last executing test programs: 3.893036574s ago: executing program 3 (id=2816): r0 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$sock_inet_SIOCGARP(r0, 0x8954, &(0x7f0000001c40)={{}, {0x6, @random='3axn\a$'}, 0x2a, {0x2, 0x0, @broadcast}, 'ip6gre0\x00'}) 3.787926602s ago: executing program 2 (id=2817): r0 = syz_init_net_socket$llc(0x1a, 0x2, 0x0) setsockopt$llc_int(r0, 0x10c, 0x1, &(0x7f0000000180)=0x1, 0x4) 3.670676347s ago: executing program 4 (id=2818): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f0000000f80)={'wlan1\x00', &(0x7f0000000f40)=@ethtool_stats={0x1c}}) 3.268592579s ago: executing program 3 (id=2821): r0 = syz_open_dev$vim2m(&(0x7f0000000000), 0xb173, 0x2) ioctl$vim2m_VIDIOC_ENUM_FMT(r0, 0xc0405602, &(0x7f0000000080)={0x42, 0x1, 0x3, "b49e1b62251dd37bb50730df4749af087c17e6e724ae01b9424f5ab23870ecd4"}) 3.210942168s ago: executing program 2 (id=2822): syz_mount_image$iso9660(&(0x7f0000000fc0), &(0x7f0000001000)='./file1\x00', 0x0, &(0x7f0000000d80)=ANY=[], 0x3, 0x7be, &(0x7f00000005c0)="$eJzs3U1oHPfZAPBn9EqxooAJeUtqjOOM7RRs6iq7q0SpyCHdrEbyJNKu2F0Vm1KSEMvFWPkgJrTxoYkvST8pPfWY5hpy6a3QQ6GHtqdCc+ilh0Igp5JCA6WlFFRmdtdeyfpyLNlJ+vuJ6D8788x/npmdzLOz1swEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABBJY7ZSqSYHI2L5bLq1xmy7tbjN9EF/v17XbLPciKT4L8bH41Bv1KEvXJ98f/HreBzpvToS4yODCfc+/v+jI4P5t0nokzq2y7gk4o0ioUvPra6uvLIPidxGP/jVTc/yr7Xi93zWzDutfLE+n6V5p5XOTE9XHj4z10nn8oWsc67TzRbTRjurd1vt9GTjVFqdmZlKs8lzreXm/Gx9IRuMfOwrtUplOn1qcimrtzut5sNPTXYaZ/KFhbw5X8bUKt+OIuaxYkd8Ou+m3ay+mKYXLq6uTO2UahFUXTfmwLod58hD93746gcfX1wpdsitOkn6+1+tWq3VqtOPzjz6WKUyWqvU1o+obBDXImIkoojYl52Wz5A9OnLDrRsp6v/HScRC5NGM5TgbaaQxUv6+/jMW4zEb7WjFYvH6T2Mbpt9Q/7/08N/+sN1yh+v/oMofuj75cJT1/2jv1dEYL5rxuHLPuvpfHJQ35rF/P833etkMj7scr8WVuBTPxWqsxkq8chvz+UQ/I3vb33xk0Yw8OtGKPBajXo5J+2PSmInpmI5KPBNnYi46kcZc5LEQWXTiXHR+ONp/vxvRjizq0Y1WtCONk9GIU5FGNWZiJqYijSwm41y0YjmaMR+zUS97uRAXy+0+tSGv+7/7bPLGHz98uxi+FlTdZkWS4sNcEfT3bYL6xfzB2FX9v7u/busj1P/Pm/H++7zb+L04bMOeWCvP/0fvdBoAAADAPkrKb9+TiBiLB8qhuXwh+8adTgsAAADYQ+XfNR8pmrFi6IFIivP/yiaR79/23AAAAIC9kZTX2CURMREP9oYGl0tt9iUAAAAA8BlU/vv/0aKZiHi9HOH8HwAAAD5nvjd0j/0YvsfuB3f179HbWTqQ/F8/eunsQ8kL9WKo/kJ/XL/5+rUeu3OHk4P9TspmevTKPUlEjDayI8ng7pf/OdBrPyp7OHz9BoQb87h2r992eyy5unUCsX0C5av4URzrxRw732vPD6b0ljIxly9kk43WwuPVpP/lSPfVFy9+J6JY+vebiweTuHBxdWXy+ZdWz5e5XC16ufpC//bwyU3kstbfAvHA5ms8Vl6I0V/uRG+5leH17z8SYWT7ZSbDy3wzjvdijk/02on16z9eLLM6+Xg16vWDI93sbPfVtaG172dRvcU1fzNO9GJOnDzRazbJorYuixdvzKI2nMXutsWus3j72Otn//HbVpJN7ZTF1C1mAXCnXCjv+nO9Ct1dVqF/r/UU9X9D3R3c1fymjnIXrn/KGMw/VOtGY2+q+5txshdzsvd5YvTwJnWlsskR/eWLL/+uf0R/5N2f/fybR3//i62r21qyfRbvxqleYL+J+35zQxZFF9Vyy/54Q1V9p5jjnS2ramehlsRYjPSmDCavfGvlxVptarrySKXyaC3Gyo8K/UbtAWATOz5jZxdP4Xlk87PqGFS8+679ScFkPB8vxWqcj9Pl1QYR8eDmvU4M/RnC6R3OWieGnvByeodzy+uxtY2xB04ksUXs1NAW++JPy+af+/eeAMB+O75DHd5N/T+9w3n3+lp+qvfg3MHZcWxdyzfz1f3eIADwPyBrf5RMdN9K2u186ZnqzEy13j2Tpe1W4+m0nc/OZ2ne7Gbtxpl6cz5Ll9qtbqsx+OJ4NuukneWlpVa7m8612ulSq5OfLZ/8nvYf/d7JFuvNbt7oLC1k9U6WNlrNbr3RTWfzTiNdWn5yIe+cydrlzJ2lrJHP5Y16N281005rud3IJtO0k2VDgfls1uzmc3kx2EyX2vlivX01IhaWF7N0Nus02vlSt9XrcLCsvDnXai+W3U7euPp/vd3bGwA+DS6/duXSc6urK6+sH1hLNo7ZfODPu4i5HLF2p1cTABgyXKUBAAAAAAAAAAAAAIBPpxsv1yvG7nhJ3/DAWNxE8IaBA/FJ5vr8Dnz5vd7bshcd3ko/d697T+/q7yx3fvvc9MCzTzxxaauYJ18/dOYvWcTO/Wz+f8rle27Ye+OtgxF3/fInvTFfu11r+n701iJGb2r2tWSbmDt2SAIAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACALf03AAD//2tvTu0=") chroot(&(0x7f0000000f40)='./file1\x00') 3.162667138s ago: executing program 4 (id=2823): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_SAVE(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)={0x1c, 0x8, 0x6, 0x201, 0x0, 0x0, {}, [@IPSET_ATTR_PROTOCOL={0x5}]}, 0x1c}}, 0x0) 2.839422405s ago: executing program 1 (id=2824): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f0000000440)={0x4c, 0x2, 0x6, 0x801, 0x0, 0x0, {0x0, 0x0, 0x8}, [@IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0xa}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_TYPENAME={0x14, 0x3, 'hash:ip,port,ip\x00'}]}, 0x4c}}, 0x0) 2.813145934s ago: executing program 0 (id=2825): openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/power/pm_async', 0x242, 0x2e0) mount$tmpfs(0x0, &(0x7f0000000140)='.\x00', &(0x7f0000000180), 0x0, &(0x7f0000000040)=ANY=[@ANYBLOB='size=%']) 2.682738964s ago: executing program 3 (id=2826): r0 = syz_open_dev$cec(&(0x7f00000000c0), 0x0, 0x0) ioctl$CEC_ADAP_S_LOG_ADDRS(r0, 0xc05c6104, &(0x7f00000001c0)={"1b00", 0x100, 0x5, 0x2, 0x7fd, 0x8, "f7000000ecb1c99b000400", "fc2100", '\x00', "e8cc1304", ["8b5bb4d766cbd664af000700", "c210000000c9031c907c6b40", "000000ff0000e700824ed0b8", "000001d200001000"]}) 2.478320622s ago: executing program 4 (id=2827): syz_mount_image$exfat(&(0x7f00000000c0), &(0x7f0000000000)='./file1\x00', 0x0, &(0x7f00000006c0)=ANY=[@ANYBLOB='discard,errors=remount-ro,zero_size_dir,keep_last_dots,iocharset=macromanian,time_offset=0x0000000000000000,dmask=00000000000000000000001,allow_utime=00000000000000000002000,gid=', @ANYRESHEX=0x0, @ANYBLOB="2c757466382c666d61736b3d30303030303030303030303030303030303030303030302c74696d655f6f66667365743d307830303030303030303030c8373bb2c08a7857603030303030622c6f626a5f726f6c653d6163746976655f6c6f67733d342c646566636f6e746578743d726f6f742c6d6561737572652c66756e633d4b455845435f494e495452414d46535f434845434b2c646f6e745f686173682c7063720830303030303030303030303030303030303033382c00"], 0xfc, 0x1557, &(0x7f0000004a40)="$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") syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000440)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x2800053, 0x0, 0xfc, 0x0, &(0x7f00000000c0)) 2.370397386s ago: executing program 0 (id=2828): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)=@newlink={0x3c, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @macsec={{0xb}, {0xc, 0x2, 0x0, 0x1, [@IFLA_MACSEC_INC_SCI={0x5, 0x9, 0x8}]}}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x24048050}, 0x0) 2.340774121s ago: executing program 1 (id=2829): r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000a80)=@newsa={0x138, 0x10, 0x1, 0x70bd25, 0x0, {{@in=@rand_addr=0x64010102, @in6=@empty}, {@in=@broadcast, 0x0, 0x32}, @in6=@mcast2, {0x3, 0x0, 0x7}, {}, {0x0, 0x2}, 0x0, 0x0, 0xa, 0x1, 0x0, 0x20}, [@algo_auth={0x48, 0x1, {{'sha256\x00'}}}]}, 0x138}}, 0x0) 2.237767421s ago: executing program 2 (id=2830): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000001940)=@newtaction={0xe98, 0x30, 0x871a15abc695fa3d, 0x10000, 0x0, {}, [{0xe84, 0x1, [@m_pedit={0xe80, 0x1, 0x0, 0x0, {{0xa}, {0xe54, 0x2, 0x0, 0x1, [@TCA_PEDIT_PARMS={0x7b, 0x2, {{{}, 0x97, 0x0, [{0x0, 0x0, 0x9c}, {}]}, [{}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x100}, {0x1, 0x800000}, {0x7, 0x0, 0x80000000}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, {0x0, 0x0, 0x0, 0x2000}, {0x0, 0x0, 0x0, 0x0, 0x400}, {}, {0x0, 0x0, 0x0, 0x0, 0x4, 0x7fffffff}, {0x0, 0x1fffffc}, {0x0, 0x1, 0x0, 0x0, 0xfffffffe, 0x8001}, {0x0, 0x0, 0x0, 0x4, 0xfffffffc}, {}, {0x0, 0x0, 0x0, 0xfffffffd}, {}, {}, {}, {0x0, 0x3, 0x0, 0x0, 0x0, 0x9}, {}, {0x0, 0x0, 0x100}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x80}, {}, {0xfffffffc}, {}, {0x0, 0x0, 0x0, 0x0, 0xfffffffe}, {}, {0x0, 0x4}, {}, {0x1, 0x0, 0x0, 0x3}, {}, {0x0, 0x0, 0x0, 0x1}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x6}, {}, {0x0, 0x2}, {}, {0x0, 0x0, 0x2}, {0xfffffffe}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, {0xb}, {}, {0x0, 0x0, 0x0, 0xffffffff}, {}, {0xfffffffc}, {0x0, 0x0, 0x0, 0xfffffffe}, {}, {0x0, 0x0, 0x0, 0x1}, {0x0, 0x0, 0x0, 0xfffffffd, 0x1}, {}, {0x3, 0x10}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x800, 0x8327}, {0x4}, {}, {0x0, 0x0, 0x0, 0x3}, {}, {}, {0x800000, 0x5, 0x0, 0x2}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x8000000}, {}, {0x0, 0x0, 0x0, 0x2}, {0xffffffff}, {0x0, 0x0, 0x0, 0xfffffffd}, {0x0, 0x0, 0x0, 0xffffffff}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc}, {0x0, 0x0, 0x0, 0x4}, {}, {0x0, 0x0, 0x0, 0x2}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe}, {0x0, 0x800000, 0x0, 0x0, 0xfffffffe}, {0x0, 0x0, 0x0, 0x3ff}, {0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb}, {0x0, 0x0, 0x5}, {}, {}, {}, {}, {}, {0xa7}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, {}, {0x0, 0xf81, 0x52c0, 0x0, 0x0, 0xfffffffe}, {0x0, 0x0, 0x0, 0x0, 0x4}, {}, {0x0, 0x0, 0x1000, 0x0, 0x0, 0xffffffff}, {0xfffffffc}, {0x729, 0x0, 0x0, 0x0, 0x0, 0x20000000}, {}, {0x0, 0xffffffff}, {}, {0x4, 0x4, 0x0, 0x0, 0x1}, {}, {0x0, 0x9, 0x0, 0x0, 0x0, 0x20000000}, {0x0, 0x0, 0x0, 0x0, 0xfe}, {0xfffffffe, 0x831, 0x0, 0x4, 0x8001}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, {}, {}, {0x0, 0x0, 0x0, 0x4eab}, {}, {0x0, 0x0, 0x80000000}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0xffffffff}, {0x0, 0x1}, {0x0, 0x0, 0x0, 0x0, 0x10000000}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x11}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x4000}, {}, {0x0, 0x5}, {0x0, 0x0, 0x0, 0x0, 0x4}, {}, {0x0, 0x0, 0x0, 0x0, 0x2}, {}, {0x0, 0x0, 0x0, 0x0, 0xe, 0xf}], [{}, {}, {}, {}, {}, {}, {0x2}, {}, {}, {0x0, 0x1}, {}, {}, {}, {0x2}, {}, {}, {}, {}, {}, {}, {}, {0x3}, {}, {}, {}, {0x0, 0x1}, {}, {0x4}, {0x0, 0x1}, {}, {0x4}, {}, {}, {}, {}, {}, {}, {0x4}, {}, {}, {0x5}, {}, {}, {}, {}, {0x1}, {}, {}, {}, {}, {}, {0x4, 0x1}, {}, {}, {}, {0x0, 0x1}, {}, {}, {}, {}, {}, {}, {0x0, 0x1}, {0x0, 0x1}, {}, {}, {}, {0x5}, {}, {}, {0x0, 0x1}, {0x5}, {}, {}, {}, {}, {}, {}, {0x4}, {}, {0x0, 0x1}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x2}, {}, {0x0, 0x1}, {}, {}, {}, {}, {0x1, 0x1}, {}, {0x1}, {}, {}, {}, {0x3}]}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xe98}, 0x1, 0x0, 0x0, 0x4008080}, 0x0) 1.999765655s ago: executing program 3 (id=2831): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000080)=ANY=[@ANYBLOB="7000000010001705000020000000000000000000", @ANYRES32=0x0, @ANYBLOB="115a010000000000500012800b00010069703667726500004000028006000e000100000008000c000700000014000600ff020000000000000000000000000001060010004e210000080005"], 0x70}}, 0x44) 1.79857437s ago: executing program 1 (id=2832): r0 = socket$can_raw(0x1d, 0x3, 0x1) sendmmsg$inet(r0, &(0x7f0000000780)=[{{&(0x7f0000000000)={0x2, 0x4e23, @empty}, 0x10, &(0x7f00000000c0)=[{&(0x7f0000000140)="db41746e5c2a34032eddbce03e", 0xd}], 0x1}}], 0x1, 0x0) 1.740983003s ago: executing program 0 (id=2833): capset(&(0x7f0000000300)={0x20071026}, &(0x7f0000000340)) lchown(&(0x7f0000000000)='./cgroup.net/cgroup.procs\x00', 0xffffffffffffffff, 0xee01) 1.649881193s ago: executing program 2 (id=2834): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000000)=@newlink={0x54, 0x10, 0x1, 0x70bd29, 0x0, {0x0, 0x0, 0x0, 0x0, 0x5f24c}, [@IFLA_IFNAME={0x14, 0x3, 'netdevsim0\x00'}, @IFLA_VFINFO_LIST={0x18, 0x16, 0x0, 0x1, [{0x14, 0x1, 0x0, 0x1, [@IFLA_VF_VLAN={0x10, 0x2, {0x5, 0xbdb, 0x44}}]}]}, @IFLA_LINKMODE={0x5, 0x11, 0x9}]}, 0x54}, 0x1, 0x0, 0x0, 0x1}, 0x40) 1.56831812s ago: executing program 4 (id=2835): r0 = socket$netlink(0x10, 0x3, 0x8000000004) writev(r0, &(0x7f0000000280)=[{&(0x7f0000000040)="580000001400192340834b80040d8c560a067fbc45ff000000000000000458000b480400945f64009400050038925a01000000000000008004000000ffe809000000fff5dd0000000800030006010000418e01400004fcff", 0x58}], 0x1) 1.282733906s ago: executing program 0 (id=2836): r0 = openat$rfkill(0xffffffffffffff9c, &(0x7f00000000c0), 0x602, 0x0) writev(r0, &(0x7f0000000440)=[{&(0x7f0000000040)="93d90400000300", 0x7}], 0x1) 1.241178855s ago: executing program 3 (id=2837): syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000280)='./file1\x00', 0x2210886, &(0x7f00000001c0)={[{}, {@dioread_nolock}, {@quota}]}, 0x1, 0x4fa, &(0x7f00000005c0)="$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") quotactl$Q_SETQUOTA(0xffffffff80000801, &(0x7f0000000000)=@loop={'/dev/loop', 0x0}, 0x0, &(0x7f0000000140)={0x0, 0x0, 0x200, 0x1000000000000001, 0x5, 0x42, 0x1, 0xfffffffffffffffd, 0x66c}) 1.190794329s ago: executing program 1 (id=2838): r0 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_int(r0, 0x29, 0x4d, 0x0, 0x0) 910.411168ms ago: executing program 2 (id=2839): prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]}) ustat(0x1, &(0x7f0000000180)) 731.419694ms ago: executing program 1 (id=2840): r0 = socket$inet6_sctp(0xa, 0x801, 0x84) getsockopt$IP6T_SO_GET_REVISION_MATCH(r0, 0x29, 0x50, 0x0, &(0x7f0000000100)=0x2e) 618.736396ms ago: executing program 4 (id=2841): prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680)) mincore(&(0x7f0000ffb000/0x4000)=nil, 0x4000, &(0x7f0000000780)=""/191) 512.804531ms ago: executing program 0 (id=2842): r0 = socket(0x10, 0x3, 0x0) ioctl$sock_ipv6_tunnel_SIOCGETTUNNEL(r0, 0x89f0, &(0x7f0000000580)={'ip6tnl0\x00', &(0x7f00000004c0)={'syztnl0\x00', 0x0, 0x4, 0x25, 0xb, 0xb5, 0x60, @dev={0xfe, 0x80, '\x00', 0x28}, @loopback, 0x40, 0x7, 0x3f3, 0x9}}) 350.118741ms ago: executing program 2 (id=2843): syz_mount_image$hfsplus(&(0x7f00000002c0), &(0x7f0000000140)='./file1\x00', 0x3000c00, &(0x7f0000000200)=ANY=[], 0xff, 0x654, &(0x7f0000000a40)="$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") renameat2(0xffffffffffffff9c, &(0x7f00000007c0)='./file3\x00', 