last executing test programs: 2m37.496201686s ago: executing program 3 (id=6551): r0 = openat$vimc1(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0) ioctl$VIDIOC_QUERYBUF(r0, 0xc0585609, &(0x7f0000000200)=@multiplanar_overlay={0x0, 0xa, 0x4, 0x2, 0x4, {0x0, 0x2710}, {0x3, 0x2, 0xa, 0xf, 0x9, 0x5, "71e04e45"}, 0x8, 0x3, {&(0x7f0000000180)=[{0x4, 0x0, {0x396}}, {0x6d60, 0x8, {0x9acd}, 0x800}]}, 0x4}) 2m37.377146975s ago: executing program 3 (id=6553): prctl$PR_SET_VMA(0x53564d41, 0x0, &(0x7f0000ffb000/0x4000)=nil, 0xfffffd00, &(0x7f0000000000)='}\x00') prctl$PR_SET_VMA(0x53564d41, 0x0, &(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x0) 2m37.087751258s ago: executing program 3 (id=6560): r0 = syz_init_net_socket$x25(0x9, 0x5, 0x0) getsockopt$X25_QBITINCL(r0, 0x106, 0x1, 0xffffffffffffffff, &(0x7f00000003c0)=0xffffffffffffffbf) 2m36.75463806s ago: executing program 3 (id=6567): r0 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000040), 0x28802, 0x0) writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0x1}, {0x0}], 0x2) 2m36.491820005s ago: executing program 3 (id=6573): syz_mount_image$squashfs(&(0x7f0000000200), &(0x7f0000000000)='./file0\x00', 0x10, &(0x7f0000000680)=ANY=[@ANYBLOB="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", @ANYRESDEC, @ANYRESHEX, @ANYRESOCT, @ANYRES16, @ANYRES8, @ANYBLOB="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"], 0x1, 0x200, &(0x7f0000006140)="$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") open(&(0x7f0000000140)='./file2\x00', 0x0, 0x0) 2m35.434655483s ago: executing program 3 (id=6593): r0 = socket$kcm(0xa, 0x3, 0x73) pwritev(r0, 0x0, 0x0, 0x0, 0x258a) 2m19.266155375s ago: executing program 32 (id=6593): r0 = socket$kcm(0xa, 0x3, 0x73) pwritev(r0, 0x0, 0x0, 0x0, 0x258a) 1m54.894341298s ago: executing program 2 (id=7086): r0 = socket$packet(0x11, 0x2, 0x300) getsockopt$packet_int(r0, 0x107, 0xf, 0x0, &(0x7f0000000100)) 1m54.30130805s ago: executing program 2 (id=7092): syz_mount_image$ext4(&(0x7f00000001c0)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x200800, &(0x7f0000000180), 0xfb, 0x5bb, &(0x7f0000000b40)="$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") lchown(&(0x7f0000000000)='./file1\x00', 0x0, 0x0) 1m53.603581853s ago: executing program 2 (id=7101): syz_mount_image$minix(&(0x7f0000000180), &(0x7f0000000300)='./file0\x00', 0x2000000, &(0x7f00000018c0)=ANY=[], 0x3, 0x1c4, &(0x7f0000000380)="$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") symlink(&(0x7f0000000140)='./file2\x00', &(0x7f0000000100)='./file1\x00') 1m53.045387593s ago: executing program 2 (id=7112): r0 = socket$netlink(0x10, 0x3, 0x10) setsockopt$netlink_NETLINK_LISTEN_ALL_NSID(r0, 0x10e, 0x8, 0x0, 0x0) 1m52.744213716s ago: executing program 2 (id=7117): r0 = socket(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000002c0)={0x14, 0x4a, 0x201, 0x0, 0x0, {0xa}}, 0x14}}, 0x0) 1m52.487734999s ago: executing program 2 (id=7124): syz_mount_image$nilfs2(&(0x7f00000000c0), &(0x7f0000000100)='./file1\x00', 0x1008800, &(0x7f0000000480)=ANY=[], 0x1, 0xda6, &(0x7f0000003c80)="$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") sync() 1m36.362557098s ago: executing program 33 (id=7124): syz_mount_image$nilfs2(&(0x7f00000000c0), &(0x7f0000000100)='./file1\x00', 0x1008800, &(0x7f0000000480)=ANY=[], 0x1, 0xda6, &(0x7f0000003c80)="$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") sync() 26.272955025s ago: executing program 1 (id=8441): r0 = socket$igmp(0x2, 0x3, 0x2) setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000e40)=@filter={'filter\x00', 0x42, 0xff03, 0x278, 0xffffffff, 0x98, 0x218, 0x98, 0xffffffff, 0xffffffff, 0x390, 0x390, 0x390, 0xffffffff, 0x5, 0x0, {[{{@uncond, 0x74000002, 0x70, 0x98, 0x1ba, {0x46010000, 0x2c000000000000}}, @REJECT={0x28}}, {{@ip={@local, @empty, 0x0, 0x0, 'wg1\x00', 'ip6tnl0\x00', {}, {}, 0x32}, 0x287, 0x70, 0x98}, @REJECT={0x28}}, {{@uncond, 0x0, 0x70, 0xb0}, @common=@inet=@LOG={0x40, 'LOG\x00', 0x0, {0x0, 0x0, "81d0042c436dbdac8bebde18b54dd11bf035c1d8b6b0e88ef5aee0eccad7"}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x2d8) 25.74104603s ago: executing program 1 (id=8447): mknodat$null(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0x8000, 0x103) mount$cgroup(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000440), 0x0, &(0x7f00000000c0)={[{@name={'name', 0x3d, 'user--'}}]}) 25.435508452s ago: executing program 1 (id=8451): syz_mount_image$nilfs2(&(0x7f0000000000), &(0x7f0000000040)='./file2\x00', 0x3200c02, &(0x7f0000000080)=ANY=[], 0x3, 0xa82, &(0x7f0000000c40)="$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") creat(&(0x7f0000000080)='./file2\x00', 0x124) 24.263439755s ago: executing program 1 (id=8458): syz_mount_image$exfat(&(0x7f00000000c0), &(0x7f0000000100)='./file1\x00', 0x0, &(0x7f0000001a00)=ANY=[@ANYBLOB='time_offset=0x00000000000000c7,keep_last_dots,fmask=00000000000000000077777,utf8,errors=remount-ro,time_offset=0x0000000000000000,fmask=00000000000000000002001,errors=remount-ro,sys_tz,gid=', @ANYRESHEX=0x0, @ANYBLOB="0080"], 0x1, 0x154d, &(0x7f0000001b00)="$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") mount(0x0, &(0x7f0000000040)='./file0/../file0/../file0\x00', &(0x7f00000000c0)='securityfs\x00', 0x0, 0x0) 23.386287122s ago: executing program 1 (id=8465): r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000001c0)='environ\x00') preadv(r0, &(0x7f0000001400)=[{&(0x7f0000000040)=""/113, 0x200000b1}], 0x1, 0xc002a0, 0x0) 22.284104707s ago: executing program 1 (id=8476): r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$VT_RESIZEX(r0, 0x560a, &(0x7f0000000180)={0x8000, 0x749, 0x1000, 0x2, 0x2, 0x9}) 21.440046983s ago: executing program 34 (id=8476): r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$VT_RESIZEX(r0, 0x560a, &(0x7f0000000180)={0x8000, 0x749, 0x1000, 0x2, 0x2, 0x9}) 2.853234569s ago: executing program 5 (id=8684): socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) getsockopt$TIPC_CONN_TIMEOUT(r0, 0x10f, 0x82, &(0x7f0000000140), &(0x7f00000000c0)=0xfffffffffffffef0) 2.476807521s ago: executing program 5 (id=8689): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPCTNL_MSG_CT_GET(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000003c0)={0x60, 0x1, 0x1, 0x201, 0x0, 0x0, {0xa}, [@CTA_TUPLE_REPLY={0x30, 0x2, 0x0, 0x1, [@CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @remote}, {0xc, 0x4, @local}}}]}, @CTA_STATUS_MASK={0x8, 0x1a, 0x1, 0x0, 0x6}, @CTA_FILTER={0xc, 0x19, 0x0, 0x1, [@CTA_FILTER_REPLY_FLAGS={0x8, 0x2, 0x2}]}, @CTA_STATUS={0x8}]}, 0x60}}, 0x808) 2.200679367s ago: executing program 5 (id=8693): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x3, 0x13, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000008500000071000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls=0x2e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000240)={r0, 0x0, 0x10, 0x10, &(0x7f00000002c0)="0000ffffffffa000", &(0x7f0000000300)=""/8, 0x60ff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x4c) 2.159262999s ago: executing program 4 (id=8694): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000180)=@newlink={0x54, 0x10, 0x437, 0x70bd28, 0x0, {0x0, 0x0, 0x0, 0x0, 0x4048b}, [@IFLA_LINKINFO={0x34, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x24, 0x2, 0x0, 0x1, [@IFLA_BR_MCAST_QUERY_USE_IFADDR={0x5, 0x18, 0x1}, @IFLA_BR_MCAST_ROUTER={0x5}, @IFLA_BR_AGEING_TIME={0x8, 0x4, 0x6}, @IFLA_BR_STP_STATE={0x8}]}}}]}, 0x54}, 0x1, 0x0, 0x0, 0x4c050}, 0x4000004) 1.977193909s ago: executing program 0 (id=8696): r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10) sendmsg$netlink(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000005d00)=ANY=[@ANYBLOB="140100002d00010000000000fcdbdf250401f2800800180008ac0f"], 0x114}], 0x1, 0x0, 0x0, 0x1}, 0x0) 1.770257373s ago: executing program 6 (id=8698): socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) fsetxattr$security_capability(r0, &(0x7f0000000040), &(0x7f0000000080)=@v3={0x3000000, [{0xff, 0x200}, {0x5, 0x476}], 0xffffffffffffffff}, 0x18, 0x2) 1.696976764s ago: executing program 5 (id=8699): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a05000000000000000000010000000900010073797a30000000002c000000030a01020000000000000000010000000900010073797a30000000000900030073797a310000000054000000060a010400000000000000000100000008000b40000000002c0004802800018007000100637400001c0002800800014000000001080002400000000805000300730000000900010073797a30"], 0xc8}, 0x1, 0x0, 0x0, 0x5090}, 0x0) 1.675547024s ago: executing program 7 (id=8700): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000000c0)=ANY=[@ANYBLOB="2000000076000d0b0000000000fec971de70d589fc00000008000a"], 0x20}}, 0x0) 1.603072636s ago: executing program 4 (id=8701): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000500)={0x3, 0x4, &(0x7f0000001780)=ANY=[@ANYBLOB="18000000000000000000000000000200850000007a00000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000001240)={r0, 0x0, 0xe, 0x0, &(0x7f0000000080)="925a95e24550ec24e8e1a95586dd", 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) 1.430444049s ago: executing program 6 (id=8702): r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000200)=@getpolicy={0x64, 0x15, 0x1, 0x0, 0x0, {{@in=@local, @in6=@ipv4={'\x00', '\xff\xff', @multicast1}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}}, [@policy_type={0xa}, @XFRMA_IF_ID={0x8}]}, 0x64}}, 0x0) 1.393769675s ago: executing program 5 (id=8703): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[@ANYBLOB="2c0000001a00010029bd7000feffffff0200000000000003003100000800100009000000080019"], 0x2c}}, 0x0) 1.385050549s ago: executing program 0 (id=8704): r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000001c0)=@newsa={0x154, 0x10, 0x1, 0x270bd2d, 0x0, {{@in=@rand_addr=0x64010102, @in6=@loopback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80}, {@in=@remote, 0x4d3, 0x32}, @in6=@loopback, {0x0, 0x0, 0x800000000, 0x0, 0x9, 0x0, 0x6}, {0x0, 0x0, 0x0, 0x1}, {}, 0x0, 0x0, 0x2, 0x2, 0x0, 0xbf}, [@algo_crypt={0x48, 0x2, {{'xts-twofish-avx\x00'}}}, @replay_esn_val={0x1c, 0x17, {0x0, 0x0, 0x0, 0xffff7fff, 0x0, 0x79}}]}, 0x154}, 0x1, 0x0, 0x0, 0x4048091}, 0x0) 1.350929884s ago: executing program 7 (id=8705): r0 = socket$caif_stream(0x25, 0x1, 0x0) sendmmsg$inet(r0, &(0x7f0000000040)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, &(0x7f0000000440)=[{&(0x7f0000000000)="92", 0x1}], 0x1}, 0x1000000}], 0x2, 0x0) 1.299820352s ago: executing program 4 (id=8706): r0 = socket$inet6_udp(0xa, 0x2, 0x0) setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x40, &(0x7f0000000000)=@mangle={'mangle\x00', 0x1d, 0x6, 0x558, 0x280, 0x280, 0x368, 0xd0, 0x1b0, 0x488, 0x488, 0x488, 0x488, 0x488, 0x6, 0x0, {[{{@ipv6={@mcast2, @private1, [], [0x0, 0x0, 0x0, 0xff000000], 'macvlan1\x00', 'erspan0\x00'}, 0x0, 0xa8, 0xd0, 0x0, {0x7a00000000000000}}, @HL={0x28}}, {{@uncond, 0x0, 0xa8, 0xe0}, @common=@inet=@SET3={0x38, 'SET\x00', 0x3, {{0xffffffffffffffff}, {0xffffffffffffffff}, {}, 0x203, 0x6}}}, {{@ipv6={@ipv4={'\x00', '\xff\xff', @multicast2}, @remote, [], [], '\x00', 'bond_slave_0\x00'}, 0x0, 0xa8, 0xd0, 0x48000000}, @unspec=@CHECKSUM={0x28}}, {{@uncond, 0x0, 0xa8, 0xe8}, @common=@inet=@TCPOPTSTRIP={0x40}}, {{@uncond, 0x0, 0xf8, 0x120, 0x0, {}, [@inet=@rpfilter={{0x28}}, @common=@eui64={{0x28}}]}, @unspec=@CHECKSUM={0x28}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x5b8) 1.133500489s ago: executing program 6 (id=8707): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x1f, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000000000850000007b000000850000000f00000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x1f, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000480)={r0, 0x0, 0x0, 0x0, &(0x7f0000000100), 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x7}, 0x2) 1.115908644s ago: executing program 5 (id=8708): syz_usb_connect(0x3, 0x34, &(0x7f0000000000)=ANY=[@ANYBLOB="120100009bbd8b08e80430ffd1a601020301090222000100000000090400000129fddd00090500000000fff200070594ef"], 0x0) unshare(0x6a040000) 1.044978454s ago: executing program 0 (id=8709): r0 = semget$private(0x0, 0x4000000009, 0x42a) semop(r0, &(0x7f0000000000)=[{0x1, 0x1, 0x1800}, {0x4}], 0x2) 1.022763288s ago: executing program 4 (id=8710): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000006c0)=ANY=[@ANYBLOB="2c0000001900010028bd7000000000000a0000000002f6000000000008000600ffffffff"], 0x2c}}, 0x4000) 1.005668077s ago: executing program 7 (id=8711): r0 = openat$vimc0(0xffffffffffffff9c, &(0x7f0000000480), 0x2, 0x0) ioctl$VIDIOC_CROPCAP(r0, 0xc02c563a, &(0x7f0000000000)={0xc, {0xc4, 0x400, 0x7, 0x5c}, {0x2, 0x401, 0x7, 0x8}, {0xce, 0x8fe}}) 790.568687ms ago: executing program 6 (id=8712): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_MSG_GETSET(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[@ANYBLOB="2c0000000a0a01080000000000000000020001000900010073797a30"], 0x2c}, 0x1, 0x0, 0x0, 0x2000c801}, 0x20000080) 735.545731ms ago: executing program 0 (id=8713): socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$SIOCSIFHWADDR(r0, 0x89f7, &(0x7f00000000c0)={'bond_slave_0\x00', @broadcast}) 714.477647ms ago: executing program 7 (id=8714): r0 = socket$inet6_sctp(0xa, 0x5, 0x84) getsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(r0, 0x84, 0x75, 0x0, &(0x7f0000000040)=0x4c) 650.913746ms ago: executing program 4 (id=8715): syz_mount_image$erofs(&(0x7f0000000180), &(0x7f0000000100)='./bus\x00', 0x210413, &(0x7f0000000040)=ANY=[], 0x2, 0x227, &(0x7f0000000400)="$eJzsmc9rE0EUx78zu9lsq/jjoAcv8VCwgt3sblR6KVLvBaEV8RjsWmqnjSRB2oJQ/wD/AP8RDz158ObNgycPKggK9uhJcGRmZ5rJJtk2BnLp+0Am352Z92be2923sAuCIM4s377+/vL6/uLaLQDnMYeq6f/h2Rk+uDP/8xuvYuT7nQsvD4v+GAApe8f+CesHAN4te8BB7lZK1xqYMz7XwLVWPATHTaMfgSGye5U96wwMj033M0e3ZowQGXvSEutPN0UWqyZRTaqaBiD79n/0imEdQGiWYM7+Oj62mgJod/b2t5pCZFZUpF1nYKggwtFDuSjLn97f8k8sOSngwEU7Hpn/2MlfAo7E6AYYVo1eRBVRFNXMYZY48V/ze/69/LTl8ZfHVhDhOJMnF5cX/tN8ycZ1b8wAh4q/cmDoABMGWGl3AucUXDJ6qul1hFp7fCteG7QKTvITTpq6jBV71A193HP16PDDoNX3vp5PK6OuZzadU2Bvv9NNDkdM/jgrxMpQqyt9Pdfd/DgiKLvq8iFVbpkP3HDqk+88Ferd7ef1zt7+wuZ2cyPbyHbStHE3vh3Hd9K6rs15W1L/Ql2fZh3/9gHFCnMDFmC32e22k12g206Oj9O8dSru6tvWL23Ddf3jmP8jpX286LCrw9dg5sf1v1Lz3sjNEwRBEARBEARBEARBEARBnIZAv5I8B9TAYN5V6o9xzH4Y68NPH+DFDPAvAAD//yI6U9w=") mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz0\x00', 0x1ff) 479.849027ms ago: executing program 0 (id=8716): r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3) ioctl$FS_IOC_GETFSLABEL(r0, 0x800452d3, 0x0) 427.483516ms ago: executing program 6 (id=8717): r0 = socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f0000000000)={'veth1_virt_wifi\x00', &(0x7f0000000140)=@ethtool_dump={0x40, 0x0, 0xef8}}) 397.938326ms ago: executing program 7 (id=8718): r0 = socket(0x10, 0x803, 0x0) ioctl$sock_ipv6_tunnel_SIOCGETPRL(r0, 0x89f4, &(0x7f0000000140)={'sit0\x00', 0x0}) 157.389665ms ago: executing program 0 (id=8719): set_mempolicy(0x6, &(0x7f00000003c0)=0x8000000000000001, 0xe0) set_mempolicy(0x8006, &(0x7f0000000040)=0xfff, 0x5) 123.477177ms ago: executing program 4 (id=8720): r0 = socket$tipc(0x1e, 0x2, 0x0) fallocate(r0, 0x58, 0x2, 0x550) 50.139752ms ago: executing program 7 (id=8721): r0 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f00000002c0)={'veth0_to_bond\x00', &(0x7f0000000140)=@ethtool_rxfh_indir={0x24}}) 0s ago: executing program 6 (id=8722): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r0, &(0x7f0000000300)={0x0, 0x600, &(0x7f00000002c0)={&(0x7f0000000340)=@newtaction={0xf8, 0x30, 0xffff, 0xfffffffe, 0x0, {}, [{0xe4, 0x1, [@m_police={0x6c, 0x1, 0x0, 0x0, {{0xb}, {0x52, 0x2, 0x0, 0x1, [[@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x5}}]]}, {0x4}, {0xc}, {0xc}}}, @m_gact={0x48, 0x2, 0x0, 0x0, {{0x9}, {0x1c, 0x2, 0x0, 0x1, [@TCA_GACT_PARMS={0x18}]}, {0x4}, {0xc}, {0xc}}}, @m_bpf={0x2c, 0x3, 0x0, 0x0, {{0x8}, {0x4}, {0x4}, {0xc}, {0xc}}}]}]}, 0xf8}}, 0x0) kernel console output (not intermixed with test programs): : Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 740.687906][ T5891] usb 3-1: new high-speed USB device number 126 using dummy_hcd [ 740.894443][ T5891] usb 3-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xF4, changing to 0x84 [ 740.959551][ T5891] usb 3-1: config 0 interface 0 altsetting 0 bulk endpoint 0x84 has invalid maxpacket 1023 [ 741.008430][ T5891] usb 3-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0x66, changing to 0x6 [ 741.066452][ T5891] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x6 has invalid wMaxPacketSize 0 [ 741.147293][ T5891] usb 3-1: config 0 interface 0 altsetting 0 bulk endpoint 0x6 has invalid maxpacket 0 [ 741.171756][ T5891] usb 3-1: New USB device found, idVendor=2294, idProduct=425b, bcdDevice=a2.10 [ 741.191795][ T5891] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 741.199803][ T5891] usb 3-1: Product: syz [ 741.261271][ T5891] usb 3-1: Manufacturer: syz [ 741.290134][ T5891] usb 3-1: SerialNumber: syz [ 741.330638][ T5891] usb 3-1: config 0 descriptor?? [ 741.340744][T21504] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22 [ 741.382852][ T5891] usb 3-1: ucan: probing device on interface #0 [ 741.389158][ T5891] usb 3-1: ucan: invalid out_ep MaxPacketSize [ 741.433866][ T5891] usb 3-1: ucan: probe failed; try to update the device firmware [ 741.647942][ T5891] usb 3-1: USB disconnect, device number 126 [ 742.000207][T21562] libceph: resolve '00' (ret=-3): failed [ 742.148965][T21569] loop1: detected capacity change from 0 to 8 [ 742.209879][T21569] MTD: Attempt to mount non-MTD device "/dev/loop1" [ 742.269634][T21569] cramfs: Error -3 while decompressing! [ 742.327278][T21569] cramfs: ffffffff9993d408(26)->ffff88804c7d6000(4096) [ 742.374759][T21575] loop0: detected capacity change from 0 to 256 [ 742.410958][T21569] cramfs: Error -3 while decompressing! [ 742.416571][T21569] cramfs: ffffffff9993d422(26)->ffff88804b6ce000(4096) [ 742.430656][T21575] exfat: Deprecated parameter 'namecase' [ 742.436393][T21575] exfat: Deprecated parameter 'utf8' [ 742.553609][T21575] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0xbe675ead, utbl_chksum : 0xe619d30d) [ 742.576758][T21569] cramfs: Error -3 while decompressing! [ 742.623709][T21569] cramfs: ffffffff9993d43c(16)->ffff88804ba06000(4096) [ 742.644426][T21569] cramfs: Error -3 while decompressing! [ 742.682554][T21569] cramfs: ffffffff9993d408(26)->ffff88804c7d6000(4096) [ 743.321909][T21606] netlink: 212 bytes leftover after parsing attributes in process `syz.0.6986'. [ 743.499293][ T10] usb 6-1: new high-speed USB device number 115 using dummy_hcd [ 743.723980][ T10] usb 6-1: Using ep0 maxpacket: 8 [ 743.731180][ T10] usb 6-1: config 2 has an invalid interface number: 31 but max is 0 [ 743.731214][ T10] usb 6-1: config 2 has no interface number 0 [ 743.731260][ T10] usb 6-1: config 2 interface 31 has no altsetting 0 [ 743.749435][ T10] usb 6-1: New USB device found, idVendor=1a86, idProduct=e092, bcdDevice=53.3f [ 743.749474][ T10] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 743.749499][ T10] usb 6-1: Product: syz [ 743.749518][ T10] usb 6-1: Manufacturer: syz [ 743.749559][ T10] usb 6-1: SerialNumber: syz [ 744.231937][T21579] loop6: detected capacity change from 0 to 32768 [ 744.280013][ T10] ch9200 6-1:2.31: probe with driver ch9200 failed with error -22 [ 744.355034][ T10] usb 6-1: USB disconnect, device number 115 [ 744.657242][T21633] veth3: entered