 66) failed [ 224.687349][ T9602] FAT-fs (loop3): Directory bread(block 67) failed [ 224.697980][ T9604] loop0: detected capacity change from 0 to 1024 [ 224.716560][ T9602] FAT-fs (loop3): Directory bread(block 68) failed [ 224.737363][ T9602] FAT-fs (loop3): Directory bread(block 69) failed [ 224.762549][ T9602] FAT-fs (loop3): Directory bread(block 70) failed [ 224.795055][ T9602] FAT-fs (loop3): Directory bread(block 71) failed [ 224.830537][ T9602] FAT-fs (loop3): Directory bread(block 72) failed [ 224.837174][ T9602] FAT-fs (loop3): Directory bread(block 73) failed [ 224.863568][ T1064] hfsplus: b-tree write err: -5, ino 4 [ 224.901464][ T9610] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 225.070272][ T5363] usb 2-1: new high-speed USB device number 15 using dummy_hcd [ 225.230074][ T9621] loop0: detected capacity change from 0 to 256 [ 225.242045][ T5363] usb 2-1: config 0 has an invalid descriptor of length 75, skipping remainder of the config [ 225.268791][ T9621] FAT-fs (loop0): Directory bread(block 64) failed [ 225.280452][ T5363] usb 2-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 2 [ 225.295971][ T9621] FAT-fs (loop0): Directory bread(block 65) failed [ 225.313293][ T9621] FAT-fs (loop0): Directory bread(block 66) failed [ 225.316361][ T5363] usb 2-1: New USB device found, idVendor=112a, idProduct=0001, bcdDevice=9e.7f [ 225.333116][ T9623] loop5: detected capacity change from 0 to 64 [ 225.334602][ T9621] FAT-fs (loop0): Directory bread(block 67) failed [ 225.350891][ T5363] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 225.366812][ T9621] FAT-fs (loop0): Directory bread(block 68) failed [ 225.383199][ T5363] usb 2-1: Product: syz [ 225.391301][ T9621] FAT-fs (loop0): Directory bread(block 69) failed [ 225.399536][ T5363] usb 2-1: Manufacturer: syz [ 225.409656][ T5363] usb 2-1: SerialNumber: syz [ 225.419899][ T9621] FAT-fs (loop0): Directory bread(block 70) failed [ 225.426738][ T5363] usb 2-1: config 0 descriptor?? [ 225.442340][ T9621] FAT-fs (loop0): Directory bread(block 71) failed [ 225.449681][ T9621] FAT-fs (loop0): Directory bread(block 72) failed [ 225.464138][ T9621] FAT-fs (loop0): Directory bread(block 73) failed [ 225.675820][ T5363] redrat3 2-1:0.0: Couldn't find all endpoints [ 225.693871][ T25] usb 5-1: new high-speed USB device number 12 using dummy_hcd [ 225.728710][ T5363] usb 2-1: USB disconnect, device number 15 [ 225.789794][ T9633] loop0: detected capacity change from 0 to 1024 [ 225.900363][ T25] usb 5-1: Using ep0 maxpacket: 16 [ 225.921119][ T25] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 225.939183][ T25] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 225.949843][ T11] hfsplus: b-tree write err: -5, ino 4 [ 225.970415][ T25] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 225.990619][ T25] usb 5-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00 [ 226.020314][ T25] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 226.042359][ T25] usb 5-1: config 0 descriptor?? [ 226.152993][ T9618] loop3: detected capacity change from 0 to 32768 [ 226.160791][ T54] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 226.173383][ T54] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 226.184399][ T54] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 226.196706][ T54] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 226.208457][ T54] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 226.219838][ T54] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 226.250316][ T5363] usb 2-1: new high-speed USB device number 16 using dummy_hcd [ 226.270109][ T9618] ocfs2: Mounting device (7,3) on (node local, slot 0) with ordered data mode. [ 226.430449][ T5363] usb 2-1: Using ep0 maxpacket: 16 [ 226.448153][ T5363] usb 2-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xC5, changing to 0x85 [ 226.463794][ T5363] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x85 has invalid maxpacket 31265, setting to 1024 [ 226.475930][ T5363] usb 2-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 1024 [ 226.488198][ T25] microsoft 0003:045E:07DA.0023: unknown main item tag 0x0 [ 226.495660][ T25] microsoft 0003:045E:07DA.0023: ignoring exceeding usage max [ 226.503309][ T5363] usb 2-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0x9A, changing to 0x8A [ 226.520027][ T25] microsoft 0003:045E:07DA.0023: unsupported Resolution Multiplier 0 [ 226.528391][ T5363] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x8A has invalid wMaxPacketSize 0 [ 226.542418][ T25] microsoft 0003:045E:07DA.0023: unsupported Resolution Multiplier 0 [ 226.552700][ T5363] usb 2-1: New USB device found, idVendor=1286, idProduct=2046, bcdDevice=b4.5b [ 226.562198][ T25] microsoft 0003:045E:07DA.0023: No inputs registered, leaving [ 226.570784][ T5363] usb 2-1: New USB device strings: Mfr=1, Product=130, SerialNumber=3 [ 226.582538][ T25] microsoft 0003:045E:07DA.0023: hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.4-1/input0 [ 226.596805][ T5363] usb 2-1: Product: syz [ 226.601114][ T5363] usb 2-1: Manufacturer: syz [ 226.605746][ T5363] usb 2-1: SerialNumber: syz [ 226.611017][ T25] microsoft 0003:045E:07DA.0023: no inputs found [ 226.617385][ T25] microsoft 0003:045E:07DA.0023: could not initialize ff, continuing anyway [ 226.649544][ T5363] usb 2-1: config 0 descriptor?? [ 226.669853][ T5240] ocfs2: Unmounting device (7,3) on (node local) [ 226.711735][ T25] usb 5-1: USB disconnect, device number 12 [ 226.732568][ T5363] usb 2-1: NFC: intf ffff88805b7d7000 id ffffffff8f31b040 [ 226.879688][ T9638] loop0: detected capacity change from 0 to 32768 [ 226.890619][ T9639] chnl_net:caif_netlink_parms(): no params data found [ 226.910722][ T5363] usb 2-1: USB disconnect, device number 16 [ 227.003490][ T9638] XFS (loop0): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 227.114102][ T9661] loop3: detected capacity change from 0 to 1024 [ 227.156372][ T9643] loop5: detected capacity change from 0 to 32768 [ 227.188626][ T9643] XFS (loop5): Mounting V5 Filesystem ed37bf6e-74ea-4e01-afba-5fee274b0f3a [ 227.202903][ T9639] bridge0: port 1(bridge_slave_0) entered blocking state [ 227.210083][ T9639] bridge0: port 1(bridge_slave_0) entered disabled state [ 227.218364][ T9639] bridge_slave_0: entered allmulticast mode [ 227.227020][ T9639] bridge_slave_0: entered promiscuous mode [ 227.236478][ T9639] bridge0: port 2(bridge_slave_1) entered blocking state [ 227.244488][ T9639] bridge0: port 2(bridge_slave_1) entered disabled state [ 227.252141][ T9639] bridge_slave_1: entered allmulticast mode [ 227.259357][ T9639] bridge_slave_1: entered promiscuous mode [ 227.260806][ T9638] XFS (loop0): Ending clean mount [ 227.287193][ T1064] hfsplus: b-tree write err: -5, ino 4 [ 227.335628][ T9639] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 227.346530][ T9643] XFS (loop5): Ending clean mount [ 227.359839][ T9638] XFS (loop0): Quotacheck needed: Please wait. [ 227.367093][ T9639] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 227.453692][ T29] audit: type=1800 audit(1727242166.994:107): pid=9643 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.1422" name="file1" dev="loop5" ino=6150 res=0 errno=0 [ 227.572074][ T9638] XFS (loop0): Quotacheck: Done. [ 227.601316][ T5241] XFS (loop5): Unmounting Filesystem ed37bf6e-74ea-4e01-afba-5fee274b0f3a [ 227.647677][ T9639] team0: Port device team_slave_0 added [ 227.666230][ T9639] team0: Port device team_slave_1 added [ 227.722620][ T9683] loop1: detected capacity change from 0 to 256 [ 227.737892][ T5228] XFS (loop0): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 227.784895][ T9683] FAT-fs (loop1): Directory bread(block 64) failed [ 227.810448][ T9683] FAT-fs (loop1): Directory bread(block 65) failed [ 227.840092][ T9683] FAT-fs (loop1): Directory bread(block 66) failed [ 227.849369][ T9683] FAT-fs (loop1): Directory bread(block 67) failed [ 227.873589][ T9683] FAT-fs (loop1): Directory bread(block 68) failed [ 227.895544][ T9683] FAT-fs (loop1): Directory bread(block 69) failed [ 227.930535][ T9683] FAT-fs (loop1): Directory bread(block 70) failed [ 227.931926][ T9639] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 227.946856][ T9639] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 227.964314][ T9683] FAT-fs (loop1): Directory bread(block 71) failed [ 228.060727][ T9683] FAT-fs (loop1): Directory bread(block 72) failed [ 228.067340][ T9683] FAT-fs (loop1): Directory bread(block 73) failed [ 228.080824][ T9639] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 228.289691][ T54] Bluetooth: hci6: command tx timeout [ 228.401957][ T9639] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 228.409261][ T9639] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 228.463716][ T9639] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 228.595683][ T9706] loop5: detected capacity change from 0 to 512 [ 228.645828][ T9706] EXT4-fs error (device loop5): ext4_get_branch:178: inode #11: block 4294967295: comm syz.5.1442: invalid block [ 228.688143][ T9706] EXT4-fs error (device loop5): ext4_free_branches:1023: inode #11: comm syz.5.1442: invalid indirect mapped block 4294967295 (level 1) [ 228.746358][ T9639] hsr_slave_0: entered promiscuous mode [ 228.783478][ T9639] hsr_slave_1: entered promiscuous mode [ 228.812146][ T9639] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 228.818370][ T9706] EXT4-fs error (device loop5): ext4_free_branches:1023: inode #11: comm syz.5.1442: invalid indirect mapped block 4294967295 (level 1) [ 228.819720][ T9639] Cannot create hsr debugfs directory [ 228.889899][ T9706] EXT4-fs (loop5): 2 truncates cleaned up [ 228.901316][ T9706] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 228.927851][ T9706] EXT4-fs error (device loop5): ext4_validate_block_bitmap:432: comm syz.5.1442: bg 0: block 5: invalid block bitmap [ 229.019979][ T9706] EXT4-fs error (device loop5) in ext4_mb_clear_bb:6550: Corrupt filesystem [ 229.105240][ T9695] loop0: detected capacity change from 0 to 40427 [ 229.161903][ T9702] loop4: detected capacity change from 0 to 32768 [ 229.175193][ T9695] F2FS-fs (loop0): build fault injection attr: rate: 690, type: 0x1fffff [ 229.183849][ T9695] F2FS-fs (loop0): Image doesn't support compression [ 229.191148][ T9695] F2FS-fs (loop0): Image doesn't support compression [ 229.198043][ T9695] F2FS-fs (loop0): build fault injection attr: rate: 0, type: 0x2 [ 229.211293][ T9695] F2FS-fs (loop0): invalid crc value [ 229.219202][ T5241] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 229.232219][ T9695] F2FS-fs (loop0): Found nat_bits in checkpoint [ 229.259583][ T9702] XFS (loop4): Mounting V5 Filesystem ed37bf6e-74ea-4e01-afba-5fee274b0f3a [ 229.304616][ T9695] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5 [ 229.402836][ T29] audit: type=1800 audit(1727242168.944:108): pid=9695 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.1433" name="file1" dev="loop0" ino=10 res=0 errno=0 [ 229.442436][ T9730] loop1: detected capacity change from 0 to 1024 [ 229.498287][ T5228] syz-executor: attempt to access beyond end of device [ 229.498287][ T5228] loop0: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 229.520593][ T5228] F2FS-fs (loop0): Stopped filesystem due to reason: 3 [ 229.557959][ T9702] XFS (loop4): Ending clean mount [ 229.690598][ T29] audit: type=1800 audit(1727242169.224:109): pid=9702 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.1439" name="file1" dev="loop4" ino=6150 res=0 errno=0 [ 229.803917][ T6890] XFS (loop4): Unmounting Filesystem ed37bf6e-74ea-4e01-afba-5fee274b0f3a [ 229.908385][ T1064] hfsplus: b-tree write err: -5, ino 4 [ 229.935960][ T9639] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 230.132826][ T9731] loop5: detected capacity change from 0 to 32768 [ 230.336664][ T9731] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz" [ 230.349433][ T54] Bluetooth: hci6: command tx timeout [ 230.382292][ T9639] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 230.450775][ T9731] gfs2: fsid=syz:syz: Now mounting FS (format 1801)... [ 230.537092][ T9731] gfs2: fsid=syz:syz.0: journal 0 mapped with 16 extents in 0ms [ 230.598329][ T9752] loop4: detected capacity change from 0 to 256 [ 230.622811][ T5363] gfs2: fsid=syz:syz.0: jid=0, already locked for use [ 230.632778][ T5363] gfs2: fsid=syz:syz.0: jid=0: Looking at journal... [ 230.722691][ T5363] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 89ms [ 230.730532][ T5363] gfs2: fsid=syz:syz.0: jid=0: Done [ 230.738461][ T9731] gfs2: fsid=syz:syz.0: first mount done, others may mount [ 230.780416][ T9731] gfs2: fsid=syz:syz.0: gfs2_check_dirent: gfs2_dirent too small (not first in block) [ 230.793661][ T9731] gfs2: fsid=syz:syz.0: fatal: filesystem consistency error - inode = 12 2341, function = gfs2_dirent_scan, file = fs/gfs2/dir.c, line = 589 [ 230.813726][ T9639] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 230.837322][ T9731] gfs2: fsid=syz:syz.0: G: s:SH n:2/925 f:aqob t:SH d:EX/0 a:0 v:0 r:2 m:20 p:1 [ 230.860533][ T9731] gfs2: fsid=syz:syz.0: H: s:SH f:H e:0 p:9731 [syz.5.1445] __gfs2_lookup+0xa4/0x280 [ 230.872541][ T9731] gfs2: fsid=syz:syz.0: I: n:12/2341 t:4 f:0x00 d:0x00000001 s:3864 p:0 [ 230.875738][ T9752] FAT-fs (loop4): Directory bread(block 64) failed [ 230.881275][ T9731] gfs2: fsid=syz:syz.0: about to withdraw this file system [ 230.897453][ T9731] gfs2: fsid=syz:syz.0: Journal recovery skipped for jid 0 until next mount. [ 230.907758][ T9731] gfs2: fsid=syz:syz.0: Glock dequeues delayed: 0 [ 230.912051][ T9752] FAT-fs (loop4): Directory bread(block 65) failed [ 230.916097][ T9731] gfs2: fsid=syz:syz.0: File system withdrawn [ 230.927516][ T9731] CPU: 1 UID: 0 PID: 9731 Comm: syz.5.1445 Not tainted 6.11.0-syzkaller-10547-g684a64bf32b6 #0 [ 230.937961][ T9731] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024 [ 230.948036][ T9731] Call Trace: [ 230.951322][ T9731] [ 230.954256][ T9731] dump_stack_lvl+0x241/0x360 [ 230.958956][ T9731] ? __pfx_dump_stack_lvl+0x10/0x10 [ 230.964175][ T9731] ? __pfx__printk+0x10/0x10 [ 230.968778][ T9731] ? kobject_uevent_env+0x54d/0x8e0 [ 230.974018][ T9731] gfs2_withdraw+0xefa/0x1460 [ 230.978722][ T9731] ? __pfx_gfs2_withdraw+0x10/0x10 [ 230.983843][ T9731] ? gfs2_dirent_scan+0x27c/0x670 [ 230.988876][ T9731] ? __pfx__printk+0x10/0x10 [ 230.993484][ T9731] ? srso_alias_return_thunk+0x5/0xfbef5 [ 230.999140][ T9731] ? gfs2_consist_inode_i+0xf5/0x110 [ 231.004439][ T9731] gfs2_dirent_scan+0x52b/0x670 [ 231.009346][ T9731] ? gfs2_permission+0x275/0x450 [ 231.014329][ T9731] ? __pfx_gfs2_dirent_find+0x10/0x10 [ 231.019734][ T9731] gfs2_dirent_search+0x30e/0x8c0 [ 231.024799][ T9731] ? srso_alias_return_thunk+0x5/0xfbef5 [ 231.030470][ T9731] ? __pfx_gfs2_dirent_find+0x10/0x10 [ 231.035887][ T9731] ? srso_alias_return_thunk+0x5/0xfbef5 [ 231.041554][ T9731] ? generic_permission+0x1e0/0x550 [ 231.046777][ T9731] ? __pfx_gfs2_dirent_search+0x10/0x10 [ 231.052345][ T9731] ? srso_alias_return_thunk+0x5/0xfbef5 [ 231.058005][ T9731] ? gfs2_permission+0x37c/0x450 [ 231.062966][ T9731] ? __pfx___might_resched+0x10/0x10 [ 231.068284][ T9731] gfs2_dir_search+0xb2/0x2f0 [ 231.072990][ T9731] ? __pfx_gfs2_dir_search+0x10/0x10 [ 231.078294][ T9731] ? inode_go_held+0xea/0x200 [ 231.082993][ T9731] ? srso_alias_return_thunk+0x5/0xfbef5 [ 231.088645][ T9731] ? gfs2_glock_wait+0x21a/0x2b0 [ 231.093610][ T9731] gfs2_lookupi+0x461/0x5e0 [ 231.098139][ T9731] ? __pfx_gfs2_lookupi+0x10/0x10 [ 231.103195][ T9731] ? __gfs2_lookup+0xa4/0x280 [ 231.107890][ T9731] ? __pfx_lock_acquire+0x10/0x10 [ 231.113033][ T9731] __gfs2_lookup+0xa4/0x280 [ 231.117577][ T9731] ? __pfx___gfs2_lookup+0x10/0x10 [ 231.122724][ T9731] ? _raw_spin_unlock+0x28/0x50 [ 231.127588][ T9731] ? srso_alias_return_thunk+0x5/0xfbef5 [ 231.133247][ T9731] ? d_alloc+0x142/0x190 [ 231.137522][ T9731] lookup_one_qstr_excl+0x121/0x260 [ 231.142764][ T9731] filename_create+0x297/0x540 [ 231.147566][ T9731] ? __pfx_filename_create+0x10/0x10 [ 231.152970][ T9731] ? __might_fault+0xaa/0x120 [ 231.157680][ T9731] ? __pfx_lock_release+0x10/0x10 [ 231.162758][ T9731] do_mkdirat+0xbd/0x3a0 [ 231.167030][ T9731] ? __might_fault+0xaa/0x120 [ 231.171783][ T9731] ? __pfx_do_mkdirat+0x10/0x10 [ 231.176660][ T9731] ? strncpy_from_user+0x131/0x250 [ 231.181797][ T9731] ? srso_alias_return_thunk+0x5/0xfbef5 [ 231.187447][ T9731] ? getname_flags+0x1e3/0x540 [ 231.192231][ T9731] __x64_sys_mkdir+0x6c/0x80 [ 231.196850][ T9731] do_syscall_64+0xf3/0x230 [ 231.201379][ T9731] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 231.207294][ T9731] RIP: 0033:0x7f889377def9 [ 231.211721][ T9731] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 231.231359][ T9731] RSP: 002b:00007f88944c3038 EFLAGS: 00000246 ORIG_RAX: 0000000000000053 [ 231.239799][ T9731] RAX: ffffffffffffffda RBX: 00007f8893935f80 RCX: 00007f889377def9 [ 231.247787][ T9731] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000020002200 [ 231.255779][ T9731] RBP: 00007f88937f0b76 R08: 0000000000000000 R09: 0000000000000000 [ 231.263765][ T9731] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 231.271749][ T9731] R13: 0000000000000000 R14: 00007f8893935f80 R15: 00007ffcc90cbfd8 [ 231.279755][ T9731] [ 231.302138][ T9752] FAT-fs (loop4): Directory bread(block 66) failed [ 231.308739][ T9752] FAT-fs (loop4): Directory bread(block 67) failed [ 231.332806][ T9752] FAT-fs (loop4): Directory bread(block 68) failed [ 231.339412][ T9752] FAT-fs (loop4): Directory bread(block 69) failed [ 231.354650][ T9752] FAT-fs (loop4): Directory bread(block 70) failed [ 231.366398][ T9752] FAT-fs (loop4): Directory bread(block 71) failed [ 231.366496][ T9639] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 231.375537][ T9752] FAT-fs (loop4): Directory bread(block 72) failed [ 231.405260][ T9752] FAT-fs (loop4): Directory bread(block 73) failed [ 231.457347][ T9743] loop1: detected capacity change from 0 to 32768 [ 231.595346][ T9639] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 231.605334][ T9743] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode. [ 231.644539][ T9639] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 231.761048][ T9639] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 231.884208][ T9639] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 232.003982][ T9639] 8021q: adding VLAN 0 to HW filter on device bond0 [ 232.015754][ T5224] ocfs2: Unmounting device (7,1) on (node local) [ 232.025308][ T9639] 8021q: adding VLAN 0 to HW filter on device team0 [ 232.061414][ T12] bridge0: port 1(bridge_slave_0) entered blocking state [ 232.068723][ T12] bridge0: port 1(bridge_slave_0) entered forwarding state [ 232.113640][ T9771] loop3: detected capacity change from 0 to 256 [ 232.137482][ T9768] loop5: detected capacity change from 0 to 4096 [ 232.164920][ T1064] bridge0: port 2(bridge_slave_1) entered blocking state [ 232.172159][ T1064] bridge0: port 2(bridge_slave_1) entered forwarding state [ 232.265295][ T9768] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 232.420794][ T54] Bluetooth: hci6: command tx timeout [ 232.509621][ T5241] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 232.778379][ T9788] netlink: 92 bytes leftover after parsing attributes in process `syz.4.1461'. [ 232.994002][ T9639] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 233.037192][ T9639] veth0_vlan: entered promiscuous mode [ 233.093145][ T9639] veth1_vlan: entered promiscuous mode [ 233.121793][ T9639] veth0_macvtap: entered promiscuous mode [ 233.133934][ T9639] veth1_macvtap: entered promiscuous mode [ 233.152805][ T9639] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 233.163622][ T9639] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 233.174438][ T9639] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 233.185896][ T9639] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 233.196059][ T9639] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 233.209387][ T9794] loop5: detected capacity change from 0 to 128 [ 233.210438][ T9639] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 233.226006][ T9639] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 233.227111][ T9794] EXT4-fs: Ignoring removed mblk_io_submit option [ 233.236776][ T9639] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 233.257290][ T9639] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 233.268593][ T9639] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 233.279223][ T9639] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 233.289704][ T9639] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 233.296972][ T9794] EXT4-fs (loop5): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 233.301374][ T9639] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 233.364849][ T9639] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 233.376901][ T9639] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 233.387435][ T9639] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 233.390339][ T931] usb 2-1: new high-speed USB device number 17 using dummy_hcd [ 233.397920][ T9639] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 233.397941][ T9639] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 233.426064][ T9639] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 233.436058][ T9639] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 233.446663][ T9639] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 233.456592][ T9639] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 233.467548][ T9639] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 233.479064][ T9639] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 233.490370][ T9639] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 233.501821][ T9639] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 233.513214][ T9639] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 233.522024][ T9639] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 233.530845][ T9639] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 233.539584][ T9639] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 233.564653][ T9794] ext4 filesystem being mounted at /250/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 233.570808][ T931] usb 2-1: Using ep0 maxpacket: 16 [ 233.628281][ T9779] loop3: detected capacity change from 0 to 32768 [ 233.693313][ T931] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x85 has invalid wMaxPacketSize 0 [ 233.746944][ T5241] EXT4-fs (loop5): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 233.792332][ T931] usb 2-1: New USB device found, idVendor=2040, idProduct=0264, bcdDevice=4e.d1 [ 233.801235][ T9779] XFS (loop3): Mounting V5 Filesystem ed37bf6e-74ea-4e01-afba-5fee274b0f3a [ 233.801829][ T931] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 233.825054][ T931] usb 2-1: Product: syz [ 233.829253][ T931] usb 2-1: Manufacturer: syz [ 233.834028][ T931] usb 2-1: SerialNumber: syz [ 233.852367][ T931] usb 2-1: config 0 descriptor?? [ 233.941195][ T9814] openvswitch: netlink: Duplicate or invalid key (type 0). [ 233.966754][ T9814] openvswitch: netlink: Actions may not be safe on all matching packets [ 233.977690][ T11] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 233.990299][ T11] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 234.042969][ T9822] hugetlbfs: Bad value '%' for mount option 'size' [ 234.042969][ T9822] [ 234.074494][ T1048] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 234.087709][ T1048] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 234.099798][ T9779] XFS (loop3): Ending clean mount [ 234.148478][ T29] audit: type=1800 audit(1727242173.684:110): pid=9779 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.1460" name="file1" dev="loop3" ino=6150 res=0 errno=0 [ 234.262396][ T5288] usb 2-1: USB disconnect, device number 17 [ 234.284625][ T5240] XFS (loop3): Unmounting Filesystem ed37bf6e-74ea-4e01-afba-5fee274b0f3a [ 234.523490][ T54] Bluetooth: hci6: command tx timeout [ 234.628314][ T9841] sp0: Synchronizing with TNC [ 235.449929][ T9887] netlink: 209852 bytes leftover after parsing attributes in process `syz.2.1503'. [ 235.468794][ T9887] openvswitch: netlink: VXLAN extension message has 13 unknown bytes. [ 235.738158][ T9908] netlink: 32 bytes leftover after parsing attributes in process `syz.1.1511'. [ 235.921154][ T5363] usb 6-1: new high-speed USB device number 12 using dummy_hcd [ 235.931505][ T5291] usb 4-1: new high-speed USB device number 12 using dummy_hcd [ 236.024079][ T9917] loop2: detected capacity change from 0 to 4096 [ 236.067610][ T9925] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 236.100549][ T5291] usb 4-1: Using ep0 maxpacket: 8 [ 236.108189][ T5363] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 236.121199][ T5363] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 236.146667][ T5291] usb 4-1: New USB device found, idVendor=2770, idProduct=930c, bcdDevice=8d.6a [ 236.160696][ T5291] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 236.191015][ T5363] usb 6-1: New USB device found, idVendor=04b4, idProduct=de61, bcdDevice= 0.00 [ 236.210388][ T5291] usb 4-1: Product: syz [ 236.214607][ T5291] usb 4-1: Manufacturer: syz [ 236.219226][ T5291] usb 4-1: SerialNumber: syz [ 236.228535][ T5363] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 236.251095][ T5291] usb 4-1: config 0 descriptor?? [ 236.261107][ T5363] usb 6-1: config 0 descriptor?? [ 236.273324][ T5291] gspca_main: sq930x-2.14.0 probing 2770:930c [ 236.342356][ T9933] loop2: detected capacity change from 0 to 64 [ 236.526039][ T9938] loop1: detected capacity change from 0 to 2048 [ 236.601932][ T9938] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 236.683526][ T5291] gspca_sq930x: ucbus_write failed -71 [ 236.694777][ T5363] cypress 0003:04B4:DE61.0024: item fetching failed at offset 5/7 [ 236.704043][ T5363] cypress 0003:04B4:DE61.0024: parse failed [ 236.708592][ T5224] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 236.710756][ T5363] cypress 0003:04B4:DE61.0024: probe with driver cypress failed with error -22 [ 236.900888][ T5291] gspca_sq930x: Sensor ov9630 not yet treated [ 236.907353][ T5291] sq930x 4-1:0.0: probe with driver sq930x failed with error -22 [ 236.917363][ T931] usb 6-1: USB disconnect, device number 12 [ 236.936008][ T5291] usb 4-1: USB disconnect, device number 12 [ 237.277031][ T9971] netlink: 'syz.3.1540': attribute type 1 has an invalid length. [ 237.404291][ T9980] loop2: detected capacity change from 0 to 256 [ 237.406950][ T9981] loop4: detected capacity change from 0 to 256 [ 237.444748][ T9981] exFAT-fs (loop4): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x3963664b, utbl_chksum : 0xe619d30d) [ 237.553020][ T9979] loop3: detected capacity change from 0 to 4096 [ 237.580675][ T9976] loop1: detected capacity change from 0 to 4096 [ 237.617352][ T9979] NILFS (loop3): invalid segment: Checksum error in segment payload [ 237.647376][ T9979] NILFS (loop3): trying rollback from an earlier position [ 237.678659][ T9979] NILFS (loop3): recovery complete [ 237.721821][ T9989] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 237.903888][ T9994] dvmrp0: entered allmulticast mode [ 237.931609][ T9998] loop3: detected capacity change from 0 to 256 [ 237.936927][ T9990] dvmrp0: left allmulticast mode [ 237.954534][ T9998] exFAT-fs (loop3): failed to load upcase table (idx : 0x00017f3e, chksum : 0x84cb8d72, utbl_chksum : 0xe619d30d) [ 238.024757][ T54] Bluetooth: hci1: Controller not accepting commands anymore: ncmd = 0 [ 238.036113][ T54] Bluetooth: hci1: Injecting HCI hardware error event [ 238.046973][ T54] Bluetooth: hci1: hardware error 0x00 [ 238.973873][T10007] loop3: detected capacity change from 0 to 32768 [ 239.028832][T10007] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz" [ 239.050443][T10007] gfs2: fsid=syz:syz: Now mounting FS (format 1801)... [ 239.083904][T10007] gfs2: fsid=syz:syz.0: journal 0 mapped with 16 extents in 2ms [ 239.117045][ T934] gfs2: fsid=syz:syz.0: jid=0, already locked for use [ 239.124063][ T934] gfs2: fsid=syz:syz.0: jid=0: Looking at journal... [ 239.227220][T10014] loop2: detected capacity change from 0 to 32768 [ 239.277653][ T934] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 153ms [ 239.308805][ T934] gfs2: fsid=syz:syz.0: jid=0: Done [ 239.324051][T10007] gfs2: fsid=syz:syz.0: first mount done, others may mount [ 239.655342][ T5331] usb 6-1: new high-speed USB device number 13 using dummy_hcd [ 239.796651][T10032] loop4: detected capacity change from 0 to 32768 [ 239.840417][T10032] BTRFS: device fsid 3d39d0ba-bdae-447e-827b-b091e1a68885 devid 1 transid 8 /dev/loop4 (7:4) scanned by syz.4.1565 (10032) [ 239.922932][T10032] BTRFS info (device loop4): first mount of filesystem 3d39d0ba-bdae-447e-827b-b091e1a68885 [ 239.930692][ T5331] usb 6-1: Using ep0 maxpacket: 8 [ 239.933765][T10032] BTRFS info (device loop4): using crc32c (crc32c-intel) checksum algorithm [ 239.952310][ T5331] usb 6-1: config 0 has an invalid descriptor of length 1, skipping remainder of the config [ 239.958193][T10032] BTRFS info (device loop4): using free-space-tree [ 239.974800][ T5331] usb 6-1: New USB device found, idVendor=05ac, idProduct=8501, bcdDevice=20.9d [ 239.995259][ T5331] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=105 [ 240.028696][ T5331] usb 6-1: SerialNumber: syz [ 240.051938][ T5331] usb 6-1: config 0 descriptor?? [ 240.181164][ T54] Bluetooth: hci1: Opcode 0x0c03 failed: -110 [ 240.249591][ T6890] BTRFS info (device loop4): last unmount of filesystem 3d39d0ba-bdae-447e-827b-b091e1a68885 [ 240.265184][ T5331] usb 6-1: Found UVC 0.00 device (05ac:8501) [ 240.272811][ T5331] usb 6-1: No valid video chain found. [ 240.285006][ T5331] usb 6-1: USB disconnect, device number 13 [ 240.937995][T10091] loop4: detected capacity change from 0 to 64 [ 241.018985][T10091] hfs: filesystem was not cleanly unmounted, running fsck.hfs is recommended. mounting read-only. [ 241.172063][T10054] loop3: detected capacity change from 0 to 32768 [ 241.173214][T10096] sp0: Synchronizing with TNC [ 241.286793][T10054] XFS (loop3): Mounting V5 Filesystem ed37bf6e-74ea-4e01-afba-5fee274b0f3a [ 241.519054][T10054] XFS (loop3): Ending clean mount [ 241.526616][T10054] XFS (loop3): Quotacheck needed: Please wait. [ 241.671481][T10054] XFS (loop3): Quotacheck: Done. [ 241.810745][ T5240] XFS (loop3): Unmounting Filesystem ed37bf6e-74ea-4e01-afba-5fee274b0f3a [ 241.845538][T10123] loop1: detected capacity change from 0 to 64 [ 242.048120][T10094] loop2: detected capacity change from 0 to 32768 [ 242.149792][T10129] Bluetooth: MGMT ver 1.23 [ 242.163278][T10094] ocfs2: Mounting device (7,2) on (node local, slot 0) with ordered data mode. [ 242.222898][T10094] (syz.2.1587,10094,1):ocfs2_check_dir_entry:325 ERROR: bad entry in directory #65: rec_len is smaller than minimal - offset=16, inode=65, rec_len=12, name_len=0 [ 242.228936][T10132] openvswitch: netlink: Actions may not be safe on all matching packets [ 242.241714][T10094] (syz.2.1587,10094,1):__ocfs2_delete_entry:1149 ERROR: status = -5 [ 242.256999][T10094] (syz.2.1587,10094,1):ocfs2_unlink:989 ERROR: status = -5 [ 242.264953][T10094] (syz.2.1587,10094,1):ocfs2_unlink:1042 ERROR: status = -5 [ 242.339957][ T9639] ocfs2: Unmounting device (7,2) on (node local) [ 242.636455][T10148] loop2: detected capacity change from 0 to 736 [ 243.468391][T10176] loop2: detected capacity change from 0 to 1024 [ 243.584732][T10178] loop3: detected capacity change from 0 to 256 [ 243.693401][ T1048] hfsplus: b-tree write err: -5, ino 4 [ 243.733536][T10178] FAT-fs (loop3): Directory bread(block 64) failed [ 243.740346][T10178] FAT-fs (loop3): Directory bread(block 65) failed [ 243.747015][T10178] FAT-fs (loop3): Directory bread(block 66) failed [ 243.753986][T10178] FAT-fs (loop3): Directory bread(block 67) failed [ 243.760718][T10178] FAT-fs (loop3): Directory bread(block 68) failed [ 243.767338][T10178] FAT-fs (loop3): Directory bread(block 69) failed [ 243.774229][T10178] FAT-fs (loop3): Directory bread(block 70) failed [ 243.781378][T10178] FAT-fs (loop3): Directory bread(block 71) failed [ 243.788038][T10178] FAT-fs (loop3): Directory bread(block 72) failed [ 243.794874][T10178] FAT-fs (loop3): Directory bread(block 73) failed [ 243.799939][T10161] loop1: detected capacity change from 0 to 32768 [ 243.826227][T10161] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop1 (7:1) scanned by syz.1.1614 (10161) [ 243.879385][T10161] BTRFS info (device loop1): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 243.889999][T10161] BTRFS info (device loop1): using crc32c (crc32c-intel) checksum algorithm [ 243.899138][T10161] BTRFS info (device loop1): using free-space-tree [ 244.350910][T10215] IPVS: ovf: SCTP 127.0.0.1:0 - no destination available [ 244.354529][ T5224] BTRFS info (device loop1): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 244.410311][ T934] usb 4-1: new high-speed USB device number 13 using dummy_hcd [ 244.590564][ T934] usb 4-1: Using ep0 maxpacket: 16 [ 244.605224][ T934] usb 4-1: config 0 has an invalid interface number: 248 but max is 0 [ 244.629258][ T934] usb 4-1: config 0 has no interface number 0 [ 244.660256][ T934] usb 4-1: config 0 interface 248 altsetting 255 