0xffffffffffffff9c, &(0x7f00000005c0)='./file1\x00', 0x0) 325.358707ms ago: executing program 3 (id=2844): r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) write(r0, &(0x7f0000000080)="8adc6364fa280e42220000000000000080c7ede7d872640ecba8ed4143c3858c8ad25636f32ea790b1394b3ec47fd291baa55a8f3d38a48cb50eab0d81791b253800", 0x42) 221.758426ms ago: executing program 1 (id=2845): r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f0000000100)={0x40000000, 0x0, &(0x7f00000000c0)={&(0x7f00000002c0)={0x2, 0x18, 0x0, 0x6, 0xa, 0x0, 0x0, 0x0, [@sadb_address={0x5, 0x6, 0x0, 0x0, 0x0, @in6={0xa, 0x0, 0x0, @empty}}, @sadb_address={0x3, 0x5, 0x0, 0x0, 0x0, @in={0x2, 0x4e21, @loopback}}]}, 0x50}}, 0x0) 46.822074ms ago: executing program 0 (id=2846): r0 = socket$inet6_mptcp(0xa, 0x1, 0x106) setsockopt$inet6_tcp_TCP_REPAIR(r0, 0x6, 0x13, 0x0, 0x0) 0s ago: executing program 4 (id=2847): r0 = syz_open_dev$vbi(&(0x7f0000000240), 0x2, 0x2) ioctl$VIDIOC_DQBUF(r0, 0xc0585611, &(0x7f0000000040)=@mmap={0x4, 0x9, 0x4, 0x2, 0x400, {}, {0x0, 0x0, 0x6, 0x0, 0x9, 0x2}, 0x200, 0x1, {}, 0x3c}) kernel console output (not intermixed with test programs): attributes in process `syz.1.708'. [ 345.062860][ T7482] netlink: 16 bytes leftover after parsing attributes in process `syz.1.708'. [ 345.202319][ T7486] loop3: detected capacity change from 0 to 16 [ 346.453663][ T7502] netlink: 'syz.1.715': attribute type 17 has an invalid length. [ 347.209055][ T7515] netlink: 168864 bytes leftover after parsing attributes in process `syz.1.723'. [ 347.218855][ T7515] openvswitch: netlink: Key type 8215 is out of range max 32 [ 348.846583][ T7542] openvswitch: netlink: VXLAN extension message has 3 unknown bytes. [ 349.937824][ T7559] openvswitch: netlink: VXLAN extension message has 3 unknown bytes. [ 352.907544][ T7600] RDS: rds_bind could not find a transport for 0:0:4::1, load rds_tcp or rds_rdma? [ 353.678777][ T7605] netlink: 'syz.4.764': attribute type 1 has an invalid length. [ 353.686932][ T7605] netlink: 224 bytes leftover after parsing attributes in process `syz.4.764'. [ 353.816254][ T7594] loop3: detected capacity change from 0 to 8192 [ 353.974264][ T7594] FAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 354.605675][ T7615] overlayfs: missing 'lowerdir' [ 355.419622][ T7627] netlink: 'syz.4.777': attribute type 12 has an invalid length. [ 355.427603][ T7627] netlink: 132 bytes leftover after parsing attributes in process `syz.4.777'. [ 356.511103][ T30] audit: type=1326 audit(1755564491.583:23): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7643 comm="syz.2.785" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f38539 code=0x7ffc0000 [ 356.533537][ T30] audit: type=1326 audit(1755564491.583:24): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7643 comm="syz.2.785" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f38539 code=0x7ffc0000 [ 356.615294][ T7642] loop3: detected capacity change from 0 to 1024 [ 356.768775][ T30] audit: type=1326 audit(1755564491.653:25): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7643 comm="syz.2.785" exe="/root/syz-executor" sig=0 arch=40000003 syscall=300 compat=1 ip=0xf7f38539 code=0x7ffc0000 [ 356.792767][ T30] audit: type=1326 audit(1755564491.653:26): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7643 comm="syz.2.785" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f38539 code=0x7ffc0000 [ 356.815756][ T30] audit: type=1326 audit(1755564491.653:27): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7643 comm="syz.2.785" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f38539 code=0x7ffc0000 [ 356.852235][ T7642] hfsplus: can't free extent [ 357.696891][ T7661] netlink: 'syz.2.793': attribute type 12 has an invalid length. [ 357.705710][ T7661] netlink: 132 bytes leftover after parsing attributes in process `syz.2.793'. [ 357.717798][ T7656] loop1: detected capacity change from 0 to 1024 [ 358.040691][ T7656] hfsplus: can't free extent [ 358.688968][ T7667] netdevsim netdevsim3 netdevsim0: entered allmulticast mode [ 358.786995][ T7667] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check. [ 359.477108][ T1286] ieee802154 phy0 wpan0: encryption failed: -22 [ 359.484091][ T1286] ieee802154 phy1 wpan1: encryption failed: -22 [ 360.208500][ T30] audit: type=1326 audit(1755564495.263:28): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7687 comm="syz.3.807" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf706e539 code=0x7ffc0000 [ 360.323165][ T30] audit: type=1326 audit(1755564495.333:29): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7687 comm="syz.3.807" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf706e539 code=0x7ffc0000 [ 360.348265][ T30] audit: type=1326 audit(1755564495.343:30): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7687 comm="syz.3.807" exe="/root/syz-executor" sig=0 arch=40000003 syscall=459 compat=1 ip=0xf706e539 code=0x7ffc0000 [ 360.370701][ T30] audit: type=1326 audit(1755564495.343:31): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7687 comm="syz.3.807" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf706e539 code=0x7ffc0000 [ 360.394505][ T30] audit: type=1326 audit(1755564495.343:32): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7687 comm="syz.3.807" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf706e539 code=0x7ffc0000 [ 361.366658][ T7705] netlink: 20 bytes leftover after parsing attributes in process `syz.4.814'. [ 362.698526][ T30] audit: type=1326 audit(1755564497.763:33): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7724 comm="syz.1.823" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa5539 code=0x7ffc0000 [ 362.721083][ T30] audit: type=1326 audit(1755564497.763:34): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7724 comm="syz.1.823" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa5539 code=0x7ffc0000 [ 362.909650][ T30] audit: type=1326 audit(1755564497.833:35): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7724 comm="syz.1.823" exe="/root/syz-executor" sig=0 arch=40000003 syscall=459 compat=1 ip=0xf7fa5539 code=0x7ffc0000 [ 362.935293][ T30] audit: type=1326 audit(1755564497.833:36): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7724 comm="syz.1.823" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa5539 code=0x7ffc0000 [ 362.958437][ T30] audit: type=1326 audit(1755564497.833:37): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7724 comm="syz.1.823" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa5539 code=0x7ffc0000 [ 363.119706][ T7732] netlink: 168 bytes leftover after parsing attributes in process `syz.0.827'. [ 363.130196][ T7732] netlink: 16 bytes leftover after parsing attributes in process `syz.0.827'. [ 363.696459][ T11] usb 5-1: new high-speed USB device number 2 using dummy_hcd [ 363.888428][ T11] usb 5-1: Using ep0 maxpacket: 16 [ 363.924052][ T11] usb 5-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xD7, changing to 0x87 [ 363.936590][ T11] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x87 has an invalid bInterval 0, changing to 7 [ 364.056237][ T11] usb 5-1: New USB device found, idVendor=05ac, idProduct=9226, bcdDevice=b2.89 [ 364.073051][ T11] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 364.076102][ T7745] loop1: detected capacity change from 0 to 256 [ 364.084324][ T11] usb 5-1: Product: syz [ 364.092741][ T11] usb 5-1: Manufacturer: syz [ 364.097573][ T11] usb 5-1: SerialNumber: syz [ 364.211318][ T11] usb 5-1: config 0 descriptor?? [ 364.327873][ T7745] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x2eabf3fa, utbl_chksum : 0xe619d30d) [ 364.532793][ T11] appledisplay 5-1:0.0: Error while getting initial brightness: -110 [ 364.591885][ T11] appledisplay 5-1:0.0: probe with driver appledisplay failed with error -110 [ 364.657830][ T7736] loop4: detected capacity change from 0 to 512 [ 364.667797][ T7750] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 364.730261][ T7736] EXT4-fs (loop4): Test dummy encryption mode enabled [ 364.839525][ T7736] EXT4-fs (loop4): warning: mounting unchecked fs, running e2fsck is recommended [ 364.966858][ T7736] EXT4-fs (loop4): Errors on filesystem, clearing orphan list. [ 364.972336][ T7755] syz.2.839 uses obsolete (PF_INET,SOCK_PACKET) [ 364.978866][ T7736] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 365.252932][ T32] usb 5-1: USB disconnect, device number 2 [ 365.350969][ T7760] netlink: 40 bytes leftover after parsing attributes in process `syz.1.840'. [ 365.484262][ T30] audit: type=1326 audit(1755564500.543:38): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7761 comm="syz.3.842" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf706e539 code=0x7ffc0000 [ 365.509264][ T30] audit: type=1326 audit(1755564500.573:39): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7761 comm="syz.3.842" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf706e539 code=0x7ffc0000 [ 365.700855][ T7756] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 212 vs 220 free clusters [ 365.762487][ T30] audit: type=1326 audit(1755564500.663:40): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7761 comm="syz.3.842" exe="/root/syz-executor" sig=0 arch=40000003 syscall=75 compat=1 ip=0xf706e539 code=0x7ffc0000 [ 365.785490][ T30] audit: type=1326 audit(1755564500.663:41): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7761 comm="syz.3.842" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf706e539 code=0x7ffc0000 [ 365.809782][ T30] audit: type=1326 audit(1755564500.663:42): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7761 comm="syz.3.842" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf706e539 code=0x7ffc0000 [ 366.336308][ T5825] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 366.819752][ T7774] openvswitch: netlink: Missing key (keys=48, expected=200000) [ 368.605322][ T7794] netlink: del zone limit has 4 unknown bytes [ 368.799049][ T7799] netlink: 4 bytes leftover after parsing attributes in process `syz.2.860'. [ 368.808492][ T7799] netlink: 4 bytes leftover after parsing attributes in process `syz.2.860'. [ 368.817604][ T7799] netlink: 20 bytes leftover after parsing attributes in process `syz.2.860'. [ 371.119489][ T7833] netlink: 4 bytes leftover after parsing attributes in process `syz.3.874'. [ 371.462213][ T7837] netlink: 'syz.0.877': attribute type 3 has an invalid length. [ 371.470629][ T7837] netlink: 'syz.0.877': attribute type 3 has an invalid length. [ 371.479141][ T7837] netlink: 'syz.0.877': attribute type 3 has an invalid length. [ 371.487133][ T7837] netlink: 'syz.0.877': attribute type 3 has an invalid length. [ 371.495632][ T7837] netlink: 'syz.0.877': attribute type 3 has an invalid length. [ 371.504134][ T7837] netlink: 'syz.0.877': attribute type 3 has an invalid length. [ 371.512434][ T7837] netlink: 'syz.0.877': attribute type 3 has an invalid length. [ 371.520580][ T7837] netlink: 'syz.0.877': attribute type 3 has an invalid length. [ 371.528917][ T7837] netlink: 'syz.0.877': attribute type 3 has an invalid length. [ 371.543782][ T7837] netlink: 'syz.0.877': attribute type 3 has an invalid length. [ 372.508240][ T7853] netlink: 14 bytes leftover after parsing attributes in process `syz.4.886'. [ 372.872023][ T7859] loop1: detected capacity change from 0 to 512 [ 373.341340][ T7865] netlink: 1284 bytes leftover after parsing attributes in process `syz.3.890'. [ 375.500369][ T7891] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_to_hsr, syncid = 0, id = 0 [ 378.000788][ T7923] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_to_hsr, syncid = 0, id = 0 [ 378.712861][ T7933] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 379.273056][ T7943] loop3: detected capacity change from 0 to 8 [ 379.501773][ T7943] SQUASHFS error: lzo decompression failed, data probably corrupt [ 379.510441][ T7943] SQUASHFS error: Failed to read block 0x0: -5 [ 379.517529][ T7943] SQUASHFS error: lzo decompression failed, data probably corrupt [ 379.534950][ T7943] SQUASHFS error: Failed to read block 0x0: -5 [ 379.545342][ T30] kauditd_printk_skb: 4 callbacks suppressed [ 379.545420][ T30] audit: type=1800 audit(1755564514.623:47): pid=7943 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.925" name="file2" dev="loop3" ino=3 res=0 errno=0 [ 381.530009][ T7972] loop2: detected capacity change from 0 to 512 [ 381.642987][ T7972] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 381.645400][ T7975] loop1: detected capacity change from 0 to 512 [ 382.232260][ T5821] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 382.437645][ T7975] EXT4-fs (loop1): failed to open journal device unknown-block(0,0) -6 [ 382.619754][ T7988] netlink: 4 bytes leftover after parsing attributes in process `syz.3.949'. [ 382.629400][ T7988] netlink: 46 bytes leftover after parsing attributes in process `syz.3.949'. [ 382.638891][ T7988] netlink: 46 bytes leftover after parsing attributes in process `syz.3.949'. [ 383.201626][ T7994] loop2: detected capacity change from 0 to 256 [ 383.271933][ T7994] exfat: Deprecated parameter 'namecase' [ 383.279354][ T7994] exfat: Deprecated parameter 'utf8' [ 383.449857][ T7994] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0x5441951d, utbl_chksum : 0xe619d30d) [ 383.737388][ T8004] netlink: 52 bytes leftover after parsing attributes in process `syz.1.957'. [ 383.750617][ T8004] netlink: 12 bytes leftover after parsing attributes in process `syz.1.957'. [ 384.064472][ T8007] loop0: detected capacity change from 0 to 256 [ 384.112830][ T8007] exFAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 384.124103][ T8007] exFAT-fs (loop0): Medium has reported failures. Some data may be lost. [ 384.310163][ T8007] exFAT-fs (loop0): failed to load upcase table (idx : 0x0000ff98, chksum : 0xc64c1d22, utbl_chksum : 0xe619d30d) [ 385.168253][ T8026] netlink: 4 bytes leftover after parsing attributes in process `syz.3.967'. [ 386.541120][ T8039] loop3: detected capacity change from 0 to 2048 [ 386.618650][ T8039] NILFS (loop3): broken superblock, retrying with spare superblock (blocksize = 1024) [ 386.773241][ T8039] syz.3.974: attempt to access beyond end of device [ 386.773241][ T8039] loop3: rw=524288, sector=33554430, nr_sectors = 2 limit=2048 [ 386.789425][ T8048] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 387.000343][ T8039] syz.3.974: attempt to access beyond end of device [ 387.000343][ T8039] loop3: rw=0, sector=33554430, nr_sectors = 2 limit=2048 [ 387.014623][ T8039] NILFS (loop3): I/O error reading meta-data file (ino=6, block-offset=3) [ 387.023784][ T8039] NILFS (loop3): error -5 reading inode: ino=12 [ 387.081372][ T8054] netlink: 172 bytes leftover after parsing attributes in process `syz.4.981'. [ 387.090829][ T8054] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check. [ 387.669433][ T8060] netlink: 36 bytes leftover after parsing attributes in process `syz.2.984'. [ 389.564462][ T8078] loop1: detected capacity change from 0 to 2048 [ 389.637761][ T8078] NILFS (loop1): broken superblock, retrying with spare superblock (blocksize = 1024) [ 389.860705][ T8087] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 390.352780][ T8086] ip6gretap1: default qdisc (pfifo_fast) fail, fallback to noqueue [ 390.438689][ T8080] loop2: detected capacity change from 0 to 4096 [ 390.518706][ T8080] ntfs3(loop2): Different NTFS sector size (2048) and media sector size (512). [ 391.073978][ T8093] netlink: 4 bytes leftover after parsing attributes in process `syz.1.999'. [ 391.301747][ T30] audit: type=1326 audit(1755564526.353:48): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8094 comm="syz.0.1000" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f16539 code=0x7ffc0000 [ 391.344334][ T8080] ntfs3(loop2): ino=5, "/" indx_read [ 391.350139][ T8080] ntfs3(loop2): Mark volume as dirty due to NTFS errors [ 391.426159][ T30] audit: type=1326 audit(1755564526.423:49): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8094 comm="syz.0.1000" exe="/root/syz-executor" sig=0 arch=40000003 syscall=332 compat=1 ip=0xf7f16539 code=0x7ffc0000 [ 391.449540][ T30] audit: type=1326 audit(1755564526.423:50): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8094 comm="syz.0.1000" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f16539 code=0x7ffc0000 [ 391.472915][ T30] audit: type=1326 audit(1755564526.423:51): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8094 comm="syz.0.1000" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f16539 code=0x7ffc0000 [ 393.349534][ T8120] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1012'. [ 393.485453][ T8123] tmpfs: Bad value for 'mpol' [ 394.497809][ T8130] loop1: detected capacity change from 0 to 4096 [ 394.523823][ T8138] validate_nla: 42 callbacks suppressed [ 394.523909][ T8138] netlink: 'syz.4.1021': attribute type 1 has an invalid length. [ 394.537930][ T8138] netlink: 224 bytes leftover after parsing attributes in process `syz.4.1021'. [ 394.729088][ T8141] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 395.348640][ T8148] netdevsim netdevsim0: Direct firmware load for ..€ failed with error -2 [ 395.357629][ T8148] netdevsim netdevsim0: Falling back to sysfs fallback for: ..€ [ 395.412639][ T8149] bridge2: entered promiscuous mode [ 395.612925][ T8153] loop3: detected capacity change from 0 to 128 [ 395.664170][ T8153] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 395.746273][ T8153] ext4 filesystem being mounted at /200/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 396.041347][ T5820] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 396.900975][ T8171] openvswitch: netlink: Tunnel attr 16 has unexpected len 596 expected 0 [ 398.124096][ T8193] ksmbd: Unknown IPC event: 3, ignore. [ 399.651771][ T8214] loop3: detected capacity change from 0 to 2048 [ 399.669553][ T8218] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1059'. [ 399.802774][ T8214] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 401.750227][ T8236] loop1: detected capacity change from 0 to 4096 [ 401.835878][ T8236] ntfs3(loop1): Different NTFS sector size (1024) and media sector size (512). [ 401.839300][ T8243] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1071'. [ 401.857130][ T8243] netlink: 60 bytes leftover after parsing attributes in process `syz.2.1071'. [ 401.866546][ T8243] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1071'. [ 401.876620][ T8243] netlink: 60 bytes leftover after parsing attributes in process `syz.2.1071'. [ 401.885905][ T8243] netlink: 104 bytes leftover after parsing attributes in process `syz.2.1071'. [ 401.955350][ T8229] syz.4.1064 (8229): drop_caches: 2 [ 401.966086][ T8236] ntfs3(loop1): ino=3, mi_enum_attr [ 402.076700][ T8245] delete_channel: no stack [ 402.193783][ T8247] loop3: detected capacity change from 0 to 16 [ 402.314707][ T8247] erofs (device loop3): mounted with root inode @ nid 36. [ 403.990064][ T8272] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1086'. [ 405.744664][ T8302] geneve2: entered promiscuous mode [ 405.750568][ T8302] geneve2: entered allmulticast mode [ 406.283300][ T8309] nftables ruleset with unbound chain [ 406.499145][ T8313] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1104'. [ 406.509459][ T8313] netlink: 32 bytes leftover after parsing attributes in process `syz.4.1104'. [ 406.521235][ T8313] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1104'. [ 406.531111][ T8313] netlink: 2 bytes leftover after parsing attributes in process `syz.4.1104'. [ 406.546836][ T8313] netlink: 32 bytes leftover after parsing attributes in process `syz.4.1104'. [ 406.720864][ T8316] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1105'. [ 406.915894][ T8319] loop0: detected capacity change from 0 to 8 [ 407.113524][ T8319] SQUASHFS error: Unable to read inode 0xe3 [ 407.339551][ T8325] usb usb6: usbfs: process 8325 (syz.4.1109) did not claim interface 2 before use [ 408.580281][ T8342] loop1: detected capacity change from 0 to 22 [ 408.636042][ T8342] romfs: Mounting image 'rom 637cf1fa' through the block layer [ 411.399173][ T8382] QAT: failed to copy from user cfg_data. [ 412.423327][ T8393] IPVS: sync thread started: state = BACKUP, mcast_ifn = bond0, syncid = 8, id = 0 [ 412.733617][ T8399] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1145'. [ 413.459548][ T8406] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1149'. [ 413.470325][ T8406] tc_dump_action: action bad kind [ 413.694688][ T8410] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1151'. [ 414.612518][ T8422] binder: 8421:8422 ioctl c00c6211 0 returned -14 [ 415.489298][ T8435] netlink: 'syz.0.1163': attribute type 3 has an invalid length. [ 416.919910][ T8459] loop3: detected capacity change from 0 to 256 [ 416.993073][ T8459] FAT-fs (loop3): Directory bread(block 1285) failed [ 417.088654][ T8459] FAT-fs (loop3): Directory bread(block 1285) failed [ 417.096110][ T8459] FAT-fs (loop3): Directory bread(block 1285) failed [ 417.111259][ T8459] FAT-fs (loop3): Directory bread(block 1285) failed [ 418.057775][ T8477] loop2: detected capacity change from 0 to 64 [ 418.308948][ T11] usb 1-1: new high-speed USB device number 4 using dummy_hcd [ 418.572087][ T11] usb 1-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08 [ 418.581696][ T11] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 418.590339][ T11] usb 1-1: Product: syz [ 418.594731][ T11] usb 1-1: Manufacturer: syz [ 418.599718][ T11] usb 1-1: SerialNumber: syz [ 418.754784][ T11] usb 1-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested [ 418.984537][ T2055] usb 1-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008 [ 419.803079][ T32] usb 1-1: USB disconnect, device number 4 [ 420.014800][ T8497] netlink: 'syz.4.1194': attribute type 39 has an invalid length. [ 420.099196][ T2055] ath9k_htc 1-1:1.0: ath9k_htc: Target is unresponsive [ 420.107128][ T2055] ath9k_htc: Failed to initialize the device [ 420.147662][ T8497] bridge0: port 1(bridge_slave_0) entered disabled state [ 420.160512][ T32] usb 1-1: ath9k_htc: USB layer deinitialized [ 420.229955][ T8497] bridge0: port 1(bridge_slave_0) entered disabled state [ 420.598394][ T30] audit: type=1326 audit(1755564555.663:52): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8500 comm="syz.2.1196" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f38539 code=0x7ffc0000 [ 420.620998][ T30] audit: type=1326 audit(1755564555.683:53): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8500 comm="syz.2.1196" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f38539 code=0x7ffc0000 [ 420.827328][ T30] audit: type=1326 audit(1755564555.763:54): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8500 comm="syz.2.1196" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f38539 code=0x7ffc0000 [ 420.850613][ T30] audit: type=1326 audit(1755564555.763:55): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8500 comm="syz.2.1196" exe="/root/syz-executor" sig=0 arch=40000003 syscall=374 compat=1 ip=0xf7f38539 code=0x7ffc0000 [ 420.873124][ T30] audit: type=1326 audit(1755564555.763:56): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8500 comm="syz.2.1196" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f38539 code=0x7ffc0000 [ 420.916594][ T30] audit: type=1326 audit(1755564555.763:57): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8500 comm="syz.2.1196" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f38539 code=0x7ffc0000 [ 420.949033][ T30] audit: type=1326 audit(1755564555.773:58): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8500 comm="syz.2.1196" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f38539 code=0x7ffc0000 [ 420.962332][ T1286] ieee802154 phy0 wpan0: encryption failed: -22 [ 420.972413][ T30] audit: type=1326 audit(1755564555.773:59): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8500 comm="syz.2.1196" exe="/root/syz-executor" sig=0 arch=40000003 syscall=436 compat=1 ip=0xf7f38539 code=0x7ffc0000 [ 420.977954][ T1286] ieee802154 phy1 wpan1: encryption failed: -22 [ 421.003352][ T30] audit: type=1326 audit(1755564555.773:60): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8500 comm="syz.2.1196" exe="/root/syz-executor" sig=0 arch=40000003 syscall=252 compat=1 ip=0xf7f38539 code=0x7ffc0000 [ 421.345104][ T8511] netlink: 'syz.4.1201': attribute type 1 has an invalid length. [ 421.845449][ T8518] misc userio: No port type given on /dev/userio [ 421.962136][ T8521] netlink: 'syz.1.1206': attribute type 41 has an invalid length. [ 422.774286][ T30] audit: type=1326 audit(1755564557.843:61): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8532 comm="syz.2.1212" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f38539 code=0x7ffc0000 [ 423.171190][ T8539] netlink: 48 bytes leftover after parsing attributes in process `syz.4.1215'. [ 423.377459][ T8543] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1216'. [ 423.447681][ T8545] xfrm1: entered allmulticast mode [ 423.523978][ T8544] loop2: detected capacity change from 0 to 1024 [ 423.732107][ T8544] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 423.788990][ T8552] usb usb1: usbfs: interface 0 claimed by hub while 'syz.4.1220' sets config #2047 [ 423.870385][ T8544] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 25 vs 1305 free clusters [ 423.974014][ T8544] EXT4-fs warning (device loop2): ext4_expand_extra_isize_ea:2848: Unable to expand inode 15. Delete some EAs or run e2fsck. [ 424.536904][ T5821] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 425.330536][ T8570] loop2: detected capacity change from 0 to 1024 [ 425.356363][ T8568] loop0: detected capacity change from 0 to 2048 [ 425.560323][ T8570] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 425.573335][ T8570] ext4 filesystem being mounted at /250/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 425.620247][ T8568] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 425.782517][ T8570] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 21 vs 268369941 free clusters [ 425.875224][ T8570] EXT4-fs (loop2): Remounting filesystem read-only [ 426.054977][ T8582] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1232'. [ 426.272089][ T5821] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 426.757751][ T8591] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1236'. [ 426.767320][ T8591] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1236'. [ 427.321240][ T8596] loop3: detected capacity change from 0 to 512 [ 427.529162][ T8596] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=8856c01c, mo2=0002] [ 427.618756][ T8596] EXT4-fs (loop3): orphan cleanup on readonly fs [ 427.639949][ T32] usb 5-1: new high-speed USB device number 3 using dummy_hcd [ 427.708792][ T8596] EXT4-fs error (device loop3): ext4_quota_enable:7128: inode #15: comm syz.3.1239: iget: bad i_size value: 360287970189639690 [ 427.749582][ T8596] EXT4-fs error (device loop3): ext4_quota_enable:7131: comm syz.3.1239: Bad quota inode: 15, type: 2 [ 427.784423][ T8596] EXT4-fs warning (device loop3): ext4_enable_quotas:7172: Failed to enable quota tracking (type=2, err=-117, ino=15). Please run e2fsck to fix. [ 427.883019][ T32] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 427.895258][ T32] usb 5-1: New USB device found, idVendor=13e5, idProduct=0001, bcdDevice=4e.53 [ 427.904892][ T32] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 427.920609][ T8596] EXT4-fs (loop3): Cannot turn on quotas: error -117 [ 427.965701][ T32] usb 5-1: config 0 descriptor?? [ 427.989721][ T8596] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 428.175114][ T8596] EXT4-fs error (device loop3): ext4_lookup:1787: comm syz.3.1239: inode #15: comm syz.3.1239: iget: illegal inode # [ 428.511068][ T2055] usb 5-1: USB disconnect, device number 3 [ 428.569594][ T5999] udevd[5999]: error opening ATTR{/sys/devices/platform/dummy_hcd.4/usb5/5-1/5-1:0.