last executing test programs: 29m2.302822166s ago: executing program 32 (id=287): r0 = socket$packet(0x11, 0x2, 0x300) setsockopt$packet_tx_ring(r0, 0x107, 0x5, &(0x7f00000000c0)=@req3={0x8000, 0x6, 0x8000, 0x6}, 0x1c) mmap(&(0x7f0000001000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) 27m7.719493974s ago: executing program 33 (id=804): r0 = open(&(0x7f0000000780)='./bus\x00', 0x14507e, 0x0) io_setup(0x5ff, &(0x7f0000000040)=0x0) io_submit(r1, 0x1, &(0x7f0000001d00)=[&(0x7f0000000080)={0x0, 0x0, 0x100000, 0x0, 0x0, r0, 0x0}]) 25m53.148093991s ago: executing program 34 (id=1237): r0 = openat$ttynull(0xffffffffffffff9c, &(0x7f0000000140), 0x82084, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0x3) ioctl$TCSETSF2(r0, 0x402c542d, &(0x7f0000000100)={0xfffffffc, 0xe7, 0x6, 0x2, 0x7, "ea7174ddb80fc70000020000000000d3a2d975", 0x2, 0x4}) 24m47.489121175s ago: executing program 35 (id=1598): r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000380), 0x4000000004882, 0x0) io_setup(0x1, &(0x7f00000004c0)=0x0) io_submit(r1, 0x1, &(0x7f00000000c0)=[&(0x7f0000000140)={0x3a0012fb, 0x2759, 0x7, 0x0, 0x0, r0, 0x0, 0x3000, 0x1000000, 0x0, 0x10}]) 23m31.715136163s ago: executing program 36 (id=2023): close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) r0 = openat$pidfd(0xffffffffffffff9c, &(0x7f0000000440), 0x80, 0x0) pidfd_send_signal(r0, 0x3a, &(0x7f0000000480)={0x13, 0xf, 0x3}, 0x0) 20m20.055497262s ago: executing program 37 (id=3013): r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000001800)=ANY=[@ANYBLOB="4c0000001000010400"/20, @ANYRES32=0x0, @ANYBLOB="03000000000000001c0012800c0001006d6163766c616e000c0002800800", @ANYBLOB='\b\x00'], 0x4c}}, 0x800) sendmmsg(r0, &(0x7f00000002c0), 0x40000000000009f, 0x0) 18m53.401815338s ago: executing program 38 (id=3303): r0 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(r0, 0x89f1, &(0x7f0000001040)={'sit0\x00', &(0x7f0000000180)={'syztnl2\x00', 0x0, 0x0, 0xa000, 0x10, 0x0, {{0x5, 0x4, 0x0, 0x0, 0x14, 0x3, 0x0, 0x0, 0x0, 0x0, @loopback, @rand_addr=0x3}}}}) ioctl$sock_ipv4_tunnel_SIOCDELTUNNEL(r0, 0x89f2, &(0x7f0000000780)={'syztnl2\x00', &(0x7f00000008c0)={'syztnl2\x00', r1, 0x7, 0x7, 0xfffffff0, 0x6, {{0x5, 0x4, 0x1, 0x38, 0x14, 0x65, 0x0, 0xea, 0x2f, 0x0, @multicast1, @rand_addr=0x401}}}}) 18m33.065235033s ago: executing program 39 (id=3309): r0 = socket$kcm(0x11, 0x3, 0x0) setsockopt$sock_attach_bpf(r0, 0x107, 0xf, &(0x7f0000000000), 0x4) sendmsg$kcm(r0, &(0x7f00000000c0)={&(0x7f0000000100)=@ieee802154={0x24, @long={0x3, 0x2, {0xaaaaaaaaaaaa0102}}}, 0x80, &(0x7f0000000040)=[{&(0x7f0000000180)="27031c0016001400020000000000000006e1f0", 0x13}, {&(0x7f0000000280)="7d3ed2ea1f2f23edbb324820e73b5f4b1100201a03df64a4853ed1b39e5d17522331", 0x22}], 0x2}, 0x24000008) 18m31.203877337s ago: executing program 40 (id=3320): r0 = openat$audio1(0xffffffffffffff9c, &(0x7f0000000080), 0x88002, 0x0) ioctl$SNDCTL_DSP_SETFRAGMENT(r0, 0xc004500a, &(0x7f0000000040)=0x13) ioctl$SNDCTL_DSP_STEREO(r0, 0xc0045003, &(0x7f0000000000)) 18m29.808420309s ago: executing program 41 (id=3316): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0) sendmsg$NFT_BATCH(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a58000000060a0b040000000000000000020000002c0004802800018007000100637400001c00028005000300410000000800014000000017080002400000000c0900010073797a30000000000900020073797a32"], 0x80}}, 0x0) 18m28.131240998s ago: executing program 42 (id=3321): syz_mount_image$ext4(&(0x7f00000001c0)='ext4\x00', &(0x7f0000000200)='./bus\x00', 0x1400c, &(0x7f0000000680), 0x3, 0x470, &(0x7f0000000dc0)="$eJzs3M1vG0UbAPBn13H65k0hoZSvlo9AQVQIkqYt0AMHQCBxKBISHOBoJaEqTQtqgkSrSKQcygkhJO6II/8CJ7ggxAmJK9xRpQr1QsvJaL27iZ3YTtPYcYt/P8ntM/vhmce7Y8/u2AlgaE1l/yQReyPi94iYyIutG0zl/12/tjJ349rKXBL1+tt/JY3t/r62MlduWu433lyIJA62qXfpwsUztcXFhfNFeWb57EczSxcuPnf6bO3UwqmFc0dPnDh+bPbFF44+35M8xyMtojfe++rNk1+05L8hjx6Z6rbyqXq9x9UN1l1N8cgA28H2VIrjVW30/4moNB29iXj9s7XCpwNqINA39Xq9Pt559Wod+A9LorWsy8OwKD/oy+vfdtfBL/dt9DF4V1/JL4CyvK8Xj3zNyNodg+qG69temoqId1f/+SZ7RH/uQwAAtPghG/88m412Vuayscf6+CON+5u2u7uYG5qMiHsiYl9E3BvnYn9E3BfR2PaBiHhwm/U3TZI0hpmbxz/plVtO7iZk47+Xirmt1vFfOfqLyUqjdCEvRDV5//TiwpHiNTkc1T1ZebZLHT++9tuXndY1j/+yR1Z/ORYs2nFlZE/rPvO15dqtZ9zq6qWIAyPt8k/WZgKSiHgoIg60e4J06zpOP/Pdw53WbZ1/Fz2YaKp/G/F0fvxXY0P+paT7/OTM/2Jx4chMeVZs9suvl9/qVP+O8u+B7Pj/v+35v5b/ZNI8X7u0/Tou//F5x2uaqWoRbOP8X60t10aTdxrxaLHsk9ry8vnZiNHkZN7o5uVH1/cty+X2Wf6HD7Xv//ti/ZU4GBHZSfxIRDwaEY8Vx+7xiHgiIg51yf/nV5/8YOOysTL/2+D4z2/r+K8Ho9G6JG2zTRZUzvz0fUulk+thkf+N7u9/xxvR4WLJzbz/bW5F+2Cnrx8AAADcCdKI2BtJOr0Wp+n0dP4d/v351Hfm43Pz+W8EJqOalne6Jpruh84Wl/V5+VJE5F8tKNcfi7Rx3/jrylijPD334eL8QDMHxjv0/8yflUG3Dug7P9iC4aX/w/Dq2v+ru9cOYPdt6v9d+/yevrYF2F1tPv/HBtEOYPe1G//7ez8wHDb0f9N+METc/4fhpf/D8NL/YSgtjcXWP5LvGpTPdIu7bxVMROy0hYMJonpbNKNvQaR9r2K0v6dW34LkDmzzpmBw70kAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAC99G8AAAD//1KFzjw=") r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) getdents64(r0, &(0x7f0000000200)=""/179, 0xb3) 15m35.283899496s ago: executing program 43 (id=3989): r0 = socket$inet6_tcp(0xa, 0x1, 0x0) connect$inet6(r0, &(0x7f0000000100)={0xa, 0x0, 0x0, @loopback}, 0x1c) setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f0000000180)=0x5199, 0x4) 8m1.382028972s ago: executing program 44 (id=6925): mmap(&(0x7f0000000000/0x95c000)=nil, 0x95c000, 0x2000000, 0x8c4b815a5465c2b2, 0xffffffffffffffff, 0x0) r0 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_int(r0, 0x107, 0x11, &(0x7f0000000180)=0x80000001, 0x4) 7m13.969179302s ago: executing program 8 (id=7292): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$tipc2(&(0x7f00000002c0), 0xffffffffffffffff) sendmsg$TIPC_NL_NET_SET(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000480)=ANY=[@ANYBLOB='d\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010080000000fedbdf250f002d0034000780080002"], 0x64}, 0x1, 0x0, 0x0, 0x2805}, 0x0) 7m13.294841964s ago: executing program 8 (id=7299): mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5) r0 = socket$inet6_udplite(0xa, 0x2, 0x88) setsockopt$inet6_udp_int(r0, 0x11, 0x66, &(0x7f0000000080)=0x3, 0x4) 7m12.771394841s ago: executing program 8 (id=7303): syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000180)='./file1\x00', 0x2000c16, &(0x7f0000000000)={[{@oldalloc}, {@acl}]}, 0xff, 0x257, &(0x7f0000000500)="$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") r0 = openat(0xffffffffffffff9c, &(0x7f0000000400)='./file1\x00', 0x143142, 0x40) ioctl$EXT4_IOC_GET_ES_CACHE(r0, 0xc020662a, &(0x7f0000000b00)={0xffffffff, 0x8000000007ff, 0x2, 0x100}) 7m12.018902663s ago: executing program 8 (id=7306): r0 = fsopen(&(0x7f0000000280)='cifs\x00', 0x0) fsconfig$FSCONFIG_SET_STRING(r0, 0x1, &(0x7f0000000200)='source', &(0x7f00000002c0)='\\/\xe9\x838\x9d<\f\x91\a\xd4$\xae$\x91&6n @\xf4M\xba\xf2<\xd6A\xdb\xd7\xbeY@g\xcc\xca\n@\x06\xa3\xfe%\x02\x96\xb7b\xa7\x15R.\xa3`fd\xdc\x8b\x18rBl{\x82\xda\xbeA\x17\n\f\xcd=\'\x11\x1bZ\x8e\xa1\xc3j$v\xefw\x96/\xff\xa2\xfc\xe3\xb8\xc7\x0f\xaaQ\x98F*T\xd5\xcd4g+\xbd\xd1\xe0R\x9d\x18\x19a:\xa2\xdf\xbe\x8b\x89\x81', 0x0) fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0) 7m11.231841174s ago: executing program 8 (id=7311): syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x21081e, &(0x7f0000000240)={[{@grpquota}, {@auto_da_alloc}, {@minixdf}]}, 0x1, 0x50c, &(0x7f0000000ac0)="$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") mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000180), 0x1204001, &(0x7f00000011c0)={[{@lowerdir={'lowerdir', 0x3d, './file0'}, 0x3a}], [], 0x2f}) llistxattr(&(0x7f0000000080)='./file0\x00', 0x0, 0x0) 7m10.427031869s ago: executing program 8 (id=7318): r0 = socket$kcm(0x10, 0x400000002, 0x0) write$cgroup_subtree(r0, &(0x7f0000000100)=ANY=[@ANYBLOB="0007000042009103"], 0xfe33) recvmsg(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000003700)=""/4066, 0xfe2}, {&(0x7f0000000140)=""/225, 0xe1}], 0x2}, 0x0) 6m55.129060599s ago: executing program 45 (id=7318): r0 = socket$kcm(0x10, 0x400000002, 0x0) write$cgroup_subtree(r0, &(0x7f0000000100)=ANY=[@ANYBLOB="0007000042009103"], 0xfe33) recvmsg(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000003700)=""/4066, 0xfe2}, {&(0x7f0000000140)=""/225, 0xe1}], 0x2}, 0x0) 4m43.117601615s ago: executing program 7 (id=8206): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0) sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000b00)={&(0x7f0000000440)=ANY=[@ANYBLOB="140000001000010000000000000000000a00000a78000000060a010400000000000000000200000038000480340001800a0001006d617463680000002400028008000100756470000e0003007acc6338a90000b03bd9000008000240000000000900010073797a30000000000900020073797a3200000000140005"], 0xa0}}, 0x0) 4m42.550326347s ago: executing program 7 (id=8211): r0 = socket(0x10, 0x3, 0x0) setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0xc, &(0x7f0000000040)={0x7fffffff}, 0x10) sendmsg$kcm(r0, &(0x7f00000016c0)={0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000000040)="1c00000022008102e00f80ecdb4cb9020a", 0x4a}, {&(0x7f0000001700)="0c74c75350f4a590e15c61c7942348092734fe1863473bbce6798a60e9", 0x1d}], 0x2, 0x0, 0x0, 0x10}, 0x0) 4m41.924881474s ago: executing program 7 (id=8215): r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x1b, &(0x7f0000000000)={@remote, 0x0, 0x2}, 0x20) syz_emit_ethernet(0x4e, &(0x7f00000000c0)={@local, @local, @void, {@ipv6={0x86dd, @udp={0x0, 0x6, "010100", 0x18, 0x11, 0x0, @remote, @remote, {[], {0x4e20, 0xe22, 0x18, 0x0, @wg=@data={0x4, 0x4a, 0x9}}}}}}}, 0x0) 4m41.388570093s ago: executing program 7 (id=8219): mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x0) r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) setsockopt$bt_hci_HCI_FILTER(r0, 0x0, 0x2, &(0x7f0000000000)={0x2ff, [0x5, 0x6], 0x6}, 0x10) 4m40.931179258s ago: executing program 7 (id=8231): r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0) ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000280)=0x10) statx(0xffffffffffffff9c, &(0x7f0000000100)='.\x00', 0x0, 0xffff4a9c0080ffff, 0x0) 4m40.507479875s ago: executing program 7 (id=8223): r0 = socket(0x80000000000000a, 0x2, 0x0) setsockopt$inet6_group_source_req(r0, 0x29, 0x2e, &(0x7f0000000200)={0x0, {{0xa, 0x0, 0x0, @mcast1={0xff, 0x7}, 0x2}}, {{0xa, 0x4e24, 0x0, @remote}}}, 0x108) setsockopt$inet6_group_source_req(r0, 0x29, 0x2f, &(0x7f0000000200)={0x0, {{0xa, 0xfff, 0x0, @mcast1={0xff, 0x7}}}, {{0xa, 0x0, 0x0, @remote}}}, 0x108) 4m34.301106356s ago: executing program 5 (id=8258): r0 = socket$inet6_udplite(0xa, 0x2, 0x88) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @remote}}, 0x1c) setsockopt$inet6_IPV6_ADDRFORM(r0, 0x29, 0x1, &(0x7f00000004c0), 0x4) 4m33.737870742s ago: executing program 5 (id=8261): r0 = socket$can_raw(0x1d, 0x3, 0x1) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000080)={'lo\x00', 0x0}) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x3, 0x3, &(0x7f0000000700)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000}}, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', r1, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) 4m32.974905684s ago: executing program 5 (id=8265): r0 = socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000300)={'bridge0\x00', 0x0}) sendmsg$nl_route(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000000)=@bridge_delneigh={0x28, 0x1c, 0x325, 0x70bd27, 0x25dfdbff, {0x7, 0x0, 0x0, r1, 0x80, 0x8e, 0x4}, [@NDA_LLADDR={0xa, 0x2, @dev={'\xaa\xaa\xaa\xaa\xaa', 0xc}}]}, 0x28}, 0x1, 0x0, 0x0, 0x240448c1}, 0x14) 4m32.578181495s ago: executing program 5 (id=8268): syz_mount_image$nilfs2(&(0x7f0000000ec0), &(0x7f0000000080)='./file0\x00', 0x0, &(0x7f0000000400)=ANY=[], 0x1, 0xf04, &(0x7f0000000f40)="$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") mount$overlay(0x0, &(0x7f0000000480)='./file0\x00', &(0x7f0000000380), 0x0, &(0x7f00000003c0)={[{@lowerdir={'lowerdir', 0x3d, './file0'}, 0x3a}], [], 0x2f}) listxattr(&(0x7f0000000180)='./file0\x00', 0x0, 0x0) 4m31.513555988s ago: executing program 5 (id=8272): r0 = socket$inet_smc(0x2b, 0x1, 0x0) setsockopt$inet_tcp_TLS_TX(r0, 0x11e, 0x1, &(0x7f0000000540)=@gcm_128={{0x303}, "e85c7fe3263c820d", "b592f2403565485c0403e559f2d2d966", "51306fda", "7a749084e6e48900"}, 0x28) listen(r0, 0x0) 4m30.695874424s ago: executing program 5 (id=8277): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000440), 0xffffffffffffffff) sendmsg$ETHTOOL_MSG_DEBUG_SET(r0, &(0x7f0000001540)={0x0, 0x0, &(0x7f0000001500)={&(0x7f0000000000)=ANY=[@ANYBLOB='D\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="0100000000000000000008000000180001801400020073797a5f74756e00000000000000000018000280080002001100000004000100080004"], 0x44}, 0x1, 0x0, 0x0, 0x10}, 0x8090) 4m27.930703638s ago: executing program 46 (id=8277): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000440), 0xffffffffffffffff) sendmsg$ETHTOOL_MSG_DEBUG_SET(r0, &(0x7f0000001540)={0x0, 0x0, &(0x7f0000001500)={&(0x7f0000000000)=ANY=[@ANYBLOB='D\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="0100000000000000000008000000180001801400020073797a5f74756e00000000000000000018000280080002001100000004000100080004"], 0x44}, 0x1, 0x0, 0x0, 0x10}, 0x8090) 4m25.237443867s ago: executing program 47 (id=8223): r0 = socket(0x80000000000000a, 0x2, 0x0) setsockopt$inet6_group_source_req(r0, 0x29, 0x2e, &(0x7f0000000200)={0x0, {{0xa, 0x0, 0x0, @mcast1={0xff, 0x7}, 0x2}}, {{0xa, 0x4e24, 0x0, @remote}}}, 0x108) setsockopt$inet6_group_source_req(r0, 0x29, 0x2f, &(0x7f0000000200)={0x0, {{0xa, 0xfff, 0x0, @mcast1={0xff, 0x7}}}, {{0xa, 0x0, 0x0, @remote}}}, 0x108) 2m57.656786125s ago: executing program 3 (id=8759): r0 = socket(0x10, 0x3, 0x0) setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0xc, &(0x7f0000000000)={0x7d}, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)=ANY=[@ANYBLOB="180000001600010a000000000c0000000c000080"], 0x20}}, 0x40816) 2m57.13389436s ago: executing program 3 (id=8764): r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0) ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f0000000080)={0x73622a85, 0x100}) ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000440)={0x14, 0x0, &(0x7f0000000340)=[@increfs_done={0x40106309}], 0x0, 0x0, 0x0}) 2m56.573533998s ago: executing program 3 (id=8769): r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000040), r0) sendmsg$NLBL_MGMT_C_ADDDEF(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000001c0)=ANY=[@ANYBLOB='L\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="01000000000000000000040000e41300050003030000000a0000005dc000000000010800020005000000140006"], 0x4c}, 0x1, 0x0, 0x0, 0x20008084}, 0x4040000) 2m55.982623645s ago: executing program 3 (id=8774): r0 = socket$alg(0x26, 0x5, 0x0) io_setup(0x1, &(0x7f0000000b80)=0x0) io_submit(r1, 0x1, &(0x7f0000001d00)=[&(0x7f0000001a80)={0x0, 0x0, 0x0, 0x5, 0x0, r0, 0x0}]) 2m55.155933518s ago: executing program 3 (id=8779): r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0) ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f00000002c0)=0x20) fcntl$setstatus(r0, 0x4, 0x2c00) 2m54.756284386s ago: executing program 3 (id=8782): r0 = socket$can_bcm(0x1d, 0x2, 0x2) connect$can_bcm(r0, &(0x7f0000000040), 0x10) sendmsg$netlink(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000005cc0)=[{&(0x7f0000001380)=ANY=[], 0x38}], 0x1, 0x0, 0x0, 0x44011}, 0x4004086) 2m39.50062307s ago: executing program 48 (id=8782): r0 = socket$can_bcm(0x1d, 0x2, 0x2) connect$can_bcm(r0, &(0x7f0000000040), 0x10) sendmsg$netlink(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000005cc0)=[{&(0x7f0000001380)=ANY=[], 0x38}], 0x1, 0x0, 0x0, 0x44011}, 0x4004086) 1m14.308429557s ago: executing program 1 (id=9387): r0 = openat$adsp1(0xffffffffffffff9c, &(0x7f0000000140), 0x2, 0x0) ioctl$SNDCTL_DSP_SETFRAGMENT(r0, 0xc004500a, &(0x7f0000000000)=0xffff0018) ioctl$SOUND_PCM_READ_CHANNELS(r0, 0x80045006, 0x0) 1m12.912543742s ago: executing program 1 (id=9393): r0 = memfd_create(&(0x7f00000000c0)='[\v\xdbX\xae[\x1a\xb9\xfd\xfa\xad\xd1md\xc8\x85HX\xa9%\f\x1ae\xe0\x00\x00\x00\x00\xfb\xff\x00\x00\x81\x9eG\xd9,\xe2\xc6a\x9f\xe8\xf1\x00\x00\xe2+Op\xd0\xa2\x82\x1eb(\xb5\xe1jS\xf1\x91%||\xa0\x8ez\xadT\xc8\f\xe5\x89\xbf3:\x99\x1e\xac`\xc3\xcf\xd3\xae\xd2\a\x11\xa9\xa5^\xff\xf5\x95\xd2q#\xc6\xca\x97\x9d\xcb\x1e\x80\xd6\xd5%N&\xf8\xd8%!\x11wK4Ix\x8fW\x19#\x80z8Z\xd2}\xf5\xe4\x9f5\x9b\x01\xf9t\xbb\x1er\x14\xdb\xd3\xcd\xfd\x00\x00\x00\x00h#Ec\xb2\xf8U\f\xb5\xbb&\x7f\xbf\x84?\xa4\'\x85\x05\x00\x00\x00\x00\x00\x00\x00z@<\xb3\\i\x83\xa2-6U\xe3\xaa!\x963\xde\x13\xaa\x13\b+\xe44\xaeg\xa8F\x16\xbd/\x97\x9f\x00\xfam\x90\xb4\x16f\xc8\xef\x11\xcbj\x04Z\xb2\x04\x16X\xb4\x1ai\xec\x14\x85\xa7\x00e|C\x99\x00\\\x9ec\x01\x00\x00\x00I]\r`\x9fMA/[\b\xde\xcb\xacX#\xa33\xda|\xcf\xd7\xc2~j\x1eP\x18\x84&\xcc\xd7\x98\xe7j\x86\x18#\xd0\r\xe0\x18\xb8\x05X\f\xbcc\xaa\x1bzHwm\xbd\x12\xe9+\x9a\x97\xec\xd1\xd2\n\x80Y\xf2O\xe2\xa9u#}!