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 244.708131][ T934] usb 4-1: config 0 interface 248 altsetting 255 endpoint 0x81 has invalid wMaxPacketSize 0 [ 244.740747][ T934] usb 4-1: config 0 interface 248 altsetting 255 has 1 endpoint descriptor, different from the interface descriptor's value: 4 [ 244.792083][ T934] usb 4-1: config 0 interface 248 has no altsetting 0 [ 244.820819][ T934] usb 4-1: New USB device found, idVendor=046d, idProduct=c24f, bcdDevice= 0.00 [ 244.856996][ T934] usb 4-1: New USB device strings: Mfr=4, Product=0, SerialNumber=0 [ 244.890234][ T934] usb 4-1: Manufacturer: syz [ 244.907238][ T934] usb 4-1: config 0 descriptor?? [ 245.197413][T10240] loop1: detected capacity change from 0 to 256 [ 245.225378][T10240] exFAT-fs (loop1): failed to load upcase table (idx : 0x00017f3e, chksum : 0x84cb8d72, utbl_chksum : 0xe619d30d) [ 245.462724][T10217] loop4: detected capacity change from 0 to 32768 [ 245.490989][T10247] CUSE: unknown device info "" [ 245.495912][T10247] CUSE: unknown device info "appraise_type" [ 245.512372][T10247] CUSE: DEVNAME unspecified [ 245.565993][ T934] usb 4-1: USB disconnect, device number 13 [ 245.583128][T10217] ocfs2: Mounting device (7,4) on (node local, slot 0) with ordered data mode. [ 245.725783][T10262] loop5: detected capacity change from 0 to 16 [ 245.752849][T10262] erofs: (device loop5): mounted with root inode @ nid 36. [ 245.803762][T10262] syz.5.1652: attempt to access beyond end of device [ 245.803762][T10262] loop5: rw=0, sector=8, nr_sectors = 32 limit=16 [ 245.825880][ T6890] ocfs2: Unmounting device (7,4) on (node local) [ 245.835828][T10262] erofs: (device loop5): z_erofs_read_folio: read error -5 @ 8200 of nid 36 [ 245.898669][T10267] syz.5.1652: attempt to access beyond end of device [ 245.898669][T10267] loop5: rw=0, sector=8, nr_sectors = 32 limit=16 [ 245.938282][T10267] erofs: (device loop5): z_erofs_read_folio: read error -5 @ 8200 of nid 36 [ 246.006602][T10273] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1658'. [ 246.908413][T10271] loop2: detected capacity change from 0 to 32768 [ 247.123273][T10271] XFS (loop2): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 247.167422][T10277] loop1: detected capacity change from 0 to 32768 [ 247.201833][T10330] loop3: detected capacity change from 0 to 16 [ 247.212536][T10330] erofs: (device loop3): mounted with root inode @ nid 36. [ 247.241404][T10330] erofs: (device loop3): z_erofs_readahead: readahead error at folio 2 @ nid 89 [ 247.256797][T10277] ERROR: (device loop1): xtTruncate_pmap: XT_GETPAGE: xtree page corrupt [ 247.256797][T10277] [ 247.300606][T10330] erofs: (device loop3): z_erofs_readahead: readahead error at folio 0 @ nid 89 [ 247.312383][T10330] erofs: (device loop3): z_erofs_read_folio: read error -117 @ 0 of nid 89 [ 247.336235][T10277] ERROR: (device loop1): remounting filesystem as read-only [ 247.350531][ T29] audit: type=1800 audit(1727242186.891:111): pid=10330 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.1680" name="file2" dev="loop3" ino=89 res=0 errno=0 [ 247.360782][T10277] ERROR: (device loop1): jfs_rename: [ 247.360782][T10277] [ 247.403066][T10271] XFS (loop2): Ending clean mount [ 247.409225][T10332] [U] [ 247.411243][T10335] vhci_hcd: invalid port number 0 [ 247.532707][ T9639] XFS (loop2): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 247.547492][ T5224] ERROR: (device loop1): xtTruncate: XT_GETPAGE: xtree page corrupt [ 247.547492][ T5224] [ 247.787908][ T29] audit: type=1326 audit(1727242187.321:112): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10345 comm="syz.2.1685" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdc9077def9 code=0x7ffc0000 [ 247.844103][ T29] audit: type=1326 audit(1727242187.351:113): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10345 comm="syz.2.1685" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7fdc9077def9 code=0x7ffc0000 [ 247.865023][T10347] loop2: detected capacity change from 0 to 512 [ 247.904030][T10347] EXT4-fs: Ignoring removed mblk_io_submit option [ 247.952226][T10347] EXT4-fs error (device loop2): ext4_xattr_ibody_find:2240: inode #15: comm syz.2.1685: corrupted in-inode xattr: invalid ea_ino [ 247.979358][T10347] EXT4-fs error (device loop2): ext4_orphan_get:1393: comm syz.2.1685: couldn't read orphan inode 15 (err -117) [ 247.993884][T10347] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 248.013604][ T29] audit: type=1326 audit(1727242187.371:114): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10345 comm="syz.2.1685" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7fdc9077df33 code=0x7ffc0000 [ 248.070291][ T29] audit: type=1326 audit(1727242187.381:115): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10345 comm="syz.2.1685" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7fdc9077c9df code=0x7ffc0000 [ 248.110285][ T29] audit: type=1326 audit(1727242187.391:116): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10345 comm="syz.2.1685" exe="/root/syz-executor" sig=0 arch=c000003e syscall=11 compat=0 ip=0x7fdc9077df87 code=0x7ffc0000 [ 248.160420][ T29] audit: type=1326 audit(1727242187.401:117): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10345 comm="syz.2.1685" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fdc9077c890 code=0x7ffc0000 [ 248.198857][ T9639] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 248.209239][ T29] audit: type=1326 audit(1727242187.401:118): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10345 comm="syz.2.1685" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fdc9077dafb code=0x7ffc0000 [ 248.254997][ T29] audit: type=1326 audit(1727242187.441:119): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10345 comm="syz.2.1685" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7fdc9077cb8a code=0x7ffc0000 [ 248.297843][ T29] audit: type=1326 audit(1727242187.441:120): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10345 comm="syz.2.1685" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7fdc9077cb8a code=0x7ffc0000 [ 248.578378][T10379] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1701'. [ 248.926940][T10396] loop3: detected capacity change from 0 to 64 [ 249.030529][ T931] usb 6-1: new high-speed USB device number 14 using dummy_hcd [ 249.210981][ T931] usb 6-1: Using ep0 maxpacket: 16 [ 249.219734][ T931] usb 6-1: config 0 interface 0 altsetting 1 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 249.246805][ T931] usb 6-1: config 0 interface 0 altsetting 1 endpoint 0x81 has invalid wMaxPacketSize 0 [ 249.257698][T10407] loop4: detected capacity change from 0 to 512 [ 249.264517][ T931] usb 6-1: config 0 interface 0 altsetting 1 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 249.280944][T10407] EXT4-fs: Ignoring removed bh option [ 249.288277][ T931] usb 6-1: config 0 interface 0 has no altsetting 0 [ 249.297514][ T931] usb 6-1: New USB device found, idVendor=045e, idProduct=05da, bcdDevice= 0.00 [ 249.308115][ T931] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 249.329581][T10407] EXT4-fs error (device loop4): __ext4_iget:4952: inode #15: block 1803188595: comm syz.4.1716: invalid block [ 249.361037][T10407] EXT4-fs error (device loop4): ext4_orphan_get:1393: comm syz.4.1716: couldn't read orphan inode 15 (err -117) [ 249.377444][ T931] usb 6-1: config 0 descriptor?? [ 249.387581][T10407] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 249.583881][ T6890] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 249.610313][ T5363] usb 4-1: new high-speed USB device number 14 using dummy_hcd [ 249.734135][T10426] loop4: detected capacity change from 0 to 64 [ 249.792351][ T5363] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 249.811931][ T931] hid (null): no more usage index available [ 249.828719][ T931] hid-generic 0003:045E:05DA.0026: ignoring exceeding usage max [ 249.840317][ T5363] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 249.847224][ T931] hid-generic 0003:045E:05DA.0026: ignoring exceeding usage max [ 249.850086][ T5363] usb 4-1: New USB device found, idVendor=048d, idProduct=ce50, bcdDevice= 0.00 [ 249.860607][ T5363] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 249.903156][ T5363] usb 4-1: config 0 descriptor?? [ 249.920319][ T931] hid-generic 0003:045E:05DA.0026: no more usage index available [ 249.948860][ T931] hid-generic 0003:045E:05DA.0026: item 0 4 2 2 parsing failed [ 250.001439][ T931] hid-generic 0003:045E:05DA.0026: probe with driver hid-generic failed with error -22 [ 250.078306][ T931] usb 6-1: USB disconnect, device number 14 [ 250.307106][T10442] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1732'. [ 250.388495][ T5363] asus 0003:048D:CE50.0027: unknown main item tag 0xd [ 250.400493][ T5363] asus 0003:048D:CE50.0027: hidraw0: USB HID v0.00 Device [HID 048d:ce50] on usb-dummy_hcd.3-1/input0 [ 250.440100][ T5363] asus 0003:048D:CE50.0027: Asus input not registered [ 250.455086][ T5363] asus 0003:048D:CE50.0027: probe with driver asus failed with error -12 [ 250.475628][T10448] syz.1.1734 calls setitimer() with new_value NULL pointer. Misfeature support will be removed [ 250.489956][T10447] PKCS8: Unsupported PKCS#8 version [ 250.625403][ T5291] usb 4-1: USB disconnect, device number 14 [ 250.750515][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 250.807468][T10459] loop1: detected capacity change from 0 to 1024 [ 251.010413][ T5331] usb 6-1: new high-speed USB device number 15 using dummy_hcd [ 251.202324][ T5331] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 251.228877][ T5331] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 251.266228][ T5331] usb 6-1: New USB device found, idVendor=0c70, idProduct=f00b, bcdDevice= 0.00 [ 251.299757][ T5331] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 251.333629][ T5331] usb 6-1: config 0 descriptor?? [ 251.433267][T10488] netlink: 'syz.1.1754': attribute type 10 has an invalid length. [ 251.545067][T10472] loop4: detected capacity change from 0 to 32768 [ 251.565434][T10488] team0: Port device netdevsim0 added [ 251.585492][T10490] netlink: 'syz.1.1754': attribute type 10 has an invalid length. [ 251.597328][T10497] usb usb8: usbfs: process 10497 (syz.3.1756) did not claim interface 0 before use [ 251.659360][T10472] XFS (loop4): Mounting V5 Filesystem 986211a9-7d00-4ebf-a576-e3de63fa2cbd [ 251.771204][ T5331] aquacomputer_d5next 0003:0C70:F00B.0028: unknown main item tag 0x0 [ 251.810437][T10472] XFS (loop4): Ending clean mount [ 251.840334][ T5331] aquacomputer_d5next 0003:0C70:F00B.0028: unknown main item tag 0x0 [ 251.894163][ T5331] aquacomputer_d5next 0003:0C70:F00B.0028: unknown main item tag 0x0 [ 251.923128][ T5331] aquacomputer_d5next 0003:0C70:F00B.0028: unknown main item tag 0x0 [ 251.955711][ T5331] aquacomputer_d5next 0003:0C70:F00B.0028: unknown main item tag 0x0 [ 251.979958][ T5331] aquacomputer_d5next 0003:0C70:F00B.0028: unknown main item tag 0x0 [ 251.998974][ T5331] aquacomputer_d5next 0003:0C70:F00B.0028: unknown main item tag 0x0 [ 252.019264][ T6890] XFS (loop4): Unmounting Filesystem 986211a9-7d00-4ebf-a576-e3de63fa2cbd [ 252.038080][ T5331] aquacomputer_d5next 0003:0C70:F00B.0028: hidraw0: USB HID v0.00 Device [HID 0c70:f00b] on usb-dummy_hcd.5-1/input0 [ 252.278966][ T5331] usb 6-1: USB disconnect, device number 15 [ 252.365082][ T29] kauditd_printk_skb: 15 callbacks suppressed [ 252.365106][ T29] audit: type=1326 audit(1727242191.901:136): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10523 comm="syz.2.1768" exe="/root/syz-executor" sig=0 arch=c000003e syscall=210 compat=0 ip=0x7fdc9077def9 code=0x7ffc0000 [ 252.439185][ T29] audit: type=1326 audit(1727242191.931:137): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10523 comm="syz.2.1768" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdc9077def9 code=0x7ffc0000 [ 252.500698][ T29] audit: type=1326 audit(1727242191.931:138): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10523 comm="syz.2.1768" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdc9077def9 code=0x7ffc0000 [ 252.671122][T10533] netlink: 209852 bytes leftover after parsing attributes in process `syz.5.1772'. [ 252.710428][T10533] openvswitch: netlink: IP tunnel attribute has 3060 unknown bytes. [ 252.890098][T10543] dvmrp5: entered allmulticast mode [ 252.929323][T10543] dvmrp5: left allmulticast mode [ 252.957250][T10509] loop3: detected capacity change from 0 to 40427 [ 252.984651][T10509] F2FS-fs (loop3): heap/no_heap options were deprecated [ 253.015203][T10509] F2FS-fs (loop3): invalid crc value [ 253.054062][T10509] F2FS-fs (loop3): Found nat_bits in checkpoint [ 253.090471][T10552] netlink: 4096 bytes leftover after parsing attributes in process `syz.1.1780'. [ 253.130581][T10552] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 253.239523][T10509] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5 [ 253.513905][ T5240] syz-executor: attempt to access beyond end of device [ 253.513905][ T5240] loop3: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 253.655546][T10574] netlink: 24 bytes leftover after parsing attributes in process `syz.5.1791'. [ 253.686141][T10568] loop2: detected capacity change from 0 to 32768 [ 253.699554][ T5240] F2FS-fs (loop3): Stopped filesystem due to reason: 3 [ 253.747584][T10568] ERROR: (device loop2): jfs_readdir: JFS:Dtree error: ino = 2, bn=0, index = 1 [ 253.747584][T10568] [ 254.202762][T10585] loop5: detected capacity change from 0 to 2048 [ 254.279762][T10585] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 254.315274][T10578] loop4: detected capacity change from 0 to 32768 [ 254.328063][T10578] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop4 (7:4) scanned by syz.4.1793 (10578) [ 254.421156][T10578] BTRFS info (device loop4): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 254.432745][T10578] BTRFS info (device loop4): using sha256 (sha256-ni) checksum algorithm [ 254.441655][T10578] BTRFS info (device loop4): using free-space-tree [ 254.558114][T10605] netlink: 'syz.5.1801': attribute type 16 has an invalid length. [ 254.567311][T10605] netlink: 'syz.5.1801': attribute type 3 has an invalid length. [ 254.577025][T10605] netlink: 64066 bytes leftover after parsing attributes in process `syz.5.1801'. [ 254.699816][ T6890] BTRFS info (device loop4): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 254.720289][ T5291] usb 2-1: new high-speed USB device number 18 using dummy_hcd [ 254.897999][ T5291] usb 2-1: Using ep0 maxpacket: 16 [ 254.916627][ T5291] usb 2-1: config 0 has an invalid interface number: 8 but max is 0 [ 254.935354][ T5291] usb 2-1: config 0 has no interface number 0 [ 254.957872][ T5291] usb 2-1: config 0 interface 8 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 255.031757][ T5291] usb 2-1: config 0 interface 8 altsetting 0 endpoint 0x8F has invalid wMaxPacketSize 0 [ 255.092859][ T5291] usb 2-1: New USB device found, idVendor=0d8c, idProduct=000e, bcdDevice=8e.8f [ 255.102216][ T5291] usb 2-1: New USB device strings: Mfr=0, Product=24, SerialNumber=3 [ 255.139903][ T5291] usb 2-1: Product: syz [ 255.150251][ T5291] usb 2-1: SerialNumber: syz [ 255.161143][ T5291] usb 2-1: config 0 descriptor?? [ 255.224595][ T5291] cm109 2-1:0.8: invalid payload size 0, expected 4 [ 255.232157][ T1262] ieee802154 phy0 wpan0: encryption failed: -22 [ 255.238580][ T1262] ieee802154 phy1 wpan1: encryption failed: -22 [ 255.248719][ T5291] input: CM109 USB driver as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.8/input/input22 [ 255.466375][ C1] cm109 2-1:0.8: cm109_urb_ctl_callback: urb status -71 [ 255.473619][ C1] cm109 2-1:0.8: cm109_urb_ctl_callback: urb status -71 [ 255.480812][ C1] cm109 2-1:0.8: cm109_urb_ctl_callback: urb status -71 [ 255.487965][ C1] cm109 2-1:0.8: cm109_urb_ctl_callback: urb status -71 [ 255.497037][ C1] cm109 2-1:0.8: cm109_urb_ctl_callback: urb status -71 [ 255.504204][ C1] cm109 2-1:0.8: cm109_urb_ctl_callback: urb status -71 [ 255.511517][ C1] cm109 2-1:0.8: cm109_urb_ctl_callback: urb status -71 [ 255.518677][ C1] cm109 2-1:0.8: cm109_urb_ctl_callback: urb status -71 [ 255.525829][ C1] cm109 2-1:0.8: cm109_urb_ctl_callback: urb status -71 [ 255.533026][ C1] cm109 2-1:0.8: cm109_urb_ctl_callback: urb status -71 [ 255.543238][ T5291] usb 2-1: USB disconnect, device number 18 [ 255.543285][ C1] cm109 2-1:0.8: cm109_submit_buzz_toggle: usb_submit_urb (urb_ctl) failed -19 [ 255.595750][T10644] netlink: 'syz.2.1815': attribute type 29 has an invalid length. [ 255.605619][ T5291] cm109 2-1:0.8: cm109_toggle_buzzer_sync: usb_control_msg() failed -19 [ 255.627285][T10643] netlink: 'syz.2.1815': attribute