last executing test programs: 7m44.356793847s ago: executing program 32 (id=519): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000000c40)=ANY=[@ANYBLOB="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"], &(0x7f0000000000)='GPL\x00', 0x5, 0x252, &(0x7f000000cf3d)=""/195}, 0x48) bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000100)={0xffffffffffffffff, 0xe0, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x18, 0x0, 0x0, 0x0, 0x4, &(0x7f00000007c0), 0x8, 0xb, &(0x7f0000000640), &(0x7f0000000000), 0x8, 0xcc, 0x8, 0x0, 0x0}}, 0x10) bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000600)={r0, 0x66, &(0x7f0000000500)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7000000, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffcf3, 0xfffffffffffffd48, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0}}, 0x10) 7m8.988474671s ago: executing program 33 (id=644): mknodat$null(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0xb0a54e68b1cd2fdb, 0x103) capset(&(0x7f0000000040)={0x20080522}, &(0x7f0000000080)) chown(&(0x7f00000003c0)='./file0\x00', 0x0, 0xee01) 6m56.592712994s ago: executing program 34 (id=670): r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$TCFLSH(r0, 0x400455c8, 0x40000000b) 5m59.030598335s ago: executing program 7 (id=886): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$devlink(&(0x7f0000000380), r0) sendmsg$DEVLINK_CMD_SB_TC_POOL_BIND_GET(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f00000003c0)={0x54, r1, 0x111, 0x70bd27, 0x25dfdbfd, {}, [{{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0x3, 0x2}}, {0x8, 0xb, 0x9}, {0x6, 0x16, 0xfbfa}, {0x5, 0x12, 0x1}}]}, 0x54}, 0x1, 0x0, 0x0, 0x4004895}, 0x20000) 5m57.877493894s ago: executing program 7 (id=890): socket(0x11, 0x3, 0x8) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={0xffffffffffffffff, 0x5, 0x0, 0x0, 0x0, 0x0, 0x149c, 0x503, 0x0, 0x0, 0x0, 0x0, 0x2, 0xffff80fe}, 0x4c) syz_emit_ethernet(0x32, &(0x7f0000000680)={@local, @multicast, @void, {@ipv4={0x800, @dccp={{0x5, 0x4, 0x0, 0x5, 0x24, 0x66, 0x0, 0x2, 0x21, 0x0, @empty, @rand_addr=0x64010101}, {{0x4e23, 0x4e21, 0x4, 0x1, 0x9, 0x0, 0x0, 0x4, 0x6, "32065f", 0x2, "a23298"}}}}}}, 0x0) 5m54.299584407s ago: executing program 35 (id=891): r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000004002, 0x0) r1 = dup(r0) write$binfmt_aout(r1, 0x0, 0xffffffdb) 5m54.239751178s ago: executing program 7 (id=894): syz_mount_image$nilfs2(&(0x7f0000000dc0), &(0x7f0000000400)='./file0\x00', 0x94, &(0x7f0000003280)=ANY=[@ANYBLOB="0001def4774774366f0b8a20db13db64e85fc9322c3fe018b91ff1291b4f4c56de7e4543f49818e1307d98d09daa1e2a7dbf88003e9401dc73aad0b7dbb5685565c7825ba8340621faeae92abed19c524ab06c4303258d253722e159642af447aeb096c6a26d345d82f2925163331b0e9157441a9c61dd1051d3b970f9ac12f5975cf1ad4e45acef1a54921c492a77bcb1858b68758ed339608b8e43c733219f1f9e0b867840f821e03bc0e8a497c4d5dde436000090a397637dedb2f3"], 0x1, 0xd99, &(0x7f0000006900)="$eJzs3UtvXNUdAPBzx544LxqHmMZN09glpbiP2CRYpbsaKV2gSqgSnwClgYYa+ghdgIKUsOi2kRAfoIh9F31mgRSxSsWmVb8AYtVNipBoG1UCI9vnjMf/zOjOOLbH4/n9pDtn7v2fe88587hz575OAkZWY+1xcXG6SuntW29dvDcz/r/VKTOtHLNrj+N5bCml1GzNl9JkWN7SxHr62SfXLrWnn+e0ShdSlarW9PTs3da8R1JK19Nsup0m03Mfn7z50gfPLL934saJi2/M3dmZ1gMAwGi596N3f/m3x3947fj/f39mKU20ppft86U8fjRv9y9V6+M5af0PqNrSqm28OBDyjeehEfKNdcjXXk4z5BvvUv6BsNxml3wTNeWPtU3r1G4YZhv/46vG/KbxRmN+fv0/+aoPxw5U869cWX7h6oAqCmy7T2fyLj6DwTByw8qxQa+BANbF44b3uR73LDyY1tLGeyv/7tONzvPDNtjtz7/yh6v8d29Y47B99uunqbSrfI+O5vF4HGE8zNfv978sLx6PaPZYz27HEYbl+EK3eo7tcj22qlv94+div/paTsvrcCbE278/8T0dlvcY6Oye/f8Gw8gOK4NeAQF7VjxvbiUr8XheX4xP1MQP1sQP1cQP18SP1MRhlP3h1d+mm9XG//z4n77f/WFlP9tDOf1Sn/WJ+yP7LT+e99uvBy0/nk8Me9rcf09/+uvbf4/n/38ezv8/m39LJ/MKouwvjPvVW+f+hwuDG13yPRyq81CH/GvPpzbnq6Y2lpPa1jP31WN683zHuuU7vTnfZMh3OG+LHAz1jdsnh8N8ZfujrFfL6zUe2tsM7TgQ6lHemeM5PRjac7xbu8KO7AMhXzMPJ0K7pkK7HgnzfTm0q5re3K64/7zU52SYHo+TlHzhbbvvdym+F/G6jEdz+mZO38np+zn9qEO5o6h8Hrud/18+n9OpWb1wZfnyE3m8fE7vjDUnVqef3+V6Aw+u1+t/ptPm63+OtqY3G+3rhWMb06v29cJkmH6hy/Qn83j5Pfvp2KG16fOXfr78k+1uPIy4q6+9/rPnl5cv/8oTTzzxpPVk0GsmYKctvPryLxauvvb6uSsvP//i5Rcvv3L+ie9/78mnnlpcWNuqX2jftgf2l40f/UHXBAAAAAAAAAAAAOhZdajz5JzW3d+2XE9erk+P18czHMr7Vj4N5T4G5frPbvd1KddvHt+FOrL9duNyokG3Eejs3+7/azCM7LCy4i7+wN4w6P7/yn0PS3r03D+Prw4l292nN68v4/0L4UHs9f7nlL+/+v9r9X/V8/ov9Jg1ubVy/3jv0D/aik2nei0/tr/cB3aqv/L/lMsvrXks9Vb+yu9C+fFGpT36cyj/cI/l39f+01sr/y+5/PKyzZ3ttfz1GleNzfWI+43LfQDjfuPir6H95d5+fbd/ix213crlwygbln4m+zUs/X92U5Zb1oN59dw6Tlfuvx37O+i3/uW+3+V34JGw/Krm903/n8Otrv/P8vlb0P8n7DsfOv5nMIzssLKyMtCuT0a135W9YtCv/6C3IQdd/qBf/zqx/8/4fyn2/xnjsf/PGI/9f8Z47F8rxmP/n/H1jP1/xvjJsNzYP+h0TfwrNfFTNfGv1sRP18Tj/7cYn62Jn6mJz9TEH66JP1oTP1sT/0ZN/LGa+OM18bma+H739ZyOavthlMV+I33/YXSU4z/dvv9TNXFgeMV+neP3+5s1cWB4lfM8fL9hBFWd79gR97eX/bhv5vSdnL6f0492rILshm/l9Ns5/U5Ov5vTczmdz+lCTvUNOdx+869TZ25WG+f5HQvxXs8njdcDxPvEnO+xPvH4XL/ns57ssZydKn+Ll4MAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADI3G2uPi4nSV0tu33rr4n6kf/Hh1ykwrx+za43geW0opNVNKVR4fD8u7PrGefvbJtUud0ipdWHss4+nZu615j6zOn2bT7TSZnvv45M2XPnhm+b0TN05cfGPuzs60HgAAAEbDFwEAAP//ManlwQ==") r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='.\x00', 0x0, 0x0) ioctl$FS_IOC_SETFSLABEL(r0, 0x41009432, &(0x7f00000004c0)="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") 5m52.179444283s ago: executing program 7 (id=900): syz_mount_image$udf(&(0x7f0000000f00), &(0x7f0000000200)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x8, &(0x7f0000006400)=ANY=[@ANYBLOB="6c617374626c6f636b3d30303030303030303030303030303030303235342c6c6f6e6761642c756d61736b3d30303030303030303030303030303030303137373737372c646d6f64653d30303030303030303030303030303030303030303430302c756e686964652c73686f727461642c616e63686f723d30303030303030303030303030303030303030372c6e6f7374726963742c696f636861727365743d6b6f69382d72752c00263468691e626cd4f6d91d6fed4bb42a4515346a98d55253771fadd9bb31ceaa8d7647a551ee49f3b17bfc6ae1090b228307b8fdc1935c7e8cbbf9aea203bd"], 0x1, 0xc65, &(0x7f0000000f80)="$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") syz_mount_image$fuse(0x0, &(0x7f0000000200)='./bus\x00', 0x283016, 0x0, 0x1, 0x0, 0x0) mount$overlay(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000b80), 0x8, &(0x7f0000000140)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file0'}}]}) 5m49.362910198s ago: executing program 7 (id=907): syz_usb_connect(0x0, 0x24, &(0x7f00000000c0)=ANY=[@ANYBLOB="120100008e88052086800095d8b601020301090212000100000000090401"], 0x0) r0 = syz_open_dev$I2C(&(0x7f0000000000), 0x1, 0x402) ioctl$I2C_FUNCS(r0, 0x705, &(0x7f0000000040)=0x3) 5m48.462706034s ago: executing program 7 (id=910): r0 = socket$inet6_udplite(0xa, 0x2, 0x88) setsockopt$inet6_udp_int(r0, 0x11, 0xa, &(0x7f0000000040)=0x6, 0x4) sendmmsg$inet6(r0, &(0x7f0000003ac0)=[{{&(0x7f0000000000)={0xa, 0x4e22, 0x7, @loopback, 0x4}, 0x1c, 0x0}}, {{&(0x7f0000000200)={0xa, 0x4e20, 0xa, @mcast2, 0x2}, 0x1c, &(0x7f0000004e40)=[{&(0x7f0000002780)="8c86639505999d94d035b778c1c3015c8cbbe9bebfb5ddba6c7313425bc42fe5da28590437768b9a18af16b19c3e6ddb57e1c7aa343ed81217a64383f84ca55527dd1d125330eb1096231b87c7629c60de4e92a4511038556940aabfed077162c06ffcab368c05b74f4b681486ec1c8fdc61710aab6755283b6809dbaeb17a51c76596379545d11082dcdecc163148492e66b0e14b8a2d36e701efe004375824592c14f42354152f6aa79b431d19d8ca3762d2fe07fb7c5a334202612e395ea8adf99f8513dddecb59d4728863fc267c7cf1cb819ab92d474e8cb04708fafd0b7add5b1579a3ffec563d26d3d5f76a006ea57fe86e817336d985cc3c639a7c5abec584c31798551e78d264ad723917ee124af5e214daf78dcea06f2a7c86897158e3f6c771ba3a57f588317443bd0f2ccd93c5c878c50eb7773ea265e2de41311ffeac10442dccd9dc549a532fe0771976ed49fbc50541e1085b3291c80be931bf26cf3e06461f303067bc371b85964521cb17197f74e484f87bfb78f15cc3f792edcaaf48114ca5460a128deec3fbecc09459469d2a6d6e47d21ab623b4d053341068a2ab2a84e65562a064f74678d46ffdff62f0ae0088a9ce38d1151492bef1babcd26c00c4a7fac70da8b2350ac44e081db10fe625a0f1dc3920534336cc37a5d0f7eff0fbf4ccea59333a03b0609c13cb03c93b195027a2a8bbc31c937011dff6a85a252a28fdbaee3a3766dcd50136dc444b44bc935472a5b2be337504cda4a5fa1c3d28d77ba85dab1c64631069a6602df09e37ea6568188e48009403ad5de9c77ccb5b6e7a965e8637f96291659f22d48e50d8499d0cf2f581652403a0da834f9463991216c0d3f355ca6776eca8e48ff4e3018ba444a917fc4b6b706e7bcf4f900b0efd330f2d98b75e371ad95998ffee2124634b8a8d0ad9931822cadea7ad77893b03916259e118c015afa1c6b5bab2e380ee2700218d6b68a939446ca836eff5664fd411e2bfbd32a46e2063c46839c229000f03a3bb5a2d87d229e53fb2f6e0f7a87cd0a84f529b8d6533e7871c821d26e3f5bbca5e6a9328098cb107ef57df6b83f8c3e5c5d59be6cbd2e4ddfda3d7805d6b001c1c73950f89cfa0bcf0222a0f1667c7fb08afe4b0f2f5982640b44a8476632cf066a51a6fddedc5bbd9d0ef8b8e278b3cee86b20003a92d465749ef0134f346d3c220b4542156ea63396de36f501b01ba642f9953364e95bd972a8cf168b285ea507adf3bc059e36f55492e3bf614d5b8edd40b773904344348159ec2863bd6740f76f89056188569dc2dbafa00b7e6debdea51ad8e1014d96db2b86b445fc4f422ed01f1d4d57005bc00d214b055e3373d1202aeca045c8527aad4795ecbcf8ad41c802a365cea130d798667700a2190917e55194766832bdddc634e3e7b9786cc0422eec1769c8a324706047c459520c2a4e36897078c14f89e586814523094fbd96759d8868fb74afe687e7a2578a9cf527e5a5e91ec51cbd648ca01f2a0e74e4be5b0e798c6901530b03e5161bd5f2a69567a0cf1b9c98515ea40b331cf46ff0a192212e29fd5a07d7317feefe2800a29fc8a5558332faf7e2a76c3c3c0b47997a49d21daf48fd9d452646c100f3007b4ddefa566b9105ff48119a05f2c6301ed690f2596eefbbf13700c3c1c9a5dac09d98af6f63b5af72d0503980daadb60220f554d6993636ed04cca820433b749ec5578de7cb9fffaa0025db9f4fffb34887e731c45d4ab1532b9d1ad6df8684132539b038ff4e9012e9deab3fa972b6a259778e3250e30a3671767dfa1d4799e8c19d290882b563d16c7f52b7c66238c2a4d1cac03b0c203ed04a83c2634f0512d7ed6793b4bf7f00c27688d7ec83403fcd9508443d19f48abcdf047d19bf039ead94be3cf1fe312335793340c2c1bcabd916007bdf8a82064806d397617951b9bf1e5f5f7c09d7977fdd083ff0cfef4a0398659f6142351d98e40de8abec9635d489693ba01", 0x592}, {0x0}], 0x2, &(0x7f0000003c00)=ANY=[@ANYBLOB='H\x00\x00\x00\x00\x00\x00\x00)\x00\x00\x006\x00'], 0x48}}], 0x2, 0x0) 5m45.659382511s ago: executing program 36 (id=910): r0 = socket$inet6_udplite(0xa, 0x2, 0x88) setsockopt$inet6_udp_int(r0, 0x11, 0xa, &(0x7f0000000040)=0x6, 0x4) sendmmsg$inet6(r0, &(0x7f0000003ac0)=[{{&(0x7f0000000000)={0xa, 0x4e22, 0x7, @loopback, 0x4}, 0x1c, 0x0}}, {{&(0x7f0000000200)={0xa, 0x4e20, 0xa, @mcast2, 0x2}, 0x1c, &(0x7f0000004e40)=[{&(0x7f0000002780)="8c86639505999d94d035b778c1c3015c8cbbe9bebfb5ddba6c7313425bc42fe5da28590437768b9a18af16b19c3e6ddb57e1c7aa343ed81217a64383f84ca55527dd1d125330eb1096231b87c7629c60de4e92a4511038556940aabfed077162c06ffcab368c05b74f4b681486ec1c8fdc61710aab6755283b6809dbaeb17a51c76596379545d11082dcdecc163148492e66b0e14b8a2d36e701efe004375824592c14f42354152f6aa79b431d19d8ca3762d2fe07fb7c5a334202612e395ea8adf99f8513dddecb59d4728863fc267c7cf1cb819ab92d474e8cb04708fafd0b7add5b1579a3ffec563d26d3d5f76a006ea57fe86e817336d985cc3c639a7c5abec584c31798551e78d264ad723917ee124af5e214daf78dcea06f2a7c86897158e3f6c771ba3a57f588317443bd0f2ccd93c5c878c50eb7773ea265e2de41311ffeac10442dccd9dc549a532fe0771976ed49fbc50541e1085b3291c80be931bf26cf3e06461f303067bc371b85964521cb17197f74e484f87bfb78f15cc3f792edcaaf48114ca5460a128deec3fbecc09459469d2a6d6e47d21ab623b4d053341068a2ab2a84e65562a064f74678d46ffdff62f0ae0088a9ce38d1151492bef1babcd26c00c4a7fac70da8b2350ac44e081db10fe625a0f1dc3920534336cc37a5d0f7eff0fbf4ccea59333a03b0609c13cb03c93b195027a2a8bbc31c937011dff6a85a252a28fdbaee3a3766dcd50136dc444b44bc935472a5b2be337504cda4a5fa1c3d28d77ba85dab1c64631069a6602df09e37ea6568188e48009403ad5de9c77ccb5b6e7a965e8637f96291659f22d48e50d8499d0cf2f581652403a0da834f9463991216c0d3f355ca6776eca8e48ff4e3018ba444a917fc4b6b706e7bcf4f900b0efd330f2d98b75e371ad95998ffee2124634b8a8d0ad9931822cadea7ad77893b03916259e118c015afa1c6b5bab2e380ee2700218d6b68a939446ca836eff5664fd411e2bfbd32a46e2063c46839c229000f03a3bb5a2d87d229e53fb2f6e0f7a87cd0a84f529b8d6533e7871c821d26e3f5bbca5e6a9328098cb107ef57df6b83f8c3e5c5d59be6cbd2e4ddfda3d7805d6b001c1c73950f89cfa0bcf0222a0f1667c7fb08afe4b0f2f5982640b44a8476632cf066a51a6fddedc5bbd9d0ef8b8e278b3cee86b20003a92d465749ef0134f346d3c220b4542156ea63396de36f501b01ba642f9953364e95bd972a8cf168b285ea507adf3bc059e36f55492e3bf614d5b8edd40b773904344348159ec2863bd6740f76f89056188569dc2dbafa00b7e6debdea51ad8e1014d96db2b86b445fc4f422ed01f1d4d57005bc00d214b055e3373d1202aeca045c8527aad4795ecbcf8ad41c802a365cea130d798667700a2190917e55194766832bdddc634e3e7b9786cc0422eec1769c8a324706047c459520c2a4e36897078c14f89e586814523094fbd96759d8868fb74afe687e7a2578a9cf527e5a5e91ec51cbd648ca01f2a0e74e4be5b0e798c6901530b03e5161bd5f2a69567a0cf1b9c98515ea40b331cf46ff0a192212e29fd5a07d7317feefe2800a29fc8a5558332faf7e2a76c3c3c0b47997a49d21daf48fd9d452646c100f3007b4ddefa566b9105ff48119a05f2c6301ed690f2596eefbbf13700c3c1c9a5dac09d98af6f63b5af72d0503980daadb60220f554d6993636ed04cca820433b749ec5578de7cb9fffaa0025db9f4fffb34887e731c45d4ab1532b9d1ad6df8684132539b038ff4e9012e9deab3fa972b6a259778e3250e30a3671767dfa1d4799e8c19d290882b563d16c7f52b7c66238c2a4d1cac03b0c203ed04a83c2634f0512d7ed6793b4bf7f00c27688d7ec83403fcd9508443d19f48abcdf047d19bf039ead94be3cf1fe312335793340c2c1bcabd916007bdf8a82064806d397617951b9bf1e5f5f7c09d7977fdd083ff0cfef4a0398659f6142351d98e40de8abec9635d489693ba01", 0x592}, {0x0}], 0x2, &(0x7f0000003c00)=ANY=[@ANYBLOB='H\x00\x00\x00\x00\x00\x00\x00)\x00\x00\x006\x00'], 0x48}}], 0x2, 0x0) 1m59.51183748s ago: executing program 8 (id=1830): sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe}, 0x0) r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000380), 0x4000000004882, 0x0) io_setup(0x1, &(0x7f00000004c0)=0x0) io_submit(r1, 0x1, &(0x7f00000000c0)=[&(0x7f0000000140)={0x3a0012fb, 0x2759, 0x7, 0x1, 0x0, r0, 0x0, 0x0, 0x1000000, 0x0, 0x10}]) 1m58.74546309s ago: executing program 8 (id=1833): r0 = openat$vimc1(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0) ioctl$VIDIOC_SUBSCRIBE_EVENT(r0, 0x4020565a, &(0x7f00000000c0)={0x5, 0xb6f1, 0x2}) ioctl$VIDIOC_SUBSCRIBE_EVENT(r0, 0x4020565a, &(0x7f0000000140)={0x5, 0x85, 0x2}) ioctl$VIDIOC_SUBSCRIBE_EVENT(r0, 0x4020565a, &(0x7f0000000000)={0x5, 0x7, 0x1}) 1m57.65991899s ago: executing program 8 (id=1835): syz_mount_image$exfat(&(0x7f0000000000), &(0x7f00000002c0)='./file0\x00', 0x1200082, &(0x7f00000003c0)={[{@errors_continue}, {@errors_continue}, {@utf8}, {@umask={'umask', 0x3d, 0x2396}}, {@iocharset={'iocharset', 0x3d, 'cp950'}}, {@discard}, {@errors_continue}, {@errors_remount}, {@discard}]}, 0x5, 0x1531, &(0x7f0000002f80)="$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") openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2040, 0x0) bpf$MAP_CREATE(0x0, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x0, 0x0) 1m56.137977415s ago: executing program 8 (id=1841): syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x10000, &(0x7f0000000140)={[{@nobh}, {@auto_da_alloc}, {@data_err_ignore}, {@nojournal_checksum}, {@dioread_nolock}, {@bsdgroups}]}, 0x6, 0x4cd, &(0x7f0000000c80)="$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") mount$tmpfs(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000080), 0x1200002, 0x0) mount$tmpfs(0x0, &(0x7f00000000c0)='./file0\x00', 0x0, 0x2a00a9, 0x0) syz_mount_image$fuse(&(0x7f0000000700), &(0x7f00000000c0)='./file0\x00', 0x30c407a, &(0x7f0000000780)=ANY=[], 0x1, 0x0, 0x0) 1m54.124478959s ago: executing program 8 (id=1847): r0 = syz_open_dev$evdev(&(0x7f0000000040), 0x0, 0x0) syz_usb_disconnect(r0) syz_usb_connect$hid(0x0, 0x3f, &(0x7f00000000c0)={{0x12, 0x1, 0x250, 0x0, 0x0, 0x0, 0x8, 0x44f, 0xb651, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x2d, 0x1, 0x1, 0x9, 0x80, 0x7, [{{0x9, 0x4, 0x0, 0xc, 0x2, 0x3, 0x1, 0x0, 0x1, {0x9, 0x21, 0xa399, 0x2, 0x1, {0x22, 0xdc}}, {{{0x9, 0x5, 0x81, 0x3, 0x40, 0x5, 0x2, 0x9f}}, [{{0x9, 0x5, 0x2, 0x3, 0x0, 0x0, 0x5, 0x3}}]}}}]}}]}}, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0}) ioctl$EVIOCRMFF(r0, 0x4004550e, 0x0) 1m53.224114317s ago: executing program 8 (id=1850): r0 = socket$inet6_udplite(0xa, 0x2, 0x88) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x1, @ipv4={'\x00', '\xff\xff', @remote}}, 0x1c) setsockopt$inet6_mreq(r0, 0x29, 0x14, &(0x7f0000000e00)={@mcast1}, 0x14) setsockopt$inet6_IPV6_ADDRFORM(r0, 0x29, 0x1, &(0x7f0000000040), 0x4) 1m50.046101531s ago: executing program 37 (id=1850): r0 = socket$inet6_udplite(0xa, 0x2, 0x88) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x1, @ipv4={'\x00', '\xff\xff', @remote}}, 0x1c) setsockopt$inet6_mreq(r0, 0x29, 0x14, &(0x7f0000000e00)={@mcast1}, 0x14) setsockopt$inet6_IPV6_ADDRFORM(r0, 0x29, 0x1, &(0x7f0000000040), 0x4) 1m48.26355454s ago: executing program 4 (id=1863): r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]}) r1 = fsopen(&(0x7f00000009c0)='9p\x00', 0x0) fsconfig$FSCONFIG_SET_STRING(r1, 0x1, &(0x7f0000000000)='syzkaller\x00', &(0x7f0000001140)='\xf1\x95\xb3>-\x8c\xd4\r\x01\xfa\xe2{eED\x0e\xaaPV\x11\xff\xb6j\xd4~6\x82^\x9b b', 0x0) close_range(r0, 0xffffffffffffffff, 0x0) 1m47.534111301s ago: executing program 4 (id=1864): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0) sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000940)=ANY=[@ANYBLOB="140000001000010400000000000000000100000a74000000060a0b04000000000000000002000008400004803c000180080001006c6f670030000280060004400001000008000340fffffffa0a0002407d5def2e21000000080003400000000806000140000100000900010073797a30000000000900020073797a320000000008000b400000000314000000110001"], 0x9c}}, 0x0) close(r0) 1m46.803339094s ago: executing program 4 (id=1865): r0 = signalfd4(0xffffffffffffffff, &(0x7f0000000080)={[0xfffffffffffffff5]}, 0x8, 0x0) r1 = epoll_create1(0x0) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000000)) epoll_ctl$EPOLL_CTL_MOD(r1, 0x3, r0, &(0x7f00000000c0)) 1m45.800843387s ago: executing program 4 (id=1869): syz_mount_image$ext4(&(0x7f0000000700)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x8052, &(0x7f00000000c0)={[{@grpjquota}, {@abort}, {@mb_optimize_scan={'mb_optimize_scan', 0x3d, 0x1}}, {@auto_da_alloc_val={'auto_da_alloc', 0x3d, 0x7fffffff}}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x8a}}]}, 0x3, 0x4f4, &(0x7f0000000740)="$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") mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x109041, 0x0) setxattr$system_posix_acl(&(0x7f0000000140)='./file0\x00', &(0x7f0000002b80)='system.posix_acl_access\x00', &(0x7f00000000c0)={{}, {0x1, 0x6}, [], {}, [], {0x10, 0x6}, {0x20, 0x4}}, 0x24, 0x3) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='devices.list\x00', 0x275a, 0x0) 1m44.099810254s ago: executing program 4 (id=1874): syz_mount_image$vfat(&(0x7f0000001200), &(0x7f0000000000)='./bus\x00', 0xc01c, &(0x7f0000002480)=ANY=[], 0x1, 0x11f4, &(0x7f0000001280)="$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") r0 = openat(0xffffffffffffff9c, &(0x7f0000004280)='.