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 428.595089][ T8611] loop1: detected capacity change from 0 to 2048 [ 428.655121][ T5820] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 428.760112][ T8611] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 429.807337][ T8624] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1251'. [ 429.909380][ T32] usb 1-1: new high-speed USB device number 5 using dummy_hcd [ 430.130302][ T32] usb 1-1: Using ep0 maxpacket: 16 [ 430.221269][ T32] usb 1-1: New USB device found, idVendor=17ef, idProduct=721e, bcdDevice=de.06 [ 430.231018][ T32] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 430.239550][ T32] usb 1-1: Product: syz [ 430.243939][ T32] usb 1-1: Manufacturer: syz [ 430.248845][ T32] usb 1-1: SerialNumber: syz [ 430.425310][ T32] r8152-cfgselector 1-1: Unknown version 0x0000 [ 430.432839][ T32] r8152-cfgselector 1-1: config 0 descriptor?? [ 430.442827][ T8632] netlink: 72 bytes leftover after parsing attributes in process `syz.4.1256'. [ 430.995058][ T32] r8152-cfgselector 1-1: USB disconnect, device number 5 [ 431.235944][ T8641] netlink: 666 bytes leftover after parsing attributes in process `syz.3.1261'. [ 432.177054][ T8654] overlayfs: option "volatile" is meaningless in a non-upper mount, ignoring it. [ 432.186857][ T8654] overlayfs: missing 'lowerdir' [ 433.015254][ T8660] loop0: detected capacity change from 0 to 2048 [ 433.134819][ T8660] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 433.291003][ T30] kauditd_printk_skb: 4 callbacks suppressed [ 433.291103][ T30] audit: type=1800 audit(1755564568.353:66): pid=8660 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.1271" name="file2" dev="loop0" ino=1347 res=0 errno=0 [ 434.016694][ T8671] loop2: detected capacity change from 0 to 736 [ 434.694701][ T8682] overlayfs: missing 'lowerdir' [ 435.650228][ T8698] openvswitch: netlink: Multiple metadata blocks provided [ 435.917876][ T8701] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1290'. [ 439.470239][ T8757] loop2: detected capacity change from 0 to 1024 [ 439.511691][ T8755] loop1: detected capacity change from 0 to 1764 [ 439.547931][ T8761] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1320'. [ 439.558291][ T8761] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1320'. [ 439.662141][ T8765] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1321'. [ 439.717221][ T8757] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 440.211318][ T5821] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 440.986944][ T8782] netlink: 56 bytes leftover after parsing attributes in process `syz.3.1329'. [ 440.996632][ T8782] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1329'. [ 443.655405][ T8816] ieee802154 phy0 wpan0: encryption failed: -22 [ 443.840084][ T8820] (unnamed net_device) (uninitialized): option packets_per_slave: mode dependency failed, not supported in mode balance-xor(2) [ 444.384712][ T8828] loop4: detected capacity change from 0 to 128 [ 444.521409][ T8828] FAT-fs (loop4): Directory bread(block 414) failed [ 444.529197][ T8828] FAT-fs (loop4): Directory bread(block 415) failed [ 444.536144][ T8828] FAT-fs (loop4): Directory bread(block 416) failed [ 444.543384][ T8828] FAT-fs (loop4): Directory bread(block 417) failed [ 444.558834][ T8828] FAT-fs (loop4): Directory bread(block 418) failed [ 444.565738][ T8828] FAT-fs (loop4): Directory bread(block 419) failed [ 444.575432][ T8828] FAT-fs (loop4): Directory bread(block 420) failed [ 444.582568][ T8828] FAT-fs (loop4): Directory bread(block 421) failed [ 444.644842][ T8832] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1354'. [ 444.729938][ T8828] FAT-fs (loop4): Directory bread(block 414) failed [ 444.736940][ T8828] FAT-fs (loop4): Directory bread(block 415) failed [ 444.941823][ T8831] loop0: detected capacity change from 0 to 2048 [ 445.044908][ T8831] UDF-fs: error (device loop0): udf_read_tagged: read failed, block=2365, location=2365 [ 445.210557][ T8831] UDF-fs: error (device loop0): udf_read_tagged: tag checksum failed, block 99: 0x27 != 0x4d [ 445.292084][ T8831] UDF-fs: error (device loop0): udf_read_tagged: tag checksum failed, block 160: 0xd2 != 0xd4 [ 445.408792][ T8831] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 445.678784][ T8844] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1360'. [ 446.485534][ T8853] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1363'. [ 446.504469][ T8853] netlink: 68 bytes leftover after parsing attributes in process `syz.0.1363'. [ 447.381629][ T32] usb 2-1: new high-speed USB device number 4 using dummy_hcd [ 447.658640][ T32] usb 2-1: New USB device found, idVendor=055f, idProduct=c230, bcdDevice=b6.ac [ 447.668829][ T32] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 447.677171][ T32] usb 2-1: Product: syz [ 447.681950][ T32] usb 2-1: Manufacturer: syz [ 447.686747][ T32] usb 2-1: SerialNumber: syz [ 447.819215][ T32] usb 2-1: config 0 descriptor?? [ 447.857726][ T32] gspca_main: sunplus-2.14.0 probing 055f:c230 [ 448.022383][ T8876] netdevsim netdevsim3 netdevsim0: entered promiscuous mode [ 448.041691][ T8876] netdevsim netdevsim3 netdevsim0: left allmulticast mode [ 448.050456][ T8876] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check. [ 448.269104][ T8879] loop2: detected capacity change from 0 to 512 [ 448.361629][ T2055] usb 2-1: USB disconnect, device number 4 [ 448.524188][ T8879] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 448.541924][ T8879] ext4 filesystem being mounted at /281/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 449.170944][ T5821] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 449.824049][ T30] audit: type=1326 audit(1755564584.883:67): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8896 comm="syz.1.1383" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa5539 code=0x7ffc0000 [ 449.848542][ T30] audit: type=1326 audit(1755564584.903:68): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8896 comm="syz.1.1383" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa5539 code=0x7ffc0000 [ 449.880841][ T8899] macvlan0: entered promiscuous mode [ 449.887630][ T8899] macvlan0: entered allmulticast mode [ 449.894354][ T8899] veth1_vlan: entered allmulticast mode [ 450.058667][ T30] audit: type=1326 audit(1755564584.993:69): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8896 comm="syz.1.1383" exe="/root/syz-executor" sig=0 arch=40000003 syscall=71 compat=1 ip=0xf7fa5539 code=0x7ffc0000 [ 450.083037][ T30] audit: type=1326 audit(1755564584.993:70): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8896 comm="syz.1.1383" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa5539 code=0x7ffc0000 [ 450.108981][ T30] audit: type=1326 audit(1755564584.993:71): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8896 comm="syz.1.1383" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa5539 code=0x7ffc0000 [ 450.818636][ T8913] netlink: 160 bytes leftover after parsing attributes in process `syz.0.1390'. [ 450.827911][ T8913] netlink: 224 bytes leftover after parsing attributes in process `syz.0.1390'. [ 451.786621][ T8925] netlink: 'syz.0.1396': attribute type 1 has an invalid length. [ 451.794755][ T8925] netlink: 'syz.0.1396': attribute type 3 has an invalid length. [ 451.803165][ T8925] netlink: 228 bytes leftover after parsing attributes in process `syz.0.1396'. [ 451.831443][ T8926] loop3: detected capacity change from 0 to 256 [ 452.119759][ T8926] exFAT-fs (loop3): start_clu is invalid cluster(0x400) [ 452.546056][ T8936] netlink: 'syz.0.1402': attribute type 1 has an invalid length. [ 452.554353][ T8936] netlink: 'syz.0.1402': attribute type 2 has an invalid length. [ 452.562549][ T8936] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1402'. [ 453.518434][ T8950] loop3: detected capacity change from 0 to 128 [ 454.361345][ T30] audit: type=1326 audit(1755564589.433:72): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8963 comm="syz.3.1416" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf706e539 code=0x7ffc0000 [ 454.385465][ T30] audit: type=1326 audit(1755564589.443:73): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8963 comm="syz.3.1416" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf706e539 code=0x7ffc0000 [ 454.408792][ T30] audit: type=1326 audit(1755564589.473:74): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8963 comm="syz.3.1416" exe="/root/syz-executor" sig=0 arch=40000003 syscall=451 compat=1 ip=0xf706e539 code=0x7ffc0000 [ 454.431229][ T30] audit: type=1326 audit(1755564589.473:75): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8963 comm="syz.3.1416" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf706e539 code=0x7ffc0000 [ 454.453747][ T30] audit: type=1326 audit(1755564589.473:76): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8963 comm="syz.3.1416" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf706e539 code=0x7ffc0000 [ 454.562424][ T8966] netlink: 'syz.4.1417': attribute type 5 has an invalid length. [ 455.182604][ T8976] loop4: detected capacity change from 0 to 16 [ 455.268481][ T8976] erofs (device loop4): mounted with root inode @ nid 36. [ 456.041455][ T8987] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1437'. [ 456.724165][ T9000] loop4: detected capacity change from 0 to 256 [ 457.107736][ T9000] FAT-fs (loop4): Directory bread(block 64) failed [ 457.115258][ T9000] FAT-fs (loop4): Directory bread(block 65) failed [ 457.122363][ T9000] FAT-fs (loop4): Directory bread(block 66) failed [ 457.129304][ T9000] FAT-fs (loop4): Directory bread(block 67) failed [ 457.136178][ T9000] FAT-fs (loop4): Directory bread(block 68) failed [ 457.145126][ T9000] FAT-fs (loop4): Directory bread(block 69) failed [ 457.152780][ T9000] FAT-fs (loop4): Directory bread(block 70) failed [ 457.159780][ T9000] FAT-fs (loop4): Directory bread(block 71) failed [ 457.166656][ T9000] FAT-fs (loop4): Directory bread(block 72) failed [ 457.173491][ T9000] FAT-fs (loop4): Directory bread(block 73) failed [ 457.224753][ T9002] loop3: detected capacity change from 0 to 2364 [ 457.999179][ T9013] netlink: 'syz.2.1441': attribute type 1 has an invalid length. [ 458.007174][ T9013] netlink: 216 bytes leftover after parsing attributes in process `syz.2.1441'. [ 458.142421][ T9017] openvswitch: netlink: Missing key (keys=40, expected=100) [ 458.257884][ T9022] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 458.325716][ T9020] nfs: Unknown parameter 'ntext' [ 459.359700][ T9039] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1453'. [ 459.369519][ T9039] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1453'. [ 459.427161][ T9042] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1455'. [ 459.834885][ T9045] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1456'. [ 459.844626][ T9045] tc_dump_action: action bad kind [ 460.039856][ T9053] IPVS: sync thread started: state = BACKUP, mcast_ifn = bond0, syncid = 8, id = 0 [ 460.486634][ T9058] binder: 9057:9058 ioctl c00c6211 0 returned -14 [ 461.102777][ T9070] tmpfs: Bad value for 'mpol' [ 461.161479][ T9073] netlink: 'syz.1.1469': attribute type 2 has an invalid length. [ 462.029089][ T9082] loop1: detected capacity change from 0 to 512 [ 462.246174][ T9082] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 462.266854][ T9082] ext4 filesystem being mounted at /295/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 462.480606][ T9082] EXT4-fs error (device loop1): ext4_get_inode_usage:884: inode #12: comm syz.1.1474: corrupted xattr block 6: invalid header [ 462.920254][ T5815] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 463.378315][ T30] audit: type=1326 audit(1755564598.423:77): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9098 comm="syz.4.1482" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ee539 code=0x7ffc0000 [ 463.402820][ T30] audit: type=1326 audit(1755564598.423:78): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9098 comm="syz.4.1482" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ee539 code=0x7ffc0000 [ 463.425959][ T30] audit: type=1326 audit(1755564598.433:79): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9098 comm="syz.4.1482" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ee539 code=0x7ffc0000 [ 463.448514][ T30] audit: type=1326 audit(1755564598.433:80): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9098 comm="syz.4.1482" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ee539 code=0x7ffc0000 [ 463.471051][ T30] audit: type=1326 audit(1755564598.483:81): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9098 comm="syz.4.1482" exe="/root/syz-executor" sig=0 arch=40000003 syscall=374 compat=1 ip=0xf70ee539 code=0x7ffc0000 [ 463.495169][ T30] audit: type=1326 audit(1755564598.493:82): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9098 comm="syz.4.1482" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ee539 code=0x7ffc0000 [ 463.518249][ T30] audit: type=1326 audit(1755564598.493:83): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9098 comm="syz.4.1482" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ee539 code=0x7ffc0000 [ 463.838535][ T30] audit: type=1326 audit(1755564598.643:84): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9098 comm="syz.4.1482" exe="/root/syz-executor" sig=0 arch=40000003 syscall=436 compat=1 ip=0xf70ee539 code=0x7ffc0000 [ 463.861385][ T30] audit: type=1326 audit(1755564598.643:85): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9098 comm="syz.4.1482" exe="/root/syz-executor" sig=0 arch=40000003 syscall=252 compat=1 ip=0xf70ee539 code=0x7ffc0000 [ 464.244581][ T9112] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1488'. [ 466.264349][ T9146] netlink: 36 bytes leftover after parsing attributes in process `syz.4.1505'. [ 466.274602][ T9146] netlink: 'syz.4.1505': attribute type 1 has an invalid length. [ 466.919659][ T9151] process 'syz.3.1507' launched '/dev/fd/3' with NULL argv: empty string added [ 468.033918][ T9167] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1513'. [ 469.281745][ T9172] loop2: detected capacity change from 0 to 2048 [ 469.506327][ T9172] UDF-fs: warning (device loop2): udf_load_vrs: No anchor found [ 469.514581][ T9172] UDF-fs: Scanning with blocksize 512 failed [ 469.689478][ T9172] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 471.364644][ T9204] loop3: detected capacity change from 0 to 256 [ 471.420066][ T9204] exfat: Deprecated parameter 'namecase' [ 471.427217][ T9204] exfat: Deprecated parameter 'namecase' [ 471.432968][ T9207] loop4: detected capacity change from 0 to 128 [ 471.444964][ T9204] exfat: Deprecated parameter 'namecase' [ 471.532797][ T9207] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 471.583986][ T9204] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0x5441951d, utbl_chksum : 0xe619d30d) [ 471.669304][ T9207] ext4 filesystem being mounted at /301/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 472.340972][ T5825] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 473.767597][ T9236] macvtap0: refused to change device tx_queue_len [ 474.520010][ T5812] Bluetooth: hci0: unexpected event 0x3e length: 262 > 260 [ 474.520197][ T5812] Bluetooth: hci0: unexpected subevent 0x02 length: 261 > 260 [ 474.535826][ T5812] Bluetooth: hci0: unknown advertising packet type: 0x63 [ 474.689303][ T9252] kAFS: No cell specified [ 476.362348][ T9274] loop4: detected capacity change from 0 to 2048 [ 476.537628][ T9274] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 478.075435][ T30] audit: type=1326 audit(1755564613.133:86): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9301 comm="syz.3.1578" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf706e539 code=0x7ffc0000 [ 478.200832][ T30] audit: type=1326 audit(1755564613.213:87): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9301 comm="syz.3.1578" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf706e539 code=0x7ffc0000 [ 478.225311][ T30] audit: type=1326 audit(1755564613.283:88): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9301 comm="syz.3.1578" exe="/root/syz-executor" sig=0 arch=40000003 syscall=36 compat=1 ip=0xf706e539 code=0x7ffc0000 [ 478.522463][ T30] audit: type=1326 audit(1755564613.593:89): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9301 comm="syz.3.1578" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf706e539 code=0x7ffc0000 [ 478.547789][ T30] audit: type=1326 audit(1755564613.593:90): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9301 comm="syz.3.1578" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf706e539 code=0x7ffc0000 [ 478.674533][ T9310] netlink: 40 bytes leftover after parsing attributes in process `syz.1.1582'. [ 478.684025][ T9310] netlink: 19 bytes leftover after parsing attributes in process `syz.1.1582'. [ 478.693372][ T9310] netlink: 19 bytes leftover after parsing attributes in process `syz.1.1582'. [ 479.295401][ T30] audit: type=1326 audit(1755564614.363:91): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9313 comm="syz.2.1584" exe="/root/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7f38539 code=0x0 [ 479.504679][ T9316] loop3: detected capacity change from 0 to 1024 [ 480.766199][ T30] audit: type=1107 audit(1755564615.833:92): pid=9336 uid=0 auid=4294967295 ses=4294967295 subj=unconfined msg='' [ 481.372555][ T9348] loop1: detected capacity change from 0 to 256 [ 482.367339][ T1286] ieee802154 phy0 wpan0: encryption failed: -22 [ 482.374410][ T1286] ieee802154 phy1 wpan1: encryption failed: -22 [ 482.798885][ T9366] loop0: detected capacity change from 0 to 65 [ 482.873768][ T9366] BFS-fs: bfs_fill_super(): NOTE: filesystem loop0 was created with 512 inodes, the real maximum is 511, mounting anyway [ 483.004777][ T9371] netlink: 'syz.1.1611': attribute type 13 has an invalid length. [ 483.013529][ T9371] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1611'. [ 485.383829][ T9410] openvswitch: netlink: IPv4 tun info is not correct [ 485.487618][ T9403] loop4: detected capacity change from 0 to 4096 [ 485.629005][ T9403] NILFS (loop4): invalid segment: Checksum error in segment payload [ 485.637432][ T9403] NILFS (loop4): trying rollback from an earlier position [ 485.690194][ T9403] NILFS (loop4): recovery complete [ 485.800659][ T9413] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 485.871122][ T9415] loop0: detected capacity change from 0 to 512 [ 485.945297][ T9417] loop3: detected capacity change from 0 to 16 [ 485.958794][ T9415] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 485.990046][ T9417] erofs (device loop3): mounted with root inode @ nid 36. [ 486.056308][ T9417] erofs (device loop3): bogus lookback distance 0 @ lcn 1 of nid 89 [ 486.064898][ T9417] erofs (device loop3): readahead error at folio 2 @ nid 89 [ 486.072732][ T9417] erofs (device loop3): bogus lookback distance 0 @ lcn 1 of nid 89 [ 486.081229][ T9417] erofs (device loop3): readahead error at folio 1 @ nid 89 [ 486.102785][ T9415] EXT4-fs (loop0): 1 truncate cleaned up [ 486.111370][ T9415] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 486.113481][ T9417] erofs (device loop3): bogus lookback distance 0 @ lcn 1 of nid 89 [ 486.135577][ T9417] erofs (device loop3): bogus lookback distance 0 @ lcn 1 of nid 89 [ 486.143898][ T9417] erofs (device loop3): read error -117 @ 1 of nid 89 [ 486.159467][ T30] audit: type=1800 audit(1755564621.233:93): pid=9417 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.1636" name="file3" dev="loop3" ino=89 res=0 errno=0 [ 486.649579][ T5811] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 487.893591][ T30] audit: type=1400 audit(1755564622.963:94): apparmor="DENIED" operation="setprocattr" info="current" error=-22 profile="unconfined" pid=9440 comm="syz.3.1645" [ 487.954738][ T9443] A link change request failed with some changes committed already. Interface tunl0 may have been left with an inconsistent configuration, please check. [ 488.468950][ T32] usb 2-1: new high-speed USB device number 5 using dummy_hcd [ 488.707585][ T32] usb 2-1: Using ep0 maxpacket: 8 [ 488.766302][ T32] usb 2-1: config 179 has an invalid interface number: 65 but max is 0 [ 488.775153][ T32] usb 2-1: config 179 has no interface number 0 [ 488.783737][ T32] usb 2-1: config 179 interface 65 altsetting 0 endpoint 0xF has an invalid bInterval 0, changing to 7 [ 488.796555][ T32] usb 2-1: config 179 interface 65 altsetting 0 endpoint 0xF has invalid maxpacket 1025, setting to 1024 [ 488.809474][ T32] usb 2-1: config 179 interface 65 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 7 [ 488.821285][ T32] usb 2-1: config 179 interface 65 altsetting 0 endpoint 0x83 has invalid maxpacket 41728, setting to 1024 [ 488.833153][ T32] usb 2-1: config 179 interface 65 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 23 [ 488.846929][ T32] usb 2-1: New USB device found, idVendor=12ab, idProduct=90a3, bcdDevice=1e.eb [ 488.856407][ T32] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 489.276689][ T9457] loop0: detected capacity change from 0 to 256 [ 489.412416][ T9447] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22 [ 490.028564][ T32] usb 2-1: USB disconnect, device number 5 [ 490.039477][ C1] xpad 2-1:179.65: xpad_irq_in - usb_submit_urb failed with result -19 [ 490.048169][ C1] xpad 2-1:179.65: xpad_irq_out - usb_submit_urb failed with result -19 [ 490.268785][ T9457] FAT-fs (loop0): Directory bread(block 64) failed [ 490.275699][ T9457] FAT-fs (loop0): Directory bread(block 65) failed [ 490.282907][ T9457] FAT-fs (loop0): Directory bread(block 66) failed [ 490.290035][ T9457] FAT-fs (loop0): Directory bread(block 67) failed [ 490.296907][ T9457] FAT-fs (loop0): Directory bread(block 68) failed [ 490.303784][ T9457] FAT-fs (loop0): Directory bread(block 69) failed [ 490.310856][ T9457] FAT-fs (loop0): Directory bread(block 70) failed [ 490.325880][ T9457] FAT-fs (loop0): Directory bread(block 71) failed [ 490.335099][ T9457] FAT-fs (loop0): Directory bread(block 72) failed [ 490.341980][ T9457] FAT-fs (loop0): Directory bread(block 73) failed [ 490.569104][ T9455] bridge0: port 2(bridge_slave_1) entered disabled state [ 490.577679][ T9455] bridge0: port 1(bridge_slave_0) entered disabled state [ 492.371185][ T9476] loop4: detected capacity change from 0 to 4096 [ 492.471626][ T9476] ntfs3(loop4): Different NTFS sector size (1024) and media sector size (512). [ 492.977693][ T9476] ntfs3(loop4): Failed to load $Extend (-22). [ 492.993265][ T9476] ntfs3(loop4): Failed to initialize $Extend. [ 493.441439][ T9492] netdevsim netdevsim2 netdevsim0: entered promiscuous mode [ 493.495404][ T9492] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check. [ 494.746824][ T9511] loop3: detected capacity change from 0 to 256 [ 495.172284][ T9511] FAT-fs (loop3): Directory bread(block 64) failed [ 495.179291][ T9511] FAT-fs (loop3): Directory bread(block 65) failed [ 495.186214][ T9511] FAT-fs (loop3): Directory bread(block 66) failed [ 495.193200][ T9511] FAT-fs (loop3): Directory bread(block 67) failed [ 495.200644][ T9511] FAT-fs (loop3): Directory bread(block 68) failed [ 495.207408][ T9511] FAT-fs (loop3): Directory bread(block 69) failed [ 495.214678][ T9511] FAT-fs (loop3): Directory bread(block 70) failed [ 495.221723][ T9511] FAT-fs (loop3): Directory bread(block 71) failed [ 495.228890][ T9511] FAT-fs (loop3): Directory bread(block 72) failed [ 495.244385][ T9511] FAT-fs (loop3): Directory bread(block 73) failed [ 495.263644][ T9518] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1681'. [ 495.976080][ T9526] macvlan0: entered promiscuous mode [ 495.983067][ T9526] macvlan0: entered allmulticast mode [ 495.989040][ T9526] veth1_vlan: entered allmulticast mode [ 497.313069][ T9547] loop2: detected capacity change from 0 to 1024 [ 497.520949][ T9547] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 497.534794][ T9547] ext4 filesystem being mounted at /349/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 497.728213][ T9547] EXT4-fs error (device loop2): ext4_xattr_block_get:593: inode #15: comm syz.2.1694: corrupted xattr block 128: bad e_name length [ 497.817742][ T9555] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1698'. [ 498.238516][ T5821] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 498.649318][ T9567] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1706'. [ 499.607505][ T9579] loop4: detected capacity change from 0 to 1024 [ 499.955297][ T9584] netlink: 52 bytes leftover after parsing attributes in process `syz.1.1714'. [ 499.964787][ T9584] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check. [ 501.281783][ T9602] xfrm1: entered allmulticast mode [ 