\x8b\x9cr\xfe\xcb7\x90V\x02\xa3I%\xb8\x0f\xd8b\xf5\x02\xae[O0yu\xc0\xc8\xce3\x11\xea\x83\xeaM\xfc-\x9d\xafq\xbd\x1d*\x026\xf7\x8b\xa6\x0f\xa1\x90dct-\xb8\xf4', 0x0) write$binfmt_script(r0, &(0x7f0000000300)={'#! ', './file0'}, 0xb) execveat(r0, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1000) 1m12.222060485s ago: executing program 1 (id=9398): r0 = socket$packet(0x11, 0x2, 0x300) setsockopt$packet_tx_ring(r0, 0x107, 0xd, &(0x7f0000000180)=@req3={0x10000, 0x100000001, 0x10000, 0x1}, 0x1c) poll(&(0x7f0000000040)=[{r0, 0x4102}], 0x1, 0x3) 1m11.389691744s ago: executing program 1 (id=9402): syz_mount_image$ext4(&(0x7f00000003c0)='ext4\x00', &(0x7f00000002c0)='./bus\x00', 0x404, &(0x7f0000000580)={[{@orlov}, {@min_batch_time={'min_batch_time', 0x3d, 0x4}}]}, 0x1, 0x5d8, &(0x7f0000000c00)="$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") syz_mount_image$fuse(0x0, &(0x7f0000000400)='./file4\x00', 0x1018000, 0x0, 0x1, 0x0, 0x0) mount$overlay(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000), 0x10000, &(0x7f0000000080)={[{@workdir={'workdir', 0x3d, './file0'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file4'}}], [], 0x2c}) 1m10.063520153s ago: executing program 1 (id=9409): syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x3000046, &(0x7f0000000200)={[{@errors_remount}, {@data_err_abort}, {@barrier_val={'barrier', 0x3d, 0x7}}, {@dioread_lock}, {@data_err_ignore}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x10}}, {@data_err_ignore}, {@grpquota}, {@nobh}, {@user_xattr}, {@bh}, {@nojournal_checksum}]}, 0x1, 0x553, &(0x7f0000001080)="$eJzs3d9rW1UcAPDvTdv91nUwhopIYQ9O5tK19ccEH+aj6HCg7zO0d2U0WUaTjrUO3B7ciy8yBBEH4ru++zj8B/wrBjoYMoo++BK56U2XrUmbddnSmc8Hbjkn9ybnfnPv9/TcnBsSwNCayP4UIl6OiG+SiIMRkeTrRiNfObG23er9q7PZkkSj8elfSXO7rN56rdbz9ueVlyLit68ijhc2tltbXlkolcvpYl6frFcuTdaWV05cqJTm0/n04vTMzKm3Z6bfe/edvsX6xtl/vv/k9oenvj66+t0vdw/dTOJ0HMjXtcfxBK61VyZiIn9PxuL0IxtO9aGxnSQZ9A6wLSN5no9F1gccjJE864H/vy8jogEMqUT+w5BqjQNa1/Z9ug5+btz7YO0CaGP8o2ufjcSe5rXRvtXkoSuj7Hp3vA/tZ238+uetm9kS/fscAmBL165HxMnR0Y39X5L3f9t3sodtHm1D/wfPzu1s/PNmp/FPYX38Ex3GP/s75O52bJ3/hbt9aKarbPz3fsfx7/qk1fhIXnuhOeYbS85fKKdZ3/ZiRByLsd1ZfbP5nFOrdxrd1rWP/7Ila781Fsz34+7o7oefM1eql54k5nb3rke80nH8m6wf/6TD8c/ej7M9tnEkvfVat3Vbx/90NX6KeL3j8X8wo5VsPj852TwfJltnxUZ/3zjye7f2Bx1/dvz3bR7/eNI+X1t7/DZ+3PNv2m3dQ/FH7+f/ruSzZnlX/tiVUr2+OBWxK/l44+PTD57bqre2z+I/dnTz/q/T+b83Ij7vMf4bh39+taf4B3T85x7r+D9+4c5HX/zQrf3e+r+3mqVj+SO99H+97uCTvHcAAAAAAACw0xQi4kAkheJ6uVAoFtfu7zgc+wrlaq1+/Hx16eJcNL8rOx5jhdZM98G2+yGm8vthW/XpR+ozEXEoIr4d2dusF2er5blBBw8AAAAAAAAAAAAAAAAAAAA7xP4u3//P/DEy6L0Dnjo/+Q3Da8v878cvPQE7kv//MLzkPwwv+Q/DS/7D8JL/MLzkPwwv+Q/DS/4DAAAAAAAAAAAAAAAAAAAAAAAAAABAX509cyZbGqv3r85m9bnLy0sL1csn5tLaQrGyNFucrS5eKs5Xq/PltDhbrWz1euVq9dLUdCxdmayntfpkbXnlXKW6dLF+7kKlNJ+eS8eeSVQAAAAAAAAAAAAAAAAAAADwfKktryyUyuV0UUFhW4XRnbEbCn0uDLpnAgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIAH/gsAAP//6AY3sQ==") lsetxattr$trusted_overlay_upper(&(0x7f00000001c0)='./file1\x00', &(0x7f0000000180), &(0x7f00000001c0)=ANY=[], 0x361, 0x0) lsetxattr$system_posix_acl(&(0x7f0000000000)='./file1\x00', &(0x7f00000000c0)='system.posix_acl_access\x00', &(0x7f00000002c0)={{}, {0x1, 0x2}, [{0x2, 0x5}, {0x2, 0x2}, {0x2, 0x3}], {}, [], {0x10, 0x5}}, 0x3c, 0x2) 1m9.210131127s ago: executing program 1 (id=9412): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201}) ioctl$TUNSETOFFLOAD(r0, 0x400454d0, 0xde814e038ed52c61) 1m7.229142491s ago: executing program 49 (id=9412): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201}) ioctl$TUNSETOFFLOAD(r0, 0x400454d0, 0xde814e038ed52c61) 4.502287435s ago: executing program 4 (id=9748): r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000040)='dctcp-reno\x00', 0xb) setsockopt$inet6_int(r0, 0x29, 0x31, 0x0, 0x0) 3.903285729s ago: executing program 9 (id=9751): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x1, 0xcf, 0x5, 0x7}, 0x50) close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000300), &(0x7f00000004c0), 0x83f, r0}, 0x38) 3.554596677s ago: executing program 6 (id=9752): syz_mount_image$hfs(&(0x7f0000000040), &(0x7f0000000a80)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x14013, &(0x7f0000000480)={[{@gid}, {@uid}, {@iocharset={'iocharset', 0x3d, 'macgaelic'}}]}, 0x4, 0x339, &(0x7f0000000140)="$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") r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0) getdents64(r0, &(0x7f00000002c0)=""/174, 0xae) 3.527034249s ago: executing program 4 (id=9753): r0 = socket$inet6(0xa, 0x2, 0x3a) r1 = dup(r0) sendmsg$NFT_BATCH(r1, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x7c}}, 0x2000c085) 3.474802614s ago: executing program 2 (id=9754): r0 = socket$netlink(0x10, 0x3, 0x8000000004) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) splice(r0, &(0x7f0000000080)=0x7fffffffffffffff, r1, 0x0, 0x800000000fc, 0x4) 3.3905412s ago: executing program 0 (id=9755): unshare(0x20000400) r0 = openat$binder_debug(0xffffffffffffff9c, &(0x7f0000000380)='/sys/kernel/debug/binder/stats\x00', 0x0, 0x0) lseek(r0, 0x851, 0xf5) 3.047507852s ago: executing program 9 (id=9756): r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$netlbl_calipso(&(0x7f0000000840), r0) sendmsg$NLBL_CALIPSO_C_LIST(r0, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000240)={0x14, r1, 0x1, 0x70bd2a, 0x25dfdbfb}, 0x14}, 0x1, 0x0, 0x0, 0x81}, 0x24000080) 2.919022671s ago: executing program 2 (id=9757): socket$kcm(0x2c, 0x3, 0x0) r0 = socket$netlink(0x10, 0x3, 0x400000000000004) writev(r0, &(0x7f0000019440)=[{&(0x7f0000000340)="480000001400190d7ebdeb75fd0d8c562c84d8c033ed090f0000600000f3a1bc5603ca00000f7f89e3ff296aa1f6475322f000200000004a2471083ec6991778581acb6c0101ff00", 0x48}], 0x1) 2.841525353s ago: executing program 4 (id=9758): syz_mount_image$vfat(&(0x7f0000000080), &(0x7f0000000380)='./file0\x00', 0x1000804, &(0x7f0000000740)=ANY=[@ANYBLOB="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"], 0x1, 0x27d, &(0x7f00000003c0)="$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") r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x0) getdents64(r0, &(0x7f0000000f80)=""/4096, 0x1000) 2.774018466s ago: executing program 6 (id=9759): r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000040)="1400000016000b63d25a80648c2594f913", 0x11}], 0x1}, 0x0) sendmsg$NLBL_CIPSOV4_C_ADD(r0, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000000040)=ANY=[], 0x34}}, 0x0) 2.600722023s ago: executing program 0 (id=9760): madvise(&(0x7f0000000000/0x600000)=nil, 0x600722, 0x66) r0 = socket$qrtr(0x2a, 0x2, 0x0) ioctl$sock_qrtr_SIOCGIFADDR(r0, 0x8915, 0x0) 2.452196001s ago: executing program 9 (id=9761): bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000440)={0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000000), 0x0}, 0x50) ioctl$UFFDIO_COPY(0xffffffffffffffff, 0xc028aa03, &(0x7f0000000440)={&(0x7f0000800000/0x800000)=nil, &(0x7f000051f000/0x4000)=nil, 0x800000, 0x1, 0xfe}) syz_io_uring_setup(0x2c0c, &(0x7f0000000400)={0x0, 0x0, 0x4000}, 0x0, 0x0) 2.445780516s ago: executing program 2 (id=9762): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPCTNL_MSG_CT_NEW(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYBLOB="640000000001010400000000141a000002000000240001801400018008000100e000000108000200e00000010c00028005000100000000002400028014000180080001000000000008000200ac1e00010c00028005000100000000000800074000000001"], 0x64}}, 0x0) sendmsg$IPCTNL_MSG_CT_NEW(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000005c0)=ANY=[@ANYBLOB="14010000000101040000000000000000020000001c001880080001400000000208000240000000000820034000000000240001801400018008000100e000000108000200e00000010c000280050001"], 0x114}, 0x1, 0x0, 0x0, 0x4}, 0x44010) 2.164821556s ago: executing program 6 (id=9763): r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nbd(&(0x7f0000000380), 0xffffffffffffffff) sendmsg$NBD_CMD_CONNECT(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)={0x30, r1, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x10, 0x7, 0x0, 0x1, [{0xc, 0x2, 0x0, 0x1, {0x8}}]}]}, 0x30}, 0x1, 0x0, 0x0, 0x8004}, 0x0) 2.140011615s ago: executing program 4 (id=9764): r0 = openat$vicodec0(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0) pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000140)="f9ac", 0x2}], 0x1, 0x3, 0xd4bd) ioctl$VIDIOC_STREAMON(r0, 0x40045612, &(0x7f0000000080)=0x8000) 1.959615298s ago: executing program 0 (id=9765): r0 = socket$xdp(0x2c, 0x3, 0x0) setsockopt$XDP_RX_RING(r0, 0x11b, 0x2, &(0x7f0000001980)=0x100, 0x4) getsockopt$XDP_STATISTICS(r0, 0x11b, 0x7, &(0x7f0000000200), &(0x7f00000002c0)=0x30) 1.790515362s ago: executing program 2 (id=9766): r0 = syz_open_dev$swradio(&(0x7f0000000300), 0x1, 0x2) ioctl$VIDIOC_CREATE_BUFS(r0, 0xc0f8565c, &(0x7f0000000040)={0xfffffffc, 0xd, 0x2, {0xb, @pix={0x9625, 0x9ac1, 0x32314752, 0x6, 0x3, 0x101, 0x3, 0xe2, 0x0, 0x7, 0x1, 0x1}}, 0x1}) preadv(r0, &(0x7f00000007c0)=[{&(0x7f0000000380)=""/62, 0x3e}], 0x1, 0x9, 0x4) 1.57042986s ago: executing program 9 (id=9767): mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0) mount$fuse(0x0, 0x0, 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB='fd=']) mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000)='autofs\x00', 0x0, &(0x7f0000000100)) 1.366958149s ago: executing program 6 (id=9768): madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe) bind$inet6(0xffffffffffffffff, &(0x7f000047b000)={0xa, 0x4e23, 0x0, @private2}, 0x1c) madvise(&(0x7f000042f000/0x800000)=nil, 0x80fd00, 0x15) 1.362924268s ago: executing program 0 (id=9769): bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000140)={0x6, 0x3, 0x0, 0x0, 0x2}, 0x90) r0 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000dc0)={&(0x7f0000000c80)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@const]}}, 0x0, 0x26}, 0x20) bpf$BPF_GET_BTF_INFO(0xf, &(0x7f0000000080)={r0, 0x20, &(0x7f0000000140)={0x0, 0x0, 0x0, 0xfffffffffffffffe}}, 0x10) 1.208357754s ago: executing program 2 (id=9770): bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@bloom_filter={0x1e, 0x0, 0x4000, 0x3, 0x4, 0x1}, 0x48) r0 = syz_open_procfs(0x0, &(0x7f0000000240)='fdinfo/3\x00') lseek(r0, 0x4, 0x0) 1.190694076s ago: executing program 4 (id=9771): sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f00000008c0)=ANY=[@ANYBLOB="6c0000001000010400d201000072f60000020000", @ANYRES32=0x0, @ANYBLOB="0524060000000000300012800b0001006272696467650000200002800c002e00fffff6ffffffffff050007"], 0x6c}}, 0x0) r0 = socket(0x10, 0x3, 0x0) sendmmsg$alg(r0, &(0x7f0000000140), 0x4924b68, 0x0) 1.045659771s ago: executing program 9 (id=9772): syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x200000, &(0x7f00000000c0)={[{@noinit_itable}, {@dax_inode}, {@nolazytime}, {@abort}, {@dax_inode}, {@lazytime}, {@noload}, {}, {@noauto_da_alloc}]}, 0xfe, 0x556, &(0x7f0000000c00)="$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") chdir(&(0x7f0000000140)='./file0\x00') utime(&(0x7f0000000300)='./file1\x00', 0x0) 877.726507ms ago: executing program 0 (id=9773): r0 = socket$inet_udp(0x2, 0x2, 0x0) bind$inet(r0, &(0x7f0000000080)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x28}}, 0x10) sendmmsg$inet(r0, &(0x7f0000001780)=[{{&(0x7f0000000000)={0x2, 0x4e20, @multicast1}, 0x10, 0x0}}, {{0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000003740)="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", 0x4d9}], 0x1}}, {{0x0, 0x0, &(0x7f0000000200)=[{&(0x7f00000000c0)="372020e0", 0x4}], 0x1}}], 0x3, 0x24008020) 533.716148ms ago: executing program 6 (id=9774): r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000040)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000080)={0xffffffffffffffff}, 0x13f, 0xc}}, 0x20) write$RDMA_USER_CM_CMD_SET_OPTION(r0, &(0x7f00000000c0)={0xe, 0x18, 0xfa00, @id_tos={&(0x7f0000000400), r1, 0x0, 0x3, 0x1}}, 0x20) 399.805877ms ago: executing program 2 (id=9775): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x6, 0x4, 0x8, 0x8}, 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xc, 0xc, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000018150000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400001d000000850000001500000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r1, 0x0, 0xe, 0x0, &(0x7f0000000100)="e0857f9f582f0300000000000000", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) 330.772532ms ago: executing program 0 (id=9776): socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={0xffffffffffffffff}) recvmmsg(r0, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0) connect$unix(r0, &(0x7f0000000300)=@abs={0x0, 0x0, 0x4e21}, 0x6e) 274.63809ms ago: executing program 4 (id=9777): r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) setsockopt$WPAN_SECURITY(r0, 0x0, 0x1, &(0x7f0000000040)=0x2, 0x4) sendmsg$802154_dgram(r0, &(0x7f00000000c0)={&(0x7f0000000000)={0x24, @long={0x3, 0xffff, {0xaaaaaaaaaaaa0302}}}, 0x14, &(0x7f0000000080)={0x0}, 0x1, 0x0, 0x0, 0x20044005}, 0x4000010) 65.674861ms ago: executing program 9 (id=9778): r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$netlbl_cipso(&(0x7f00000002c0), r0) sendmsg$NLBL_CIPSOV4_C_ADD(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000180)={0x48, r1, 0x1, 0x70bd27, 0x25dfdbfb, {}, [@NLBL_CIPSOV4_A_DOI={0x8, 0x1, 0x3}, @NLBL_CIPSOV4_A_TAGLST={0x24, 0x4, 0x0, 0x1, [{0x5, 0x3, 0x1}, {0x5, 0x3, 0x1}, {0x5, 0x3, 0x2}, {0x5, 0x3, 0x5}]}, @NLBL_CIPSOV4_A_MTYPE={0x8, 0x2, 0x2}]}, 0x48}}, 0x0) 0s ago: executing program 6 (id=9779): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFULNL_MSG_CONFIG(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)={0x1c, 0x1, 0x4, 0x301, 0x0, 0x0, {}, [@NFULA_CFG_CMD={0x5, 0x1, 0x1}]}, 0x1c}}, 0x0) sendmsg$NFULNL_MSG_CONFIG(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)={0x20, 0x1, 0x4, 0x3, 0x0, 0x0, {}, [@NFULA_CFG_MODE={0xa, 0x2, {0x2, 0x1}}]}, 0x20}, 0x1, 0x0, 0x0, 0x805}, 0x0) kernel console output (not intermixed with test programs): . Quota mode: writeback. [ 1859.603866][T26213] EXT4-fs error (device loop9): mb_free_blocks:1948: group 0, inode 15: block 129:freeing already freed block (bit 8); block bitmap corrupt. [ 1859.917448][T23601] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1860.459659][T26229] (unnamed net_device) (uninitialized): invalid ARP target 0.0.0.0 specified for addition [ 1860.470163][T26229] (unnamed net_device) (uninitialized): option arp_ip_target: invalid value (0) [ 1860.634311][T26234] netlink: 60 bytes leftover after parsing attributes in process `syz.1.8461'. [ 1860.794541][T26235] loop4: detected capacity change from 0 to 1024 [ 1861.090763][ T3447] hfsplus: b-tree write err: -5, ino 4 [ 1862.605364][T26265] netlink: 24 bytes leftover after parsing attributes in process `syz.4.8477'. [ 1862.651289][T26264] loop9: detected capacity change from 0 to 1024 [ 1862.688770][T26264] EXT4-fs: Ignoring removed nobh option [ 1862.695283][T26264] EXT4-fs: Ignoring removed bh option [ 1862.766679][T26264] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1862.923315][ T24] usb 2-1: new high-speed USB device number 35 using dummy_hcd [ 1863.060984][T23601] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1863.100827][ T24] usb 2-1: Using ep0 maxpacket: 8 [ 1863.136742][ T24] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 4 [ 1863.150806][ T24] usb 2-1: New USB device found, idVendor=17ef, idProduct=6009, bcdDevice= 0.00 [ 1863.164694][ T24] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1863.215644][ T24] usb 2-1: config 0 descriptor?? [ 1863.297788][T26276] program syz.3.8481 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 1863.735305][ T24] lenovo 0003:17EF:6009.0053: hidraw0: USB HID vff.fa Device [HID 17ef:6009] on usb-dummy_hcd.1-1/input0 [ 1863.827271][T26282] loop3: detected capacity change from 0 to 256 [ 1863.887076][T26146] usb 2-1: USB disconnect, device number 35 [ 1863.954683][T26286] netlink: 8 bytes leftover after parsing attributes in process `syz.9.8486'. [ 1863.990067][T26282] FAT-fs (loop3): Directory bread(block 64) failed [ 1863.997571][T26282] FAT-fs (loop3): Directory bread(block 65) failed [ 1864.004859][T26282] FAT-fs (loop3): Directory bread(block 66) failed [ 1864.011688][T26282] FAT-fs (loop3): Directory bread(block 67) failed [ 1864.018877][T26282] FAT-fs (loop3): Directory bread(block 68) failed [ 1864.026056][T26282] FAT-fs (loop3): Directory bread(block 69) failed [ 1864.033171][T26282] FAT-fs (loop3): Directory bread(block 70) failed [ 1864.039996][T26282] FAT-fs (loop3): Directory bread(block 71) failed [ 1864.047203][T26282] FAT-fs (loop3): Directory bread(block 72) failed [ 1864.054771][T26282] FAT-fs (loop3): Directory bread(block 73) failed [ 1864.514145][T26291] netlink: 60 bytes leftover after parsing attributes in process `syz.4.8487'. [ 1864.561472][T26288] netlink: 60 bytes leftover after parsing attributes in process `syz.4.8487'. [ 1864.753868][T26293] loop0: detected capacity change from 0 to 2048 [ 1864.868935][T26293] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 1865.871701][T26312] netlink: 8 bytes leftover after parsing attributes in process `syz.4.8498'. [ 1865.884264][T26313] loop3: detected capacity change from 0 to 164 [ 1865.918520][T26313] Unable to read rock-ridge attributes [ 1865.985721][T26313] Unable to read rock-ridge attributes [ 1866.654386][T26325] netdevsim netdevsim1 netdevsim0: Device is already in use. [ 1866.845585][ T24] hid-generic 0000:0003:0000.0054: unknown main item tag 0x0 [ 1866.853705][ T24] hid-generic 0000:0003:0000.0054: unknown main item tag 0x0 [ 1866.903173][ T24] hid-generic 0000:0003:0000.0054: hidraw0: HID v0.00 Device [syz0] on syz1 [ 1867.834366][T26339] loop1: detected capacity change from 0 to 1024 [ 1868.735915][T26146] usb 4-1: new full-speed USB device number 5 using dummy_hcd [ 1868.770212][T26353] netlink: 4 bytes leftover after parsing attributes in process `syz.4.8519'. [ 1868.824965][T26353] netlink: 4 bytes leftover after parsing attributes in process `syz.4.8519'. [ 1868.937298][T26146] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 1023, setting to 64 [ 1868.948964][T26146] usb 4-1: New USB device found, idVendor=04f3, idProduct=0755, bcdDevice= 0.00 [ 1868.958779][T26146] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1869.098048][T26146] usb 4-1: config 0 descriptor?? [ 1869.107172][T26351] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22 [ 1869.846853][T26146] elan 0003:04F3:0755.0055: unknown main item tag 0x0 [ 1869.854506][T26146] elan 0003:04F3:0755.0055: item fetching failed at offset 3/5 [ 1869.919463][T26146] elan 0003:04F3:0755.0055: Hid Parse failed [ 1869.926455][T26146] elan 0003:04F3:0755.0055: probe with driver elan failed with error -22 [ 1870.010397][T26358] [U] [ 1870.072060][T26146] usb 4-1: USB disconnect, device number 5 [ 1871.176587][T26363] mkiss: ax0: crc mode is auto. [ 1872.232438][T26374] netlink: 4 bytes leftover after parsing attributes in process `syz.3.8529'. [ 1873.765105][T26395] loop0: detected capacity change from 0 to 256 [ 1873.857886][T26395] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0xbe66f6fd, utbl_chksum : 0xe619d30d) [ 1874.438514][T26403] loop4: detected capacity change from 0 to 1024 [ 1874.857433][ T3631] hfsplus: b-tree write err: -5, ino 4 [ 1875.685336][T26422] loop0: detected capacity change from 0 to 2048 [ 1875.805909][T26429] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 1877.311508][T26453] loop0: detected capacity change from 0 to 1024 [ 1877.767868][ T4510] hfsplus: bad catalog file entry [ 1878.027283][T26464] loop9: detected capacity change from 0 to 256 [ 1878.440969][T26464] FAT-fs (loop9): Directory bread(block 64) failed [ 1878.448440][T26464] FAT-fs (loop9): Directory bread(block 65) failed [ 1878.455995][T26464] FAT-fs (loop9): Directory bread(block 66) failed [ 1878.463040][T26464] FAT-fs (loop9): Directory bread(block 67) failed [ 1878.470041][T26464] FAT-fs (loop9): Directory bread(block 68) failed [ 1878.477138][T26464] FAT-fs (loop9): Directory bread(block 69) failed [ 1878.484387][T26464] FAT-fs (loop9): Directory bread(block 70) failed [ 1878.491231][T26464] FAT-fs (loop9): Directory bread(block 71) failed [ 1878.498517][T26464] FAT-fs (loop9): Directory bread(block 72) failed [ 1878.505557][T26464] FAT-fs (loop9): Directory bread(block 73) failed [ 1878.555854][T26470] loop3: detected capacity change from 0 to 2048 [ 1878.659698][T26470] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 1878.914318][T26478] netlink: 4 bytes leftover after parsing attributes in process `syz.1.8577'. [ 1878.964288][T26478] netlink: 4 bytes leftover after parsing attributes in process `syz.1.8577'. [ 1879.308614][T26481] loop4: detected capacity change from 0 to 256 [ 1879.636336][T26481] FAT-fs (loop4): Directory bread(block 64) failed [ 1879.646764][T26481] FAT-fs (loop4): Directory bread(block 65) failed [ 1879.655116][T26481] FAT-fs (loop4): Directory bread(block 66) failed [ 1879.662016][T26481] FAT-fs (loop4): Directory bread(block 67) failed [ 1879.669361][T26481] FAT-fs (loop4): Directory bread(block 68) failed [ 1879.676419][T26481] FAT-fs (loop4): Directory bread(block 69) failed [ 1879.683617][T26481] FAT-fs (loop4): Directory bread(block 70) failed [ 1879.690548][T26481] FAT-fs (loop4): Directory bread(block 71) failed [ 1879.697752][T26481] FAT-fs (loop4): Directory bread(block 72) failed [ 1879.704865][T26481] FAT-fs (loop4): Directory bread(block 73) failed [ 1881.621990][T26515] loop4: detected capacity change from 0 to 4096 [ 1881.641784][T26515] ntfs3(loop4): Different NTFS sector size (2048) and media sector size (512). [ 1882.431310][T26527] loop3: detected capacity change from 0 to 2048 [ 1882.573153][T26529] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 1884.370780][T26557] loop3: detected capacity change from 0 to 512 [ 1884.426042][T26557] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 1884.504256][T26557] EXT4-fs (loop3): 1 truncate cleaned up [ 1884.513199][T26557] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1884.950641][T25759] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1885.296098][T26573] loop9: detected capacity change from 0 to 1024 [ 1885.334468][T26579] netlink: 'syz.3.8622': attribute type 1 has an invalid length. [ 1885.352459][T26573] EXT4-fs: Ignoring removed i_version option [ 1885.403761][T26573] EXT4-fs (loop9): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 