type 29 has an invalid length. [ 255.911977][T10655] loop2: detected capacity change from 0 to 1764 [ 256.060075][T10659] devtmpfs: Too few inodes for current use [ 256.083344][T10661] loop5: detected capacity change from 0 to 512 [ 256.093040][T10661] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 256.154012][T10661] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 256.182370][T10661] ext4 filesystem being mounted at /305/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 256.377564][T10670] loop2: detected capacity change from 0 to 4096 [ 256.399058][T10670] ntfs3: loop2: Different NTFS sector size (4096) and media sector size (512). [ 256.411162][ T5241] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 256.427573][T10674] netlink: 240 bytes leftover after parsing attributes in process `syz.1.1829'. [ 256.440464][T10674] NCSI netlink: No device for ifindex 33554690 [ 256.448110][T10676] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1828'. [ 256.569449][T10670] ntfs3: loop2: Failed to initialize $Extend/$Reparse. [ 256.602584][T10681] loop1: detected capacity change from 0 to 256 [ 256.633472][T10681] exFAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 256.675462][T10681] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0xe622a5da, utbl_chksum : 0xe619d30d) [ 256.874955][T10690] loop2: detected capacity change from 0 to 256 [ 256.924838][T10690] exFAT-fs (loop2): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d) [ 256.980503][T10690] exFAT-fs (loop2): error, exfat_alloc_cluster: invalid used clusters(t:15,u:4294967295) [ 256.980503][T10690] [ 257.003748][ T5363] usb 6-1: new high-speed USB device number 16 using dummy_hcd [ 257.165988][ T5363] usb 6-1: New USB device found, idVendor=0dba, idProduct=3000, bcdDevice=26.ea [ 257.185555][ T5363] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 257.213047][ T5363] usb 6-1: config 0 descriptor?? [ 257.222652][ T5363] usb 6-1: Invalid firmware size=18. [ 257.278720][T10699] loop1: detected capacity change from 0 to 128 [ 257.422891][T10705] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1844'. [ 257.427481][ T5363] usb 6-1: USB disconnect, device number 16 [ 257.816761][T10688] loop4: detected capacity change from 0 to 40427 [ 257.846750][T10688] F2FS-fs (loop4): Wrong segment_count / block_count (41 > 16384) [ 257.880331][T10688] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock [ 257.890095][T10703] loop2: detected capacity change from 0 to 32768 [ 257.896917][T10688] F2FS-fs (loop4): heap/no_heap options were deprecated [ 257.923269][T10688] F2FS-fs (loop4): invalid crc value [ 257.942066][T10688] F2FS-fs (loop4): Found nat_bits in checkpoint [ 258.064749][T10688] F2FS-fs (loop4): Try to recover 1th superblock, ret: 0 [ 258.083458][T10688] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5 [ 258.173016][ T5331] usb 2-1: new high-speed USB device number 19 using dummy_hcd [ 258.203920][T10726] loop3: detected capacity change from 0 to 8 [ 258.435772][ T5331] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x8E has invalid wMaxPacketSize 0 [ 258.445909][ T5331] usb 2-1: config 0 interface 0 altsetting 0 bulk endpoint 0x8E has invalid maxpacket 0 [ 258.455845][ T5331] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0xA has invalid wMaxPacketSize 0 [ 258.468116][ T5331] usb 2-1: config 0 interface 0 altsetting 0 bulk endpoint 0xA has invalid maxpacket 0 [ 258.480608][ T5331] usb 2-1: New USB device found, idVendor=05ab, idProduct=0301, bcdDevice= 1.00 [ 258.489917][ T5331] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 258.498243][ T5331] usb 2-1: Product: syz [ 258.502818][ T5331] usb 2-1: Manufacturer: syz [ 258.507528][ T5331] usb 2-1: SerialNumber: syz [ 258.519273][ T5331] usb 2-1: config 0 descriptor?? [ 258.529908][ T5331] ums-isd200 2-1:0.0: USB Mass Storage device detected [ 258.747202][ T5331] scsi host1: usb-storage 2-1:0.0 [ 258.945402][ T931] usb 2-1: USB disconnect, device number 19 [ 259.018247][T10730] loop5: detected capacity change from 0 to 32768 [ 259.076149][T10730] XFS (loop5): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 259.273591][T10730] XFS (loop5): Ending clean mount [ 259.295845][T10730] XFS (loop5): Quotacheck needed: Please wait. [ 259.376365][T10730] XFS (loop5): Quotacheck: Done. [ 259.440286][ T5241] XFS (loop5): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 259.735860][T10763] loop3: detected capacity change from 0 to 32768 [ 259.775898][T10763] JBD2: Ignoring recovery information on journal [ 259.904904][T10763] ocfs2: Mounting device (7,3) on (node local, slot 0) with ordered data mode. [ 259.995631][T10789] loop5: detected capacity change from 0 to 64 [ 260.064294][ T5240] ocfs2: Unmounting device (7,3) on (node local) [ 260.310337][ T931] usb 2-1: new high-speed USB device number 20 using dummy_hcd [ 260.708477][T10800] loop2: detected capacity change from 0 to 40427 [ 261.027437][T10795] loop5: detected capacity change from 0 to 32768 [ 261.092502][T10813] loop3: detected capacity change from 0 to 1024 [ 261.110366][ T931] usb 2-1: Using ep0 maxpacket: 16 [ 261.121705][ T931] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 261.123854][T10800] F2FS-fs (loop2): invalid crc value [ 261.137560][ T931] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 261.149086][ T931] usb 2-1: New USB device found, idVendor=1532, idProduct=010d, bcdDevice= 0.00 [ 261.168201][T10795] XFS (loop5): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 261.178977][T10800] F2FS-fs (loop2): Found nat_bits in checkpoint [ 261.195170][T10813] hfsplus: invalid xattr key length: 0 [ 261.230366][ T931] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 261.272232][ T931] usb 2-1: config 0 descriptor?? [ 261.310870][ T1048] hfsplus: b-tree write err: -5, ino 8 [ 261.417971][T10800] F2FS-fs (loop2): Start checkpoint disabled! [ 261.445269][T10800] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e6 [ 261.496494][T10795] XFS (loop5): Ending clean mount [ 261.502498][T10800] F2FS-fs (loop2): Skipping Checkpoint. Checkpoints currently disabled. [ 261.543968][T10795] XFS (loop5): Quotacheck needed: Please wait. [ 261.703957][T10795] XFS (loop5): Quotacheck: Done. [ 261.706550][ T931] razer 0003:1532:010D.0029: item fetching failed at offset 4/6 [ 261.718017][ T931] razer 0003:1532:010D.0029: probe with driver razer failed with error -22 [ 261.888388][ T5241] XFS (loop5): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 261.910347][T10839] netlink: 248 bytes leftover after parsing attributes in process `syz.4.1896'. [ 261.933622][ T5291] usb 2-1: USB disconnect, device number 20 [ 262.253787][T10853] RDS: rds_bind could not find a transport for ::4006:20:0:0, load rds_tcp or rds_rdma? [ 262.370523][ T5298] usb 3-1: new high-speed USB device number 10 using dummy_hcd [ 262.530550][ T5298] usb 3-1: Using ep0 maxpacket: 16 [ 262.550263][ T5298] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 262.562903][ T5298] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 262.576703][ T5298] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 262.610329][ T5298] usb 3-1: New USB device found, idVendor=056a, idProduct=0093, bcdDevice= 0.00 [ 262.629954][ T5298] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 262.650266][ T5331] usb 4-1: new high-speed USB device number 15 using dummy_hcd [ 262.668286][ T5298] usb 3-1: config 0 descriptor?? [ 262.780328][ T5363] usb 2-1: new high-speed USB device number 21 using dummy_hcd [ 262.822211][ T5331] usb 4-1: Using ep0 maxpacket: 16 [ 262.829520][ T5331] usb 4-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 262.845168][ T5331] usb 4-1: config 1 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0 [ 262.870236][ T5331] usb 4-1: config 1 interface 0 altsetting 0 bulk endpoint 0x3 has invalid maxpacket 0 [ 262.897839][ T5331] usb 4-1: config 1 interface 0 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 22 [ 262.933783][ T5331] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 262.950539][ T5363] usb 2-1: Using ep0 maxpacket: 16 [ 262.957607][ T5363] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 262.957898][ T5331] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1 [ 262.994072][ T5363] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 263.004297][ T5331] usb 4-1: SerialNumber: syz [ 263.024854][ T5363] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 263.028539][ T5331] cdc_acm 4-1:1.0: skipping garbage [ 263.061534][ T5331] cdc_acm 4-1:1.0: probe with driver cdc_acm failed with error -12 [ 263.063169][ T5363] usb 2-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00 [ 263.103805][ T5363] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 263.120904][ T5363] usb 2-1: config 0 descriptor?? [ 263.122567][ T5298] wacom 0003:056A:0093.002A: hidraw0: USB HID v0.00 Device [HID 056a:0093] on usb-dummy_hcd.2-1/input0 [ 263.193947][T10871] loop4: detected capacity change from 0 to 32768 [ 263.257756][ T5298] usb 4-1: USB disconnect, device number 15 [ 263.283534][ T29] audit: type=1800 audit(1727242202.821:139): pid=10871 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.1909" name="file1" dev="loop4" ino=7 res=0 errno=0 [ 263.317290][ T931] usb 3-1: USB disconnect, device number 10 [ 263.457957][T10885] openvswitch: netlink: Duplicate or invalid key (type 0). [ 263.466391][T10885] openvswitch: netlink: Actions may not be safe on all matching packets [ 263.565130][ T5363] microsoft 0003:045E:07DA.002B: unknown main item tag 0x0 [ 263.572698][ T5363] microsoft 0003:045E:07DA.002B: ignoring exceeding usage max [ 263.584541][ T5363] microsoft 0003:045E:07DA.002B: unsupported Resolution Multiplier 0 [ 263.594085][ T5363] microsoft 0003:045E:07DA.002B: unsupported Resolution Multiplier 0 [ 263.602940][ T5363] microsoft 0003:045E:07DA.002B: No inputs registered, leaving [ 263.613850][ T5363] microsoft 0003:045E:07DA.002B: hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.1-1/input0 [ 263.625536][ T5363] microsoft 0003:045E:07DA.002B: no inputs found [ 263.632038][ T5363] microsoft 0003:045E:07DA.002B: could not initialize ff, continuing anyway [ 263.806966][ T5363] usb 2-1: USB disconnect, device number 21 [ 263.817861][T10891] hugetlbfs: Bad value '%' for mount option 'size' [ 263.817861][T10891] [ 264.122640][T10907] Device name cannot be null; rc = [-22] [ 264.535174][T10927] loop1: detected capacity change from 0 to 256 [ 264.564803][T10929] netlink: 209852 bytes leftover after parsing attributes in process `syz.3.1937'. [ 264.585107][T10929] openvswitch: netlink: VXLAN extension message has 13 unknown bytes. [ 264.611540][T10927] exFAT-fs (loop1): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x3963664b, utbl_chksum : 0xe619d30d) [ 265.170065][T10957] loop4: detected capacity change from 0 to 4096 [ 265.237983][T10965] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 265.506381][T10976] loop4: detected capacity change from 0 to 64 [ 265.547325][T10978] smc: net device lo applied user defined pnetid SYZ2 [ 265.715700][T10982] loop2: detected capacity change from 0 to 2048 [ 265.767726][T10982] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 265.858430][ T9639] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 266.061745][T10998] loop4: detected capacity change from 0 to 4096 [ 266.363630][T11012] netlink: 'syz.1.1973': attribute type 4 has an invalid length. [ 266.446954][T10986] loop3: detected capacity change from 0 to 32768 [ 266.470445][ T5331] usb 3-1: new high-speed USB device number 11 using dummy_hcd [ 266.630516][ T5331] usb 3-1: Using ep0 maxpacket: 8 [ 266.643138][ T5331] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 266.670234][ T5331] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 266.689399][ T5331] usb 3-1: New USB device found, idVendor=28bd, idProduct=0078, bcdDevice= 0.00 [ 266.716073][ T5331] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 266.771254][ T5331] usb 3-1: config 0 descriptor?? [ 267.011554][T11016] loop1: detected capacity change from 0 to 32768 [ 267.110476][ T931] usb 4-1: new high-speed USB device number 16 using dummy_hcd [ 267.214029][ T5331] uclogic 0003:28BD:0078.002C: interface is invalid, ignoring [ 267.272197][ T931] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 267.284024][ T931] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 267.294495][T11028] dvmrp0: entered allmulticast mode [ 267.304432][ T931] usb 4-1: New USB device found, idVendor=04b4, idProduct=de61, bcdDevice= 0.00 [ 267.318764][T11027] dvmrp0: left allmulticast mode [ 267.323988][ T931] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 267.338728][ T931] usb 4-1: config 0 descriptor?? [ 267.433603][ T934] usb 3-1: USB disconnect, device number 11 [ 267.761323][ T931] cypress 0003:04B4:DE61.002D: item fetching failed at offset 5/7 [ 267.769782][ T931] cypress 0003:04B4:DE61.002D: parse failed [ 267.777890][ T931] cypress 0003:04B4:DE61.002D: probe with driver cypress failed with error -22 [ 267.999075][ T931] usb 4-1: USB disconnect, device number 16 [ 268.388979][T11036] loop1: detected capacity change from 0 to 32768 [ 268.399121][T11036] BTRFS: device fsid 3d39d0ba-bdae-447e-827b-b091e1a68885 devid 1 transid 8 /dev/loop1 (7:1) scanned by syz.1.1997 (11036) [ 268.415795][T11036] BTRFS info (device loop1): first mount of filesystem 3d39d0ba-bdae-447e-827b-b091e1a68885 [ 268.428151][T11036] BTRFS info (device loop1): using crc32c (crc32c-intel) checksum algorithm [ 268.441106][T11036] BTRFS info (device loop1): using free-space-tree [ 268.624248][T11040] loop2: detected capacity change from 0 to 32768 [ 268.631186][ T5224] BTRFS info (device loop1): last unmount of filesystem 3d39d0ba-bdae-447e-827b-b091e1a68885 [ 269.270810][T11071] netlink: 165 bytes leftover after parsing attributes in process `syz.1.1995'. [ 269.435220][T11073] tmpfs: Cannot change global quota limit on remount [ 269.658254][T11081] loop4: detected capacity change from 0 to 736 [ 269.987136][T11079] loop1: detected capacity change from 0 to 32768 [ 269.995086][T11079] BTRFS: device fsid 24c7a497-3402-47dd-bef8-82358f5f30e0 devid 1 transid 8 /dev/loop1 (7:1) scanned by syz.1.2000 (11079) [ 270.013345][T11079] BTRFS info (device loop1): first mount of filesystem 24c7a497-3402-47dd-bef8-82358f5f30e0 [ 270.029943][T11079] BTRFS info (device loop1): using crc32c (crc32c-intel) checksum algorithm [ 270.043165][T11079] BTRFS info (device loop1): using free-space-tree [ 270.214220][T11109] loop4: detected capacity change from 0 to 736 [ 270.320775][T11116] loop3: detected capacity change from 0 to 512 [ 270.366081][ T29] audit: type=1800 audit(1727242209.901:140): pid=11079 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.2000" name="bus" dev="loop1" ino=263 res=0 errno=0 [ 270.432603][T11116] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 270.476633][T11116] ext4 filesystem being mounted at /351/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 270.906296][ T5240] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 271.021581][ T5224] BTRFS info (device loop1): last unmount of filesystem 24c7a497-3402-47dd-bef8-82358f5f30e0 [ 271.593474][T11131] loop4: detected capacity change from 0 to 4096 [ 271.703280][T11131] NILFS (loop4): invalid segment: Checksum error in segment payload [ 271.758890][T11133] loop3: detected capacity change from 0 to 1024 [ 271.770417][T11131] NILFS (loop4): trying rollback from an earlier position [ 271.879477][T11131] NILFS (loop4): recovery complete [ 271.910067][T11135] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 272.698657][T11143] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2019'. [ 272.978446][T11127] loop2: detected capacity change from 0 to 32768 [ 273.065633][T11127] ocfs2: Mounting device (7,2) on (node local, slot 0) with ordered data mode. [ 273.291337][ T25] usb 2-1: new high-speed USB device number 22 using dummy_hcd [ 273.458343][ T9639] ocfs2: Unmounting device (7,2) on (node local) [ 273.488158][ T25] usb 2-1: New USB device found, idVendor=1604, idProduct=8001, bcdDevice=44.1f [ 273.563304][ T25] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 273.609265][ T25] usb 2-1: Product: syz [ 273.651147][ T25] usb 2-1: Manufacturer: syz [ 273.692191][ T25] usb 2-1: SerialNumber: syz [ 273.767623][ T25] usb 2-1: config 0 descriptor?? [ 274.116861][ T5291] usb 2-1: USB disconnect, device number 22 [ 274.617902][T11173] loop2: detected capacity change from 0 to 16 [ 274.704603][T11173] erofs: (device loop2): mounted with root inode @ nid 36. [ 274.804106][T11173] syz.2.2031: attempt to access beyond end of device [ 274.804106][T11173] loop2: rw=0, sector=8, nr_sectors = 32 limit=16 [ 274.905363][T11173] erofs: (device loop2): z_erofs_read_folio: read error -5 @ 8200 of nid 36 [ 274.990846][T11178] syz.2.2031: attempt to access beyond end of device [ 274.990846][T11178] loop2: rw=0, sector=8, nr_sectors = 32 limit=16 [ 275.110554][T11178] erofs: (device loop2): z_erofs_read_folio: read error -5 @ 8200 of nid 36 [ 275.808260][ T16] sched: DL replenish lagged too much [ 275.834555][T11193] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2042'. [ 276.110976][ T5235] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 276.130972][ T5235] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 276.163310][ T5235] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 276.174054][ T5235] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 276.182415][ T5235] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 276.191649][ T5235] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 276.498366][T11211] loop3: detected capacity change from 0 to 256 [ 276.518488][T11207] loop4: detected capacity change from 0 to 2048 [ 276.627179][T11211] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0x1a9973fb, utbl_chksum : 0xe619d30d) [ 276.692111][T11207] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 276.887325][T11207] EXT4-fs error (device loop4): ext4_read_inline_dir:1566: inode #12: block 9: comm syz.4.2049: path /225/file0/file0: bad entry in directory: rec_len % 4 != 0 - offset=24, inode=13, rec_len=21, size=80 fake=0 [ 276.972049][T11218] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2054'. [ 277.108941][T11207] EXT4-fs (loop4): Remounting filesystem read-only [ 277.379588][ T6890] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 278.260635][ T5235] Bluetooth: hci7: command tx timeout [ 279.313163][T11234] loop4: detected capacity change from 0 to 32768 [ 279.340290][ T25] usb 3-1: new high-speed USB device number 12 using dummy_hcd [ 279.403551][T11234] XFS (loop4): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 279.540592][ T25] usb 3-1: Using ep0 maxpacket: 8 [ 279.581411][ T25] usb 3-1: New USB device found, idVendor=10c4, idProduct=8244, bcdDevice=dc.00 [ 279.630290][ T25] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 279.666267][ T25] usb 3-1: Product: syz [ 279.685548][T11234] XFS (loop4): Ending clean mount [ 279.701416][ T25] usb 3-1: Manufacturer: syz [ 279.706086][ T25] usb 3-1: SerialNumber: syz [ 279.737450][T11234] XFS (loop4): Quotacheck needed: Please wait. [ 279.773252][ T25] usb 3-1: config 0 descriptor?? [ 279.839068][ T25] radio-usb-si4713 3-1:0.0: Si4713 development board discovered: (10C4:8244) [ 279.880855][T11234] XFS (loop4): Quotacheck: Done. [ 279.978825][T11278] netlink: 'syz.1.2079': attribute type 3 has an invalid length. [ 280.186206][ T6890] XFS (loop4): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 280.340513][ T5235] Bluetooth: hci7: command tx timeout [ 280.456490][ T25] radio-usb-si4713 3-1:0.0: probe with driver radio-usb-si4713 failed with error -71 [ 280.515448][ T25] usbhid 3-1:0.0: couldn't find an input interrupt endpoint [ 280.570547][ T25] usb 3-1: USB disconnect, device number 12 [ 281.550375][ T25] usb 2-1: new high-speed USB device number 23 using dummy_hcd [ 281.733953][ T25] usb 2-1: Using ep0 maxpacket: 16 [ 281.794440][ T25] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 281.834514][ T25] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 281.896449][ T25] usb 2-1: New USB device found, idVendor=1b1c, idProduct=1c1e, bcdDevice= 0.00 [ 281.958754][ T25] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 282.002283][ T25] usb 2-1: config 0 descriptor?? [ 282.294890][T11312] loop4: detected capacity change from 0 to 256 [ 282.361971][T11312] exFAT-fs (loop4): failed to load upcase table (idx : 0x0000fd4f, chksum : 0xe95cf635, utbl_chksum : 0xe619d30d) [ 282.430532][ T5235] Bluetooth: hci7: command tx timeout [ 282.455351][ T25] corsair-psu 0003:1B1C:1C1E.002E: item fetching failed at offset 2/5 [ 282.510881][ T25] corsair-psu 0003:1B1C:1C1E.002E: probe with driver corsair-psu failed with error -22 [ 282.676761][ T25] usb 2-1: USB disconnect, device number 23 [ 283.696304][T11307] loop2: detected capacity change from 0 to 40427 [ 283.751647][T11307] F2FS-fs (loop2): invalid crc value [ 283.778884][T11307] F2FS-fs (loop2): Found nat_bits in checkpoint [ 284.010957][T11307] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e4 [ 284.510611][ T5235] Bluetooth: hci7: command tx timeout [ 286.898770][T11362] netlink: 'syz.2.2116': attribute type 2 has an invalid length. [ 286.911737][T11362] netlink: 'syz.2.2116': attribute type 1 has an invalid length. [ 288.138547][ T54] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 288.149923][ T54] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 288.164423][ T54] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 288.175907][ T54] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 288.189709][ T54] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 288.200304][ T54] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 290.260435][ T54] Bluetooth: hci4: command tx timeout [ 292.340855][ T54] Bluetooth: hci4: command tx timeout [ 293.539888][ T5235] Bluetooth: hci8: unexpected cc 0x0c03 length: 249 > 1 [ 293.554028][ T5235] Bluetooth: hci8: unexpected cc 0x1003 length: 249 > 9 [ 293.563876][ T5235] Bluetooth: hci8: unexpected cc 0x1001 length: 249 > 9 [ 293.574617][ T5235] Bluetooth: hci8: unexpected cc 0x0c23 length: 249 > 4 [ 293.584616][ T5235] Bluetooth: hci8: unexpected cc 0x0c25 length: 249 > 3 [ 293.593171][ T5235] Bluetooth: hci8: unexpected cc 0x0c38 length: 249 > 2 [ 294.424708][ T5235] Bluetooth: hci4: command tx timeout [ 295.088343][ T54] Bluetooth: hci9: unexpected cc 0x0c03 length: 249 > 1 [ 295.097666][ T54] Bluetooth: hci9: unexpected cc 0x1003 length: 249 > 9 [ 295.105880][ T54] Bluetooth: hci9: unexpected cc 0x1001 length: 249 > 9 [ 295.123553][ T54] Bluetooth: hci9: unexpected cc 0x0c23 length: 249 > 4 [ 295.133296][ T54] Bluetooth: hci9: unexpected cc 0x0c25 length: 249 > 3 [ 295.141966][ T54] Bluetooth: hci9: unexpected cc 0x0c38 length: 249 > 2 [ 295.581628][ T5235] Bluetooth: hci10: unexpected cc 0x0c03 length: 249 > 1 [ 295.599348][ T5235] Bluetooth: hci10: unexpected cc 0x1003 length: 249 > 9 [ 295.618393][ T5235] Bluetooth: hci10: unexpected cc 0x1001 length: 249 > 9 [ 295.625812][ T5245] Bluetooth: hci8: command tx timeout [ 295.635122][ T5235] Bluetooth: hci10: unexpected cc 0x0c23 length: 249 > 4 [ 295.646311][ T5235] Bluetooth: hci10: unexpected cc 0x0c25 length: 249 > 3 [ 295.654721][ T5235] Bluetooth: hci10: unexpected cc 0x0c38 length: 249 > 2 [ 296.500381][ T5235] Bluetooth: hci4: command tx timeout [ 297.224838][ T5235] Bluetooth: hci9: command tx timeout [ 297.700428][ T54] Bluetooth: hci8: command tx timeout [ 297.708554][ T5235] Bluetooth: hci10: command tx timeout [ 298.523097][ T54] Bluetooth: hci11: unexpected cc 0x0c03 length: 249 > 1 [ 298.533390][ T54] Bluetooth: hci11: unexpected cc 0x1003 length: 249 > 9 [ 298.543875][ T54] Bluetooth: hci11: unexpected cc 0x1001 length: 249 > 9 [ 298.552330][ T54] Bluetooth: hci11: unexpected cc 0x0c23 length: 249 > 4 [ 298.561006][ T54] Bluetooth: hci11: unexpected cc 0x0c25 length: 249 > 3 [ 298.568495][ T54] Bluetooth: hci11: unexpected cc 0x0c38 length: 249 > 2 [ 299.300340][ T5235] Bluetooth: hci9: command tx timeout [ 299.780493][ T54] Bluetooth: hci8: command tx timeout [ 299.787563][ T5235] Bluetooth: hci10: command tx timeout [ 300.660912][ T5235] Bluetooth: hci11: command tx timeout [ 301.382153][ T5235] Bluetooth: hci9: command tx timeout [ 301.860544][ T5235] Bluetooth: hci10: command tx timeout [ 301.866111][ T5235] Bluetooth: hci8: command tx timeout [ 302.740382][ T5235] Bluetooth: hci11: command tx timeout [ 303.461656][ T5235] Bluetooth: hci9: command tx timeout [ 303.940357][ T5235] Bluetooth: hci10: command tx timeout [ 304.820457][ T5235] Bluetooth: hci11: command tx timeout [ 306.900348][ T5235] Bluetooth: hci11: command tx timeout [ 316.668250][ T1262] ieee802154 phy0 wpan0: encryption failed: -22 [ 316.674794][ T1262] ieee802154 phy1 wpan1: encryption failed: -22 [ 337.362061][ T54] Bluetooth: hci12: unexpected cc 0x0c03 length: 249 > 1 [ 337.375090][ T54] Bluetooth: hci12: unexpected cc 0x1003 length: 249 > 9 [ 337.390655][ T54] Bluetooth: hci12: unexpected cc 0x1001 length: 249 > 9 [ 337.400066][ T54] Bluetooth: hci12: unexpected cc 0x0c23 length: 249 > 4 [ 337.414299][ T54] Bluetooth: hci12: unexpected cc 0x0c25 length: 249 > 3 [ 337.426427][ T54] Bluetooth: hci12: unexpected cc 0x0c38 length: 249 > 2 [ 339.460456][ T54] Bluetooth: hci12: command tx timeout [ 341.540370][ T54] Bluetooth: hci12: command tx timeout [ 343.620437][ T54] Bluetooth: hci12: command tx timeout [ 344.885993][T11344] IPVS: Error connecting to the multicast addr [ 345.721250][ T54] Bluetooth: hci12: command tx timeout [ 348.719678][ T5235] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 348.731307][ T5235] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 348.745512][ T5235] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 348.766754][ T5235] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 348.780781][ T5235] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 348.788925][ T5235] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 350.820311][ T5235] Bluetooth: hci0: command tx timeout [ 352.900456][ T5235] Bluetooth: hci0: command tx timeout [ 354.319371][ T54] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 354.332394][ T54] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 354.350538][ T54] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 354.362686][ T54] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 354.370467][ T54] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 354.378197][ T54] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 354.981267][ T5235] Bluetooth: hci0: command tx timeout [ 355.073532][ T54] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 355.092537][ T54] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 355.104990][ T54] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 355.113515][ T54] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 355.123253][ T54] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 355.130860][ T54] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 356.092463][ T54] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 356.104240][ T54] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 356.113387][ T54] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 356.122430][ T54] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 356.133421][ T54] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 356.150703][ T54] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 356.420485][ T5235] Bluetooth: hci1: command tx timeout [ 357.060369][ T5235] Bluetooth: hci0: command tx timeout [ 357.220474][ T5235] Bluetooth: hci3: command tx timeout [ 358.180548][ T5235] Bluetooth: hci6: command tx timeout [ 358.500340][ T5235] Bluetooth: hci1: command tx timeout [ 359.100027][ T54] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 359.121069][ T54] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 359.130026][ T54] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 359.152484][ T54] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 359.161262][ T54] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 359.168645][ T54] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 359.300279][ T54] Bluetooth: hci3: command tx timeout [ 360.262983][ T54] Bluetooth: hci6: command tx timeout [ 360.580599][ T54] Bluetooth: hci1: command tx timeout [ 361.220315][ T54] Bluetooth: hci7: command tx timeout [ 361.380423][ T54] Bluetooth: hci3: command tx timeout [ 362.340533][ T54] Bluetooth: hci6: command tx timeout [ 362.662489][ T54] Bluetooth: hci1: command tx timeout [ 363.303458][ T54] Bluetooth: hci7: command tx timeout [ 363.460328][ T54] Bluetooth: hci3: command tx timeout [ 364.425311][ T54] Bluetooth: hci6: command tx timeout [ 365.380458][ T54] Bluetooth: hci7: command tx timeout [ 367.460307][ T54] Bluetooth: hci7: command tx timeout [ 378.108776][ T1262] ieee802154 phy0 wpan0: encryption failed: -22 [ 378.115442][ T1262] ieee802154 phy1 wpan1: encryption failed: -22 [ 397.885622][ T5235] Bluetooth: hci13: unexpected cc 0x0c03 length: 249 > 1 [ 397.903882][ T5235] Bluetooth: hci13: unexpected cc 0x1003 length: 249 > 9 [ 397.913955][ T5235] Bluetooth: hci13: unexpected cc 0x1001 length: 249 > 9 [ 397.922213][ T5235] Bluetooth: hci13: unexpected cc 0x0c23 length: 249 > 4 [ 397.937515][ T5235] Bluetooth: hci13: unexpected cc 0x0c25 length: 249 > 3 [ 397.955091][ T5235] Bluetooth: hci13: unexpected cc 0x0c38 length: 249 > 2 [ 400.020363][ T5235] Bluetooth: hci13: command tx timeout [ 402.100383][ T5235] Bluetooth: hci13: command tx timeout [ 404.180287][ T5235] Bluetooth: hci13: command tx timeout [ 406.260551][ T5235] Bluetooth: hci13: command tx timeout [ 409.805081][ T5245] Bluetooth: hci14: unexpected cc 0x0c03 length: 249 > 1 [ 409.815483][ T5245] Bluetooth: hci14: unexpected cc 0x1003 length: 249 > 9 [ 409.825382][ T5245] Bluetooth: hci14: unexpected cc 0x1001 length: 249 > 9 [ 409.833425][ T5245] Bluetooth: hci14: unexpected cc 0x0c23 length: 249 > 4 [ 409.842996][ T5245] Bluetooth: hci14: unexpected cc 0x0c25 length: 249 > 3 [ 409.850538][ T5245] Bluetooth: hci14: unexpected cc 0x0c38 length: 249 > 2 [ 410.910160][ T5245] Bluetooth: hci4: command 0x0406 tx timeout [ 411.940276][ T54] Bluetooth: hci14: command tx timeout [ 414.020333][ T54] Bluetooth: hci14: command tx timeout [ 414.816496][ T5235] Bluetooth: hci15: unexpected cc 0x0c03 length: 249 > 1 [ 414.828755][ T5235] Bluetooth: hci15: unexpected cc 0x1003 length: 249 > 9 [ 414.854904][ T5235] Bluetooth: hci15: unexpected cc 0x1001 length: 249 > 9 [ 414.874878][ T5235] Bluetooth: hci15: unexpected cc 0x0c23 length: 249 > 4 [ 414.883197][ T5235] Bluetooth: hci15: unexpected cc 0x0c25 length: 249 > 3 [ 414.891795][ T5235] Bluetooth: hci15: unexpected cc 0x0c38 length: 249 > 2 [ 415.307699][ T54] Bluetooth: hci16: unexpected cc 0x0c03 length: 249 > 1 [ 415.319763][ T54] Bluetooth: hci16: unexpected cc 0x1003 length: 249 > 9 [ 415.329882][ T54] Bluetooth: hci16: unexpected cc 0x1001 length: 249 > 9 [ 415.342289][ T54] Bluetooth: hci16: unexpected cc 0x0c23 length: 249 > 4 [ 415.352995][ T54] Bluetooth: hci16: unexpected cc 0x0c25 length: 249 > 3 [ 415.364322][ T54] Bluetooth: hci16: unexpected cc 0x0c38 length: 249 > 2 [ 416.020533][ T54] Bluetooth: hci8: command 0x0406 tx timeout [ 416.106144][ T54] Bluetooth: hci14: command tx timeout [ 416.627205][ T5245] Bluetooth: hci17: unexpected cc 0x0c03 length: 249 > 1 [ 416.648982][ T5245] Bluetooth: hci17: unexpected cc 0x1003 length: 249 > 9 [ 416.662530][ T5245] Bluetooth: hci17: unexpected cc 0x1001 length: 249 > 9 [ 416.671911][ T5245] Bluetooth: hci17: unexpected cc 0x0c23 length: 249 > 4 [ 416.682588][ T5245] Bluetooth: hci17: unexpected cc 0x0c25 length: 249 > 3 [ 416.690030][ T5245] Bluetooth: hci17: unexpected cc 0x0c38 length: 249 > 2 [ 416.980408][ T5245] Bluetooth: hci15: command tx timeout [ 417.380700][ T5245] Bluetooth: hci16: command tx timeout [ 418.181487][ T5245] Bluetooth: hci14: command tx timeout [ 418.743484][ T5245] Bluetooth: hci17: command tx timeout [ 419.066120][ T54] Bluetooth: hci15: command tx timeout [ 419.239377][ T5238] Bluetooth: hci18: unexpected cc 0x0c03 length: 249 > 1 [ 419.256110][ T5238] Bluetooth: hci18: unexpected cc 0x1003 length: 249 > 9 [ 419.266637][ T5238] Bluetooth: hci18: unexpected cc 0x1001 length: 249 > 9 [ 419.275530][ T5238] Bluetooth: hci18: unexpected cc 0x0c23 length: 249 > 4 [ 419.286981][ T5238] Bluetooth: hci18: unexpected cc 0x0c25 length: 249 > 3 [ 419.294746][ T5238] Bluetooth: hci18: unexpected cc 0x0c38 length: 249 > 2 [ 419.462522][ T5238] Bluetooth: hci16: command tx timeout [ 420.821886][ T5238] Bluetooth: hci17: command tx timeout [ 421.157990][ T5231] Bluetooth: hci9: command 0x0406 tx timeout [ 421.164288][ T5231] Bluetooth: hci15: command tx timeout [ 421.171167][ T5238] Bluetooth: hci11: command 0x0406 tx timeout [ 421.177296][ T5238] Bluetooth: hci10: command 0x0406 tx timeout [ 421.380491][ T54] Bluetooth: hci18: command tx timeout [ 421.540286][ T54] Bluetooth: hci16: command tx timeout [ 422.900484][ T5245] Bluetooth: hci17: command tx timeout [ 423.220429][ T54] Bluetooth: hci15: command tx timeout [ 423.460622][ T54] Bluetooth: hci18: command tx timeout [ 423.620969][ T54] Bluetooth: hci16: command tx timeout [ 424.980413][ T54] Bluetooth: hci17: command tx timeout [ 425.540303][ T54] Bluetooth: hci18: command tx timeout [ 427.620413][ T54] Bluetooth: hci18: command tx timeout [ 439.546665][ T1262] ieee802154 phy0 wpan0: encryption failed: -22 [ 439.558861][ T1262] ieee802154 phy1 wpan1: encryption failed: -22 [ 458.442929][ T5245] Bluetooth: hci19: unexpected cc 0x0c03 length: 249 > 1 [ 458.455195][ T5245] Bluetooth: hci19: unexpected cc 0x1003 length: 249 > 9 [ 458.466451][ T5245] Bluetooth: hci19: unexpected cc 0x1001 length: 249 > 9 [ 458.474975][ T5245] Bluetooth: hci19: unexpected cc 0x0c23 length: 249 > 4 [ 458.486021][ T5245] Bluetooth: hci19: unexpected cc 0x0c25 length: 249 > 3 [ 458.495614][ T5245] Bluetooth: hci19: unexpected cc 0x0c38 length: 249 > 2 [ 460.582123][ T54] Bluetooth: hci19: command tx timeout [ 462.100441][ T54] Bluetooth: hci12: command 0x0406 tx timeout [ 462.661373][ T5245] Bluetooth: hci19: command tx timeout [ 464.740433][ T5245] Bluetooth: hci19: command tx timeout [ 466.820493][ T5245] Bluetooth: hci19: command tx timeout [ 470.247273][ T54] Bluetooth: hci20: unexpected cc 0x0c03 length: 249 > 1 [ 470.272207][ T54] Bluetooth: hci20: unexpected cc 0x1003 length: 249 > 9 [ 470.282601][ T54] Bluetooth: hci20: unexpected cc 0x1001 length: 249 > 9 [ 470.296239][ T54] Bluetooth: hci20: unexpected cc 0x0c23 length: 249 > 4 [ 470.304749][ T54] Bluetooth: hci20: unexpected cc 0x0c25 length: 249 > 3 [ 470.312516][ T54] Bluetooth: hci20: unexpected cc 0x0c38 length: 249 > 2 [ 472.348019][ T54] Bluetooth: hci20: command tx timeout [ 472.353911][ T5245] Bluetooth: hci0: command 0x0406 tx timeout [ 474.420279][ T5246] Bluetooth: hci20: command tx timeout [ 475.649259][ T5245] Bluetooth: hci21: unexpected cc 0x0c03 length: 249 > 1 [ 475.664868][ T5245] Bluetooth: hci21: unexpected cc 0x1003 length: 249 > 9 [ 475.675203][ T5245] Bluetooth: hci21: unexpected cc 0x1001 length: 249 > 9 [ 475.683946][ T5245] Bluetooth: hci21: unexpected cc 0x0c23 length: 249 > 4 [ 475.696236][ T5245] Bluetooth: hci21: unexpected cc 0x0c25 length: 249 > 3 [ 475.704297][ T5245] Bluetooth: hci21: unexpected cc 0x0c38 length: 249 > 2 [ 475.789465][ T5245] Bluetooth: hci22: unexpected cc 0x0c03 length: 249 > 1 [ 475.803370][ T5245] Bluetooth: hci22: unexpected cc 0x1003 length: 249 > 9 [ 475.826532][ T5245] Bluetooth: hci22: unexpected cc 0x1001 length: 249 > 9 [ 475.841268][ T5245] Bluetooth: hci22: unexpected cc 0x0c23 length: 249 > 4 [ 475.849279][ T5245] Bluetooth: hci22: unexpected cc 0x0c25 length: 249 > 3 [ 475.858770][ T5245] Bluetooth: hci22: unexpected cc 0x0c38 length: 249 > 2 [ 476.500377][ T5245] Bluetooth: hci20: command tx timeout [ 476.775789][ T5235] Bluetooth: hci23: unexpected cc 0x0c03 length: 249 > 1 [ 476.789378][ T5235] Bluetooth: hci23: unexpected cc 0x1003 length: 249 > 9 [ 476.800630][ T5235] Bluetooth: hci23: unexpected cc 0x1001 length: 249 > 9 [ 476.811388][ T5235] Bluetooth: hci23: unexpected cc 0x0c23 length: 249 > 4 [ 476.819108][ T5235] Bluetooth: hci23: unexpected cc 0x0c25 length: 249 > 3 [ 476.832427][ T5235] Bluetooth: hci23: unexpected cc 0x0c38 length: 249 > 2 [ 477.481556][ T5245] Bluetooth: hci3: command 0x0406 tx timeout [ 477.487724][ T5235] Bluetooth: hci1: command 0x0406 tx timeout [ 477.780609][ T54] Bluetooth: hci21: command tx timeout [ 477.940480][ T54] Bluetooth: hci22: command tx timeout [ 478.582434][ T54] Bluetooth: hci20: command tx timeout [ 478.900566][ T54] Bluetooth: hci23: command tx timeout [ 479.736759][ T5246] Bluetooth: hci24: unexpected cc 0x0c03 length: 249 > 1 [ 479.751756][ T5246] Bluetooth: hci24: unexpected cc 0x1003 length: 249 > 9 [ 479.763962][ T5246] Bluetooth: hci24: unexpected cc 0x1001 length: 249 > 9 [ 479.773048][ T5246] Bluetooth: hci24: unexpected cc 0x0c23 length: 249 > 4 [ 479.781432][ T5246] Bluetooth: hci24: unexpected cc 0x0c25 length: 249 > 3 [ 479.788854][ T5246] Bluetooth: hci24: unexpected cc 0x0c38 length: 249 > 2 [ 479.860542][ T54] Bluetooth: hci21: command tx timeout [ 480.020349][ T54] Bluetooth: hci22: command tx timeout [ 480.980448][ T54] Bluetooth: hci23: command tx timeout [ 481.861998][ T54] Bluetooth: hci24: command tx timeout [ 481.940419][ T54] Bluetooth: hci21: command tx timeout [ 482.100253][ T54] Bluetooth: hci22: command tx timeout [ 482.592457][ T54] Bluetooth: hci7: command 0x0406 tx timeout [ 482.598560][ T54] Bluetooth: hci6: command 0x0406 tx timeout [ 483.060441][ T5245] Bluetooth: hci23: command tx timeout [ 483.940282][ T5245] Bluetooth: hci24: command tx timeout [ 484.020482][ T5245] Bluetooth: hci21: command tx timeout [ 484.182068][ T5245] Bluetooth: hci22: command tx timeout [ 485.140339][ T5245] Bluetooth: hci23: command tx timeout [ 486.021400][ T5245] Bluetooth: hci24: command tx timeout [ 488.107881][ T5245] Bluetooth: hci24: command tx timeout [ 497.782726][ T30] INFO: task kworker/u8:2:35 blocked for more than 143 seconds. [ 497.799022][ T30] Not tainted 6.11.0-syzkaller-10547-g684a64bf32b6 #0 SYZFAIL: failed to recv rpc fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor) [ 497.830290][ T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 497.880419][ T30] task:kworker/u8:2 state:D stack:20728 pid:35 tgid:35 ppid:2 flags:0x00004000 [ 497.935680][ T30] Workqueue: netns cleanup_net [ 498.020380][ T30] Call Trace: [ 498.023822][ T30] [ 498.026780][ T30] __schedule+0x1895/0x4b30 [ 498.121831][ T30] ? __pfx___schedule+0x10/0x10 [ 498.126782][ T30] ? __pfx_lock_release+0x10/0x10 [ 498.180309][ T30] ? __mutex_trylock_common+0x92/0x2e0 [ 498.185856][ T30] ? kthread_data+0x52/0xd0 [ 498.231710][ T30] ? schedule+0x90/0x320 [ 498.236029][ T30] ? srso_alias_return_thunk+0x5/0xfbef5 [ 498.293561][ T30] ? wq_worker_sleeping+0x66/0x240 [ 498.298759][ T30] ? schedule+0x90/0x320 [ 498.340568][ T30] schedule+0x14b/0x320 [ 498.344800][ T30] schedule_preempt_disabled+0x13/0x30 [ 498.400202][ T30] __mutex_lock+0x6a7/0xd70 [ 498.404803][ T30] ? __mutex_lock+0x52a/0xd70 [ 498.409521][ T30] ? wg_netns_pre_exit+0x1f/0x1e0 [ 498.461812][ T30] ? __pfx___mutex_lock+0x10/0x10 [ 498.466933][ T30] ? srso_alias_return_thunk+0x5/0xfbef5 [ 498.505889][ T30] wg_netns_pre_exit+0x1f/0x1e0 [ 498.547277][ T30] cleanup_net+0x617/0xcc0 [ 498.560352][ T30] ? __pfx_cleanup_net+0x10/0x10 [ 498.565355][ T30] ? process_scheduled_works+0x976/0x1850 [ 498.617454][ T30] process_scheduled_works+0xa65/0x1850 [ 498.632506][ T30] ? __pfx_process_scheduled_works+0x10/0x10 [ 498.638555][ T30] ? assign_work+0x364/0x3d0 [ 498.680072][ T30] worker_thread+0x870/0xd30 [ 498.684773][ T30] ? __kthread_parkme+0x169/0x1d0 [ 498.720089][ T30] ? __pfx_worker_thread+0x10/0x10 [ 498.725295][ T30] kthread+0x2f2/0x390 [ 498.729389][ T30] ? __pfx_worker_thread+0x10/0x10 [ 498.785899][ T30] ? __pfx_kthread+0x10/0x10 [ 498.803064][ T30] ret_from_fork+0x4d/0x80 [ 498.807596][ T30] ? __pfx_kthread+0x10/0x10 [ 498.828547][ T30] ret_from_fork_asm+0x1a/0x30 [ 498.840487][ T30] [ 498.843679][ T30] INFO: task kworker/u8:8:1108 blocked for more than 144 seconds. [ 498.863631][ T30] Not tainted 6.11.0-syzkaller-10547-g684a64bf32b6 #0 [ 498.878145][ T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 498.899252][ T30] task:kworker/u8:8 state:D stack:20408 pid:1108 tgid:1108 ppid:2 flags:0x00004000 [ 498.919134][ T30] Workqueue: events_unbound linkwatch_event [ 498.926784][ T30] Call Trace: [ 498.942039][ T30] [ 498.945013][ T30] __schedule+0x1895/0x4b30 [ 498.949581][ T30] ? __pfx___schedule+0x10/0x10 [ 498.962606][ T30] ? __pfx_lock_release+0x10/0x10 [ 498.967687][ T30] ? __mutex_trylock_common+0x92/0x2e0 [ 498.979603][ T30] ? kthread_data+0x52/0xd0 [ 498.994870][ T30] ? schedule+0x90/0x320 [ 498.999184][ T30] ? srso_alias_return_thunk+0x5/0xfbef5 [ 499.016385][ T30] ? wq_worker_sleeping+0x66/0x240 [ 499.024155][ T30] ? schedule+0x90/0x320 [ 499.028439][ T30] schedule+0x14b/0x320 [ 499.041634][ T30] schedule_preempt_disabled+0x13/0x30 [ 499.047142][ T30] __mutex_lock+0x6a7/0xd70 [ 499.067760][ T30] ? __mutex_lock+0x52a/0xd70 [ 499.073065][ T30] ? linkwatch_event+0xe/0x60 [ 499.077805][ T30] ? __pfx___mutex_lock+0x10/0x10 [ 499.091435][ T30] ? process_scheduled_works+0x976/0x1850 [ 499.099208][ T30] linkwatch_event+0xe/0x60 [ 499.111421][ T30] process_scheduled_works+0xa65/0x1850 [ 499.117772][ T30] ? __pfx_process_scheduled_works+0x10/0x10 [ 499.132679][ T30] ? assign_work+0x364/0x3d0 [ 499.137372][ T30] worker_thread+0x870/0xd30 [ 499.155233][ T30] ? srso_alias_return_thunk+0x5/0xfbef5 [ 499.168668][ T30] ? srso_alias_return_thunk+0x5/0xfbef5 [ 499.178274][ T30] ? _raw_spin_unlock_irqrestore+0xdd/0x140 [ 499.189356][ T30] ? __kthread_parkme+0x169/0x1d0 [ 499.198306][ T30] ? __pfx_worker_thread+0x10/0x10 [ 499.210341][ T30] kthread+0x2f2/0x390 [ 499.221372][ T30] ? __pfx_worker_thread+0x10/0x10 [ 499.226558][ T30] ? __pfx_kthread+0x10/0x10 [ 499.240586][ T30] ret_from_fork+0x4d/0x80 [ 499.245078][ T30] ? __pfx_kthread+0x10/0x10 [ 499.249710][ T30] ret_from_fork_asm+0x1a/0x30 [ 499.264597][ T30] [ 499.267845][ T30] INFO: task syz-executor:11202 blocked for more than 144 seconds. [ 499.284699][ T30] Not tainted 6.11.0-syzkaller-10547-g684a64bf32b6 #0 [ 499.297088][ T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 499.319455][ T30] task:syz-executor state:D stack:21728 pid:11202 tgid:11202 ppid:1 flags:0x00004006 [ 499.332815][ T30] Call Trace: [ 499.336139][ T30] [ 499.339094][ T30] __schedule+0x1895/0x4b30 [ 499.352762][ T30] ? __pfx___schedule+0x10/0x10 [ 499.357670][ T30] ? __pfx_lock_release+0x10/0x10 [ 499.368872][ T30] ? schedule+0x90/0x320 [ 499.377348][ T30] schedule+0x14b/0x320 [ 499.391466][ T30] schedule_timeout+0xb0/0x310 [ 499.396378][ T30] ? __pfx_schedule_timeout+0x10/0x10 [ 499.410212][ T30] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 499.418974][ T30] ? wait_for_completion+0x2fe/0x620 [ 499.430143][ T30] ? wait_for_completion+0x2fe/0x620 [ 499.439023][ T30] ? _raw_spin_unlock_irq+0x23/0x50 [ 499.450505][ T30] ? srso_alias_return_thunk+0x5/0xfbef5 [ 499.456559][ T30] ? lockdep_hardirqs_on+0x99/0x150 [ 499.470783][ T30] ? wait_for_completion+0x2fe/0x620 [ 499.476154][ T30] wait_for_completion+0x355/0x620 [ 499.489148][ T30] ? srso_alias_return_thunk+0x5/0xfbef5 [ 499.499473][ T30] ? __pfx_wait_for_completion+0x10/0x10 [ 499.510127][ T30] ? __flush_work+0xe7/0xc50 [ 499.514811][ T30] __flush_work+0xa37/0xc50 [ 499.527820][ T30] ? __flush_work+0xe7/0xc50 [ 499.533757][ T30] ? __pfx___flush_work+0x10/0x10 [ 499.538873][ T30] ? __pfx_wq_barrier_func+0x10/0x10 [ 499.553155][ T30] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 499.559802][ T30] ? _raw_spin_lock_irq+0xdf/0x120 [ 499.575758][ T30] ? _raw_spin_unlock_irq+0x23/0x50 [ 499.583802][ T30] unregister_netdevice_many_notify+0x87b/0x1da0 [ 499.596067][ T30] ? __pfx_lock_release+0x10/0x10 [ 499.610255][ T30] ? srso_alias_return_thunk+0x5/0xfbef5 [ 499.615993][ T30] ? __pfx_unregister_netdevice_many_notify+0x10/0x10 [ 499.633550][ T30] ? srso_alias_return_thunk+0x5/0xfbef5 [ 499.639276][ T30] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 499.653911][ T30] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 499.664158][ T30] ? __queue_work+0x199/0xf50 [ 499.668914][ T30] ? queue_delayed_work_on+0x1eb/0x390 [ 499.680069][ T30] ? srso_alias_return_thunk+0x5/0xfbef5 [ 499.685785][ T30] ? lockdep_hardirqs_on+0x99/0x150 [ 499.699450][ T30] ? srso_alias_return_thunk+0x5/0xfbef5 [ 499.709509][ T30] unregister_netdevice_queue+0x303/0x370 [ 499.732062][ T30] ? __pfx_unregister_netdevice_queue+0x10/0x10 [ 499.739185][ T30] ? srso_alias_return_thunk+0x5/0xfbef5 [ 499.750160][ T30] __tun_detach+0x6b9/0x1600 [ 499.754861][ T30] tun_chr_close+0x105/0x1b0 [ 499.759498][ T30] ? __pfx_tun_chr_close+0x10/0x10 [ 499.772372][ T30] __fput+0x241/0x880 [ 499.776458][ T30] task_work_run+0x251/0x310 [ 499.792633][ T30] ? kasan_quarantine_put+0xdc/0x230 [ 499.798212][ T30] ? __pfx_task_work_run+0x10/0x10 [ 499.812454][ T30] ? do_exit+0xa2a/0x28e0 [ 499.818754][ T30] ? srso_alias_return_thunk+0x5/0xfbef5 [ 499.832563][ T30] ? kmem_cache_free+0x1a2/0x420 [ 499.837603][ T30] ? do_exit+0xa2a/0x28e0 [ 499.851662][ T30] do_exit+0xa2f/0x28e0 [ 499.855922][ T30] ? srso_alias_return_thunk+0x5/0xfbef5 [ 499.868705][ T30] ? __pfx_do_exit+0x10/0x10 [ 499.874948][ T30] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 499.887394][ T30] ? srso_alias_return_thunk+0x5/0xfbef5 [ 499.896460][ T30] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 499.909610][ T30] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 499.920684][ T30] ? _raw_spin_lock_irq+0xdf/0x120 [ 499.925892][ T30] do_group_exit+0x207/0x2c0 [ 499.941278][ T30] ? _raw_spin_unlock_irq+0x23/0x50 [ 499.946575][ T30] ? srso_alias_return_thunk+0x5/0xfbef5 [ 499.961948][ T30] ? lockdep_hardirqs_on+0x99/0x150 [ 499.967257][ T30] get_signal+0x176f/0x1810 [ 499.980178][ T30] ? __sock_sendmsg+0x113/0x270 [ 499.985146][ T30] ? __pfx_get_signal+0x10/0x10 [ 499.997469][ T30] arch_do_signal_or_restart+0x96/0x860 [ 500.005172][ T30] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 500.019572][ T30] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 500.037925][ T30] ? syscall_exit_to_user_mode+0xa3/0x370 [ 500.054162][ T30] syscall_exit_to_user_mode+0xc9/0x370 [ 500.059819][ T30] do_syscall_64+0x100/0x230 [ 500.073929][ T30] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 500.079908][ T30] RIP: 0033:0x7fbdfff7fd8c [ 500.090721][ T30] RSP: 002b:00007fffb922f080 EFLAGS: 00000293 ORIG_RAX: 000000000000002c [ 500.099220][ T30] RAX: 000000000000003c RBX: 00007fbe00c64620 RCX: 00007fbdfff7fd8c [ 500.114892][ T30] RDX: 000000000000003c RSI: 00007fbe00c64670 RDI: 0000000000000003 [ 500.135453][ T30] RBP: 0000000000000000 R08: 00007fffb922f0d4 R09: 000000000000000c [ 500.148780][ T30] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000003 [ 500.160075][ T30] R13: 0000000000000000 R14: 00007fbe00c64670 R15: 0000000000000000 [ 500.168200][ T30] [ 500.187705][ T30] INFO: task syz.4.2096:11314 blocked for more than 145 seconds. [ 500.203934][ T30] Not tainted 6.11.0-syzkaller-10547-g684a64bf32b6 #0 [ 500.215257][ T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 500.230237][ T30] task:syz.4.2096 state:D stack:24816 pid:11314 tgid:11313 ppid:6890 flags:0x00004002 [ 500.252318][ T30] Call Trace: [ 500.255669][ T30] [ 500.258629][ T30] __schedule+0x1895/0x4b30 [ 500.271009][ T30] ? __pfx___schedule+0x10/0x10 [ 500.275957][ T30] ? __pfx_lock_release+0x10/0x10 [ 500.293956][ T30] ? __mutex_trylock_common+0x92/0x2e0 [ 500.299515][ T30] ? schedule+0x90/0x320 [ 500.310152][ T30] schedule+0x14b/0x320 [ 500.314394][ T30] schedule_preempt_disabled+0x13/0x30 [ 500.319907][ T30] __mutex_lock+0x6a7/0xd70 [ 500.334673][ T30] ? __mutex_lock+0x52a/0xd70 [ 500.339960][ T30] ? tun_chr_close+0x3b/0x1b0 [ 500.361078][ T30] ? __pfx___mutex_lock+0x10/0x10 [ 500.366786][ T30] ? __pfx_call_rcu+0x10/0x10 [ 500.380409][ T30] tun_chr_close+0x3b/0x1b0 [ 500.384997][ T30] ? __pfx_tun_chr_close+0x10/0x10 [ 500.399138][ T30] __fput+0x241/0x880 [ 500.408542][ T30] task_work_run+0x251/0x310 [ 500.416892][ T30] ? kasan_quarantine_put+0xdc/0x230 [ 500.429209][ T30] ? __pfx_task_work_run+0x10/0x10 [ 500.439279][ T30] ? do_exit+0xa2a/0x28e0 [ 500.449021][ T30] ? srso_alias_return_thunk+0x5/0xfbef5 [ 500.459481][ T30] ? kmem_cache_free+0x1a2/0x420 [ 500.471488][ T30] ? do_exit+0xa2a/0x28e0 [ 500.475913][ T30] do_exit+0xa2f/0x28e0 [ 500.488840][ T30] ? srso_alias_return_thunk+0x5/0xfbef5 [ 500.495158][ T30] ? __pfx_do_exit+0x10/0x10 [ 500.499809][ T30] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 500.515010][ T30] ? srso_alias_return_thunk+0x5/0xfbef5 [ 500.528852][ T30] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 500.537335][ T30] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 500.550395][ T30] ? _raw_spin_lock_irq+0xdf/0x120 [ 500.556509][ T30] do_group_exit+0x207/0x2c0 [ 500.569272][ T30] ? _raw_spin_unlock_irq+0x23/0x50 [ 500.576413][ T30] ? srso_alias_return_thunk+0x5/0xfbef5 [ 500.590143][ T30] ? lockdep_hardirqs_on+0x99/0x150 [ 500.595447][ T30] get_signal+0x176f/0x1810 [ 500.608037][ T30] ? __pfx_get_signal+0x10/0x10 [ 500.613181][ T30] ? call_rcu+0x731/0xa70 [ 500.617579][ T30] arch_do_signal_or_restart+0x96/0x860 [ 500.626767][ T30] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 500.645558][ T30] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 500.655430][ T30] ? syscall_exit_to_user_mode+0xa3/0x370 [ 500.666184][ T30] syscall_exit_to_user_mode+0xc9/0x370 [ 500.675758][ T30] do_syscall_64+0x100/0x230 [ 500.685428][ T30] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 