501.493369][ T9606] loop1: detected capacity change from 0 to 1024 [ 501.592325][ T9606] hfsplus: write access to a journaled filesystem is not supported, use the force option at your own risk, mounting read-only. [ 501.761413][ T9606] hfsplus: filesystem is marked journaled, leaving read-only. [ 502.209493][ T9615] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1729'. [ 502.219040][ T9615] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1729'. [ 502.228425][ T9615] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1729'. [ 502.777624][ T9622] loop4: detected capacity change from 0 to 256 [ 502.888489][ T32] usb 4-1: new high-speed USB device number 5 using dummy_hcd [ 503.083841][ T32] usb 4-1: Using ep0 maxpacket: 8 [ 503.168408][ T32] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0 [ 503.180138][ T32] usb 4-1: config 0 interface 0 altsetting 0 bulk endpoint 0x3 has invalid maxpacket 0 [ 503.267473][ T32] usb 4-1: New USB device found, idVendor=16d0, idProduct=10a9, bcdDevice=30.52 [ 503.277030][ T32] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 503.285754][ T32] usb 4-1: Product: syz [ 503.290248][ T32] usb 4-1: Manufacturer: syz [ 503.295063][ T32] usb 4-1: SerialNumber: syz [ 503.442961][ T32] usb 4-1: config 0 descriptor?? [ 503.970262][ T11] usb 4-1: USB disconnect, device number 5 [ 504.935303][ T9644] netlink: 'syz.1.1744': attribute type 6 has an invalid length. [ 505.104911][ T30] audit: type=1326 audit(1755564640.163:95): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9646 comm="syz.0.1747" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f16539 code=0x7ffc0000 [ 505.128225][ T30] audit: type=1326 audit(1755564640.183:96): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9646 comm="syz.0.1747" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f16539 code=0x7ffc0000 [ 505.150861][ T30] audit: type=1326 audit(1755564640.183:97): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9646 comm="syz.0.1747" exe="/root/syz-executor" sig=0 arch=40000003 syscall=281 compat=1 ip=0xf7f16539 code=0x7ffc0000 [ 505.179075][ T30] audit: type=1326 audit(1755564640.213:98): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9646 comm="syz.0.1747" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f16539 code=0x7ffc0000 [ 505.719613][ T9654] loop0: detected capacity change from 0 to 1024 [ 505.862497][ T9654] EXT4-fs (loop0): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none. [ 505.875667][ T9654] ext4 filesystem being mounted at /355/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 506.002975][ T5811] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0006-0000-000000000000. [ 506.385145][ T32] IPVS: starting estimator thread 0... [ 506.495031][ T9673] loop1: detected capacity change from 0 to 512 [ 506.518608][ T9674] IPVS: using max 240 ests per chain, 12000 per kthread [ 506.655684][ T9673] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 506.664826][ T9673] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e040e018, mo2=0002] [ 506.873575][ T9673] System zones: 0-1, 15-15, 18-18, 34-34 [ 506.893481][ T9673] EXT4-fs (loop1): orphan cleanup on readonly fs [ 506.900964][ T9673] Quota error (device loop1): v2_read_header: Failed header read: expected=8 got=0 [ 506.918886][ T9673] EXT4-fs warning (device loop1): ext4_enable_quotas:7172: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix. [ 506.936380][ T9673] EXT4-fs (loop1): Cannot turn on quotas: error -22 [ 506.988828][ T9683] program syz.3.1762 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 507.078501][ T9673] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.1757: bg 0: block 40: padding at end of block bitmap is not set [ 507.141976][ T9673] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6657: Corrupt filesystem [ 507.189266][ T9673] EXT4-fs (loop1): 1 truncate cleaned up [ 507.197300][ T9673] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 507.400433][ T9673] EXT4-fs error (device loop1): ext4_encrypted_get_link:46: inode #16: comm syz.1.1757: bad symlink. [ 507.792563][ T5815] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 507.987748][ T9696] netlink: 36 bytes leftover after parsing attributes in process `syz.2.1767'. [ 508.489611][ T9704] netdevsim netdevsim4 netdevsim0: entered promiscuous mode [ 508.497461][ T9704] netdevsim netdevsim4 netdevsim0: left allmulticast mode [ 508.505767][ T9704] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check. [ 508.862622][ T9710] netlink: 'syz.3.1775': attribute type 39 has an invalid length. [ 509.049168][ T9710] bridge0: port 1(bridge_slave_0) entered disabled state [ 509.180562][ T9710] bridge0: port 1(bridge_slave_0) entered disabled state [ 510.787924][ T9730] loop0: detected capacity change from 0 to 1024 [ 511.370414][ T4202] hfsplus: b-tree write err: -5, ino 4 [ 511.790018][ T9748] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1793'. [ 512.508553][ T11] usb 5-1: new high-speed USB device number 4 using dummy_hcd [ 512.708804][ T11] usb 5-1: Using ep0 maxpacket: 8 [ 512.768773][ T11] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0 [ 512.779117][ T11] usb 5-1: config 0 interface 0 altsetting 0 bulk endpoint 0x3 has invalid maxpacket 0 [ 512.827552][ T9762] loop3: detected capacity change from 0 to 1024 [ 512.934815][ T11] usb 5-1: New USB device found, idVendor=16d0, idProduct=10a9, bcdDevice=30.52 [ 512.944826][ T11] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 512.960739][ T11] usb 5-1: Product: syz [ 512.965147][ T11] usb 5-1: Manufacturer: syz [ 512.973126][ T11] usb 5-1: SerialNumber: syz [ 513.092353][ T11] usb 5-1: config 0 descriptor?? [ 513.588631][ T32] usb 5-1: USB disconnect, device number 4 [ 513.863582][ T9776] loop2: detected capacity change from 0 to 16 [ 513.949378][ T9776] erofs (device loop2): mounted with root inode @ nid 36. [ 514.505620][ T9780] loop1: detected capacity change from 0 to 512 [ 514.744586][ T9780] EXT4-fs (loop1): Cannot turn on journaled quota: type 0: error -2 [ 514.753364][ T9780] EXT4-fs (loop1): Cannot turn on journaled quota: type 1: error -2 [ 514.862878][ T9780] EXT4-fs (loop1): 1 truncate cleaned up [ 514.871482][ T9780] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 515.062783][ T9780] EXT4-fs (loop1): re-mounted 00000000-0000-0000-0000-000000000000. [ 515.365593][ T5815] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 515.961519][ T9798] loop0: detected capacity change from 0 to 4096 [ 516.011052][ T9798] ntfs3(loop0): Different NTFS sector size (4096) and media sector size (512). [ 516.493850][ T9798] ntfs3(loop0): ino=1a, mi_enum_attr [ 516.499566][ T9798] ntfs3(loop0): Mark volume as dirty due to NTFS errors [ 516.538897][ T9798] ntfs3(loop0): ino=1a, mi_enum_attr [ 516.544435][ T9798] ntfs3(loop0): Failed to initialize $Extend/$Reparse. [ 516.708224][ T9798] ntfs3(loop0): ino=1b, mi_enum_attr [ 516.713822][ T9798] ntfs3(loop0): ino=1b, mi_enum_attr [ 516.720302][ T9798] ntfs3(loop0): ino=1b, "file0" mi_enum_attr [ 516.727334][ T9798] ntfs3(loop0): ino=1b, "file0" mi_enum_attr [ 516.800608][ T9798] ntfs3(loop0): ino=1b, "file0" mi_enum_attr [ 517.069451][ T9822] netlink: 136 bytes leftover after parsing attributes in process `syz.2.1828'. [ 517.704510][ T9830] loop0: detected capacity change from 0 to 512 [ 517.712360][ T9832] vlan0: entered promiscuous mode [ 517.804878][ T9830] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=8856c01c, mo2=0002] [ 517.848280][ T9830] EXT4-fs (loop0): orphan cleanup on readonly fs [ 517.894743][ T9835] loop4: detected capacity change from 0 to 128 [ 517.929001][ T9830] EXT4-fs error (device loop0): ext4_quota_enable:7128: inode #15: comm syz.0.1830: iget: bad i_size value: 360287970189639690 [ 517.980924][ T9830] EXT4-fs error (device loop0): ext4_quota_enable:7131: comm syz.0.1830: Bad quota inode: 15, type: 2 [ 518.029954][ T9835] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: writeback. [ 518.118713][ T9830] EXT4-fs warning (device loop0): ext4_enable_quotas:7172: Failed to enable quota tracking (type=2, err=-117, ino=15). Please run e2fsck to fix. [ 518.143321][ T9835] ext4 filesystem being mounted at /357/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 518.204314][ T9830] EXT4-fs (loop0): Cannot turn on quotas: error -117 [ 518.214666][ T9830] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 518.334999][ T9835] EXT4-fs warning (device loop4): ext4_dirblock_csum_verify:375: inode #2: comm syz.4.1835: No space for directory leaf checksum. Please run e2fsck -D. [ 518.335549][ T9840] loop1: detected capacity change from 0 to 1024 [ 518.351310][ T9835] EXT4-fs error (device loop4): __ext4_find_entry:1626: inode #2: comm syz.4.1835: checksumming directory block 0 [ 518.400247][ T9830] EXT4-fs error (device loop0): ext4_lookup:1787: comm syz.0.1830: inode #15: comm syz.0.1830: iget: illegal inode # [ 518.449197][ T9840] hfsplus: Filesystem was not cleanly unmounted, running fsck.hfsplus is recommended. mounting read-only. [ 518.555573][ T9844] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1837'. [ 518.744894][ T5811] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 518.749946][ T5825] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 519.318761][ T9854] loop0: detected capacity change from 0 to 256 [ 519.731399][ T9854] FAT-fs (loop0): Directory bread(block 64) failed [ 519.738593][ T9854] FAT-fs (loop0): Directory bread(block 65) failed [ 519.745529][ T9854] FAT-fs (loop0): Directory bread(block 66) failed [ 519.749855][ T9856] loop2: detected capacity change from 0 to 512 [ 519.752752][ T9854] FAT-fs (loop0): Directory bread(block 67) failed [ 519.765631][ T9854] FAT-fs (loop0): Directory bread(block 68) failed [ 519.772579][ T9854] FAT-fs (loop0): Directory bread(block 69) failed [ 519.779703][ T9854] FAT-fs (loop0): Directory bread(block 70) failed [ 519.786433][ T9854] FAT-fs (loop0): Directory bread(block 71) failed [ 519.793499][ T9854] FAT-fs (loop0): Directory bread(block 72) failed [ 519.800559][ T9854] FAT-fs (loop0): Directory bread(block 73) failed [ 519.944250][ T9856] EXT4-fs error (device loop2): ext4_orphan_get:1392: inode #15: comm syz.2.1844: iget: bad i_size value: 38620345925642 [ 519.995239][ T9856] EXT4-fs error (device loop2): ext4_orphan_get:1397: comm syz.2.1844: couldn't read orphan inode 15 (err -117) [ 520.164948][ T9856] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 520.876377][ T5821] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 520.962290][ T30] audit: type=1326 audit(1755564656.033:99): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9872 comm="syz.1.1851" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa5539 code=0x7ffc0000 [ 521.048644][ T30] audit: type=1326 audit(1755564656.073:100): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9872 comm="syz.1.1851" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa5539 code=0x7ffc0000 [ 521.106839][ T30] audit: type=1326 audit(1755564656.183:101): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9872 comm="syz.1.1851" exe="/root/syz-executor" sig=0 arch=40000003 syscall=139 compat=1 ip=0xf7fa5539 code=0x7ffc0000 [ 521.130279][ T30] audit: type=1326 audit(1755564656.183:102): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9872 comm="syz.1.1851" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa5539 code=0x7ffc0000 [ 521.159833][ T30] audit: type=1326 audit(1755564656.183:103): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9872 comm="syz.1.1851" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa5539 code=0x7ffc0000 [ 521.418362][ T9876] loop3: detected capacity change from 0 to 256 [ 521.622190][ T9880] comedi comedi0: aio_iiro_16: I/O port conflict (0xee,8) [ 521.799136][ T9876] FAT-fs (loop3): Directory bread(block 64) failed [ 521.806104][ T9876] FAT-fs (loop3): Directory bread(block 65) failed [ 521.813509][ T9876] FAT-fs (loop3): Directory bread(block 66) failed [ 521.820501][ T9876] FAT-fs (loop3): Directory bread(block 67) failed [ 521.827512][ T9876] FAT-fs (loop3): Directory bread(block 68) failed [ 521.834479][ T9876] FAT-fs (loop3): Directory bread(block 69) failed [ 521.841530][ T9876] FAT-fs (loop3): Directory bread(block 70) failed [ 521.848419][ T9876] FAT-fs (loop3): Directory bread(block 71) failed [ 521.855316][ T9876] FAT-fs (loop3): Directory bread(block 72) failed [ 521.864865][ T9876] FAT-fs (loop3): Directory bread(block 73) failed [ 522.374306][ T9886] netlink: 112 bytes leftover after parsing attributes in process `syz.2.1858'. [ 522.383941][ T9886] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1858'. [ 522.393400][ T9886] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1858'. [ 522.403439][ T9886] tc_dump_action: action bad kind [ 525.081154][ T9920] netlink: 4580 bytes leftover after parsing attributes in process `syz.0.1874'. [ 525.091677][ T9920] netlink: 4580 bytes leftover after parsing attributes in process `syz.0.1874'. [ 525.101315][ T9920] netlink: 89 bytes leftover after parsing attributes in process `syz.0.1874'. [ 525.770089][ T9932] overlayfs: option "workdir=./file0" is useless in a