1885.463631][T26577] loop4: detected capacity change from 0 to 1024 [ 1885.513091][T26573] EXT4-fs error (device loop9): ext4_read_block_bitmap_nowait:483: comm syz.9.8621: Invalid block bitmap block 0 in block_group 0 [ 1885.572585][T26577] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1885.592067][T26577] ext4 filesystem being mounted at /1072/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 1885.637242][T26573] Quota error (device loop9): write_blk: dquota write failed [ 1885.645327][T26573] Quota error (device loop9): qtree_write_dquot: Error -117 occurred while creating quota [ 1885.656328][T26573] EXT4-fs error (device loop9): ext4_acquire_dquot:6933: comm syz.9.8621: Failed to acquire dquot type 0 [ 1885.697148][T26577] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000000000. [ 1885.746904][T26573] EXT4-fs error (device loop9): ext4_free_blocks:6587: comm syz.9.8621: Freeing blocks not in datazone - block = 0, count = 4096 [ 1885.827344][T26573] EXT4-fs error (device loop9): ext4_read_inode_bitmap:139: comm syz.9.8621: Invalid inode bitmap blk 0 in block_group 0 [ 1885.845400][ T3631] Quota error (device loop9): do_check_range: Getting block 0 out of range 1-8 [ 1885.855109][ T3631] EXT4-fs error (device loop9): ext4_release_dquot:6969: comm kworker/u8:17: Failed to release dquot type 0 [ 1885.901260][T26573] EXT4-fs error (device loop9) in ext4_free_inode:361: Corrupt filesystem [ 1885.956682][T14123] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1885.983241][T26573] EXT4-fs (loop9): 1 orphan inode deleted [ 1885.995912][T26573] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1886.064139][T26588] tipc: Enabling of bearer rejected, failed to enable media [ 1886.420406][T23601] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1886.422267][T26592] netlink: 'syz.0.8629': attribute type 1 has an invalid length. [ 1886.439189][T26592] netlink: 'syz.0.8629': attribute type 2 has an invalid length. [ 1887.976380][T26618] loop4: detected capacity change from 0 to 1024 [ 1888.220834][T26622] loop0: detected capacity change from 0 to 64 [ 1888.289934][T26624] Dead loop on virtual device ip6_vti0, fix it urgently! [ 1888.428803][ T3967] hfsplus: b-tree write err: -5, ino 4 [ 1888.535989][ T1285] ieee802154 phy0 wpan0: encryption failed: -22 [ 1888.905690][T26628] loop3: detected capacity change from 0 to 2048 [ 1888.986068][T26628] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1888.999109][T26628] ext4 filesystem being mounted at /68/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 1889.008270][T26638] netlink: 4 bytes leftover after parsing attributes in process `syz.0.8650'. [ 1889.013901][T26632] loop4: detected capacity change from 0 to 512 [ 1889.043973][T26632] EXT4-fs: Ignoring removed orlov option [ 1889.150283][T26632] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 1889.251634][T26632] EXT4-fs (loop4): orphan cleanup on readonly fs [ 1889.333891][T26632] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.8648: bg 0: block 248: padding at end of block bitmap is not set [ 1889.396671][T26632] Quota error (device loop4): write_blk: dquota write failed [ 1889.405069][T26632] Quota error (device loop4): qtree_write_dquot: Error -117 occurred while creating quota [ 1889.415750][T26632] EXT4-fs error (device loop4): ext4_acquire_dquot:6933: comm syz.4.8648: Failed to acquire dquot type 1 [ 1889.439806][T26632] EXT4-fs (loop4): 1 truncate cleaned up [ 1889.457234][T26632] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 1889.592339][T25759] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1889.749764][T14123] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1889.821413][T26645] loop9: detected capacity change from 0 to 256 [ 1889.840983][T26647] netlink: 8 bytes leftover after parsing attributes in process `syz.1.8655'. [ 1889.850850][T26647] netlink: 4 bytes leftover after parsing attributes in process `syz.1.8655'. [ 1889.860258][T26647] netlink: 'syz.1.8655': attribute type 15 has an invalid length. [ 1889.906539][T26645] exfat: Deprecated parameter 'utf8' [ 1889.989839][T26645] exFAT-fs (loop9): failed to load upcase table (idx : 0x00010000, chksum : 0x4d7dfc9d, utbl_chksum : 0xe619d30d) [ 1890.945703][T26662] devpts: Bad value for 'uid' [ 1890.950736][T26662] devpts: Bad value for 'uid' [ 1891.046758][T26664] loop1: detected capacity change from 0 to 512 [ 1891.070050][T26664] EXT4-fs: Ignoring removed bh option [ 1891.130832][T26664] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended [ 1891.140561][T26664] EXT4-fs (loop1): mounting ext2 file system using the ext4 subsystem [ 1891.169996][T26664] EXT4-fs (loop1): warning: mounting unchecked fs, running e2fsck is recommended [ 1891.188675][T26664] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=c002e01c, mo2=0006] [ 1891.202339][T26664] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1891.518729][T26671] ip6_vti0 speed is unknown, defaulting to 1000 [ 1891.528474][T26671] ip6_vti0 speed is unknown, defaulting to 1000 [ 1891.536706][T26671] ip6_vti0 speed is unknown, defaulting to 1000 [ 1891.938750][T14116] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1892.031602][T26679] netlink: 60 bytes leftover after parsing attributes in process `syz.9.8668'. [ 1892.059170][T26671] infiniband syz2: set down [ 1892.064130][T26671] infiniband syz2: added ip6_vti0 [ 1892.073817][T26146] ip6_vti0 speed is unknown, defaulting to 1000 [ 1892.135017][T26679] netlink: 60 bytes leftover after parsing attributes in process `syz.9.8668'. [ 1892.307385][T26671] RDS/IB: syz2: added [ 1892.311744][T26671] smc: adding ib device syz2 with port count 1 [ 1892.318663][T26671] smc: ib device syz2 port 1 has pnetid [ 1892.327533][T26671] ip6_vti0 speed is unknown, defaulting to 1000 [ 1892.842283][T26671] ip6_vti0 speed is unknown, defaulting to 1000 [ 1892.919752][ T30] audit: type=1326 audit(2000000469.140:1256): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26685 comm="syz.9.8673" exe="/root/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf710e539 code=0x0 [ 1892.941489][ C0] vkms_vblank_simulate: vblank timer overrun [ 1893.365027][T26671] ip6_vti0 speed is unknown, defaulting to 1000 [ 1893.587976][T26690] netlink: 'syz.0.8674': attribute type 2 has an invalid length. [ 1893.879454][T26671] ip6_vti0 speed is unknown, defaulting to 1000 [ 1894.392054][T26671] ip6_vti0 speed is unknown, defaulting to 1000 [ 1894.577393][T26696] tmpfs: Cannot enable swap on remount if it was disabled on first mount [ 1894.742283][T25816] ip6_vti0 speed is unknown, defaulting to 1000 [ 1895.265826][T26693] loop1: detected capacity change from 0 to 4096 [ 1895.490763][T26693] ntfs3(loop1): ino=1a, mi_enum_attr [ 1895.496897][T26693] ntfs3(loop1): Mark volume as dirty due to NTFS errors [ 1895.612298][T26709] netlink: 4 bytes leftover after parsing attributes in process `syz.4.8681'. [ 1896.366397][T26717] loop4: detected capacity change from 0 to 512 [ 1896.479041][T26717] EXT4-fs error (device loop4): ext4_expand_extra_isize_ea:2798: inode #11: comm syz.4.8686: corrupted xattr block 95: invalid header [ 1896.533885][T26717] EXT4-fs error (device loop4): ext4_validate_block_bitmap:432: comm syz.4.8686: bg 0: block 7: invalid block bitmap [ 1896.630252][T26717] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6548: Corrupt filesystem [ 1896.658226][T26717] EXT4-fs error (device loop4): ext4_xattr_delete_inode:2962: inode #11: comm syz.4.8686: corrupted xattr block 95: invalid header [ 1896.709864][T26717] EXT4-fs warning (device loop4): ext4_evict_inode:274: xattr delete (err -117) [ 1896.719593][T26717] EXT4-fs (loop4): 1 orphan inode deleted [ 1896.728670][T26717] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1896.744357][T25816] usb 2-1: new high-speed USB device number 36 using dummy_hcd [ 1896.949647][T25816] usb 2-1: too many endpoints for config 0 interface 0 altsetting 0: 196, using maximum allowed: 30 [ 1896.961102][T25816] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 1896.971559][T25816] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 196 [ 1896.985306][T25816] usb 2-1: New USB device found, idVendor=04d9, idProduct=a055, bcdDevice= 0.00 [ 1896.994923][T25816] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1897.090097][T14123] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1897.127590][T25816] usb 2-1: config 0 descriptor?? [ 1897.476953][T26735] loop3: detected capacity change from 0 to 8 [ 1897.551852][T26735] SQUASHFS error: zstd decompression error: 10 [ 1897.560293][T26735] SQUASHFS error: zstd decompression failed, data probably corrupt [ 1897.569584][T26735] SQUASHFS error: Failed to read block 0x60: -5 [ 1897.576993][T26735] SQUASHFS error: zstd decompression error: 10 [ 1897.583615][T26735] SQUASHFS error: zstd decompression failed, data probably corrupt [ 1897.591957][T26735] SQUASHFS error: Failed to read block 0x60: -5 [ 1897.610536][T25816] holtek_kbd 0003:04D9:A055.0056: bogus close delimiter [ 1897.618911][T25816] holtek_kbd 0003:04D9:A055.0056: item 0 4 2 10 parsing failed [ 1897.665025][T25816] holtek_kbd 0003:04D9:A055.0056: probe with driver holtek_kbd failed with error -22 [ 1897.783154][T26146] usb 2-1: USB disconnect, device number 36 [ 1898.924076][T26754] loop1: detected capacity change from 0 to 1024 [ 1899.186756][T26760] loop9: detected capacity change from 0 to 16 [ 1899.263875][T26760] erofs (device loop9): mounted with root inode @ nid 36. [ 1900.077108][T26773] loop0: detected capacity change from 0 to 8 [ 1900.146025][T26773] squashfs image failed sanity check [ 1900.753622][T26785] loop0: detected capacity change from 0 to 24 [ 1900.773472][T26786] netlink: 12 bytes leftover after parsing attributes in process `syz.1.8716'. [ 1901.226496][T26793] netlink: 'syz.9.8720': attribute type 4 has an invalid length. [ 1901.235887][T26793] netlink: 17 bytes leftover after parsing attributes in process `syz.9.8720'. [ 1902.410054][ T30] audit: type=1326 audit(2000000478.630:1257): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26810 comm="syz.9.8729" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf710e539 code=0x7ffc0000 [ 1902.513935][ T30] audit: type=1326 audit(2000000478.690:1258): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26810 comm="syz.9.8729" exe="/root/syz-executor" sig=0 arch=40000003 syscall=5 compat=1 ip=0xf710e539 code=0x7ffc0000 [ 1902.536670][ T30] audit: type=1326 audit(2000000478.690:1259): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26810 comm="syz.9.8729" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf710e539 code=0x7ffc0000 [ 1902.559009][ C0] vkms_vblank_simulate: vblank timer overrun [ 1902.565974][ T30] audit: type=1326 audit(2000000478.690:1260): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26810 comm="syz.9.8729" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf710e539 code=0x7ffc0000 [ 1902.588298][ C0] vkms_vblank_simulate: vblank timer overrun [ 1902.598442][T26815] loop3: detected capacity change from 0 to 256 [ 1902.598497][ T30] audit: type=1326 audit(2000000478.700:1261): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26810 comm="syz.9.8729" exe="/root/syz-executor" sig=0 arch=40000003 syscall=225 compat=1 ip=0xf710e539 code=0x7ffc0000 [ 1902.627884][ T30] audit: type=1326 audit(2000000478.700:1262): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26810 comm="syz.9.8729" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf710e539 code=0x7ffc0000 [ 1902.650711][ T30] audit: type=1326 audit(2000000478.700:1263): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26810 comm="syz.9.8729" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf710e539 code=0x7ffc0000 [ 1902.673181][ C0] vkms_vblank_simulate: vblank timer overrun [ 1903.283166][T25816] usb 10-1: new high-speed USB device number 7 using dummy_hcd [ 1903.455518][T25816] usb 10-1: Using ep0 maxpacket: 32 [ 1903.494315][T25816] usb 10-1: New USB device found, idVendor=0ac8, idProduct=0321, bcdDevice=6f.be [ 1903.505069][T25816] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1903.525673][ T30] audit: type=1326 audit(2000000479.760:1264): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26828 comm="syz.1.8738" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf711e539 code=0x7ffc0000 [ 1903.548512][ T30] audit: type=1326 audit(2000000479.760:1265): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26828 comm="syz.1.8738" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf711e539 code=0x7ffc0000 [ 1903.571008][ C0] vkms_vblank_simulate: vblank timer overrun [ 1903.599586][T25816] usb 10-1: config 0 descriptor?? [ 1903.642456][T25816] gspca_main: vc032x-2.14.0 probing 0ac8:0321 [ 1903.741643][ T30] audit: type=1326 audit(2000000479.820:1266): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26828 comm="syz.1.8738" exe="/root/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf711e539 code=0x7ffc0000 [ 1903.983208][T26833] loop4: detected capacity change from 0 to 256 [ 1904.049385][T26831] loop0: detected capacity change from 0 to 1024 [ 1904.267320][T25816] gspca_vc032x: reg_w err -71 [ 1904.272297][T25816] gspca_vc032x: I2c Bus Busy Wait 00 [ 1904.278082][T25816] gspca_vc032x: I2c Bus Busy Wait 00 [ 1904.283750][T25816] gspca_vc032x: I2c Bus Busy Wait 00 [ 1904.291853][T25816] gspca_vc032x: I2c Bus Busy Wait 00 [ 1904.297767][T25816] gspca_vc032x: I2c Bus Busy Wait 00 [ 1904.303450][T25816] gspca_vc032x: I2c Bus Busy Wait 00 [ 1904.308989][T25816] gspca_vc032x: I2c Bus Busy Wait 00 [ 1904.314761][T25816] gspca_vc032x: I2c Bus Busy Wait 00 [ 1904.321737][T25816] gspca_vc032x: I2c Bus Busy Wait 00 [ 1904.327925][T25816] gspca_vc032x: I2c Bus Busy Wait 00 [ 1904.333637][T25816] gspca_vc032x: I2c Bus Busy Wait 00 [ 1904.339168][T25816] gspca_vc032x: I2c Bus Busy Wait 00 [ 1904.344995][T25816] gspca_vc032x: I2c Bus Busy Wait 00 [ 1904.350530][T25816] gspca_vc032x: I2c Bus Busy Wait 00 [ 1904.356409][T25816] gspca_vc032x: I2c Bus Busy Wait 00 [ 1904.361950][T25816] gspca_vc032x: I2c Bus Busy Wait 00 [ 1904.367648][T25816] gspca_vc032x: I2c Bus Busy Wait 00 [ 1904.373383][T25816] gspca_vc032x: I2c Bus Busy Wait 00 [ 1904.378927][T25816] gspca_vc032x: Unknown sensor... [ 1904.384649][T25816] vc032x 10-1:0.0: probe with driver vc032x failed with error -22 [ 1904.693055][T25816] usb 10-1: USB disconnect, device number 7 [ 1904.796353][ T3967] hfsplus: b-tree write err: -5, ino 4 [ 1904.869240][T26840] loop4: detected capacity change from 0 to 736 [ 1905.147406][ T5869] usb 4-1: new high-speed USB device number 6 using dummy_hcd [ 1905.363656][ T5869] usb 4-1: config 0 has an invalid interface number: 98 but max is 0 [ 1905.372371][ T5869] usb 4-1: config 0 has no interface number 0 [ 1905.379587][ T5869] usb 4-1: config 0 interface 98 has no altsetting 0 [ 1905.413049][ T5869] usb 4-1: New USB device found, idVendor=1110, idProduct=9024, bcdDevice=db.24 [ 1905.422817][ T5869] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1905.431129][ T5869] usb 4-1: Product: syz [ 1905.435765][ T5869] usb 4-1: Manufacturer: syz [ 1905.440726][ T5869] usb 4-1: SerialNumber: syz [ 1905.460002][ T5869] usb 4-1: config 0 descriptor?? [ 1905.716623][ T5869] usb 4-1: [ueagle-atm] ADSL device founded vid (0X1110) pid (0X9024) Rev (0XDB24): Eagle II [ 1906.231471][ T5869] usb 4-1: reset high-speed USB device number 6 using dummy_hcd [ 1906.396220][T26861] loop1: detected capacity change from 0 to 512 [ 1906.454398][T26861] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 1906.501072][T26861] EXT4-fs (loop1): 1 truncate cleaned up [ 1906.511743][T26861] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1906.674573][ T5869] usb 4-1: failed to restore interface 98 altsetting 4 (error=-71) [ 1906.710272][ T5869] usb 4-1: [ueagle-atm] pre-firmware device, uploading firmware [ 1906.718528][ T5869] usb 4-1: [ueagle-atm] loading firmware ueagle-atm/eagleII.fw [ 1906.781357][ T5869] usb 4-1: USB disconnect, device number 6 [ 1906.845575][T26868] loop0: detected capacity change from 0 to 4096 [ 1906.889296][T26868] ntfs3(loop0): Different NTFS sector size (1024) and media sector size (512). [ 1906.964033][T14116] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1908.861517][T26895] netlink: 8 bytes leftover after parsing attributes in process `syz.3.8769'. [ 1908.984491][ T5878] usb 2-1: [UEAGLE-ATM] firmware is not available [ 1908.992099][T26146] usb 4-1: [UEAGLE-ATM] firmware is not available [ 1910.308538][T26923] netlink: 8 bytes leftover after parsing attributes in process `syz.4.8780'. [ 1910.813612][ T30] kauditd_printk_skb: 4 callbacks suppressed [ 1910.813700][ T30] audit: type=1326 audit(2000000487.040:1271): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26926 comm="syz.9.8784" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf710e539 code=0x7ffc0000 [ 1910.842292][ C0] vkms_vblank_simulate: vblank timer overrun [ 1910.931751][ T30] audit: type=1326 audit(2000000487.090:1272): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26926 comm="syz.9.8784" exe="/root/syz-executor" sig=0 arch=40000003 syscall=322 compat=1 ip=0xf710e539 code=0x7ffc0000 [ 1910.955617][ T30] audit: type=1326 audit(2000000487.090:1273): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26926 comm="syz.9.8784" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf710e539 code=0x7ffc0000 [ 1910.979305][ T30] audit: type=1326 audit(2000000487.090:1274): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26926 comm="syz.9.8784" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf710e539 code=0x7ffc0000 [ 1911.002353][ T30] audit: type=1326 audit(2000000487.100:1275): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26926 comm="syz.9.8784" exe="/root/syz-executor" sig=0 arch=40000003 syscall=325 compat=1 ip=0xf710e539 code=0x7ffc0000 [ 1911.025482][ T30] audit: type=1326 audit(2000000487.100:1276): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26926 comm="syz.9.8784" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf710e539 code=0x7ffc0000 [ 1911.048224][ T30] audit: type=1326 audit(2000000487.100:1277): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26926 comm="syz.9.8784" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf710e539 code=0x7ffc0000 [ 1911.311081][T26931] loop4: detected capacity change from 0 to 256 [ 1911.503623][T26931] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0xc5dfab67, utbl_chksum : 0xe619d30d) [ 1911.746319][T26936] program syz.1.8789 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 1912.349332][ T30] audit: type=1326 audit(2000000488.580:1278): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26941 comm="syz.1.8792" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf711e539 code=0x7ffc0000 [ 1912.372975][ T30] audit: type=1326 audit(2000000488.580:1279): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26941 comm="syz.1.8792" exe="/root/syz-executor" sig=0 arch=40000003 syscall=5 compat=1 ip=0xf711e539 code=0x7ffc0000 [ 1912.395750][ T30] audit: type=1326 audit(2000000488.610:1280): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26941 comm="syz.1.8792" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf711e539 code=0x7ffc0000 [ 1913.665502][T26958] can0: slcan on ttyS3. [ 1913.784386][T26958] can0 (unregistered): slcan off ttyS3. [ 1913.793187][T26964] netlink: 8 bytes leftover after parsing attributes in process `syz.9.8803'. [ 1914.373439][T26970] netlink: 16 bytes leftover after parsing attributes in process `syz.4.8806'. [ 1914.899494][T26974] loop0: detected capacity change from 0 to 512 [ 