500.696319][ T30] RIP: 0033:0x7f170757def9 [ 500.705715][ T30] RSP: 002b:00007f1708307038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 500.718677][ T30] RAX: 0000000000000058 RBX: 00007f1707735f80 RCX: 00007f170757def9 [ 500.730069][ T30] RDX: 0000000000000000 RSI: 0000000020000680 RDI: 0000000000000003 [ 500.756018][ T30] RBP: 00007f17075f0b76 R08: 0000000000000000 R09: 0000000000000000 [ 500.773183][ T30] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 500.786232][ T30] R13: 0000000000000000 R14: 00007f1707735f80 R15: 00007ffe9d224748 [ 500.798296][ T30] [ 500.809655][ T30] INFO: task syz.1.2104:11334 blocked for more than 146 seconds. [ 500.828789][ T30] Not tainted 6.11.0-syzkaller-10547-g684a64bf32b6 #0 [ 500.836549][ T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 500.855724][ T30] task:syz.1.2104 state:D stack:25848 pid:11334 tgid:11331 ppid:5224 flags:0x00004002 [ 500.881748][ T30] Call Trace: [ 500.885101][ T30] [ 500.888064][ T30] __schedule+0x1895/0x4b30 [ 500.901733][ T30] ? __pfx___schedule+0x10/0x10 [ 500.906687][ T30] ? __pfx_lock_release+0x10/0x10 [ 500.918880][ T30] ? __mutex_trylock_common+0x92/0x2e0 [ 500.926981][ T30] ? schedule+0x90/0x320 [ 500.939106][ T30] schedule+0x14b/0x320 [ 500.947427][ T30] schedule_preempt_disabled+0x13/0x30 [ 500.960546][ T30] __mutex_lock+0x6a7/0xd70 [ 500.967075][ T30] ? __mutex_lock+0x52a/0xd70 [ 500.982524][ T1262] ieee802154 phy0 wpan0: encryption failed: -22 [ 500.988900][ T1262] ieee802154 phy1 wpan1: encryption failed: -22 [ 501.005245][ T30] ? tun_chr_close+0x3b/0x1b0 [ 501.017506][ T30] ? __pfx___mutex_lock+0x10/0x10 [ 501.023156][ T30] ? __pfx_call_rcu+0x10/0x10 [ 501.027912][ T30] tun_chr_close+0x3b/0x1b0 [ 501.040467][ T30] ? __pfx_tun_chr_close+0x10/0x10 [ 501.048789][ T30] __fput+0x241/0x880 [ 501.068279][ T30] task_work_run+0x251/0x310 [ 501.080352][ T30] ? kasan_quarantine_put+0xdc/0x230 [ 501.085757][ T30] ? __pfx_task_work_run+0x10/0x10 [ 501.102074][ T30] ? do_exit+0xa2a/0x28e0 [ 501.106493][ T30] ? srso_alias_return_thunk+0x5/0xfbef5 [ 501.120295][ T30] ? kmem_cache_free+0x1a2/0x420 [ 501.125332][ T30] ? do_exit+0xa2a/0x28e0 [ 501.129708][ T30] do_exit+0xa2f/0x28e0 [ 501.141591][ T30] ? srso_alias_return_thunk+0x5/0xfbef5 [ 501.149135][ T30] ? __pfx_do_exit+0x10/0x10 [ 501.163425][ T30] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 501.168899][ T30] ? srso_alias_return_thunk+0x5/0xfbef5 [ 501.185045][ T30] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 501.196022][ T30] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 501.210902][ T30] ? _raw_spin_lock_irq+0xdf/0x120 [ 501.216072][ T30] do_group_exit+0x207/0x2c0 [ 501.230110][ T30] ? _raw_spin_unlock_irq+0x23/0x50 [ 501.235363][ T30] ? srso_alias_return_thunk+0x5/0xfbef5 [ 501.250220][ T30] ? lockdep_hardirqs_on+0x99/0x150 [ 501.255480][ T30] get_signal+0x176f/0x1810 [ 501.269639][ T30] ? __pfx_get_signal+0x10/0x10 [ 501.274958][ T30] ? srso_alias_return_thunk+0x5/0xfbef5 [ 501.288696][ T30] ? kick_process+0xef/0x160 [ 501.294694][ T30] arch_do_signal_or_restart+0x96/0x860 [ 501.309451][ T30] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 501.320490][ T30] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 501.326536][ T30] ? syscall_exit_to_user_mode+0xa3/0x370 [ 501.340119][ T30] syscall_exit_to_user_mode+0xc9/0x370 [ 501.345716][ T30] do_syscall_64+0x100/0x230 [ 501.361451][ T30] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 501.367775][ T30] RIP: 0033:0x7f3c8057def9 [ 501.380693][ T30] RSP: 002b:00007f3c7ffff038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036 [ 501.389157][ T30] RAX: ffffffffffffffea RBX: 00007f3c80736058 RCX: 00007f3c8057def9 [ 501.409148][ T30] RDX: 0000000000000030 RSI: 0000000000000029 RDI: 0000000000000003 [ 501.419771][ T30] RBP: 00007f3c805f0b76 R08: 0000000000000110 R09: 0000000000000000 [ 501.438988][ T30] R10: 0000000020000a80 R11: 0000000000000246 R12: 0000000000000000 [ 501.447405][ T30] R13: 0000000000000001 R14: 00007f3c80736058 R15: 00007ffe52250a38 [ 501.464503][ T30] [ 501.467620][ T30] INFO: task syz.0.2109:11344 blocked for more than 147 seconds. [ 501.482663][ T30] Not tainted 6.11.0-syzkaller-10547-g684a64bf32b6 #0 [ 501.489968][ T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 501.508534][ T30] task:syz.0.2109 state:D stack:23760 pid:11344 tgid:11343 ppid:5228 flags:0x00004002 [ 501.528506][ T30] Call Trace: [ 501.533902][ T30] [ 501.536864][ T30] __schedule+0x1895/0x4b30 [ 501.550545][ T30] ? __pfx___schedule+0x10/0x10 [ 501.560330][ T30] ? __pfx_lock_release+0x10/0x10 [ 501.565411][ T30] ? __mutex_trylock_common+0x92/0x2e0 [ 501.581958][ T30] ? schedule+0x90/0x320 [ 501.587068][ T30] schedule+0x14b/0x320 [ 501.597529][ T30] schedule_preempt_disabled+0x13/0x30 [ 501.605879][ T30] __mutex_lock+0x6a7/0xd70 [ 501.619773][ T30] ? __mutex_lock+0x52a/0xd70 [ 501.628405][ T30] ? tun_chr_close+0x3b/0x1b0 [ 501.641824][ T30] ? __pfx___mutex_lock+0x10/0x10 [ 501.646907][ T30] ? __pfx_call_rcu+0x10/0x10 [ 501.669285][ T30] tun_chr_close+0x3b/0x1b0 [ 501.674668][ T30] ? __pfx_tun_chr_close+0x10/0x10 [ 501.680801][ T30] __fput+0x241/0x880 [ 501.684844][ T30] task_work_run+0x251/0x310 [ 501.689469][ T30] ? kasan_quarantine_put+0xdc/0x230 [ 501.706107][ T30] ? __pfx_task_work_run+0x10/0x10 [ 501.718049][ T30] ? do_exit+0xa2a/0x28e0 [ 501.730250][ T30] ? srso_alias_return_thunk+0x5/0xfbef5 [ 501.736942][ T30] ? kmem_cache_free+0x1a2/0x420 [ 501.753100][ T30] ? do_exit+0xa2a/0x28e0 [ 501.757685][ T30] do_exit+0xa2f/0x28e0 [ 501.780284][ T30] ? srso_alias_return_thunk+0x5/0xfbef5 [ 501.788438][ T30] ? __pfx_do_exit+0x10/0x10 [ 501.806916][ T30] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 501.818275][ T30] ? srso_alias_return_thunk+0x5/0xfbef5 [ 501.829064][ T30] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 501.839461][ T30] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 501.850229][ T30] ? _raw_spin_lock_irq+0xdf/0x120 [ 501.855380][ T30] do_group_exit+0x207/0x2c0 [ 501.859999][ T30] ? _raw_spin_unlock_irq+0x23/0x50 [ 501.889615][ T30] ? srso_alias_return_thunk+0x5/0xfbef5 [ 501.895897][ T30] ? lockdep_hardirqs_on+0x99/0x150 [ 501.909242][ T30] get_signal+0x176f/0x1810 [ 501.914217][ T30] ? __pfx_get_signal+0x10/0x10 [ 501.919124][ T30] ? call_rcu+0x731/0xa70 [ 501.930239][ T30] arch_do_signal_or_restart+0x96/0x860 [ 501.935852][ T30] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 501.951977][ T30] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 501.958043][ T30] ? syscall_exit_to_user_mode+0xa3/0x370 [ 501.973991][ T30] syscall_exit_to_user_mode+0xc9/0x370 [ 501.979984][ T30] do_syscall_64+0x100/0x230 [ 501.999049][ T30] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 502.008775][ T30] RIP: 0033:0x7fb1cad7def9 [ 502.018176][ T30] RSP: 002b:00007fb1cbb0b038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 502.030607][ T30] RAX: 0000000000000050 RBX: 00007fb1caf35f80 RCX: 00007fb1cad7def9 [ 502.038626][ T30] RDX: 0000000000000000 RSI: 0000000020000200 RDI: 0000000000000003 [ 502.051926][ T30] RBP: 00007fb1cadf0b76 R08: 0000000000000000 R09: 0000000000000000 [ 502.059947][ T30] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 502.078947][ T30] R13: 0000000000000000 R14: 00007fb1caf35f80 R15: 00007ffdf7941068 [ 502.090937][ T30] [ 502.094080][ T30] INFO: task syz.2.2120:11369 blocked for more than 147 seconds. [ 502.129668][ T30] Not tainted 6.11.0-syzkaller-10547-g684a64bf32b6 #0 [ 502.137575][ T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 502.156055][ T30] task:syz.2.2120 state:D stack:25464 pid:11369 tgid:11368 ppid:9639 flags:0x00004002 [ 502.172328][ T30] Call Trace: [ 502.175672][ T30] [ 502.178641][ T30] __schedule+0x1895/0x4b30 [ 502.190675][ T30] ? __pfx___schedule+0x10/0x10 [ 502.198277][ T30] ? __pfx_lock_release+0x10/0x10 [ 502.211198][ T30] ? __mutex_trylock_common+0x92/0x2e0 [ 502.216773][ T30] ? schedule+0x90/0x320 [ 502.233486][ T30] schedule+0x14b/0x320 [ 502.237741][ T30] schedule_preempt_disabled+0x13/0x30 [ 502.247206][ T30] __mutex_lock+0x6a7/0xd70 [ 502.256736][ T30] ? __mutex_lock+0x52a/0xd70 [ 502.278637][ T30] ? tun_chr_close+0x3b/0x1b0 [ 502.285714][ T30] ? __pfx___mutex_lock+0x10/0x10 [ 502.299883][ T30] ? __pfx_call_rcu+0x10/0x10 [ 502.306029][ T30] tun_chr_close+0x3b/0x1b0 [ 502.318764][ T30] ? __pfx_tun_chr_close+0x10/0x10 [ 502.324546][ T30] __fput+0x241/0x880 [ 502.328609][ T30] task_work_run+0x251/0x310 [ 502.348522][ T30] ? kasan_quarantine_put+0xdc/0x230 [ 502.354367][ T30] ? __pfx_task_work_run+0x10/0x10 [ 502.359633][ T30] ? do_exit+0xa2a/0x28e0 [ 502.370175][ T30] ? srso_alias_return_thunk+0x5/0xfbef5 [ 502.385235][ T30] ? kmem_cache_free+0x1a2/0x420 [ 502.395726][ T30] ? do_exit+0xa2a/0x28e0 [ 502.406987][ T30] do_exit+0xa2f/0x28e0 [ 502.413856][ T30] ? srso_alias_return_thunk+0x5/0xfbef5 [ 502.419567][ T30] ? __pfx_do_exit+0x10/0x10 [ 502.430182][ T30] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 502.435666][ T30] ? srso_alias_return_thunk+0x5/0xfbef5 [ 502.454356][ T30] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 502.466773][ T30] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 502.476480][ T30] ? _raw_spin_lock_irq+0xdf/0x120 [ 502.488571][ T30] do_group_exit+0x207/0x2c0 [ 502.498533][ T30] ? _raw_spin_unlock_irq+0x23/0x50 [ 502.510514][ T30] ? srso_alias_return_thunk+0x5/0xfbef5 [ 502.516251][ T30] ? lockdep_hardirqs_on+0x99/0x150 [ 502.530427][ T30] get_signal+0x176f/0x1810 [ 502.535047][ T30] ? __pfx_get_signal+0x10/0x10 [ 502.539974][ T30] arch_do_signal_or_restart+0x96/0x860 [ 502.568887][ T30] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 502.575706][ T30] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 502.590118][ T30] ? syscall_exit_to_user_mode+0xa3/0x370 [ 502.596226][ T30] syscall_exit_to_user_mode+0xc9/0x370 [ 502.611868][ T30] do_syscall_64+0x100/0x230 [ 502.616580][ T30] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 502.628809][ T30] RIP: 0033:0x7fdc9077def9 [ 502.636478][ T30] RSP: 002b:00007fdc91561038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 502.650262][ T30] RAX: 000000000000001c RBX: 00007fdc90935f80 RCX: 00007fdc9077def9 [ 502.658324][ T30] RDX: 0000000000000000 RSI: 00000000200000c0 RDI: 0000000000000003 [ 502.686422][ T30] RBP: 00007fdc907f0b76 R08: 0000000000000000 R09: 0000000000000000 [ 502.699976][ T30] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 502.708323][ T30] R13: 0000000000000000 R14: 00007fdc90935f80 R15: 00007ffc5be56328 [ 502.726482][ T30] [ 502.729680][ T30] INFO: task syz-executor:11370 blocked for more than 148 seconds. [ 502.739559][ T30] Not tainted 6.11.0-syzkaller-10547-g684a64bf32b6 #0 [ 502.755819][ T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 502.769533][ T30] task:syz-executor state:D stack:24128 pid:11370 tgid:11370 ppid:1 flags:0x00000004 [ 502.792062][ T30] Call Trace: [ 502.798725][ T30] [ 502.807624][ T30] __schedule+0x1895/0x4b30 [ 502.816141][ T30] ? __pfx___schedule+0x10/0x10 [ 502.829289][ T30] ? __pfx_lock_release+0x10/0x10 [ 502.846546][ T30] ? __mutex_trylock_common+0x92/0x2e0 [ 502.856463][ T30] ? schedule+0x90/0x320 [ 502.865740][ T30] schedule+0x14b/0x320 [ 502.869970][ T30] schedule_preempt_disabled+0x13/0x30 [ 502.879494][ T30] __mutex_lock+0x6a7/0xd70 [ 502.890096][ T30] ? __mutex_lock+0x52a/0xd70 [ 502.894877][ T30] ? rtnetlink_rcv_msg+0x6e6/0xcf0 [ 502.920359][ T30] ? __pfx___mutex_lock+0x10/0x10 [ 502.925504][ T30] rtnetlink_rcv_msg+0x6e6/0xcf0 [ 502.938296][ T30] ? rtnetlink_rcv_msg+0x1a7/0xcf0 [ 502.944000][ T30] ? __lock_acquire+0x1384/0x2050 [ 502.949104][ T30] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 502.961084][ T30] netlink_rcv_skb+0x1e5/0x430 [ 502.965956][ T30] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 502.979649][ T30] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 502.998003][ T30] ? netlink_deliver_tap+0x2e/0x1b0 [ 503.003930][ T30] netlink_unicast+0x7f8/0x990 [ 503.008765][ T30] ? __pfx_netlink_unicast+0x10/0x10 [ 503.028003][ T30] ? srso_alias_return_thunk+0x5/0xfbef5 [ 503.035658][ T30] ? srso_alias_return_thunk+0x5/0xfbef5 [ 503.049694][ T30] ? srso_alias_return_thunk+0x5/0xfbef5 [ 503.055932][ T30] ? srso_alias_return_thunk+0x5/0xfbef5 [ 503.071634][ T30] ? __check_object_size+0x48e/0x900 [ 503.077028][ T30] netlink_sendmsg+0x8e4/0xcb0 [ 503.091756][ T30] ? __pfx_netlink_sendmsg+0x10/0x10 [ 503.097154][ T30] ? srso_alias_return_thunk+0x5/0xfbef5 [ 503.111486][ T30] ? aa_sock_msg_perm+0x91/0x160 [ 503.117342][ T30] ? srso_alias_return_thunk+0x5/0xfbef5 [ 503.137167][ T30] ? __pfx_netlink_sendmsg+0x10/0x10 [ 503.158711][ T30] __sock_sendmsg+0x223/0x270 [ 503.170516][ T30] __sys_sendto+0x39b/0x4f0 [ 503.175126][ T30] ? __pfx___sys_sendto+0x10/0x10 [ 503.189646][ T30] ? srso_alias_return_thunk+0x5/0xfbef5 [ 503.198170][ T30] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 503.210097][ T30] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 503.220839][ T30] __x64_sys_sendto+0xde/0x100 [ 503.225686][ T30] do_syscall_64+0xf3/0x230 [ 503.239960][ T30] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 503.246205][ T30] RIP: 0033:0x7fc9a977fd8c [ 503.260299][ T30] RSP: 002b:00007ffc1687cff0 EFLAGS: 00000293 ORIG_RAX: 000000000000002c [ 503.268808][ T30] RAX: ffffffffffffffda RBX: 00007fc9aa464620 RCX: 00007fc9a977fd8c [ 503.284285][ T30] RDX: 000000000000002c RSI: 00007fc9aa464670 RDI: 0000000000000003 [ 503.299736][ T30] RBP: 0000000000000000 R08: 00007ffc1687d044 R09: 000000000000000c [ 503.318441][ T30] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000003 [ 503.330695][ T30] R13: 0000000000000000 R14: 00007fc9aa464670 R15: 0000000000000000 [ 503.338754][ T30] [ 503.352779][ T30] INFO: task syz-executor:11373 blocked for more than 148 seconds. [ 503.376435][ T30] Not tainted 6.11.0-syzkaller-10547-g684a64bf32b6 #0 [ 503.386481][ T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 503.404070][ T30] task:syz-executor state:D stack:24128 pid:11373 tgid:11373 ppid:1 flags:0x00000004 [ 503.423265][ T30] Call Trace: [ 503.426616][ T30] [ 503.429583][ T30] __schedule+0x1895/0x4b30 [ 503.442520][ T30] ? __pfx___schedule+0x10/0x10 [ 503.447571][ T30] ? __pfx_lock_release+0x10/0x10 [ 503.459650][ T30] ? __mutex_trylock_common+0x92/0x2e0 [ 503.480202][ T30] ? schedule+0x90/0x320 [ 503.484543][ T30] schedule+0x14b/0x320 [ 503.488752][ T30] schedule_preempt_disabled+0x13/0x30 [ 503.504182][ T30] __mutex_lock+0x6a7/0xd70 [ 503.508798][ T30] ? __mutex_lock+0x52a/0xd70 [ 503.519026][ T30] ? rtnetlink_rcv_msg+0x6e6/0xcf0 [ 503.529685][ T30] ? __pfx___mutex_lock+0x10/0x10 [ 503.541522][ T30] rtnetlink_rcv_msg+0x6e6/0xcf0 [ 503.546608][ T30] ? rtnetlink_rcv_msg+0x1a7/0xcf0 [ 503.566751][ T30] ? __lock_acquire+0x1384/0x2050 [ 503.574639][ T30] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 503.589841][ T30] netlink_rcv_skb+0x1e5/0x430 [ 503.597557][ T30] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 503.610282][ T30] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 503.622688][ T30] ? netlink_deliver_tap+0x2e/0x1b0 [ 503.627990][ T30] netlink_unicast+0x7f8/0x990 [ 503.643725][ T30] ? __pfx_netlink_unicast+0x10/0x10 [ 503.649285][ T30] ? srso_alias_return_thunk+0x5/0xfbef5 [ 503.660262][ T30] ? srso_alias_return_thunk+0x5/0xfbef5 [ 503.665992][ T30] ? srso_alias_return_thunk+0x5/0xfbef5 [ 503.680813][ T30] ? srso_alias_return_thunk+0x5/0xfbef5 [ 503.686551][ T30] ? __check_object_size+0x48e/0x900 [ 503.700409][ T30] netlink_sendmsg+0x8e4/0xcb0 [ 503.709630][ T30] ? __pfx_netlink_sendmsg+0x10/0x10 [ 503.720064][ T30] ? srso_alias_return_thunk+0x5/0xfbef5 [ 503.725787][ T30] ? aa_sock_msg_perm+0x91/0x160 [ 503.738834][ T30] ? srso_alias_return_thunk+0x5/0xfbef5 [ 503.745680][ T30] ? __pfx_netlink_sendmsg+0x10/0x10 [ 503.760988][ T30] __sock_sendmsg+0x223/0x270 [ 503.765768][ T30] __sys_sendto+0x39b/0x4f0 [ 503.778793][ T30] ? __pfx___sys_sendto+0x10/0x10 [ 503.786556][ T30] ? srso_alias_return_thunk+0x5/0xfbef5 [ 503.802604][ T30] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 503.819808][ T30] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 503.830560][ T30] __x64_sys_sendto+0xde/0x100 [ 503.835381][ T30] do_syscall_64+0xf3/0x230 [ 503.839924][ T30] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 503.854987][ T30] RIP: 0033:0x7f4e2b57fd8c [ 503.859449][ T30] RSP: 002b:00007fff84653390 EFLAGS: 00000293 ORIG_RAX: 000000000000002c [ 503.876011][ T30] RAX: ffffffffffffffda RBX: 00007f4e2c264620 RCX: 00007f4e2b57fd8c [ 503.889221][ T30] RDX: 000000000000002c RSI: 00007f4e2c264670 RDI: 0000000000000003 [ 503.901169][ T30] RBP: 