allmulticast mode [ 744.912758][T21639] syz.4.6998: attempt to access beyond end of device [ 744.912758][T21639] nbd4: rw=0, sector=0, nr_sectors = 1 limit=0 [ 744.963325][T21641] netlink: 'syz.2.6999': attribute type 1 has an invalid length. [ 744.986448][T21641] netlink: 'syz.2.6999': attribute type 2 has an invalid length. [ 745.027871][T21618] loop1: detected capacity change from 0 to 32768 [ 745.060260][T21639] hpfs: hpfs_map_sector(): read error [ 745.261432][T21624] loop0: detected capacity change from 0 to 32768 [ 745.718312][T21663] netlink: 'syz.4.7008': attribute type 21 has an invalid length. [ 746.661343][T21691] netlink: 56 bytes leftover after parsing attributes in process `syz.1.7018'. [ 746.717605][ T5833] usb 7-1: new high-speed USB device number 2 using dummy_hcd [ 746.770150][T21656] loop2: detected capacity change from 0 to 32768 [ 746.933480][ T5833] usb 7-1: New USB device found, idVendor=0c45, idProduct=608f, bcdDevice=b5.55 [ 746.967255][ T5833] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 747.000106][ T5833] usb 7-1: Product: syz [ 747.015467][ T5833] usb 7-1: Manufacturer: syz [ 747.042551][ T5833] usb 7-1: SerialNumber: syz [ 747.078141][ T5833] usb 7-1: config 0 descriptor?? [ 747.142662][ T5833] gspca_main: sonixb-2.14.0 probing 0c45:608f [ 747.393842][T21711] netlink: 'syz.1.7028': attribute type 1 has an invalid length. [ 747.442469][T21711] netlink: 224 bytes leftover after parsing attributes in process `syz.1.7028'. [ 747.469726][T21714] xfrm1: entered allmulticast mode [ 747.577784][ T5833] sonixb 7-1:0.0: Error writing register 01: -71 [ 747.584652][ T5833] sonixb 7-1:0.0: probe with driver sonixb failed with error -71 [ 747.629820][ T5833] usb 7-1: USB disconnect, device number 2 [ 748.498058][T21708] loop0: detected capacity change from 0 to 32768 [ 748.610935][T21708] ERROR: (device loop0): dtSearch: DT_GETPAGE: dtree page corrupt [ 748.610935][T21708] [ 748.679171][T21708] ERROR: (device loop0): remounting filesystem as read-only [ 748.728785][T21708] jfs_lookup: dtSearch returned -5 [ 748.867067][T21750] netlink: 60 bytes leftover after parsing attributes in process `syz.2.7046'. [ 749.073031][T21754] batadv1: entered promiscuous mode [ 749.079577][T21754] 8021q: adding VLAN 0 to HW filter on device batadv1 [ 749.147877][T21759] netlink: 12 bytes leftover after parsing attributes in process `syz.2.7051'. [ 749.206545][T21759] netlink: 24 bytes leftover after parsing attributes in process `syz.2.7051'. [ 749.258199][T21759] ip6erspan0: entered allmulticast mode [ 749.824351][T21700] loop5: detected capacity change from 0 to 32768 [ 749.932256][T21700] XFS (loop5): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb [ 749.970839][T21789] netlink: 20 bytes leftover after parsing attributes in process `syz.2.7062'. [ 750.523165][T21700] XFS (loop5): Ending clean mount [ 750.772737][T21814] netlink: 'syz.0.7074': attribute type 8 has an invalid length. [ 750.793812][T21815] netlink: 'syz.4.7073': attribute type 2 has an invalid length. [ 750.902885][T21815] : entered promiscuous mode [ 750.908071][ T5825] XFS (loop5): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb [ 751.032164][T21820] netlink: 'syz.1.7078': attribute type 15 has an invalid length. [ 751.279426][T21797] loop2: detected capacity change from 0 to 32768 [ 751.345457][T21797] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop2 (7:2) scanned by syz.2.7065 (21797) [ 751.416270][T21797] BTRFS info (device loop2): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 751.442377][ T5833] usb 5-1: new high-speed USB device number 101 using dummy_hcd [ 751.485318][T21797] BTRFS info (device loop2): using sha256 (sha256-ni) checksum algorithm [ 751.493830][T21797] BTRFS info (device loop2): using free-space-tree [ 751.617826][ T5833] usb 5-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08 [ 751.635515][ T5833] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 751.643569][ T5833] usb 5-1: Product: syz [ 751.650283][ T5833] usb 5-1: Manufacturer: syz [ 751.654941][ T5833] usb 5-1: SerialNumber: syz [ 751.678902][ T5833] usb 5-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested [ 751.722087][ T10] usb 5-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008 [ 752.043790][T21810] loop6: detected capacity change from 0 to 32768 [ 752.062536][ T5886] usb 2-1: new high-speed USB device number 114 using dummy_hcd [ 752.076000][ T5822] BTRFS info (device loop2): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 752.220923][ T5991] usb 5-1: USB disconnect, device number 101 [ 752.246064][ T5886] usb 2-1: Using ep0 maxpacket: 16 [ 752.297432][ T5886] usb 2-1: New USB device found, idVendor=17ef, idProduct=721e, bcdDevice=de.06 [ 752.327870][ T5886] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 752.371224][ T5886] usb 2-1: Product: syz [ 752.381860][ T5886] usb 2-1: Manufacturer: syz [ 752.415232][ T5886] usb 2-1: SerialNumber: syz [ 752.445152][ T5886] r8152-cfgselector 2-1: Unknown version 0x0000 [ 752.468725][ T5886] r8152-cfgselector 2-1: config 0 descriptor?? [ 752.882631][T21865] loop2: detected capacity change from 0 to 1024 [ 752.892467][ T10] ath9k_htc 5-1:1.0: ath9k_htc: Target is unresponsive [ 752.928843][ T10] ath9k_htc: Failed to initialize the device [ 752.949126][ T5991] usb 5-1: ath9k_htc: USB layer deinitialized [ 752.995470][ T5833] r8152-cfgselector 2-1: USB disconnect, device number 114 [ 753.085976][T21865] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 753.411379][ T5822] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 753.449886][T21884] i2c i2c-0: Invalid block write size 33 [ 753.517319][T21888] netlink: 16 bytes leftover after parsing attributes in process `syz.0.7102'. [ 753.649156][T21890] xt_TCPMSS: Only works on TCP SYN packets [ 753.730712][T21893] loop2: detected capacity change from 0 to 64 [ 753.933794][T21902] netlink: 16 bytes leftover after parsing attributes in process `syz.4.7108'. [ 754.505727][T21927] x_tables: ip_tables: TCPOPTSTRIP target: only valid in mangle table, not raw [ 754.695101][T21931] loop2: detected capacity change from 0 to 4096 [ 754.760210][T21931] NILFS (loop2): invalid segment: Checksum error in segment payload [ 754.818655][T21931] NILFS (loop2): trying rollback from an earlier position [ 754.973778][T21931] NILFS (loop2): recovery complete [ 755.036046][T21943] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 755.759707][T21916] loop5: detected capacity change from 0 to 32768 [ 755.836503][ T5886] usb 5-1: new full-speed USB device number 102 using dummy_hcd [ 755.939695][T21916] XFS (loop5): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 755.968782][T21976] netlink: 'syz.6.7141': attribute type 1 has an invalid length. [ 756.057114][ T5886] usb 5-1: config 0 has an invalid interface number: 120 but max is 0 [ 756.085267][ T5886] usb 5-1: config 0 has no interface number 0 [ 756.094465][ T5886] usb 5-1: config 0 interface 120 altsetting 0 endpoint 0x8A has invalid wMaxPacketSize 0 [ 756.121143][ T5886] usb 5-1: New USB device found, idVendor=16e3, idProduct=f9e9, bcdDevice= 0.58 [ 756.149360][ T5886] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 756.192077][T21916] XFS (loop5): Ending clean mount [ 756.207496][T21986] loop0: detected capacity change from 0 to 8 [ 756.212302][T21916] XFS (loop5): Quotacheck needed: Please wait. [ 756.215219][ T5886] usb 5-1: config 0 descriptor?? [ 756.279909][ T5886] input: USB Touchscreen 16e3:f9e9 as /devices/platform/dummy_hcd.4/usb5/5-1/5-1:0.120/input/input60 [ 756.372116][T21916] XFS (loop5): Quotacheck: Done. [ 756.563813][ T5991] usb 5-1: USB disconnect, device number 102 [ 756.651872][ T5825] XFS (loop5): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 756.691420][T21999] netlink: 4 bytes leftover after parsing attributes in process `syz.6.7151'. [ 757.546830][ T5991] usb 7-1: new high-speed USB device number 3 using dummy_hcd [ 757.624567][T22028] loop0: detected capacity change from 0 to 1024 [ 757.697079][T22028] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (51269!=20869) [ 757.723185][T22028] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (16), stripe is disabled [ 757.748266][ T5991] usb 7-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08 [ 757.770039][ T5991] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 757.770560][T22028] EXT4-fs error (device loop0): ext4_get_journal_inode:5798: inode #32: comm syz.0.7160: iget: special inode unallocated [ 757.824752][ T5991] usb 7-1: Product: syz [ 757.827745][T22028] EXT4-fs (loop0): Remounting filesystem read-only [ 757.828967][ T5991] usb 7-1: Manufacturer: syz [ 757.852151][T22028] EXT4-fs (loop0): no journal found [ 757.894858][ T5991] usb 7-1: SerialNumber: syz [ 757.895218][T22028] EXT4-fs (loop0): can't get journal size [ 757.935607][T22028] EXT4-fs (loop0): filesystem is read-only [ 757.986858][ T5991] usb 7-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested [ 758.002468][T22028] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none. [ 758.008278][ T5887] usb 7-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008 [ 758.262278][T22047] loop4: detected capacity change from 0 to 8 [ 758.325711][ T5821] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 758.575816][ T5991] usb 7-1: USB disconnect, device number 3 [ 759.150322][ T5887] ath9k_htc 7-1:1.0: ath9k_htc: Target is unresponsive [ 759.194854][ T5887] ath9k_htc: Failed to initialize the device [ 759.220909][ T5991] usb 7-1: ath9k_htc: USB layer deinitialized [ 759.729087][T22098] netlink: 2 bytes leftover after parsing attributes in process `syz.5.7193'. [ 760.273108][ T10] usb 2-1: new high-speed USB device number 115 using dummy_hcd [ 760.496978][ T10] usb 2-1: New USB device found, idVendor=0cf3, idProduct=9374, bcdDevice=bc.3b [ 760.525980][ T10] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 760.560188][ T10] usb 2-1: config 0 descriptor?? [ 760.567346][ T30] audit: type=1326 audit(1746159679.853:1899): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22128 comm="syz.5.7207" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2ef498e969 code=0x7ffc0000 [ 760.659809][ T30] audit: type=1326 audit(1746159679.890:1900): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22128 comm="syz.5.7207" exe="/root/syz-executor" sig=0 arch=c000003e syscall=269 compat=0 ip=0x7f2ef498e969 code=0x7ffc0000 [ 760.711635][ T30] audit: type=1326 audit(1746159679.890:1901): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22128 comm="syz.5.7207" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2ef498e969 code=0x7ffc0000 [ 760.735253][ T30] audit: type=1326 audit(1746159679.890:1902): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22128 comm="syz.5.7207" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2ef498e969 code=0x7ffc0000 [ 760.843417][T22138] netlink: 12 bytes leftover after parsing attributes in process `syz.6.7210'. [ 760.914293][T22138] netlink: 12 bytes leftover after parsing attributes in process `syz.6.7210'. [ 760.935995][T22138] netlink: 32 bytes leftover after parsing attributes in process `syz.6.7210'. [ 761.038097][ T10] ath6kl: Failed to submit usb control message: -71 [ 761.058535][ T10] ath6kl: unable to send the bmi data to the device: -71 [ 761.082534][ T10] ath6kl: Unable to send get target info: -71 [ 761.117394][ T10] ath6kl: Failed to init ath6kl core: -71 [ 761.135326][ T10] ath6kl_usb 2-1:0.0: probe with driver ath6kl_usb failed with error -71 [ 761.166872][ T30] audit: type=1326 audit(1746159680.414:1903): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22145 comm="syz.4.7215" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f604c78e969 code=0x7ffc0000 [ 761.216326][ T10] usb 2-1: USB disconnect, device number 115 [ 761.259088][ T30] audit: type=1326 audit(1746159680.414:1904): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22145 comm="syz.4.7215" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f604c78e969 code=0x7ffc0000 [ 761.286737][T22150] loop6: detected capacity change from 0 to 256 [ 761.287512][T22148] loop5: detected capacity change from 0 to 16 [ 761.308796][T22148] MTD: Attempt to mount non-MTD device "/dev/loop5" [ 761.358666][T22152] netlink: 'syz.0.7218': attribute type 32 has an invalid length. [ 761.369321][ T30] audit: type=1326 audit(1746159680.451:1905): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22145 comm="syz.4.7215" exe="/root/syz-executor" sig=0 arch=c000003e syscall=34 compat=0 ip=0x7f604c78e969 code=0x7ffc0000 [ 761.773720][ T30] audit: type=1326 audit(1746159680.994:1906): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22162 comm="syz.5.7224" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2ef498e969 code=0x7ffc0000 [ 761.806980][ T5833] usb 7-1: new high-speed USB device number 4 using dummy_hcd [ 761.833637][ T30] audit: type=1326 audit(1746159681.012:1907): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22162 comm="syz.5.7224" exe="/root/syz-executor" sig=0 arch=c000003e syscall=209 compat=0 ip=0x7f2ef498e969 code=0x7ffc0000 [ 761.895275][T22164] loop1: detected capacity change from 0 to 4096 [ 761.904034][ T30] audit: type=1326 audit(1746159681.012:1908): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22162 comm="syz.5.7224" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2ef498e969 code=0x7ffc0000 [ 761.945587][T22164] ntfs3(loop1): Different NTFS sector size (4096) and media sector size (512). [ 761.987574][ T5833] usb 7-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08 [ 762.008487][ T5833] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 762.021015][ T5833] usb 7-1: Product: syz [ 762.025708][ T5833] usb 7-1: Manufacturer: syz [ 762.081616][T22168] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check. [ 762.088041][ T5833] usb 7-1: SerialNumber: syz [ 762.114055][T22164] ntfs3(loop1): ino=19, mi_enum_attr [ 762.119388][T22164] ntfs3(loop1): Mark volume as dirty due to NTFS errors [ 762.149784][ T5833] usb 7-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested [ 762.180647][ T10] usb 7-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008 [ 762.438870][T22177] netlink: 16 bytes leftover after parsing attributes in process `syz.4.7232'. [ 762.698355][T22185] xt_TPROXY: Can be used only with -p tcp or -p udp [ 763.040289][T22190] loop4: detected capacity change from 0 to 1024 [ 763.050934][T22192] vxcan2: entered promiscuous mode [ 763.085728][T22190] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 overlaps block group descriptors [ 763.192008][T22190] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (31873!=20869) [ 763.241491][T22190] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (16), stripe is disabled [ 763.279245][T22196] openvswitch: netlink: Tunnel attr 0 has unexpected len 16 expected 8 [ 763.362170][T22190] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 763.694072][ T5833] usb 7-1: USB disconnect, device number 4 [ 763.711818][ T10] ath9k_htc 7-1:1.0: ath9k_htc: Target is unresponsive [ 763.721393][ T10] ath9k_htc: Failed to initialize the device [ 763.763069][ T5820] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 763.791525][ T5833] usb 7-1: ath9k_htc: USB layer deinitialized [ 764.090557][T22213] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 764.187338][ T5928] usb 1-1: new full-speed USB device number 119 using dummy_hcd [ 764.390983][ T5928] usb 1-1: config 0 has an invalid interface number: 132 but max is 0 [ 764.420167][ T5928] usb 1-1: config 0 has no interface number 0 [ 764.460219][ T5928] usb 1-1: New USB device found, idVendor=05ac, idProduct=0291, bcdDevice=43.25 [ 764.484922][ T5928] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 764.521987][ T5928] usb 1-1: Product: syz [ 764.536334][ T5928] usb 1-1: Manufacturer: syz [ 764.552669][ T5928] usb 1-1: SerialNumber: syz [ 764.558346][T22231] netlink: 32 bytes leftover after parsing attributes in process `syz.6.7257'. [ 764.613595][ T5928] usb 1-1: config 0 descriptor?? [ 764.653375][ T5928] hub 1-1:0.132: bad descriptor, ignoring hub [ 764.682139][ T5928] hub 1-1:0.132: probe with driver hub failed with error -5 [ 764.729401][ T5928] input: bcm5974 as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.132/input/input61 [ 765.078737][T22250] netlink: 'syz.4.7265': attribute type 1 has an invalid length. [ 765.091690][T22250] netlink: 224 bytes leftover after parsing attributes in process `syz.4.7265'. [ 765.215130][ T5887] usb 6-1: new high-speed USB device number 116 using dummy_hcd [ 765.229242][T22252] netlink: 'syz.6.7266': attribute type 2 has an invalid length. [ 765.379544][T22254] loop4: detected capacity change from 0 to 4096 [ 765.417733][ T5887] usb 6-1: config 0 interface 0 altsetting 251 endpoint 0x9 has invalid wMaxPacketSize 0 [ 765.434895][ T5887] usb 6-1: config 0 interface 0 has no altsetting 0 [ 765.455952][ T5887] usb 6-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b [ 765.474767][ T5887] usb 6-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2 [ 765.484550][ T5887] usb 6-1: Product: syz [ 765.488848][ T5887] usb 6-1: Manufacturer: syz [ 765.499689][ T5887] usb 6-1: SerialNumber: syz [ 765.510668][ T5887] usb 6-1: config 0 descriptor?? [ 765.540327][ T5887] usb 6-1: selecting invalid altsetting 0 [ 765.639897][ T9] usb 7-1: new full-speed USB device number 5 using dummy_hcd [ 765.650447][T22262] xt_ecn: cannot match TCP bits for non-tcp packets [ 765.797395][ T5887] usb 6-1: USB disconnect, device number 116 [ 765.834291][ T9] usb 7-1: config 0 has an invalid interface number: 30 but max is 0 [ 765.862409][ T9] usb 7-1: config 0 has no interface number 0 [ 765.880254][ T9] usb 7-1: New USB device found, idVendor=06cd, idProduct=0109, bcdDevice=25.04 [ 765.924713][ T9] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 765.972337][ T9] usb 7-1: Product: syz [ 765.976551][ T9] usb 7-1: Manufacturer: syz [ 765.981175][ T9] usb 7-1: SerialNumber: syz [ 766.036035][ T9] usb 7-1: config 0 descriptor?? [ 766.054545][ T9] hub 7-1:0.30: bad descriptor, ignoring hub [ 766.080677][ T9] hub 7-1:0.30: probe with driver hub failed with error -5 [ 766.111951][ T9] keyspan 7-1:0.30: Keyspan - (without firmware) converter detected [ 766.294795][T22283] loop4: detected capacity change from 0 to 1024 [ 766.410252][ T9] usb 7-1: USB disconnect, device number 5 [ 766.456293][ T9] keyspan 7-1:0.30: device disconnected [ 766.503634][T21427] hfsplus: b-tree write err: -5, ino 4 [ 766.507958][T22285] netlink: 'syz.0.7282': attribute type 1 has an invalid length. [ 766.544661][T22285] netlink: 240 bytes leftover after parsing attributes in process `syz.0.7282'. [ 766.768166][ T30] kauditd_printk_skb: 1 callbacks suppressed [ 766.768188][ T30] audit: type=1107 audit(1746159685.643:1910): pid=22292 uid=0 auid=4294967295 ses=4294967295 subj=unconfined msg='' [ 767.295383][T22307] loop5: detected capacity change from 0 to 4096 [ 767.348694][T22315] NILFS (loop5): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 767.441557][T22307] NILFS error (device loop5): nilfs_bmap_lookup_contig: broken bmap (inode number=12) [ 767.471199][T22307] Remounting filesystem read-only [ 767.587254][T22322] netlink: 8 bytes leftover after parsing attributes in process `syz.0.7300'. [ 767.820633][T22291] loop4: detected capacity change from 0 to 32768 [ 