1915.136379][T26974] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1915.150718][T26974] ext4 filesystem being mounted at /91/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 1915.244745][T26974] EXT4-fs error (device loop0): ext4_get_verity_descriptor_location:335: inode #15: comm syz.0.8808: verity file corrupted; can't find descriptor [ 1915.328522][T26974] fs-verity (loop0, inode 15): Error -117 getting verity descriptor size [ 1915.803979][T25788] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1916.177883][T26995] loop9: detected capacity change from 0 to 256 [ 1916.198588][T26995] exfat: Deprecated parameter 'namecase' [ 1916.391061][T26995] exFAT-fs (loop9): failed to load upcase table (idx : 0x00010000, chksum : 0x25fbf2c1, utbl_chksum : 0xe619d30d) [ 1917.739438][T27015] netlink: 8 bytes leftover after parsing attributes in process `syz.1.8825'. [ 1917.750071][T27015] netlink: 8 bytes leftover after parsing attributes in process `syz.1.8825'. [ 1919.007631][T27031] loop1: detected capacity change from 0 to 16 [ 1919.163343][T27032] loop9: detected capacity change from 0 to 512 [ 1919.164004][T27031] erofs (device loop1): mounted with root inode @ nid 36. [ 1919.209976][T27032] EXT4-fs (loop9): encrypted files will use data=ordered instead of data journaling mode [ 1919.301366][T27032] EXT4-fs (loop9): 1 truncate cleaned up [ 1919.310033][T27032] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1919.414413][T27032] EXT4-fs error (device loop9): ext4_generic_delete_entry:2668: inode #2: block 13: comm syz.9.8832: bad entry in directory: rec_len is smaller than minimal - offset=24, inode=11, rec_len=8, size=1024 fake=0 [ 1919.504629][T27032] EXT4-fs (loop9): Remounting filesystem read-only [ 1919.836460][T23601] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1921.724737][T27067] loop4: detected capacity change from 0 to 128 [ 1921.893408][T27067] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=16, mo=a856c019, mo2=0002] [ 1921.959447][T27067] System zones: 1-3, 19-19, 35-36 [ 1922.025843][T27067] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: writeback. [ 1922.129142][T27067] ext4 filesystem being mounted at /1119/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 1922.161619][ C0] vkms_vblank_simulate: vblank timer overrun [ 1922.309314][T27067] EXT4-fs warning (device loop4): ext4_dirblock_csum_verify:375: inode #2: comm syz.4.8848: No space for directory leaf checksum. Please run e2fsck -D. [ 1922.325954][T27067] EXT4-fs error (device loop4): __ext4_find_entry:1626: inode #2: comm syz.4.8848: checksumming directory block 0 [ 1922.376508][T27072] EXT4-fs warning (device loop4): ext4_dirblock_csum_verify:375: inode #2: comm syz.4.8848: No space for directory leaf checksum. Please run e2fsck -D. [ 1922.392850][T27072] EXT4-fs error (device loop4): __ext4_find_entry:1626: inode #2: comm syz.4.8848: checksumming directory block 0 [ 1922.465371][T27073] loop0: detected capacity change from 0 to 16 [ 1922.538946][T27073] erofs (device loop0): mounted with root inode @ nid 36. [ 1922.628588][ T30] kauditd_printk_skb: 3 callbacks suppressed [ 1922.628679][ T30] audit: type=1800 audit(2000000498.850:1284): pid=27073 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.8851" name="file1" dev="loop0" ino=86 res=0 errno=0 [ 1922.774979][T14123] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 1923.023054][T26146] usb 10-1: new full-speed USB device number 8 using dummy_hcd [ 1923.224269][T26146] usb 10-1: config 0 has an invalid interface number: 1 but max is 0 [ 1923.233668][T26146] usb 10-1: config 0 has no interface number 0 [ 1923.240295][T26146] usb 10-1: New USB device found, idVendor=0b48, idProduct=1005, bcdDevice=8c.1e [ 1923.250030][T26146] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1923.336513][T26146] usb 10-1: config 0 descriptor?? [ 1923.377524][T26146] usb 10-1: selecting invalid altsetting 1 [ 1923.384412][T26146] dvb_ttusb_budget: ttusb_init_controller: error [ 1923.391067][T26146] dvbdev: DVB: registering new adapter (Technotrend/Hauppauge Nova-USB) [ 1923.644929][T27082] loop4: detected capacity change from 0 to 4096 [ 1923.800059][T26146] DVB: Unable to find symbol cx22700_attach() [ 1924.129936][T26146] DVB: Unable to find symbol tda10046_attach() [ 1924.138302][T26146] dvb_ttusb_budget: no frontend driver found for device [0b48:1005] [ 1924.205187][T26146] usb 10-1: USB disconnect, device number 8 [ 1924.302469][T27082] ntfs3(loop4): failed to convert "0080" to koi8-r [ 1924.337143][T27082] ntfs3(loop4): failed to convert name for inode 1e. [ 1924.360535][T27082] ntfs3(loop4): ino=1f, mi_enum_attr [ 1924.367766][T27082] ntfs3(loop4): Mark volume as dirty due to NTFS errors [ 1924.404840][T27082] ntfs3(loop4): ino=1f, mi_enum_attr [ 1924.543990][T27091] vim2m vim2m.0: vidioc_s_fmt queue busy [ 1924.713408][T26146] usb 2-1: new high-speed USB device number 37 using dummy_hcd [ 1924.904329][T26146] usb 2-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3 [ 1924.913934][T26146] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1924.965961][T26146] usb 2-1: config 0 descriptor?? [ 1924.997375][T26146] cp210x 2-1:0.0: cp210x converter detected [ 1925.633593][T26146] cp210x 2-1:0.0: failed to get vendor val 0x000e size 678: -71 [ 1925.641890][T26146] cp210x 2-1:0.0: GPIO initialisation failed: -71 [ 1925.678274][T26146] usb 2-1: cp210x converter now attached to ttyUSB0 [ 1925.725601][T26146] usb 2-1: USB disconnect, device number 37 [ 1925.774346][T26146] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0 [ 1925.785131][T26146] cp210x 2-1:0.0: device disconnected [ 1925.897942][T27104] loop4: detected capacity change from 0 to 128 [ 1925.983778][T27104] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 1926.014035][T27104] ext4 filesystem being mounted at /1122/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 1926.274580][T27104] EXT4-fs error (device loop4): htree_dirblock_to_tree:1080: inode #2: block 4: comm syz.4.8866: bad entry in directory: rec_len is smaller than minimal - offset=1012, inode=128, rec_len=9, size=1024 fake=0 [ 1926.347897][T27104] EXT4-fs (loop4): Remounting filesystem read-only [ 1926.699653][T27110] loop9: detected capacity change from 0 to 64 [ 1926.744590][T14123] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 1926.785618][T20806] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 1926.809428][T20806] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 1926.819935][T20806] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 1926.843868][T20806] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 1926.869750][T20806] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 1926.927524][T27115] loop0: detected capacity change from 0 to 512 [ 1926.936178][T27116] ALSA: mixer_oss: invalid index 100000 [ 1927.009458][T27111] ip6_vti0 speed is unknown, defaulting to 1000 [ 1927.065793][T27115] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 1927.198067][T27117] Trying to free block not in datazone [ 1927.613057][T27115] EXT4-fs (loop0): 1 truncate cleaned up [ 1927.621410][T27115] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1927.866186][T27122] loop4: detected capacity change from 0 to 256 [ 1928.046736][T27122] exFAT-fs (loop4): failed to load upcase table (idx : 0x000104d0, chksum : 0xda218cab, utbl_chksum : 0xe619d30d) [ 1928.173005][T27122] exFAT-fs (loop4): error, invalid access to FAT free cluster (entry 0x00000008) [ 1928.185628][T27122] exFAT-fs (loop4): Filesystem has been set read-only [ 1928.214575][T25788] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1928.543591][T27111] chnl_net:caif_netlink_parms(): no params data found [ 1928.900534][T27134] vimc link validate: Scaler:src:640x480 (0x33424752, 8, 0, 0, 0) RGB/YUV Capture:snk:640x480 (0x33424752, 8, 0, 0, 0) [ 1928.949511][T14101] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1928.990445][T20806] Bluetooth: hci3: command tx timeout [ 1929.087082][T14101] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1929.218877][T14101] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1929.378598][T14101] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1929.590996][T27141] RDS: rds_bind could not find a transport for fe80::, load rds_tcp or rds_rdma? [ 1929.828055][T27144] loop9: detected capacity change from 0 to 256 [ 1929.910295][T14101] bridge_slave_1: left allmulticast mode [ 1929.916714][T14101] bridge_slave_1: left promiscuous mode [ 1929.926088][T14101] bridge0: port 2(bridge_slave_1) entered disabled state [ 1929.956094][T27144] exFAT-fs (loop9): failed to load upcase table (idx : 0x00010000, chksum : 0x36e00b20, utbl_chksum : 0xe619d30d) [ 1929.959823][T14101] bridge_slave_0: left allmulticast mode [ 1929.976848][T14101] bridge_slave_0: left promiscuous mode [ 1929.983808][T14101] bridge0: port 1(bridge_slave_0) entered disabled state [ 1930.552431][T14101] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 1930.595543][T14101] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 1930.619847][T14101] bond0 (unregistering): Released all slaves [ 1930.716747][T27111] bridge0: port 1(bridge_slave_0) entered blocking state [ 1930.724871][T27111] bridge0: port 1(bridge_slave_0) entered disabled state [ 1930.733123][T27111] bridge_slave_0: entered allmulticast mode [ 1930.747685][T27111] bridge_slave_0: entered promiscuous mode [ 1930.800693][T27111] bridge0: port 2(bridge_slave_1) entered blocking state [ 1930.808764][T27111] bridge0: port 2(bridge_slave_1) entered disabled state [ 1930.816953][T27111] bridge_slave_1: entered allmulticast mode [ 1930.826960][T27111] bridge_slave_1: entered promiscuous mode [ 1931.063413][T20806] Bluetooth: hci3: command tx timeout [ 1931.118308][T27111] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 1931.202983][ T24] usb 2-1: new high-speed USB device number 38 using dummy_hcd [ 1931.209625][T27111] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 1931.378419][ T24] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 129, changing to 11 [ 1931.390797][ T24] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 1931.401940][ T24] usb 2-1: New USB device found, idVendor=05ac, idProduct=0265, bcdDevice= 0.00 [ 1931.411575][ T24] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1931.486379][ T24] usb 2-1: config 0 descriptor?? [ 1931.594176][T27111] team0: Port device team_slave_0 added [ 1931.980685][T27111] team0: Port device team_slave_1 added [ 1932.039550][ T24] magicmouse 0003:05AC:0265.0057: unbalanced collection at end of report description [ 1932.109712][ T24] magicmouse 0003:05AC:0265.0057: magicmouse hid parse failed [ 1932.118649][ T24] magicmouse 0003:05AC:0265.0057: probe with driver magicmouse failed with error -22 [ 1932.234544][ T24] usb 2-1: USB disconnect, device number 38 [ 1932.345485][T14101] hsr_slave_0: left promiscuous mode [ 1932.387454][T14101] hsr_slave_1: left promiscuous mode [ 1932.398209][T14101] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 1932.406292][T14101] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 1932.455818][T14101] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 1932.467165][T14101] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 1932.561865][T14101] veth1_macvtap: left promiscuous mode [ 1932.568140][T14101] veth0_macvtap: left promiscuous mode [ 1932.574774][T14101] veth1_vlan: left promiscuous mode [ 1932.581589][T14101] veth0_vlan: left promiscuous mode [ 1932.722967][T27168] loop9: detected capacity change from 0 to 164 [ 1932.931006][T14101] pim6reg (unregistering): left allmulticast mode [ 1932.933234][T27168] rock: directory entry would overflow storage [ 1932.944799][T27168] rock: sig=0x4f50, size=4, remaining=3 [ 1932.950639][T27168] iso9660: Corrupted directory entry in block 4 of inode 1792 [ 1933.165366][T20806] Bluetooth: hci3: command tx timeout [ 1933.415286][T14101] team0 (unregistering): Port device team_slave_1 removed [ 1933.488695][T14101] team0 (unregistering): Port device team_slave_0 removed [ 1934.024706][T27111] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 1934.031976][T27111] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 1934.058273][ C0] vkms_vblank_simulate: vblank timer overrun [ 1934.065361][T27111] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 1934.126068][T27173] can0: slcan on ttyS3. [ 1934.153363][T27111] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 1934.160622][T27111] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 1934.186915][ C0] vkms_vblank_simulate: vblank timer overrun [ 1934.193760][T27111] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 1934.314785][T27171] can0 (unregistered): slcan off ttyS3. [ 1934.623036][T27111] hsr_slave_0: entered promiscuous mode [ 1934.639348][T27111] hsr_slave_1: entered promiscuous mode [ 1934.897081][T27185] can0: slcan on ttyS3. [ 1935.073662][T27188] can0 (unregistered): slcan off ttyS3. [ 1935.232485][T20806] Bluetooth: hci3: command tx timeout [ 1935.672393][T27199] netlink: 'syz.9.8903': attribute type 1 has an invalid length. [ 1936.121135][T27111] netdevsim netdevsim6 netdevsim0: renamed from eth0 [ 1936.166866][T27111] netdevsim netdevsim6 netdevsim1: renamed from eth1 [ 1936.228038][T27111] netdevsim netdevsim6 netdevsim2: renamed from eth2 [ 1936.268450][T27111] netdevsim netdevsim6 netdevsim3: renamed from eth3 [ 1936.924782][T27211] loop1: detected capacity change from 0 to 512 [ 1936.996110][T27211] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 1937.091712][T27211] EXT4-fs (loop1): 1 truncate cleaned up [ 1937.100146][T27211] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1937.149144][T27111] 8021q: adding VLAN 0 to HW filter on device bond0 [ 1937.216489][T27111] 8021q: adding VLAN 0 to HW filter on device team0 [ 1937.261911][T27211] EXT4-fs error (device loop1): ext4_generic_delete_entry:2668: inode #2: block 13: comm syz.1.8909: bad entry in directory: rec_len is smaller than minimal - offset=24, inode=11, rec_len=8, size=1024 fake=0 [ 1937.270077][ T4510] bridge0: port 1(bridge_slave_0) entered blocking state [ 1937.287670][T27211] EXT4-fs (loop1): Remounting filesystem read-only [ 1937.290234][ T4510] bridge0: port 1(bridge_slave_0) entered forwarding state [ 1937.442395][ T4510] bridge0: port 2(bridge_slave_1) entered blocking state [ 1937.450143][ T4510] bridge0: port 2(bridge_slave_1) entered forwarding state [ 1937.735826][T14116] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1937.815119][T27219] loop9: detected capacity change from 0 to 1024 [ 1938.258103][T14099] hfsplus: b-tree write err: -5, ino 4 [ 1939.249961][T27111] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 1939.295226][T27238] loop1: detected capacity change from 0 to 4096 [ 1939.344466][T27238] ntfs3(loop1): Different NTFS sector size (4096) and media sector size (512). [ 1940.461162][T27259] loop1: detected capacity change from 0 to 256 [ 1940.797060][T27265] tipc: Enabling of bearer rejected, failed to enable media [ 1940.862235][T27263] ip6_vti0 speed is unknown, defaulting to 1000 [ 1940.864998][T27259] FAT-fs (loop1): Directory bread(block 64) failed [ 1940.877070][T27259] FAT-fs (loop1): Directory bread(block 65) failed [ 1940.884735][T27259] FAT-fs (loop1): Directory bread(block 66) failed [ 1940.891566][T27259] FAT-fs (loop1): Directory bread(block 67) failed [ 1940.898803][T27259] FAT-fs (loop1): Directory bread(block 68) failed [ 1940.905919][T27259] FAT-fs (loop1): Directory bread(block 69) failed [ 1940.913040][T27259] FAT-fs (loop1): Directory bread(block 70) failed [ 1940.919845][T27259] FAT-fs (loop1): Directory bread(block 71) failed [ 1940.927607][T27259] FAT-fs (loop1): Directory bread(block 72) failed [ 1940.934632][T27259] FAT-fs (loop1): Directory bread(block 73) failed [ 1941.335210][T27269] program syz.0.8930 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 1941.472787][T27111] veth0_vlan: entered promiscuous mode [ 1941.556515][T27111] veth1_vlan: entered promiscuous mode [ 1942.162301][T27111] veth0_macvtap: entered promiscuous mode [ 1942.318564][T27276] loop1: detected capacity change from 0 to 64 [ 1942.353095][T27111] veth1_macvtap: entered promiscuous mode [ 1942.523824][T27276] Trying to free block not in datazone [ 1942.670257][T27111] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 1942.793792][T27111] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 1942.865615][T27111] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 1942.879388][T27111] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 1942.888834][T27111] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 1942.898009][T27111] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 1942.978236][T27283] loop0: detected capacity change from 0 to 8 [ 1943.696805][T27289] loop4: detected capacity change from 0 to 8 [ 1943.990351][T27293] loop1: detected capacity change from 0 to 256 [ 1944.331171][T27293] FAT-fs (loop1): Directory bread(block 64) failed [ 1944.338733][T27293] FAT-fs (loop1): Directory bread(block 65) failed [ 1944.346285][T27293] FAT-fs (loop1): Directory bread(block 66) failed [ 1944.353415][T27293] FAT-fs (loop1): Directory bread(block 67) failed [ 1944.363817][T27293] FAT-fs (loop1): Directory bread(block 68) failed [ 1944.370659][T27293] FAT-fs (loop1): Directory bread(block 69) failed [ 1944.378867][T27293] FAT-fs (loop1): Directory bread(block 70) failed [ 1944.385923][T27293] FAT-fs (loop1): Directory bread(block 71) failed [ 1944.393081][T27293] FAT-fs (loop1): Directory bread(block 72) failed [ 1944.399911][T27293] FAT-fs (loop1): Directory bread(block 73) failed [ 1945.607877][T27316] loop9: detected capacity change from 0 to 1024 [ 1945.751727][T27316] hfsplus: bad catalog entry type [ 1946.051446][T14101] hfsplus: b-tree write err: -5, ino 4 [ 1947.293949][T27346] loop4: detected capacity change from 0 to 64 [ 1947.324064][T27346] BFS-fs: bfs_fill_super(): loop4 is unclean, continuing [ 1947.373828][T27347] netlink: 666 bytes leftover after parsing attributes in process `syz.0.8957'. [ 1947.904353][T27353] loop9: detected capacity change from 0 to 512 [ 1947.918846][T27353] EXT4-fs: Ignoring removed oldalloc option [ 1948.019561][T27353] EXT4-fs error (device loop9): ext4_xattr_inode_iget:433: comm syz.9.8960: Parent and EA inode have the same ino 15 [ 1948.062351][T27353] EXT4-fs error (device loop9): ext4_xattr_inode_iget:433: comm syz.9.8960: Parent and EA inode have the same ino 15 [ 1948.083505][T27353] EXT4-fs (loop9): 1 orphan inode deleted [ 1948.092012][T27353] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1948.458467][T23601] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1948.849132][T14101] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1948.857823][T14101] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1949.029778][ T3967] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1949.038306][ T3967] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1949.805450][T27384] loop1: detected capacity change from 0 to 256 [ 1949.977244][ T1285] ieee802154 phy0 wpan0: encryption failed: -22 [ 1950.131128][T27384] FAT-fs (loop1): Directory bread(block 64) failed [ 1950.138508][T27384] FAT-fs (loop1): Directory bread(block 65) failed [ 1950.145843][T27384] FAT-fs (loop1): Directory bread(block 66) failed [ 1950.152922][T27384] FAT-fs (loop1): Directory bread(block 67) failed [ 1950.159916][T27384] FAT-fs (loop1): Directory bread(block 68) failed [ 1950.166942][T27384] FAT-fs (loop1): Directory bread(block 69) failed [ 1950.174352][T27384] FAT-fs (loop1): Directory bread(block 70) failed [ 1950.181184][T27384] FAT-fs (loop1): Directory bread(block 71) failed [ 1950.188492][T27384] FAT-fs (loop1): Directory bread(block 72) failed [ 1950.198041][T27384] FAT-fs (loop1): Directory bread(block 73) failed [ 1951.429107][T27409] ptrace attach of "./syz-executor exec"[14116] was attempted by " [ 1951.873325][ T30] audit: type=1326 audit(2000000528.100:1285): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27414 comm="syz.1.8987" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf711e539 code=0x7ffc0000 [ 1951.991063][ T30] audit: type=1326 audit(2000000528.210:1286): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27414 comm="syz.1.8987" exe="/root/syz-executor" sig=0 arch=40000003 syscall=197 compat=1 ip=0xf711e539 code=0x7ffc0000 [ 1952.014334][ T30] audit: type=1326 audit(2000000528.210:1287): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27414 comm="syz.1.8987" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf711e539 code=0x7ffc0000 [ 1952.103212][T26146] usb 7-1: new high-speed USB device number 7 using dummy_hcd [ 1952.300336][T26146] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 64, changing to 10 [ 1952.312998][T26146] usb 7-1: New USB device found, idVendor=0c70, idProduct=f011, bcdDevice= 0.00 [ 1952.322480][T26146] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1952.375477][T26146] usb 7-1: config 0 descriptor?? [ 1952.541480][T27424] loop0: detected capacity change from 0 to 256 [ 1952.858749][T26146] aquacomputer_d5next 0003:0C70:F011.0058: hidraw0: USB HID v0.00 Device [HID 0c70:f011] on usb-dummy_hcd.6-1/input0 [ 1953.031221][T26146] usb 7-1: USB disconnect, device number 7 [ 1953.582152][T27436] loop0: detected capacity change from 0 to 1024 [ 1954.450218][T27446] netlink: 160 bytes leftover after parsing attributes in process `syz.0.9001'. [ 1954.459854][T27446] A link change request failed with some changes committed already. Interface gre0 may have been left with an inconsistent configuration, please check. [ 1954.643830][ T30] audit: type=1326 audit(2000000530.880:1288): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27449 comm="syz.4.9003" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff3539 code=0x7ffc0000 [ 1954.696204][ T30] audit: type=1326 audit(2000000530.910:1289): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27449 comm="syz.4.9003" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff3539 code=0x7ffc0000 [ 1954.815735][T27451] loop4: detected capacity change from 0 to 512 [ 1954.827608][ T30] audit: type=1326 audit(2000000530.970:1290): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27449 comm="syz.4.9003" exe="/root/syz-executor" sig=0 arch=40000003 syscall=356 compat=1 ip=0xf7ff3539 code=0x7ffc0000 [ 1954.835318][T27454] loop6: detected capacity change from 0 to 16 [ 1954.851102][ T30] audit: type=1326 audit(2000000530.970:1291): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27449 comm="syz.4.9003" exe="/root/syz-executor" sig=0 arch=40000003 syscall=192 compat=1 ip=0xf7ff3539 code=0x7ffc0000 [ 1954.880115][ T30] audit: type=1326 audit(2000000530.970:1292): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27449 comm="syz.4.9003" exe="/root/syz-executor" sig=0 arch=40000003 syscall=4 compat=1 ip=0xf7ff3539 code=0x7ffc0000 [ 1954.904879][ T30] audit: type=1326 audit(2000000531.020:1293): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27449 comm="syz.4.9003" exe="/root/syz-executor" sig=0 arch=40000003 syscall=91 compat=1 ip=0xf7ff3539 code=0x7ffc0000 [ 1954.928273][ T30] audit: type=1326 audit(2000000531.020:1294): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27449 comm="syz.4.9003" exe="/root/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf7ff3539 code=0x7ffc0000 [ 1955.004010][T27454] erofs (device loop6): mounted with root inode @ nid 36. [ 1955.017927][T27451] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349) [ 1955.093940][T27451] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=c842e02c, mo2=0002] [ 1955.153857][T27451] EXT4-fs (loop4): orphan cleanup on readonly fs [ 1955.160554][T27451] EXT4-fs error (device loop4): ext4_orphan_get:1419: comm syz.4.9003: bad orphan inode 267 [ 1955.226744][T27451] EXT4-fs (loop4): Remounting filesystem read-only [ 1955.236418][T27451] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000007 ro without journal. Quota mode: none. [ 1955.270933][T27451] EXT4-fs warning (device loop4): dx_probe:861: inode #2: comm syz.4.9003: dx entry: limit 0 != root limit 125 [ 1955.283776][T27451] EXT4-fs warning (device loop4): dx_probe:934: inode #2: comm syz.4.9003: Corrupt directory, running e2fsck is recommended [ 1955.605728][T14123] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000007. [ 1955.765711][T27461] loop0: detected capacity change from 0 to 2048 [ 1955.807478][T27461] NILFS (loop0): broken superblock, retrying with spare superblock (blocksize = 1024) [ 1955.888805][T27466] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 1956.274587][T27465] loop9: detected capacity change from 0 to 4096 [ 1957.217717][T27485] loop6: detected capacity change from 0 to 1024 [ 1957.249473][T27487] loop0: detected capacity change from 0 to 64 [ 1957.616788][T27492] overlayfs: failed to resolve '/bÅì [ 1957.616788][T27492] tbÿªF?!Ÿ é4eUzSÉ0¹voI¥/´§@¡BÂ@_bšë./file0': -2 [ 1958.307926][T27500] loop1: detected capacity change from 0 to 2048 [ 1958.373492][T27500] NILFS (loop1): broken superblock, retrying with spare superblock (blocksize = 1024) [ 1958.445698][T27505] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 1958.814423][T25816] kernel write not supported for file /amidi2 (pid: 25816 comm: kworker/1:1) [ 1958.872084][T27510] loop9: detected capacity change from 0 to 1024 [ 1959.037490][T27510] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1959.289708][T27510] EXT4-fs: Ignoring sb option on remount [ 1959.296094][T27510] EXT4-fs: Ignoring removed orlov option [ 1959.302261][T27510] EXT4-fs: Ignoring removed nomblk_io_submit option [ 1959.313496][T27510] EXT4-fs: Remounting file system with no journal so ignoring journalled data option [ 1959.324289][T27510] EXT4-fs: Remounting fs w/o journal so ignoring data_err option [ 1959.355709][T27510] EXT4-fs (loop9): re-mounted 00000000-0000-0000-0000-000000000000. [ 1959.581865][T27523] loop4: detected capacity change from 0 to 512 [ 1959.639125][T27523] EXT4-fs (loop4): Test dummy encryption mode enabled [ 1959.640720][T23601] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1959.646607][T27523] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 1959.744019][T27523] EXT4-fs (loop4): 1 truncate cleaned up [ 1959.752898][T27523] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1959.945721][T27523] EXT4-fs: Can't set or change test_dummy_encryption on remount [ 1960.170239][T27532] loop0: detected capacity change from 0 to 512 [ 1960.209615][T27532] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 1960.272133][T27532] EXT4-fs error (device loop0): ext4_orphan_get:1419: comm syz.0.9040: bad orphan inode 16 [ 1960.287372][T14123] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1960.317108][T27532] ext4_test_bit(bit=15, block=4) = 0 [ 1960.323121][T27532] EXT4-fs (loop0): 1 orphan inode deleted [ 1960.335221][T27532] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1960.450415][T27532] EXT4-fs error (device loop0): __ext4_new_inode:1073: comm syz.0.9040: reserved inode found cleared - inode=9 [ 1960.818883][T27546] loop1: detected capacity change from 0 to 64 [ 1960.859266][T25788] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1960.878729][T27546] BFS-fs: bfs_fill_super(): loop1 is unclean, continuing [ 1962.491175][T27573] loop6: detected capacity change from 0 to 736 [ 1963.253985][T27584] loop0: detected capacity change from 0 to 512 [ 1963.304888][T27584] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 1963.400184][T27584] EXT4-fs error (device loop0): ext4_orphan_get:1419: comm syz.0.9062: bad orphan inode 131083 [ 1963.496311][T27584] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1963.561919][T27589] netlink: 'syz.9.9063': attribute type 3 has an invalid length. [ 1963.570431][T27589] netlink: 'syz.9.9063': attribute type 1 has an invalid length. [ 1963.578797][T27589] netlink: 193500 bytes leftover after parsing attributes in process `syz.9.9063'. [ 1963.764504][T27591] netlink: 4 bytes leftover after parsing attributes in process `syz.4.9065'. [ 1963.895718][T25788] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1964.375787][T27601] RDS: rds_bind could not find a transport for 4:80::, load rds_tcp or rds_rdma? [ 1965.650715][T27619] loop0: detected capacity change from 0 to 1024 [ 1965.794758][T27619] hfsplus: bad catalog entry type [ 1966.121809][ T3631] hfsplus: b-tree write err: -5, ino 4 [ 1966.298057][T27627] loop6: detected capacity change from 0 to 128 [ 1966.694779][T27631] ip6_vti0 speed is unknown, defaulting to 1000 [ 1968.680631][T27649] loop1: detected capacity change from 0 to 1024 [ 1968.845994][T27649] syz.1.9090: attempt to access beyond end of device [ 1968.845994][T27649] loop1: rw=0, sector=201326592, nr_sectors = 2 limit=1024 [ 1968.860334][T27649] Buffer I/O error on dev loop1, logical block 100663296, async page read [ 1968.869525][T27649] syz.1.9090: attempt to access beyond end of device [ 1968.869525][T27649] loop1: rw=0, sector=201326592, nr_sectors = 2 limit=1024 [ 1968.884243][T27649] Buffer I/O error on dev loop1, logical block 100663296, async page read [ 1970.433149][T27676] loop9: detected capacity change from 0 to 512 [ 1970.459245][T27676] EXT4-fs: Ignoring removed bh option [ 1970.473584][T27678] loop4: detected capacity change from 0 to 256 [ 1970.488376][T27676] EXT4-fs (loop9): mounting ext3 file system using the ext4 subsystem [ 1970.546552][T27676] EXT4-fs (loop9): 1 truncate cleaned up [ 1970.547119][T27678] exFAT-fs (loop4): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x53fda505, utbl_chksum : 0xe619d30d) [ 1970.556052][T27676] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1970.566637][T27678] exFAT-fs (loop4): bogus allocation bitmap size(need : 2, cur : 17179869186) [ 1970.647903][T27678] exFAT-fs (loop4): valid_size(150994954) is greater than size(10) [ 1970.905370][T27686] sch_tbf: burst 1 is lower than device ip6tnl0 mtu (1452) ! [ 1970.925145][T27684] [U]  [ 1970.926201][T23601] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1971.333903][T27689] loop9: detected capacity change from 0 to 1024 [ 1971.481366][T27693] loop6: detected capacity change from 0 to 1024 [ 1971.687464][T14101] hfsplus: b-tree write err: -5, ino 4 [ 1971.740929][T27696] vivid-004: disconnect [ 1971.770630][T27695] vivid-004: reconnect [ 1971.855608][ T3631] hfsplus: b-tree write err: -5, ino 4 [ 1972.024329][T27700] loop9: detected capacity change from 0 to 256 [ 1972.112006][T27700] exFAT-fs (loop9): failed to load upcase table (idx : 0x00010000, chksum : 0x587066de, utbl_chksum : 0xe619d30d) [ 1972.220397][T27705] netlink: 32 bytes leftover after parsing attributes in process `syz.4.9116'. [ 1972.908831][T27717] netlink: 4 bytes leftover after parsing attributes in process `syz.0.9122'. [ 1973.397941][T27721] netlink: 32 bytes leftover after parsing attributes in process `syz.1.9124'. [ 1974.483009][T25816] usb 10-1: new high-speed USB device number 9 using dummy_hcd [ 1974.574278][T27739] proc: Bad value for 'gid' [ 1974.663665][T25816] usb 10-1: Using ep0 maxpacket: 16 [ 1974.705740][T25816] usb 10-1: config 0 has an invalid interface number: 8 but max is 0 [ 1974.714617][T25816] usb 10-1: config 0 has no interface number 0 [ 1974.721110][T25816] usb 10-1: config 0 interface 8 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 1974.732951][T25816] usb 10-1: config 0 interface 8 altsetting 0 endpoint 0x8F has invalid wMaxPacketSize 0 [ 1974.808441][T25816] usb 10-1: New USB device found, idVendor=0d8c, idProduct=000e, bcdDevice=8e.8f [ 1974.818662][T25816] usb 10-1: New USB device strings: Mfr=0, Product=24, SerialNumber=3 [ 1974.830315][T25816] usb 10-1: Product: syz [ 1974.835528][T25816] usb 10-1: SerialNumber: syz [ 1974.857053][T27741] loop0: detected capacity change from 0 to 512 [ 1974.898437][T27741] EXT4-fs (loop0): Test dummy encryption mode enabled [ 1974.908245][T27741] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 1974.922165][T25816] usb 10-1: config 0 descriptor?? [ 1974.948656][T25816] cm109 10-1:0.8: invalid payload size 0, expected 4 [ 1974.958709][T25816] input: CM109 USB driver as /devices/platform/dummy_hcd.9/usb10/10-1/10-1:0.8/input/input47 [ 1975.051059][T27741] EXT4-fs error (device loop0): ext4_orphan_get:1419: comm syz.0.9134: bad orphan inode 131083 [ 1975.086091][T27741] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1975.156509][ C1] cm109 10-1:0.8: cm109_urb_ctl_callback: urb status -71 [ 1975.160189][T26146] usb 10-1: USB disconnect, device number 9 [ 1975.163792][ C1] cm109 10-1:0.8: cm109_submit_buzz_toggle: usb_submit_urb (urb_ctl) failed -19 [ 1975.184720][T26146] cm109 10-1:0.8: cm109_toggle_buzzer_sync: usb_control_msg() failed -19 [ 1975.520140][T25788] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1975.631041][T27749] loop1: detected capacity change from 0 to 4096 [ 1976.970534][T27771] mkiss: ax0: crc mode is auto. [ 1977.219520][T27777] netlink: 4 bytes leftover after parsing attributes in process `syz.9.9149'. [ 1977.249686][T27777] bridge0: entered promiscuous mode [ 1977.255660][T27777] macvlan2: entered allmulticast mode [ 1977.261309][T27777] bridge0: entered allmulticast mode [ 1977.274657][T27777] bridge0: port 3(macvlan2) entered blocking state [ 1977.281828][T27777] bridge0: port 3(macvlan2) entered disabled state [ 1977.374106][T27779] loop6: detected capacity change from 0 to 1024 [ 1977.396845][T27777] bridge0: left allmulticast mode [ 1977.402236][T27777] bridge0: left promiscuous mode [ 1977.718802][T27783] loop0: detected capacity change from 0 to 256 [ 1977.884042][T27785] loop1: detected capacity change from 0 to 512 [ 1977.911177][T27785] EXT4-fs (loop1): Test dummy encryption mode enabled [ 1977.963112][T27785] EXT4-fs error (device loop1): ext4_iget_extra_inode:5035: inode #15: comm syz.1.9154: corrupted in-inode xattr: invalid ea_ino [ 1977.992052][T27785] EXT4-fs error (device loop1): ext4_orphan_get:1398: comm syz.1.9154: couldn't read orphan inode 15 (err -117) [ 1978.020028][T27785] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1978.458214][ T30] kauditd_printk_skb: 13 callbacks suppressed [ 1978.458298][ T30] audit: type=1326 audit(2000000554.690:1308): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27793 comm="syz.0.9158" exe="/root/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf706e539 code=0x0 [ 1978.486763][ C0] vkms_vblank_simulate: vblank timer overrun [ 1978.533977][T14116] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1979.174277][T27807] loop6: detected capacity change from 0 to 256 [ 1979.198906][T27807] exfat: Deprecated parameter 'utf8' [ 1979.342407][T27809] netlink: 4 bytes leftover after parsing attributes in process `syz.9.9165'. [ 1979.395745][T27807] exFAT-fs (loop6): failed to load upcase table (idx : 0x00010000, chksum : 0xf6dff195, utbl_chksum : 0xe619d30d) [ 1980.429476][T27821] loop1: detected capacity change from 0 to 1024 [ 1980.489550][T27824] loop0: detected capacity change from 0 to 1024 [ 1980.526347][T27829] random: crng reseeded on system resumption [ 1980.643579][T27824] hfsplus: can't free extent [ 1980.679056][T27829] Restarting kernel threads ... [ 1980.755851][T27829] Done restarting kernel threads. [ 1980.843613][ T4510] hfsplus: b-tree write err: -5, ino 4 [ 1980.907905][T27832] loop4: detected capacity change from 0 to 128 [ 1980.983611][T27832] FAT-fs (loop4): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 1981.053961][T27832] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 1981.239137][T27836] netlink: 8 bytes leftover after parsing attributes in process `syz.1.9178'. [ 1981.389719][T27840] loop6: detected capacity change from 0 to 24 [ 1981.503440][ T3486] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 1981.987198][T27847] loop1: detected capacity change from 0 to 256 [ 1982.837796][T27861] loop9: detected capacity change from 0 to 1024 [ 1983.239462][T27867] loop1: detected capacity change from 0 to 1024 [ 1983.244219][ T4510] hfsplus: b-tree write err: -5, ino 4 [ 1983.335327][T27867] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1983.348245][T27867] ext4 filesystem being mounted at /1252/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 1983.456196][T27874] netlink: 'syz.9.9195': attribute type 1 has an invalid length. [ 1983.464642][T27874] netlink: 4 bytes leftover after parsing attributes in process `syz.9.9195'. [ 1983.917369][T27880] MPI: mpi too large (30216 bits) [ 1983.949002][T14116] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1984.666872][T27895] loop9: detected capacity change from 0 to 256 [ 1985.956639][T27915] loop0: detected capacity change from 0 to 64 [ 1986.563334][T27924] loop9: detected capacity change from 0 to 64 [ 1986.637185][T27927] loop6: detected capacity change from 0 to 256 [ 1986.874274][T27927] FAT-fs (loop6): Directory bread(block 64) failed [ 1986.881306][T27927] FAT-fs (loop6): Directory bread(block 65) failed [ 1986.892910][T27927] FAT-fs (loop6): Directory bread(block 66) failed [ 1986.899757][T27927] FAT-fs (loop6): Directory bread(block 67) failed [ 1986.907136][T27927] FAT-fs (loop6): Directory bread(block 68) failed [ 1986.916823][T27927] FAT-fs (loop6): Directory bread(block 69) failed [ 1986.924147][T27927] FAT-fs (loop6): Directory bread(block 70) failed [ 1986.930960][T27927] FAT-fs (loop6): Directory bread(block 71) failed [ 1986.938288][T27927] FAT-fs (loop6): Directory bread(block 72) failed [ 1986.945767][T27927] FAT-fs (loop6): Directory bread(block 73) failed [ 1987.516222][T27939] netlink: 8 bytes leftover after parsing attributes in process `syz.4.9225'. [ 1987.900309][T27944] loop9: detected capacity change from 0 to 256 [ 1988.203346][T27944] FAT-fs (loop9): Directory bread(block 64) failed [ 1988.210226][T27944] FAT-fs (loop9): Directory bread(block 65) failed [ 1988.217637][T27944] FAT-fs (loop9): Directory bread(block 66) failed [ 1988.224761][T27944] FAT-fs (loop9): Directory bread(block 67) failed [ 1988.231756][T27944] FAT-fs (loop9): Directory bread(block 68) failed [ 1988.238751][T27944] FAT-fs (loop9): Directory bread(block 69) failed [ 1988.245971][T27944] FAT-fs (loop9): Directory bread(block 70) failed [ 1988.252932][T27944] FAT-fs (loop9): Directory bread(block 71) failed [ 1988.259916][T27944] FAT-fs (loop9): Directory bread(block 72) failed [ 1988.267057][T27944] FAT-fs (loop9): Directory bread(block 73) failed [ 1988.485561][T27951] loop6: detected capacity change from 0 to 1024 [ 1988.875333][ T4510] hfsplus: b-tree write err: -5, ino 4 [ 1989.529067][T27965] loop0: detected capacity change from 0 to 1024 [ 1989.705518][T27965] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1989.975602][T25788] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1990.305195][T27979] netlink: 'syz.9.9244': attribute type 21 has an invalid length. [ 1990.313872][T27979] netlink: 36 bytes leftover after parsing attributes in process `syz.9.9244'. [ 1990.453918][T27982] netlink: 16 bytes leftover after parsing attributes in process `syz.0.9243'. [ 1991.424604][T27989] loop9: detected capacity change from 0 to 4096 [ 1991.465235][T27989] ntfs3(loop9): Different NTFS sector size (1024) and media sector size (512). [ 1991.543153][T28001] netlink: 'syz.0.9255': attribute type 83 has an invalid length. [ 1991.643490][T25816] usb 2-1: new high-speed USB device number 39 using dummy_hcd [ 1991.830728][T25816] usb 2-1: Using ep0 maxpacket: 32 [ 1991.854015][T25816] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 1991.866075][T25816] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 1991.878224][T25816] usb 2-1: New USB device found, idVendor=1e7d, idProduct=2d5a, bcdDevice= 0.00 [ 1991.888492][T25816] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1991.917521][T25816] usb 2-1: config 0 descriptor?? [ 1992.038876][T28008] loop6: detected capacity change from 0 to 512 [ 1992.051290][T28008] EXT4-fs: Ignoring removed oldalloc option [ 1992.088479][T28008] EXT4-fs (loop6): feature flags set on rev 0 fs, running e2fsck is recommended [ 1992.098690][T28008] EXT4-fs (loop6): mounting ext2 file system using the ext4 subsystem [ 1992.161435][T28008] EXT4-fs (loop6): warning: checktime reached, running e2fsck is recommended [ 1992.238817][T28008] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a043c02c, mo2=0102] [ 1992.276599][T28008] System zones: 0-2, 18-18, 34-34 [ 1992.338861][T28008] EXT4-fs error (device loop6): ext4_orphan_get:1393: inode #15: comm syz.6.9258: iget: bad i_size value: 360287970189639680 [ 1992.374077][T28008] EXT4-fs (loop6): Remounting filesystem read-only [ 1992.389071][T28008] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1992.419648][T25816] savu 0003:1E7D:2D5A.0059: unknown main item tag 0x0 [ 1992.427263][T25816] savu 0003:1E7D:2D5A.0059: unknown main item tag 0x0 [ 1992.434851][T25816] savu 0003:1E7D:2D5A.0059: unknown main item tag 0x0 [ 1992.442013][T25816] savu 0003:1E7D:2D5A.0059: unknown main item tag 0x0 [ 1992.449669][T25816] savu 0003:1E7D:2D5A.0059: unknown main item tag 0x0 [ 1992.457027][T25816] savu 0003:1E7D:2D5A.0059: unbalanced collection at end of report description [ 1992.565267][T25816] savu 0003:1E7D:2D5A.0059: parse failed [ 1992.571517][T25816] savu 0003:1E7D:2D5A.0059: probe with driver savu failed with error -22 [ 1992.724257][T26146] usb 2-1: USB disconnect, device number 39 [ 1992.860009][T27111] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1993.923376][T28032] loop6: detected capacity change from 0 to 16 [ 1994.215362][T28036] netlink: 8 bytes leftover after parsing attributes in process `syz.9.9271'. [ 1994.486181][T25816] kernel write not supported for file /137/net/fib_triestat (pid: 25816 comm: kworker/1:1) [ 1995.028707][T28052] loop6: detected capacity change from 0 to 128 [ 1995.102388][T28052] FAT-fs (loop6): Invalid FSINFO signature: 0x41615252, 0x00067272 (sector = 1) [ 1995.199099][T28052] syz.6.9279: attempt to access beyond end of device [ 1995.199099][T28052] loop6: rw=3, sector=6950, nr_sectors = 2 limit=128 [ 1995.212980][T28052] syz.6.9279: attempt to access beyond end of device [ 1995.212980][T28052] loop6: rw=2051, sector=6952, nr_sectors = 942 limit=128 [ 1995.464638][T28058] netlink: 20 bytes leftover after parsing attributes in process `syz.9.9282'. [ 1995.941453][T28064] netlink: 8 bytes leftover after parsing attributes in process `syz.6.9285'. [ 1996.035088][T28066] loop0: detected capacity change from 0 to 16 [ 1996.059661][T28066] erofs (device loop0): mounted with root inode @ nid 36. [ 1996.129049][T28066] erofs (device loop0): bogus dirent @ nid 36 [ 1996.237749][T28068] loop9: detected capacity change from 0 to 256 [ 1996.456306][T28068] FAT-fs (loop9): Directory bread(block 64) failed [ 1996.463546][T28068] FAT-fs (loop9): Directory bread(block 65) failed [ 1996.470759][T28068] FAT-fs (loop9): Directory bread(block 66) failed [ 1996.480141][T28068] FAT-fs (loop9): Directory bread(block 67) failed [ 1996.488115][T28068] FAT-fs (loop9): Directory bread(block 68) failed [ 1996.495204][T28068] FAT-fs (loop9): Directory bread(block 69) failed [ 1996.502248][T28068] FAT-fs (loop9): Directory bread(block 70) failed [ 1996.509250][T28068] FAT-fs (loop9): Directory bread(block 71) failed [ 1996.516498][T28068] FAT-fs (loop9): Directory bread(block 72) failed [ 1996.523623][T28068] FAT-fs (loop9): Directory bread(block 73) failed [ 1997.063051][T28080] loop6: detected capacity change from 0 to 256 [ 1998.188311][T28096] loop1: detected capacity change from 0 to 64 [ 1998.349634][T28099] netlink: 12 bytes leftover after parsing attributes in process `syz.9.9302'. [ 1999.425100][T28111] loop4: detected capacity change from 0 to 4096 [ 1999.503122][T28111] ntfs3(loop4): Different NTFS sector size (2048) and media sector size (512). [ 2000.683105][T28132] loop0: detected capacity change from 0 to 64 [ 2001.330366][T28139] loop1: detected capacity change from 0 to 64 [ 2001.457674][T28141] loop4: detected capacity change from 0 to 512 [ 2001.485353][T28141] EXT4-fs: Ignoring removed bh option [ 2001.491519][T28141] EXT4-fs: Ignoring removed i_version option [ 2001.558782][T28141] EXT4-fs (loop4): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors [ 2001.570333][T28141] EXT4-fs (loop4): ext4_check_descriptors: Inode bitmap for group 0 not in group (block 2)! [ 2001.581068][T28141] EXT4-fs (loop4): group descriptors corrupted! [ 2002.105288][T28150] Bluetooth: MGMT ver 1.23 [ 2002.282819][T28153] loop9: detected capacity change from 0 to 256 [ 2002.649375][T28162] loop0: detected capacity change from 0 to 64 [ 2003.057429][T28166] ip6gretap0: entered promiscuous mode [ 2003.074815][T28166] ip6gretap0: left promiscuous mode [ 2004.173704][T28180] xt_CT: No such helper "snmp" [ 2004.691426][T28197] netlink: 'syz.0.9348': attribute type 10 has an invalid length. [ 2004.750411][T28197] team0: Port device netdevsim3 added [ 2004.787479][T28198] netlink: 'syz.0.9348': attribute type 10 has an invalid length. [ 2004.824791][T28198] team0: Port device netdevsim3 removed [ 2004.846853][T28198] bond0: (slave netdevsim3): Enslaving as an active interface with an up link [ 2004.869427][T28190] loop4: detected capacity change from 0 to 4096 [ 2004.925242][T28190] ntfs3(loop4): Different NTFS sector size (4096) and media sector size (512). [ 2004.953523][T28190] ntfs3(loop4): It is recommened to use chkdsk. [ 2005.098602][T28190] ntfs3(loop4): failed to convert "076c" to iso8859-1 [ 2005.287464][T28200] overlay: filesystem on ./file0/file0 not supported [ 2005.510171][T28204] loop0: detected capacity change from 0 to 64 [ 2005.539298][T28202] loop9: detected capacity change from 0 to 2048 [ 2005.674633][T28202] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 2005.836190][T23601] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 2006.360863][T28221] loop6: detected capacity change from 0 to 256 [ 2006.585415][ T24] usb 2-1: new full-speed USB device number 40 using dummy_hcd [ 2006.652211][T28221] FAT-fs (loop6): Directory bread(block 64) failed [ 2006.660682][T28221] FAT-fs (loop6): Directory bread(block 65) failed [ 2006.668184][T28221] FAT-fs (loop6): Directory bread(block 66) failed [ 2006.675256][T28221] FAT-fs (loop6): Directory bread(block 67) failed [ 2006.682286][T28221] FAT-fs (loop6): Directory bread(block 68) failed [ 2006.689349][T28221] FAT-fs (loop6): Directory bread(block 69) failed [ 2006.696567][T28221] FAT-fs (loop6): Directory bread(block 70) failed [ 2006.704052][T28221] FAT-fs (loop6): Directory bread(block 71) failed [ 2006.711089][T28221] FAT-fs (loop6): Directory bread(block 72) failed [ 2006.720511][T28221] FAT-fs (loop6): Directory bread(block 73) failed [ 2006.854946][ T24] usb 2-1: New USB device found, idVendor=d5ff, idProduct=0066, bcdDevice=d8.b0 [ 2006.865346][ T24] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 2006.925301][ T24] usb 2-1: config 0 descriptor?? [ 2006.948336][ T24] rndis_host 2-1:0.0: probe with driver rndis_host failed with error -22 [ 2007.164425][ T24] usb 2-1: USB disconnect, device number 40 [ 2007.252177][T28232] loop9: detected capacity change from 0 to 512 [ 2007.264640][T28232] EXT4-fs: Ignoring removed nobh option [ 2007.283371][T28232] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 2007.350863][T28232] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 2007.364731][T28232] ext4 filesystem being mounted at /400/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 2007.529138][T23601] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 2008.190306][T28246] loop1: detected capacity change from 0 to 512 [ 2008.287664][T28246] EXT4-fs error (device loop1): ext4_orphan_get:1393: inode #15: comm syz.1.9368: iget: bad extra_isize 50264 (inode size 256) [ 2008.353262][T28246] EXT4-fs (loop1): Remounting filesystem read-only [ 2008.365681][T28246] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 2008.603453][T28253] loop6: detected capacity change from 0 to 2048 [ 2008.643007][T28253] UDF-fs: error (device loop6): udf_read_tagged: tag checksum failed, block 99: 0x27 != 0x4d [ 2008.688853][T28253] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 2008.706616][T14116] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 2011.412688][ T1285] ieee802154 phy0 wpan0: encryption failed: -22 [ 2011.712320][T28292] loop6: detected capacity change from 0 to 128 [ 2011.812265][T28292] EXT4-fs (loop6): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 2011.867564][T28292] ext4 filesystem being mounted at /91/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 2012.085470][T28292] EXT4-fs warning (device loop6): ext4_dirblock_csum_verify:375: inode #2: comm syz.6.9389: No space for directory leaf checksum. Please run e2fsck -D. [ 2012.101515][T28292] EXT4-fs error (device loop6): htree_dirblock_to_tree:1051: inode #2: comm syz.6.9389: Directory block failed checksum [ 2012.234480][T28297] loop9: detected capacity change from 0 to 2048 [ 2012.319134][T28297] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 2012.558712][T27111] EXT4-fs (loop6): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 2013.096534][T28304] loop0: detected capacity change from 0 to 2048 [ 2013.199904][T28304] NILFS (loop0): broken superblock, retrying with spare superblock (blocksize = 1024) [ 2013.210197][T28304] NILFS (loop0): mounting unchecked fs [ 2013.340080][T28311] netlink: 32 bytes leftover after parsing attributes in process `syz.9.9397'. [ 2013.404157][T28304] NILFS (loop0): recovery complete [ 2013.464789][T28312] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 2014.201400][T28318] loop1: detected capacity change from 0 to 1024 [ 2014.258430][T28318] EXT4-fs: Ignoring removed orlov option [ 2014.366347][T28318] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 2015.178199][T14116] EXT4-fs error (device loop1): ext4_iget_extra_inode:5035: inode #15: comm syz-executor: corrupted in-inode xattr: ea_inode specified without ea_inode feature enabled [ 2015.212017][T14116] EXT4-fs error (device loop1): ext4_iget_extra_inode:5035: inode #15: comm syz-executor: corrupted in-inode xattr: ea_inode specified without ea_inode feature enabled [ 2015.512851][T28336] loop9: detected capacity change from 0 to 2048 [ 2015.537764][T28336] ext2: Unknown parameter 'smackfsroot' [ 2015.751444][T28338] loop0: detected capacity change from 0 to 1024 [ 2015.789205][T14116] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 2016.079310][T28338] hfsplus: filesystem was not cleanly unmounted, running fsck.hfsplus is recommended. leaving read-only. [ 2016.158347][T14101] netdevsim netdevsim1 netdevsim0 (unregistering): left allmulticast mode [ 2016.168035][T14101] netdevsim netdevsim1 netdevsim0 (unregistering): left promiscuous mode [ 2016.519144][T14101] bridge_slave_1: left allmulticast mode [ 2016.525469][T14101] bridge_slave_1: left promiscuous mode [ 2016.532374][T14101] bridge0: port 2(bridge_slave_1) entered disabled state [ 2016.590349][T14101] bridge_slave_0: left allmulticast mode [ 2016.596683][T14101] bridge_slave_0: left promiscuous mode [ 2016.604505][T14101] bridge0: port 1(bridge_slave_0) entered disabled state [ 2017.499784][T14101] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 2017.529238][T14101] bond_slave_0: left allmulticast mode [ 2017.542199][T14101] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 2017.564098][T14101] bond_slave_1: left allmulticast mode [ 2017.573361][T14101] bond0 (unregistering): Released all slaves [ 2017.701565][T14101] tipc: Disabling bearer [ 2017.708410][T14101] tipc: Left network mode [ 2018.151725][T28352] loop9: detected capacity change from 0 to 16 [ 2018.263625][T14101] hsr_slave_0: left promiscuous mode [ 2018.321219][T14101] hsr_slave_1: left promiscuous mode [ 2018.329727][T14101] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 2018.403583][T14101] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 2019.101274][T28357] netlink: 40 bytes leftover after parsing attributes in process `syz.4.9421'. [ 2019.172862][T28359] loop9: detected capacity change from 0 to 512 [ 2019.192887][T28359] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 2019.252148][T28359] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 2019.265913][T28359] ext4 filesystem being mounted at /413/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 2019.430550][T14101] team0 (unregistering): Port device team_slave_1 removed [ 2019.508349][T14101] team0 (unregistering): Port device team_slave_0 removed [ 2019.814296][T15386] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 2019.835434][T15386] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 2019.903599][T15386] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 2019.978919][T15386] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 2019.999236][T15386] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 2020.019288][T23601] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 2020.188093][T28370] loop6: detected capacity change from 0 to 24 [ 2020.325154][T28365] ip6_vti0 speed is unknown, defaulting to 1000 [ 2020.474611][T14101] IPVS: stop unused estimator thread 0... [ 2021.511786][T28385] loop0: detected capacity change from 0 to 1024 [ 2021.551510][T28385] EXT4-fs: Ignoring removed nobh option [ 2021.561297][T28385] EXT4-fs: Ignoring removed bh option [ 2021.642494][T28385] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 2021.696747][T28365] chnl_net:caif_netlink_parms(): no params data found [ 2021.702270][T28385] EXT4-fs warning (device loop0): ext4_resize_begin:72: won't resize using backup superblock at 1 [ 2021.912690][T28392] ieee802154 phy0 wpan0: encryption failed: -22 [ 2022.055983][T25788] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 2022.188335][T20806] Bluetooth: hci0: command tx timeout [ 2022.611776][T28402] netlink: 108 bytes leftover after parsing attributes in process `syz.0.9436'. [ 2022.621609][T28402] netlink: 8 bytes leftover after parsing attributes in process `syz.0.9436'. [ 2022.694864][T28365] bridge0: port 1(bridge_slave_0) entered blocking state [ 2022.703011][T28365] bridge0: port 1(bridge_slave_0) entered disabled state [ 2022.710901][T28365] bridge_slave_0: entered allmulticast mode [ 2022.722370][T28365] bridge_slave_0: entered promiscuous mode [ 2022.788820][T28365] bridge0: port 2(bridge_slave_1) entered blocking state [ 2022.799467][T28365] bridge0: port 2(bridge_slave_1) entered disabled state [ 2022.807617][T28365] bridge_slave_1: entered allmulticast mode [ 2022.818303][T28365] bridge_slave_1: entered promiscuous mode [ 2023.138922][T28408] netlink: 20 bytes leftover after parsing attributes in process `syz.9.9439'. [ 2023.178530][T28365] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 2023.274083][T28365] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 2023.567614][T28365] team0: Port device team_slave_0 added [ 2023.721729][T28365] team0: Port device team_slave_1 added [ 2023.940796][T28365] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 2023.953164][T28365] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 2023.980135][T28365] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 2024.143235][T28365] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 2024.150608][T28365] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 2024.177393][T28365] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 2024.273279][T20806] Bluetooth: hci0: command tx timeout [ 2024.290701][T28420] netlink: 8 bytes leftover after parsing attributes in process `syz.9.9446'. [ 2024.485367][T28420] macvlan2: entered promiscuous mode [ 2024.491007][T28420] macvlan2: entered allmulticast mode [ 2024.497053][T28420] erspan0: entered allmulticast mode [ 2024.547428][T28365] hsr_slave_0: entered promiscuous mode [ 2024.558210][T28365] hsr_slave_1: entered promiscuous mode [ 2024.567372][T28365] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 2024.575468][T28365] Cannot create hsr debugfs directory [ 2025.122149][T28427] loop9: detected capacity change from 0 to 16 [ 2025.195062][T28427] erofs (device loop9): mounted with root inode @ nid 36. [ 2025.988651][T28434] loop9: detected capacity change from 0 to 1024 [ 2026.061780][T28365] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 2026.124342][T28365] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 2026.177544][T28365] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 2026.241026][T28365] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 2026.350221][T20806] Bluetooth: hci0: command tx timeout [ 2026.474566][T14101] hfsplus: b-tree write err: -5, ino 4 [ 2027.354259][T28365] 8021q: adding VLAN 0 to HW filter on device bond0 [ 2027.531144][T28365] 8021q: adding VLAN 0 to HW filter on device team0 [ 2027.604953][ T4510] bridge0: port 1(bridge_slave_0) entered blocking state [ 2027.612968][ T4510] bridge0: port 1(bridge_slave_0) entered forwarding state [ 2027.707991][T28447] loop9: detected capacity change from 0 to 512 [ 2027.713544][ T4510] bridge0: port 2(bridge_slave_1) entered blocking state [ 2027.722016][ T4510] bridge0: port 2(bridge_slave_1) entered forwarding state [ 2027.911001][T28447] EXT4-fs (loop9): Cannot turn on journaled quota: type 0: error -2 [ 2027.922036][T28447] EXT4-fs (loop9): Cannot turn on journaled quota: type 1: error -2 [ 2028.031719][T28447] EXT4-fs (loop9): 1 truncate cleaned up [ 2028.040915][T28447] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 2028.136102][T28452] EXT4-fs error (device loop9): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 227 vs 220 free clusters [ 2028.182205][T28447] EXT4-fs error (device loop9): ext4_map_blocks:780: inode #2: block 4: comm syz.9.9457: lblock 0 mapped to illegal pblock 4 (length 1) [ 2028.210491][T28452] EXT4-fs (loop9): Remounting filesystem read-only [ 2028.424591][T20806] Bluetooth: hci0: command tx timeout [ 2028.509689][T28456] random: crng reseeded on system resumption [ 2028.542792][T23601] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 2029.528906][T28365] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 2029.986536][T28365] veth0_vlan: entered promiscuous mode [ 2030.107528][T28365] veth1_vlan: entered promiscuous mode [ 2030.231069][T28473] loop4: detected capacity change from 0 to 2048 [ 2030.318802][T28473] NILFS (loop4): broken superblock, retrying with spare superblock (blocksize = 1024) [ 2030.329112][T28473] NILFS (loop4): mounting unchecked fs [ 2030.435282][T28365] veth0_macvtap: entered promiscuous mode [ 2030.489621][T28473] NILFS (loop4): recovery complete [ 2030.518065][T28475] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 2030.535351][T28365] veth1_macvtap: entered promiscuous mode [ 2030.736853][T28365] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 2030.793155][T28479] netlink: 56 