non-upper mount, ignore [ 525.779831][ T9932] overlayfs: option "index=on" is useless in a non-upper mount, ignore [ 525.788752][ T9932] overlayfs: missing 'lowerdir' [ 525.833717][ T9933] usb usb8: usbfs: process 9933 (syz.3.1881) did not claim interface 0 before use [ 526.549903][ T9940] loop1: detected capacity change from 0 to 512 [ 526.771033][ T9940] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 526.792888][ T9940] ext4 filesystem being mounted at /376/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 526.973664][ T9940] EXT4-fs error (device loop1): ext4_xattr_block_get:593: inode #15: comm syz.1.1884: corrupted xattr block 19: ea_inode specified without ea_inode feature enabled [ 527.149630][ T9940] EXT4-fs error (device loop1): ext4_validate_block_bitmap:432: comm syz.1.1884: bg 0: block 18: invalid block bitmap [ 527.239413][ T9940] Quota error (device loop1): write_blk: dquota write failed [ 527.248333][ T9940] Quota error (device loop1): qtree_write_dquot: Error -117 occurred while creating quota [ 527.258955][ T9940] EXT4-fs error (device loop1): ext4_acquire_dquot:6937: comm syz.1.1884: Failed to acquire dquot type 1 [ 527.351991][ T30] audit: type=1800 audit(1755564662.423:104): pid=9940 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.1884" name="file1" dev="loop1" ino=15 res=0 errno=0 [ 527.742947][ T9940] syz.1.1884 (9940) used greatest stack depth: 704 bytes left [ 527.794165][ T5815] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 529.494037][ T9985] netlink: 152 bytes leftover after parsing attributes in process `syz.1.1905'. [ 530.108660][ T30] audit: type=1326 audit(1755564665.183:105): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9992 comm="syz.3.1909" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf706e539 code=0x7ffc0000 [ 530.131500][ T30] audit: type=1326 audit(1755564665.183:106): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9992 comm="syz.3.1909" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf706e539 code=0x7ffc0000 [ 530.338268][ T30] audit: type=1326 audit(1755564665.283:107): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9992 comm="syz.3.1909" exe="/root/syz-executor" sig=0 arch=40000003 syscall=317 compat=1 ip=0xf706e539 code=0x7ffc0000 [ 530.367326][ T30] audit: type=1326 audit(1755564665.283:108): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9992 comm="syz.3.1909" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf706e539 code=0x7ffc0000 [ 530.392455][ T30] audit: type=1326 audit(1755564665.283:109): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9992 comm="syz.3.1909" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf706e539 code=0x7ffc0000 [ 530.435173][ T9997] netlink: 60 bytes leftover after parsing attributes in process `syz.1.1911'. [ 533.335952][T10041] loop4: detected capacity change from 0 to 512 [ 533.716412][T10041] EXT4-fs (loop4): Cannot turn on journaled quota: type 0: error -2 [ 533.725754][T10041] EXT4-fs error (device loop4): ext4_free_branches:1023: inode #13: comm syz.4.1932: invalid indirect mapped block 2683928664 (level 1) [ 533.763525][T10041] EXT4-fs (loop4): Remounting filesystem read-only [ 533.774839][T10041] EXT4-fs (loop4): 1 truncate cleaned up [ 533.783320][T10041] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 534.176435][ T5825] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 534.198650][ T11] usb 2-1: new high-speed USB device number 6 using dummy_hcd [ 534.411220][ T11] usb 2-1: Using ep0 maxpacket: 8 [ 534.438741][ T11] usb 2-1: config 1 interface 0 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 64 [ 534.449327][ T11] usb 2-1: config 1 interface 0 altsetting 0 has an endpoint descriptor with address 0x6F, changing to 0xF [ 534.467745][ T11] usb 2-1: config 1 interface 0 altsetting 0 endpoint 0xF has an invalid bInterval 0, changing to 7 [ 534.481454][ T11] usb 2-1: config 1 interface 0 altsetting 0 endpoint 0xF has invalid maxpacket 8560, setting to 1024 [ 534.492950][ T11] usb 2-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 534.604633][T10056] loop2: detected capacity change from 0 to 512 [ 534.740614][ T11] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a3, bcdDevice= 0.40 [ 534.750347][ T11] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 534.765899][ T11] usb 2-1: Product: syz [ 534.772641][ T11] usb 2-1: Manufacturer: syz [ 534.777440][ T11] usb 2-1: SerialNumber: syz [ 534.826737][T10049] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22 [ 534.875019][T10056] EXT4-fs (loop2): Cannot turn on journaled quota: type 0: error -2 [ 534.940463][ T11] cdc_ether 2-1:1.0: probe with driver cdc_ether failed with error -22 [ 534.949154][T10056] EXT4-fs error (device loop2): ext4_free_branches:1023: inode #13: comm syz.2.1939: invalid indirect mapped block 2683928664 (level 1) [ 534.954436][ T11] usbtest 2-1:1.0: couldn't get endpoints, -22 [ 534.980687][ T11] usbtest 2-1:1.0: probe with driver usbtest failed with error -22 [ 535.017415][T10056] EXT4-fs (loop2): Remounting filesystem read-only [ 535.065025][T10056] EXT4-fs (loop2): 1 truncate cleaned up [ 535.133212][T10056] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 535.319899][ T11] usb 2-1: USB disconnect, device number 6 [ 535.609296][T10067] loop4: detected capacity change from 0 to 1024 [ 535.674680][ T5821] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 535.714085][T10071] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1944'. [ 536.155232][ T1315] hfsplus: b-tree write err: -5, ino 4 [ 537.024357][ T30] audit: type=1326 audit(1755564672.083:110): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10086 comm="syz.0.1952" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f16539 code=0x7ffc0000 [ 537.113213][ T30] audit: type=1326 audit(1755564672.153:111): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10086 comm="syz.0.1952" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f16539 code=0x7ffc0000 [ 537.135563][ C0] vkms_vblank_simulate: vblank timer overrun [ 537.152349][ T30] audit: type=1326 audit(1755564672.153:112): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10086 comm="syz.0.1952" exe="/root/syz-executor" sig=0 arch=40000003 syscall=276 compat=1 ip=0xf7f16539 code=0x7ffc0000 [ 537.175190][ T30] audit: type=1326 audit(1755564672.153:113): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10086 comm="syz.0.1952" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f16539 code=0x7ffc0000 [ 537.197756][ T30] audit: type=1326 audit(1755564672.153:114): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10086 comm="syz.0.1952" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f16539 code=0x7ffc0000 [ 537.220328][ C0] vkms_vblank_simulate: vblank timer overrun [ 537.272088][T10091] ieee802154 phy0 wpan0: encryption failed: -22 [ 537.816928][T10100] netlink: 'syz.4.1957': attribute type 8 has an invalid length. [ 538.050575][ T11] usb 1-1: new high-speed USB device number 6 using dummy_hcd [ 538.295432][ T11] usb 1-1: config 27 has an invalid descriptor of length 0, skipping remainder of the config [ 538.306467][ T11] usb 1-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7 [ 538.318253][ T11] usb 1-1: config 27 interface 0 altsetting 0 endpoint 0x8B has invalid wMaxPacketSize 0 [ 538.328620][ T11] usb 1-1: config 27 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 538.342096][ T11] usb 1-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d [ 538.358139][ T11] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 538.455667][T10110] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1963'. [ 538.600195][ T11] usb 1-1: Quirk or no altset; falling back to MIDI 1.0 [ 538.609330][ T11] usb 1-1: invalid MIDI out EP 0 [ 538.727297][T10113] gre1: entered allmulticast mode [ 538.945016][T10117] program syz.1.1966 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 539.101946][ T11] snd-usb-audio 1-1:27.0: probe with driver snd-usb-audio failed with error -22 [ 539.199909][ T11] usb 1-1: USB disconnect, device number 6 [ 540.559215][T10136] loop4: detected capacity change from 0 to 16 [ 540.679608][T10136] erofs (device loop4): mounted with root inode @ nid 36. [ 540.897151][T10140] loop3: detected capacity change from 0 to 8 [ 541.167879][T10132] loop2: detected capacity change from 0 to 4096 [ 541.238261][T10132] ntfs3(loop2): Different NTFS sector size (1024) and media sector size (512). [ 541.349261][T10132] ntfs3(loop2): ino=3, mi_enum_attr [ 541.913171][ T5999] udevd[5999]: error opening ATTR{/sys/devices/platform/dummy_hcd.0/usb1/1-1/1-1:27.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 542.182922][T10150] loop1: detected capacity change from 0 to 256 [ 543.282770][T10167] loop3: detected capacity change from 0 to 8 [ 543.790665][ T1286] ieee802154 phy0 wpan0: encryption failed: -22 [ 543.797413][ T1286] ieee802154 phy1 wpan1: encryption failed: -22 [ 543.909291][T10172] netlink: 'syz.2.1993': attribute type 10 has an invalid length. [ 543.972754][T10172] hsr0: A HSR master's MTU cannot be greater than the smallest MTU of its slaves minus the HSR Tag length (6 octets). [ 545.399433][ T32] usb 1-1: new high-speed USB device number 7 using dummy_hcd [ 545.651198][ T32] usb 1-1: New USB device found, idVendor=05d1, idProduct=2021, bcdDevice=31.00 [ 545.660865][ T32] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 545.669554][ T32] usb 1-1: Product: syz [ 545.674542][ T32] usb 1-1: Manufacturer: syz [ 545.679621][ T32] usb 1-1: SerialNumber: syz [ 545.753129][ T32] usb 1-1: config 0 descriptor?? [ 545.816708][ T32] ftdi_sio 1-1:0.0: FTDI USB Serial Device converter detected [ 545.831646][ T32] usb 1-1: Detected FT4232HP [ 546.000397][ T32] ftdi_sio ttyUSB0: Unable to read latency timer: -71 [ 546.050277][ T32] ftdi_sio ttyUSB0: Unable to write latency timer: -71 [ 546.102754][ T32] usb 1-1: FTDI USB Serial Device converter now attached to ttyUSB0 [ 546.159786][ T32] usb 1-1: USB disconnect, device number 7 [ 546.177455][T10206] netlink: 'syz.3.2010': attribute type 10 has an invalid length. [ 546.201641][ T32] ftdi_sio ttyUSB0: FTDI USB Serial Device converter now disconnected from ttyUSB0 [ 546.214366][ T32] ftdi_sio 1-1:0.0: device disconnected [ 546.252739][T10206] hsr0: A HSR master's MTU cannot be greater than the smallest MTU of its slaves minus the HSR Tag length (6 octets). [ 547.976131][T10228] netlink: 36 bytes leftover after parsing attributes in process `syz.3.2020'. [ 547.986531][T10228] netlink: 20 bytes leftover after parsing attributes in process `syz.3.2020'. [ 551.066160][T10268] A link change request failed with some changes committed already. Interface ipvlan1 may have been left with an inconsistent configuration, please check. [ 551.429891][T10271] loop1: detected capacity change from 0 to 1024 [ 551.491730][T10274] loop0: detected capacity change from 0 to 512 [ 551.516726][T10274] EXT4-fs (loop0): Test dummy encryption mode enabled [ 551.640323][T10280] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check. [ 551.680376][T10271] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 551.701457][T10274] EXT4-fs (loop0): mounted filesystem 00000005-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 551.869869][T10274] EXT4-fs error (device loop0): ext4_add_entry:2417: inode #2: comm syz.0.2041: Directory hole found for htree leaf block 0 [ 551.922090][T10274] EXT4-fs (loop0): Remounting filesystem read-only [ 551.929751][T10271] EXT4-fs warning (device loop1): ext4_empty_dir:3099: inode #11: comm syz.1.2040: directory missing '..' [ 552.415750][T10289] bond0: option all_slaves_active: invalid value (250) [ 552.471100][ T5811] EXT4-fs (loop0): unmounting filesystem 00000005-0000-0000-0000-000000000000. [ 552.504021][ T5815] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 553.717195][T10306] loop2: detected capacity change from 0 to 256 [ 554.290910][T10306] FAT-fs (loop2): Directory bread(block 64) failed [ 554.298197][T10306] FAT-fs (loop2): Directory bread(block 65) failed [ 554.305164][T10306] FAT-fs (loop2): Directory bread(block 66) failed [ 554.312588][T10306] FAT-fs (loop2): Directory bread(block 67) failed [ 554.322002][T10306] FAT-fs (loop2): Directory bread(block 68) failed [ 554.329567][T10306] FAT-fs (loop2): Directory bread(block 69) failed [ 554.336617][T10306] FAT-fs (loop2): Directory bread(block 70) failed [ 554.343561][T10306] FAT-fs (loop2): Directory bread(block 71) failed [ 554.350724][T10306] FAT-fs (loop2): Directory bread(block 72) failed [ 554.357475][T10306] FAT-fs (loop2): Directory bread(block 73) failed [ 555.499600][T10332] netlink: 'syz.4.2069': attribute type 11 has an invalid length. [ 555.507693][T10332] netlink: 224 bytes leftover after parsing attributes in process `syz.4.2069'. [ 555.598405][T10335] netlink: 'syz.2.2068': attribute type 4 has an invalid length. [ 555.606639][T10335] netlink: 3657 bytes leftover after parsing attributes in process `syz.2.2068'. [ 557.625389][T10367] syz.0.2085: attempt to access beyond end of device [ 557.625389][T10367] nbd0: rw=6144, sector=128, nr_sectors = 8 limit=0 [ 557.639320][T10367] gfs2: error -5 reading