767.853346][T22330] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 767.895084][T22291] ocfs2: Slot 0 on device (7,4) was already allocated to this node! [ 767.954248][T22333] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check. [ 767.971677][T22291] ocfs2: Mounting device (7,4) on (node local, slot 0) with ordered data mode. [ 767.991086][T22327] loop1: detected capacity change from 0 to 4096 [ 768.086576][T22291] (syz.4.7285,22291,0):ocfs2_mknod:502 ERROR: status = -31 [ 768.111781][T22327] ntfs3(loop1): Different NTFS sector size (4096) and media sector size (512). [ 768.122290][T22291] (syz.4.7285,22291,0):ocfs2_mkdir:658 ERROR: status = -31 [ 768.194733][T22340] netlink: 'syz.0.7308': attribute type 1 has an invalid length. [ 768.249183][T22340] netlink: 'syz.0.7308': attribute type 3 has an invalid length. [ 768.290597][T22340] netlink: 224 bytes leftover after parsing attributes in process `syz.0.7308'. [ 768.301292][ T5820] ocfs2: Unmounting device (7,4) on (node local) [ 768.348886][T22340] NCSI netlink: No device for ifindex 0 [ 768.495553][ T5928] usb 1-1: USB disconnect, device number 119 [ 768.645772][T22352] netlink: 'syz.6.7313': attribute type 16 has an invalid length. [ 768.666561][T22352] netlink: 'syz.6.7313': attribute type 17 has an invalid length. [ 768.788287][T22355] netlink: 8 bytes leftover after parsing attributes in process `syz.5.7316'. [ 768.855025][T22355] netlink: 8 bytes leftover after parsing attributes in process `syz.5.7316'. [ 769.027699][T22352] bridge0: port 2(bridge_slave_1) entered disabled state [ 769.035496][T22352] bridge0: port 1(bridge_slave_0) entered disabled state [ 769.528829][T22352] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 769.573359][T22352] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 769.716231][ T5886] usb 5-1: new high-speed USB device number 103 using dummy_hcd [ 769.898636][ T5886] usb 5-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 769.924686][ T5886] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 3 [ 769.939133][T22352] netdevsim netdevsim6 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0 [ 769.944442][ T5886] usb 5-1: config 1 interface 0 altsetting 0 has an invalid endpoint descriptor of length 3, skipping [ 769.962250][T22352] netdevsim netdevsim6 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0 [ 769.980005][ T5886] usb 5-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 0 [ 769.984332][T22352] netdevsim netdevsim6 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0 [ 770.010222][T22352] netdevsim netdevsim6 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0 [ 770.022933][ T5886] usb 5-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00 [ 770.032517][ T5886] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3 [ 770.043366][ T5886] usb 5-1: SerialNumber: syz [ 770.316404][ T5886] usb 5-1: 0:2 : does not exist [ 770.339296][ T5886] usb 5-1: unit 5 not found! [ 770.461122][T22397] program syz.0.7336 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 770.461303][ T5886] usb 5-1: USB disconnect, device number 103 [ 770.539074][T22400] IPVS: length: 4096 != 8 [ 770.555085][ T7503] udevd[7503]: error opening ATTR{/sys/devices/platform/dummy_hcd.4/usb5/5-1/5-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 770.812493][T22409] netlink: 'syz.1.7342': attribute type 3 has an invalid length. [ 771.017309][ T5887] usb 6-1: new high-speed USB device number 117 using dummy_hcd [ 771.240128][ T5887] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 771.284858][ T5887] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 771.314769][ T5887] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 771.360027][ T5887] usb 6-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 771.401982][ T5887] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 771.446583][ T5887] usb 6-1: config 0 descriptor?? [ 771.489632][ T5887] hub 6-1:0.0: USB hub found [ 771.521709][T22427] xt_recent: Unsupported userspace flags (000000de) [ 771.640511][ T5831] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 771.655877][ T5831] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 771.669257][ T5831] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 771.688144][ T5887] hub 6-1:0.0: 9 ports detected [ 771.696490][ T5831] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 771.713367][ T5831] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 771.721081][ T5887] hub 6-1:0.0: insufficient power available to use all downstream ports [ 771.879212][ T1293] ieee802154 phy0 wpan0: encryption failed: -22 [ 771.887419][ T1293] ieee802154 phy1 wpan1: encryption failed: -22 [ 771.911806][ T5887] hub 6-1:0.0: hub_hub_status failed (err = -71) [ 771.923660][ T5887] hub 6-1:0.0: config failed, can't get hub status (err -71) [ 771.995141][ T5887] usb 6-1: USB disconnect, device number 117 [ 772.464254][T22461] (unnamed net_device) (uninitialized): option arp_interval: mode dependency failed, not supported in mode 802.3ad(4) [ 772.723816][T22432] chnl_net:caif_netlink_parms(): no params data found [ 772.862734][ T5928] usb 7-1: new high-speed USB device number 6 using dummy_hcd [ 773.048471][T22483] x_tables: unsorted entry at hook 3 [ 773.077180][ T5928] usb 7-1: Using ep0 maxpacket: 16 [ 773.107941][ T5928] usb 7-1: New USB device found, idVendor=07ab, idProduct=fc01, bcdDevice=28.e0 [ 773.133588][ T5928] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 773.141626][ T5928] usb 7-1: Product: syz [ 773.147176][ T5928] usb 7-1: Manufacturer: syz [ 773.151795][ T5928] usb 7-1: SerialNumber: syz [ 773.183923][ T5928] usb 7-1: config 0 descriptor?? [ 773.211551][T22492] netlink: 'syz.5.7379': attribute type 11 has an invalid length. [ 773.231979][ T5928] ums-freecom 7-1:0.0: USB Mass Storage device detected [ 773.453545][ T5928] usb 7-1: USB disconnect, device number 6 [ 773.466433][T22432] bridge0: port 1(bridge_slave_0) entered blocking state [ 773.473690][T22432] bridge0: port 1(bridge_slave_0) entered disabled state [ 773.533795][T22432] bridge_slave_0: entered allmulticast mode [ 773.562213][T22432] bridge_slave_0: entered promiscuous mode [ 773.605449][T22432] bridge0: port 2(bridge_slave_1) entered blocking state [ 773.645029][T22432] bridge0: port 2(bridge_slave_1) entered disabled state [ 773.665367][T22432] bridge_slave_1: entered allmulticast mode [ 773.711097][T22432] bridge_slave_1: entered promiscuous mode [ 773.843122][T22511] loop0: detected capacity change from 0 to 1764 [ 773.923826][T22515] netlink: 12 bytes leftover after parsing attributes in process `syz.4.7390'. [ 773.937724][ T5831] Bluetooth: hci7: command tx timeout [ 773.958118][T22511] iso9660: Corrupted directory entry in block 2 of inode 1920 [ 773.989580][T22518] netlink: 616 bytes leftover after parsing attributes in process `syz.5.7391'. [ 774.074841][T22515] bridge3: trying to set multicast query interval below minimum, setting to 100 (1000ms) [ 774.105642][T22432] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 774.178293][T22432] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 774.644375][T22432] team0: Port device team_slave_0 added [ 774.662253][T22532] loop4: detected capacity change from 0 to 4096 [ 774.671110][T22537] loop1: detected capacity change from 0 to 256 [ 774.686253][T22432] team0: Port device team_slave_1 added [ 774.760764][T22537] exFAT-fs (loop1): failed to load upcase table (idx : 0x00011e5d, chksum : 0x63a11b78, utbl_chksum : 0xe619d30d) [ 774.797906][T22541] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 774.884207][T22538] loop5: detected capacity change from 0 to 4096 [ 774.941253][T22538] ntfs3(loop5): Different NTFS sector size (4096) and media sector size (512). [ 775.034070][T22543] netlink: 12 bytes leftover after parsing attributes in process `syz.6.7402'. [ 775.090886][T22538] ntfs3(loop5): ino=1a, mi_enum_attr [ 775.118108][T22538] ntfs3(loop5): Mark volume as dirty due to NTFS errors [ 775.143643][T22538] ntfs3(loop5): Failed to initialize $Extend/$ObjId. [ 775.359392][T22432] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 775.387538][T22432] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 775.462372][T22551] loop0: detected capacity change from 0 to 22 [ 775.473100][T22432] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 775.515559][T22432] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 775.535422][T22432] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 775.552148][T22551] MTD: Attempt to mount non-MTD device "/dev/loop0" [ 775.640940][T22551] romfs: Mounting image 'rom 637cf1fa' through the block layer [ 775.706749][T22432] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 776.115952][ T7503] udevd[7503]: inotify_add_watch(7, /dev/loop0, 10) failed: No such file or directory [ 776.152732][T22432] hsr_slave_0: entered promiscuous mode [ 776.161871][ T5831] Bluetooth: hci7: command tx timeout [ 776.195849][T22432] hsr_slave_1: entered promiscuous mode [ 776.222151][T22432] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 776.278212][T22432] Cannot create hsr debugfs directory [ 776.347050][T22582] netlink: 4 bytes leftover after parsing attributes in process `syz.6.7421'. [ 776.366913][T22582] netlink: 28 bytes leftover after parsing attributes in process `syz.6.7421'. [ 776.381143][T22582] netlink: 4 bytes leftover after parsing attributes in process `syz.6.7421'. [ 776.525018][T22583] netlink: 8 bytes leftover after parsing attributes in process `syz.1.7420'. [ 776.981209][T22594] loop1: detected capacity change from 0 to 4096 [ 777.028327][T22594] ntfs3(loop1): Different NTFS sector size (4096) and media sector size (512). [ 777.205216][T22594] ntfs3(loop1): Mark volume as dirty due to NTFS errors [ 777.693473][T22432] netdevsim netdevsim7 netdevsim0: renamed from eth0 [ 777.766573][T22432] netdevsim netdevsim7 netdevsim1: renamed from eth1 [ 777.822538][T22432] netdevsim netdevsim7 netdevsim2: renamed from eth2 [ 777.902224][T22432] netdevsim netdevsim7 netdevsim3: renamed from eth3 [ 778.211700][ T5928] usb 2-1: new high-speed USB device number 116 using dummy_hcd [ 778.317071][T22432] 8021q: adding VLAN 0 to HW filter on device bond0 [ 778.324107][T22646] netlink: 'syz.6.7452': attribute type 10 has an invalid length. [ 778.329230][ T30] audit: type=1326 audit(1746159696.465:1911): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22647 comm="syz.4.7454" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f604c78e969 code=0x7ffc0000 [ 778.348120][T22646] netlink: 40 bytes leftover after parsing attributes in process `syz.6.7452'. [ 778.383196][ T5831] Bluetooth: hci7: command tx timeout [ 778.402410][T22432] 8021q: adding VLAN 0 to HW filter on device team0 [ 778.414600][T22646] bridge0: port 3(dummy0) entered blocking state [ 778.425281][T22646] bridge0: port 3(dummy0) entered disabled state [ 778.441471][T22646] dummy0: entered allmulticast mode [ 778.442715][ T30] audit: type=1326 audit(1746159696.512:1912): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22647 comm="syz.4.7454" exe="/root/syz-executor" sig=0 arch=c000003e syscall=290 compat=0 ip=0x7f604c78e969 code=0x7ffc0000 [ 778.454376][T22646] dummy0: entered promiscuous mode [ 778.471536][ T5928] usb 2-1: Using ep0 maxpacket: 8 [ 778.489093][ T66] bridge0: port 1(bridge_slave_0) entered blocking state [ 778.498268][ T66] bridge0: port 1(bridge_slave_0) entered forwarding state [ 778.513243][ T66] bridge0: port 2(bridge_slave_1) entered blocking state [ 778.520395][ T66] bridge0: port 2(bridge_slave_1) entered forwarding state [ 778.549431][ T5928] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 778.577759][ T5928] usb 2-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 3 [ 778.626200][ T30] audit: type=1326 audit(1746159696.512:1913): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22647 comm="syz.4.7454" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f604c78e969 code=0x7ffc0000 [ 778.669553][ T5928] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 778.700884][ T5928] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1 [ 778.730923][ T5928] usb 2-1: SerialNumber: syz [ 778.766922][ T30] audit: type=1326 audit(1746159696.512:1914): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22647 comm="syz.4.7454" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f604c78e969 code=0x7ffc0000 [ 778.833907][ T5928] cdc_acm 2-1:1.0: skipping garbage [ 778.839328][ T5928] cdc_acm 2-1:1.0: Control and data interfaces are not separated! [ 778.860071][ T5928] cdc_acm 2-1:1.0: This needs exactly 3 endpoints [ 778.892345][ T5928] cdc_acm 2-1:1.0: probe with driver cdc_acm failed with error -22 [ 779.060855][ T5928] usb 2-1: USB disconnect, device number 116 [ 779.125957][T22665] netlink: 8 bytes leftover after parsing attributes in process `syz.6.7460'. [ 779.142636][T22667] netlink: 176 bytes leftover after parsing attributes in process `syz.4.7462'. [ 779.332806][T22432] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 779.396090][T22642] loop5: detected capacity change from 0 to 32768 [ 779.679201][T22683] openvswitch: netlink: Message has 4 unknown bytes. [ 779.685948][T22683] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 780.165041][T22695] bridge0: port 1(bridge_slave_0) entered disabled state [ 780.210631][T22695] bridge0: port 2(bridge_slave_1) entered disabled state [ 780.259363][T22695] veth0_to_bond: left allmulticast mode [ 780.363487][T22695] macvlan1: left allmulticast mode [ 780.371350][T22704] netlink: 'syz.5.7469': attribute type 10 has an invalid length. [ 780.379391][T22695] veth1_vlan: left allmulticast mode [ 780.386603][T22704] netlink: 156 bytes leftover after parsing attributes in process `syz.5.7469'. [ 780.469102][T22708] tmpfs: Bad value for 'usrquota_block_hardlimit' [ 780.597990][ T5831] Bluetooth: hci7: command tx timeout [ 780.793398][T22432] veth0_vlan: entered promiscuous mode [ 780.869596][T22721] loop6: detected capacity change from 0 to 128 [ 780.879652][T22432] veth1_vlan: entered promiscuous mode [ 780.894248][ T30] audit: type=1326 audit(1746159698.869:1915): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22720 comm="syz.1.7487" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fd6b2b8e969 code=0x0 [ 780.952515][T22721] befs: (loop6): invalid magic header [ 781.037775][T22432] veth0_macvtap: entered promiscuous mode [ 781.082327][T22432] veth1_macvtap: entered promiscuous mode [ 781.167516][T22729] netlink: 8 bytes leftover after parsing attributes in process `syz.0.7490'. [ 781.177996][T22432] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 781.192313][ T30] audit: type=1326 audit(1746159699.140:1916): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22728 comm="syz.4.7488" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f604c78e969 code=0x7ffc0000 [ 781.231606][T22432] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 781.246707][T22732] loop6: detected capacity change from 0 to 128 [ 781.253202][T22432] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 781.263765][ T30] audit: type=1326 audit(1746159699.150:1917): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22728 comm="syz.4.7488" exe="/root/syz-executor" sig=0 arch=c000003e syscall=306 compat=0 ip=0x7f604c78e969 code=0x7ffc0000 [ 781.294193][T22732] EXT4-fs (loop6): Test dummy encryption mode enabled [ 781.333859][T22432] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 781.343737][T22432] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 781.370134][ T30] audit: type=1326 audit(1746159699.150:1918): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22728 comm="syz.4.7488" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f604c78e969 code=0x7ffc0000 [ 781.393282][ T30] audit: type=1326 audit(1746159699.150:1919): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22728 comm="syz.4.7488" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f604c78e969 code=0x7ffc0000 [ 781.395232][T22732] EXT4-fs (loop6): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 781.416651][T22432] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 781.439091][T22432] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 781.450525][T22432] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 781.463131][T22432] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 781.510701][T22732] ext4 filesystem being mounted at /94/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 781.529385][T22432] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 781.543102][T22432] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 781.553347][T22432] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 781.573955][T22740] loop4: detected capacity change from 0 to 8 [ 781.596591][T22432] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 781.636064][T22432] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 781.682570][T22432] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 781.729192][T22432] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 781.753016][T22432] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 781.771793][T22432] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 781.835807][T22432] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 781.874502][T22432] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 781.889055][T22432] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 781.933044][T22432] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 781.978338][T22432] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 782.000455][T22432] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 782.038470][T21166] EXT4-fs (loop6): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 782.052202][T22432] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 782.113561][T22432] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 782.549529][T22772] netlink: 'syz.0.7510': attribute type 7 has an invalid length. [ 782.606685][T22772] : entered promiscuous mode [ 782.810163][ T1092] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 782.818032][ T1092] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 782.965791][ T1092] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 783.006832][ T1092] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 783.627068][T22812] netlink: 44 bytes leftover after parsing attributes in process `syz.0.7527'. [ 783.697515][T22818] (unnamed net_device) (uninitialized): option tlb_dynamic_lb: mode dependency failed, not supported in mode balance-rr(0) [ 784.056850][T22828] loop5: detected capacity change from 0 to 256 [ 784.220587][T22828] FAT-fs (loop5): Directory bread(block 64) failed [ 784.251850][T22828] FAT-fs (loop5): Directory bread(block 65) failed [ 784.258482][T22828] FAT-fs (loop5): Directory bread(block 66) failed [ 784.323821][T22840] netlink: 8 bytes leftover after parsing attributes in process `syz.7.7540'. [ 784.333569][T22828] FAT-fs (loop5): Directory bread(block 67) failed [ 784.369572][T22828] FAT-fs (loop5): Directory bread(block 68) failed [ 784.376116][T22828] FAT-fs (loop5): Directory bread(block 69) failed [ 784.439896][T22828] FAT-fs (loop5): Directory bread(block 70) failed [ 784.470528][T22828] FAT-fs (loop5): Directory bread(block 71) failed [ 784.497894][T22828] FAT-fs (loop5): Directory bread(block 72) failed [ 784.504449][T22828] FAT-fs (loop5): Directory bread(block 73) failed [ 784.797270][T22861] netlink: 8 