\x00', 0x0, 0x0) getdents64(r0, &(0x7f00000002c0)=""/37, 0x25) getdents64(r0, 0x0, 0x18) 1m39.350191338s ago: executing program 6 (id=1887): r0 = gettid() timer_create(0x9, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc)) timer_settime(0x0, 0x1, &(0x7f0000000000)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0) clock_nanosleep(0x9, 0x0, &(0x7f0000000000)={0x77359400}, 0xfffffffffffffffe) 1m38.496286154s ago: executing program 6 (id=1890): r0 = signalfd4(0xffffffffffffffff, &(0x7f0000000040)={[0x9]}, 0x8, 0x80800) io_setup(0x1, &(0x7f0000000b80)=0x0) io_submit(r1, 0x1, &(0x7f0000001d00)=[&(0x7f0000001a80)={0x0, 0x0, 0x0, 0x5, 0x0, r0, 0x0}]) syz_mount_image$fuse(0x0, 0x0, 0x200000, 0x0, 0x1, 0x0, 0x0) 1m38.262901955s ago: executing program 4 (id=1892): syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x58e, &(0x7f0000000180), 0x1, 0x451, &(0x7f0000000780)="$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") r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0) getdents64(r0, &(0x7f0000000180)=""/169, 0xbb) lseek(r0, 0x8, 0x1) 1m35.607672885s ago: executing program 38 (id=1892): syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x58e, &(0x7f0000000180), 0x1, 0x451, &(0x7f0000000780)="$eJzs289vFFUcAPDvTFug/LAV8Qc/1CoaG3+0tKBy8KLRxIMmJl7wWNtCkIUaWhMhRNEYPBoS78ajiX+BJ70Y9WTiVe+GhBguoqc1szvD/mC3tMu2g+znkwx9b+YN7333zdt9M283gIE1kf2TROyMiN8jYqyebS0wUf9z/dqF+X+uXZhPolp9+6+kVu7vaxfmi6LFeTvyzGQakX6WxP4O9S6fO39qrlJZPJvnp1dOvz+9fO78cydPz51YPLF4Zvbo0SOHZ158Yfb5vsR5b9bWfR8tHdj7+juX35w/dvndn78dKuJvi6NPJlY7+GS12ufqyrWrKZ0Ml9gQ1iUbA1l3jdTG/1gMRaPzxuK1T0ttHLChqrkuhy9WgbtYEmW3AChH8UGf3f8W2+bNPsp39eX6DVAW9/V8qx8ZjjQvM9J2f9tPExFx7OK/X2VbbMxzCACAFt9n859nO83/0nigqdw9+drQeL6Wsjsi7ouIPRFxf0St7IMR8dA6629fJLl5/pNe6SmwNcrmfy/la1ut879i9hfjQ3luVy3+keT4ycriofw1mYyRrVl+ZpU6fnj1ty+6HWue/2VbVn8xF8zbcWV4a+s5C3Mrc7cTc7Orn0TsG+4Uf3JjJSCJiL0Rsa/HOk4+/c2BbsduHf8q+rDOVP064ql6/1+MtvgLyerrk9PborJ4aLq4Km72y6+X3upW/23F3wdZ/2/veP3fiH88aV6vXV5/HZf++LzrPc1UT9d/Y8eW/O+HcysrZ2citiRv1BvdvH+2cW6RL8pn8U8e7Dz+d0fjldgfEdlF/HBEPBIRj+Z991hEPB4RB9viar6//umVJ97rFv+d0P8Lbf0/3lqkrf8biS3RvqdzYujUj9+1/o+N5Nre/47UUpP5nrW8/62lXb1dzQAAAPD/k0bEzkjSqRvp0XRqqv4d/j2xPa0sLa88c3zpgzML9d8IjMdIWjzpGmt6HjqT39YX+dm2/OH8ufGXQ6O1/NT8UmWh7OBhwO24afyntfGf+XOo7NYBG87vtWBwNY3/pMx2AJvP5z8MLuMfBleH8T9aRjuAzdfp8//jEtoBbL628W/ZDwaI+38YXMY/DK7m8e8LADAwlkfj1j+S75TYFr2cJXHXJCK9I5rRn0TS4yhYa2Jn2QGuP1H2OxMAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAEB//BcAAP//pgHvrg==") r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0) getdents64(r0, &(0x7f0000000180)=""/169, 0xbb) lseek(r0, 0x8, 0x1) 1m35.573122844s ago: executing program 6 (id=1894): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="180000001800ff0f0000000000000000850000006d000000850000002300000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, 0x2}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000007c0)={&(0x7f0000000040)='netlink_extack\x00', r0}, 0x18) r1 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000001c0)=@RTM_NEWMDB={0x12, 0x55, 0x2e5, 0x0, 0x0, {}, [@MDBA_SET_ENTRY={0x20, 0x1, {0x0, 0x0, 0x0, 0xffe, {@ip4=@empty}}}]}, 0x38}, 0x1, 0x0, 0x0, 0x44}, 0x0) 1m34.832067888s ago: executing program 6 (id=1898): mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0) mount$nfs4(&(0x7f0000000040)='/', &(0x7f0000000080)='./file0\x00', 0x0, 0x197841, 0x0) r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901) move_mount(r0, &(0x7f00000005c0)='./file0\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x104) 1m33.764072355s ago: executing program 6 (id=1901): syz_mount_image$udf(&(0x7f00000000c0), &(0x7f0000000180)='./file1\x00', 0x804000, &(0x7f0000000f00)=ANY=[@ANYBLOB="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"], 0x2, 0xc2d, &(0x7f00000001c0)="$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") truncate(&(0x7f00000000c0)='./file1\x00', 0x8000008) r0 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./file1\x00', 0x84042, 0x1fb) write$P9_RUNLINKAT(r0, &(0x7f0000000000)={0xfffffffffffffecb, 0x4d, 0x1}, 0xffffffd7) 1m31.786172567s ago: executing program 6 (id=1905): r0 = syz_usbip_server_init(0x1) syz_usb_connect(0x0, 0x24, &(0x7f0000000600)=ANY=[@ANYBLOB="12010000994bd740e50d5600b505000000010902"], 0x0) write$usbip_server(r0, &(0x7f0000000000)=ANY=[@ANYBLOB="0000000300000001"], 0x35) writev(0xffffffffffffffff, 0x0, 0x0) 1m29.419593462s ago: executing program 39 (id=1905): r0 = syz_usbip_server_init(0x1) syz_usb_connect(0x0, 0x24, &(0x7f0000000600)=ANY=[@ANYBLOB="12010000994bd740e50d5600b505000000010902"], 0x0) write$usbip_server(r0, &(0x7f0000000000)=ANY=[@ANYBLOB="0000000300000001"], 0x35) writev(0xffffffffffffffff, 0x0, 0x0) 1m26.612461786s ago: executing program 2 (id=1914): r0 = syz_usb_connect(0x3, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="1201000014da2108ab12a390eb1e000000010902240001b30000040904410017ff5d810009050f1f01040000000905830300b3"], 0x0) syz_usb_ep_write$ath9k_ep2(r0, 0x83, 0x8, &(0x7f0000000980)=ANY=[@ANYBLOB="bcea"]) r1 = syz_open_dev$evdev(&(0x7f00000000c0), 0x40, 0x0) ioctl$EVIOCSABS3F(r1, 0x401845ff, &(0x7f0000000240)={0xfffffffd, 0xff, 0x7f, 0x3ffc000, 0x3ff, 0x6}) 1m23.704197143s ago: executing program 2 (id=1917): syz_mount_image$vfat(&(0x7f00000000c0), &(0x7f0000000040)='./file0\x00', 0x10, &(0x7f0000000100)=ANY=[@ANYBLOB="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"], 0x3, 0x2b5, &(0x7f0000000380)="$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") syz_mount_image$msdos(&(0x7f0000000140), &(0x7f0000000180)='./file1\x00', 0x8084, &(0x7f00000001c0)=ANY=[@ANYBLOB="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"], 0x1, 0x16b, &(0x7f0000000600)="$eJzs20GrElEUB/Azab73avPW0WKgTSupVi2LeEE0UBQualVgbTSE3Eyt/BSt+4JBuGrVDZ3QEkWknJHn77fxwB+958rMXO7AfXPzw6A/Gr8fPZ/GaZZF+0Hk8TOL87gSrahMAgC4TH6kFN9TSulkEmdfI6XUdEcAwL5Z/wHg+Gxd/+831BgAsDf2/wBwfF6+ev30YVFcvMjz04hvk7JX9qrPKn/8pLi4k8+dL781Lctea5HfrfL87/xqXPud31ubd+L2rSqfZY+eFSv59ejvf/oAAABwFLr5wtr9fbe7Ka+qP94PrOzf23GjXds0AIAdjD99HrwdDt99rKE4m4+Y1TvobsWXBv6Wgy1acRBtKLYWs0v2f/9yk08loA7Lm77pTgAAAAAAAAAAAAAAgE3+8ahQJyLWRBGdbScLTmqfKgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACz8CgAA//9vQEW+") mprotect(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1) syz_mount_image$fuse(0x0, &(0x7f00000002c0)='./file0\x00', 0x40000, 0x0, 0x1, 0x0, 0x0) 1m22.564944516s ago: executing program 2 (id=1919): r0 = socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000200)={'bond0\x00', 0x0}) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000240)={'hsr0\x00', 0x0}) sendmsg$nl_route(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=ANY=[@ANYBLOB="500000001000010400"/20, @ANYRES32=0x0, @ANYBLOB="400d0000000000003000128008000100687372002400028008000200", @ANYRES32=r2, @ANYBLOB="08000100", @ANYRES32=r1], 0x50}, 0x1, 0x0, 0x0, 0x40000}, 0x8000) 1m21.56560479s ago: executing program 2 (id=1921): syz_mount_image$vfat(&(0x7f0000000400), &(0x7f0000000280)='./file0\x00', 0x800000, &(0x7f0000000080)=ANY=[], 0x1, 0x2b1, &(0x7f0000000700)="$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") mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0) chroot(&(0x7f0000000100)='./file0\x00') pivot_root(&(0x7f0000000240)='./file0\x00', &(0x7f0000000000)='./file0/../file0\x00') 1m20.517251276s ago: executing program 2 (id=1922): timer_create(0xfffffffffffffffc, 0x0, &(0x7f0000001400)=0x0) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0) mlock(&(0x7f0000bff000/0x400000)=nil, 0x400000) timer_settime(r0, 0x0, &(0x7f0000000400), &(0x7f0000000440)) 1m19.784159005s ago: executing program 2 (id=1924): prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680)) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x7, 0x4008032, 0xffffffffffffffff, 0xd06d000) madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15) signalfd(0xffffffffffffffff, &(0x7f0000000080)={[0x7, 0x9]}, 0x8) 1m17.333378037s ago: executing program 40 (id=1924): prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680)) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x7, 0x4008032, 0xffffffffffffffff, 0xd06d000) madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15) signalfd(0xffffffffffffffff, &(0x7f0000000080)={[0x7, 0x9]}, 0x8) 8.208357519s ago: executing program 9 (id=2195): syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x3000046, &(0x7f00000004c0)={[{@delalloc}, {@data_err_abort}, {@barrier_val={'barrier', 0x3d, 0x2}}, {@usrquota}, {@data_err_ignore}, {@mb_optimize_scan={'mb_optimize_scan', 0x3d, 0x1}}, {@oldalloc}, {@grpquota}, {@noload}, {@user_xattr}, {@bh}, {@dioread_nolock}]}, 0x1, 0x553, &(0x7f0000001080)="$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") setxattr$system_posix_acl(&(0x7f0000002a00)='.\x00', &(0x7f0000002a40)='system.posix_acl_default\x00', &(0x7f0000000600)=ANY=[@ANYBLOB="0200000001000000000000000400000000000000100000000000000020"], 0x24, 0x0) mkdir(&(0x7f0000000000)='./bus\x00', 0x0) setxattr$system_posix_acl(&(0x7f0000002a00)='.\x00', &(0x7f0000002a40)='system.posix_acl_default\x00', 0x0, 0x0, 0x0) 7.349313792s ago: executing program 9 (id=2200): syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0xe, &(0x7f00000006c0)={[{@journal_ioprio={'journal_ioprio', 0x3d, 0x1}}, {@auto_da_alloc_val={'auto_da_alloc', 0x3d, 0xeb0}}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x68}}, {@lazytime}, {@nombcache}, {@noload}, {@noquota}]}, 0x3, 0x440, &(0x7f0000000280)="$eJzs28tvG8UfAPDv2kn66+uXUJVHH0CgIMoradJSeuACAokDSEhwKMeQpFWo26AmSLSKICBUjqgSJy6IIxJ/ASe4IOCExBXuqFKFcmnhZLT2bmI7thunTlzqz0dad2Z33Jmvd8ee2ckG0LdG05ckYk9E/B4Rw9VsfYHR6j83V5am/15Zmk6iXH7zr6RS7sbK0nReNH/f7jwzEFH4NIlDTepduHT53FSpNHsxy48vnn9vfOHS5Wfnzk+dnT07e2Hy1KkTxyeePzn5XFfiTOO6cfDD+cMHXn376uvTp6++8/O3SR5/QxxdMtru4OPlcper6629NelkoIcNoSPFajeNwUr/H45irJ284Xjlk542DthS5XK5fF/rw8tl4C6WRK9bAPRG/kOfzn/zbZuGHneE6y9WJ0Bp3DezrXpkIApZmcGG+W03jUbE6eV/vkq32Jr7EAAAdb5Pxz/PNBv/FaL2vtD/szWUkYi4JyL2RcTJiNgfEfdGVMreHxEPdFh/4yLJ+vFP4dqmAtugdPz3Qra2VT/+y0d/MVLMcnsr8Q8mZ+ZKs8eyz+RoDO5I8xNt6vjh5d8+b3WsdvyXbmn9+Vgwa8e1gR3175mZWpy6nZhrXf844uBAs/iT1ZWAJCIORMTBTdYx99Q3h1sdu3X8bXRhnan8dcQT1fO/HA3x55L265Pj/4vS7LHx/KpY75dfr7zRqv7bir8L0vO/q+n1vxr/SFK7XrvQyf/+5ZPp65U/Pms5p9ns9T+UvFW374OpxcWLExFDyWvVRtfun2woN7lWPo3/6JHm/X9frH0ShyIivYgfjIiHIuLhrO2PRMSjEXGkzafw00uPvbv5+LdWGv9MR+d/LTEUjXuaJ4rnfvyurtKRTuJPz/+JSupotmcj338baVenVzMAAAD8VxUiYk8khbHVdKEwNlb9G/79satQml9YfPrM/PsXZqrPCIzEYCG/0zVccz90IpvW5/nJhvzx7L7xF8WdlfzY9HxpptfBQ5/b3aL/p/4s9rp1wJbzvBb0L/0f+pf+D/1L/4f+1aT/7+xFO4Dt1+z3/6MetAPYfg3937If9BHzf+hfm+n/vjPg7tC2Lw9tXzuAbbWwM279kLyExLpEFO6IZkhsUaLX30wAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADd8W8AAAD//58P56I=") truncate(&(0x7f0000000640)='./file1\x00', 0xb) r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x143041, 0x0) ioctl$EXT4_IOC_MOVE_EXT(r0, 0x40305829, &(0x7f00000000c0)={0x17c04, 0xffffffffffffffff, 0x9, 0xfff, 0x9}) 6.033644013s ago: executing program 9 (id=2204): r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)=ANY=[@ANYBLOB="12010000000000101c1b021b00000000000109022400010000400009040000010300400009210000000122050009058103"], 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, &(0x7f0000000080)={0x24, 0x0, 0x0, &(0x7f0000000040)={0x0, 0x22, 0x5, {[@local=@item_4={0x3, 0x2, 0x9, "0400"}]}}, 0x0}, 0x0) syz_usb_control_io$hid(r0, &(0x7f0000000240)={0x14, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000004c0)={0x18, &(0x7f0000000280)={0x40, 0x5, 0x6, "150f38b7d5e7"}, 0x0, 0x0, 0x0, 0x0}) 5.905473535s ago: executing program 5 (id=2206): syz_open_dev$video(&(0x7f0000000b40), 0x7, 0x28000) r0 = syz_open_procfs(0x0, &(0x7f0000000240)='fd/3\x00') r1 = syz_init_net_socket$nfc_llcp(0x27, 0x3, 0x1) mount$9p_fd(0x0, &(0x7f0000000100)='.\x00', &(0x7f0000000040), 0x0, &(0x7f0000000080)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 5.126174737s ago: executing program 5 (id=2210): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0) sendmsg$NFT_BATCH(r0, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000002100)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a5c000000090a010400000000000000000a0000040900010073797a310000000008000540000000040900020073797a310000000008000a40fffffffc200011800e000100636f6e6e6c696d69740000000c00028008000140fffff27414000000110001"], 0x84}, 0x1, 0x0, 0x0, 0x4000850}, 0x40) sendmsg$NFT_MSG_GETSETELEM(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000009b80)=ANY=[@ANYBLOB="3c0000000d0a010800000000000000000a0000010900020073797a31000000000900010073797a3100000000100003"], 0x3c}, 0x1, 0x0, 0x0, 0x24000801}, 0x8000) 4.145003751s ago: executing program 5 (id=2216): r0 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x20, &(0x7f0000000280)={@mcast1, 0x800, 0x0, 0x103, 0x1}, 0x20) setsockopt$inet6_int(r0, 0x29, 0x1000000000021, &(0x7f0000000040)=0x5, 0x4) sendmsg$inet6(r0, &(0x7f00000000c0)={&(0x7f00000001c0)={0xa, 0x4e23, 0x80000, @dev={0xfe, 0x80, '\x00', 0x20}}, 0x1c, 0x0, 0x0, &(0x7f0000000000)=[@hopopts={{0x18, 0x29, 0x36, {0x3b, 0x29}}}], 0x18}, 0x40c0) 4.124482079s ago: executing program 0 (id=2217): mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x3000002, 0x5d031, 0xffffffffffffffff, 0x0) mlock(&(0x7f0000000000/0x800000)=nil, 0x800000) remap_file_pages(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x0, 0x600, 0x0) remap_file_pages(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x0, 0x0, 0x0) 3.780469356s ago: executing program 3 (id=2218): unshare(0x600) r0 = socket(0x1d, 0x2, 0x6) ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000000)={'vxcan0\x00', 0x0}) bind$can_j1939(r0, &(0x7f0000000100)={0x1d, r1, 0x2, {0x2}, 0x1}, 0x18) 3.722059705s ago: executing program 1 (id=2219): bpf$BPF_LINK_CREATE(0x1c, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff, 0xf6cb75abc90dfaf1, 0x0, @void}, 0x10) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000000)='cubic', 0x31) setsockopt$inet6_buf(r0, 0x29, 0x14, 0x0, 0x13e72d3d40746a7f) 3.256478307s ago: executing program 9 (id=2220): close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) mprotect(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1) r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3) bind$bt_l2cap(r0, &(0x7f0000000400), 0xe) 3.251352928s ago: executing program 3 (id=2221): setrlimit(0xf, &(0x7f00000000c0)={0x0, 0x3}) timer_create(0x3, 0x0, &(0x7f0000000140)) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0) mlock(&(0x7f0000bff000/0x400000)=nil, 0x400000) 3.008485886s ago: executing program 5 (id=2222): r0 = creat(&(0x7f0000000040)='./bus\x00', 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='blkio.bfq.empty_time\x00', 0x275a, 0x0) seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000280)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0001}]}) copy_file_range(r1, 0x0, r0, 0x0, 0xfffffffffffffff8, 0x0) 2.938489592s ago: executing program 1 (id=2223): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18060000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000003000000b703000000000000850000007300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x10) r1 = socket$kcm(0x10, 0x2, 0x0) sendmsg$kcm(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000002c0)=[{&(0x7f0000000440)="d800000018007b7be00212ba0d0505040a003f00000f040b067c55a1bc000900b80006990300000015000500fe800000000000000300014002000c0901ac04000bd67f6f94007100a007a290457f0189b3162700e06bbace8017cbec4c2ee5a7cef4090000001fb791643a5ee4b11602b2a10c11ce1b14d6d930dfe1d9d322fe04fb95cae8c9010000730d7a5005ccca262f3d40fad95667e04adcdf63cc1f215ce3bb9ad8ffd5e1cace81ed0b7fece0b42a9ecbee5de6ccd40dd601edef3d93452a92307f00000e97031e9f05e9f16e07000000", 0xd4}, {&(0x7f0000000100)="d8bcf4de", 0x4}], 0x2, 0x0, 0x0, 0x2663}, 0x0) 2.726080712s ago: executing program 9 (id=2224): syz_mount_image$minix(&(0x7f00000000c0), &(0x7f0000000000)='./file1\x00', 0x0, &(0x7f0000000100)=ANY=[], 0xa, 0x234, &(0x7f0000000900)="$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") unlink(&(0x7f0000000100)='./file1\x00') r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0) pwrite64(r0, &(0x7f0000000140)="f6", 0xffffff07, 0x8000c61) 2.714460141s ago: executing program 0 (id=2225): sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0) r0 = socket(0x10, 0x3, 0x0) setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0xc, &(0x7f0000000040)={0x8606}, 0x10) sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000240)=ANY=[@ANYBLOB="240000001a0069ae25bd7000000000001c"], 0x24}}, 0x0) 2.375167237s ago: executing program 1 (id=2226): r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='setgroups\x00') r1 = socket$kcm(0x2, 0x200000000000001, 0x0) sendmsg$inet(r1, &(0x7f0000000080)={&(0x7f0000000140)={0x2, 0x4001, @remote}, 0x10, 0x0}, 0x240048c1) close_range(r0, 0xffffffffffffffff, 0x0) 2.048466167s ago: executing program 0 (id=2227): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000280)={0x18, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="180100002100000000000000000000008500000075000000a50000002300000095"], &(0x7f00000000c0)='GPL\x00'}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000001c0)='mmap_lock_acquire_returned\x00', r0}, 0x10) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x32, 0xffffffffffffffff, 0x2d75000) pselect6(0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000002880)={&(0x7f0000000240)={[0x4]}, 0x8}) 1.957769566s ago: executing program 3 (id=2228): openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000000), 0x80082, 0x0) openat$ptp0(0xffffffffffffff9c, &(0x7f0000000040), 0x60442, 0x0) close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) pselect6(0x40, &(0x7f0000000080)={0x0, 0x3, 0x0, 0x0, 0x8000, 0x0, 0x0, 0x7}, &(0x7f00000000c0)={0x1f, 0x0, 0x8, 0x5, 0xfffffffffffffff8, 0x0, 0x4000000000}, 0x0, 0x0, 0x0) 1.916790488s ago: executing program 9 (id=2229): r0 = syz_usb_connect$lan78xx(0x5, 0x3f, &(0x7f0000000dc0)={{0x12, 0x1, 0x200, 0xff, 0xff, 0xff, 0x40, 0x424, 0x7850, 0x0, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x2d}}]}}, 0x0) syz_usb_control_io$lan78xx(r0, 0x0, &(0x7f0000001140)={0x34, &(0x7f0000000040)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0}) syz_io_uring_submit(0x0, 0x0, 0x0) io_uring_enter(0xffffffffffffffff, 0x8aa, 0x0, 0x0, 0x0, 0x0) 1.905459547s ago: executing program 5 (id=2230): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000340)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010025bd7000000000003900000008000300", @ANYRES32=r2, @ANYBLOB="20005a800d00008004150000000003000f0007000c00f3"], 0x3c}, 0x1, 0x0, 0x0, 0x4000801}, 0x10) 1.797675653s ago: executing program 1 (id=2231): close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) capset(&(0x7f0000000040)={0x20080522}, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x5, 0xffffffff, 0xfffffffd}) r0 = socket(0x10, 0x3, 0x9) connect$netlink(r0, &(0x7f00000014c0)=@proc={0x10, 0x0, 0x25dfdbfc}, 0xc) 1.459854778s ago: executing program 3 (id=2232): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002078316e00000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000005000000b7030000000000008500000006000000850000000500000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f00000005c0)='sys_enter\x00', r0}, 0x10) r1 = io_uring_setup(0x54a0, &(0x7f0000000000)={0x0, 0x70e6, 0x2, 0x2, 0xf2}) io_uring_register$IORING_UNREGISTER_IOWQ_AFF(r1, 0x12, 0x0, 0x0) 1.311840932s ago: executing program 0 (id=2233): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000007c0)={&(0x7f0000000780)='netlink_extack\x00', r0}, 0x10) r1 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r1, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000380)=@ipv4_newrule={0x1c, 0x20, 0x1, 0x70bd26, 0x25dfdbff, {0x2, 0x14, 0x0, 0xff, 0x8, 0x0, 0x0, 0x8, 0x10}}, 0x1c}, 0x1, 0x0, 0x0, 0x10}, 0x4000) 1.309724264s ago: executing program 1 (id=2234): syz_mount_image$minix(&(0x7f0000000180), &(0x7f0000000000)='./file1\x00', 0x21445a, &(0x7f00000001c0)=ANY=[], 0x1, 0x1c4, &(0x7f00000003c0)="$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") openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000d80)='./file1\x00', 0x1c3902, 0x0) pwritev2(r0, &(0x7f00000001c0)=[{&(0x7f0000000080)="ff", 0x1}], 0x1, 0xf4d1, 0x0, 0x0) 885.63632ms ago: executing program 3 (id=2235): syz_io_uring_setup(0x1f87, &(0x7f0000000080)={0x0, 0x249c, 0x13580, 0xfffffffd, 0x400}, 0x0, 0x0) openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0) close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) pselect6(0x40, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x800, 0x0, 0x100000}, 0x0, &(0x7f0000000240)={0x1f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6a9}, &(0x7f0000000280)={0x0, 0x3938700}, 0x0) 681.046445ms ago: executing program 0 (id=2236): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000280), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000002c0)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000000c00)={0x0, 0x0, &(0x7f0000000640)={&(0x7f0000000300)={0x54, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_FRAME={0x2e, 0x33, @action={{{}, {}, @device_b}, @channel_switch={0x0, 0x4, {{0x25, 0x3, {0x1, 0xb7, 0x2}}, @val={0x3e, 0x1, 0x1}, @val={0x76, 0x6, {0x4, 0x3, 0x26, 0x9}}}}}}, @NL80211_ATTR_CSA_C_OFFSETS_TX={0x8, 0xcd, [0x5, 0x5]}]}, 0x54}}, 0x0) 676.190035ms ago: executing program 5 (id=2237): r0 = socket$tipc(0x1e, 0x5, 0x0) setsockopt$TIPC_DEST_DROPPABLE(r0, 0x10f, 0x81, &(0x7f0000000140)=0x3, 0x20) sendmsg$tipc(r0, &(0x7f0000000240)={&(0x7f00000000c0)=@id, 0x10, 0x0}, 0x0) pselect6(0x40, &(0x7f0000003800)={0x3, 0x6, 0x8, 0x1, 0x4, 0x1, 0x5, 0x7}, 0x0, &(0x7f0000003880)={0x9, 0x3, 0xfffffffffffffffe, 0x8, 0xfffffffffffffc00, 0x8000000000000000, 0x0, 0x5}, &(0x7f00000038c0)={0x0, 0x989680}, 0x0) 401.754223ms ago: executing program 1 (id=2238): r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$netlbl_calipso(&(0x7f0000000ac0), r0) sendmsg$NLBL_CALIPSO_C_ADD(r0, &(0x7f0000000b80)={0x0, 0x11, &(0x7f0000000b40)={&(0x7f0000000000)={0x24, r1, 0x1, 0x70bd2c, 0x25dfdbfd, {}, [@NLBL_CALIPSO_A_DOI={0x8, 0x1, 0x3}, @NLBL_CALIPSO_A_MTYPE={0x8}]}, 0x24}, 0x1, 0x0, 0x0, 0x24004810}, 0x20020000) sendmsg$NLBL_CALIPSO_C_REMOVE(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)={0x1c, r1, 0x1, 0x70bd25, 0x25dfdbff, {}, [@NLBL_CALIPSO_A_DOI={0x8, 0x1, 0x3}]}, 0x1c}, 0x1, 0x0, 0x0, 0x40005}, 0x8000) 285.331378ms ago: executing program 3 (id=2239): r0 = socket$kcm(0x10, 0x2, 0x0) sendmsg$inet(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000680)=[{&(0x7f00000000c0)="5c00000014006b05c84e21000ab16d6e230675f811000000440002005817d30461bc24eeb556a7ef59510525ba56dcd79a36c23d3b9844e1571a86ea1698fa51f60a64c9f408000000e786a6d0bdd70000b6c0504bb9189d9193e9bd", 0x5c}], 0x1, 0x0, 0x0, 0x1f00c00e}, 0x0) r1 = socket$phonet_pipe(0x23, 0x5, 0x2) connect$phonet_pipe(r1, &(0x7f0000000040)={0x23, 0x0, 0x58}, 0x10) 0s ago: executing program 0 (id=2240): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = dup(r1) ioctl$KVM_SET_USER_MEMORY_REGION2(r2, 0x40a0ae49, &(0x7f0000000140)={0x4, 0x4, 0x2000, 0x1000, &(0x7f0000015000/0x1000)=nil, 0x0, r2}) kernel console output (not intermixed with test programs): alid wMaxPacketSize 0 [ 498.162633][ T1704] usb 10-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40 [ 498.172257][ T1704] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 498.258656][ T1704] usb 10-1: config 0 descriptor?? [ 498.310949][ T1704] hub 10-1:0.0: USB hub found [ 498.485104][ T1704] hub 10-1:0.0: 1 port detected [ 498.499561][ T5854] elecom 0003:056E:00FB.0010: hidraw0: USB HID v0.00 Device [HID 056e:00fb] on usb-dummy_hcd.2-1/input0 [ 498.695397][ T1704] hub 10-1:0.0: hub_hub_status failed (err = -71) [ 498.702743][ T1704] hub 10-1:0.0: config failed, can't get hub status (err -71) [ 498.789313][ T5854] usb 3-1: USB disconnect, device number 8 [ 498.832784][ T1704] usbhid 10-1:0.0: can't add hid device: -71 [ 498.839974][ T1704] usbhid 10-1:0.0: probe with driver usbhid failed with error -71 [ 498.991140][ T1704] usb 10-1: USB disconnect, device number 4 [ 499.040356][ T9308] loop4: detected capacity change from 0 to 22 [ 499.156028][ T9308] romfs: Mounting image 'rom 637cf1fa' through the block layer [ 499.513777][ T9307] fido_id[9307]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.2/usb3/report_descriptor': No such file or directory [ 501.925584][ T9339] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1204'. [ 502.409109][ T9344] mmap: syz.8.1205 (9344) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 502.609222][ T8791] usb 7-1: new high-speed USB device number 6 using dummy_hcd [ 502.840459][ T8791] usb 7-1: config 0 interface 0 altsetting 0 bulk endpoint 0x6 has invalid maxpacket 1023 [ 502.850917][ T8791] usb 7-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xBA, changing to 0x8A [ 502.862810][ T8791] usb 7-1: config 0 interface 0 altsetting 0 bulk endpoint 0x8A has invalid maxpacket 121 [ 502.940099][ C1] sd 0:0:1:0: [sda] tag#6903 FAILED Result: hostbyte=DID_ERROR driverbyte=DRIVER_OK cmd_age=0s [ 502.951025][ C1] sd 0:0:1:0: [sda] tag#6903 CDB: Write(6) 0a 00 00 00 05 00 00 00 02 00 00 00 [ 503.047372][ T9348] loop4: detected capacity change from 0 to 2048 [ 503.063608][ T8791] usb 7-1: New USB device found, idVendor=2294, idProduct=425b, bcdDevice=a2.10 [ 503.073200][ T8791] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 503.081769][ T8791] usb 7-1: Product: syz [ 503.086120][ T8791] usb 7-1: Manufacturer: syz [ 503.091245][ T8791] usb 7-1: SerialNumber: syz [ 503.151680][ T9348] NILFS (loop4): broken superblock, retrying with spare superblock (blocksize = 1024) [ 503.179895][ T8791] usb 7-1: config 0 descriptor?? [ 503.193398][ T9345] raw-gadget.0 gadget.6: fail, usb_ep_enable returned -22 [ 503.258782][ T9345] raw-gadget.0 gadget.6: fail, usb_ep_enable returned -22 [ 503.338858][ T9355] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 503.368986][ T8791] usb 7-1: ucan: probing device on interface #0 [ 504.080494][ T8791] ucan 7-1:0.0: probe with driver ucan failed with error -71 [ 504.158473][ T8791] usb 7-1: USB disconnect, device number 6 [ 505.149169][ T9372] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1216'. [ 505.312300][ T9375] No buffer was provided with the request [ 507.947183][ T9408] loop9: detected capacity change from 0 to 1024 [ 508.267272][ T9411] [U] $(C#ÆÞÙ™€35±ÜDNÔTÝ §AJPËÀHÕÍWÁ†RÈY‰Ê6Å‚›JÒØ5Ò†J)'J¹ÊžÕ‡TÝ'ZH1,^¹.*©BÜÞ‡X¸ÛÆÀÄF£Oß´ÛBC ;{ÔMƒP†…ÄͦLF¢| »šIY‰ßX [ 508.717951][ T9416] loop4: detected capacity change from 0 to 1024 [ 509.218506][ T9416] hfsplus: inconsistency in B*Tree (9,1,255,1,0) [ 509.363104][ T8791] usb 9-1: new high-speed USB device number 2 using dummy_hcd [ 509.583143][ T8791] usb 9-1: New USB device found, idVendor=17e9, idProduct=8b4e, bcdDevice=9c.08 [ 509.593027][ T8791] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 509.660647][ T8791] usb 9-1: config 0 descriptor?? [ 509.672966][ T4162] hfsplus: b-tree write err: -5, ino 4 [ 509.957745][ T8791] udl 9-1:0.0: [drm] Unrecognized vendor firmware descriptor [ 510.206766][ T8791] [drm:udl_init] *ERROR* Selecting channel failed [ 510.276325][ T9430] loop2: detected capacity change from 0 to 128 [ 510.328417][ T8791] [drm] Initialized udl 0.0.1 for 9-1:0.0 on minor 2 [ 510.335590][ T8791] [drm] Initialized udl on minor 2 [ 510.399139][ T8791] udl 9-1:0.0: [drm] *ERROR* Read EDID byte 0 failed err ffffffb9 [ 510.408697][ T8791] udl 9-1:0.0: [drm] Cannot find any crtc or sizes [ 510.428431][ T5442] udl 9-1:0.0: [drm] *ERROR* Read EDID byte 0 failed err ffffffb9 [ 510.461251][ T5442] udl 9-1:0.0: [drm] *ERROR* Read EDID byte 0 failed err ffffffb9 [ 510.470112][ T5442] udl 9-1:0.0: [drm] Cannot find any crtc or sizes [ 510.576852][ T9430] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: writeback. [ 510.686728][ T8791] usb 9-1: USB disconnect, device number 2 [ 510.794873][ T9430] ext4 filesystem being mounted at /276/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 511.531891][ T5799] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 511.654262][ T9441] loop4: detected capacity change from 0 to 256 [ 512.014907][ T9450] netlink: 'syz.6.1248': attribute type 1 has an invalid length. [ 512.028103][ T9450] netlink: 654 bytes leftover after parsing attributes in process `syz.6.1248'. [ 512.119297][ T1704] usb 10-1: new high-speed USB device number 5 using dummy_hcd [ 512.379294][ T1704] usb 10-1: Using ep0 maxpacket: 8 [ 512.427000][ T1704] usb 10-1: config 0 interface 0 altsetting 5 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 512.442617][ T1704] usb 10-1: config 0 interface 0 altsetting 5 endpoint 0x81 has invalid wMaxPacketSize 0 [ 512.454683][ T1704] usb 10-1: config 0 interface 0 has no altsetting 0 [ 512.461854][ T1704] usb 10-1: New USB device found, idVendor=0419, idProduct=0001, bcdDevice= 0.00 [ 512.474962][ T1704] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 512.713198][ T1704] usb 10-1: config 0 descriptor?? [ 512.963792][ T9458] loop8: detected capacity change from 0 to 512 [ 513.047014][ T9458] vfat: Unknown parameter 'nnonumtail' [ 513.232250][ T1704] hid_parser_main: 9 callbacks suppressed [ 513.232356][ T1704] samsung 0003:0419:0001.0011: unknown main item tag 0x0 [ 513.252468][ T1704] samsung 0003:0419:0001.0011: unknown main item tag 0x0 [ 513.253880][ T9461] netlink: 60 bytes leftover after parsing attributes in process `syz.6.1251'. [ 513.266912][ T1704] samsung 0003:0419:0001.0011: unknown main item tag 0x0 [ 513.269228][ T9461] netlink: 35 bytes leftover after parsing attributes in process `syz.6.1251'. [ 513.286885][ T1704] samsung 0003:0419:0001.0011: unknown main item tag 0x0 [ 513.294339][ T1704] samsung 0003:0419:0001.0011: unknown main item tag 0x0 [ 513.613381][ T1704] samsung 0003:0419:0001.0011: hidraw0: USB HID v0.00 Device [HID 0419:0001] on usb-dummy_hcd.9-1/input0 [ 513.800365][ T1704] usb 10-1: USB disconnect, device number 5 [ 513.820150][ T9464] netlink: 44 bytes leftover after parsing attributes in process `syz.2.1252'. [ 513.833737][ T9464] netlink: 'syz.2.1252': attribute type 1 has an invalid length. [ 514.529726][ T9466] fido_id[9466]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.9/usb10/report_descriptor': No such file or directory [ 515.637365][ T9483] fuse: Bad value for 'group_id' [ 515.642760][ T9483] fuse: Bad value for 'group_id' [ 516.062217][ T9486] loop9: detected capacity change from 0 to 1024 [ 516.547064][ T9495] RDS: rds_bind could not find a transport for fe80::, load rds_tcp or rds_rdma? [ 517.146989][ T9500] IPVS: set_ctl: invalid protocol: 58 0.0.0.0:20002 [ 518.335702][ T9514] loop2: detected capacity change from 0 to 64 [ 518.754222][ T8791] usb 10-1: new high-speed USB device number 6 using dummy_hcd [ 519.003517][ T8791] usb 10-1: Using ep0 maxpacket: 16 [ 519.101247][ T8791] usb 10-1: config 0 has an invalid interface number: 1 but max is 0 [ 519.109813][ T8791] usb 10-1: config 0 has no interface number 0 [ 519.192328][ T8791] usb 10-1: New USB device found, idVendor=04fc, idProduct=1528, bcdDevice=6d.5d [ 519.204901][ T8791] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 519.213595][ T8791] usb 10-1: Product: syz [ 519.218044][ T8791] usb 10-1: Manufacturer: syz [ 519.223105][ T8791] usb 10-1: SerialNumber: syz [ 519.338678][ T8791] usb 10-1: config 0 descriptor?? [ 519.382421][ T8791] gspca_main: spca1528-2.14.0 probing 04fc:1528 [ 519.471960][ T9530] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1278'. [ 519.824574][ T9533] loop6: detected capacity change from 0 to 2048 [ 519.965537][ T9533] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 519.989298][ T8791] gspca_spca1528: reg_w err -71 [ 520.020449][ T8791] spca1528 10-1:0.1: probe with driver spca1528 failed with error -71 [ 520.070752][ T8791] usb 10-1: USB disconnect, device number 6 [ 520.529639][ T11] usb 3-1: new high-speed USB device number 9 using dummy_hcd [ 520.792378][ T11] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 255, changing to 11 [ 520.804426][ T11] usb 3-1: New USB device found, idVendor=046d, idProduct=c626, bcdDevice= 0.00 [ 520.814223][ T11] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 520.963677][ T11] usb 3-1: config 0 descriptor?? [ 521.534030][ T11] logitech 0003:046D:C626.0012: unbalanced delimiter at end of report description [ 521.565141][ T30] audit: type=1326 audit(1760035253.867:49): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9547 comm="syz.9.1286" exe="/root/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7f63539 code=0x0 [ 521.633930][ T11] logitech 0003:046D:C626.0012: parse failed [ 521.640691][ T11] logitech 0003:046D:C626.0012: probe with driver logitech failed with error -22 [ 521.817285][ T11] usb 3-1: USB disconnect, device number 9 [ 522.666532][ T9562] loop4: detected capacity change from 0 to 512 [ 522.996043][ T9562] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 523.009432][ T9562] ext4 filesystem being mounted at /294/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 523.479170][ T9578] netlink: 8 bytes leftover after parsing attributes in process `syz.8.1294'. [ 523.493142][ T9578] netlink: 16 bytes leftover after parsing attributes in process `syz.8.1294'. [ 523.651573][ T5806] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 523.926864][ T9580] loop6: detected capacity change from 0 to 256 [ 524.224390][ T9588] overlayfs: missing 'workdir' [ 524.777439][ T9580] FAT-fs (loop6): Directory bread(block 64) failed [ 524.784709][ T9580] FAT-fs (loop6): Directory bread(block 65) failed [ 524.792580][ T9580] FAT-fs (loop6): Directory bread(block 66) failed [ 524.799603][ T9580] FAT-fs (loop6): Directory bread(block 67) failed [ 524.806463][ T9580] FAT-fs (loop6): Directory bread(block 68) failed [ 524.813320][ T9580] FAT-fs (loop6): Directory bread(block 69) failed [ 524.825618][ T9580] FAT-fs (loop6): Directory bread(block 70) failed [ 524.833997][ T9580] FAT-fs (loop6): Directory bread(block 71) failed [ 524.841141][ T9580] FAT-fs (loop6): Directory bread(block 72) failed [ 524.847874][ T9580] FAT-fs (loop6): Directory bread(block 73) failed [ 526.272328][ T9607] comedi comedi3: 8255: I/O port conflict (0x5,4) [ 526.272522][ T9607] comedi comedi3: 8255: I/O port conflict (0x2,4) [ 526.272739][ T9607] comedi comedi3: 8255: I/O port conflict (0xffffffffffffffdd,4) [ 526.272967][ T9607] comedi comedi3: 8255: I/O port conflict (0x6,4) [ 526.273147][ T9607] comedi comedi3: 8255: I/O port conflict (0x80,4) [ 528.065272][ T9630] loop2: detected capacity change from 0 to 64 [ 529.054900][ T9646] netlink: 32 bytes leftover after parsing attributes in process `syz.8.1319'. [ 530.186483][ T9663] loop6: detected capacity change from 0 to 512 [ 530.208122][ T9661] loop2: detected capacity change from 0 to 1024 [ 530.312312][ T9661] EXT4-fs: Ignoring removed bh option [ 530.318142][ T9661] EXT4-fs: inline encryption not supported [ 530.403857][ T9663] EXT4-fs (loop6): orphan cleanup on readonly fs [ 530.426796][ T9661] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 530.429042][ T9663] EXT4-fs error (device loop6): ext4_do_update_inode:5624: inode #15: comm syz.6.1327: corrupted inode contents [ 530.584134][ T9663] EXT4-fs error (device loop6) in ext4_orphan_del:301: Corrupt filesystem [ 530.619755][ T9661] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c84ce018, mo2=0000] [ 530.706563][ T9663] EXT4-fs error (device loop6): ext4_do_update_inode:5624: inode #15: comm syz.6.1327: corrupted inode contents [ 530.745770][ T9661] EXT4-fs error (device loop2): ext4_map_blocks:778: inode #3: block 2: comm syz.2.1324: lblock 2 mapped to illegal pblock 2 (length 1) [ 530.811689][ T9663] EXT4-fs error (device loop6): ext4_evict_inode:302: inode #15: comm syz.6.1327: mark_inode_dirty error [ 530.838727][ T9661] Quota error (device loop2): qtree_write_dquot: dquota write failed [ 530.849741][ T9661] EXT4-fs error (device loop2): ext4_map_blocks:778: inode #3: block 48: comm syz.2.1324: lblock 0 mapped to illegal pblock 48 (length 1) [ 530.918649][ T9663] EXT4-fs (loop6): 1 orphan inode deleted [ 530.926825][ T9663] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none. [ 530.960089][ T9661] Quota error (device loop2): v2_write_file_info: Can't write info structure [ 530.974727][ T9661] EXT4-fs error (device loop2): ext4_acquire_dquot:6945: comm syz.2.1324: Failed to acquire dquot type 0 [ 531.059723][ T9661] EXT4-fs error (device loop2) in ext4_reserve_inode_write:6305: Corrupt filesystem [ 531.129031][ T9661] EXT4-fs error (device loop2): ext4_evict_inode:254: inode #11: comm syz.2.1324: mark_inode_dirty error [ 531.173281][ T9661] EXT4-fs warning (device loop2): ext4_evict_inode:257: couldn't mark inode dirty (err -117) [ 531.184375][ T9661] EXT4-fs (loop2): 1 orphan inode deleted [ 531.196250][ T9661] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 531.219998][ T1880] usb 9-1: new high-speed USB device number 3 using dummy_hcd [ 531.244682][ T4162] EXT4-fs error (device loop2): ext4_map_blocks:778: inode #3: block 1: comm kworker/u8:25: lblock 1 mapped to illegal pblock 1 (length 1) [ 531.317098][ T4162] Quota error (device loop2): remove_tree: Can't read quota data block 1 [ 531.326390][ T4162] EXT4-fs error (device loop2): ext4_release_dquot:6981: comm kworker/u8:25: Failed to release dquot type 0 [ 531.409508][ T1880] usb 9-1: Using ep0 maxpacket: 16 [ 531.420141][ T7518] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 531.462598][ T1880] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 531.473902][ T1880] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 531.489574][ T1880] usb 9-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 3 [ 531.504155][ T1880] usb 9-1: New USB device found, idVendor=0955, idProduct=7214, bcdDevice=ed.00 [ 531.513782][ T1880] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 531.648676][ T9661] EXT4-fs (loop2): re-mounted 00000000-0000-0000-0000-000000000000 ro. [ 531.702942][ T1880] usb 9-1: config 0 descriptor?? [ 531.713735][ T1287] ieee802154 phy0 wpan0: encryption failed: -22 [ 531.721272][ T1287] ieee802154 phy1 wpan1: encryption failed: -22 [ 531.819861][ T9661] EXT4-fs (loop2): re-mounted 00000000-0000-0000-0000-000000000000. [ 532.237942][ T5799] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 532.278288][ T1880] input: HID 0955:7214 Haptics as /devices/virtual/input/input13 [ 532.317998][ T9682] loop6: detected capacity change from 0 to 512 [ 532.374903][ T1880] shield 0003:0955:7214.0013: Registered Thunderstrike controller [ 532.385192][ T1880] shield 0003:0955:7214.0013: : USB HID v0.00 Device [HID 0955:7214] on usb-dummy_hcd.8-1/input0 [ 532.464733][ T8791] shield 0003:0955:7214.0013: Failed to output Thunderstrike HOSTCMD request HID report due to -EPROTO [ 532.519268][ T8791] shield 0003:0955:7214.0013: Failed to output Thunderstrike HOSTCMD request HID report due to -EPROTO [ 532.629047][ T9682] EXT4-fs error (device loop6): ext4_iget_extra_inode:5075: inode #15: comm syz.6.1333: corrupted in-inode xattr: invalid ea_ino [ 532.642595][ T1880] usb 9-1: USB disconnect, device number 3 [ 532.657926][ T8791] shield 0003:0955:7214.0013: Failed to output Thunderstrike HOSTCMD request HID report due to -EPROTO [ 532.669873][ T8791] shield 0003:0955:7214.0013: Failed to output Thunderstrike HOSTCMD request HID report due to -ENODEV [ 532.779187][ T9682] EXT4-fs error (device loop6): ext4_orphan_get:1397: comm syz.6.1333: couldn't read orphan inode 15 (err -117) [ 532.891212][ T9682] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 533.618306][ T7518] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 534.760075][ T9711] netlink: 8 bytes leftover after parsing attributes in process `syz.8.1343'. [ 534.772818][ T9711] netlink: 4 bytes leftover after parsing attributes in process `syz.8.1343'. [ 536.134227][ T9728] loop4: detected capacity change from 0 to 64 [ 536.460715][ T1880] usb 3-1: new full-speed USB device number 10 using dummy_hcd [ 536.730294][ T1880] usb 3-1: New USB device found, idVendor=09c0, idProduct=0203, bcdDevice=d3.43 [ 536.740125][ T1880] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 536.852421][ T1880] usb 3-1: config 0 descriptor?? [ 536.914451][ T1880] dvb-usb: found a 'Genpix SkyWalker-1 DVB-S receiver' in warm state. [ 537.600423][ T1880] gp8psk: usb out operation failed. [ 537.605892][ T1880] dvb-usb: This USB2.0 device cannot be run on a USB1.1 port. (it lacks a hardware PID filter) [ 537.616702][ T1880] dvb-usb: Genpix SkyWalker-1 DVB-S receiver error while loading driver (-19) [ 537.727758][ T1880] usb 3-1: USB disconnect, device number 10 [ 538.175794][ T9740] loop6: detected capacity change from 0 to 4096 [ 538.672719][ T9751] loop9: detected capacity change from 0 to 2048 [ 538.852940][ T9758] NILFS (loop9): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 538.870008][ T5808] Bluetooth: hci3: command 0x0406 tx timeout [ 539.183011][ T9751] NILFS error (device loop9): nilfs_dotdot: directory #12 missing '..' [ 539.300336][ T9751] Remounting filesystem read-only [ 539.870730][ T8413] NILFS (loop9): disposed unprocessed dirty file(s) when detaching log writer [ 540.805614][ T9779] loop9: detected capacity change from 0 to 512 [ 540.891412][ T9779] EXT4-fs: Ignoring removed i_version option [ 540.990011][ T9779] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 541.247012][ T9779] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 541.329339][ T5851] usb 3-1: new high-speed USB device number 11 using dummy_hcd [ 541.559289][ T5851] usb 3-1: Using ep0 maxpacket: 32 [ 541.610754][ T5851] usb 3-1: config 0 has an invalid interface number: 12 but max is 0 [ 541.623238][ T5851] usb 3-1: config 0 has no interface number 0 [ 541.631153][ T5851] usb 3-1: config 0 interface 12 has no altsetting 0 [ 541.711038][ T5851] usb 3-1: New USB device found, idVendor=2c42, idProduct=1202, bcdDevice=85.40 [ 541.724932][ T5851] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 541.735070][ T5851] usb 3-1: Product: syz [ 541.739544][ T5851] usb 3-1: Manufacturer: syz [ 541.744329][ T5851] usb 3-1: SerialNumber: syz [ 541.802513][ T5851] usb 3-1: config 0 descriptor?? [ 542.129903][ T8413] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 542.589249][ T5851] f81534 3-1:0.12: f81534_get_register: reg: 1003 failed: -71 [ 542.597201][ T5851] f81534 3-1:0.12: f81534_find_config_idx: read failed: -71 [ 542.605250][ T5851] f81534 3-1:0.12: f81534_calc_num_ports: find idx failed: -71 [ 542.613372][ T5851] f81534 3-1:0.12: probe with driver f81534 failed with error -71 [ 542.764169][ T9801] program syz.6.1376 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 542.797608][ T5851] usb 3-1: USB disconnect, device number 11 [ 543.821473][ T9814] netlink: 91 bytes leftover after parsing attributes in process `syz.4.1379'. [ 543.847948][ T9815] loop2: detected capacity change from 0 to 512 [ 543.915720][ T9815] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 544.194103][ T9815] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback. [ 544.207394][ T9815] ext4 filesystem being mounted at /301/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 544.543751][ T9815] Quota error (device loop2): do_check_range: Getting dqdh_next_free 4294967294 out of range 0-8 [ 544.555691][ T9815] Quota error (device loop2): qtree_write_dquot: Error -117 occurred while creating quota [ 544.566258][ T9815] EXT4-fs error (device loop2): ext4_acquire_dquot:6945: comm syz.2.1381: Failed to acquire dquot type 0 [ 545.057705][ T9831] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1384'. [ 545.265980][ T5799] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000d40000. [ 546.005630][ T9832] loop9: detected capacity change from 0 to 4096 [ 546.082885][ T9844] loop6: detected capacity change from 0 to 65 [ 546.170200][ T9844] BFS-fs: bfs_fill_super(): NOTE: filesystem loop6 was created with 512 inodes, the real maximum is 511, mounting anyway [ 550.647830][ T9899] loop6: detected capacity change from 0 to 1024 [ 550.792205][ T9903] netlink: 36 bytes leftover after parsing attributes in process `syz.2.1410'. [ 551.180193][ T9910] tap0: tun_chr_ioctl