bytes leftover after parsing attributes in process `syz.0.9466'. [ 2030.839151][T28365] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 2030.910216][T28365] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 2030.920078][T28365] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 2030.929381][T28365] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 2030.938599][T28365] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 2032.056423][T28489] loop0: detected capacity change from 0 to 4096 [ 2032.096174][T28489] ntfs3(loop0): Different NTFS sector size (2048) and media sector size (512). [ 2032.469203][T28489] ntfs3(loop0): Failed to initialize $Extend/$ObjId. [ 2033.359407][T28505] bond0: (slave bond_slave_0): Error -28 calling ndo_bpf [ 2033.370506][T28505] A link change request failed with some changes committed already. Interface bond0 may have been left with an inconsistent configuration, please check. [ 2033.589370][ T30] audit: type=1400 audit(2000000609.820:1309): apparmor="DENIED" operation="change_profile" class="file" info="label not found" error=-2 profile="unconfined" name=2626200D3A646D615F636D pid=28508 comm="syz.4.9479" [ 2035.467804][T28538] loop4: detected capacity change from 0 to 1024 [ 2035.514639][T28538] EXT4-fs: Ignoring removed nobh option [ 2035.521139][T28538] EXT4-fs: Ignoring removed bh option [ 2035.663570][T28538] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 2035.985041][T28538] EXT4-fs: old and new quota format mixing [ 2036.340254][T14123] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 2036.492425][T28552] loop9: detected capacity change from 0 to 1024 [ 2036.905841][T23663] hfsplus: b-tree write err: -5, ino 4 [ 2037.154372][T14101] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 2037.162747][T14101] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 2037.255483][T28556] loop0: detected capacity change from 0 to 4096 [ 2037.307244][T23663] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 2037.315819][T23663] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 2038.064797][T28561] loop9: detected capacity change from 0 to 8192 [ 2038.083580][T28565] loop2: detected capacity change from 0 to 256 [ 2038.107647][T28561] FAT-fs (loop9): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 2038.136434][T28565] exfat: Deprecated parameter 'namecase' [ 2038.143062][T28565] exfat: Deprecated parameter 'utf8' [ 2038.366603][T28565] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0x22785e93, utbl_chksum : 0xe619d30d) [ 2038.533130][ T30] audit: type=1800 audit(2000000614.760:1310): pid=28565 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.9415" name="file1" dev="loop2" ino=1049465 res=0 errno=0 [ 2039.073782][T15386] Bluetooth: hci2: command 0x0406 tx timeout [ 2039.464459][T28582] netlink: 84 bytes leftover after parsing attributes in process `syz.0.9505'. [ 2039.802013][T28584] loop9: detected capacity change from 0 to 64 [ 2041.532436][T28612] loop0: detected capacity change from 0 to 64 [ 2041.604717][T28610] loop6: detected capacity change from 0 to 256 [ 2041.687698][T28610] exfat: Deprecated parameter 'namecase' [ 2041.696745][T28610] exfat: Deprecated parameter 'namecase' [ 2042.058389][T28616] netlink: 8 bytes leftover after parsing attributes in process `syz.2.9522'. [ 2042.286874][T28610] exFAT-fs (loop6): failed to load upcase table (idx : 0x00010000, chksum : 0x36e00b20, utbl_chksum : 0xe619d30d) [ 2042.979778][T28627] loop0: detected capacity change from 0 to 1024 [ 2043.045300][T28628] loop4: detected capacity change from 0 to 1024 [ 2043.143204][T28627] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 2043.738254][T25788] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 2044.025692][T28642] loop4: detected capacity change from 0 to 512 [ 2044.077890][T28642] EXT4-fs: Ignoring removed nobh option [ 2044.162985][T28642] EXT4-fs error (device loop4): ext4_orphan_get:1393: inode #15: comm syz.4.9533: iget: bad i_size value: 38620345925642 [ 2044.234418][T28642] EXT4-fs error (device loop4): ext4_orphan_get:1398: comm syz.4.9533: couldn't read orphan inode 15 (err -117) [ 2044.295228][T28642] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 2044.841218][T14123] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 2047.207964][T28688] loop0: detected capacity change from 0 to 1024 [ 2047.303965][T28688] hfsplus: bad catalog entry type [ 2047.584769][T14099] hfsplus: b-tree write err: -5, ino 4 [ 2048.613294][T28708] loop9: detected capacity change from 0 to 128 [ 2048.694552][T28708] EXT4-fs (loop9): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 2048.718067][T28708] ext4 filesystem being mounted at /449/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 2049.184079][T23601] EXT4-fs (loop9): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 2049.314000][T15386] Bluetooth: hci3: command 0x0406 tx timeout [ 2049.523058][T28719] loop6: detected capacity change from 0 to 512 [ 2049.678263][T28719] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 2049.692117][T28719] ext4 filesystem being mounted at /126/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 2050.045737][T28726] overlayfs: workdir and upperdir must be separate subtrees [ 2050.559901][T27111] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 2051.313823][T28740] netlink: 8 bytes leftover after parsing attributes in process `syz.9.9574'. [ 2051.323513][T28740] netlink: 60 bytes leftover after parsing attributes in process `syz.9.9574'. [ 2051.333270][T28740] vlan1: entered allmulticast mode [ 2051.338659][T28740] veth0_vlan: entered allmulticast mode [ 2051.443299][T25816] usb 7-1: new high-speed USB device number 8 using dummy_hcd [ 2051.633711][T25816] usb 7-1: Using ep0 maxpacket: 8 [ 2051.652036][T25816] usb 7-1: config 0 has an invalid interface number: 52 but max is 0 [ 2051.660887][T25816] usb 7-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 2051.674308][T25816] usb 7-1: config 0 has no interface number 0 [ 2051.681319][T25816] usb 7-1: config 0 interface 52 altsetting 1 endpoint 0x8A has an invalid bInterval 0, changing to 7 [ 2051.693752][T25816] usb 7-1: config 0 interface 52 altsetting 1 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 2051.708605][T25816] usb 7-1: config 0 interface 52 has no altsetting 0 [ 2051.772008][T25816] usb 7-1: New USB device found, idVendor=06cb, idProduct=0003, bcdDevice=e8.00 [ 2051.784454][T25816] usb 7-1: New USB device strings: Mfr=22, Product=0, SerialNumber=0 [ 2051.793169][T25816] usb 7-1: Manufacturer: syz [ 2051.835510][T25816] usb 7-1: config 0 descriptor?? [ 2051.855563][T25816] hub 7-1:0.52: bad descriptor, ignoring hub [ 2051.861936][T25816] hub 7-1:0.52: probe with driver hub failed with error -5 [ 2052.160851][T25816] input: syz as /devices/platform/dummy_hcd.6/usb7/7-1/7-1:0.52/input/input48 [ 2052.210942][ T30] audit: type=1326 audit(2000000628.430:1311): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28741 comm="syz.2.9573" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe2539 code=0x7fc00000 [ 2052.233303][ C0] vkms_vblank_simulate: vblank timer overrun [ 2052.484193][ T5869] usb 7-1: USB disconnect, device number 8 [ 2053.965792][T28766] netlink: 4 bytes leftover after parsing attributes in process `syz.6.9582'. [ 2053.975683][T28766] netlink: 4 bytes leftover after parsing attributes in process `syz.6.9582'. [ 2053.985382][T28766] netlink: 4 bytes leftover after parsing attributes in process `syz.6.9582'. [ 2054.052783][T28765] loop0: detected capacity change from 0 to 2048 [ 2054.163345][T28765] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 2054.363452][T28765] EXT4-fs error (device loop0): ext4_find_extent:939: inode #2: comm syz.0.9585: pblk 1 bad header/extent: invalid magic - magic 2, entries 0, max 3(0), depth 0(4) [ 2054.401285][T28765] EXT4-fs (loop0): Remounting filesystem read-only [ 2054.775978][T25788] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 2056.223968][T28800] sctp: [Deprecated]: syz.4.9600 (pid 28800) Use of int in maxseg socket option. [ 2056.223968][T28800] Use struct sctp_assoc_value instead [ 2056.866936][T28807] ptrace attach of "./syz-executor exec"[28810] was attempted by "./syz-executor exec"[28807] [ 2058.939053][ T30] audit: type=1326 audit(2000000635.170:1312): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28836 comm="syz.4.9616" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff3539 code=0x7fc00000 [ 2058.961483][ C0] vkms_vblank_simulate: vblank timer overrun [ 2060.900770][T28860] loop9: detected capacity change from 0 to 4096 [ 2061.991752][T28875] loop6: detected capacity change from 0 to 512 [ 2062.067810][T28875] EXT4-fs (loop6): ext4_check_descriptors: Checksum for group 0 failed (57259!=33349) [ 2062.146364][T28880] loop4: detected capacity change from 0 to 512 [ 2062.187473][T28880] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 2062.202202][T28875] EXT4-fs (loop6): orphan cleanup on readonly fs [ 2062.290412][T28875] EXT4-fs error (device loop6): ext4_read_block_bitmap_nowait:517: comm syz.6.9633: Block bitmap for bg 0 marked uninitialized [ 2062.325206][T28880] EXT4-fs (loop4): 1 truncate cleaned up [ 2062.333680][T28880] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 2062.357131][T28886] loop9: detected capacity change from 0 to 512 [ 2062.398684][T28886] EXT4-fs (loop9): encrypted files will use data=ordered instead of data journaling mode [ 2062.417121][T28875] EXT4-fs (loop6): Remounting filesystem read-only [ 2062.430172][T28875] EXT4-fs (loop6): 1 orphan inode deleted [ 2062.439915][T28875] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none. [ 2062.479496][T28886] EXT4-fs (loop9): 1 truncate cleaned up [ 2062.488229][T28886] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 2062.955826][T23601] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 2062.988198][T14123] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 2063.227751][T27111] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 2063.290975][T28891] fusectl: Unknown parameter 'fd' [ 2063.977177][T28897] loop9: detected capacity change from 0 to 512 [ 2064.030306][T28897] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 2064.115205][T28897] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 2064.128871][T28897] ext4 filesystem being mounted at /469/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 2064.365338][T28905] loop0: detected capacity change from 0 to 164 [ 2064.458321][T23601] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 2065.764600][T28913] loop0: detected capacity change from 0 to 4096 [ 2066.327594][T28927] loop2: detected capacity change from 0 to 2048 [ 2066.372133][T28927] EXT4-fs: Ignoring removed nomblk_io_submit option [ 2066.488560][T28927] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 2066.990672][T28365] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 2067.170405][T28940] loop9: detected capacity change from 0 to 1024 [ 2067.262007][T28936] loop6: detected capacity change from 0 to 1024 [ 2067.608525][T14099] hfsplus: b-tree write err: -5, ino 4 [ 2068.141629][T28951] sp0: Synchronizing with TNC [ 2070.029899][T28981] loop2: detected capacity change from 0 to 8 [ 2070.135929][T28981] SQUASHFS error: xz decompression failed, data probably corrupt [ 2070.144324][T28981] SQUASHFS error: Failed to read block 0x108: -5 [ 2070.150931][T28981] SQUASHFS error: Unable to read metadata cache entry [106] [ 2070.158812][T28981] SQUASHFS error: Unable to read inode 0x11f [ 2070.404879][T28983] loop6: detected capacity change from 0 to 4096 [ 2070.464590][ T30] audit: type=1326 audit(2000000646.680:1313): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28984 comm="syz.9.9683" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf710e539 code=0x7ffc0000 [ 2070.487963][ T30] audit: type=1326 audit(2000000646.690:1314): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28984 comm="syz.9.9683" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf710e539 code=0x7ffc0000 [ 2070.510605][ C0] vkms_vblank_simulate: vblank timer overrun [ 2070.521736][ T30] audit: type=1326 audit(2000000646.690:1315): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28984 comm="syz.9.9683" exe="/root/syz-executor" sig=0 arch=40000003 syscall=450 compat=1 ip=0xf710e539 code=0x7ffc0000 [ 2070.544142][ C0] vkms_vblank_simulate: vblank timer overrun [ 2070.550736][ T30] audit: type=1326 audit(2000000646.720:1316): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28984 comm="syz.9.9683" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf710e539 code=0x7ffc0000 [ 2070.573501][ T30] audit: type=1326 audit(2000000646.720:1317): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28984 comm="syz.9.9683" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf710e539 code=0x7ffc0000 [ 2070.595810][ C0] vkms_vblank_simulate: vblank timer overrun [ 2070.694362][ T5869] usb 3-1: new high-speed USB device number 35 using dummy_hcd [ 2070.900218][ T5869] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x7 has invalid wMaxPacketSize 0 [ 2070.910593][ T5869] usb 3-1: config 0 interface 0 altsetting 0 bulk endpoint 0x7 has invalid maxpacket 0 [ 2070.920933][ T5869] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x89 has invalid maxpacket 33119, setting to 1024 [ 2070.936017][ T5869] usb 3-1: config 0 interface 0 altsetting 0 bulk endpoint 0x89 has invalid maxpacket 1024 [ 2070.970933][T28990] loop9: detected capacity change from 0 to 256 [ 2070.980901][T28990] exfat: Deprecated parameter 'namecase' [ 2070.987787][T28990] exfat: Deprecated parameter 'utf8' [ 2071.002226][ T5869] usb 3-1: New USB device found, idVendor=2040, idProduct=2000, bcdDevice=65.72 [ 2071.012123][ T5869] usb 3-1: New USB device strings: Mfr=151, Product=0, SerialNumber=0 [ 2071.021049][ T5869] usb 3-1: Manufacturer: syz [ 2071.042842][ T5869] usb 3-1: config 0 descriptor?? [ 2071.051631][T28981] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22 [ 2071.077683][ T5869] smsusb:smsusb_probe: board id=9, interface number 0 [ 2071.103266][ T5869] smsusb:siano_media_device_register: media controller created [ 2071.114503][ C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes [ 2071.122499][ C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes [ 2071.131669][ T5869] smsmdtv:smscore_sendrequest_and_wait: sendrequest returned error -22 [ 2071.145619][ C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes [ 2071.145924][ C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes [ 2071.146194][ C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes [ 2071.146461][ C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes [ 2071.146736][ C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes [ 2071.147001][ C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes [ 2071.147265][ C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes [ 2071.147531][ C0] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes [ 2071.191932][T28990] exFAT-fs (loop9): failed to load upcase table (idx : 0x00010000, chksum : 0xdc42f586, utbl_chksum : 0xe619d30d) [ 2071.194914][ T5869] smsmdtv:smscore_set_device_mode: mode detect failed -22 [ 2071.195013][ T5869] smsmdtv:smscore_start_device: set device mode failed , rc -22 [ 2071.244834][ T5869] smsusb:smsusb_init_device: smscore_start_device(...) failed [ 2071.260001][ T5869] ------------[ cut here ]------------ [ 2071.265938][ T5869] WARNING: CPU: 0 PID: 5869 at mm/slub.c:4753 free_large_kmalloc+0x2ee/0x330 [ 2071.275330][ T5869] Modules linked in: [ 2071.279667][ T5869] CPU: 0 UID: 0 PID: 5869 Comm: kworker/0:3 Tainted: G W 6.16.0-rc5-syzkaller-00276-g5d5d62298b8b #0 PREEMPT(none) [ 2071.293898][ T5869] Tainted: [W]=WARN [ 2071.297948][ T5869] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 2071.308557][ T5869] Workqueue: usb_hub_wq hub_event [ 2071.314484][ T5869] RIP: 0010:free_large_kmalloc+0x2ee/0x330 [ 2071.320678][ T5869] Code: ff ff ff e8 b4 8e 13 00 41 81 ff 00 00 00 f8 0f 84 ca fd ff ff eb 12 e8 a0 8e 13 00 41 81 ff 00 00 00 f8 0f 84 ff fd ff ff 90 <0f> 0b 90 48 8b 7d c8 48 c7 c6 2d 28 e6 91 e8 8f 50 e3 ff e9 0a ff [ 2071.346639][ T5869] RSP: 0018:ffff88804defa9e8 EFLAGS: 00010206 [ 2071.354881][ T5869] RAX: 0000000000000000 RBX: ffffea0005a77600 RCX: 00000000f8ffffff [ 2071.363322][ T5869] RDX: ffffffff954e2000 RSI: 0000000000000001 RDI: 0000000000000000 [ 2071.371620][ T5869] RBP: ffff88804defaa40 R08: ffffea000000000f R09: 0000000000000000 [ 2071.380137][ T5869] R10: ffff88804d77a840 R11: ffffffff81d3f030 R12: 0000000000000000 [ 2071.388742][ T5869] R13: 0000000000000000 R14: 0000000000000000 R15: 00000000ff000000 [ 2071.397257][ T5869] FS: 0000000000000000(0000) GS:ffff8881aa85a000(0000) knlGS:0000000000000000 [ 2071.406632][ T5869] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 2071.413760][ T5869] CR2: 00000000f73d4230 CR3: 000000004e942000 CR4: 00000000003526f0 [ 2071.422044][ T5869] Call Trace: [ 2071.425655][ T5869] [ 2071.428917][ T5869] kfree+0x64b/0xec0 [ 2071.433369][ T5869] ? usb_free_urb+0x125/0x150 [ 2071.445975][ T5869] ? kmsan_internal_set_shadow_origin+0x79/0x110 [ 2071.453027][ T5869] ? kmsan_get_metadata+0xfb/0x160 [ 2071.458545][ T5869] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 2071.464974][ T5869] usb_free_urb+0x125/0x150 [ 2071.469875][ T5869] smsusb_term_device+0x350/0x700 [ 2071.475490][ T5869] smsusb_probe+0x2cf0/0x36c0 [ 2071.480714][ T5869] ? __pfx_smsusb_sendrequest+0x10/0x10 [ 2071.486759][ T5869] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 2071.493114][ T5869] ? __pfx_smsusb_probe+0x10/0x10 [ 2071.498636][ T5869] usb_probe_interface+0xd01/0x1310 [ 2071.504380][ T5869] ? __pfx_usb_probe_interface+0x10/0x10 [ 2071.510444][ T5869] really_probe+0x4d1/0xd90 [ 2071.515909][ T5869] __driver_probe_device+0x268/0x380 [ 2071.521618][ T5869] driver_probe_device+0x70/0x8b0 [ 2071.527351][ T5869] ? kmsan_get_metadata+0xfb/0x160 [ 2071.532995][ T5869] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 2071.544823][ T5869] __device_attach_driver+0x4ee/0x950 [ 2071.550656][ T5869] bus_for_each_drv+0x3e0/0x680 [ 2071.557647][ T5869] ? __pfx___device_attach_driver+0x10/0x10 [ 2071.564284][ T5869] __device_attach+0x3c8/0x5c0 [ 2071.569460][ T5869] device_initial_probe+0x33/0x40 [ 2071.574994][ T5869] bus_probe_device+0x3ba/0x5e0 [ 2071.580303][ T5869] device_add+0x12a9/0x1c10 [ 2071.585369][ T5869] usb_set_configuration+0x3493/0x3b70 [ 2071.591350][ T5869] usb_generic_driver_probe+0xfc/0x290 [ 2071.597383][ T5869] ? __pfx_usb_generic_driver_probe+0x10/0x10 [ 2071.604004][ T5869] usb_probe_device+0x38d/0x690 [ 2071.609235][ T5869] ? __pfx_usb_probe_device+0x10/0x10 [ 2071.615369][ T5869] really_probe+0x4d1/0xd90 [ 2071.620325][ T5869] __driver_probe_device+0x268/0x380 [ 2071.626272][ T5869] driver_probe_device+0x70/0x8b0 [ 2071.631780][ T5869] ? kmsan_get_metadata+0xfb/0x160 [ 2071.637455][ T5869] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 2071.649332][ T5869] __device_attach_driver+0x4ee/0x950 [ 2071.656950][ T5869] bus_for_each_drv+0x3e0/0x680 [ 2071.662255][ T5869] ? __pfx___device_attach_driver+0x10/0x10 [ 2071.668763][ T5869] __device_attach+0x3c8/0x5c0 [ 2071.674158][ T5869] device_initial_probe+0x33/0x40 [ 2071.679654][ T5869] bus_probe_device+0x3ba/0x5e0 [ 2071.685061][ T5869] device_add+0x12a9/0x1c10 [ 2071.689999][ T5869] usb_new_device+0x104b/0x20c0 [ 2071.695479][ T5869] hub_event+0x5588/0x7580 [ 2071.700378][ T5869] ? pwq_dec_nr_in_flight+0x1678/0x1d80 [ 2071.706694][ T5869] ? __pfx_hub_event+0x10/0x10 [ 2071.711951][ T5869] process_scheduled_works+0xb91/0x1d80 [ 2071.718193][ T5869] worker_thread+0xedf/0x1590 [ 2071.723515][ T5869] kthread+0xd59/0xf00 [ 2071.727983][ T5869] ? __pfx_worker_thread+0x10/0x10 [ 2071.733740][ T5869] ? __pfx_kthread+0x10/0x10 [ 2071.738691][ T5869] ret_from_fork+0x1e0/0x310 [ 2071.749278][ T5869] ? __pfx_kthread+0x10/0x10 [ 2071.755949][ T5869] ret_from_fork_asm+0x1a/0x30 [ 2071.761243][ T5869] [ 2071.764787][ T5869] ---[ end trace 0000000000000000 ]--- [ 2071.770550][ T5869] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x1217e2 [ 2071.779914][ T5869] flags: 0x17ff00000000000(node=0|zone=2|lastcpupid=0x7ff) [ 2071.787621][ T5869] raw: 017ff00000000000 0000000000000000 dead000000000122 0000000000000000 [ 2071.796884][ T5869] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000 [ 2071.805919][ T5869] raw: ffffea0005a4f6a0 ffffea0005a636a0 [ 2071.811901][ T5869] page dumped because: Not a kmalloc allocation [ 2071.819820][ T5869] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x1217e0 [ 2071.829173][ T5869] flags: 0x17ff00000000000(node=0|zone=2|lastcpupid=0x7ff) [ 2071.837014][ T5869] raw: 017ff00000000000 0000000000000000 dead000000000122 0000000000000000 [ 2071.851527][ T5869] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000 [ 2071.862284][ T5869] raw: ffffea0005a4f600 ffffea0005a63600 [ 2071.868311][ T5869] page dumped because: Not a kmalloc allocation [ 2071.875641][ T5869] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x1217de [ 2071.884952][ T5869] flags: 0x17ff00000000000(node=0|zone=2|lastcpupid=0x7ff) [ 2071.892650][ T5869] raw: 017ff00000000000 0000000000000000 dead000000000122 0000000000000000 [ 2071.901670][ T5869] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000 [ 2071.910778][ T5869] raw: ffffea0005a4f560 ffffea0005a63560 [ 2071.916952][ T5869] page dumped because: Not a kmalloc allocation [ 2071.924249][ T5869] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x1217dc [ 2071.933652][ T5869] flags: 0x17ff00000000000(node=0|zone=2|lastcpupid=0x7ff) [ 2071.941228][ T5869] raw: 017ff00000000000 0000000000000000 dead000000000122 0000000000000000 [ 2071.955702][ T5869] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000 [ 2071.966186][ T5869] raw: ffffea0005a4f4c0 ffffea0005a634c0 [ 2071.972108][ T5869] page dumped because: Not a kmalloc allocation [ 2071.979670][ T5869] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x1217da [ 2071.988960][ T5869] flags: 0x17ff00000000000(node=0|zone=2|lastcpupid=0x7ff) [ 2071.996739][ T5869] raw: 017ff00000000000 0000000000000000 dead000000000122 0000000000000000 [ 2072.005807][ T5869] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000 [ 2072.014874][ T5869] raw: ffffea0005a4f420 ffffea0005a63420 [ 2072.020789][ T5869] page dumped because: Not a kmalloc allocation [ 2072.028259][ T5869] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x1217d8 [ 2072.037693][ T5869] flags: 0x17ff00000000000(node=0|zone=2|lastcpupid=0x7ff) [ 2072.045416][ T5869] raw: 017ff00000000000 0000000000000000 dead000000000122 0000000000000000 [ 2072.059821][ T5869] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000 [ 2072.070492][ T5869] raw: ffffea0005a4f380 ffffea0005a63380 [ 2072.076552][ T5869] page dumped because: Not a kmalloc allocation [ 2072.083913][ T5869] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x1217d6 [ 2072.093276][ T5869] flags: 0x17ff00000000000(node=0|zone=2|lastcpupid=0x7ff) [ 2072.100924][ T5869] raw: 017ff00000000000 0000000000000000 dead000000000122 0000000000000000 [ 2072.110124][ T5869] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000 [ 2072.119141][ T5869] raw: ffffea0005a4f2e0 ffffea0005a632e0 [ 2072.125234][ T5869] page dumped because: Not a kmalloc allocation [ 2072.132491][ T5869] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x1217d4 [ 2072.141867][ T5869] flags: 0x17ff00000000000(node=0|zone=2|lastcpupid=0x7ff) [ 2072.149695][ T5869] raw: 017ff00000000000 0000000000000000 dead000000000122 0000000000000000 [ 2072.164271][ T5869] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000 [ 2072.174854][ T5869] raw: ffffea0005a4f240 ffffea0005a63240 [ 2072.180864][ T5869] page dumped because: Not a kmalloc allocation [ 2072.189202][ T5869] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x1217d2 [ 2072.198561][ T5869] flags: 0x17ff00000000000(node=0|zone=2|lastcpupid=0x7ff) [ 2072.206269][ T5869] raw: 017ff00000000000 0000000000000000 dead000000000122 0000000000000000 [ 2072.215510][ T5869] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000 [ 2072.224529][ T5869] raw: ffffea0005a4f1a0 ffffea0005a631a0 [ 2072.230520][ T5869] page dumped because: Not a kmalloc allocation [ 2072.237898][ T5869] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x1217d0 [ 2072.247236][ T5869] flags: 0x17ff00000000000(node=0|zone=2|lastcpupid=0x7ff) [ 2072.260317][ T5869] raw: 017ff00000000000 0000000000000000 dead000000000122 0000000000000000 [ 2072.271132][ T5869] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000 [ 2072.280324][ T5869] raw: ffffea0005a4f100 ffffea0005a63100 [ 2072.286404][ T5869] page dumped because: Not a kmalloc allocation [ 2072.296842][ T5869] smsusb:smsusb_probe: Device initialized with return code -22 [ 2072.565225][ T5869] smsusb 3-1:0.0: probe with driver smsusb failed with error -22 [ 2072.624690][ T5869] usb 3-1: USB disconnect, device number 35 [ 2072.855325][ T1285] ieee802154 phy0 wpan0: encryption failed: -22 [ 2072.944294][T29003] program syz.6.9687 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 2073.224793][T29008] loop9: detected capacity change from 0 to 16 [ 2073.289324][T29008] erofs (device loop9): mounted with root inode @ nid 36. [ 2073.334165][T29008] erofs (device loop9): invalid de[0].nameoff 0 @ nid 36 [ 2073.588397][ T30] audit: type=1326 audit(2000000649.800:1318): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=29009 comm="syz.2.9694" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe2539 code=0x7ffc0000 [ 2073.610831][ C0] vkms_vblank_simulate: vblank timer overrun [ 2073.617790][ T30] audit: type=1326 audit(2000000649.800:1319): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=29009 comm="syz.2.9694" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe2539 code=0x7ffc0000 [ 2073.640578][ T30] audit: type=1326 audit(2000000649.810:1320): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=29009 comm="syz.2.9694" exe="/root/syz-executor" sig=0 arch=40000003 syscall=309 compat=1 ip=0xf7fe2539 code=0x7ffc0000 [ 2073.662935][ C0] vkms_vblank_simulate: vblank timer overrun [ 2073.669581][ T30] audit: type=1326 audit(2000000649.810:1321): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=29009 comm="syz.2.9694" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe2539 code=0x7ffc0000 [ 2074.125312][T29022] netlink: 232 bytes leftover after parsing attributes in process `syz.2.9699'. [ 2074.408942][T29027] netlink: 'syz.6.9700': attribute type 29 has an invalid length. [ 2074.411244][T29028] ieee802154 phy0 wpan0: encryption failed: -22 [ 2074.493165][T29027] netlink: 'syz.6.9700': attribute type 29 has an invalid length. [ 2074.505310][T29029] program syz.9.9702 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 2075.668048][T29046] loop0: detected capacity change from 0 to 164 [ 2075.785732][ T30] audit: type=1326 audit(2000000652.000:1322): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=29048 comm="syz.4.9710" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff3539 code=0x7ffc0000 [ 2075.890601][ T30] audit: type=1326 audit(2000000652.040:1323): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=29048 comm="syz.4.9710" exe="/root/syz-executor" sig=0 arch=40000003 syscall=5 compat=1 ip=0xf7ff3539 code=0x7ffc0000 [ 2075.912995][ C0] vkms_vblank_simulate: vblank timer overrun [ 2075.919615][ T30] audit: type=1326 audit(2000000652.040:1324): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=29048 comm="syz.4.9710" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff3539 code=0x7ffc0000 [ 2075.945740][ T30] audit: type=1326 audit(2000000652.050:1325): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=29048 comm="syz.4.9710" exe="/root/syz-executor" sig=0 arch=40000003 syscall=92 compat=1 ip=0xf7ff3539 code=0x7ffc0000 [ 2075.969405][ T30] audit: type=1326 audit(2000000652.050:1326): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=29048 comm="syz.4.9710" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff3539 code=0x7ffc0000 [ 2076.827342][T29066] loop9: detected capacity change from 0 to 1024 [ 2076.925487][T29066] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 2076.938850][T29066] ext4 filesystem being mounted at /490/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 2077.279027][T23601] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 2077.635677][T29083] netlink: 4 bytes leftover after parsing attributes in process `syz.9.9726'. [ 2077.899405][T29086] loop4: detected capacity change from 0 to 2048 [ 2077.968117][T29086] UDF-fs: error (device loop4): udf_read_tagged: tag checksum failed, block 99: 0x27 != 0x4d [ 2078.006351][T29086] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 2078.083048][ T5869] usb 7-1: new full-speed USB device number 9 using dummy_hcd [ 2078.164957][T29089] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 2078.304863][ T5869] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 2078.315263][ T5869] usb 7-1: New USB device found, idVendor=057e, idProduct=200e, bcdDevice= 0.00 [ 2078.324848][ T5869] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 2078.335547][T29091] loop2: detected capacity change from 0 to 764 [ 2078.410402][ T5869] usb 7-1: config 0 descriptor?? [ 2078.434116][T29091] rock: corrupted directory entry. extent=32, offset=2044, size=237 [ 2078.928865][ T5869] nintendo 0003:057E:200E.005A: unbalanced collection at end of report description [ 2078.957702][ T5869] nintendo 0003:057E:200E.005A: HID parse failed [ 2078.983890][ T5869] nintendo 0003:057E:200E.005A: probe - fail = -22 [ 2078.991241][ T5869] nintendo 0003:057E:200E.005A: probe with driver nintendo failed with error -22 [ 2079.089286][T25816] usb 7-1: USB disconnect, device number 9 [ 2079.139455][ T30] audit: type=1326 audit(2000000655.370:1327): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=29099 comm="syz.4.9736" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff3539 code=0x7ffc0000 [ 2079.161910][ C0] vkms_vblank_simulate: vblank timer overrun [ 2079.236336][ T30] audit: type=1326 audit(2000000655.440:1328): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=29099 comm="syz.4.9736" exe="/root/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf7ff3539 code=0x7ffc0000 [ 2079.259903][ T30] audit: type=1326 audit(2000000655.440:1329): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=29099 comm="syz.4.9736" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff3539 code=0x7ffc0000 [ 2079.283142][ T30] audit: type=1326 audit(2000000655.440:1330): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=29099 comm="syz.4.9736" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff3539 code=0x7ffc0000 [ 2079.305910][ T30] audit: type=1326 audit(2000000655.460:1331): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=29099 comm="syz.4.9736" exe="/root/syz-executor" sig=0 arch=40000003 syscall=345 compat=1 ip=0xf7ff3539 code=0x7ffc0000 [ 2079.328233][ C0] vkms_vblank_simulate: vblank timer overrun [ 2080.694888][T29110] loop0: detected capacity change from 0 to 4096 [ 2081.404526][T29133] ntfs3(loop0): ino=22, The size of extended attributes must not exceed 64KiB [ 2081.851554][T29137] loop6: detected capacity change from 0 to 64 [ 2082.593442][T29149] loop4: detected capacity change from 0 to 256 [ 2083.015659][T29156] netlink: 192 bytes leftover after parsing attributes in process `syz.2.9762'. [ 2083.025887][T29156] netlink: 8 bytes leftover after parsing attributes in process `syz.2.9762'. [ 2083.406157][T29159] nbd: socks must be embedded in a SOCK_ITEM attr [ 2083.815205][T29168] autofs: Bad value for 'fd' [ 2084.283596][T29176] netlink: 28 bytes leftover after parsing attributes in process `syz.4.9771'. [ 2084.293259][T29176] netlink: 8 bytes leftover after parsing attributes in process `syz.4.9771'. [ 2084.504421][T29178] loop9: detected capacity change from 0 to 1024 [ 2084.655346][T29178] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 2084.777470][T29178] EXT4-fs error (device loop9): ext4_lookup:1787: inode #14: comm syz.9.9772: iget: bogus i_mode (1377) [ 2085.140262][T23601] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 2085.242320][T29189] ===================================================== [ 2085.250750][T29189] BUG: KMSAN: uninit-value in ieee802154_hdr_push+0x9ac/0xa30 [ 2085.261282][T29189] ieee802154_hdr_push+0x9ac/0xa30 [ 2085.267452][T29189] ieee802154_header_create+0x854/0xb90 [ 2085.273487][T29189] dgram_sendmsg+0xb40/0x16d0 [ 2085.278441][T29189] ieee802154_sock_sendmsg+0x8f/0xd0 [ 2085.284322][T29189] __sock_sendmsg+0x333/0x3d0 [ 2085.289249][T29189] ____sys_sendmsg+0x7e0/0xd80 [ 2085.294875][T29189] ___sys_sendmsg+0x271/0x3b0 [ 2085.299829][T29189] __sys_sendmsg+0x1aa/0x300 [ 2085.305429][T29189] __ia32_compat_sys_sendmsg+0xa4/0x100 [ 2085.311339][T29189] ia32_sys_call+0x3692/0x42c0 [ 2085.316579][T29189] __do_fast_syscall_32+0xb0/0x150 [ 2085.321990][T29189] do_fast_syscall_32+0x38/0x80 [ 2085.329180][T29189] do_SYSENTER_32+0x1f/0x30 [ 2085.335121][T29189] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 2085.341747][T29189] [ 2085.345618][T29189] Uninit was stored to memory at: [ 2085.350963][T29189] ieee802154_hdr_push+0x9a5/0xa30 [ 2085.358440][T29189] ieee802154_header_create+0x854/0xb90 [ 2085.366419][T29189] dgram_sendmsg+0xb40/0x16d0 [ 2085.371338][T29189] ieee802154_sock_sendmsg+0x8f/0xd0 [ 2085.377968][T29189] __sock_sendmsg+0x333/0x3d0 [ 2085.383083][T29189] ____sys_sendmsg+0x7e0/0xd80 [ 2085.388124][T29189] ___sys_sendmsg+0x271/0x3b0 [ 2085.393362][T29189] __sys_sendmsg+0x1aa/0x300 [ 2085.398265][T29189] __ia32_compat_sys_sendmsg+0xa4/0x100 [ 2085.404387][T29189] ia32_sys_call+0x3692/0x42c0 [ 2085.409376][T29189] __do_fast_syscall_32+0xb0/0x150 [ 2085.415175][T29189] do_fast_syscall_32+0x38/0x80 [ 2085.420331][T29189] do_SYSENTER_32+0x1f/0x30 [ 2085.425298][T29189] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 2085.431925][T29189] [ 2085.434718][T29189] Local variable hdr created at: [ 2085.439829][T29189] ieee802154_header_create+0x4e/0xb90 [ 2085.445719][T29189] dgram_sendmsg+0xb40/0x16d0 [ 2085.450641][T29189] [ 2085.453306][T29189] CPU: 1 UID: 0 PID: 29189 Comm: syz.4.9777 Tainted: G W 6.16.0-rc5-syzkaller-00276-g5d5d62298b8b #0 PREEMPT(none) [ 2085.469412][T29189] Tainted: [W]=WARN [ 2085.474178][T29189] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 2085.484661][T29189] ===================================================== [ 2085.491772][T29189] Disabling lock debugging due to kernel taint [ 2085.498764][T29189] Kernel panic - not syncing: kmsan.panic set ... [ 2085.505409][T29189] CPU: 1 UID: 0 PID: 29189 Comm: syz.4.9777 Tainted: G B W 6.16.0-rc5-syzkaller-00276-g5d5d62298b8b #0 PREEMPT(none) [ 2085.519362][T29189] Tainted: [B]=BAD_PAGE, [W]=WARN [ 2085.524564][T29189] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 2085.534838][T29189] Call Trace: [ 2085.538289][T29189] [ 2085.541421][T29189] __dump_stack+0x26/0x30 [ 2085.546036][T29189] dump_stack_lvl+0x53/0x270 [ 2085.550878][T29189] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 2085.556953][T29189] dump_stack+0x1e/0x25 [ 2085.561440][T29189] panic+0x4bd/0xd50 [ 2085.565641][T29189] kmsan_report+0x31c/0x320 [ 2085.570508][T29189] ? stack_depot_save+0x12/0x20 [ 2085.575582][T29189] ? __msan_warning+0x1b/0x30 [ 2085.580493][T29189] ? ieee802154_hdr_push+0x9ac/0xa30 [ 2085.586021][T29189] ? ieee802154_header_create+0x854/0xb90 [ 2085.591956][T29189] ? dgram_sendmsg+0xb40/0x16d0 [ 2085.597099][T29189] ? ieee802154_sock_sendmsg+0x8f/0xd0 [ 2085.602795][T29189] ? __sock_sendmsg+0x333/0x3d0 [ 2085.607868][T29189] ? ____sys_sendmsg+0x7e0/0xd80 [ 2085.613047][T29189] ? ___sys_sendmsg+0x271/0x3b0 [ 2085.618152][T29189] ? __sys_sendmsg+0x1aa/0x300 [ 2085.623186][T29189] ? __ia32_compat_sys_sendmsg+0xa4/0x100 [ 2085.629178][T29189] ? ia32_sys_call+0x3692/0x42c0 [ 2085.634322][T29189] ? __do_fast_syscall_32+0xb0/0x150 [ 2085.639877][T29189] ? do_fast_syscall_32+0x38/0x80 [ 2085.645156][T29189] ? do_SYSENTER_32+0x1f/0x30 [ 2085.650102][T29189] ? entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 2085.656848][T29189] ? entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 2085.663614][T29189] ? __ia32_compat_sys_sendmsg+0xa4/0x100 [ 2085.669614][T29189] ? ia32_sys_call+0x3692/0x42c0 [ 2085.674777][T29189] ? kmsan_get_metadata+0xfb/0x160 [ 2085.680144][T29189] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 2085.686216][T29189] ? cfg802154_pernet_exit+0x191/0x230 [ 2085.691928][T29189] ? filter_irq_stacks+0x49/0x190 [ 2085.697162][T29189] ? kmsan_get_metadata+0xfb/0x160 [ 2085.702532][T29189] ? kmsan_internal_memmove_metadata+0x91/0x230 [ 2085.709035][T29189] ? kmsan_get_metadata+0xfb/0x160 [ 2085.714413][T29189] ? kmsan_internal_memmove_metadata+0x181/0x230 [ 2085.720995][T29189] ? kmsan_get_metadata+0xfb/0x160 [ 2085.726375][T29189] __msan_warning+0x1b/0x30 [ 2085.731116][T29189] ieee802154_hdr_push+0x9ac/0xa30 [ 2085.736491][T29189] ? __msan_memcpy+0x108/0x1c0 [ 2085.741496][T29189] ieee802154_header_create+0x854/0xb90 [ 2085.747282][T29189] ? kmsan_get_metadata+0xfb/0x160 [ 2085.752676][T29189] ? __pfx_ieee802154_header_create+0x10/0x10 [ 2085.758978][T29189] dgram_sendmsg+0xb40/0x16d0 [ 2085.763898][T29189] ? __pfx_dgram_sendmsg+0x10/0x10 [ 2085.769220][T29189] ieee802154_sock_sendmsg+0x8f/0xd0 [ 2085.774747][T29189] ? __pfx_ieee802154_sock_sendmsg+0x10/0x10 [ 2085.780983][T29189] ? __pfx_ieee802154_sock_sendmsg+0x10/0x10 [ 2085.787235][T29189] __sock_sendmsg+0x333/0x3d0 [ 2085.792165][T29189] ____sys_sendmsg+0x7e0/0xd80 [ 2085.797235][T29189] ___sys_sendmsg+0x271/0x3b0 [ 2085.802190][T29189] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 2085.808281][T29189] ? __rcu_read_unlock+0x6d/0xd0 [ 2085.813443][T29189] ? __fget_files+0x3b4/0x4a0 [ 2085.818410][T29189] ? __fget_files+0x3b9/0x4a0 [ 2085.823359][T29189] ? kmsan_get_metadata+0xfb/0x160 [ 2085.828725][T29189] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 2085.834797][T29189] __sys_sendmsg+0x1aa/0x300 [ 2085.839687][T29189] __ia32_compat_sys_sendmsg+0xa4/0x100 [ 2085.845515][T29189] ia32_sys_call+0x3692/0x42c0 [ 2085.850493][T29189] __do_fast_syscall_32+0xb0/0x150 [ 2085.855879][T29189] ? irqentry_exit_to_user_mode+0x82/0xa0 [ 2085.861866][T29189] do_fast_syscall_32+0x38/0x80 [ 2085.866980][T29189] do_SYSENTER_32+0x1f/0x30 [ 2085.871732][T29189] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 2085.878311][T29189] RIP: 0023:0xf7ff3539 [ 2085.882570][T29189] Code: 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 [ 2085.902439][T29189] RSP: 002b:00000000f511655c EFLAGS: 00000206 ORIG_RAX: 0000000000000172 [ 2085.911096][T29189] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000800000c0 [ 2085.919246][T29189] RDX: 0000000004000010 RSI: 0000000000000000 RDI: 0000000000000000 [ 2085.927393][T29189] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 2085.935541][T29189] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000 [ 2085.943691][T29189] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 2085.951871][T29189] [ 2085.955415][T29189] Kernel Offset: disabled [ 2085.959852][T29189] Rebooting in 86400 seconds..