bytes leftover after parsing attributes in process `syz.7.7550'. [ 784.861432][ T5928] usb 2-1: new high-speed USB device number 117 using dummy_hcd [ 785.075493][ T5928] usb 2-1: Using ep0 maxpacket: 16 [ 785.115979][ T5928] usb 2-1: config 0 has an invalid interface number: 8 but max is 0 [ 785.119036][T22877] netlink: 8 bytes leftover after parsing attributes in process `syz.6.7558'. [ 785.135790][ T5928] usb 2-1: config 0 has no interface number 0 [ 785.181591][ T5928] usb 2-1: config 0 interface 8 altsetting 0 endpoint 0x8F has an invalid bInterval 208, changing to 11 [ 785.235451][ T5928] usb 2-1: config 0 interface 8 altsetting 0 endpoint 0x8F has invalid maxpacket 25296, setting to 1024 [ 785.269891][ T5928] usb 2-1: New USB device found, idVendor=0d8c, idProduct=000e, bcdDevice=8e.8f [ 785.289921][ T5928] usb 2-1: New USB device strings: Mfr=0, Product=24, SerialNumber=3 [ 785.298021][ T5928] usb 2-1: Product: syz [ 785.338348][T22883] netlink: 88 bytes leftover after parsing attributes in process `syz.7.7560'. [ 785.348303][ T5928] usb 2-1: SerialNumber: syz [ 785.365759][ T5928] usb 2-1: config 0 descriptor?? [ 785.387599][ T5928] cm109 2-1:0.8: invalid payload size 1024, expected 4 [ 785.406665][T22886] mmap: syz.0.7562 (22886): VmData 37470208 exceed data ulimit 128. Update limits or use boot option ignore_rlimit_data. [ 785.443715][ T5928] input: CM109 USB driver as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.8/input/input62 [ 785.456703][T22887] netlink: 4 bytes leftover after parsing attributes in process `syz.6.7563'. [ 785.892907][ C0] cm109 2-1:0.8: cm109_urb_irq_callback: urb status -71 [ 785.900423][ C0] cm109_urb_ctl_callback: 323 callbacks suppressed [ 785.900448][ C0] cm109 2-1:0.8: cm109_urb_ctl_callback: urb status -71 [ 785.915176][ C0] cm109 2-1:0.8: cm109_urb_ctl_callback: urb status -71 [ 785.923016][ C0] cm109 2-1:0.8: cm109_urb_ctl_callback: urb status -71 [ 785.930171][ C0] cm109 2-1:0.8: cm109_urb_ctl_callback: urb status -71 [ 785.937334][ C0] cm109 2-1:0.8: cm109_urb_ctl_callback: urb status -71 [ 785.944533][ C0] cm109 2-1:0.8: cm109_urb_ctl_callback: urb status -71 [ 785.948715][ T5991] usb 2-1: USB disconnect, device number 117 [ 785.951475][ C0] cm109 2-1:0.8: cm109_submit_buzz_toggle: usb_submit_urb (urb_ctl) failed -19 [ 786.028945][ T5991] cm109 2-1:0.8: cm109_toggle_buzzer_sync: usb_control_msg() failed -19 [ 786.589143][T22929] netlink: 'syz.4.7580': attribute type 4 has an invalid length. [ 786.935531][T22944] trusted_key: encrypted_key: key description must be 16 hexadecimal characters long [ 786.951569][T22945] loop4: detected capacity change from 0 to 256 [ 787.024296][T22945] exfat: Deprecated parameter 'namecase' [ 787.030096][T22945] exfat: Deprecated parameter 'utf8' [ 787.062297][T22945] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0xdc42f586, utbl_chksum : 0xe619d30d) [ 787.536023][T22967] loop5: detected capacity change from 0 to 512 [ 787.587070][T22967] EXT4-fs: Ignoring removed nomblk_io_submit option [ 787.665122][T22967] EXT4-fs (loop5): Test dummy encryption mode enabled [ 787.727704][T22967] EXT4-fs error (device loop5): ext4_orphan_get:1391: inode #15: comm syz.5.7601: iget: bogus i_mode (0) [ 787.851930][T22967] EXT4-fs error (device loop5): ext4_orphan_get:1396: comm syz.5.7601: couldn't read orphan inode 15 (err -117) [ 787.898920][T22981] netlink: 32 bytes leftover after parsing attributes in process `syz.0.7609'. [ 787.918466][T22967] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 787.974232][T22981] netlink: 32 bytes leftover after parsing attributes in process `syz.0.7609'. [ 788.068637][T22989] netlink: 40 bytes leftover after parsing attributes in process `syz.4.7611'. [ 788.182017][ T5825] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 788.869975][T23018] program syz.5.7626 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 788.934942][ T5991] usb 5-1: new high-speed USB device number 104 using dummy_hcd [ 789.119811][ T5991] usb 5-1: config 0 has an invalid interface number: 117 but max is 0 [ 789.139800][ T5991] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 789.181226][ T5991] usb 5-1: config 0 has no interface number 0 [ 789.187409][ T5991] usb 5-1: config 0 interface 117 altsetting 0 endpoint 0x88 has invalid wMaxPacketSize 0 [ 789.229988][T23032] geneve2: entered promiscuous mode [ 789.263031][ T5991] usb 5-1: config 0 interface 117 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 789.364690][ T5991] usb 5-1: New USB device found, idVendor=0afa, idProduct=03e8, bcdDevice=99.d0 [ 789.400310][ T5991] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 789.439169][ T5991] usb 5-1: Product: syz [ 789.443838][ T5991] usb 5-1: Manufacturer: syz [ 789.480702][ T5991] usb 5-1: SerialNumber: syz [ 789.507873][ T5991] usb 5-1: config 0 descriptor?? [ 789.519853][T23045] IPv6: NLM_F_CREATE should be specified when creating new route [ 789.752389][ T5991] usbtouchscreen 5-1:0.117: probe with driver usbtouchscreen failed with error -71 [ 789.791842][T23048] bridge_slave_0: left allmulticast mode [ 789.797527][T23048] bridge_slave_0: left promiscuous mode [ 789.821830][T23054] loop5: detected capacity change from 0 to 64 [ 789.835596][ T5991] usb 5-1: USB disconnect, device number 104 [ 789.873689][T23051] loop6: detected capacity change from 0 to 2048 [ 789.911943][T23048] bridge0: port 1(bridge_slave_0) entered disabled state [ 789.925371][T23051] NILFS (loop6): broken superblock, retrying with spare superblock (blocksize = 1024) [ 790.026417][T23058] NILFS (loop6): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 790.070255][T23048] bridge_slave_1: left allmulticast mode [ 790.076425][T23048] bridge_slave_1: left promiscuous mode [ 790.154289][T23048] bridge0: port 2(bridge_slave_1) entered disabled state [ 790.214667][T23048] bond0: (slave bond_slave_0): Releasing backup interface [ 790.288576][T23048] bond0: (slave bond_slave_1): Releasing backup interface [ 790.453557][T23048] team0: Port device team_slave_0 removed [ 790.580285][T23048] team0: Port device team_slave_1 removed [ 790.657430][T23048] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 790.690740][T23048] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 790.774200][T23048] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 790.849799][T23048] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 791.146483][T23091] netlink: 20 bytes leftover after parsing attributes in process `syz.7.7659'. [ 791.196960][T23061] loop1: detected capacity change from 0 to 32768 [ 791.245854][T23061] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop1 (7:1) scanned by syz.1.7646 (23061) [ 791.304187][T23061] BTRFS info (device loop1): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 791.318544][T23061] BTRFS info (device loop1): using sha256 (sha256-ni) checksum algorithm [ 791.392094][T23061] BTRFS info (device loop1): using free-space-tree [ 791.828150][ T5836] BTRFS info (device loop1): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 791.969322][T23133] netlink: 'syz.7.7672': attribute type 11 has an invalid length. [ 791.980994][T23133] netlink: 228 bytes leftover after parsing attributes in process `syz.7.7672'. [ 792.088514][ T5928] usb 7-1: new high-speed USB device number 7 using dummy_hcd [ 792.265191][ T5928] usb 7-1: Using ep0 maxpacket: 16 [ 792.295411][ T5928] usb 7-1: config 0 has an invalid interface number: 105 but max is 0 [ 792.324500][ T5928] usb 7-1: config 0 descriptor has 1 excess byte, ignoring [ 792.331821][ T5928] usb 7-1: config 0 has no interface number 0 [ 792.383963][ T5928] usb 7-1: New USB device found, idVendor=046d, idProduct=08f3, bcdDevice= b.28 [ 792.402502][ T5928] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 792.430308][ T5928] usb 7-1: Product: syz [ 792.458607][ T5928] usb 7-1: Manufacturer: syz [ 792.480877][ T5928] usb 7-1: SerialNumber: syz [ 792.506267][ T5928] usb 7-1: config 0 descriptor?? [ 792.521626][ T5928] usb 7-1: Found UVC 0.00 device syz (046d:08f3) [ 792.564183][ T5928] usb 7-1: No valid video chain found. [ 792.751268][ T5928] usb 7-1: USB disconnect, device number 7 [ 792.886005][T23156] netlink: 16 bytes leftover after parsing attributes in process `syz.5.7684'. [ 792.911938][T23156] netlink: 28 bytes leftover after parsing attributes in process `syz.5.7684'. [ 793.118361][T23158] loop7: detected capacity change from 0 to 4096 [ 793.157517][T23158] ntfs3(loop7): Different NTFS sector size (2048) and media sector size (512). [ 793.317131][T23158] ntfs3(loop7): Failed to initialize $Extend/$ObjId. [ 794.555991][T23216] netlink: 684 bytes leftover after parsing attributes in process `syz.1.7712'. [ 794.599156][T23216] netlink: 684 bytes leftover after parsing attributes in process `syz.1.7712'. [ 794.818128][T23224] loop6: detected capacity change from 0 to 256 [ 794.967142][T23224] exFAT-fs (loop6): failed to load upcase table (idx : 0x00010000, chksum : 0xbe675ead, utbl_chksum : 0xe619d30d) [ 795.008957][T23230] IPVS: set_ctl: invalid protocol: 29 10.1.1.1:0 [ 795.073401][T23224] overlay: filesystem on ./file0 not supported [ 795.384130][ T5928] usb 6-1: new high-speed USB device number 118 using dummy_hcd [ 795.573628][ T5928] usb 6-1: Using ep0 maxpacket: 32 [ 795.605421][ T5928] usb 6-1: config 1 contains an unexpected descriptor of type 0x1, skipping [ 795.636029][ T5928] usb 6-1: config 1 has an invalid descriptor of length 1, skipping remainder of the config [ 795.669912][ T5991] usb 2-1: new high-speed USB device number 118 using dummy_hcd [ 795.673185][ T5928] usb 6-1: config 1 has 1 interface, different from the descriptor's value: 3 [ 795.726145][ T5928] usb 6-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40 [ 795.756077][ T5928] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 795.776580][ T5928] usb 6-1: Product: syz [ 795.792034][ T5928] usb 6-1: Manufacturer: syz [ 795.796686][ T5928] usb 6-1: SerialNumber: syz [ 795.869872][ T5991] usb 2-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7 [ 795.918458][T23266] loop7: detected capacity change from 0 to 64 [ 795.927309][ T5991] usb 2-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47 [ 795.968054][ T5991] usb 2-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d [ 795.990362][ T5991] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 796.022321][T23248] raw-gadget.1 gadget.1: fail, usb_ep_enable returned -22 [ 796.094282][T23266] syz.7.7738: attempt to access beyond end of device [ 796.094282][T23266] loop7: rw=2049, sector=268435468, nr_sectors = 2 limit=64 [ 796.278080][ T5928] usb 6-1: 0:2 : does not exist [ 796.326195][ T5991] usb 2-1: Quirk or no altset; falling back to MIDI 1.0 [ 796.388341][ T5928] usb 6-1: USB disconnect, device number 118 [ 796.410774][T23280] netlink: 8 bytes leftover after parsing attributes in process `syz.4.7744'. [ 796.430946][T23281] loop7: detected capacity change from 0 to 64 [ 796.543327][ T5991] usb 2-1: USB disconnect, device number 118 [ 796.895864][T23292] loop7: detected capacity change from 0 to 64 [ 797.120298][T23300] netlink: 36 bytes leftover after parsing attributes in process `syz.0.7755'. [ 797.801741][T23328] loop6: detected capacity change from 0 to 16 [ 797.865835][T23328] erofs (device loop6): mounted with root inode @ nid 36. [ 797.893463][T23331] tmpfs: Bad value for 'mpol' [ 797.999474][T23336] netlink: 4268 bytes leftover after parsing attributes in process `syz.5.7773'. [ 798.046105][T23336] netlink: 4268 bytes leftover after parsing attributes in process `syz.5.7773'. [ 798.994263][ T5928] usb 1-1: new full-speed USB device number 120 using dummy_hcd [ 799.099182][T23382] autofs4:pid:23382:validate_dev_ioctl: invalid path supplied for cmd(0xc018937a) [ 799.212690][ T5928] usb 1-1: config 0 has an invalid interface number: 55 but max is 0 [ 799.232633][ T5928] usb 1-1: config 0 has no interface number 0 [ 799.238765][ T5928] usb 1-1: config 0 interface 55 altsetting 0 has an invalid descriptor for endpoint zero, skipping [ 799.304400][ T5928] usb 1-1: config 0 interface 55 altsetting 0 has an endpoint descriptor with address 0xAB, changing to 0x8B [ 799.347419][ T5928] usb 1-1: config 0 interface 55 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 10 [ 799.409996][ T5928] usb 1-1: config 0 interface 55 altsetting 0 endpoint 0x8B has invalid maxpacket 120, setting to 64 [ 799.433799][T23393] @ÿ: renamed from veth0_vlan (while UP) [ 799.453607][ T5928] usb 1-1: config 0 interface 55 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 2 [ 799.488882][ T5928] usb 1-1: New USB device found, idVendor=0f11, idProduct=1080, bcdDevice=fc.6a [ 799.543547][ T5928] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 799.594071][ T5928] usb 1-1: config 0 descriptor?? [ 799.617499][T23366] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22 [ 799.689708][ T5928] ldusb 1-1:0.55: LD USB Device #0 now attached to major 180 minor 0 [ 799.965932][T23413] dvmrp5: entered allmulticast mode [ 800.016512][T23415] netlink: 'syz.5.7811': attribute type 16 has an invalid length. [ 800.060556][ T5891] usb 1-1: USB disconnect, device number 120 [ 800.078535][T23415] netlink: 'syz.5.7811': attribute type 3 has an invalid length. [ 800.112897][ T5891] ldusb 1-1:0.55: LD USB Device #0 now disconnected [ 800.128011][T23415] netlink: 132 bytes leftover after parsing attributes in process `syz.5.7811'. [ 801.019710][T23403] loop4: detected capacity change from 0 to 32768 [ 801.077039][T23447] xt_l2tp: v2 tid > 0xffff: 134217728 [ 801.349393][T23459] netlink: 'syz.1.7835': attribute type 29 has an invalid length. [ 801.375233][T23459] netlink: 8 bytes leftover after parsing attributes in process `syz.1.7835'. [ 801.753967][T23472] (unnamed net_device) (uninitialized): option lacp_rate: invalid value (3) [ 801.868475][ T30] audit: type=1326 audit(1746159718.475:1920): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23474 comm="syz.6.7842" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa75758e969 code=0x7ffc0000 [ 801.988647][ T30] audit: type=1326 audit(1746159718.475:1921): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23474 comm="syz.6.7842" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa75758e969 code=0x7ffc0000 [ 802.090902][ T30] audit: type=1326 audit(1746159718.494:1922): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23474 comm="syz.6.7842" exe="/root/syz-executor" sig=0 arch=c000003e syscall=35 compat=0 ip=0x7fa75758e969 code=0x7ffc0000 [ 802.113300][ C1] vkms_vblank_simulate: vblank timer overrun [ 802.121134][T23488] netlink: 'syz.0.7848': attribute type 1 has an invalid length. [ 802.159999][T23488] netlink: 'syz.0.7848': attribute type 2 has an invalid length. [ 802.207739][ T30] audit: type=1326 audit(1746159718.494:1923): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23474 comm="syz.6.7842" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa75758e969 code=0x7ffc0000 [ 802.319047][ T5886] usb 5-1: new high-speed USB device number 105 using dummy_hcd [ 802.338967][ T30] audit: type=1326 audit(1746159718.494:1924): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23474 comm="syz.6.7842" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa75758e969 code=0x7ffc0000 [ 802.361476][ C1] vkms_vblank_simulate: vblank timer overrun [ 802.490312][ T5886] usb 5-1: Using ep0 maxpacket: 8 [ 802.497706][ T5886] usb 5-1: config 0 has an invalid interface number: 55 but max is 0 [ 802.507697][ T5886] usb 5-1: config 0 has no interface number 0 [ 802.528218][ T5886] usb 5-1: New USB device found, idVendor=1fb9, idProduct=0701, bcdDevice=97.90 [ 802.553473][ T5886] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 802.577285][ T5886] usb 5-1: Product: syz [ 802.604295][ T5886] usb 5-1: Manufacturer: syz [ 802.627460][ T5886] usb 5-1: SerialNumber: syz [ 802.653733][ T5886] usb 5-1: config 0 descriptor?? [ 802.736786][ T5891] usb 1-1: new high-speed USB device number 121 using dummy_hcd [ 802.746445][ T5886] hub 5-1:0.55: bad descriptor, ignoring hub [ 802.764836][ T5886] hub 5-1:0.55: probe with driver hub failed with error -5 [ 802.790134][ T5886] cp210x 5-1:0.55: cp210x converter detected [ 802.931219][T23515] loop7: detected capacity change from 0 to 1024 [ 802.951267][T23515] EXT4-fs: Ignoring removed oldalloc option [ 802.966915][T23515] EXT4-fs (loop7): stripe (7) is not aligned with cluster size (16), stripe is disabled [ 802.971096][ T5891] usb 1-1: Using ep0 maxpacket: 8 [ 803.017845][T23515] EXT4-fs (loop7): warning: checktime reached, running e2fsck is recommended [ 803.039281][ T5891] usb 1-1: config 0 has an invalid interface number: 52 but max is 0 [ 803.052628][T23515] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 803.092177][ T5891] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 803.145302][ T5886] usb 5-1: cp210x converter now attached to ttyUSB0 [ 803.162319][T23523] loop1: detected capacity change from 0 to 4096 [ 803.170512][T23523] ntfs3(loop1): Different NTFS sector size (4096) and media sector size (512). [ 803.174355][ T5891] usb 1-1: config 0 has no interface number 0 [ 803.221110][ T5891] usb 1-1: config 0 interface 52 altsetting 1 has an endpoint descriptor with address 0x3E, changing to 0xE [ 803.233718][T23515] fscrypt (loop7, inode 15): Error -61 getting encryption context [ 803.233789][ T5886] usb 5-1: USB disconnect, device number 105 [ 803.268252][T23523] ntfs3(loop1): ino=19, mi_enum_attr [ 803.289079][ T5891] usb 1-1: config 0 interface 52 altsetting 1 endpoint 0xE has an invalid bInterval 0, changing to 7 [ 803.306729][T23523] ntfs3(loop1): Mark volume as dirty due to NTFS errors [ 803.316389][ T5886] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0 [ 803.334619][ T5891] usb 1-1: config 0 interface 52 altsetting 1 endpoint 0xE has invalid wMaxPacketSize 0 [ 803.351392][ T5886] cp210x 5-1:0.55: device disconnected [ 803.397051][T22432] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 803.405557][ T5891] usb 1-1: config 0 interface 52 altsetting 1 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 803.443927][ T5891] usb 1-1: config 0 interface 52 has no altsetting 0 [ 803.450705][ T5891] usb 1-1: New USB device found, idVendor=06cb, idProduct=0007, bcdDevice= 8.00 [ 803.529485][ T5891] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 803.561353][ T5891] usb 1-1: config 0 descriptor?? [ 803.695396][T23535] binfmt_misc: register: failed to install interpreter file ./file0 [ 803.830754][T23539] loop6: detected capacity change from 0 to 256 [ 803.881498][T23539] exfat: Deprecated parameter 'namecase' [ 803.955798][T23539] exFAT-fs (loop6): failed to load upcase table (idx : 0x00010000, chksum : 0x1a9973fb, utbl_chksum : 0xe619d30d) [ 803.993830][T23544] netlink: 'syz.1.7873': attribute type 4 has an invalid length. [ 804.131459][ T5891] usb 1-1: USB disconnect, device number 121 [ 804.358673][T23557] loop6: detected capacity change from 0 to 512 [ 804.434666][T23557] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 804.544783][T23557] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 804.620991][T23557] ext4 filesystem being mounted at /165/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 804.905631][T23575] loop5: detected capacity change from 0 to 2048 [ 804.917254][ T5891] usb 7-1: new high-speed USB device number 8 using dummy_hcd [ 804.996938][T23575] UDF-fs: error (device loop5): udf_process_sequence: Primary Volume Descriptor not found! [ 805.033800][T23575] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 805.103043][ T5891] usb 7-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7 [ 805.134142][ T30] audit: type=1800 audit(1746159721.543:1925): pid=23575 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.7888" name="file1" dev="loop5" ino=1367 res=0 errno=0 [ 805.162692][ T5891] usb 7-1: config 27 interface 0 altsetting 0 endpoint 0x8D has invalid maxpacket 25715, setting to 1024 [ 805.187018][ T5891] usb 7-1: config 27 interface 0 altsetting 0 bulk endpoint 0x8D has invalid maxpacket 1024 [ 805.209080][ T5891] usb 7-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d [ 805.250478][ T5891] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 805.287844][T23557] raw-gadget.0 gadget.6: fail, usb_ep_enable returned -22 [ 805.387335][T23592] netlink: 'syz.4.7895': attribute type 21 has an invalid length. [ 805.393604][ T5891] usb 7-1: Quirk or no altset; falling back to MIDI 1.0 [ 805.395246][T23592] netlink: 132 bytes leftover after parsing attributes in process `syz.4.7895'. [ 805.437952][ T5891] usb 7-1: invalid MIDI out EP 0 [ 805.672813][ T6055] udevd[6055]: error opening ATTR{/sys/devices/platform/dummy_hcd.6/usb7/7-1/7-1:27.