cmd 2147767517 [ 551.558142][ T3654] hfsplus: b-tree write err: -5, ino 4 [ 553.161785][ T9930] loop9: detected capacity change from 0 to 1024 [ 554.331321][ T8791] usb 9-1: new high-speed USB device number 4 using dummy_hcd [ 554.556278][ T9946] netlink: 'syz.6.1426': attribute type 21 has an invalid length. [ 554.584881][ T8791] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 554.596580][ T8791] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 554.606798][ T8791] usb 9-1: New USB device found, idVendor=24b8, idProduct=0040, bcdDevice= 0.00 [ 554.616368][ T8791] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 554.827445][ T8791] usb 9-1: config 0 descriptor?? [ 555.335733][ T8791] hid-generic 0003:24B8:0040.0014: unknown main item tag 0x0 [ 555.340516][ T9952] netlink: 8 bytes leftover after parsing attributes in process `syz.9.1428'. [ 555.350211][ T8791] hid-generic 0003:24B8:0040.0014: unknown main item tag 0x0 [ 555.361726][ T8791] hid-generic 0003:24B8:0040.0014: unknown main item tag 0x6 [ 555.383543][ T9954] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 555.602339][ T8791] hid-generic 0003:24B8:0040.0014: hidraw0: USB HID v0.00 Device [HID 24b8:0040] on usb-dummy_hcd.8-1/input0 [ 555.725470][ T8791] usb 9-1: USB disconnect, device number 4 [ 556.413488][ T9967] loop9: detected capacity change from 0 to 128 [ 556.580012][ T9961] fido_id[9961]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.8/usb9/report_descriptor': No such file or directory [ 556.606168][ T9969] overlayfs: missing 'lowerdir' [ 556.631580][ T9967] hpfs: filesystem error: invalid number of hotfixes: 2066844986, used: 2066844985; going on - but anything won't be destroyed because it's read-only [ 556.729660][ T9967] hpfs: filesystem error: improperly stopped [ 556.735916][ T9967] hpfs: filesystem error: warning: spare dnodes used, try chkdsk [ 556.744188][ T9967] hpfs: Proceeding, but your filesystem could be corrupted if you delete files or directories [ 556.754854][ T9967] hpfs: You really don't want any checks? You are crazy... [ 556.928637][ T9967] hpfs: hpfs_map_sector(): read error [ 556.934370][ T9967] hpfs: code page support is disabled [ 557.029888][ T9967] hpfs: hpfs_map_4sectors(): unaligned read [ 557.036216][ T9967] hpfs: hpfs_map_4sectors(): unaligned read [ 557.042669][ T9967] hpfs: filesystem error: unable to find root dir [ 557.328061][ T9967] hpfs: hpfs_map_4sectors(): unaligned read [ 558.279311][ T9990] loop2: detected capacity change from 0 to 128 [ 558.472711][ T9990] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 558.577152][ T9990] ext4 filesystem being mounted at /313/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 559.597579][ T5799] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 559.618047][T10005] netlink: 28 bytes leftover after parsing attributes in process `syz.9.1446'. [ 559.628042][T10005] netlink: 28 bytes leftover after parsing attributes in process `syz.9.1446'. [ 560.312223][T10011] loop2: detected capacity change from 0 to 256 [ 560.463721][T10011] exFAT-fs (loop2): failed to load upcase table (idx : 0x00011a39, chksum : 0xd54015fb, utbl_chksum : 0xe619d30d) [ 560.949404][ T9999] Bluetooth: hci0: Opcode 0x0c1a failed: -110 [ 560.951111][ T5812] Bluetooth: hci0: command 0x0406 tx timeout [ 561.946320][T10030] loop4: detected capacity change from 0 to 65 [ 562.059203][T10030] BFS-fs: bfs_fill_super(): loop4 is unclean, continuing [ 562.066432][T10030] BFS-fs: bfs_fill_super(): NOTE: filesystem loop4 was created with 512 inodes, the real maximum is 511, mounting anyway [ 564.121546][T10057] netlink: 132 bytes leftover after parsing attributes in process `syz.4.1467'. [ 564.974307][ T5812] Bluetooth: hci2: unexpected event for opcode 0x2016 [ 565.078465][T10072] kvm: user requested TSC rate below hardware speed [ 565.802111][T10083] loop9: detected capacity change from 0 to 256 [ 566.090549][T10075] loop8: detected capacity change from 0 to 4096 [ 566.515586][T10075] ntfs3(loop8): Mark volume as dirty due to NTFS errors [ 566.549281][T10075] ntfs3(loop8): Failed to load $Extend (-22). [ 566.555791][T10075] ntfs3(loop8): Failed to initialize $Extend. [ 568.459621][T10105] loop9: detected capacity change from 0 to 256 [ 568.532029][T10105] exfat: Deprecated parameter 'utf8' [ 568.780398][T10105] exFAT-fs (loop9): failed to load upcase table (idx : 0x00010000, chksum : 0xbe649ead, utbl_chksum : 0xe619d30d) [ 568.967414][ T5851] kernel write not supported for file /admmidi2 (pid: 5851 comm: kworker/0:3) [ 569.149798][ T8791] usb 5-1: new full-speed USB device number 9 using dummy_hcd [ 569.344199][T10108] loop8: detected capacity change from 0 to 4096 [ 569.401798][ T8791] usb 5-1: config 0 has an invalid interface number: 128 but max is 0 [ 569.410442][ T8791] usb 5-1: config 0 has no interface number 0 [ 569.476022][ T8791] usb 5-1: New USB device found, idVendor=20b7, idProduct=1540, bcdDevice=b7.5a [ 569.485736][ T8791] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 569.494279][ T8791] usb 5-1: Product: syz [ 569.498623][ T8791] usb 5-1: Manufacturer: syz [ 569.503596][ T8791] usb 5-1: SerialNumber: syz [ 569.613913][T10116] NILFS (loop8): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 569.628397][ T8791] usb 5-1: config 0 descriptor?? [ 569.786922][T10115] loop9: detected capacity change from 0 to 512 [ 569.908005][T10115] FAT-fs (loop9): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 570.125858][ T8791] usb 5-1: Firmware: major: 161, minor: 3, hardware type: RZUSB (3) [ 570.340113][ T8791] usb 5-1: failed to fetch extended address, random address set [ 570.628990][ T8791] usb 5-1: USB disconnect, device number 9 [ 573.926601][T10161] loop6: detected capacity change from 0 to 512 [ 574.014951][T10168] loop8: detected capacity change from 0 to 512 [ 574.043953][T10161] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode [ 574.081157][T10168] FAT-fs (loop8): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 574.160641][T10161] EXT4-fs error (device loop6): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 214 vs 220 free clusters [ 574.209721][T10161] EXT4-fs (loop6): 1 truncate cleaned up [ 574.213212][ T30] audit: type=1800 audit(1760035306.527:50): pid=10168 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.8.1517" name="file1" dev="loop8" ino=1048713 res=0 errno=0 [ 574.217708][T10161] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 574.879774][ T7518] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 576.154158][T10183] loop6: detected capacity change from 0 to 4096 [ 576.165905][T10190] loop8: detected capacity change from 0 to 1764 [ 576.220948][T10183] ntfs3(loop6): Different NTFS sector size (2048) and media sector size (512). [ 576.669917][T10183] ntfs3(loop6): Failed to initialize $Extend/$ObjId. [ 578.566335][T10214] loop9: detected capacity change from 0 to 512 [ 578.673438][T10214] EXT4-fs error (device loop9): ext4_map_blocks:778: inode #2: block 3: comm syz.9.1537: lblock 0 mapped to illegal pblock 3 (length 1) [ 578.789745][T10214] EXT4-fs (loop9): Remounting filesystem read-only [ 578.796659][T10214] EXT4-fs warning (device loop9): dx_probe:791: inode #2: lblock 0: comm syz.9.1537: error -117 reading directory block [ 578.899436][T10214] EXT4-fs (loop9): Cannot turn on journaled quota: type 1: error -117 [ 578.910325][T10214] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 579.116961][T10214] EXT4-fs (loop9): shut down requested (2) [ 579.162002][T10214] EXT4-fs warning (device loop9): dx_probe:791: inode #2: lblock 0: comm syz.9.1537: error -117 reading directory block [ 579.672099][ T8413] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 580.208080][T10232] 8021q: VLANs not supported on ipvlan0 [ 580.786815][T10239] loop2: detected capacity change from 0 to 128 [ 581.143109][ T5154] udevd[5154]: worker [8329] terminated by signal 33 (Unknown signal 33) [ 581.189358][ T5154] udevd[5154]: worker [8329] failed while handling '/devices/virtual/block/loop2' [ 582.419702][T10258] netlink: 128 bytes leftover after parsing attributes in process `syz.9.1557'. [ 582.813762][ T30] audit: type=1326 audit(1760035315.117:51): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10265 comm="syz.6.1560" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f52539 code=0x7ffc0000 [ 582.954518][ T30] audit: type=1326 audit(1760035315.187:52): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10265 comm="syz.6.1560" exe="/root/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf7f52539 code=0x7ffc0000 [ 582.980102][ T30] audit: type=1326 audit(1760035315.187:53): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10265 comm="syz.6.1560" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f52539 code=0x7ffc0000 [ 583.005654][ T30] audit: type=1326 audit(1760035315.187:54): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10265 comm="syz.6.1560" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f52539 code=0x7ffc0000 [ 583.029109][ T30] audit: type=1326 audit(1760035315.197:55): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10265 comm="syz.6.1560" exe="/root/syz-executor" sig=0 arch=40000003 syscall=3 compat=1 ip=0xf7f52539 code=0x7ffc0000 [ 583.051553][ T30] audit: type=1326 audit(1760035315.197:56): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10265 comm="syz.6.1560" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f52539 code=0x7ffc0000 [ 583.074075][ T30] audit: type=1326 audit(1760035315.207:57): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10265 comm="syz.6.1560" exe="/root/syz-executor" sig=0 arch=40000003 syscall=19 compat=1 ip=0xf7f52539 code=0x7ffc0000 [ 583.099381][ T30] audit: type=1326 audit(1760035315.207:58): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10265 comm="syz.6.1560" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f52539 code=0x7ffc0000 [ 583.559432][T10272] loop9: detected capacity change from 0 to 128 [ 583.567269][T10271] loop2: detected capacity change from 0 to 512 [ 583.763358][ T30] audit: type=1800 audit(1760035316.077:59): pid=10272 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.9.1563" name="file1" dev="loop9" ino=1048715 res=0 errno=0 [ 583.806510][T10272] syz.9.1563: attempt to access beyond end of device [ 583.806510][T10272] loop9: rw=2049, sector=154, nr_sectors = 6 limit=128 [ 583.891070][T10272] syz.9.1563: attempt to access beyond end of device [ 583.891070][T10272] loop9: rw=2049, sector=158, nr_sectors = 2 limit=128 [ 583.910813][T10272] Buffer I/O error on dev loop9, logical block 79, lost async page write [ 583.921356][T10272] syz.9.1563: attempt to access beyond end of device [ 583.921356][T10272] loop9: rw=2049, sector=160, nr_sectors = 2 limit=128 [ 583.935188][T10272] Buffer I/O error on dev loop9, logical block 80, lost async page write [ 584.062206][T10272] syz.9.1563: attempt to access beyond end of device [ 584.062206][T10272] loop9: rw=2049, sector=162, nr_sectors = 6 limit=128 [ 584.100086][T10277] netlink: 28 bytes leftover after parsing attributes in process `syz.8.1565'. [ 584.135329][T10272] syz.9.1563: attempt to access beyond end of device [ 584.135329][T10272] loop9: rw=2049, sector=166, nr_sectors = 2 limit=128 [ 584.149832][T10272] Buffer I/O error on dev loop9, logical block 83, lost async page write [ 584.158474][T10272] syz.9.1563: attempt to access beyond end of device [ 584.158474][T10272] loop9: rw=2049, sector=168, nr_sectors = 2 limit=128 [ 584.172447][T10272] Buffer I/O error on dev loop9, logical block 84, lost async page write [ 584.421758][T10272] syz.9.1563: attempt to access beyond end of device [ 584.421758][T10272] loop9: rw=2049, sector=186, nr_sectors = 6 limit=128 [ 584.950746][ T5808] Bluetooth: hci4: command 0x0406 tx timeout [ 585.935870][T10295] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1573'. [ 586.065295][T10297] loop6: detected capacity change from 0 to 1024 [ 586.583199][ T4090] hfsplus: b-tree write err: -5, ino 4 [ 587.615595][T10316] loop8: detected capacity change from 0 to 64 [ 587.667336][T10316] BFS-fs: bfs_fill_super(): loop8 is unclean, continuing [ 588.417676][T10324] gfs2: not a GFS2 filesystem [ 588.690563][T10329] netlink: 8 bytes leftover after parsing attributes in process `syz.9.1588'. [ 589.224541][T10335] loop4: detected capacity change from 0 to 128 [ 589.254576][T10335] hpfs: filesystem error: invalid number of hotfixes: 2066844986, used: 2066844985; already mounted read-only [ 589.322816][T10335] hpfs: filesystem error: improperly stopped [ 589.329360][T10335] hpfs: filesystem error: warning: spare dnodes used, try chkdsk [ 589.342314][T10335] hpfs: You really don't want any checks? You are crazy... [ 589.367905][T10335] hpfs: hpfs_map_sector(): read error [ 589.373788][T10335] hpfs: code page support is disabled [ 589.382134][T10335] hpfs: hpfs_map_4sectors(): unaligned read [ 589.383123][ T5851] kernel read not supported for file /dsp (pid: 5851 comm: kworker/0:3) [ 589.388383][T10335] hpfs: hpfs_map_4sectors(): unaligned read [ 589.403381][T10335] hpfs: filesystem error: unable to find root dir [ 589.611968][T10332] loop6: detected capacity change from 0 to 4096 [ 589.660738][T10335] hpfs: hpfs_map_4sectors(): unaligned read [ 589.701692][T10332] ntfs3(loop6): Different NTFS sector size (4096) and media sector size (512). [ 590.036703][T10332] ntfs3(loop6): Failed to load $Extend (-22). [ 590.044335][T10332] ntfs3(loop6): Failed to initialize $Extend. [ 590.340575][T10343] program syz.2.1596 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 592.083529][T10361] overlayfs: workdir and upperdir must reside under the same mount [ 592.326226][T10364] loop9: detected capacity change from 0 to 512 [ 592.463133][T10365] loop6: detected capacity change from 0 to 1024 [ 592.620833][T10364] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 592.633985][T10364] ext4 filesystem being mounted at /119/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 592.742405][T10365] EXT4-fs (loop6): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none. [ 592.755186][T10365] ext4 filesystem being mounted at /181/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 593.039387][T10365] EXT4-fs error (device loop6): ext4_map_blocks:814: inode #15: block 3: comm syz.6.1607: lblock 3 mapped to illegal pblock 3 (length 3) [ 593.135977][ T1287] ieee802154 phy0 wpan0: encryption failed: -22 [ 593.142990][ T1287] ieee802154 phy1 wpan1: encryption failed: -22 [ 593.160731][T10365] EXT4-fs (loop6): Delayed block allocation failed for inode 15 at logical offset 3 with max blocks 3 with error 117 [ 593.173498][T10365] EXT4-fs (loop6): This should not happen!! Data will be lost [ 593.173498][T10365] [ 593.294224][ T8413] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 593.314686][T10365] EXT4-fs error (device loop6): ext4_ext_remove_space:2955: inode #15: comm syz.6.1607: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 2, max 4(4), depth 0(0) [ 593.364545][T10365] EXT4-fs error (device loop6) in ext4_setattr:6042: Corrupt filesystem [ 593.478061][T10379] loop4: detected capacity change from 0 to 64 [ 593.621370][ T30] audit: type=1800 audit(1760035325.927:60): pid=10379 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.1611" name="file1" dev="loop4" ino=5 res=0 errno=0 [ 593.724771][ T30] audit: type=1804 audit(1760035325.987:61): pid=10379 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.4.1611" name="/newroot/361/file1/file1" dev="loop4" ino=5 res=1 errno=0 [ 593.947407][ T7518] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0006-0000-000000000000. [ 595.236410][T10397] misc userio: Can't change port type on an already running userio instance [ 595.242418][ T5851] usb 9-1: new high-speed USB device number 5 using dummy_hcd [ 595.434735][ T5851] usb 9-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 595.445695][ T5851] usb 9-1: config 0 has 1 interface, different from the descriptor's value: 3 [ 595.455065][ T5851] usb 9-1: New USB device found, idVendor=0489, idProduct=e057, bcdDevice= 0.00 [ 595.464521][ T5851] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 595.502904][ T5851] usb 9-1: config 0 descriptor?? [ 596.177769][ T5851] Bluetooth: Can't get version to change to load ram patch err [ 596.186480][ T5851] Bluetooth: Loading sysconfig file failed [ 596.198590][ T5851] ath3k 9-1:0.0: probe with driver ath3k failed with error -71 [ 596.301527][ T5851] usb 9-1: USB disconnect, device number 5 [ 596.408189][ T30] audit: type=1800 audit(1760035328.697:62): pid=10379 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.1611" name="file1" dev="loop4" ino=5 res=0 errno=0 [ 600.565071][T10445] loop8: detected capacity change from 0 to 8 [ 600.577758][T10447] netlink: 36 bytes leftover after parsing attributes in process `syz.2.1641'. [ 603.460303][T10472] loop4: detected capacity change from 0 to 512 [ 603.614013][T10472] EXT4-fs warning (device loop4): ext4_xattr_inode_get:546: inode #11: comm syz.4.1652: ea_inode file size=0 entry size=6 [ 603.628210][T10472] ------------[ cut here ]------------ [ 603.634059][T10472] EA inode 11 i_nlink=2 [ 603.634925][T10472] WARNING: CPU: 0 PID: 10472 at fs/ext4/xattr.c:1058 ext4_xattr_inode_update_ref+0x711/0x900 [ 603.650211][T10472] Modules linked in: [ 603.654323][T10472] CPU: 0 UID: 0 PID: 10472 Comm: syz.4.1652 Not tainted syzkaller #0 PREEMPT(none) [ 603.664228][T10472] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 603.680697][T10472] RIP: 0010:ext4_xattr_inode_update_ref+0x711/0x900 [ 603.687598][T10472] Code: 00 00 00 00 4d 85 ed 0f 85 e6 01 00 00 45 85 ff 0f 85 ee 01 00 00 48 c7 c7 60 d9 99 91 48 8b 75 d0 8b 55 c0 e8 f0 38 de fd 90 <0f> 0b 90 90 4c 8b 6d a8 4c 8b 75 c8 4c 8b 7d b0 e9 6c fe ff ff e8 [ 603.710277][T10472] RSP: 0018:ffff8880452c7150 EFLAGS: 00010287 [ 603.716702][T10472] RAX: ffffffff812080ae RBX: ffff88806ccc2ca0 RCX: 0000000000080000 [ 603.725288][T10472] RDX: ffffc90009405000 RSI: 000000000000539f RDI: 00000000000053a0 [ 603.733621][T10472] RBP: ffff8880452c71d8 R08: ffffea000000000f R09: 0000000000000000 [ 603.742158][T10472] R10: ffff888237c8c028 R11: ffff88823f275c80 R12: 0000000000000000 [ 603.751297][T10472] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 603.759625][T10472] FS: 0000000000000000(0000) GS:ffff8881aaf7f000(0063) knlGS:00000000f54b6b40 [ 603.774683][T10472] CS: 0010 DS: 002b ES: 002b CR0: 0000000080050033 [ 603.783246][T10472] CR2: 0000000057ce34c0 CR3: 00000000595f6000 CR4: 00000000003526f0 [ 603.791613][T10472] Call Trace: [ 603.795035][T10472] [ 603.798136][T10472] ext4_xattr_inode_dec_ref_all+0xf57/0x1670 [ 603.804766][T10472] ? __ext4_journal_get_write_access+0x46b/0x900 [ 603.811607][T10472] ext4_xattr_delete_inode+0xd0d/0x14b0 [ 603.817450][T10472] ext4_evict_inode+0x1dc9/0x2480 [ 603.822990][T10472] ? __pfx_ext4_evict_inode+0x10/0x10 [ 603.828652][T10472] evict+0x6fd/0xd00 [ 603.833730][T10472] ? kmsan_get_metadata+0xfb/0x160 [ 603.839340][T10472] iput+0xba3/0xfa0 [ 603.843414][T10472] ext4_process_orphan+0x49a/0x520 [ 603.849045][T10472] ext4_orphan_cleanup+0x10a6/0x1e30 [ 603.854628][T10472] ext4_fill_super+0xa788/0xb010 [ 603.860192][T10472] get_tree_bdev_flags+0x6e6/0x920 [ 603.865562][T10472] ? __pfx_ext4_fill_super+0x10/0x10 [ 603.877271][T10472] ? __pfx_ext4_fill_super+0x10/0x10 [ 603.884552][T10472] ? __pfx_ext4_get_tree+0x10/0x10 [ 603.890169][T10472] get_tree_bdev+0x38/0x50 [ 603.894834][T10472] ext4_get_tree+0x35/0x40 [ 603.899668][T10472] vfs_get_tree+0xb0/0x5c0 [ 603.904342][T10472] do_new_mount+0x839/0x15f0 [ 603.909495][T10472] ? kmsan_get_metadata+0xfb/0x160 [ 603.914917][T10472] path_mount+0x747/0x1fb0 [ 603.920085][T10472] __se_sys_mount+0x6f7/0x7e0 [ 603.925058][T10472] __ia32_sys_mount+0xe2/0x150 [ 603.930359][T10472] ia32_sys_call+0x2c16/0x4310 [ 603.935417][T10472] __do_fast_syscall_32+0xb0/0x150 [ 603.940929][T10472] ? irqentry_exit_to_user_mode+0x7f/0xa0 [ 603.946974][T10472] do_fast_syscall_32+0x38/0x80 [ 603.952376][T10472] do_SYSENTER_32+0x1f/0x30 [ 603.957112][T10472] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 603.963895][T10472] RIP: 0023:0xf7fc4539 [ 603.968172][T10472] Code: 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 [ 603.971313][T10465] loop6: detected capacity change from 0 to 8192 [ 603.994548][T10472] RSP: 002b:00000000f54b63b0 EFLAGS: 00000206 ORIG_RAX: 0000000000000015 [ 603.994712][T10472] RAX: ffffffffffffffda RBX: 00000000f54b6410 RCX: 00000000800001c0 [ 603.994816][T10472] RDX: 0000000080000180 RSI: 0000000000800700 RDI: 00000000f54b6450 [ 603.994914][T10472] RBP: 00000000f54b6410 R08: 0000000000000000 R09: 0000000000000000 [ 603.995014][T10472] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000 [ 603.995104][T10472] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 603.995227][T10472] [ 603.995283][T10472] ---[ end trace 0000000000000000 ]--- [ 603.996020][T10472] EXT4-fs (loop4): 1 orphan inode deleted [ 603.998102][T10472] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 604.429182][ T30] audit: type=1804 audit(1760035336.727:63): pid=10465 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.6.1648" name="/newroot/190/file2/bus" dev="loop6" ino=1048720 res=1 errno=0 [ 604.454982][ T30] audit: type=1800 audit(1760035336.727:64): pid=10465 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.6.1648" name="bus" dev="loop6" ino=1048720 res=0 errno=0 [ 604.865272][ T5806] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 605.018654][T10482] netlink: 4 bytes leftover after parsing attributes in process `syz.9.1655'. [ 606.171310][T10494] netlink: 332 bytes leftover after parsing attributes in process `syz.9.1659'. [ 606.183674][T10494] netlink: 160 bytes leftover after parsing attributes in process `syz.9.1659'. [ 607.604698][T10512] loop9: detected capacity change from 0 to 8 [ 607.685097][T10512] SQUASHFS error: zlib decompression failed, data probably corrupt [ 607.693881][T10512] SQUASHFS error: Failed to read block 0x9b: -5 [ 607.700497][T10512] SQUASHFS error: Unable to read metadata cache entry [99] [ 607.707861][T10512] SQUASHFS error: Unable to read inode 0x127 [ 607.760222][T10515] netlink: 360 bytes leftover after parsing attributes in process `syz.6.1669'. [ 608.197654][T10519] netlink: 4 bytes leftover after parsing attributes in process `syz.8.1671'. [ 608.492425][ T24] usb 5-1: new low-speed USB device number 10 using dummy_hcd [ 608.707547][ T24] usb 5-1: config 1 interface 0 altsetting 1 endpoint 0x1 is Bulk; changing to Interrupt [ 608.718042][ T24] usb 5-1: config 1 interface 0 altsetting 1 endpoint 0x82 is Bulk; changing to Interrupt [ 608.731217][ T24] usb 5-1: config 1 interface 0 has no altsetting 0 [ 608.836101][ T24] usb 5-1: string descriptor 0 read error: -22 [ 608.843279][ T24] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40 [ 608.855430][ T24] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 608.985018][T10518] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22 [ 609.021739][T10518] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22 [ 609.412478][ T5851] usb 5-1: USB disconnect, device number 10 [ 609.644157][T10530] loop9: detected capacity change from 0 to 512 [ 609.802181][T10530] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 609.820159][T10530] ext4 filesystem being mounted at /134/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 609.886379][T10530] EXT4-fs (loop9): re-mounted 00000000-0000-0000-0000-000000000000 ro. [ 610.124992][T10530] EXT4-fs: Ignoring sb option on remount [ 610.131267][T10530] EXT4-fs: Ignoring removed orlov option [ 610.137546][T10530] EXT4-fs: Remounting file system with no journal so ignoring journalled data option [ 610.147515][T10530] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 610.238758][T10530] EXT4-fs (loop9): re-mounted 00000000-0000-0000-0000-000000000000 r/w. [ 610.257221][T10527] loop8: detected capacity change from 0 to 4096 [ 610.352155][T10527] ntfs3(loop8): Different NTFS sector size (4096) and media sector size (512). [ 610.481052][ T8413] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 610.784912][T10527] ntfs3(loop8): Mark volume as dirty due to NTFS errors [ 610.820884][T10527] ntfs3(loop8): Failed to load $Extend (-22). [ 610.827327][T10527] ntfs3(loop8): Failed to initialize $Extend. [ 612.887952][T10566] loop6: detected capacity change from 0 to 512 [ 613.050973][T10566] FAT-fs (loop6): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 613.593819][T10574] netlink: 24 bytes leftover after parsing attributes in process `syz.4.1692'. [ 615.215451][T10589] overlayfs: failed lookup in lower (/, name='file0', err=-66): unsupported object type [ 615.929337][T10596] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1702'. [ 616.432637][ T8791] usb 7-1: new high-speed USB device number 7 using dummy_hcd [ 616.682217][ T8791] usb 7-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xA1, changing to 0x81 [ 616.694109][ T8791] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 616.705560][ T8791] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 616.719905][ T8791] usb 7-1: New USB device found, idVendor=054c, idProduct=024b, bcdDevice= 0.00 [ 616.731496][ T8791] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 616.756566][ T8791] usb 7-1: config 0 descriptor?? [ 617.233618][ T8791] sony 0003:054C:024B.0015: unexpected long global item [ 617.279933][ T8791] sony 0003:054C:024B.0015: parse failed [ 617.292944][ T8791] sony 0003:054C:024B.0015: probe with driver sony failed with error -22 [ 617.500831][ T5851] usb 7-1: USB disconnect, device number 7 [ 618.256718][T10614] loop9: detected capacity change from 0 to 8192 [ 618.389865][T10614] FAT-fs (loop9): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 618.524852][T10623] loop8: detected capacity change from 0 to 256 [ 618.581964][T10623] exfat: Deprecated parameter 'namecase' [ 618.588743][T10623] exfat: Deprecated parameter 'utf8' [ 618.594791][T10623] exfat: Deprecated parameter 'utf8' [ 618.801691][T10623] exFAT-fs (loop8): failed to load upcase table (idx : 0x00010000, chksum : 0x5441951d, utbl_chksum : 0xe619d30d) [ 619.861850][T10636] loop6: detected capacity change from 0 to 512 [ 620.193327][T10640] loop8: detected capacity change from 0 to 512 [ 620.372946][T10640] FAT-fs (loop8): Invalid FSINFO signature: 0x41615252, 0x61000000 (sector = 1) [ 621.419954][ T8791] usb 10-1: new high-speed USB device number 7 using dummy_hcd [ 621.640015][ T8791] usb 10-1: Using ep0 maxpacket: 8 [ 621.708998][ T8791] usb 10-1: New USB device found, idVendor=0867, idProduct=9812, bcdDevice=94.07 [ 621.721731][ T8791] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 621.730177][ T8791] usb 10-1: Product: syz [ 621.734609][ T8791] usb 10-1: Manufacturer: syz [ 621.739677][ T8791] usb 10-1: SerialNumber: syz [ 621.845783][ T8791] usb 10-1: config 0 descriptor?? [ 621.963195][ T8791] comedi comedi5: Wrong number of endpoints [ 621.969460][ T8791] dt9812 10-1:0.0: driver 'dt9812' failed to auto-configure device. [ 622.186547][ T8791] usb 10-1: USB disconnect, device number 7 [ 622.290903][T10664] loop2: detected capacity change from 0 to 64 [ 622.302346][T10662] loop4: detected capacity change from 0 to 16 [ 622.367239][T10662] erofs (device loop4): mounted with root inode @ nid 36. [ 622.499498][T10662] syz.4.1731: attempt to access beyond end of device [ 622.499498][T10662] loop4: rw=0, sector=48, nr_sectors = 16 limit=16 [ 622.518192][T10662] erofs (device loop4): read error -5 @ 43 of nid 36 [ 623.220678][T10672] vlan2: entered allmulticast mode [ 623.231209][T10672] hsr0: entered allmulticast mode [ 623.236432][T10672] hsr_slave_0: entered allmulticast mode [ 623.244060][T10672] hsr_slave_1: entered allmulticast mode [ 623.490985][T10662] syz.4.1731 (10662): drop_caches: 2 [ 624.169566][ T8791] usb 10-1: new high-speed USB device number 8 using dummy_hcd [ 624.373120][ T8791] usb 10-1: Using ep0 maxpacket: 16 [ 624.432259][ T8791] usb 10-1: config 0 has no interfaces? [ 624.477710][ T8791] usb 10-1: New USB device found, idVendor=0d8c, idProduct=000e, bcdDevice=8e.8f [ 624.485794][T10681] loop2: detected capacity change from 0 to 128 [ 624.487298][ T8791] usb 10-1: New USB device strings: Mfr=0, Product=24, SerialNumber=3 [ 624.505053][ T8791] usb 10-1: Product: syz [ 624.509606][ T8791] usb 10-1: SerialNumber: syz [ 624.630247][ T8791] usb 10-1: config 0 descriptor?? [ 624.699655][T10683] tap0: tun_chr_ioctl cmd 1074025677 [ 624.705864][T10683] tap0: linktype set to 256 [ 624.729712][ T30] audit: type=1800 audit(1760035357.027:65): pid=10681 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.1740" name="file1" dev="loop2" ino=1048723 res=0 errno=0 [ 624.840541][T10681] FAT-fs (loop2): error, invalid access to FAT (entry 0x0fff0000) [ 624.850500][T10681] FAT-fs (loop2): Filesystem has been set read-only [ 624.899547][T10681] FAT-fs (loop2): error, invalid access to FAT (entry 0x0fff0000) [ 624.922496][ T8791] usb 10-1: USB disconnect, device number 8 [ 625.263111][T10681] syz.2.1740: attempt to access beyond end of device [ 625.263111][T10681] loop2: rw=2049, sector=225, nr_sectors = 56 limit=128 [ 625.450512][T10687] input: syz1 as /devices/virtual/input/input16 [ 625.471784][T10689] bridge0: port 2(bridge_slave_1) entered disabled state [ 626.208055][T10699] loop9: detected capacity change from 0 to 256 [ 630.538717][ T30] audit: type=1326 audit(1760035362.837:66): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10739 comm="syz.4.1766" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc4539 code=0x7ffc0000 [ 630.565556][ T30] audit: type=1326 audit(1760035362.857:67): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10739 comm="syz.4.1766" exe="/root/syz-executor" sig=0 arch=40000003 syscall=165 compat=1 ip=0xf7fc4539 code=0x7ffc0000 [ 630.589512][ T30] audit: type=1326 audit(1760035362.857:68): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10739 comm="syz.4.1766" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc4539 code=0x7ffc0000 [ 630.590495][T10740] netlink: 56 bytes leftover after parsing attributes in process `syz.4.1766'. [ 630.619064][ T30] audit: type=1326 audit(1760035362.857:69): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10739 comm="syz.4.1766" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc4539 code=0x7ffc0000 [ 630.627900][T10740] netlink: 56 bytes leftover after parsing attributes in process `syz.4.1766'. [ 630.652963][ T30] audit: type=1326 audit(1760035362.867:70): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10739 comm="syz.4.1766" exe="/root/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf7fc4539 code=0x7ffc0000 [ 630.679978][ T30] audit: type=1326 audit(1760035362.867:71): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10739 comm="syz.4.1766" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc4539 code=0x7ffc0000 [ 630.706998][ T30] audit: type=1326 audit(1760035362.867:72): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10739 comm="syz.4.1766" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc4539 code=0x7ffc0000 [ 630.735883][ T30] audit: type=1326 audit(1760035362.907:73): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10739 comm="syz.4.1766" exe="/root/syz-executor" sig=0 arch=40000003 syscall=370 compat=1 ip=0xf7fc4539 code=0x7ffc0000 [ 631.247424][ T30] audit: type=1326 audit(1760035363.127:74): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10739 comm="syz.4.1766" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc4539 code=0x7ffc0000 [ 631.364888][T10749] ip_tunnel: non-ECT from 172.20.20.187 with TOS=0x2 [ 631.407208][T10743] ip_tunnel: non-ECT from 172.20.20.187 with TOS=0x2 [ 631.414475][T10743] ip_tunnel: non-ECT from 172.20.20.187 with TOS=0x2 [ 631.421724][T10743] ip_tunnel: non-ECT from 172.20.20.187 with TOS=0x2 [ 631.428752][T10743] ip_tunnel: non-ECT from 172.20.20.187 with TOS=0x2 [ 631.436038][T10743] ip_tunnel: non-ECT from 172.20.20.187 with TOS=0x2 [ 631.443300][T10743] ip_tunnel: non-ECT from 172.20.20.187 with TOS=0x2 [ 631.450570][T10743] ip_tunnel: non-ECT from 172.20.20.187 with TOS=0x2 [ 631.457763][T10743] ip_tunnel: non-ECT from 172.20.20.187 with TOS=0x2 [ 631.464999][T10743] ip_tunnel: non-ECT from 172.20.20.187 with TOS=0x2 [ 633.690000][T10764] loop9: detected capacity change from 0 to 4096 [ 633.753292][T10764] ntfs3(loop9): Different NTFS sector size (4096) and media sector size (512). [ 634.239628][T10764] ntfs3(loop9): ino=19, mi_enum_attr [ 634.245167][T10764] ntfs3(loop9): Mark volume as dirty due to NTFS errors [ 634.521921][T10770] loop8: detected capacity change from 0 to 2048 [ 634.642549][ T6064] Alternate GPT is invalid, using primary GPT. [ 634.651163][ T6064] loop8: p2 p3 p7 [ 635.093396][T10770] Alternate GPT is invalid, using primary GPT. [ 635.101814][T10770] loop8: p2 p3 p7 [ 637.055929][T10788] erspan0: entered promiscuous mode [ 637.146103][ T6064] udevd[6064]: inotify_add_watch(7, /dev/loop8p2, 10) failed: No such file or directory [ 637.218470][ T6248] udevd[6248]: inotify_add_watch(7, /dev/loop8p7, 10) failed: No such file or directory [ 637.233484][ T5976] udevd[5976]: inotify_add_watch(7, /dev/loop8p3, 10) failed: No such file or directory [ 637.626072][T10791] loop6: detected capacity change from 0 to 512 [ 637.659977][ T6064] udevd[6064]: inotify_add_watch(7, /dev/loop8p2, 10) failed: No such file or directory [ 637.694738][ T6248] udevd[6248]: inotify_add_watch(7, /dev/loop8p7, 10) failed: No such file or directory [ 637.723374][ T5976] udevd[5976]: inotify_add_watch(7, /dev/loop8p3, 10) failed: No such file or directory [ 637.883400][T10791] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 637.899538][T10791] ext4 filesystem being mounted at /221/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 638.003658][T10798] syz.8.1790 uses obsolete (PF_INET,SOCK_PACKET) [ 638.636489][ T7518] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 639.648049][ T8791] usb 10-1: new high-speed USB device number 9 using dummy_hcd [ 639.883411][ T8791] usb 10-1: config 0 interface 0 altsetting 251 endpoint 0x9 has invalid wMaxPacketSize 0 [ 639.893742][ T8791] usb 10-1: config 0 interface 0 has no altsetting 0 [ 639.995803][ T8791] usb 10-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b [ 640.008546][ T8791] usb 10-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2 [ 640.017392][ T8791] usb 10-1: Product: syz [ 640.025824][ T8791] usb 10-1: Manufacturer: syz [ 640.034987][ T8791] usb 10-1: SerialNumber: syz [ 640.087725][ T8791] usb 10-1: config 0 descriptor?? [ 640.139922][ T8791] usb 10-1: selecting invalid altsetting 0 [ 640.511031][ T8791] usb 10-1: USB disconnect, device number 9 [ 640.897268][T10828] loop8: detected capacity change from 0 to 128 [ 640.950771][ T8327] udevd[8327]: error opening ATTR{/sys/devices/platform/dummy_hcd.9/usb10/10-1/10-1:0.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 641.490109][T10830] loop6: detected capacity change from 0 to 256 [ 641.585109][T10830] exfat: Deprecated parameter 'namecase' [ 641.594165][T10830] exfat: Deprecated parameter 'namecase' [ 641.600551][T10830] exfat: Deprecated parameter 'utf8' [ 641.777489][T10830] exFAT-fs (loop6): failed to load upcase table (idx : 0x00010000, chksum : 0x36dfe6b4, utbl_chksum : 0xe619d30d) [ 643.970275][ T5851] usb 7-1: new high-speed USB device number 8 using dummy_hcd [ 644.155636][ T5851] usb 7-1: Using ep0 maxpacket: 16 [ 644.183138][ T5851] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 644.194893][ T5851] usb 7-1: New USB device found, idVendor=04d8, idProduct=00df, bcdDevice= 0.00 [ 644.204415][ T5851] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 644.312873][ T5851] usb 7-1: config 0 descriptor?? [ 644.699696][T10867] loop9: detected capacity change from 0 to 256 [ 644.848275][ T5851] mcp2200 0003:04D8:00DF.0016: USB HID v0.05 Device [HID 04d8:00df] on usb-dummy_hcd.6-1/input0 [ 645.024531][T10867] exFAT-fs (loop9): failed to load upcase table (idx : 0x00010000, chksum : 0x36e00b20, utbl_chksum : 0xe619d30d) [ 645.401156][ T5851] usb 7-1: USB disconnect, device number 8 [ 645.745197][T10873] loop2: detected capacity change from 0 to 1024 [ 645.951513][T10873] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 645.969789][T10873] ext4 filesystem being mounted at /399/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 646.141363][T10877] loop4: detected capacity change from 0 to 1024 [ 646.246228][T10873] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 21 vs 268369941 free clusters [ 646.340301][T10873] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 16 with max blocks 16 with error 28 [ 646.353695][T10873] EXT4-fs (loop2): This should not happen!! Data will be lost [ 646.353695][T10873] [ 646.366530][T10873] EXT4-fs (loop2): Total free blocks count 0 [ 646.377731][T10873] EXT4-fs (loop2): Free/Dirty block details [ 646.385367][T10873] EXT4-fs (loop2): free_blocks=4293918720 [ 646.394278][T10873] EXT4-fs (loop2): dirty_blocks=64 [ 646.399827][T10873] EXT4-fs (loop2): Block reservation details [ 646.405979][T10873] EXT4-fs (loop2): i_reserved_data_blocks=4 [ 646.523087][ T30] audit: type=1804 audit(1760035378.817:75): pid=10883 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.1825" name="/newroot/399/file1/file1" dev="loop2" ino=15 res=1 errno=0 [ 647.073948][ T5799] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 647.341658][T10880] loop9: detected capacity change from 0 to 8192 [ 647.452592][T10880] FAT-fs (loop9): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 647.671907][T10885] loop6: detected capacity change from 0 to 4096 [ 647.982849][T10880] FAT-fs (loop9): error, fat_get_cluster: invalid cluster chain (i_pos 1052) [ 647.992241][T10880] FAT-fs (loop9): Filesystem has been set read-only [ 648.116651][T10880] FAT-fs (loop9): error, fat_get_cluster: invalid cluster chain (i_pos 1052) [ 648.190526][T10880] FAT-fs (loop9): error, fat_get_cluster: invalid cluster chain (i_pos 1052) [ 649.018606][T10896] loop8: detected capacity change from 0 to 256 [ 649.104393][T10896] exfat: Deprecated parameter 'utf8' [ 649.115008][ T8413] FAT-fs (loop9): error, fat_get_cluster: invalid cluster chain (i_pos 1052) [ 649.162236][T10901] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1837'. [ 649.350739][T10896] exFAT-fs (loop8): failed to load upcase table (idx : 0x00010000, chksum : 0xe3865569, utbl_chksum : 0xe619d30d) [ 649.961417][T10900] loop4: detected capacity change from 0 to 4096 [ 650.129594][T10900] ntfs3(loop4): Different NTFS sector size (1024) and media sector size (512). [ 650.693349][T10900] ntfs3(loop4): Mark volume as dirty due to NTFS errors [ 650.717033][T10911] loop8: detected capacity change from 0 to 512 [ 650.830871][T10911] EXT4-fs: Ignoring removed nobh option [ 650.990311][T10911] EXT4-fs error (device loop8): ext4_orphan_get:1392: inode #15: comm syz.8.1841: iget: bad i_size value: 38620345925642 [ 651.071169][T10911] EXT4-fs error (device loop8): ext4_orphan_get:1397: comm syz.8.1841: couldn't read orphan inode 15 (err -117) [ 651.164238][T10911] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 651.627364][T10919] loop6: detected capacity change from 0 to 2048 [ 651.858731][T10919] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 651.955721][T10918] loop2: detected capacity change from 0 to 4096 [ 652.062788][T10918] ntfs3(loop2): Different NTFS sector size (1024) and media sector size (512). [ 652.274760][ T8349] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 652.884882][ T3972] netdevsim netdevsim8 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 653.148499][ T3972] netdevsim netdevsim8 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 653.383296][ T3972] netdevsim netdevsim8 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 653.509668][ T3972] netdevsim netdevsim8 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 653.704155][T10933] loop9: detected capacity change from 0 to 256 [ 654.023869][T10933] exFAT-fs (loop9): failed to load upcase table (idx : 0x00011f3f, chksum : 0x96b62a4c, utbl_chksum : 0xe619d30d) [ 654.265086][ T3972] bridge_slave_1: left allmulticast mode [ 654.271092][ T3972] bridge_slave_1: left promiscuous mode [ 654.277682][ T3972] bridge0: port 2(bridge_slave_1) entered disabled state [ 654.413998][ T3972] bridge_slave_0: left allmulticast mode [ 654.420413][ T3972] bridge_slave_0: left promiscuous mode [ 654.427028][ T3972] bridge0: port 1(bridge_slave_0) entered disabled state [ 654.583504][ T1287] ieee802154 phy0 wpan0: encryption failed: -22 [ 654.592988][ T1287] ieee802154 phy1 wpan1: encryption failed: -22 [ 655.440893][ T3972] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 655.476942][ T3972] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 655.501539][ T3972] bond0 (unregistering): Released all slaves [ 656.169260][ T3972] hsr_slave_0: left promiscuous mode [ 656.212510][ T3972] hsr_slave_1: left promiscuous mode [ 656.221366][ T3972] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 656.229346][ T3972] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 656.323676][ T3972] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 656.332001][ T3972] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 656.427149][T10946] loop6: detected capacity change from 0 to 128 [ 656.490857][ T3972] veth1_macvtap: left promiscuous mode [ 656.496596][ T3972] veth0_macvtap: left promiscuous mode [ 656.502936][ T3972] veth1_vlan: left promiscuous mode [ 656.513834][ T3972] veth0_vlan: left promiscuous mode [ 656.650781][T10946] hpfs: filesystem error: invalid number of hotfixes: 2066844986, used: 2066844985; already mounted read-only [ 656.719768][T10946] hpfs: filesystem error: improperly stopped [ 656.726126][T10946] hpfs: filesystem error: warning: spare dnodes used, try chkdsk [ 656.734633][T10946] hpfs: You really don't want any checks? You are crazy... [ 656.757463][T10946] hpfs: hpfs_map_sector(): read error [ 656.770103][T10946] hpfs: code page support is disabled [ 656.878246][T10946] hpfs: hpfs_map_4sectors(): unaligned read [ 656.899442][T10946] hpfs: hpfs_map_4sectors(): unaligned read [ 656.905629][T10946] hpfs: filesystem error: unable to find root dir [ 657.132540][T10946] hpfs: filesystem error: invalid bitmap block pointer 00000000 -> 7b3184b5 at trim [ 657.601802][T10628] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 657.614930][T10628] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 657.626007][T10628] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 657.649745][T10628] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 657.669888][T10628] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 658.737811][ T3972] team0 (unregistering): Port device team_slave_1 removed [ 658.847514][ T3972] team0 (unregistering): Port device team_slave_0 removed [ 659.069680][T10944] netdevsim netdevsim9 netdevsim0: entered promiscuous mode [ 659.086543][T10944] netdevsim netdevsim9 netdevsim0: left promiscuous mode [ 659.749258][T10628] Bluetooth: hci3: command tx timeout [ 660.779955][T10987] loop4: detected capacity change from 0 to 512 [ 660.864846][T10987] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 661.100393][T10987] EXT4-fs error (device loop4): ext4_free_branches:1023: inode #11: comm syz.4.1869: invalid indirect mapped block 4294967295 (level 1) [ 661.120803][T10957] chnl_net:caif_netlink_parms(): no params data found [ 661.188054][T10991] netlink: 8 bytes leftover after parsing attributes in process `syz.6.1870'. [ 661.200988][T10991] netem: change failed [ 661.207487][T10987] EXT4-fs error (device loop4): ext4_free_branches:1023: inode #11: comm syz.4.1869: invalid indirect mapped block 4294967295 (level 1) [ 661.374259][T10987] EXT4-fs (loop4): 2 truncates cleaned up [ 661.385427][T10987] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 661.520350][T10993] trusted_key: encrypted_key: keyword 'load' not allowed when called from .update method [ 661.668104][T10995] Illegal XDP return value 4294967274 on prog (id 88) dev N/A, expect packet loss! [ 661.834692][T10628] Bluetooth: hci3: command tx timeout [ 662.436684][T11002] netlink: 'syz.9.1875': attribute type 15 has an invalid length. [ 662.846220][T11008] loop6: detected capacity change from 0 to 64 [ 663.245139][T10957] bridge0: port 1(bridge_slave_0) entered blocking state [ 663.255144][T10957] bridge0: port 1(bridge_slave_0) entered disabled state [ 663.268522][T10957] bridge_slave_0: entered allmulticast mode [ 663.279500][T10957] bridge_slave_0: entered promiscuous mode [ 663.391656][T10957] bridge0: port 2(bridge_slave_1) entered blocking state [ 663.399519][T10957] bridge0: port 2(bridge_slave_1) entered disabled state [ 663.407204][T10957] bridge_slave_1: entered allmulticast mode [ 663.420877][T11005] loop2: detected capacity change from 0 to 4096 [ 663.421353][T10957] bridge_slave_1: entered promiscuous mode [ 663.493098][T11005] ntfs3(loop2): Different NTFS sector size (1024) and media sector size (512). [ 663.892743][T10957] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 663.924715][T10628] Bluetooth: hci3: command tx timeout [ 664.005726][T10957] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 664.559869][T10957] team0: Port device team_slave_0 added [ 664.611929][T10957] team0: Port device team_slave_1 added [ 664.977276][T10957] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 664.987365][T10957] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 665.019594][T10957] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 665.178687][T10957] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 665.188729][T10957] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 665.221056][T10957] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 665.670442][T10989] EXT4-fs error (device loop4): ext4_validate_block_bitmap:432: comm ext4lazyinit: bg 0: block 5: invalid block bitmap [ 666.009770][T10628] Bluetooth: hci3: command tx timeout [ 666.026039][T10957] hsr_slave_0: entered promiscuous mode [ 666.040763][T10957] hsr_slave_1: entered promiscuous mode [ 666.052542][T10957] debugfs: 'hsr0' already exists in 'hsr' [ 666.058450][T10957] Cannot create hsr debugfs directory [ 666.256029][T11036] loop9: detected capacity change from 0 to 64 [ 666.348391][T11036] BFS-fs: bfs_fill_super(): loop9 is unclean, continuing [ 667.045143][T10021] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 667.894357][ T4245] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 668.173920][ T4245] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 668.218562][T11043] loop9: detected capacity change from 0 to 4096 [ 668.435259][ T4245] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 668.703040][ T4245] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 669.416425][ T4245] bridge_slave_1: left allmulticast mode [ 669.422418][ T4245] bridge_slave_1: left promiscuous mode [ 669.432363][ T4245] bridge0: port 2(bridge_slave_1) entered disabled state [ 669.494298][ T4245] bridge_slave_0: left allmulticast mode [ 669.500493][ T4245] bridge_slave_0: left promiscuous mode [ 669.507070][ T4245] bridge0: port 1(bridge_slave_0) entered disabled state [ 670.177326][ T4245] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 670.219919][ T4245] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 670.250763][ T4245] bond0 (unregistering): Released all slaves [ 670.276965][T10957] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 670.373255][T10957] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 670.430422][T10957] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 670.524293][ T4245] tipc: Disabling bearer [ 670.530258][ T4245] tipc: Left network mode [ 670.705706][T10957] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 671.350217][ T4245] hsr_slave_0: left promiscuous mode [ 671.429918][ T4245] hsr_slave_1: left promiscuous mode [ 671.437793][ T4245] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 671.445698][ T4245] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 671.551397][ T4245] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 671.632967][ T5812] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 671.670525][ T5812] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 671.691223][ T4245] veth1_macvtap: left promiscuous mode [ 671.696956][ T4245] veth0_macvtap: left promiscuous mode [ 671.703037][ T4245] veth1_vlan: left promiscuous mode [ 671.708452][ T4245] veth0_vlan: left promiscuous mode [ 671.734340][ T5812] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 671.781810][ T5812] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 671.803565][ T5812] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 672.980451][T11080] loop9: detected capacity change from 0 to 1024 [ 673.212683][ T4245] team0 (unregistering): Port device team_slave_1 removed [ 673.287806][ T4245] team0 (unregistering): Port device team_slave_0 removed [ 673.338420][T11085] netlink: 'syz.2.1903': attribute type 9 has an invalid length. [ 673.374789][T11080] hfsplus: can't free extent: start 2889, count 1 [ 673.910944][ T5812] Bluetooth: hci2: command tx timeout [ 674.617372][ T4245] netdevsim netdevsim6 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 674.802820][ T4245] netdevsim netdevsim6 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 675.017130][ T4245] netdevsim netdevsim6 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 675.184357][ T4245] netdevsim netdevsim6 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 675.744037][T10957] 8021q: adding VLAN 0 to HW filter on device bond0 [ 675.903553][ T4245] bridge_slave_1: left allmulticast mode [ 675.909542][ T4245] bridge_slave_1: left promiscuous mode [ 675.916044][ T4245] bridge0: port 2(bridge_slave_1) entered disabled state [ 675.989582][ T5812] Bluetooth: hci2: command tx timeout [ 675.996173][ T4245] bridge_slave_0: left allmulticast mode [ 676.003925][ T4245] bridge_slave_0: left promiscuous mode [ 676.013405][ T4245] bridge0: port 1(bridge_slave_0) entered disabled state [ 676.623501][ T4245] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 676.643567][ T4245] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 676.667042][ T4245] bond0 (unregistering): Released all slaves [ 676.755644][T11063] chnl_net:caif_netlink_parms(): no params data found [ 676.912377][T10957] 8021q: adding VLAN 0 to HW filter on device team0 [ 676.995799][ T1827] bridge0: port 1(bridge_slave_0) entered blocking state [ 677.003424][ T1827] bridge0: port 1(bridge_slave_0) entered forwarding state [ 677.160477][ T1827] bridge0: port 2(bridge_slave_1) entered blocking state [ 677.168003][ T1827] bridge0: port 2(bridge_slave_1) entered forwarding state [ 677.791049][T10628] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 677.809705][T10628] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 677.859166][T10628] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 677.884787][T10628] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 677.920760][T10628] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 677.963498][T11113] netlink: 'syz.2.1910': attribute type 83 has an invalid length. [ 678.016224][ T4245] hsr_slave_0: left promiscuous mode [ 678.040404][ T4245] hsr_slave_1: left promiscuous mode [ 678.048511][ T4245] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 678.056266][ T4245] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 678.069352][ T5812] Bluetooth: hci2: command tx timeout [ 678.124854][ T4245] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 678.136359][ T4245] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 678.167707][ T4245] veth1_macvtap: left promiscuous mode [ 678.173706][ T4245] veth0_macvtap: left promiscuous mode [ 678.181129][ T4245] veth1_vlan: left promiscuous mode [ 678.186666][ T4245] veth0_vlan: left promiscuous mode [ 679.280728][ T4245] team0 (unregistering): Port device team_slave_1 removed [ 679.321208][ T4245] team0 (unregistering): Port device team_slave_0 removed [ 680.027032][ T5812] Bluetooth: hci0: command tx timeout [ 680.153221][ T5812] Bluetooth: hci2: command tx timeout [ 680.247229][ T42] usb 3-1: new high-speed USB device number 12 using dummy_hcd [ 680.429068][ T42] usb 3-1: Using ep0 maxpacket: 8 [ 680.448112][ T42] usb 3-1: config 179 has an invalid interface number: 65 but max is 0 [ 680.457223][ T42] usb 3-1: config 179 has no interface number 0 [ 680.463847][ T42] usb 3-1: config 179 interface 65 altsetting 0 endpoint 0xF has an invalid bInterval 0, changing to 7 [ 680.477044][ T42] usb 3-1: config 179 interface 65 altsetting 0 endpoint 0xF has invalid maxpacket 1025, setting to 1024 [ 680.489362][ T42] usb 3-1: config 179 interface 65 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 7 [ 680.501172][ T42] usb 3-1: config 179 interface 65 altsetting 0 endpoint 0x83 has invalid maxpacket 41728, setting to 1024 [ 680.513021][ T42] usb 3-1: config 179 interface 65 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 23 [ 680.526700][ T42] usb 3-1: New USB device found, idVendor=12ab, idProduct=90a3, bcdDevice=1e.eb [ 680.536196][ T42] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 680.635315][T11134] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22 [ 680.802811][T11063] bridge0: port 1(bridge_slave_0) entered blocking state [ 680.812196][T11063] bridge0: port 1(bridge_slave_0) entered disabled state [ 680.821888][T11063] bridge_slave_0: entered allmulticast mode [ 680.848245][T11063] bridge_slave_0: entered promiscuous mode [ 681.091439][ T42] input: Generic X-Box pad as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:179.65/input/input17 [ 681.180092][T11063] bridge0: port 2(bridge_slave_1) entered blocking state [ 681.191580][T11063] bridge0: port 2(bridge_slave_1) entered disabled state [ 681.201297][T11063] bridge_slave_1: entered allmulticast mode [ 681.231753][T11063] bridge_slave_1: entered promiscuous mode [ 681.300870][ T5851] usb 3-1: USB disconnect, device number 12 [ 681.306225][ C1] xpad 3-1:179.65: xpad_irq_in - usb_submit_urb failed with result -19 [ 681.317564][ C1] dummy_hcd dummy_hcd.2: timer fired with no URBs pending? [ 681.617799][T11063] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 681.749926][T11063] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 681.934802][T11063] team0: Port device team_slave_0 added [ 681.968745][T11063] team0: Port device team_slave_1 added [ 682.044836][ T30] audit: type=1326 audit(1760035414.357:76): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11147 comm="syz.9.1916" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f63539 code=0x7ffc0000 [ 682.069056][ T30] audit: type=1326 audit(1760035414.357:77): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11147 comm="syz.9.1916" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f63539 code=0x7ffc0000 [ 682.102705][ T5812] Bluetooth: hci0: command tx timeout [ 682.141364][T11108] chnl_net:caif_netlink_parms(): no params data found [ 682.169461][ T30] audit: type=1326 audit(1760035414.417:78): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11147 comm="syz.9.1916" exe="/root/syz-executor" sig=0 arch=40000003 syscall=432 compat=1 ip=0xf7f63539 code=0x7ffc0000 [ 682.191991][ T30] audit: type=1326 audit(1760035414.417:79): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11147 comm="syz.9.1916" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f63539 code=0x7ffc0000 [ 682.215923][ T30] audit: type=1326 audit(1760035414.427:80): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11147 comm="syz.9.1916" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f63539 code=0x7ffc0000 [ 682.480069][T11063] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 682.487203][T11063] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 682.513688][T11063] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 682.592687][T11063] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 682.603847][T11063] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 682.632421][T11063] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 682.702846][T11155] loop2: detected capacity change from 0 to 256 [ 682.790624][T11155] FAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 683.076692][T10957] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 683.367487][T11063] hsr_slave_0: entered promiscuous mode [ 683.377845][T11063] hsr_slave_1: entered promiscuous mode [ 683.387465][T11063] debugfs: 'hsr0' already exists in 'hsr' [ 683.393555][T11063] Cannot create hsr debugfs directory [ 683.930821][T11169] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1919'. [ 684.003885][T11169] bond0: entered promiscuous mode [ 684.009417][T11169] bond_slave_0: entered promiscuous mode [ 684.016321][T11169] bond_slave_1: entered promiscuous mode [ 684.027990][T11169] bond0: left promiscuous mode [ 684.033108][T11169] bond_slave_0: left promiscuous mode [ 684.040059][T11169] bond_slave_1: left promiscuous mode [ 684.169030][ T5812] Bluetooth: hci0: command tx timeout [ 684.511122][T11108] bridge0: port 1(bridge_slave_0) entered blocking state [ 684.518656][T11108] bridge0: port 1(bridge_slave_0) entered disabled state [ 684.526805][T11108] bridge_slave_0: entered allmulticast mode [ 684.608285][T11108] bridge_slave_0: entered promiscuous mode [ 684.910300][T11177] loop2: detected capacity change from 0 to 128 [ 684.911392][T11108] bridge0: port 2(bridge_slave_1) entered blocking state [ 684.924478][T11108] bridge0: port 2(bridge_slave_1) entered disabled state [ 684.932513][T11108] bridge_slave_1: entered allmulticast mode [ 684.942408][T11108] bridge_slave_1: entered promiscuous mode [ 685.012380][T10957] veth0_vlan: entered promiscuous mode [ 685.020244][T11177] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 685.065157][T10957] veth1_vlan: entered promiscuous mode [ 685.335438][T11108] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 685.521840][T11108] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 685.554043][ T5799] FAT-fs (loop2): error, corrupted directory (invalid entries) [ 685.562722][ T5799] FAT-fs (loop2): Filesystem has been set read-only [ 685.609553][ T5799] FAT-fs (loop2): error, corrupted directory (invalid entries) [ 685.743960][T11108] team0: Port device team_slave_0 added [ 685.867910][T11108] team0: Port device team_slave_1 added [ 686.230075][ T5812] Bluetooth: hci0: command tx timeout [ 686.266335][T11108] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 686.274731][T11108] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 686.301248][T11108] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 686.394563][ T3905] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 686.515133][T11108] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 686.522455][T11108] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 686.549147][T11108] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 686.666534][ T3905] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 686.775235][T10957] veth0_macvtap: entered promiscuous mode [ 686.897780][ T3905] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 686.945830][T10957] veth1_macvtap: entered promiscuous mode [ 687.163843][ T3905] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 687.344321][T11108] hsr_slave_0: entered promiscuous mode [ 687.355315][T11108] hsr_slave_1: entered promiscuous mode [ 687.364614][T11108] debugfs: 'hsr0' already exists in 'hsr' [ 687.370737][T11108] Cannot create hsr debugfs directory [ 687.378077][T11063] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 687.423848][T11063] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 687.568078][T11063] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 687.620701][T11063] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 687.940795][T10957] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 688.175449][T10957] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 688.281354][ T3905] bridge_slave_1: left allmulticast mode [ 688.287298][ T3905] bridge_slave_1: left promiscuous mode [ 688.295765][ T3905] bridge0: port 2(bridge_slave_1) entered disabled state [ 688.349940][ T3905] bridge_slave_0: left allmulticast mode [ 688.358234][ T3905] bridge_slave_0: left promiscuous mode [ 688.365425][ T3905] bridge0: port 1(bridge_slave_0) entered disabled state [ 689.294225][ T3905] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 689.350280][ T3905] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 689.400187][ T3905] bond0 (unregistering): Released all slaves [ 689.415155][T11204] loop9: detected capacity change from 0 to 512 [ 689.445872][ T4162] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 689.577527][ T4162] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 689.770153][T10628] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 689.788590][T11204] EXT4-fs error (device loop9): ext4_xattr_inode_iget:446: comm syz.9.1927: error while reading EA inode 32 err=-116 [ 689.807446][ T4162] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 689.834863][T10628] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 689.846771][T10628] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 689.856935][T11204] EXT4-fs (loop9): Remounting filesystem read-only [ 689.864057][T11204] EXT4-fs (loop9): 1 orphan inode deleted [ 689.873411][T11204] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 689.914871][T10628] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 689.936760][T10628] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 689.993432][T11204] EXT4-fs (loop9): shut down requested (1) [ 690.036627][ T4162] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 690.217838][ T8413] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 690.979819][ T3905] hsr_slave_0: left promiscuous mode [ 690.999790][ T3905] hsr_slave_1: left promiscuous mode [ 691.007630][ T3905] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 691.021234][ T3905] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 691.077027][ T3905] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 691.084832][ T3905] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 691.146700][ T3905] veth1_macvtap: left promiscuous mode [ 691.153788][ T3905] veth0_macvtap: left promiscuous mode [ 691.160849][ T3905] veth1_vlan: left promiscuous mode [ 691.166393][ T3905] veth0_vlan: left promiscuous mode [ 691.966946][ T3905] team0 (unregistering): Port device team_slave_1 removed [ 692.006711][ T5812] Bluetooth: hci1: command tx timeout [ 692.022437][ T3905] team0 (unregistering): Port device team_slave_0 removed [ 693.122953][T11108] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 