0000000000000000 R08: 00007fff846533e4 R09: 000000000000000c [ 503.920239][ T30] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000003 [ 503.938233][ T30] R13: 0000000000000000 R14: 00007f4e2c264670 R15: 0000000000000000 [ 503.947910][ T30] [ 503.957998][ T30] INFO: task syz-executor:11376 blocked for more than 149 seconds. [ 503.967728][ T30] Not tainted 6.11.0-syzkaller-10547-g684a64bf32b6 #0 [ 503.982351][ T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 503.998489][ T30] task:syz-executor state:D stack:24128 pid:11376 tgid:11376 ppid:1 flags:0x00000004 [ 504.025478][ T30] Call Trace: [ 504.028793][ T30] [ 504.039867][ T30] __schedule+0x1895/0x4b30 [ 504.047287][ T30] ? __pfx___schedule+0x10/0x10 [ 504.060440][ T30] ? __pfx_lock_release+0x10/0x10 [ 504.065550][ T30] ? __mutex_trylock_common+0x92/0x2e0 [ 504.080398][ T30] ? schedule+0x90/0x320 [ 504.084687][ T30] schedule+0x14b/0x320 [ 504.088882][ T30] schedule_preempt_disabled+0x13/0x30 [ 504.106539][ T30] __mutex_lock+0x6a7/0xd70 [ 504.114850][ T30] ? __mutex_lock+0x52a/0xd70 [ 504.119629][ T30] ? rtnetlink_rcv_msg+0x6e6/0xcf0 [ 504.139668][ T30] ? __pfx___mutex_lock+0x10/0x10 [ 504.147824][ T30] rtnetlink_rcv_msg+0x6e6/0xcf0 [ 504.158542][ T30] ? rtnetlink_rcv_msg+0x1a7/0xcf0 [ 504.167994][ T30] ? __lock_acquire+0x1384/0x2050 [ 504.179097][ T30] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 504.200295][ T30] netlink_rcv_skb+0x1e5/0x430 [ 504.205167][ T30] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 504.220716][ T30] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 504.226087][ T30] ? netlink_deliver_tap+0x2e/0x1b0 [ 504.246554][ T30] netlink_unicast+0x7f8/0x990 [ 504.258669][ T30] ? __pfx_netlink_unicast+0x10/0x10 [ 504.268487][ T30] ? srso_alias_return_thunk+0x5/0xfbef5 [ 504.280223][ T30] ? srso_alias_return_thunk+0x5/0xfbef5 [ 504.285972][ T30] ? srso_alias_return_thunk+0x5/0xfbef5 [ 504.300888][ T30] ? srso_alias_return_thunk+0x5/0xfbef5 [ 504.306588][ T30] ? __check_object_size+0x48e/0x900 [ 504.320005][ T30] netlink_sendmsg+0x8e4/0xcb0 [ 504.325265][ T30] ? __pfx_netlink_sendmsg+0x10/0x10 [ 504.343978][ T30] ? srso_alias_return_thunk+0x5/0xfbef5 [ 504.349691][ T30] ? aa_sock_msg_perm+0x91/0x160 [ 504.368165][ T30] ? srso_alias_return_thunk+0x5/0xfbef5 [ 504.376738][ T30] ? __pfx_netlink_sendmsg+0x10/0x10 [ 504.388012][ T30] __sock_sendmsg+0x223/0x270 [ 504.396981][ T30] __sys_sendto+0x39b/0x4f0 [ 504.407627][ T30] ? __pfx___sys_sendto+0x10/0x10 [ 504.415560][ T30] ? srso_alias_return_thunk+0x5/0xfbef5 [ 504.430215][ T30] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 504.442398][ T30] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 504.448842][ T30] __x64_sys_sendto+0xde/0x100 [ 504.462779][ T30] do_syscall_64+0xf3/0x230 [ 504.467369][ T30] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 504.485019][ T30] RIP: 0033:0x7efdfe17fd8c [ 504.489516][ T30] RSP: 002b:00007ffd320f8870 EFLAGS: 00000293 ORIG_RAX: 000000000000002c [ 504.502204][ T30] RAX: ffffffffffffffda RBX: 00007efdfee64620 RCX: 00007efdfe17fd8c [ 504.520231][ T30] RDX: 000000000000002c RSI: 00007efdfee64670 RDI: 0000000000000003 [ 504.529585][ T30] RBP: 0000000000000000 R08: 00007ffd320f88c4 R09: 000000000000000c [ 504.548040][ T30] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000003 [ 504.558711][ T30] R13: 0000000000000000 R14: 00007efdfee64670 R15: 0000000000000000 [ 504.575497][ T30] [ 504.578564][ T30] Future hung task reports are suppressed, see sysctl kernel.hung_task_warnings [ 504.598263][ T30] INFO: task syz-executor:11379 blocked for more than 150 seconds. [ 504.610069][ T30] Not tainted 6.11.0-syzkaller-10547-g684a64bf32b6 #0 [ 504.617396][ T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 504.636677][ T30] task:syz-executor state:D stack:24128 pid:11379 tgid:11379 ppid:1 flags:0x00000004 [ 504.650120][ T30] Call Trace: [ 504.654264][ T30] [ 504.657237][ T30] __schedule+0x1895/0x4b30 [ 504.672343][ T30] ? __pfx___schedule+0x10/0x10 [ 504.677278][ T30] ? __pfx_lock_release+0x10/0x10 [ 504.691623][ T30] ? __mutex_trylock_common+0x92/0x2e0 [ 504.697167][ T30] ? schedule+0x90/0x320 [ 504.713028][ T30] schedule+0x14b/0x320 [ 504.717295][ T30] schedule_preempt_disabled+0x13/0x30 [ 504.727898][ T30] __mutex_lock+0x6a7/0xd70 [ 504.738117][ T30] ? __mutex_lock+0x52a/0xd70 [ 504.749675][ T30] ? rtnetlink_rcv_msg+0x6e6/0xcf0 [ 504.758733][ T30] ? __pfx___mutex_lock+0x10/0x10 [ 504.769792][ T30] rtnetlink_rcv_msg+0x6e6/0xcf0 [ 504.778825][ T30] ? rtnetlink_rcv_msg+0x1a7/0xcf0 [ 504.789552][ T30] ? __lock_acquire+0x1384/0x2050 [ 504.798424][ T30] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 504.811953][ T30] netlink_rcv_skb+0x1e5/0x430 [ 504.816834][ T30] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 504.835808][ T30] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 504.845515][ T30] ? netlink_deliver_tap+0x2e/0x1b0 [ 504.856466][ T30] netlink_unicast+0x7f8/0x990 [ 504.866048][ T30] ? __pfx_netlink_unicast+0x10/0x10 [ 504.876544][ T30] ? srso_alias_return_thunk+0x5/0xfbef5 [ 504.886304][ T30] ? srso_alias_return_thunk+0x5/0xfbef5 [ 504.897600][ T30] ? srso_alias_return_thunk+0x5/0xfbef5 [ 504.913347][ T30] ? srso_alias_return_thunk+0x5/0xfbef5 [ 504.919136][ T30] ? __check_object_size+0x48e/0x900 [ 504.938492][ T30] netlink_sendmsg+0x8e4/0xcb0 [ 504.947827][ T30] ? __pfx_netlink_sendmsg+0x10/0x10 [ 504.958094][ T30] ? srso_alias_return_thunk+0x5/0xfbef5 [ 504.968706][ T30] ? aa_sock_msg_perm+0x91/0x160 [ 504.979534][ T30] ? srso_alias_return_thunk+0x5/0xfbef5 [ 504.989240][ T30] ? __pfx_netlink_sendmsg+0x10/0x10 [ 504.999517][ T30] __sock_sendmsg+0x223/0x270 [ 505.008724][ T30] __sys_sendto+0x39b/0x4f0 [ 505.018379][ T30] ? __pfx___sys_sendto+0x10/0x10 [ 505.028745][ T30] ? srso_alias_return_thunk+0x5/0xfbef5 [ 505.050253][ T30] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 505.057133][ T30] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 505.070565][ T30] __x64_sys_sendto+0xde/0x100 [ 505.077488][ T30] do_syscall_64+0xf3/0x230 [ 505.088236][ T30] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 505.098490][ T30] RIP: 0033:0x7f963a37fd8c [ 505.109647][ T30] RSP: 002b:00007ffda8b63e60 EFLAGS: 00000293 ORIG_RAX: 000000000000002c [ 505.121481][ T30] RAX: ffffffffffffffda RBX: 00007f963b064620 RCX: 00007f963a37fd8c [ 505.129525][ T30] RDX: 0000000000000028 RSI: 00007f963b064670 RDI: 0000000000000003 [ 505.154062][ T30] RBP: 0000000000000000 R08: 00007ffda8b63eb4 R09: 000000000000000c [ 505.171387][ T30] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000003 [ 505.179668][ T30] R13: 0000000000000000 R14: 00007f963b064670 R15: 0000000000000000 [ 505.195036][ T30] [ 505.198128][ T30] Future hung task reports are suppressed, see sysctl kernel.hung_task_warnings [ 505.211845][ T30] INFO: task syz-executor:11382 blocked for more than 150 seconds. [ 505.219820][ T30] Not tainted 6.11.0-syzkaller-10547-g684a64bf32b6 #0 [ 505.242505][ T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 505.264545][ T30] task:syz-executor state:D stack:24128 pid:11382 tgid:11382 ppid:1 flags:0x00004006 [ 505.285373][ T30] Call Trace: [ 505.288696][ T30] [ 505.295588][ T30] __schedule+0x1895/0x4b30 [ 505.305196][ T30] ? __pfx___schedule+0x10/0x10 [ 505.313783][ T30] ? __pfx_lock_release+0x10/0x10 [ 505.318866][ T30] ? __mutex_trylock_common+0x92/0x2e0 [ 505.330274][ T30] ? schedule+0x90/0x320 [ 505.334575][ T30] schedule+0x14b/0x320 [ 505.338767][ T30] schedule_preempt_disabled+0x13/0x30 [ 505.354751][ T30] __mutex_lock+0x6a7/0xd70 [ 505.359717][ T30] ? __mutex_lock+0x52a/0xd70 [ 505.368337][ T30] ? register_nexthop_notifier+0x84/0x290 [ 505.382810][ T30] ? __pfx___mutex_lock+0x10/0x10 [ 505.387919][ T30] ? srso_alias_return_thunk+0x5/0xfbef5 [ 505.405168][ T30] ? __asan_memset+0x23/0x50 [ 505.409843][ T30] register_nexthop_notifier+0x84/0x290 [ 505.419381][ T30] ? __pfx_lockdep_init_map_type+0x10/0x10 [ 505.429986][ T30] ? __pfx_debug_check_no_locks_freed+0x10/0x10 [ 505.436695][ T30] ? __pfx_register_nexthop_notifier+0x10/0x10 [ 505.454626][ T30] ? srso_alias_return_thunk+0x5/0xfbef5 [ 505.467603][ T30] ? __asan_memset+0x23/0x50 [ 505.476760][ T30] ops_init+0x320/0x590 [ 505.490289][ T30] ? lockdep_init_map_type+0xa1/0x910 [ 505.495719][ T30] setup_net+0x287/0x9e0 [ 505.499992][ T30] ? __pfx_down_read_killable+0x10/0x10 [ 505.515872][ T30] ? __pfx_setup_net+0x10/0x10 [ 505.528914][ T30] ? srso_alias_return_thunk+0x5/0xfbef5 [ 505.534761][ T30] ? srso_alias_return_thunk+0x5/0xfbef5 [ 505.548448][ T30] ? srso_alias_return_thunk+0x5/0xfbef5 [ 505.559892][ T30] copy_net_ns+0x33f/0x570 [ 505.568454][ T30] create_new_namespaces+0x425/0x7b0 [ 505.580000][ T30] unshare_nsproxy_namespaces+0x124/0x180 [ 505.589823][ T30] ksys_unshare+0x619/0xc10 [ 505.602309][ T30] ? __pfx_ksys_unshare+0x10/0x10 [ 505.607412][ T30] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 505.620576][ T30] ? do_syscall_64+0x100/0x230 [ 505.625433][ T30] __x64_sys_unshare+0x38/0x40 [ 505.640193][ T30] do_syscall_64+0xf3/0x230 [ 505.644787][ T30] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 505.660217][ T30] RIP: 0033:0x7fd37cb7f6f7 [ 505.666007][ T30] RSP: 002b:00007ffd53bfc998 EFLAGS: 00000202 ORIG_RAX: 0000000000000110 [ 505.684315][ T30] RAX: ffffffffffffffda RBX: 00007fd37cd35f40 RCX: 00007fd37cb7f6f7 [ 505.696850][ T30] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000000 [ 505.718726][ T30] RBP: 00007fd37cd36a38 R08: 0000000000000000 R09: 0000000000000000 [ 505.728101][ T30] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000000000c [ 505.740058][ T30] R13: 0000000000000003 R14: 0000000000000009 R15: 0000000000000000 [ 505.748083][ T30] [ 505.760518][ T30] Future hung task reports are suppressed, see sysctl kernel.hung_task_warnings [ 505.781107][ T30] INFO: task syz-executor:11385 blocked for more than 151 seconds. [ 505.789080][ T30] Not tainted 6.11.0-syzkaller-10547-g684a64bf32b6 #0 [ 505.806034][ T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 505.827528][ T30] task:syz-executor state:D stack:24128 pid:11385 tgid:11385 ppid:1 flags:0x00004006 [ 505.841191][ T30] Call Trace: [ 505.844510][ T30] [ 505.847476][ T30] __schedule+0x1895/0x4b30 [ 505.864844][ T30] ? __pfx___schedule+0x10/0x10 [ 505.878068][ T30] ? __pfx_lock_release+0x10/0x10 [ 505.883670][ T30] ? __mutex_trylock_common+0x92/0x2e0 [ 505.889357][ T30] ? schedule+0x90/0x320 [ 505.903947][ T30] schedule+0x14b/0x320 [ 505.908190][ T30] schedule_preempt_disabled+0x13/0x30 [ 505.923548][ T30] __mutex_lock+0x6a7/0xd70 [ 505.928409][ T30] ? __mutex_lock+0x52a/0xd70 [ 505.943940][ T30] ? register_nexthop_notifier+0x84/0x290 [ 505.949771][ T30] ? __pfx___mutex_lock+0x10/0x10 [ 505.967160][ T30] ? srso_alias_return_thunk+0x5/0xfbef5 [ 505.983342][ T30] ? __asan_memset+0x23/0x50 [ 505.988025][ T30] register_nexthop_notifier+0x84/0x290 [ 506.001555][ T30] ? __pfx_lockdep_init_map_type+0x10/0x10 [ 506.007426][ T30] ? __pfx_debug_check_no_locks_freed+0x10/0x10 [ 506.022626][ T30] ? __pfx_register_nexthop_notifier+0x10/0x10 [ 506.028855][ T30] ? srso_alias_return_thunk+0x5/0xfbef5 [ 506.045353][ T30] ? __asan_memset+0x23/0x50 [ 506.052725][ T30] ops_init+0x320/0x590 [ 506.056930][ T30] ? lockdep_init_map_type+0xa1/0x910 [ 506.074282][ T30] setup_net+0x287/0x9e0 [ 506.078584][ T30] ? __pfx_down_read_killable+0x10/0x10 [ 506.091016][ T30] ? __pfx_setup_net+0x10/0x10 [ 506.095823][ T30] ? srso_alias_return_thunk+0x5/0xfbef5 [ 506.130314][ T30] ? srso_alias_return_thunk+0x5/0xfbef5 [ 506.136046][ T30] ? srso_alias_return_thunk+0x5/0xfbef5 [ 506.160095][ T30] copy_net_ns+0x33f/0x570 [ 506.166593][ T30] create_new_namespaces+0x425/0x7b0 [ 506.198258][ T30] unshare_nsproxy_namespaces+0x124/0x180 [ 506.218225][ T30] ksys_unshare+0x619/0xc10 [ 506.230090][ T30] ? __pfx_ksys_unshare+0x10/0x10 [ 506.235194][ T30] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 506.260620][ T30] ? do_syscall_64+0x100/0x230 [ 506.280223][ T30] __x64_sys_unshare+0x38/0x40 [ 506.285949][ T30] do_syscall_64+0xf3/0x230 [ 506.306961][ T30] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 506.328234][ T30] RIP: 0033:0x7f6070f7f6f7 [ 506.340913][ T30] RSP: 002b:00007fff89e268a8 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 506.349413][ T30] RAX: ffffffffffffffda RBX: 00007f6071135f40 RCX: 00007f6070f7f6f7 [ 506.393067][ T30] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000000 [ 506.420473][ T30] RBP: 00007f6071136a38 R08: 0000000000000000 R09: 0000000000000000 [ 506.428536][ T30] R10: 0000000000000000 R11: 0000000000000206 R12: 000000000000000c [ 506.480491][ T30] R13: 0000000000000003 R14: 0000000000000009 R15: 0000000000000000 [ 506.488835][ T30] [ 506.510302][ T30] Future hung task reports are suppressed, see sysctl kernel.hung_task_warnings [ 506.548033][ T30] INFO: task syz-executor:11389 blocked for more than 152 seconds. [ 506.560331][ T30] Not tainted 6.11.0-syzkaller-10547-g684a64bf32b6 #0 [ 506.567691][ T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 506.620307][ T30] task:syz-executor state:D stack:24128 pid:11389 tgid:11389 ppid:1 flags:0x00000004 [ 506.657992][ T30] Call Trace: [ 506.670263][ T30] [ 506.673271][ T30] __schedule+0x1895/0x4b30 [ 506.678992][ T30] ? __pfx___schedule+0x10/0x10 [ 506.705827][ T30] ? __pfx_lock_release+0x10/0x10 [ 506.730207][ T30] ? __mutex_trylock_common+0x92/0x2e0 [ 506.735774][ T30] ? schedule+0x90/0x320 [ 506.770200][ T30] schedule+0x14b/0x320 [ 506.774451][ T30] schedule_preempt_disabled+0x13/0x30 [ 506.796716][ T30] __mutex_lock+0x6a7/0xd70 [ 506.810291][ T30] ? __mutex_lock+0x52a/0xd70 [ 506.815050][ T30] ? rtnetlink_rcv_msg+0x6e6/0xcf0 [ 506.849436][ T30] ? __pfx___mutex_lock+0x10/0x10 [ 506.868398][ T30] rtnetlink_rcv_msg+0x6e6/0xcf0 [ 506.889318][ T30] ? rtnetlink_rcv_msg+0x1a7/0xcf0 [ 506.900393][ T30] ? __lock_acquire+0x1384/0x2050 [ 506.910642][ T30] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 506.916196][ T30] netlink_rcv_skb+0x1e5/0x430 [ 506.949729][ T30] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 506.960363][ T30] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 506.965773][ T30] ? netlink_deliver_tap+0x2e/0x1b0 [ 507.000487][ T30] netlink_unicast+0x7f8/0x990 [ 507.005381][ T30] ? __pfx_netlink_unicast+0x10/0x10 [ 507.037097][ T30] ? srso_alias_return_thunk+0x5/0xfbef5 [ 507.050411][ T30] ? srso_alias_return_thunk+0x5/0xfbef5 [ 507.056166][ T30] ? srso_alias_return_thunk+0x5/0xfbef5 [ 507.085144][ T30] ? srso_alias_return_thunk+0x5/0xfbef5 [ 507.107995][ T30] ? __check_object_size+0x48e/0x900 [ 507.130417][ T30] netlink_sendmsg+0x8e4/0xcb0 [ 507.135287][ T30] ? __pfx_netlink_sendmsg+0x10/0x10 [ 507.160931][ T30] ? srso_alias_return_thunk+0x5/0xfbef5 [ 507.166661][ T30] ? aa_sock_msg_perm+0x91/0x160 [ 507.187736][ T30] ? srso_alias_return_thunk+0x5/0xfbef5 [ 507.210454][ T30] ? __pfx_netlink_sendmsg+0x10/0x10 [ 507.221726][ T30] __sock_sendmsg+0x223/0x270 [ 507.226473][ T30] __sys_sendto+0x39b/0x4f0 [ 507.250356][ T30] ? __pfx___sys_sendto+0x10/0x10 [ 507.255500][ T30] ? srso_alias_return_thunk+0x5/0xfbef5 [ 507.280712][ T30] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 507.286789][ T30] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 507.320226][ T30] ? exc_page_fault+0x590/0x8c0 [ 507.337739][ T30] __x64_sys_sendto+0xde/0x100 [ 507.358565][ T30] do_syscall_64+0xf3/0x230 [ 507.371714][ T30] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 507.377705][ T30] RIP: 0033:0x7fc30e57fd8c [ 507.403753][ T30] RSP: 002b:00007ffd206b87b0 EFLAGS: 00000293 ORIG_RAX: 000000000000002c [ 507.430176][ T30] RAX: ffffffffffffffda RBX: 00007fc30f264620 RCX: 00007fc30e57fd8c [ 507.438254][ T30] RDX: 0000000000000028 RSI: 00007fc30f264670 RDI: 0000000000000003 [ 507.495937][ T30] RBP: 0000000000000000 R08: 00007ffd206b8804 R09: 000000000000000c [ 507.528168][ T30] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000003 [ 507.560361][ T30] R13: 0000000000000000 R14: 00007fc30f264670 R15: 0000000000000000 [ 507.568439][ T30] [ 507.590400][ T30] Future hung task reports are suppressed, see sysctl kernel.hung_task_warnings [ 507.619542][ T30] INFO: task syz-executor:11392 blocked for more than 153 seconds. [ 507.650069][ T30] Not tainted 6.11.0-syzkaller-10547-g684a64bf32b6 #0 [ 507.657397][ T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 507.690259][ T30] task:syz-executor state:D stack:24128 pid:11392 tgid:11392 ppid:1 flags:0x00000004 [ 507.726830][ T30] Call Trace: [ 507.740243][ T30] [ 507.743247][ T30] __schedule+0x1895/0x4b30 [ 507.748005][ T30] ? __pfx___schedule+0x10/0x10 [ 507.777587][ T30] ? __pfx_lock_release+0x10/0x10