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 805.693725][ T5891] snd-usb-audio 7-1:27.0: probe with driver snd-usb-audio failed with error -22 [ 805.793750][ T5891] usb 7-1: USB disconnect, device number 8 [ 806.314303][T21166] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 806.325218][T23621] loop5: detected capacity change from 0 to 64 [ 806.514954][T23619] loop4: detected capacity change from 0 to 4096 [ 806.884247][T23596] loop7: detected capacity change from 0 to 32768 [ 807.035724][T23642] netlink: 'syz.1.7919': attribute type 1 has an invalid length. [ 807.556089][T23661] netlink: 36 bytes leftover after parsing attributes in process `syz.5.7931'. [ 807.798721][T23670] netlink: 20 bytes leftover after parsing attributes in process `syz.0.7935'. [ 807.882506][T23674] loop5: detected capacity change from 0 to 256 [ 808.073559][T23674] FAT-fs (loop5): Directory bread(block 64) failed [ 808.080167][T23674] FAT-fs (loop5): Directory bread(block 65) failed [ 808.167291][T23674] FAT-fs (loop5): Directory bread(block 66) failed [ 808.173914][T23674] FAT-fs (loop5): Directory bread(block 67) failed [ 808.205178][T23683] binder: 23681:23683 ioctl c018620c 2000000000c0 returned -1 [ 808.220899][T23674] FAT-fs (loop5): Directory bread(block 68) failed [ 808.252692][T23674] FAT-fs (loop5): Directory bread(block 69) failed [ 808.290039][T23674] FAT-fs (loop5): Directory bread(block 70) failed [ 808.326391][T23674] FAT-fs (loop5): Directory bread(block 71) failed [ 808.353918][T23674] FAT-fs (loop5): Directory bread(block 72) failed [ 808.383800][T23674] FAT-fs (loop5): Directory bread(block 73) failed [ 808.545949][T23685] loop1: detected capacity change from 0 to 4096 [ 808.581947][T23685] ntfs3(loop1): Different NTFS sector size (2048) and media sector size (512). [ 808.637401][ T5891] usb 8-1: new high-speed USB device number 2 using dummy_hcd [ 808.851008][ T5891] usb 8-1: Using ep0 maxpacket: 8 [ 808.873449][ T5891] usb 8-1: config 0 has an invalid interface number: 186 but max is 0 [ 808.900542][ T5891] usb 8-1: config 0 has no interface number 0 [ 808.926817][ T5887] usb 5-1: new high-speed USB device number 106 using dummy_hcd [ 808.934640][ T5891] usb 8-1: config 0 interface 186 altsetting 0 has an invalid descriptor for endpoint zero, skipping [ 808.974264][ T5891] usb 8-1: config 0 interface 186 altsetting 0 has an endpoint descriptor with address 0x9A, changing to 0x8A [ 809.014883][ T5891] usb 8-1: config 0 interface 186 altsetting 0 endpoint 0x8A has an invalid bInterval 0, changing to 7 [ 809.051316][ T5891] usb 8-1: config 0 interface 186 altsetting 0 endpoint 0x8A has invalid wMaxPacketSize 0 [ 809.072496][ T5891] usb 8-1: config 0 interface 186 altsetting 0 has 4 endpoint descriptors, different from the interface descriptor's value: 3 [ 809.099752][ T5891] usb 8-1: New USB device found, idVendor=07c0, idProduct=1505, bcdDevice=b8.c5 [ 809.120935][ T5887] usb 5-1: Using ep0 maxpacket: 32 [ 809.139834][ T5891] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 809.148118][ T5891] usb 8-1: Product: syz [ 809.153383][ T5887] usb 5-1: config 0 has an invalid interface number: 35 but max is 0 [ 809.162161][ T5887] usb 5-1: config 0 has no interface number 0 [ 809.181807][ T5891] usb 8-1: Manufacturer: syz [ 809.189893][ T5887] usb 5-1: New USB device found, idVendor=10c4, idProduct=818a, bcdDevice=7d.8f [ 809.202039][ T5891] usb 8-1: SerialNumber: syz [ 809.220956][ T5887] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 809.248095][ T5891] usb 8-1: config 0 descriptor?? [ 809.257231][ T5887] usb 5-1: Product: syz [ 809.261433][ T5887] usb 5-1: Manufacturer: syz [ 809.266038][ T5887] usb 5-1: SerialNumber: syz [ 809.331060][ T5887] usb 5-1: config 0 descriptor?? [ 809.367307][ T5887] radio-si470x 5-1:0.35: could not find interrupt in endpoint [ 809.385584][ T5887] radio-si470x 5-1:0.35: probe with driver radio-si470x failed with error -5 [ 809.452826][T23693] loop6: detected capacity change from 0 to 32768 [ 809.479742][ T5891] iowarrior 8-1:0.186: IOWarrior product=0x1505, serial=42424242 interface=186 now attached to iowarrior0 [ 809.599000][ T5887] radio-raremono 5-1:0.35: Thanko's Raremono connected: (10C4:818A) [ 809.619427][T23693] ocfs2: Mounting device (7,6) on (node local, slot 0) with ordered data mode. [ 809.694445][ T5928] usb 8-1: USB disconnect, device number 2 [ 809.734437][T23724] sit0: entered promiscuous mode [ 809.741556][T23693] (syz.6.7946,23693,0):ocfs2_find_entry:1086 ERROR: status = -117 [ 809.758601][T23724] netlink: 'syz.1.7959': attribute type 1 has an invalid length. [ 809.779906][T23724] netlink: 1 bytes leftover after parsing attributes in process `syz.1.7959'. [ 809.807315][T23693] (syz.6.7946,23693,1):ocfs2_find_entry:1086 ERROR: status = -117 [ 809.824252][ T5887] radio-raremono 5-1:0.35: raremono_cmd_main failed (-71) [ 809.848007][T23693] (syz.6.7946,23693,1):ocfs2_mknod:502 ERROR: status = -117 [ 809.855393][T23693] (syz.6.7946,23693,1):ocfs2_create:675 ERROR: status = -117 [ 809.878300][ T5887] radio-raremono 5-1:0.35: V4L2 device registered as radio48 [ 809.902199][ T5887] usb 5-1: USB disconnect, device number 106 [ 809.913722][ T5887] radio-raremono 5-1:0.35: Thanko's Raremono disconnected [ 810.130775][T21166] ocfs2: Unmounting device (7,6) on (node local) [ 810.235303][T23737] MTD: Attempt to mount non-MTD device "/dev/nullb0" [ 810.242698][T23737] /dev/nullb0: Can't open blockdev [ 810.530467][T23744] loop7: detected capacity change from 0 to 16 [ 810.553139][T23744] erofs (device loop7): mounted with root inode @ nid 36. [ 810.601732][T23744] erofs (device loop7): per-inode big pcluster without sb feature for nid 36 [ 810.658559][T23744] erofs (device loop7): per-inode big pcluster without sb feature for nid 36 [ 810.667397][T23744] erofs (device loop7): read error -117 @ 123 of nid 36 [ 810.680062][T23750] veth1_to_team: entered promiscuous mode [ 810.716405][T23750] A link change request failed with some changes committed already. Interface veth1_to_team may have been left with an inconsistent configuration, please check. [ 810.869522][ T30] audit: type=1326 audit(1746159726.912:1926): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23754 comm="syz.5.7974" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2ef498e969 code=0x7ffc0000 [ 810.974893][ T30] audit: type=1326 audit(1746159726.912:1927): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23754 comm="syz.5.7974" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2ef498e969 code=0x7ffc0000 [ 811.033850][T23762] loop4: detected capacity change from 0 to 8 [ 811.128242][ T30] audit: type=1326 audit(1746159726.922:1928): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23754 comm="syz.5.7974" exe="/root/syz-executor" sig=0 arch=c000003e syscall=210 compat=0 ip=0x7f2ef498e969 code=0x7ffc0000 [ 811.137623][T23762] SQUASHFS error: Failed to read block 0x1ec: -5 [ 811.245131][ T30] audit: type=1326 audit(1746159726.922:1929): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23754 comm="syz.5.7974" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2ef498e969 code=0x7ffc0000 [ 811.263394][T23764] loop7: detected capacity change from 0 to 4096 [ 811.277989][T23762] SQUASHFS error: Unable to read metadata cache entry [1ea] [ 811.375812][T23764] ntfs3(loop7): Different NTFS sector size (4096) and media sector size (512). [ 811.395777][ T30] audit: type=1326 audit(1746159726.922:1930): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23754 comm="syz.5.7974" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2ef498e969 code=0x7ffc0000 [ 811.450387][T23775] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 20000 - 0 [ 811.464459][T23775] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 20000 - 0 [ 811.507313][T23775] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 20000 - 0 [ 811.521641][T23775] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 20000 - 0 [ 811.539634][T23775] geneve2: entered promiscuous mode [ 811.560495][T23764] ntfs3(loop7): ino=19, mi_enum_attr [ 811.565881][T23764] ntfs3(loop7): Mark volume as dirty due to NTFS errors [ 811.587909][T23775] geneve2: entered allmulticast mode [ 811.655225][T23775] netdevsim netdevsim6 netdevsim0: unset [1, 0] type 2 family 0 port 20000 - 0 [ 811.700052][T23775] netdevsim netdevsim6 netdevsim1: unset [1, 0] type 2 family 0 port 20000 - 0 [ 811.775167][T23775] netdevsim netdevsim6 netdevsim2: unset [1, 0] type 2 family 0 port 20000 - 0 [ 811.801719][T23775] netdevsim netdevsim6 netdevsim3: unset [1, 0] type 2 family 0 port 20000 - 0 [ 812.498566][T23807] netlink: 8 bytes leftover after parsing attributes in process `syz.1.7998'. [ 813.025595][T23830] netlink: 'syz.6.8010': attribute type 5 has an invalid length. [ 813.573701][T23850] netlink: 76 bytes leftover after parsing attributes in process `syz.5.8018'. [ 813.592256][T23854] netlink: 'syz.1.8019': attribute type 3 has an invalid length. [ 813.619450][T23850] netlink: 76 bytes leftover after parsing attributes in process `syz.5.8018'. [ 813.841275][T23863] loop1: detected capacity change from 0 to 128 [ 813.913642][T23863] FAT-fs (loop1): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 814.026100][T23863] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 814.186071][ T30] audit: type=1326 audit(1746159730.009:1931): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23872 comm="syz.7.8028" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9181d8e969 code=0x7ffc0000 [ 814.284808][ T30] audit: type=1326 audit(1746159730.009:1932): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23872 comm="syz.7.8028" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9181d8e969 code=0x7ffc0000 [ 814.284871][ T30] audit: type=1326 audit(1746159730.027:1933): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23872 comm="syz.7.8028" exe="/root/syz-executor" sig=0 arch=c000003e syscall=64 compat=0 ip=0x7f9181d8e969 code=0x7ffc0000 [ 814.284923][ T30] audit: type=1326 audit(1746159730.027:1934): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23872 comm="syz.7.8028" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9181d8e969 code=0x7ffc0000 [ 814.284974][ T30] audit: type=1326 audit(1746159730.027:1935): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23872 comm="syz.7.8028" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9181d8e969 code=0x7ffc0000 [ 814.705576][T23888] netlink: 140 bytes leftover after parsing attributes in process `syz.7.8036'. [ 814.792768][T23892] netdevsim netdevsim1 netdevsim0: left allmulticast mode [ 815.040887][T23904] netlink: 248 bytes leftover after parsing attributes in process `syz.1.8043'. [ 815.628302][T23927] libceph: resolve '400' (ret=-3): failed [ 816.248623][T23953] loop1: detected capacity change from 0 to 2048 [ 816.377925][T23953] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 816.474339][T23968] netlink: 4 bytes leftover after parsing attributes in process `syz.7.8068'. [ 816.563249][T23970] netlink: 28 bytes leftover after parsing attributes in process `syz.4.8070'. [ 816.655697][T23970] netlink: 28 bytes leftover after parsing attributes in process `syz.4.8070'. [ 816.683015][ T5836] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 816.752157][T23975] netlink: zone id is out of range [ 816.792281][T23975] netlink: zone id is out of range [ 816.821806][T23975] netlink: zone id is out of range [ 816.866496][T23975] netlink: zone id is out of range [ 816.879153][T23975] netlink: zone id is out of range [ 816.899549][T23975] netlink: zone id is out of range [ 816.939302][T23975] netlink: zone id is out of range [ 816.956922][T23975] netlink: zone id is out of range [ 816.993752][T23975] netlink: zone id is out of range [ 817.020925][T23975] netlink: zone id is out of range [ 817.082809][ T5887] usb 8-1: new high-speed USB device number 3 using dummy_hcd [ 817.287835][ T5887] usb 8-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7 [ 817.323064][ T5887] usb 8-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47 [ 817.354360][ T5887] usb 8-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d [ 817.414141][ T5887] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 817.460273][T23979] raw-gadget.0 gadget.7: fail, usb_ep_enable returned -22 [ 817.523671][ T5887] usb 8-1: Quirk or no altset; falling back to MIDI 1.0 [ 817.581159][T23999] loop1: detected capacity change from 0 to 64 [ 817.862330][ T5887] usb 8-1: USB disconnect, device number 3 [ 818.486020][T24024] netlink: 28 bytes leftover after parsing attributes in process `syz.4.8092'. [ 819.093692][ T5833] usb 7-1: new high-speed USB device number 9 using dummy_hcd [ 819.238353][T24045] loop1: detected capacity change from 0 to 8192 [ 819.288637][T24045] FAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 819.314327][ T5833] usb 7-1: config 220 has an invalid interface number: 76 but max is 2 [ 819.327744][ T5833] usb 7-1: config 220 contains an unexpected descriptor of type 0x2, skipping [ 819.355078][ T5833] usb 7-1: config 220 has an invalid descriptor of length 0, skipping remainder of the config [ 819.419404][ T5833] usb 7-1: config 220 has no interface number 2 [ 819.457345][T24060] netlink: 20 bytes leftover after parsing attributes in process `syz.4.8108'. [ 819.467930][ T5833] usb 7-1: config 220 interface 1 altsetting 5 has 0 endpoint descriptors, different from the interface descriptor's value: 12 [ 819.499840][T24060] netlink: 40 bytes leftover after parsing attributes in process `syz.4.8108'. [ 819.540373][ T5833] usb 7-1: config 220 interface 0 has no altsetting 0 [ 819.552228][ T5833] usb 7-1: config 220 interface 76 has no altsetting 0 [ 819.587474][ T5833] usb 7-1: config 220 interface 1 has no altsetting 0 [ 819.622500][ T5833] usb 7-1: New USB device found, idVendor=8086, idProduct=0b07, bcdDevice=6c.b9 [ 819.676598][ T5833] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 819.714912][T24069] netlink: 'syz.5.8109': attribute type 10 has an invalid length. [ 819.719815][ T5833] usb 7-1: Product: syz [ 819.745837][ T5833] usb 7-1: Manufacturer: syz [ 819.758611][ T5833] usb 7-1: SerialNumber: syz [ 819.823640][T24075] loop1: detected capacity change from 0 to 64 [ 819.868097][T24069] 8021q: adding VLAN 0 to HW filter on device bond0 [ 819.922192][T24069] team0: Port device bond0 added [ 820.045163][ T5833] usb 7-1: selecting invalid altsetting 0 [ 820.119526][T24082] netlink: 48 bytes leftover after parsing attributes in process `syz.7.8115'. [ 820.122669][ T5833] usb 7-1: selecting invalid altsetting 0 [ 820.184414][ T5833] usb 7-1: Found UVC 7.01 device syz (8086:0b07) [ 820.190810][ T5833] usb 7-1: No valid video chain found. [ 820.309701][ T5833] usb 7-1: selecting invalid altsetting 0 [ 820.352352][ T5833] usbtest 7-1:220.1: probe with driver usbtest failed with error -22 [ 820.409934][ T5833] usb 7-1: USB disconnect, device number 9 [ 820.595309][T24098] syz.4.8121 calls setitimer() with new_value NULL pointer. Misfeature support will be removed [ 820.685245][T24106] netlink: 8 bytes leftover after parsing attributes in process `syz.5.8124'. [ 820.931157][T24113] loop4: detected capacity change from 0 to 64 [ 820.994360][T24115] netlink: 24 bytes leftover after parsing attributes in process `syz.6.8127'. [ 821.261645][T24126] /dev/nullb0: Can't open blockdev [ 821.391252][ T5891] usb 8-1: new high-speed USB device number 4 using dummy_hcd [ 821.593224][ T5891] usb 8-1: Using ep0 maxpacket: 16 [ 821.633163][ T5891] usb 8-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 821.703275][ T5891] usb 8-1: New USB device found, idVendor=093a, idProduct=2622, bcdDevice=b5.89 [ 821.711093][T24147] loop4: detected capacity change from 0 to 64 [ 821.722545][ T5891] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 821.770304][ T5891] usb 8-1: Product: syz [ 821.784705][ T5891] usb 8-1: Manufacturer: syz [ 821.818755][ T5891] usb 8-1: SerialNumber: syz [ 821.855933][ T5891] usb 8-1: config 0 descriptor?? [ 821.894196][ T5891] gspca_main: gspca_pac7302-2.14.0 probing 093a:2622 [ 821.929510][T24154] dlm: no locking on control device [ 821.938021][T24140] loop6: detected capacity change from 0 to 4096 [ 821.988346][T24140] ntfs3(loop6): Different NTFS sector size (4096) and media sector size (512). [ 822.211185][T24140] ntfs3(loop6): ino=19, mi_enum_attr [ 822.238975][T24140] ntfs3(loop6): Mark volume as dirty due to NTFS errors [ 822.314956][ T5891] gspca_pac7302: reg_w() failed i: 78 v: 00 error -71 [ 822.346808][ T5891] gspca_pac7302 8-1:0.0: probe with driver gspca_pac7302 failed with error -71 [ 822.355447][T24140] ntfs3(loop6): failed to convert "c46c" to macceltic [ 822.447655][ T5891] usb 8-1: USB disconnect, device number 4 [ 822.451970][T24140] ntfs3(loop6): ino=20, mi_enum_attr [ 822.544271][T24173] netlink: 544 bytes leftover after parsing attributes in process `syz.1.8150'. [ 823.173119][T24199] net_ratelimit: 6 callbacks suppressed [ 823.173140][T24199] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 823.335627][T24206] netlink: 'syz.4.8163': attribute type 11 has an invalid length. [ 823.368852][T24206] netlink: 224 bytes leftover after parsing attributes in process `syz.4.8163'. [ 824.237521][ T30] audit: type=1326 audit(1746159739.400:1936): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24238 comm="syz.0.8179" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f450bd8e969 code=0x0 [ 824.358285][T24247] netlink: 'syz.4.8180': attribute type 237 has an invalid length. [ 824.361438][T24248] xt_policy: input policy not valid in POSTROUTING and OUTPUT [ 824.661986][T24255] loop6: detected capacity change from 0 to 1764 [ 825.454458][T24294] RDS: rds_bind could not find a transport for 0:0:4::1, load rds_tcp or rds_rdma? [ 825.475371][ T5891] usb 7-1: new high-speed USB device number 10 using dummy_hcd [ 825.678425][ T5891] usb 7-1: Using ep0 maxpacket: 16 [ 825.715891][ T5891] usb 7-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 825.749677][ T5891] usb 7-1: New USB device found, idVendor=045e, idProduct=0721, bcdDevice=9c.25 [ 825.785100][ T5891] usb 7-1: New USB device strings: Mfr=0, Product=251, SerialNumber=3 [ 825.813408][ T5891] usb 7-1: Product: syz [ 825.832209][ T5891] usb 7-1: SerialNumber: syz [ 825.893011][ T5891] usb 7-1: config 0 descriptor?? [ 826.150565][ T5833] usb 7-1: USB disconnect, device number 10 [ 826.419272][ T5891] usb 6-1: new high-speed USB device number 119 using dummy_hcd [ 826.618952][ T5891] usb 6-1: Using ep0 maxpacket: 16 [ 826.672918][ T5891] usb 6-1: New USB device found, idVendor=0d49, idProduct=7010, bcdDevice= c.90 [ 826.682420][ T5891] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 826.744135][ T5891] usb 6-1: Product: syz [ 826.755383][ T5891] usb 6-1: Manufacturer: syz [ 826.799747][ T5891] usb 6-1: SerialNumber: syz [ 826.846061][T24343] kernel read not supported for file /  (pid: 24343 comm: syz.4.8220) [ 826.855925][ T5891] usb 6-1: config 0 descriptor?? [ 826.863421][ T5891] ums-onetouch 6-1:0.0: USB Mass Storage device detected [ 826.956762][ T30] audit: type=1800 audit(1746159741.963:1937): pid=24343 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.8220" name=200120 dev="mqueue" ino=64279 res=0 errno=0 [ 827.089385][ T5891] usb 6-1: USB disconnect, device number 119 [ 827.769747][T24384] xt_SECMARK: only valid in 'mangle' or 'security' table, not 'raw' [ 828.089001][T24395] netlink: 'syz.4.8241': attribute type 1 has an invalid length. [ 828.158451][T24395] netlink: 244 bytes leftover after parsing attributes in process `syz.4.8241'. [ 828.864956][T24416] netlink: 8 bytes leftover after parsing attributes in process `syz.7.8250'. [ 829.708698][T24456] netlink: 28 bytes leftover after parsing attributes in process `syz.0.8266'. [ 829.809424][T24463] netlink: 36 bytes leftover after parsing attributes in process `syz.4.8268'. [ 829.914223][ T5833] usb 2-1: new high-speed USB device number 119 using dummy_hcd [ 830.151469][ T5833] usb 2-1: New USB device found, idVendor=0c45, idProduct=608f, bcdDevice=b5.55 [ 830.171702][ T5833] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 830.221514][ T5833] usb 2-1: Product: syz [ 830.225736][ T5833] usb 2-1: Manufacturer: syz [ 830.253702][ T5833] usb 2-1: SerialNumber: syz [ 830.263298][T24479] netlink: 20 bytes leftover after parsing attributes in process `syz.7.8275'. [ 830.297560][ T5833] usb 2-1: config 0 descriptor?? [ 830.317262][ T5833] gspca_main: sonixb-2.14.0 probing 0c45:608f [ 830.777248][ T5833] usb 2-1: USB disconnect, device number 119 [ 831.121293][T24512] netlink: 12 bytes leftover after parsing attributes in process `syz.7.8290'. [ 831.532400][T24527] loop1: detected capacity change from 0 to 256 [ 831.674826][T24527] FAT-fs (loop1): Directory bread(block 64) failed [ 831.696782][T24527] FAT-fs (loop1): Directory bread(block 65) failed [ 831.709454][T24527] FAT-fs (loop1): Directory bread(block 66) failed [ 831.726750][T24527] FAT-fs (loop1): Directory bread(block 67) failed [ 831.758829][T24535] loop5: detected capacity change from 0 to 2048 [ 831.766940][T24527] FAT-fs (loop1): Directory bread(block 68) failed [ 831.805294][T24527] FAT-fs (loop1): Directory bread(block 69) failed [ 831.822832][T24527] FAT-fs (loop1): Directory bread(block 70) failed [ 831.847371][T24527] FAT-fs (loop1): Directory bread(block 71) failed [ 831.859558][T24535] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 831.886607][T24527] FAT-fs (loop1): Directory bread(block 72) failed [ 831.908130][T24527] FAT-fs (loop1): Directory bread(block 73) failed [ 831.985780][ T5886] usb 8-1: new high-speed USB device number 5 using dummy_hcd [ 832.167534][ T5886] usb 8-1: Using ep0 maxpacket: 8 [ 832.189319][ T5886] usb 8-1: too many configurations: 245, using maximum allowed: 8 [ 832.263546][ T5886] usb 8-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 832.289498][ T5886] usb 8-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 832.332133][ T5886] usb 8-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 832.362112][ T5886] usb 8-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 832.370686][T24558] x_tables: duplicate underflow at hook 3 [ 832.386399][ T5886] usb 8-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 832.417167][ T5886] usb 8-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 832.457194][ T5886] usb 8-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 832.546048][ T5886] usb 8-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 832.585265][ T5886] usb 8-1: New USB device found, idVendor=20a6, idProduct=1105, bcdDevice=c2.eb [ 832.603086][ T5886] usb 8-1: New USB device strings: Mfr=144, Product=230, SerialNumber=250 [ 832.630310][ T5886] usb 8-1: Product: syz [ 832.634543][ T5886] usb 8-1: Manufacturer: syz [ 832.656372][T24569] CIFS: No dialect specified on mount. Default has changed to a more secure dialect, SMB2.1 or later (e.g. SMB3.1.1), from CIFS (SMB1). To use the less secure SMB1 dialect to access old servers which do not support SMB3.1.1 (or even SMB3 or SMB2.1) specify vers=1.0 on mount. [ 832.661599][T24568] loop1: detected capacity change from 0 to 256 [ 832.689209][ T5886] usb 8-1: SerialNumber: syz [ 832.718091][T24568] exfat: Deprecated parameter 'utf8' [ 832.744118][T24569] CIFS mount error: No usable UNC path provided in device string! [ 832.744118][T24569] [ 832.758699][ T5886] usb 8-1: config 0 descriptor?? [ 832.778270][ T5886] rndis_host 8-1:0.0: invalid descriptor buffer length [ 832.785927][T24569] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string! [ 832.787195][T24568] exfat: Deprecated parameter 'utf8' [ 832.816216][T24568] exFAT-fs (loop1): failed to load upcase table (idx : 0x00011ded, chksum : 0x9858084d, utbl_chksum : 0xe619d30d) [ 832.817070][ T5886] usb 8-1: bad CDC descriptors [ 832.885025][ T5886] option 8-1:0.0: GSM modem (1-port) converter detected [ 832.953245][T24578] SET target dimension over the limit! [ 833.101996][ T5891] usb 8-1: USB disconnect, device number 5 [ 833.123222][ T5891] option 8-1:0.0: device disconnected [ 833.597886][T24600] loop1: detected capacity change from 0 to 1024 [ 833.776768][T24608] netlink: 'syz.0.8331': attribute type 8 has an invalid length. [ 833.820407][ T1104] hfsplus: b-tree write err: -5, ino 4 [ 834.315592][T24626] loop5: detected capacity change from 0 to 64 [ 834.543007][T24631] tipc: Can't bind to reserved service type 0 [ 834.979639][T24644] block nbd0: NBD_DISCONNECT [ 835.007327][T24646] xt_time: unknown flags 0x4 [ 835.185509][T24652] loop6: detected capacity change from 0 to 256 [ 835.260413][T24652] exfat: Deprecated parameter 'namecase' [ 835.328388][T24652] exFAT-fs (loop6): failed to load upcase table (idx : 0x00010000, chksum : 0xbe66f6fd, utbl_chksum : 0xe619d30d) [ 835.635341][T24668] loop1: detected capacity change from 0 to 16 [ 835.703019][T24668] erofs (device loop1): mounted with root inode @ nid 36. [ 836.005998][T24681] netlink: 60 bytes leftover after parsing attributes in process `syz.1.8366'. [ 836.063062][T24681] unsupported nlmsg_type 40 [ 836.711960][T24694] loop7: detected capacity change from 0 to 4096 [ 836.755551][T24694] ntfs3(loop7): Different NTFS sector size (4096) and media sector size (512). [ 837.282614][T24715] netlink: 'syz.7.8383': attribute type 11 has an invalid length. [ 837.330763][T24715] netlink: 224 bytes leftover after parsing attributes in process `syz.7.8383'. [ 837.354222][T24720] netlink: 4 bytes leftover after parsing attributes in process `syz.5.8384'. [ 837.559198][ T1293] ieee802154 phy0 wpan0: encryption failed: -22 [ 837.565628][ T1293] ieee802154 phy1 wpan1: encryption failed: -22 [ 837.583863][T24726] netlink: 4768 bytes leftover after parsing attributes in process `syz.0.8387'. [ 837.731556][T24686] loop4: detected capacity change from 0 to 32768 [ 837.772304][T24686] XFS: ikeep mount option is deprecated. [ 837.823462][T24686] XFS: noikeep mount option is deprecated. [ 837.932324][T24686] XFS (loop4): Mounting V5 Filesystem a2f82aab-77f8-4286-afd4-a8f747a74bab [ 838.099573][ T30] audit: type=1326 audit(1746159752.383:1938): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24756 comm="syz.5.8396" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2ef498e969 code=0x7ffc0000 [ 838.141747][T24759] netlink: 8 bytes leftover after parsing attributes in process `syz.1.8399'. [ 838.177935][ T30] audit: type=1326 audit(1746159752.383:1939): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24756 comm="syz.5.8396" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2ef498e969 code=0x7ffc0000 [ 838.256634][T24686] XFS (loop4): Ending clean mount [ 838.299758][ T30] audit: type=1326 audit(1746159752.430:1940): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24756 comm="syz.5.8396" exe="/root/syz-executor" sig=0 arch=c000003e syscall=65 compat=0 ip=0x7f2ef498e969 code=0x7ffc0000 [ 838.325733][T24686] XFS (loop4): Quotacheck needed: Please wait. [ 838.438436][ T30] audit: type=1326 audit(1746159752.430:1941): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24756 comm="syz.5.8396" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2ef498e969 code=0x7ffc0000 [ 838.567187][ T30] audit: type=1326 audit(1746159752.430:1942): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24756 comm="syz.5.8396" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2ef498e969 code=0x7ffc0000 [ 838.570994][T24686] XFS (loop4): Quotacheck: Done. [ 838.806325][T24782] netlink: 8 bytes leftover after parsing attributes in process `syz.1.8407'. [ 838.815272][T24782] netlink: 4 bytes leftover after parsing attributes in process `syz.1.8407'. [ 839.014404][ T5820] XFS (loop4): Unmounting Filesystem a2f82aab-77f8-4286-afd4-a8f747a74bab [ 839.017055][T24789] xt_TPROXY: Can be used only with -p tcp or -p udp [ 839.227975][T24798] loop1: detected capacity change from 0 to 16 [ 839.297436][T24798] erofs (device loop1): mounted with root inode @ nid 36. [ 839.915766][T24818] IPVS: set_ctl: invalid protocol: 0 255.255.255.255:20004 [ 839.982286][T24824] loop7: detected capacity change from 0 to 256 [ 840.083233][T24824] FAT-fs (loop7): Directory bread(block 64) failed [ 840.142455][T24824] FAT-fs (loop7): Directory bread(block 65) failed [ 840.149212][T24824] FAT-fs (loop7): Directory bread(block 66) failed [ 840.177659][T24824] FAT-fs (loop7): Directory bread(block 67) failed [ 840.222850][T24824] FAT-fs (loop7): Directory bread(block 68) failed [ 840.240792][T24832] loop1: detected capacity change from 0 to 128 [ 840.265026][T24824] FAT-fs (loop7): Directory bread(block 69) failed [ 840.282157][T24824] FAT-fs (loop7): Directory bread(block 70) failed [ 840.313666][T24824] FAT-fs (loop7): Directory bread(block 71) failed [ 840.321770][T24824] FAT-fs (loop7): Directory bread(block 72) failed [ 840.329744][T24824] FAT-fs (loop7): Directory bread(block 73) failed [ 840.383851][T24840] netlink: 20 bytes leftover after parsing attributes in process `syz.0.8433'. [ 840.404595][T24832] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 840.484127][T24832] ext4 filesystem being mounted at /1430/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 840.781784][ T5836] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 840.784826][T24854] loop4: detected capacity change from 0 to 512 [ 840.902122][T24854] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 841.050416][T24854] ext4 filesystem being mounted at /1429/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 841.169583][T24854] Quota error (device loop4): find_tree_dqentry: Cycle in quota tree detected: block 2 index 0 [ 841.249821][T24854] Quota error (device loop4): qtree_read_dquot: Can't read quota structure for id 0 [ 841.322088][T24854] EXT4-fs error (device loop4): ext4_acquire_dquot:6935: comm syz.4.8440: Failed to acquire dquot type 0 [ 841.345803][T24848] loop5: detected capacity change from 0 to 32768 [ 841.366954][T24848] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop5 (7:5) scanned by syz.5.8436 (24848) [ 841.384707][T24870] cgroup: No subsys list or none specified [ 841.412339][T24848] BTRFS info (device loop5 state S): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 841.489964][T24848] BTRFS info (device loop5 state S): using crc32c (crc32c-x86_64) checksum algorithm [ 841.540261][T24848] BTRFS info (device loop5 state S): using free-space-tree [ 841.592363][ T5820] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 841.747642][ T12] BTRFS warning (device loop5 state S): checksum verify failed on logical 5332992 mirror 1 wanted 0x0a5e5d25 found 0xbeadaddc level 0, ignored [ 841.832015][ T5891] usb 7-1: new high-speed USB device number 11 using dummy_hcd [ 841.853169][T24890] loop1: detected capacity change from 0 to 2048 [ 841.884368][ T12] BTRFS warning (device loop5 state S): checksum verify failed on logical 5337088 mirror 1 wanted 0xe63dbdda found 0x32c165c1 level 0, ignored [ 841.938927][T24897] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 842.031173][T24890] CPU: 0 UID: 0 PID: 24890 Comm: syz.1.8451 Not tainted 6.15.0-rc4-syzkaller-00147-gebd297a2affa #0 PREEMPT(full) [ 842.031211][T24890] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 842.031227][T24890] Call Trace: [ 842.031237][T24890] [ 842.031249][T24890] dump_stack_lvl+0x189/0x250 [ 842.031290][T24890] ? srso_alias_return_thunk+0x5/0xfbef5 [ 842.031328][T24890] ? rcu_is_watching+0x15/0xb0 [ 842.031369][T24890] ? __pfx_dump_stack_lvl+0x10/0x10 [ 842.031403][T24890] ? kmem_cache_alloc_noprof+0x21a/0x3c0 [ 842.031438][T24890] ? srso_alias_return_thunk+0x5/0xfbef5 [ 842.031467][T24890] ? __asan_memset+0x22/0x50 [ 842.031491][T24890] ? srso_alias_return_thunk+0x5/0xfbef5 [ 842.031519][T24890] ? nilfs_btree_alloc_path+0x5e5/0x610 [ 842.031564][T24890] nilfs_btree_last_key+0x491/0x620 [ 842.031607][T24890] nilfs_bmap_last_key+0x7a/0x130 [ 842.031639][T24890] nilfs_truncate_bmap+0xfe/0x340 [ 842.031666][T24890] ? srso_alias_return_thunk+0x5/0xfbef5 [ 842.031699][T24890] ? __pfx_nilfs_truncate_bmap+0x10/0x10 [ 842.031724][T24890] ? srso_alias_return_thunk+0x5/0xfbef5 [ 842.031758][T24890] ? srso_alias_return_thunk+0x5/0xfbef5 [ 842.031785][T24890] ? nilfs_transaction_begin+0x52a/0x710 [ 842.031816][T24890] ? __pfx_nilfs_get_block+0x10/0x10 [ 842.031843][T24890] nilfs_truncate+0x279/0x4e0 [ 842.031876][T24890] ? __pfx_nilfs_truncate+0x10/0x10 [ 842.031909][T24890] ? srso_alias_return_thunk+0x5/0xfbef5 [ 842.031937][T24890] ? truncate_setsize+0xcf/0xf0 [ 842.031972][T24890] nilfs_setattr+0x206/0x2b0 [ 842.032003][T24890] ? __pfx_nilfs_setattr+0x10/0x10 [ 842.032033][T24890] ? srso_alias_return_thunk+0x5/0xfbef5 [ 842.032069][T24890] ? srso_alias_return_thunk+0x5/0xfbef5 [ 842.032097][T24890] ? try_break_deleg+0x79/0x130 [ 842.032122][T24890] ? __pfx_nilfs_setattr+0x10/0x10 [ 842.032152][T24890] notify_change+0xb36/0xe40 [ 842.032192][T24890] do_truncate+0x19a/0x220 [ 842.032225][T24890] ? __pfx_do_truncate+0x10/0x10 [ 842.032252][T24890] ? apparmor_file_truncate+0x23e/0x2d0 [ 842.032323][T24890] path_openat+0x306c/0x3830 [ 842.032347][T24890] ? arch_stack_walk+0xfc/0x150 [ 842.032423][T24890] ? __pfx_path_openat+0x10/0x10 [ 842.032445][T24890] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 842.032497][T24890] do_filp_open+0x1fa/0x410 [ 842.032527][T24890] ? __pfx_do_filp_open+0x10/0x10 [ 842.032581][T24890] ? _raw_spin_unlock+0x28/0x50 [ 842.032604][T24890] ? srso_alias_return_thunk+0x5/0xfbef5 [ 842.032631][T24890] ? alloc_fd+0x64c/0x6c0 [ 842.032677][T24890] do_sys_openat2+0x121/0x1c0 [ 842.032715][T24890] ? srso_alias_return_thunk+0x5/0xfbef5 [ 842.032747][T24890] ? __pfx_do_sys_openat2+0x10/0x10 [ 842.032787][T24890] ? srso_alias_return_thunk+0x5/0xfbef5 [ 842.032816][T24890] ? rcu_is_watching+0x15/0xb0 [ 842.032865][T24890] __x64_sys_creat+0x8f/0xc0 [ 842.032893][T24890] do_syscall_64+0xf6/0x210 [ 842.032924][T24890] ? srso_alias_return_thunk+0x5/0xfbef5 [ 842.032953][T24890] ? exc_page_fault+0x91/0x110 [ 842.032983][T24890] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 842.033008][T24890] RIP: 0033:0x7fd6b2b8e969 [ 842.033030][T24890] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 842.033050][T24890] RSP: 002b:00007fd6b3921038 EFLAGS: 00000246 ORIG_RAX: 0000000000000055 [ 842.033077][T24890] RAX: ffffffffffffffda RBX: 00007fd6b2db5fa0 RCX: 00007fd6b2b8e969 [ 842.033095][T24890] RDX: 0000000000000000 RSI: 0000000000000124 RDI: 0000200000000080 [ 842.033111][T24890] RBP: 00007fd6b2c10ab1 R08: 0000000000000000 R09: 0000000000000000 [ 842.033126][T24890] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 842.033140][T24890] R13: 0000000000000000 R14: 00007fd6b2db5fa0 R15: 00007ffc0035ccd8 [ 842.033177][T24890] [ 842.033187][T24890] NILFS (loop1): btree level mismatch (ino=16): 1 != 3 [ 842.060424][ T5891] usb 7-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xE8, changing to 0x88 [ 842.093769][T24890] NILFS error (device loop1): nilfs_bmap_last_key: broken bmap (inode number=16) [ 842.143964][ T5891] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x88 has an invalid bInterval 0, changing to 7 [ 842.262544][T24890] Remounting filesystem read-only [ 842.330964][ T5891] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0xA has an invalid bInterval 0, changing to 7 [ 842.340290][T24890] NILFS (loop1): error -5 truncating bmap (ino=16) [ 842.430429][ T5891] usb 7-1: New USB device found, idVendor=1781, idProduct=0938, bcdDevice=9b.49 [ 842.494676][ T5825] BTRFS info (device loop5 state S): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 842.499348][ T5891] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 842.594676][ T5891] usb 7-1: Product: syz [ 842.605863][ T5891] usb 7-1: Manufacturer: syz [ 842.624282][ T5891] usb 7-1: SerialNumber: syz [ 842.646280][ T5891] usb 7-1: config 0 descriptor?? [ 842.756019][ T5836] NILFS (loop1): disposed unprocessed dirty file(s) when detaching log writer [ 842.848633][ T5833] usb 5-1: new high-speed USB device number 107 using dummy_hcd [ 843.038639][ T5833] usb 5-1: Using ep0 maxpacket: 16 [ 843.038774][ T5966] kworker/1:7 (5966) used greatest stack depth: 14088 bytes left [ 843.068234][ T5833] usb 5-1: config 0 descriptor has 1 excess byte, ignoring [ 843.083031][T24912] loop1: detected capacity change from 0 to 256 [ 843.110959][ T5833] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x4 has invalid maxpacket 65516, setting to 1024 [ 843.137688][T24912] exfat: Deprecated parameter 'utf8' [ 843.182445][ T5833] usb 5-1: config 0 interface 0 altsetting 0 bulk endpoint 0x4 has invalid maxpacket 1024 [ 843.255666][ T5833] usb 5-1: config 0 interface 0 altsetting 0 bulk endpoint 0x81 has invalid maxpacket 15 [ 843.258469][T24912] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x88000078, utbl_chksum : 0xe619d30d) [ 843.364104][ T5833] usb 5-1: New USB device found, idVendor=04d8, idProduct=0a30, bcdDevice=ce.47 [ 843.393622][ T5833] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 843.454914][ T5833] usb 5-1: Product: syz [ 843.468531][ T5833] usb 5-1: Manufacturer: syz [ 843.473194][ T5833] usb 5-1: SerialNumber: syz [ 843.532366][ T5833] usb 5-1: config 0 descriptor?? [ 843.582380][T24904] raw-gadget.1 gadget.4: fail, usb_ep_enable returned -22 [ 843.611158][T24904] raw-gadget.1 gadget.4: fail, usb_ep_enable returned -22 [ 843.740550][ C0] mcba_usb 5-1:0.0 can0: Tx URB aborted (-71) [ 843.747112][ T5833] mcba_usb 5-1:0.0: Microchip CAN BUS Analyzer