693.229362][T11108] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 693.310565][T11108] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 693.380798][T11108] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 693.479813][T11063] 8021q: adding VLAN 0 to HW filter on device bond0 [ 693.571524][T11208] chnl_net:caif_netlink_parms(): no params data found [ 693.855314][T11063] 8021q: adding VLAN 0 to HW filter on device team0 [ 693.982054][ T4245] bridge0: port 1(bridge_slave_0) entered blocking state [ 693.989641][ T4245] bridge0: port 1(bridge_slave_0) entered forwarding state [ 694.099360][ T5812] Bluetooth: hci1: command tx timeout [ 694.310057][ T4245] bridge0: port 2(bridge_slave_1) entered blocking state [ 694.317594][ T4245] bridge0: port 2(bridge_slave_1) entered forwarding state [ 694.676440][T11108] 8021q: adding VLAN 0 to HW filter on device bond0 [ 694.934256][T11108] 8021q: adding VLAN 0 to HW filter on device team0 [ 695.013982][ T3972] bridge0: port 1(bridge_slave_0) entered blocking state [ 695.021574][ T3972] bridge0: port 1(bridge_slave_0) entered forwarding state [ 695.177942][ T3972] bridge0: port 2(bridge_slave_1) entered blocking state [ 695.185527][ T3972] bridge0: port 2(bridge_slave_1) entered forwarding state [ 695.463569][T11264] Invalid logical block size (6) [ 695.468405][T11208] bridge0: port 1(bridge_slave_0) entered blocking state [ 695.480483][T11208] bridge0: port 1(bridge_slave_0) entered disabled state [ 695.488218][T11208] bridge_slave_0: entered allmulticast mode [ 695.497933][T11208] bridge_slave_0: entered promiscuous mode [ 695.676275][T11208] bridge0: port 2(bridge_slave_1) entered blocking state [ 695.685087][T11208] bridge0: port 2(bridge_slave_1) entered disabled state [ 695.693064][T11208] bridge_slave_1: entered allmulticast mode [ 695.702810][T11208] bridge_slave_1: entered promiscuous mode [ 696.152501][ T5812] Bluetooth: hci1: command tx timeout [ 696.196191][T11208] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 696.242782][T11208] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 696.546417][T11208] team0: Port device team_slave_0 added [ 696.640181][T11208] team0: Port device team_slave_1 added [ 697.044994][T11208] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 697.052318][T11208] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 697.079080][T11208] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 697.103840][T11063] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 697.246646][T11208] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 697.254519][T11208] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 697.281086][T11208] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 697.615285][T11063] veth0_vlan: entered promiscuous mode [ 697.644523][T11108] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 697.817019][T11063] veth1_vlan: entered promiscuous mode [ 697.952519][T11208] hsr_slave_0: entered promiscuous mode [ 697.962936][T11208] hsr_slave_1: entered promiscuous mode [ 698.235353][ T5812] Bluetooth: hci1: command tx timeout [ 698.459155][T11063] veth0_macvtap: entered promiscuous mode [ 698.571469][T11108] veth0_vlan: entered promiscuous mode [ 698.631460][T11063] veth1_macvtap: entered promiscuous mode [ 698.755071][T11108] veth1_vlan: entered promiscuous mode [ 698.926485][T11063] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 699.079848][ T24] usb 10-1: new high-speed USB device number 10 using dummy_hcd [ 699.085381][T11063] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 699.141651][ T3554] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 699.149889][ T3554] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 699.266569][ T24] usb 10-1: Using ep0 maxpacket: 16 [ 699.353374][ T24] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 699.365056][ T24] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 699.375270][ T24] usb 10-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 3 [ 699.388563][ T24] usb 10-1: New USB device found, idVendor=0955, idProduct=7214, bcdDevice=ed.00 [ 699.398128][ T24] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 699.463552][ T24] usb 10-1: config 0 descriptor?? [ 699.467274][ T4090] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 699.491533][ T1827] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 699.499758][ T1827] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 699.653671][ T4090] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 699.674126][T11108] veth0_macvtap: entered promiscuous mode [ 699.728236][ T4090] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 699.874651][ T4090] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 699.920409][T11108] veth1_macvtap: entered promiscuous mode [ 699.944833][T11296] random: crng reseeded on system resumption [ 700.124882][ T24] input: HID 0955:7214 Haptics as /devices/virtual/input/input18 [ 700.263179][ T24] shield 0003:0955:7214.0017: Registered Thunderstrike controller [ 700.275060][T11108] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 700.287011][ T24] shield 0003:0955:7214.0017: : USB HID v0.00 Device [HID 0955:7214] on usb-dummy_hcd.9-1/input0 [ 700.352847][T11108] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 700.497413][ T8791] shield 0003:0955:7214.0017: Failed to output Thunderstrike HOSTCMD request HID report due to -EPROTO [ 700.510407][ T8791] shield 0003:0955:7214.0017: Failed to output Thunderstrike HOSTCMD request HID report due to -EPROTO [ 700.528368][ T8791] shield 0003:0955:7214.0017: Failed to output Thunderstrike HOSTCMD request HID report due to -EPROTO [ 700.544768][ T8791] shield 0003:0955:7214.0017: Failed to output Thunderstrike HOSTCMD request HID report due to -EPROTO [ 700.581806][ T24] usb 10-1: USB disconnect, device number 10 [ 700.799279][ T3532] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 700.848086][ T3972] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 700.865856][T11208] netdevsim netdevsim5 netdevsim0: renamed from eth0 [ 700.990454][ T3972] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 701.011290][T11208] netdevsim netdevsim5 netdevsim1: renamed from eth1 [ 701.100615][ T3972] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 701.160662][T11208] netdevsim netdevsim5 netdevsim2: renamed from eth2 [ 701.257767][T11208] netdevsim netdevsim5 netdevsim3: renamed from eth3 [ 702.778527][T11208] 8021q: adding VLAN 0 to HW filter on device bond0 [ 703.053896][T11208] 8021q: adding VLAN 0 to HW filter on device team0 [ 703.175883][ T58] bridge0: port 1(bridge_slave_0) entered blocking state [ 703.183532][ T58] bridge0: port 1(bridge_slave_0) entered forwarding state [ 703.299795][ T58] bridge0: port 2(bridge_slave_1) entered blocking state [ 703.307327][ T58] bridge0: port 2(bridge_slave_1) entered forwarding state [ 703.526145][T11338] loop3: detected capacity change from 0 to 512 [ 703.680727][T11338] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 703.881622][T11338] EXT4-fs (loop3): 1 truncate cleaned up [ 703.889651][T11338] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 704.437964][T10957] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 705.150788][T11363] netlink: 4 bytes leftover after parsing attributes in process `syz.9.1946'. [ 705.644365][T11208] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 705.942889][T11371] loop3: detected capacity change from 0 to 1024 [ 706.030711][T11371] EXT4-fs: Ignoring removed orlov option [ 706.106244][T11371] EXT4-fs (loop3): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none. [ 706.119510][T11371] ext4 filesystem being mounted at /5/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 706.299450][ T30] audit: type=1800 audit(1760035438.597:81): pid=11371 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.1947" name="file1" dev="loop3" ino=15 res=0 errno=0 [ 706.321430][ T30] audit: type=1800 audit(1760035438.597:82): pid=11371 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.1947" name="file1" dev="loop3" ino=15 res=0 errno=0 [ 706.667822][T10957] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0006-0000-000000000000. [ 707.738476][T11394] loop3: detected capacity change from 0 to 2048 [ 707.835049][ T3654] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 707.843267][ T3654] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 708.061073][T11394] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 708.080127][ T3972] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 708.088271][ T3972] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 708.608698][T11344] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 0 vs 150994969 free clusters [ 708.655421][T11208] veth0_vlan: entered promiscuous mode [ 708.692485][T10957] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 708.723134][T11208] veth1_vlan: entered promiscuous mode [ 709.166579][T11208] veth0_macvtap: entered promiscuous mode [ 709.308658][ T3654] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 709.318105][ T3654] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 709.385298][T11208] veth1_macvtap: entered promiscuous mode [ 709.611067][T11208] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 709.764206][T11208] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 709.820072][ T3972] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 709.828228][ T3972] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 709.914818][ T3905] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 709.985487][ T3905] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 710.119751][ T3905] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 710.130422][ T3905] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 711.881158][T11436] loop0: detected capacity change from 0 to 136 [ 712.833264][T11426] loop1: detected capacity change from 0 to 8192 [ 714.599709][ T5854] usb 4-1: new full-speed USB device number 2 using dummy_hcd [ 714.828603][ T5854] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 714.843120][ T5854] usb 4-1: config 0 has 1 interface, different from the descriptor's value: 2 [ 714.852595][ T5854] usb 4-1: New USB device found, idVendor=05d8, idProduct=810a, bcdDevice=92.b8 [ 714.862159][ T5854] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 715.017736][ T5854] usb 4-1: config 0 descriptor?? [ 715.054482][ T5854] dvb-usb: found a 'Artec T1 USB2.0' in warm state. [ 715.061682][ T5854] dvb-usb: bulk message failed: -22 (3/0) [ 715.185315][ T5854] dvb-usb: will use the device's hardware PID filter (table count: 16). [ 715.262316][ T5854] dvbdev: DVB: registering new adapter (Artec T1 USB2.0) [ 715.270210][ T5854] usb 4-1: media controller created [ 715.286869][T11459] dvb-usb: bulk message failed: -22 (2/0) [ 715.310330][ T5854] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered. [ 715.391819][ T5854] dvb-usb: bulk message failed: -22 (6/0) [ 715.398027][ T5854] dvb-usb: no frontend was attached by 'Artec T1 USB2.0' [ 715.437570][ T5854] input: IR-receiver inside an USB DVB receiver as /devices/platform/dummy_hcd.3/usb4/4-1/input/input19 [ 715.534867][ T5854] dvb-usb: schedule remote query interval to 150 msecs. [ 715.542287][ T5854] dvb-usb: Artec T1 USB2.0 successfully initialized and connected. [ 715.650925][ T5854] usb 4-1: USB disconnect, device number 2 [ 715.833860][ T5854] dvb-usb: Artec T1 USB2.0 successfully deinitialized and disconnected. [ 716.064154][ T1287] ieee802154 phy0 wpan0: encryption failed: -22 [ 716.071091][ T1287] ieee802154 phy1 wpan1: encryption failed: -22 [ 716.171774][T11475] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1974'. [ 716.613349][T11481] loop0: detected capacity change from 0 to 512 [ 716.982567][T11481] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 716.995824][T11481] ext4 filesystem being mounted at /8/file2 supports timestamps until 2038-01-19 (0x7fffffff) [ 717.242604][ T30] audit: type=1800 audit(1760035449.537:83): pid=11481 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.1976" name="file1" dev="loop0" ino=15 res=0 errno=0 [ 717.263724][ T30] audit: type=1800 audit(1760035449.567:84): pid=11481 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.1976" name="file2" dev="loop0" ino=16 res=0 errno=0 [ 717.795387][T11063] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 718.147742][ T3654] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 718.159031][ T3654] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 718.541203][ T3554] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 718.553210][ T3554] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 719.596279][T11521] Bluetooth: MGMT ver 1.23 [ 719.704632][T11524] loop3: detected capacity change from 0 to 64 [ 720.649574][ T24] usb 6-1: new high-speed USB device number 5 using dummy_hcd [ 720.724851][T11536] loop9: detected capacity change from 0 to 256 [ 720.773872][T11536] exfat: Deprecated parameter 'utf8' [ 720.780239][T11536] exfat: Deprecated parameter 'utf8' [ 720.849509][ T24] usb 6-1: Using ep0 maxpacket: 8 [ 720.935943][ T24] usb 6-1: New USB device found, idVendor=046d, idProduct=08dd, bcdDevice=ff.f4 [ 720.945504][ T24] usb 6-1: New USB device strings: Mfr=8, Product=2, SerialNumber=3 [ 720.954052][ T24] usb 6-1: Product: syz [ 720.958571][ T24] usb 6-1: Manufacturer: syz [ 720.963437][ T24] usb 6-1: SerialNumber: syz [ 721.011675][T11536] exFAT-fs (loop9): failed to load upcase table (idx : 0x00010000, chksum : 0x7b823c56, utbl_chksum : 0xe619d30d) [ 721.049625][ T24] usb 6-1: config 0 descriptor?? [ 721.077925][ T24] gspca_main: gspca_zc3xx-2.14.0 probing 046d:08dd [ 721.129408][T11259] usb 2-1: new high-speed USB device number 6 using dummy_hcd [ 721.352108][T11259] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 721.364884][T11259] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 721.504020][T11259] usb 2-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00 [ 721.513816][T11259] usb 2-1: New USB device strings: Mfr=2, Product=0, SerialNumber=0 [ 721.522692][T11259] usb 2-1: Manufacturer: syz [ 721.661519][T11259] usb 2-1: config 0 descriptor?? [ 721.770144][ T24] input: gspca_zc3xx as /devices/platform/dummy_hcd.5/usb6/6-1/input/input20 [ 722.015863][ T5854] usb 6-1: USB disconnect, device number 5 [ 722.441807][T11259] uclogic 0003:256C:006D.0018: failed retrieving Huion firmware version: -71 [ 722.456929][T11259] uclogic 0003:256C:006D.0018: failed probing parameters: -71 [ 722.466529][T11259] uclogic 0003:256C:006D.0018: probe with driver uclogic failed with error -71 [ 722.661176][T11259] usb 2-1: USB disconnect, device number 6 [ 723.070129][ T5854] usb 1-1: new high-speed USB device number 4 using dummy_hcd [ 723.279165][ T5854] usb 1-1: Using ep0 maxpacket: 32 [ 723.326622][ T5854] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 723.339232][ T5854] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 723.349981][ T5854] usb 1-1: New USB device found, idVendor=1e7d, idProduct=2d5a, bcdDevice= 0.00 [ 723.359523][ T5854] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 723.482953][ T5854] usb 1-1: config 0 descriptor?? [ 723.590489][T11558] loop5: detected capacity change from 0 to 512 [ 723.662016][T11558] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode [ 724.020534][ T5854] savu 0003:1E7D:2D5A.0019: hiddev0,hidraw0: USB HID v0.00 Device [HID 1e7d:2d5a] on usb-dummy_hcd.0-1/input0 [ 724.022807][T11558] EXT4-fs (loop5): 1 truncate cleaned up [ 724.131002][T11558] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 724.307628][ T24] usb 1-1: USB disconnect, device number 4 [ 724.891453][T11208] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 725.087564][T11570] fido_id[11570]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.0/usb1/report_descriptor': No such file or directory [ 725.176933][T11576] netlink: 136 bytes leftover after parsing attributes in process `syz.3.2005'. [ 725.186919][T11576] net_ratelimit: 439 callbacks suppressed [ 725.186999][T11576] A link change request failed with some changes committed already. Interface erspan0 may have been left with an inconsistent configuration, please check. [ 725.501299][T11574] loop9: detected capacity change from 0 to 4096 [ 726.339295][ T30] audit: type=1326 audit(1760035458.647:85): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11588 comm="syz.1.2009" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f56539 code=0x7ffc0000 [ 726.365310][ T30] audit: type=1326 audit(1760035458.647:86): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11588 comm="syz.1.2009" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f56539 code=0x7ffc0000 [ 726.516166][ T30] audit: type=1326 audit(1760035458.727:87): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11588 comm="syz.1.2009" exe="/root/syz-executor" sig=0 arch=40000003 syscall=245 compat=1 ip=0xf7f56539 code=0x7ffc0000 [ 726.539095][ T30] audit: type=1326 audit(1760035458.737:88): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11588 comm="syz.1.2009" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f56539 code=0x7ffc0000 [ 726.567293][ T30] audit: type=1326 audit(1760035458.737:89): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11588 comm="syz.1.2009" exe="/root/syz-executor" sig=0 arch=40000003 syscall=248 compat=1 ip=0xf7f56539 code=0x7ffc0000 [ 726.591029][ T30] audit: type=1326 audit(1760035458.737:90): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11588 comm="syz.1.2009" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f56539 code=0x7ffc0000 [ 726.613513][ T30] audit: type=1326 audit(1760035458.747:91): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11588 comm="syz.1.2009" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f56539 code=0x7ffc0000 [ 729.398153][T11628] loop5: detected capacity change from 0 to 2048 [ 729.677205][T11628] EXT4-fs (loop5): mounted filesystem 00000800-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 729.911440][T11628] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.2023: bg 0: block 441: padding at end of block bitmap is not set [ 730.437099][T11208] EXT4-fs (loop5): unmounting filesystem 00000800-0000-0000-0000-000000000000. [ 731.575979][T11674] loop3: detected capacity change from 0 to 128 [ 731.623562][T11674] hpfs: filesystem error: invalid number of hotfixes: 2066844986, used: 2066844985; already mounted read-only [ 731.709299][T11674] hpfs: filesystem error: improperly stopped [ 731.715545][T11674] hpfs: filesystem error: warning: spare dnodes used, try chkdsk [ 731.723978][T11674] hpfs: You really don't want any checks? You are crazy... [ 732.038741][T11674] hpfs: hpfs_map_sector(): read error [ 732.044480][T11674] hpfs: code page support is disabled [ 732.319171][T11674] hpfs: hpfs_map_4sectors(): unaligned read [ 732.325513][T11674] hpfs: hpfs_map_4sectors(): unaligned read [ 732.331838][T11674] hpfs: filesystem error: unable to find root dir [ 733.656927][T11696] loop9: detected capacity change from 0 to 128 [ 733.700031][T11696] UDF-fs: error (device loop9): udf_read_tagged: read failed, block=256, location=256 [ 733.805755][T11696] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 735.539119][T11722] loop0: detected capacity change from 0 to 4096 [ 735.637408][T11726] vivid-000: disconnect [ 735.858334][T11725] vivid-000: reconnect [ 736.433434][T11734] loop9: detected capacity change from 0 to 128 [ 736.589462][T11734] EXT4-fs (loop9): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 736.659826][T11734] ext4 filesystem being mounted at /235/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 736.790887][ T5854] usb 2-1: new high-speed USB device number 7 using dummy_hcd [ 736.972779][T11742] loop3: detected capacity change from 0 to 512 [ 736.982482][ T5854] usb 2-1: Using ep0 maxpacket: 16 [ 737.041655][T11742] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 737.066691][ T5854] usb 2-1: New USB device found, idVendor=0c45, idProduct=800a, bcdDevice=db.47 [ 737.076312][ T5854] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 737.085041][ T5854] usb 2-1: Product: syz [ 737.089596][ T5854] usb 2-1: Manufacturer: syz [ 737.100187][ T5854] usb 2-1: SerialNumber: syz [ 737.115450][ T8413] EXT4-fs (loop9): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 737.161256][ T5854] usb 2-1: config 0 descriptor?? [ 737.211176][ T5854] gspca_main: sn9c2028-2.14.0 probing 0c45:800a [ 737.478556][ T5854] gspca_sn9c2028: read1 error -32 [ 737.502080][ T5854] gspca_sn9c2028: read1 error -32 [ 737.744711][ T24] usb 2-1: USB disconnect, device number 7 [ 737.878721][T10957] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 738.219268][T11756] loop9: detected capacity change from 0 to 512 [ 738.265567][T11756] EXT4-fs (loop9): encrypted files will use data=ordered instead of data journaling mode [ 738.384581][T11756] EXT4-fs error (device loop9): ext4_free_branches:1023: inode #16: comm syz.9.2073: invalid indirect mapped block 4294967295 (level 0) [ 738.386959][T11760] loop0: detected capacity change from 0 to 512 [ 738.421029][T11763] netlink: 422 bytes leftover after parsing attributes in process `syz.5.2075'. [ 738.463708][T11756] EXT4-fs error (device loop9): ext4_free_branches:1023: inode #16: comm syz.9.2073: invalid indirect mapped block 4294967295 (level 1) [ 738.539170][T11756] EXT4-fs (loop9): 1 orphan inode deleted [ 738.545253][T11756] EXT4-fs (loop9): 1 truncate cleaned up [ 738.553282][T11756] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 738.603735][T11760] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback. [ 738.616989][T11760] ext4 filesystem being mounted at /29/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 738.983821][ T8413] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 739.167906][T11063] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000d40000. [ 740.261632][T11786] loop9: detected capacity change from 0 to 256 [ 740.399670][T11786] exFAT-fs (loop9): failed to load upcase table (idx : 0x00010000, chksum : 0x205ad3fc, utbl_chksum : 0xe619d30d) [ 741.755394][T11809] loop3: detected capacity change from 0 to 128 [ 742.102074][T11803] loop5: detected capacity change from 0 to 4096 [ 742.612566][T11818] loop3: detected capacity change from 0 to 1024 [ 743.043310][T11803] ntfs3(loop5): ino=18, mi_enum_attr [ 743.049173][T11803] ntfs3(loop5): Mark volume as dirty due to NTFS errors [ 743.089382][ T4245] netdevsim netdevsim1 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0 [ 743.099584][ T58] netdevsim netdevsim1 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0 [ 743.152824][ T58] netdevsim netdevsim1 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0 [ 743.203590][ T58] netdevsim netdevsim1 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0 [ 743.392523][T11803] ntfs3(loop5): ino=1e, "file1" The size of extended attributes must not exceed 64KiB [ 743.996264][T11839] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2107'. [ 744.490237][ T8791] usb 10-1: new high-speed USB device number 11 using dummy_hcd [ 744.687306][ T8791] usb 10-1: Using ep0 maxpacket: 8 [ 744.707896][ T8791] usb 10-1: unable to get BOS descriptor or descriptor too short [ 744.746531][ T8791] usb 10-1: config 8 interface 0 altsetting 7 endpoint 0x83 has invalid maxpacket 65535, setting to 1024 [ 744.758249][ T8791] usb 10-1: config 8 interface 0 altsetting 7 bulk endpoint 0x83 has invalid maxpacket 1024 [ 744.769063][ T8791] usb 10-1: config 8 interface 0 has no altsetting 0 [ 744.843309][ T8791] usb 10-1: New USB device found, idVendor=07fd, idProduct=0001, bcdDevice=6a.e5 [ 744.853083][ T8791] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 744.861568][ T8791] usb 10-1: Product: syz [ 744.866012][ T8791] usb 10-1: Manufacturer: syz [ 744.871084][ T8791] usb 10-1: SerialNumber: syz [ 744.919636][T11843] raw-gadget.0 gadget.9: fail, usb_ep_enable returned -22 [ 745.241279][ T8791] usb 10-1: Quirk or no altset; falling back to MIDI 1.0 [ 745.248580][ T8791] usb 10-1: selecting invalid altsetting 0 [ 745.383280][ T8791] usb 10-1: USB disconnect, device number 11 [ 745.565367][T11851] loop5: detected capacity change from 0 to 4096 [ 745.632700][T11851] NILFS (loop5): broken superblock, retrying with spare superblock (blocksize = 1024) [ 745.737446][T11851] NILFS (loop5): broken superblock, retrying with spare superblock (blocksize = 4096) [ 745.853179][T11859] NILFS (loop5): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 746.135689][T11851] NILFS error (device loop5): nilfs_bmap_lookup_contig: broken bmap (inode number=12) [ 746.289836][T11851] Remounting filesystem read-only [ 746.642941][T11208] NILFS (loop5): disposed unprocessed dirty file(s) when detaching log writer [ 747.503627][T11879] netlink: 9286 bytes leftover after parsing attributes in process `syz.1.2128'. [ 747.893293][T11882] loop3: detected capacity change from 0 to 512 [ 748.093793][T11886] loop1: detected capacity change from 0 to 256 [ 748.183819][T11886] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x4ec6003b, utbl_chksum : 0xe619d30d) [ 748.618106][T11894] netlink: 'syz.9.2134': attribute type 21 has an invalid length. [ 748.831799][T11898] loop1: detected capacity change from 0 to 256 [ 749.205100][T11904] netlink: 44 bytes leftover after parsing attributes in process `syz.0.2139'. [ 749.214512][T11904] netem: unknown loss type 12 [ 749.874041][T11914] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2144'. [ 749.946651][T11911] nbd0: detected capacity change from 0 to 127 [ 750.009731][ T5812] block nbd0: Receive control failed (result -32) [ 750.636555][T11927] loop0: detected capacity change from 0 to 16 [ 750.651300][T11926] loop3: detected capacity change from 0 to 256 [ 750.745298][T11927] erofs (device loop0): mounted with root inode @ nid 36. [ 750.856535][T11927] erofs (device loop0): bogus lookback distance 1388 @ lcn 42 of nid 36 [ 750.901593][T11927] erofs (device loop0): failed to decompress -21 in[56, 4040] out[1851] [ 750.910496][T11927] erofs (device loop0): read error -117 @ 43 of nid 36 [ 750.977106][T11931] erofs (device loop0): bogus lookback distance 1388 @ lcn 42 of nid 36 [ 750.991015][T11931] erofs (device loop0): failed to decompress -21 in[56, 4040] out[1851] [ 751.000129][T11931] erofs (device loop0): read error -117 @ 43 of nid 36 [ 751.979857][T11948] loop3: detected capacity change from 0 to 512 [ 752.072806][T11942] loop9: detected capacity change from 0 to 4096 [ 752.102387][T11942] ntfs3(loop9): ino=3, Correct links count -> 2. [ 752.680640][T11942] ntfs3(loop9): failed to convert "0000" to cp950 [ 752.848343][T11954] block nbd1: Unsupported socket: should be TCP or UNIX. [ 753.587659][T11963] ipvlan2: entered promiscuous mode [ 753.777739][T11966] loop0: detected capacity change from 0 to 256 [ 753.895110][T11967] netlink: 52 bytes leftover after parsing attributes in process `syz.1.2166'. [ 753.916156][T11966] exFAT-fs (loop0): failed to load upcase table (idx : 0x00011ded, chksum : 0x9858084d, utbl_chksum : 0xe619d30d) [ 754.573575][T11977] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2171'. [ 754.583230][T11977] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2171'. [ 754.954024][T11983] loop9: detected capacity change from 0 to 8 [ 754.981973][T11982] loop3: detected capacity change from 0 to 256 [ 755.137810][T11982] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0x987a2e96, utbl_chksum : 0xe619d30d) [ 755.513339][ T5812] Bluetooth: unknown link type 97 [ 755.521475][ T5812] Bluetooth: hci4: connection err: -111 [ 755.532113][ T5812] Bluetooth: hci4: unexpected event for opcode 0x2062 [ 756.662861][T12006] loop3: detected capacity change from 0 to 2048 [ 756.795407][T12006] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 756.921685][ T30] audit: type=1800 audit(1760035489.237:92): pid=12006 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.2183" name="file1" dev="loop3" ino=15 res=0 errno=0 [ 756.945116][T12006] EXT4-fs (loop3): shut down requested (2) [ 757.176058][T10957] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 758.165394][T12033] loop9: detected capacity change from 0 to 1024 [ 758.176396][T12033] EXT4-fs: Ignoring removed oldalloc option [ 758.183280][T12033] EXT4-fs: Ignoring removed bh option [ 758.263071][T12033] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 758.352289][T11259] usb 4-1: new high-speed USB device number 3 using dummy_hcd [ 758.530108][T11259] usb 4-1: Using ep0 maxpacket: 8 [ 758.563593][T11259] usb 4-1: New USB device found, idVendor=0ccd, idProduct=0039, bcdDevice=90.7b [ 758.575020][T11259] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 758.637399][T11259] pvrusb2: Hardware description: Terratec Grabster AV400 [ 758.645518][T11259] pvrusb2: ********** [ 758.649936][T11259] pvrusb2: ***WARNING*** Support for this device (Terratec Grabster AV400) is experimental. [ 758.660368][T11259] pvrusb2: Important functionality might not be entirely working. [ 758.668332][T11259] pvrusb2: Please consider contacting the driver author to help with further stabilization of the driver. [ 758.680071][T11259] pvrusb2: ********** [ 758.777302][ T8413] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 758.891695][ T2332] pvrusb2: Invalid write control endpoint [ 758.932441][ T30] audit: type=1326 audit(1760035491.247:93): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12040 comm="syz.5.2197" exe="/root/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf707d539 code=0x0 [ 759.142092][T12034] pvrusb2: Killing an I2C write to 0 that is too large (desired=62 limit=61) [ 759.275182][T12047] loop9: detected capacity change from 0 to 512 [ 759.305703][ T2332] pvrusb2: Invalid write control endpoint [ 759.312881][ T2332] pvrusb2: ***WARNING*** Detected a wedged cx25840 chip; the device will not work. [ 759.327838][ T2332] pvrusb2: ***WARNING*** Try power cycling the pvrusb2 device. [ 759.337137][ T2332] pvrusb2: ***WARNING*** Disabling further access to the device to prevent other foul-ups. [ 759.347423][ T2332] pvrusb2: Device being rendered inoperable [ 759.353673][ T2332] cx25840 1-0044: Unable to detect h/w, assuming cx23887 [ 759.361062][ T2332] cx25840 1-0044: cx23887 A/V decoder found @ 0x88 (pvrusb2_a) [ 759.370168][ T2332] pvrusb2: Attached sub-driver cx25840 [ 759.375815][ T2332] pvrusb2: ***WARNING*** pvrusb2 device hardware appears to be jammed and I can't clear it. [ 759.386277][ T2332] pvrusb2: You might need to power cycle the pvrusb2 device in order to recover. [ 759.467646][T12047] EXT4-fs (loop9): encrypted files will use data=ordered instead of data journaling mode [ 759.495212][T11259] usb 4-1: USB disconnect, device number 3 [ 759.590389][ T5812] Bluetooth: hci4: Controller not accepting commands anymore: ncmd = 0 [ 759.599203][ T5812] Bluetooth: hci4: Injecting HCI hardware error event [ 759.606778][ T5812] Bluetooth: hci4: hardware error 0x00 [ 759.655862][T12047] EXT4-fs (loop9): 1 truncate cleaned up [ 759.665271][T12047] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 759.751561][T12052] netlink: 7 bytes leftover after parsing attributes in process `syz.1.2202'. [ 760.050343][ T8413] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 760.051251][T12054] loop0: detected capacity change from 0 to 2048 [ 760.223323][T12054] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 760.312488][ T30] audit: type=1800 audit(1760035492.627:94): pid=12054 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.2203" name="file1" dev="loop0" ino=1415 res=0 errno=0 [ 760.739421][T11259] usb 10-1: new high-speed USB device number 12 using dummy_hcd [ 760.979343][T11259] usb 10-1: Using ep0 maxpacket: 16 [ 760.998761][T11259] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 761.010600][T11259] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 761.021300][T11259] usb 10-1: New USB device found, idVendor=1b1c, idProduct=1b02, bcdDevice= 0.00 [ 761.030874][T11259] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 761.127690][T11259] usb 10-1: config 0 descriptor?? [ 761.534174][T12075] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2212'. [ 761.617376][T11259] corsair 0003:1B1C:1B02.001A: hidraw0: USB HID v0.00 Device [HID 1b1c:1b02] on usb-dummy_hcd.9-1/input0 [ 761.669343][ T5812] Bluetooth: hci4: Opcode 0x0c03 failed: -110 [ 761.793702][T11259] corsair 0003:1B1C:1B02.001A: Read invalid backlight brightness: d5. [ 761.948418][T12079] loop3: detected capacity change from 0 to 128 [ 762.024584][ T8791] usb 10-1: USB disconnect, device number 12 [ 762.126911][T12082] loop1: detected capacity change from 0 to 16 [ 762.145355][T12082] erofs (device loop1): mounted with root inode @ nid 36. [ 763.466649][T12099] IPv6: Can't replace route, no match found [ 763.694978][T12104] loop9: detected capacity change from 0 to 64 [ 764.719199][T11259] usb 10-1: new high-speed USB device number 13 using dummy_hcd [ 764.823484][T12118] netlink: 9 bytes leftover after parsing attributes in process `syz.5.2230'. [ 764.950442][T11259] usb 10-1: New USB device found, idVendor=0424, idProduct=7850, bcdDevice= 0.00 [ 764.961618][T11259] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 764.970907][T11259] usb 10-1: Product: syz [ 764.975348][T11259] usb 10-1: Manufacturer: syz [ 764.980509][T11259] usb 10-1: SerialNumber: syz [ 765.180936][T12126] loop1: detected capacity change from 0 to 47 [ 765.504741][T11259] lan78xx 10-1:1.0 (unnamed net_device) (uninitialized): Failed to read register index 0x00000010. ret = -EPROTO [ 765.517682][T11259] lan78xx 10-1:1.0 (unnamed net_device) (uninitialized): Registers INIT FAILED.... [ 765.528568][T11259] lan78xx 10-1:1.0 (unnamed net_device) (uninitialized): Bind routine FAILED [ 765.589738][T11259] lan78xx 10-1:1.0: probe with driver lan78xx failed with error -71 [ 765.700398][T11259] usb 10-1: USB disconnect, device number 13 [ 765.822571][ T1827] wlan1: BSS 50:50:50:50:50:50 switches to unsupported channel (0 MHz), disconnecting [ 765.897606][ T1827] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 765.906285][ T1827] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 766.114619][T12136] netlink: 'syz.3.2239': attribute type 2 has an invalid length. [ 766.187981][ C0] ===================================================== [ 766.195489][ C0] BUG: KMSAN: uninit-value in macsec_handle_frame+0x2f6/0x5410 [ 766.203434][ C0] macsec_handle_frame+0x2f6/0x5410 [ 766.208936][ C0] __netif_receive_skb_core+0x2040/0x7150 [ 766.214874][ C0] __netif_receive_skb+0xcc/0xac0 [ 766.220315][ C0] process_backlog+0x485/0xa00 [ 766.225269][ C0] __napi_poll+0xdd/0x8a0 [ 766.229999][ C0] net_rx_action+0xbc8/0x1c30 [ 766.234810][ C0] handle_softirqs+0x169/0x6e0 [ 766.239853][ C0] __do_softirq+0x14/0x1b [ 766.244360][ C0] do_softirq+0x99/0x100 [ 766.248974][ C0] __local_bh_enable_ip+0xa1/0xb0 [ 766.254184][ C0] netif_rx+0xdb/0x3f0 [ 766.258451][ C0] pn_send+0x95b/0xb80 [ 766.262874][ C0] pn_skb_send+0x462/0xa70 [ 766.267492][ C0] pep_sock_connect+0x2af/0x490 [ 766.272838][ C0] pn_socket_connect+0x576/0xd10 [ 766.277997][ C0] __sys_connect+0x517/0x680 [ 766.282938][ C0] __ia32_sys_connect+0x95/0x100 [ 766.288037][ C0] ia32_sys_call+0x1ca7/0x4310 [ 766.293140][ C0] __do_fast_syscall_32+0xb0/0x150 [ 766.298443][ C0] do_fast_syscall_32+0x38/0x80 [ 766.303660][ C0] do_SYSENTER_32+0x1f/0x30 [ 766.308319][ C0] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 766.315062][ C0] [ 766.317467][ C0] Uninit was created at: [ 766.322182][ C0] kmem_cache_alloc_node_noprof+0x989/0x16b0 [ 766.328395][ C0] kmalloc_reserve+0x13c/0x4b0 [ 766.333550][ C0] __alloc_skb+0x347/0x7d0 [ 766.338147][ C0] pn_raw_send+0x59/0x510 [ 766.342854][ C0] send_reset_indications+0x139/0x1c0 [ 766.348425][ C0] phonet_rcv+0x1478/0x1830 [ 766.353326][ C0] __netif_receive_skb+0x474/0xac0 [ 766.358654][ C0] process_backlog+0x485/0xa00 [ 766.363771][ C0] __napi_poll+0xdd/0x8a0 [ 766.368301][ C0] net_rx_action+0xbc8/0x1c30 [ 766.373311][ C0] handle_softirqs+0x169/0x6e0 [ 766.378303][ C0] __do_softirq+0x14/0x1b [ 766.383030][ C0] [ 766.385478][ C0] CPU: 0 UID: 0 PID: 12136 Comm: syz.3.2239 Tainted: G W syzkaller #0 PREEMPT(none) [ 766.396737][ C0] Tainted: [W]=WARN [ 766.400722][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 766.411022][ C0] ===================================================== [ 766.418050][ C0] Disabling lock debugging due to kernel taint [ 766.424518][ C0] Kernel panic - not syncing: kmsan.panic set ... [ 766.431064][ C0] CPU: 0 UID: 0 PID: 12136 Comm: syz.3.2239 Tainted: G B W syzkaller #0 PREEMPT(none) [ 766.442188][ C0] Tainted: [B]=BAD_PAGE, [W]=WARN [ 766.447294][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 766.457453][ C0] Call Trace: [ 766.460809][ C0] [ 766.463744][ C0] __dump_stack+0x26/0x30 [ 766.468260][ C0] dump_stack_lvl+0x53/0x270 [ 766.473026][ C0] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 766.479030][ C0] dump_stack+0x1e/0x25 [ 766.483351][ C0] vpanic+0x435/0xd30 [ 766.487518][ C0] panic+0x15d/0x160 [ 766.491662][ C0] kmsan_report+0x31c/0x320 [ 766.496366][ C0] ? __msan_warning+0x1b/0x30 [ 766.501194][ C0] ? macsec_handle_frame+0x2f6/0x5410 [ 766.506711][ C0] ? __netif_receive_skb_core+0x2040/0x7150 [ 766.512805][ C0] ? __netif_receive_skb+0xcc/0xac0 [ 766.518184][ C0] ? process_backlog+0x485/0xa00 [ 766.523250][ C0] ? __napi_poll+0xdd/0x8a0 [ 766.527960][ C0] ? net_rx_action+0xbc8/0x1c30 [ 766.532944][ C0] ? handle_softirqs+0x169/0x6e0 [ 766.538048][ C0] ? __do_softirq+0x14/0x1b [ 766.542731][ C0] ? do_softirq+0x99/0x100 [ 766.547311][ C0] ? __local_bh_enable_ip+0xa1/0xb0 [ 766.552849][ C0] ? netif_rx+0xdb/0x3f0 [ 766.557258][ C0] ? pn_send+0x95b/0xb80 [ 766.561649][ C0] ? pn_skb_send+0x462/0xa70 [ 766.566383][ C0] ? pep_sock_connect+0x2af/0x490 [ 766.571574][ C0] ? pn_socket_connect+0x576/0xd10 [ 766.576832][ C0] ? __sys_connect+0x517/0x680 [ 766.581760][ C0] ? __ia32_sys_connect+0x95/0x100 [ 766.587037][ C0] ? ia32_sys_call+0x1ca7/0x4310 [ 766.592174][ C0] ? __do_fast_syscall_32+0xb0/0x150 [ 766.597608][ C0] ? do_fast_syscall_32+0x38/0x80 [ 766.602771][ C0] ? do_SYSENTER_32+0x1f/0x30 [ 766.607590][ C0] ? entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 766.614274][ C0] ? enqueue_to_backlog+0x349/0xfc0 [ 766.619655][ C0] ? kmsan_get_metadata+0xfb/0x160 [ 766.624952][ C0] ? kmsan_internal_set_shadow_origin+0x7a/0x110 [ 766.631461][ C0] ? __netif_rx+0x3e/0x360 [ 766.636050][ C0] ? kmsan_get_metadata+0xfb/0x160 [ 766.641339][ C0] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 766.647337][ C0] ? kmsan_get_metadata+0xfb/0x160 [ 766.652633][ C0] __msan_warning+0x1b/0x30 [ 766.657289][ C0] macsec_handle_frame+0x2f6/0x5410 [ 766.662644][ C0] ? filter_irq_stacks+0x49/0x190 [ 766.667832][ C0] ? sk_filter_trim_cap+0x389/0xe90 [ 766.673190][ C0] ? kmsan_get_metadata+0xfb/0x160 [ 766.678470][ C0] ? kmsan_get_metadata+0xfb/0x160 [ 766.683773][ C0] ? kmsan_internal_set_shadow_origin+0x7a/0x110 [ 766.690289][ C0] ? __pfx_macsec_handle_frame+0x10/0x10 [ 766.696089][ C0] __netif_receive_skb_core+0x2040/0x7150 [ 766.702050][ C0] ? kmsan_get_metadata+0xfb/0x160 [ 766.707355][ C0] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 766.713393][ C0] ? filter_irq_stacks+0x49/0x190 [ 766.718627][ C0] __netif_receive_skb+0xcc/0xac0 [ 766.723836][ C0] ? kmsan_get_metadata+0xfb/0x160 [ 766.729148][ C0] process_backlog+0x485/0xa00 [ 766.734088][ C0] ? __pfx_process_backlog+0x10/0x10 [ 766.739511][ C0] __napi_poll+0xdd/0x8a0 [ 766.744024][ C0] ? kmsan_get_metadata+0xfb/0x160 [ 766.749315][ C0] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 766.755311][ C0] net_rx_action+0xbc8/0x1c30 [ 766.760143][ C0] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 766.766214][ C0] ? sched_clock_cpu+0x59/0xa80 [ 766.771275][ C0] ? try_to_wake_up+0xffc/0x1f50 [ 766.776438][ C0] ? __pfx_net_rx_action+0x10/0x10 [ 766.781707][ C0] handle_softirqs+0x169/0x6e0 [ 766.786669][ C0] __do_softirq+0x14/0x1b [ 766.791188][ C0] do_softirq+0x99/0x100 [ 766.795588][ C0] [ 766.798586][ C0] [ 766.801594][ C0] __local_bh_enable_ip+0xa1/0xb0 [ 766.806777][ C0] netif_rx+0xdb/0x3f0 [ 766.811002][ C0] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 766.816999][ C0] ? __pfx_sock_wfree+0x10/0x10 [ 766.822023][ C0] pn_send+0x95b/0xb80 [ 766.826271][ C0] pn_skb_send+0x462/0xa70 [ 766.830877][ C0] pep_sock_connect+0x2af/0x490 [ 766.835911][ C0] ? __pfx_pep_sock_connect+0x10/0x10 [ 766.841454][ C0] pn_socket_connect+0x576/0xd10 [ 766.846579][ C0] __sys_connect+0x517/0x680 [ 766.851331][ C0] ? kmsan_internal_set_shadow_origin+0x7a/0x110 [ 766.857834][ C0] ? kmsan_internal_unpoison_memory+0x14/0x20 [ 766.864063][ C0] ? kmsan_get_metadata+0xfb/0x160 [ 766.869347][ C0] ? __pfx_pn_socket_connect+0x10/0x10 [ 766.874975][ C0] __ia32_sys_connect+0x95/0x100 [ 766.880085][ C0] ia32_sys_call+0x1ca7/0x4310 [ 766.885050][ C0] __do_fast_syscall_32+0xb0/0x150 [ 766.890341][ C0] ? irqentry_exit_to_user_mode+0x7f/0xa0 [ 766.896269][ C0] do_fast_syscall_32+0x38/0x80 [ 766.901277][ C0] do_SYSENTER_32+0x1f/0x30 [ 766.905929][ C0] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 766.912431][ C0] RIP: 0023:0xf7fb4539 [ 766.916600][ C0] Code: 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 [ 766.936387][ C0] RSP: 002b:00000000f54a655c EFLAGS: 00000206 ORIG_RAX: 000000000000016a [ 766.944967][ C0] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000080000040 [ 766.953068][ C0] RDX: 0000000000000010 RSI: 0000000000000000 RDI: 0000000000000000 [ 766.961160][ C0] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 766.969240][ C0] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000 [ 766.977327][ C0] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 766.985429][ C0] [ 766.988831][ C0] Kernel Offset: disabled [ 766.993198][ C0] Rebooting in 86400 seconds..