connected [ 843.754241][ C0] mcba_usb 5-1:0.0 can0: Tx URB aborted (-71) [ 843.971307][ T10] usb 5-1: USB disconnect, device number 107 [ 843.994687][ T10] mcba_usb 5-1:0.0 can0: device disconnected [ 844.905678][T24956] netlink: 'syz.4.8477': attribute type 11 has an invalid length. [ 844.956950][T24956] netlink: 36 bytes leftover after parsing attributes in process `syz.4.8477'. [ 845.153677][ T1092] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 845.436478][ T1092] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 845.670569][T24968] loop6: detected capacity change from 0 to 256 [ 845.741262][T24970] netlink: 48 bytes leftover after parsing attributes in process `syz.4.8484'. [ 845.795264][ T1092] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 845.839272][T24968] FAT-fs (loop6): Directory bread(block 64) failed [ 845.872616][T24968] FAT-fs (loop6): Directory bread(block 65) failed [ 845.925529][T24968] FAT-fs (loop6): Directory bread(block 66) failed [ 845.943504][T24968] FAT-fs (loop6): Directory bread(block 67) failed [ 845.985898][T24968] FAT-fs (loop6): Directory bread(block 68) failed [ 846.054624][T24968] FAT-fs (loop6): Directory bread(block 69) failed [ 846.061317][T24968] FAT-fs (loop6): Directory bread(block 70) failed [ 846.132768][T24968] FAT-fs (loop6): Directory bread(block 71) failed [ 846.139473][T24968] FAT-fs (loop6): Directory bread(block 72) failed [ 846.148113][ T1092] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 846.182257][T24968] FAT-fs (loop6): Directory bread(block 73) failed [ 846.210335][T24979] netlink: 44 bytes leftover after parsing attributes in process `syz.7.8488'. [ 846.405457][T24985] xt_socket: unknown flags 0xc [ 846.912012][ T1092] bridge_slave_1: left allmulticast mode [ 846.918150][ T1092] bridge_slave_1: left promiscuous mode [ 846.931502][T25000] overlayfs: conflicting options: metacopy=off,verity=require [ 846.980049][ T1092] bridge0: port 2(bridge_slave_1) entered disabled state [ 847.145813][T16567] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 847.170168][T16567] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 847.181512][T16567] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 847.199567][T16567] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 847.218270][T16567] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 847.257527][ T1092] bridge_slave_0: left allmulticast mode [ 847.279832][ T1092] bridge_slave_0: left promiscuous mode [ 847.309262][ T1092] bridge0: port 1(bridge_slave_0) entered disabled state [ 847.499624][ T9] usb 5-1: new high-speed USB device number 108 using dummy_hcd [ 847.690644][ T9] usb 5-1: Using ep0 maxpacket: 16 [ 847.720085][ T9] usb 5-1: config 4 has an invalid interface number: 51 but max is 0 [ 847.751223][ T9] usb 5-1: config 4 has no interface number 0 [ 847.775280][ T9] usb 5-1: config 4 interface 51 altsetting 2 bulk endpoint 0x1 has invalid maxpacket 16 [ 847.826043][ T9] usb 5-1: config 4 interface 51 altsetting 2 bulk endpoint 0x82 has invalid maxpacket 64 [ 847.876406][ T9] usb 5-1: config 4 interface 51 has no altsetting 0 [ 847.944303][ T9] usb 5-1: New USB device found, idVendor=954f, idProduct=4199, bcdDevice= f.76 [ 848.001062][ T9] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 848.055786][ T9] usb 5-1: Product: syz [ 848.060013][ T9] usb 5-1: Manufacturer: syz [ 848.082309][ T9] usb 5-1: SerialNumber: syz [ 848.243387][T25010] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22 [ 848.267811][T25010] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22 [ 848.553194][T25010] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22 [ 848.571250][T25010] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22 [ 848.887141][T25057] netlink: 'syz.7.8518': attribute type 5 has an invalid length. [ 849.075409][T25063] netlink: 280 bytes leftover after parsing attributes in process `syz.7.8522'. [ 849.200923][T25067] ip6t_REJECT: TCP_RESET illegal for non-tcp [ 849.394633][ T1092] bond0 (unregistering): (slave bridge0): Releasing backup interface [ 849.443969][T16567] Bluetooth: hci5: command tx timeout [ 849.843980][ T1092] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 849.895117][ T1092] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 849.918695][ T1092] bond0 (unregistering): Released all slaves [ 850.024402][T25090] loop5: detected capacity change from 0 to 512 [ 850.035205][ T9] cdc_eem 5-1:4.51 usb0: register 'cdc_eem' at usb-dummy_hcd.4-1, CDC EEM Device, 7a:77:2d:d5:dd:db [ 850.070567][T25073] (unnamed net_device) (uninitialized): option updelay: invalid value (18446744073709551104) [ 850.127564][T25090] EXT4-fs (loop5): revision level too high, forcing read-only mode [ 850.157822][T25090] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a842c01c, mo2=0002] [ 850.172001][ T9] usb 5-1: USB disconnect, device number 108 [ 850.172981][T25088] loop7: detected capacity change from 0 to 4096 [ 850.182420][T25073] (unnamed net_device) (uninitialized): option updelay: allowed values 0 - 2147483647 [ 850.218075][ T9] cdc_eem 5-1:4.51 usb0: unregister 'cdc_eem' usb-dummy_hcd.4-1, CDC EEM Device [ 850.245161][T25088] ntfs3(loop7): Different NTFS sector size (1024) and media sector size (512). [ 850.255406][T25090] System zones: 1-12 [ 850.276912][T25090] EXT4-fs (loop5): couldn't mount RDWR because of unsupported optional features (80) [ 850.290557][T25090] EXT4-fs (loop5): Skipping orphan cleanup due to unknown ROCOMPAT features [ 850.312157][T25090] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none. [ 850.412854][T25090] EXT4-fs (loop5): couldn't mount RDWR because of unsupported optional features (80) [ 850.621051][ T5825] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 851.195573][T25107] loop7: detected capacity change from 0 to 64 [ 851.242715][T25108] netlink: 8 bytes leftover after parsing attributes in process `syz.5.8543'. [ 851.292772][T25108] netlink: 'syz.5.8543': attribute type 6 has an invalid length. [ 851.516192][T25111] netlink: 'syz.0.8544': attribute type 11 has an invalid length. [ 851.560065][T25111] netlink: 'syz.0.8544': attribute type 5 has an invalid length. [ 851.667125][T16567] Bluetooth: hci5: command tx timeout [ 851.966612][ T1092] hsr_slave_0: left promiscuous mode [ 852.031007][ T1092] hsr_slave_1: left promiscuous mode [ 852.038483][ T1092] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 852.094341][ T1092] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 852.191891][ T1092] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 852.199365][ T1092] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 852.255101][T25126] nft_compat: unsupported protocol 1 [ 852.453384][ T1092] veth1_macvtap: left promiscuous mode [ 852.522426][ T1092] veth0_macvtap: left promiscuous mode [ 852.547068][ T1092] veth1_vlan: left promiscuous mode [ 852.577865][ T1092] @ÿ: left promiscuous mode [ 853.042513][T25152] netlink: 'syz.0.8559': attribute type 21 has an invalid length. [ 853.408670][ T93] usb 6-1: new high-speed USB device number 120 using dummy_hcd [ 853.613826][ T93] usb 6-1: too many configurations: 89, using maximum allowed: 8 [ 853.657659][ T93] usb 6-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08 [ 853.702041][ T93] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 853.724930][ T93] usb 6-1: Product: syz [ 853.739727][ T93] usb 6-1: Manufacturer: syz [ 853.754164][ T93] usb 6-1: SerialNumber: syz [ 853.801034][ T93] usb 6-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested [ 853.838776][ T9] usb 6-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008 [ 853.890812][T16567] Bluetooth: hci5: command tx timeout [ 853.987596][ T5891] iguanair 7-1:0.0: failed to get version [ 854.001125][ T5891] iguanair 7-1:0.0: probe with driver iguanair failed with error -110 [ 854.060303][ T5891] usb 7-1: USB disconnect, device number 11 [ 854.192948][T25174] netlink: 'syz.4.8568': attribute type 1 has an invalid length. [ 854.932783][ T93] usb 6-1: USB disconnect, device number 120 [ 855.019506][ T9] ath9k_htc 6-1:1.0: ath9k_htc: Target is unresponsive [ 855.043318][ T9] ath9k_htc: Failed to initialize the device [ 855.051303][ T93] usb 6-1: ath9k_htc: USB layer deinitialized [ 855.382578][ T30] audit: type=1326 audit(1746159768.547:1943): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25193 comm="syz.4.8578" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f604c78e969 code=0x7ffc0000 [ 855.499020][ T30] audit: type=1326 audit(1746159768.547:1944): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25193 comm="syz.4.8578" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f604c78e969 code=0x7ffc0000 [ 855.557744][ T30] audit: type=1326 audit(1746159768.547:1945): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25193 comm="syz.4.8578" exe="/root/syz-executor" sig=0 arch=c000003e syscall=425 compat=0 ip=0x7f604c78e969 code=0x7ffc0000 [ 855.621964][ T30] audit: type=1326 audit(1746159768.547:1946): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25193 comm="syz.4.8578" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f604c78e9a3 code=0x7ffc0000 [ 855.672296][ T30] audit: type=1326 audit(1746159768.556:1947): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25193 comm="syz.4.8578" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f604c78e9a3 code=0x7ffc0000 [ 855.735759][ T30] audit: type=1326 audit(1746159768.556:1948): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25193 comm="syz.4.8578" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f604c78e969 code=0x7ffc0000 [ 855.779725][ T30] audit: type=1326 audit(1746159768.556:1949): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25193 comm="syz.4.8578" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f604c78e969 code=0x7ffc0000 [ 855.828914][ T30] audit: type=1400 audit(1746159768.959:1950): apparmor="DENIED" operation="change_hat" class="file" info="unconfined can not change_hat" error=-1 profile="unconfined" pid=25199 comm="syz.5.8581" [ 855.974563][T25206] loop4: detected capacity change from 0 to 64 [ 856.065594][T25208] netlink: 'syz.5.8585': attribute type 5 has an invalid length. [ 856.073751][T25208] netlink: 8 bytes leftover after parsing attributes in process `syz.5.8585'. [ 856.094696][T25190] Falling back ldisc for ptm0. [ 856.116836][T16567] Bluetooth: hci5: command tx timeout [ 856.549953][T25224] netlink: 16 bytes leftover after parsing attributes in process `syz.4.8593'. [ 856.559983][ T1092] team0 (unregistering): Port device team_slave_1 removed [ 856.589709][T25224] netlink: 12 bytes leftover after parsing attributes in process `syz.4.8593'. [ 856.611782][T25224] netlink: 20 bytes leftover after parsing attributes in process `syz.4.8593'. [ 856.840299][ T1092] team0 (unregistering): Port device team_slave_0 removed [ 856.917771][T25234] No such timeout policy "syz0" [ 857.027135][T25236] loop4: detected capacity change from 0 to 8 [ 857.055516][ T5886] usb 6-1: new high-speed USB device number 121 using dummy_hcd [ 857.250048][ T5886] usb 6-1: Using ep0 maxpacket: 8 [ 857.266886][ T5886] usb 6-1: config 1 has 1 interface, different from the descriptor's value: 7 [ 857.282519][ T5886] usb 6-1: New USB device found, idVendor=082d, idProduct=0100, bcdDevice=70.4b [ 857.305261][ T5886] usb 6-1: New USB device strings: Mfr=44, Product=2, SerialNumber=3 [ 857.313956][ T5886] usb 6-1: Product: syz [ 857.321756][ T5886] usb 6-1: Manufacturer: syz [ 857.329050][ T5891] usb 5-1: new high-speed USB device number 109 using dummy_hcd [ 857.343598][ T5886] usb 6-1: SerialNumber: syz [ 857.514944][ T5891] usb 5-1: Using ep0 maxpacket: 8 [ 857.527827][ T5891] usb 5-1: config 0 has an invalid interface number: 200 but max is 0 [ 857.536709][ T5891] usb 5-1: config 0 has no interface number 0 [ 857.542858][ T5891] usb 5-1: too many endpoints for config 0 interface 200 altsetting 231: 253, using maximum allowed: 30 [ 857.563487][ T5891] usb 5-1: config 0 interface 200 altsetting 231 has 0 endpoint descriptors, different from the interface descriptor's value: 253 [ 857.594003][ T5886] usb 6-1: palm_os_3_probe - error -71 getting connection information [ 857.602732][ T5891] usb 5-1: config 0 interface 200 has no altsetting 0 [ 857.621119][ T5886] visor 6-1:1.0: probe with driver visor failed with error -71 [ 857.631912][ T5891] usb 5-1: New USB device found, idVendor=0471, idProduct=0313, bcdDevice=81.d5 [ 857.648941][ T5891] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 857.664065][ T5886] usb 6-1: USB disconnect, device number 121 [ 857.674952][ T5891] usb 5-1: Product: syz [ 857.679182][ T5891] usb 5-1: Manufacturer: syz [ 857.687604][ T5891] usb 5-1: SerialNumber: syz [ 857.701621][ T5891] usb 5-1: config 0 descriptor?? [ 857.917678][T25152] netlink: 156 bytes leftover after parsing attributes in process `syz.0.8559'. [ 857.936127][T25160] workqueue: Failed to create a rescuer kthread for wq "bond1": -EINTR [ 857.958655][ T5891] usb 5-1: USB disconnect, device number 109 [ 858.347429][T25258] loop5: detected capacity change from 0 to 1024 [ 858.515200][T25262] (unnamed net_device) (uninitialized): option lp_interval: invalid value (0) [ 858.524783][T25262] (unnamed net_device) (uninitialized): option lp_interval: allowed values 1 - 2147483647 [ 858.669887][ T52] hfsplus: b-tree write err: -5, ino 4 [ 858.926092][T25002] chnl_net:caif_netlink_parms(): no params data found [ 859.215020][T25284] loop7: detected capacity change from 0 to 8 [ 859.583600][T25298] bridge3: entered promiscuous mode [ 859.658960][ T1092] IPVS: stop unused estimator thread 0... [ 859.802975][ T93] usb 5-1: new high-speed USB device number 110 using dummy_hcd [ 859.991963][T25316] netlink: 212408 bytes leftover after parsing attributes in process `syz.7.8630'. [ 860.017880][ T93] usb 5-1: Using ep0 maxpacket: 32 [ 860.030312][T25002] bridge0: port 1(bridge_slave_0) entered blocking state [ 860.077504][ T93] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x1 has an invalid bInterval 0, changing to 7 [ 860.089181][T25002] bridge0: port 1(bridge_slave_0) entered disabled state [ 860.113042][T25002] bridge_slave_0: entered allmulticast mode [ 860.129713][ T93] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0 [ 860.155960][T25002] bridge_slave_0: entered promiscuous mode [ 860.173130][ T93] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x8 has invalid wMaxPacketSize 0 [ 860.194250][T25002] bridge0: port 2(bridge_slave_1) entered blocking state [ 860.220095][T25002] bridge0: port 2(bridge_slave_1) entered disabled state [ 860.239376][ T93] usb 5-1: New USB device found, idVendor=1781, idProduct=0938, bcdDevice=75.9e [ 860.269490][ T93] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 860.278117][T25002] bridge_slave_1: entered allmulticast mode [ 860.318546][ T93] usb 5-1: Product: syz [ 860.322762][ T93] usb 5-1: Manufacturer: syz [ 860.328464][T25002] bridge_slave_1: entered promiscuous mode [ 860.347702][T25321] netlink: 16 bytes leftover after parsing attributes in process `syz.6.8632'. [ 860.378763][ T93] usb 5-1: SerialNumber: syz [ 860.381371][T25326] openvswitch: netlink: Key 22 has unexpected len 2 expected 4 [ 860.410058][ T93] usb 5-1: config 0 descriptor?? [ 860.429748][ T93] iguanair 5-1:0.0: probe with driver iguanair failed with error -12 [ 860.694189][T25002] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 860.724897][ T5887] usb 5-1: USB disconnect, device number 110 [ 860.823636][T25002] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 861.060654][T25002] team0: Port device team_slave_0 added [ 861.093164][T25002] team0: Port device team_slave_1 added [ 861.144842][T25345] loop5: detected capacity change from 0 to 24 [ 861.197177][T25345] MTD: Attempt to mount non-MTD device "/dev/loop5" [ 861.258641][T25345] romfs: Mounting image 'rom 637cf1fa' through the block layer [ 861.286729][T25345] romfs: read error for inode 0x70040 [ 861.323541][T25002] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 861.352784][T25002] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 861.452334][T25002] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 861.519493][T25002] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 861.580918][T25002] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 861.681576][ T5831] Bluetooth: hci6: command 0x0406 tx timeout [ 861.693435][T25002] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 861.759217][ T5833] usb 8-1: new high-speed USB device number 6 using dummy_hcd [ 861.941514][ T5833] usb 8-1: Using ep0 maxpacket: 8 [ 861.978820][ T5833] usb 8-1: New USB device found, idVendor=10c4, idProduct=8244, bcdDevice=dc.00 [ 862.040511][ T5833] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 862.057873][T25002] hsr_slave_0: entered promiscuous mode [ 862.079816][ T5833] usb 8-1: Product: syz [ 862.084016][ T5833] usb 8-1: Manufacturer: syz [ 862.089926][T25002] hsr_slave_1: entered promiscuous mode [ 862.136790][T25002] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 862.144646][ T5833] usb 8-1: SerialNumber: syz [ 862.159828][T25002] Cannot create hsr debugfs directory [ 862.166844][ T5833] usb 8-1: config 0 descriptor?? [ 862.187050][ T5833] radio-usb-si4713 8-1:0.0: Si4713 development board discovered: (10C4:8244) [ 862.698774][ T5833] radio-usb-si4713 8-1:0.0: probe with driver radio-usb-si4713 failed with error -71 [ 862.720496][ T5833] usbhid 8-1:0.0: couldn't find an input interrupt endpoint [ 862.782268][ T5833] usb 8-1: USB disconnect, device number 6 [ 863.688482][T25428] loop7: detected capacity change from 0 to 1024 [ 863.800223][T25002] netdevsim netdevsim8 netdevsim0: renamed from eth0 [ 863.862220][T25433] loop5: detected capacity change from 0 to 764 [ 863.920616][T25002] netdevsim netdevsim8 netdevsim1: renamed from eth1 [ 864.033747][T25438] A link change request failed with some changes committed already. Interface veth0_macvtap may have been left with an inconsistent configuration, please check. [ 864.104970][T25002] netdevsim netdevsim8 netdevsim2: renamed from eth2 [ 864.186393][T25002] netdevsim netdevsim8 netdevsim3: renamed from eth3 [ 864.438885][T25454] IPv6: NLM_F_CREATE should be specified when creating new route [ 864.483682][T25454] netlink: 1 bytes leftover after parsing attributes in process `syz.7.8686'. [ 864.727565][T25002] 8021q: adding VLAN 0 to HW filter on device bond0 [ 864.853194][T25002] 8021q: adding VLAN 0 to HW filter on device team0 [ 864.968512][ T4854] bridge0: port 1(bridge_slave_0) entered blocking state [ 864.975691][ T4854] bridge0: port 1(bridge_slave_0) entered forwarding state [ 865.042427][ T4854] bridge0: port 2(bridge_slave_1) entered blocking state [ 865.049601][ T4854] bridge0: port 2(bridge_slave_1) entered forwarding state [ 865.101225][T25480] netlink: 248 bytes leftover after parsing attributes in process `syz.0.8696'. [ 865.790672][T25502] x_tables: duplicate underflow at hook 2 [ 866.156743][T25515] netlink: 8 bytes leftover after parsing attributes in process `syz.4.8710'. [ 866.260357][T25002] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 866.281279][ T5887] usb 6-1: new high-speed USB device number 122 using dummy_hcd [ 866.387871][T25524] netlink: 12 bytes leftover after parsing attributes in process `syz.6.8712'. [ 866.494958][ T5887] usb 6-1: Using ep0 maxpacket: 8 [ 866.507482][T25531] loop4: detected capacity change from 0 to 16 [ 866.527877][ T5887] usb 6-1: config 0 interface 0 altsetting 0 has an invalid descriptor for endpoint zero, skipping [ 866.563911][T25531] erofs (device loop4): mounted with root inode @ nid 36. [ 866.582551][ T5887] usb 6-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0x94, changing to 0x84 [ 866.628596][T25531] erofs (device loop4): bogus lookback distance 1388 @ lcn 42 of nid 36 [ 866.644712][ T5887] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 7 [ 866.687330][T25531] erofs (device loop4): read error -117 @ 43 of nid 36 [ 866.695567][ T5887] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0 [ 866.746270][ T5887] usb 6-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 1 [ 866.801965][ T5887] usb 6-1: New USB device found, idVendor=04e8, idProduct=ff30, bcdDevice=a6.d1 [ 866.838129][ T5887] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 866.846696][ T5887] usb 6-1: Product: syz [ 866.894635][ T5887] usb 6-1: Manufacturer: syz [ 866.923300][ T5887] usb 6-1: SerialNumber: syz [ 866.958471][ T5887] usb 6-1: config 0 descriptor?? [ 866.976611][ T31] INFO: task syz-executor:5830 blocked for more than 143 seconds. [ 867.025788][ T31] Not tainted 6.15.0-rc4-syzkaller-00147-gebd297a2affa #0 [ 867.067260][ T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 867.109335][T25553] netlink: 8 bytes leftover after parsing attributes in process `syz.6.8722'. [ 867.125706][ T31] task:syz-executor state:D stack:22008 pid:5830 tgid:5830 ppid:1 task_flags:0x400140 flags:0x00004004 [ 867.168571][T25553] netlink: 8 bytes leftover after parsing attributes in process `syz.6.8722'. [ 867.206229][T25553] netlink: 2 bytes leftover after parsing attributes in process `syz.6.8722'. [ 867.206262][ T31] Call Trace: [ 867.238536][ T31] [ 867.253884][ T5887] rc_core: IR keymap rc-imon-rsc not found [ 867.254697][ T31] __schedule+0x16e2/0x4cd0 [ 867.259722][ T5887] Registered IR keymap rc-empty [ 867.261053][ T5887] rc rc0: iMON Station as /devices/platform/dummy_hcd.5/usb6/6-1/6-1:0.0/rc/rc0 [ 867.297415][ T31] ? srso_alias_return_thunk+0x5/0xfbef5 [ 867.322441][ T31] ? schedule+0x165/0x360 [ 867.350890][ T5887] input: iMON Station as /devices/platform/dummy_hcd.5/usb6/6-1/6-1:0.0/rc/rc0/input70 [ 867.362355][ T31] ? __lock_acquire+0xaac/0xd20 [ 867.368489][ T31] ? __pfx___schedule+0x10/0x10 [ 867.373979][ T5887] imon_raw 6-1:0.0: probe with driver imon_raw failed with error -90 [ 867.382136][ T31] ? srso_alias_return_thunk+0x5/0xfbef5 [ 867.387805][ T31] ? schedule+0x91/0x360 [ 867.392092][ T31] schedule+0x165/0x360 [ 867.396617][ T31] io_schedule+0x81/0xe0 [ 867.401038][ T31] folio_wait_bit_common+0x6b0/0xb90 [ 867.406644][ T31] ? __pfx_folio_wait_bit_common+0x10/0x10 [ 867.412516][ T31] ? __pfx_wake_page_function+0x10/0x10 [ 867.418297][ T31] ? folios_put_refs+0x559/0x640 [ 867.423266][ T31] ? __pfx_find_lock_entries+0x10/0x10 [ 867.435623][ T31] __filemap_get_folio+0x139/0xaf0 [ 867.440772][ T31] truncate_inode_pages_range+0x3ed/0xda0 [ 867.456899][ T31] ? evict+0x847/0x9c0 [ 867.461023][ T31] ? evict_inodes+0x636/0x6c0 [ 867.465723][ T31] ? generic_shutdown_super+0x9a/0x2c0 [ 867.489059][ T31] ? kill_block_super+0x44/0x90 [ 867.494107][ T31] ? deactivate_locked_super+0xbc/0x130 [ 867.514917][ T31] ? __pfx_truncate_inode_pages_range+0x10/0x10 [ 867.531955][ T31] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 867.538145][ T31] ? srso_alias_return_thunk+0x5/0xfbef5 [ 867.559498][ T31] ? __lock_acquire+0xaac/0xd20 [ 867.570717][ T31] ? _raw_spin_unlock_irq+0x23/0x50 [ 867.583369][ T31] ? lockdep_hardirqs_on+0x9c/0x150 [ 867.589943][ T31] evict+0x517/0x9c0 [ 867.594439][ T31] ? __pfx_evict+0x10/0x10 [ 867.609182][ T31] ? srso_alias_return_thunk+0x5/0xfbef5 [ 867.615057][ T31] ? srso_alias_return_thunk+0x5/0xfbef5 [ 867.621205][ T31] ? do_raw_spin_unlock+0x122/0x240 [ 867.628808][T25002] veth0_vlan: entered promiscuous mode [ 867.638744][ T31] evict_inodes+0x636/0x6c0 [ 867.647136][ T31] ? srso_alias_return_thunk+0x5/0xfbef5 [ 867.659883][T25002] veth1_vlan: entered promiscuous mode [ 867.679071][ T31] ? __pfx_evict_inodes+0x10/0x10 [ 867.690565][ T31] generic_shutdown_super+0x9a/0x2c0 [ 867.700428][ T31] kill_block_super+0x44/0x90 [ 867.711465][ T31] deactivate_locked_super+0xbc/0x130 [ 867.721186][ T31] cleanup_mnt+0x425/0x4c0 [ 867.725995][ T31] ? srso_alias_return_thunk+0x5/0xfbef5 [ 867.731682][ T31] ? lockdep_hardirqs_on+0x9c/0x150 [ 867.737398][ T31] task_work_run+0x1d4/0x260 [ 867.742026][ T31] ? __pfx_task_work_run+0x10/0x10 [ 867.747607][ T31] ? srso_alias_return_thunk+0x5/0xfbef5 [ 867.753280][ T31] resume_user_mode_work+0x5e/0x80 [ 867.758987][ T31] syscall_exit_to_user_mode+0x9a/0x120 [ 867.764585][ T31] do_syscall_64+0x103/0x210 [ 867.769614][ T31] ? srso_alias_return_thunk+0x5/0xfbef5 [ 867.776181][ T31] ? exc_page_fault+0x91/0x110 [ 867.781553][ T31] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 867.787470][ T31] RIP: 0033:0x7f834d78fc97 [ 867.792128][ T31] RSP: 002b:00007fff55f1e148 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6 [ 867.801365][ T31] RAX: 0000000000000000 RBX: 00007f834d81089d RCX: 00007f834d78fc97 [ 867.805014][T25002] veth0_macvtap: entered promiscuous mode [ 867.809345][ T31] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007fff55f1e200 [ 867.823648][ T31] RBP: 00007fff55f1e200 R08: 0000000000000000 R09: 0000000000000000 [ 867.832264][ T31] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007fff55f1f290 [ 867.841702][ T31] R13: 00007f834d81089d R14: 00000000000a874e R15: 00007fff55f1f2d0 [ 867.849725][ T31] [ 867.859671][ T31] [ 867.859671][ T31] Showing all locks held in the system: [ 867.877157][ T31] 2 locks held by kworker/u8:1/13: [ 867.882920][ T31] 1 lock held by khungtaskd/31: [ 867.903404][ T31] #0: ffffffff8df3b860 (rcu_read_lock){....}-{1:3}, at: debug_show_all_locks+0x2e/0x180 [ 867.927785][T25002] veth1_macvtap: entered promiscuous mode [ 867.939756][ T31] 4 locks held by kworker/u8:6/1104: [ 867.945059][ T31] #0: ffff8880b8839b58 (&rq->__lock){-.-.}-{2:2}, at: raw_spin_rq_lock_nested+0x2a/0x140 [ 867.955798][ T31] #1: ffff8880b8923b08 (&per_cpu_ptr(group->pcpu, cpu)->seq){-.-.}-{0:0}, at: psi_task_switch+0x39e/0x6d0 [ 867.967563][ T31] #2: ffff8880b8825558 (&base->lock){-.-.}-{2:2}, at: __mod_timer+0x1ae/0xf30 [ 867.979991][ T31] #3: ffffffff8df3b860 (rcu_read_lock){....}-{1:3}, at: xa_find+0x8c/0x2b0 [ 867.986613][T25002] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 867.990308][ T31] 2 locks held by kworker/u8:7/4854: [ 868.000452][T25002] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 868.005700][ T31] 2 locks held by dhcpcd/5487: [ 868.017989][T25002] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 868.029464][ T31] #0: ffff88814e4376d0 (nlk_cb_mutex-ROUTE [ 868.030117][T25002] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 868.046290][T25002] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 868.050765][ T31] ){+.+.}-{4:4} [ 868.056893][T25002] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 868.059128][ T31] , at: netlink_dump+0xcd/0xe70 [ 868.060463][T25002] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 868.086660][ T31] #1: ffffffff8f2f4248 (rtnl_mutex){+.+.}-{4:4}, at: rtnl_dumpit+0x92/0x200 [ 868.093538][T25002] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 868.106580][ T31] 2 locks held by getty/5572: [ 868.107721][T25002] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 868.117732][ T31] #0: ffff88814d6fd0a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x25/0x70 [ 868.134164][ T31] #1: ffffc900036e32f0 (&ldata->atomic_read_lock){+.+.}-{4:4}, at: n_tty_read+0x43e/0x1400 [ 868.144886][T25002] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 868.155694][T25002] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 868.157975][ T31] 1 lock held by syz-executor/5830: [ 868.168332][T25002] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 868.180719][ T31] #0: ffff8880455740e0 (&type->s_umount_key#94){++++}-{4:4}, at: deactivate_super+0xa9/0xe0 [ 868.181848][T25002] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 868.202088][T25002] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 868.206379][ T31] 7 locks held by kworker/1:4/5887: [ 868.212692][T25002] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 868.212710][T25002] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 868.212729][T25002] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 868.212745][T25002] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 868.238595][ T31] #0: ffff888144a9a148 ((wq_completion)usb_hub_wq){+.+.}-{0:0}, at: process_scheduled_works+0x9b1/0x17a0 [ 868.238688][ T31] #1: ffffc900040c7c60 ((work_completion)(&hub->events)){+.+.}-{0:0}, at: process_scheduled_works+0x9ec/0x17a0 [ 868.238773][ T31] #2: ffff888027dee198 (&dev->mutex){....}-{4:4}, at: hub_event+0x184/0x4a00 [ 868.238851][ T31] #3: ffff8880569b6198 (&dev->mutex){....}-{4:4}, at: __device_attach+0x88/0x400 [ 868.238925][ T31] #4: ffff88807ac29160 (&dev->mutex){....}-{4:4}, at: __device_attach+0x88/0x400 [ 868.238997][ T31] #5: ffffffff8ed7b828 (input_mutex){+.+.}-{4:4}, at: __input_unregister_device+0x2d8/0x5e0 [ 868.239076][ T31] #6: ffffffff8df41338 (rcu_state.exp_mutex){+.+.}-{4:4}, at: synchronize_rcu_expedited+0x3b7/0x730 [ 868.239149][ T31] 4 locks held by udevd/5945: [ 868.239165][ T31] #0: ffff8880431bd8b8 (&p->lock){+.+.}-{4:4} [ 868.240182][T25002] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 868.264707][ T31] , at: seq_read_iter+0xb7/0xe10 [ 868.275918][T25002] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 868.283587][ T31] #1: [ 868.297162][T25002] netdevsim netdevsim8 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 868.340305][ T31] ffff88805917d888 [ 868.345193][T25002] netdevsim netdevsim8 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 868.390773][T25002] netdevsim netdevsim8 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 868.395146][ T31] (&of->mutex#2){+.+.}-{4:4}, at: kernfs_seq_start+0x55/0x3c0 [ 868.414392][ T31] #2: ffff888058ce05a8 (kn->active#19){++++}-{0:0}, at: kernfs_seq_start+0x75/0x3c0 [ 868.428904][T25002] netdevsim netdevsim8 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 868.428941][ T31] #3: ffff8880569b6198 (&dev->mutex){....}-{4:4}, at: manufacturer_show+0x26/0xa0 [ 868.480560][ T31] 1 lock held by syz.2.7124/21931: [ 868.486224][ T31] #0: ffff8880455740e0 (&type->s_umount_key#94){++++}-{4:4}, at: super_lock+0x2a9/0x3b0 [ 868.496594][ T31] 2 locks held by syz-executor/25002: [ 868.502022][ T31] #0: ffffffff8f2f4248 (rtnl_mutex){+.+.}-{4:4}, at: rtnl_newlink+0x8db/0x1c70 [ 868.511455][ T31] #1: ffff8880571354e8 (&wg->device_update_lock){+.+.}-{4:4}, at: wg_open+0x227/0x420 [ 868.521586][ T31] [ 868.526537][ T31] ============================================= [ 868.526537][ T31] [ 868.541777][ T31] NMI backtrace for cpu 0 [ 868.541795][ T31] CPU: 0 UID: 0 PID: 31 Comm: khungtaskd Not tainted 6.15.0-rc4-syzkaller-00147-gebd297a2affa #0 PREEMPT(full) [ 868.541827][ T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 868.541843][ T31] Call Trace: [ 868.541852][ T31] [ 868.541863][ T31] dump_stack_lvl+0x189/0x250 [ 868.541901][ T31] ? __wake_up_klogd+0xd9/0x110 [ 868.541929][ T31] ? srso_alias_return_thunk+0x5/0xfbef5 [ 868.541967][ T31] ? __pfx_dump_stack_lvl+0x10/0x10 [ 868.542002][ T31] ? __pfx__printk+0x10/0x10 [ 868.542042][ T31] nmi_cpu_backtrace+0x39e/0x3d0 [ 868.542085][ T31] ? __pfx_nmi_cpu_backtrace+0x10/0x10 [ 868.542119][ T31] ? _printk+0xcf/0x120 [ 868.542149][ T31] ? __pfx__printk+0x10/0x10 [ 868.542177][ T31] ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10 [ 868.542205][ T31] nmi_trigger_cpumask_backtrace+0x17a/0x300 [ 868.542247][ T31] watchdog+0xfee/0x1030 [ 868.542281][ T31] ? watchdog+0x1de/0x1030 [ 868.542321][ T31] kthread+0x711/0x8a0 [ 868.542354][ T31] ? __pfx_watchdog+0x10/0x10 [ 868.542383][ T31] ? __pfx_kthread+0x10/0x10 [ 868.542410][ T31] ? srso_alias_return_thunk+0x5/0xfbef5 [ 868.542442][ T31] ? __pfx_kthread+0x10/0x10 [ 868.542470][ T31] ? _raw_spin_unlock_irq+0x23/0x50 [ 868.542493][ T31] ? srso_alias_return_thunk+0x5/0xfbef5 [ 868.542520][ T31] ? lockdep_hardirqs_on+0x9c/0x150 [ 868.542547][ T31] ? __pfx_kthread+0x10/0x10 [ 868.542574][ T31] ret_from_fork+0x4e/0x80 [ 868.542599][ T31] ? __pfx_kthread+0x10/0x10 [ 868.542627][ T31] ret_from_fork_asm+0x1a/0x30 [ 868.542667][ T31] [ 868.542682][ T31] Sending NMI from CPU 0 to CPUs 1: [ 868.552302][ T5887] usb 6-1: USB disconnect, device number 122 [ 868.559256][ C1] NMI backtrace for cpu 1 [ 868.559272][ C1] CPU: 1 UID: 0 PID: 5887 Comm: kworker/1:4 Not tainted 6.15.0-rc4-syzkaller-00147-gebd297a2affa #0 PREEMPT(full) [ 868.559302][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 868.559317][ C1] Workqueue: usb_hub_wq hub_event [ 868.559349][ C1] RIP: 0010:io_serial_out+0x7c/0xc0 [ 868.559377][ C1] Code: 3c 82 fc 44 89 f9 d3 e5 49 83 c6 40 4c 89 f0 48 c1 e8 03 42 80 3c 20 00 74 08 4c 89 f7 e8 2c 31 e4 fc 41 03 2e 89 d8 89 ea ee <5b> 41 5c 41 5e 41 5f 5d e9 d2 bc d2 fb cc 44 89 f9 80 e1 07 38 c1 [ 868.559396][ C1] RSP: 0018:ffffc900040c6f50 EFLAGS: 00000002 [ 868.559414][ C1] RAX: 000000000000005b RBX: 000000000000005b RCX: 0000000000000000 [ 868.559428][ C1] RDX: 00000000000003f8 RSI: 0000000000032d14 RDI: 0000000000032d15 [ 868.559443][ C1] RBP: 00000000000003f8 R08: ffff888023dd0237 R09: 1ffff110047ba046 [ 868.559459][ C1] R10: dffffc0000000000 R11: ffffffff853d83b0 R12: dffffc0000000000 [ 868.559476][ C1] R13: ffffffff99846c4f R14: ffffffff99b4bbc0 R15: 0000000000000000 [ 868.559494][ C1] FS: 0000000000000000(0000) GS:ffff8881261cc000(0000) knlGS:0000000000000000 [ 868.559513][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 868.559528][ C1] CR2: 00007ffc1e017bf8 CR3: 000000007eed9000 CR4: 0000000000350ef0 [ 868.559545][ C1] Call Trace: [ 868.559555][ C1] [ 868.559568][ C1] serial8250_console_write+0x1410/0x1ba0 [ 868.559605][ C1] ? srso_alias_return_thunk+0x5/0xfbef5 [ 868.559632][ C1] ? __pfx_serial8250_console_write+0x10/0x10 [ 868.559659][ C1] ? srso_alias_return_thunk+0x5/0xfbef5 [ 868.559686][ C1] ? srso_alias_return_thunk+0x5/0xfbef5 [ 868.559714][ C1] ? srso_alias_return_thunk+0x5/0xfbef5 [ 868.559742][ C1] ? srso_alias_return_thunk+0x5/0xfbef5 [ 868.559767][ C1] ? do_raw_spin_unlock+0x122/0x240 [ 868.559792][ C1] ? console_flush_all+0x13a/0xc40 [ 868.559815][ C1] ? console_flush_all+0x13a/0xc40 [ 868.559840][ C1] console_flush_all+0x728/0xc40 [ 868.559866][ C1] ? console_flush_all+0x13a/0xc40 [ 868.559894][ C1] ? __pfx_console_flush_all+0x10/0x10 [ 868.559926][ C1] ? srso_alias_return_thunk+0x5/0xfbef5 [ 868.559952][ C1] ? is_printk_cpu_sync_owner+0x32/0x40 [ 868.559982][ C1] console_unlock+0xc4/0x270 [ 868.560004][ C1] ? __pfx_console_unlock+0x10/0x10 [ 868.560024][ C1] ? vprintk_emit+0x360/0x7a0 [ 868.560045][ C1] ? vprintk_emit+0x587/0x7a0 [ 868.560065][ C1] ? vprintk_emit+0x444/0x7a0 [ 868.560084][ C1] ? vprintk_emit+0x444/0x7a0 [ 868.560105][ C1] vprintk_emit+0x5b7/0x7a0 [ 868.560125][ C1] ? vprintk_emit+0x444/0x7a0 [ 868.560146][ C1] ? __pfx_vprintk_emit+0x10/0x10 [ 868.560170][ C1] ? __pfx_snprintf+0x10/0x10 [ 868.560210][ C1] ? srso_alias_return_thunk+0x5/0xfbef5 [ 868.560242][ C1] dev_vprintk_emit+0x337/0x3f0 [ 868.560278][ C1] ? __pfx_dev_vprintk_emit+0x10/0x10 [ 868.560325][ C1] dev_printk_emit+0xe0/0x130 [ 868.560365][ C1] ? __pfx_dev_printk_emit+0x10/0x10 [ 868.560400][ C1] ? __queue_work+0x103/0xfe0 [ 868.560425][ C1] ? srso_alias_return_thunk+0x5/0xfbef5 [ 868.560450][ C1] ? __dev_printk+0x131/0x190 [ 868.560480][ C1] _dev_info+0x10a/0x160 [ 868.560516][ C1] ? __pfx__dev_info+0x10/0x10 [ 868.560549][ C1] ? srso_alias_return_thunk+0x5/0xfbef5 [ 868.560575][ C1] ? _raw_spin_unlock_irqrestore+0xad/0x110 [ 868.560603][ C1] ? srso_alias_return_thunk+0x5/0xfbef5 [ 868.560628][ C1] ? kernfs_notify+0x2ee/0x370 [ 868.560653][ C1] usb_disconnect+0xdd/0x910 [ 868.560685][ C1] hub_event+0x1cdb/0x4a00 [ 868.560713][ C1] ? do_raw_spin_unlock+0x122/0x240 [ 868.560750][ C1] ? __lock_acquire+0xaac/0xd20 [ 868.560785][ C1] ? srso_alias_return_thunk+0x5/0xfbef5 [ 868.560810][ C1] ? do_raw_spin_lock+0x121/0x290 [ 868.560834][ C1] ? srso_alias_return_thunk+0x5/0xfbef5 [ 868.560862][ C1] ? srso_alias_return_thunk+0x5/0xfbef5 [ 868.560893][ C1] ? __lock_acquire+0xaac/0xd20 [ 868.560927][ C1] ? __pfx_hub_event+0x10/0x10 [ 868.560956][ C1] ? srso_alias_return_thunk+0x5/0xfbef5 [ 868.560983][ C1] ? srso_alias_return_thunk+0x5/0xfbef5 [ 868.561011][ C1] ? _raw_spin_unlock_irq+0x23/0x50 [ 868.561031][ C1] ? process_scheduled_works+0x9ec/0x17a0 [ 868.561065][ C1] ? process_scheduled_works+0x9ec/0x17a0 [ 868.561101][ C1] process_scheduled_works+0xade/0x17a0 [ 868.561156][ C1] ? __pfx_process_scheduled_works+0x10/0x10 [ 868.561201][ C1] ? srso_alias_return_thunk+0x5/0xfbef5 [ 868.561233][ C1] worker_thread+0x8a0/0xda0 [ 868.561256][ C1] ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10 [ 868.561285][ C1] ? __kthread_parkme+0x7b/0x200 [ 868.561315][ C1] kthread+0x711/0x8a0 [ 868.561343][ C1] ? __pfx_worker_thread+0x10/0x10 [ 868.561363][ C1] ? __pfx_kthread+0x10/0x10 [ 868.561388][ C1] ? srso_alias_return_thunk+0x5/0xfbef5 [ 868.561415][ C1] ? __pfx_kthread+0x10/0x10 [ 868.561439][ C1] ? _raw_spin_unlock_irq+0x23/0x50 [ 868.561460][ C1] ? srso_alias_return_thunk+0x5/0xfbef5 [ 868.561489][ C1] ? lockdep_hardirqs_on+0x9c/0x150 [ 868.561515][ C1] ? __pfx_kthread+0x10/0x10 [ 868.561541][ C1] ret_from_fork+0x4e/0x80 [ 868.561565][ C1] ? __pfx_kthread+0x10/0x10 [ 868.561592][ C1] ret_from_fork_asm+0x1a/0x30 [ 868.561627][ C1] [ 868.596536][ T31] Kernel panic - not syncing: hung_task: blocked tasks [ 868.596561][ T31] CPU: 0 UID: 0 PID: 31 Comm: khungtaskd Not tainted 6.15.0-rc4-syzkaller-00147-gebd297a2affa #0 PREEMPT(full) [ 868.596590][ T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 868.596607][ T31] Call Trace: [ 868.596618][ T31] [ 868.596630][ T31] dump_stack_lvl+0x99/0x250 [ 868.596672][ T31] ? __asan_memcpy+0x40/0x70 [ 868.596699][ T31] ? __pfx_dump_stack_lvl+0x10/0x10 [ 868.596736][ T31] ? __pfx__printk+0x10/0x10 [ 868.596771][ T31] ? srso_alias_return_thunk+0x5/0xfbef5 [ 868.596806][ T31] panic+0x2db/0x790 [ 868.596841][ T31] ? srso_alias_return_thunk+0x5/0xfbef5 [ 868.596876][ T31] ? __pfx_panic+0x10/0x10 [ 868.596908][ T31] ? tick_nohz_tick_stopped+0x86/0xb0 [ 868.596954][ T31] ? srso_alias_return_thunk+0x5/0xfbef5 [ 868.596982][ T31] ? preempt_schedule_thunk+0x16/0x30 [ 868.597013][ T31] ? nmi_trigger_cpumask_backtrace+0x2b6/0x300 [ 868.597056][ T31] ? srso_alias_return_thunk+0x5/0xfbef5 [ 868.597090][ T31] watchdog+0x102d/0x1030 [ 868.597125][ T31] ? watchdog+0x1de/0x1030 [ 868.597167][ T31] kthread+0x711/0x8a0 [ 868.597202][ T31] ? __pfx_watchdog+0x10/0x10 [ 868.597233][ T31] ? __pfx_kthread+0x10/0x10 [ 868.597261][ T31] ? srso_alias_return_thunk+0x5/0xfbef5 [ 868.597292][ T31] ? __pfx_kthread+0x10/0x10 [ 868.597321][ T31] ? _raw_spin_unlock_irq+0x23/0x50 [ 868.597345][ T31] ? srso_alias_return_thunk+0x5/0xfbef5 [ 868.597374][ T31] ? lockdep_hardirqs_on+0x9c/0x150 [ 868.597403][ T31] ? __pfx_kthread+0x10/0x10 [ 868.597432][ T31] ret_from_fork+0x4e/0x80 [ 868.597458][ T31] ? __pfx_kthread+0x10/0x10 [ 868.597487][ T31] ret_from_fork_asm+0x1a/0x30 [ 868.597530][ T31] [ 868.598743][ T31] Kernel Offset: disabled