superblock [ 559.248056][T10394] loop4: detected capacity change from 0 to 64 [ 560.015909][ T30] audit: type=1326 audit(1755564695.083:115): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10403 comm="syz.2.2103" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f38539 code=0x7ffc0000 [ 560.128296][ T30] audit: type=1326 audit(1755564695.133:116): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10403 comm="syz.2.2103" exe="/root/syz-executor" sig=0 arch=40000003 syscall=103 compat=1 ip=0xf7f38539 code=0x7ffc0000 [ 560.245828][ T30] audit: type=1326 audit(1755564695.243:117): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10403 comm="syz.2.2103" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f38539 code=0x7ffc0000 [ 560.276178][ T30] audit: type=1326 audit(1755564695.243:118): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10403 comm="syz.2.2103" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f38539 code=0x7ffc0000 [ 560.619980][T10412] loop3: detected capacity change from 0 to 512 [ 560.918933][T10412] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 560.932530][T10412] ext4 filesystem being mounted at /418/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 561.543351][ T5820] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 562.076943][T10431] netdevsim netdevsim3 netdevsim0: left promiscuous mode [ 562.084972][T10431] netdevsim netdevsim3 netdevsim0: entered allmulticast mode [ 563.098733][ T32] usb 1-1: new high-speed USB device number 8 using dummy_hcd [ 563.345174][ T32] usb 1-1: New USB device found, idVendor=0813, idProduct=0001, bcdDevice=3a.08 [ 563.354815][ T32] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 563.453103][ T32] usb 1-1: config 0 descriptor?? [ 563.519835][ T32] gspca_main: cpia1-2.14.0 probing 0813:0001 [ 563.955010][ T32] gspca_cpia1: usb_control_msg 03, error -71 [ 563.986179][T10456] loop3: detected capacity change from 0 to 512 [ 564.040197][ T32] gspca_cpia1: usb_control_msg 01, error -71 [ 564.049232][ T32] cpia1 1-1:0.0: only firmware version 1 is supported (got: 0) [ 564.137755][ T32] usb 1-1: USB disconnect, device number 8 [ 564.155752][T10458] loop1: detected capacity change from 0 to 512 [ 564.276941][T10456] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 564.291731][T10456] ext4 filesystem being mounted at /422/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 564.299716][T10452] loop4: detected capacity change from 0 to 4096 [ 564.404180][T10458] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (24500!=4028) [ 564.507058][T10458] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none. [ 565.204580][ T5815] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 565.423303][ T5820] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 567.085035][T10473] loop0: detected capacity change from 0 to 4096 [ 567.207734][T10473] ntfs3(loop0): Different NTFS sector size (2048) and media sector size (512). [ 567.441741][T10485] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2139'. [ 567.779786][T10473] ntfs3(loop0): Failed to initialize $Extend/$ObjId. [ 568.518810][T10499] qrtr: Invalid version 0 [ 569.207220][T10509] syz.2.2151 (10509): /proc/10508/oom_adj is deprecated, please use /proc/10508/oom_score_adj instead. [ 569.915704][T10517] loop2: detected capacity change from 0 to 64 [ 570.486013][T10522] loop4: detected capacity change from 0 to 256 [ 571.302272][T10527] loop2: detected capacity change from 0 to 2048 [ 571.398512][ T30] audit: type=1326 audit(1755564706.463:119): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10530 comm="syz.1.2162" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa5539 code=0x7ffc0000 [ 571.490525][T10527] NILFS (loop2): invalid segment: Sequence number mismatch [ 571.498362][T10527] NILFS (loop2): trying rollback from an earlier position [ 571.574464][T10534] loop3: detected capacity change from 0 to 8 [ 571.582272][ T30] audit: type=1326 audit(1755564706.583:120): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10530 comm="syz.1.2162" exe="/root/syz-executor" sig=0 arch=40000003 syscall=116 compat=1 ip=0xf7fa5539 code=0x7ffc0000 [ 571.605452][ T30] audit: type=1326 audit(1755564706.583:121): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10530 comm="syz.1.2162" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa5539 code=0x7ffc0000 [ 571.634584][ T30] audit: type=1326 audit(1755564706.583:122): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10530 comm="syz.1.2162" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa5539 code=0x7ffc0000 [ 571.759934][T10527] NILFS (loop2): recovery complete [ 571.945208][T10538] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 572.830735][T10546] tc_dump_action: action bad kind [ 573.714528][T10559] batadv1: entered promiscuous mode [ 574.561394][T10574] netlink: 20 bytes leftover after parsing attributes in process `syz.0.2182'. [ 574.924261][T10577] loop3: detected capacity change from 0 to 64 [ 575.695580][T10587] loop4: detected capacity change from 0 to 128 [ 575.934785][T10587] FAT-fs (loop4): Directory bread(block 32) failed [ 575.942200][T10587] FAT-fs (loop4): Directory bread(block 33) failed [ 575.949543][T10587] FAT-fs (loop4): Directory bread(block 34) failed [ 575.956339][T10587] FAT-fs (loop4): Directory bread(block 35) failed [ 575.963466][T10587] FAT-fs (loop4): Directory bread(block 36) failed [ 575.970543][T10587] FAT-fs (loop4): Directory bread(block 37) failed [ 575.977615][T10587] FAT-fs (loop4): Directory bread(block 38) failed [ 575.984644][T10587] FAT-fs (loop4): Directory bread(block 39) failed [ 575.991785][T10587] FAT-fs (loop4): Directory bread(block 40) failed [ 575.999285][T10587] FAT-fs (loop4): Directory bread(block 41) failed [ 576.259728][T10587] syz.4.2188: attempt to access beyond end of device [ 576.259728][T10587] loop4: rw=0, sector=4108, nr_sectors = 4 limit=128 [ 576.373931][T10587] FAT-fs (loop4): error, fat_free: invalid cluster chain (i_pos 196) [ 576.382631][T10587] FAT-fs (loop4): Filesystem has been set read-only [ 576.529237][T10589] Bluetooth: hci4: Opcode 0x0401 failed: -4 [ 577.838436][ T5812] Bluetooth: hci4: command 0x0406 tx timeout [ 579.113311][T10629] loop0: detected capacity change from 0 to 512 [ 579.176410][T10629] EXT4-fs: Ignoring removed mblk_io_submit option [ 579.231974][T10629] EXT4-fs (loop0): mounting ext3 file system using the ext4 subsystem [ 579.342425][T10629] EXT4-fs error (device loop0): ext4_orphan_get:1392: inode #15: comm syz.0.2209: iget: bad extended attribute block 1 [ 579.471922][T10629] EXT4-fs error (device loop0): ext4_orphan_get:1397: comm syz.0.2209: couldn't read orphan inode 15 (err -117) [ 579.548934][T10629] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 580.080157][ T5811] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 581.740552][T10667] netlink: 40 bytes leftover after parsing attributes in process `syz.3.2227'. [ 581.750428][T10667] netlink: 40 bytes leftover after parsing attributes in process `syz.3.2227'. [ 582.183093][T10675] BTRFS info: 'norecovery' is for compatibility only, recommended to use 'rescue=nologreplay' [ 583.208733][T10681] loop1: detected capacity change from 0 to 4096 [ 583.277760][T10681] ntfs3(loop1): Different NTFS sector size (4096) and media sector size (512). [ 583.570840][T10694] loop2: detected capacity change from 0 to 16 [ 583.592570][T10681] ntfs3(loop1): ino=19, mi_enum_attr [ 583.598942][T10681] ntfs3(loop1): Mark volume as dirty due to NTFS errors [ 583.633104][T10694] erofs (device loop2): mounted with root inode @ nid 36. [ 583.960575][T10691] loop4: detected capacity change from 0 to 4096 [ 584.323070][T10691] ntfs3(loop4): Failed to initialize $Extend/$ObjId. [ 584.467122][T10691] ntfs3(loop4): ino=1e, "file1" attr_set_size [ 584.510893][T10689] ntfs3(loop4): ino=1e, "file1" attr_set_size [ 584.988654][T10708] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2247'. [ 585.615941][T10718] netlink: 32 bytes leftover after parsing attributes in process `syz.2.2252'. [ 586.097255][T10725] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2256'. [ 586.107464][T10725] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2256'. [ 586.116829][T10725] netlink: 116 bytes leftover after parsing attributes in process `syz.4.2256'. [ 586.126351][T10725] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2256'. [ 586.494507][T10720] loop0: detected capacity change from 0 to 4096 [ 586.971114][T10733] cgroup: name respecified [ 587.460186][T10736] binfmt_misc: register: failed to install interpreter file ./file0 [ 589.408612][T10756] loop3: detected capacity change from 0 to 1764 [ 589.625859][T10756] iso9660: Corrupted directory entry in block 2 of inode 1920 [ 591.054347][T10785] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2283'. [ 591.056987][T10784] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2285'. [ 591.072999][T10784] netlink: 32 bytes leftover after parsing attributes in process `syz.4.2285'. [ 591.123782][T10788] netlink: 'syz.0.2286': attribute type 1 has an invalid length. [ 591.948974][T10797] loop4: detected capacity change from 0 to 1024 [ 592.145834][T10790] loop1: detected capacity change from 0 to 4096 [ 592.574318][T10790] ntfs3(loop1): ino=19, mi_enum_attr [ 592.580235][T10790] ntfs3(loop1): Mark volume as dirty due to NTFS errors [ 592.863937][T10790] ntfs3(loop1): try to read out of volume at offset 0x3fffffc7000 [ 592.873142][T10790] ntfs3(loop1): ino=21, The size of extended attributes must not exceed 64KiB [ 594.308463][ T2055] usb 4-1: new high-speed USB device number 6 using dummy_hcd [ 594.552918][ T2055] usb 4-1: config 0 has an invalid interface number: 156 but max is 0 [ 594.568503][ T2055] usb 4-1: config 0 has no interface number 0 [ 594.574937][ T2055] usb 4-1: config 0 interface 156 altsetting 0 endpoint 0x3 has an invalid bInterval 0, changing to 7 [ 594.589342][ T2055] usb 4-1: config 0 interface 156 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0 [ 594.599900][ T2055] usb 4-1: config 0 interface 156 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 594.613446][ T2055] usb 4-1: New USB device found, idVendor=abcd, idProduct=cdee, bcdDevice=d6.b9 [ 594.622981][ T2055] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 594.852685][ T2055] usb 4-1: config 0 descriptor?? [ 594.919723][ T2055] gspca_main: spca561-2.14.0 probing abcd:cdee [ 595.093234][ T2055] spca561 4-1:0.156: probe with driver spca561 failed with error -22 [ 595.104549][ T2055] usb 4-1: Quirk or no altset; falling back to MIDI 1.0 [ 595.112048][ T2055] usb 4-1: MIDIStreaming interface descriptor not found [ 595.429428][ T2055] usb 4-1: USB disconnect, device number 6 [ 595.465352][T10838] netlink: 130984 bytes leftover after parsing attributes in process `syz.0.2310'. [ 595.583472][T10840] IPv6: Can't replace route, no match found [ 596.576749][T10854] netlink: 'syz.0.2318': attribute type 10 has an invalid length. [ 596.585103][T10854] netlink: 40 bytes leftover after parsing attributes in process `syz.0.2318'. [ 596.594751][T10854] vlan0: entered promiscuous mode [ 596.608134][T10854] vlan0: entered allmulticast mode [ 596.615865][T10854] veth0_vlan: entered allmulticast mode [ 596.626419][T10854] bridge0: port 4(vlan0) entered blocking state [ 596.633367][T10854] bridge0: port 4(vlan0) entered disabled state [ 596.648317][T10854] bridge0: port 4(vlan0) entered blocking state [ 596.655141][T10854] bridge0: port 4(vlan0) entered forwarding state [ 596.809147][ T5999] udevd[5999]: error opening ATTR{/sys/devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.156/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 597.360578][T10863] netlink: 20 bytes leftover after parsing attributes in process `syz.0.2322'. [ 598.098265][ T30] audit: type=1326 audit(1755564733.163:123): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10871 comm="syz.0.2326" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f16539 code=0x7ffc0000 [ 598.120644][ C0] vkms_vblank_simulate: vblank timer overrun [ 598.127399][ T30] audit: type=1326 audit(1755564733.173:124): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10871 comm="syz.0.2326" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f16539 code=0x7ffc0000 [ 598.883198][T10884] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 601.048941][T10902] tc_dump_action: action bad kind [ 601.124762][T10901] loop3: detected capacity change from 0 to 512 [ 601.248544][T10901] EXT4-fs error (device loop3): ext4_orphan_get:1392: inode #15: comm syz.3.2338: iget: bad extended attribute block 1 [ 601.378364][T10901] EXT4-fs error (device loop3): ext4_orphan_get:1397: comm syz.3.2338: couldn't read orphan inode 15 (err -117) [ 601.480456][T10901] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 602.171645][ T5820] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 602.699131][T10926] netlink: 16 bytes leftover after parsing attributes in process `syz.3.2347'. [ 602.709438][T10926] netlink: 16 bytes leftover after parsing attributes in process `syz.3.2347'. [ 603.603785][T10942] netlink: 20 bytes leftover after parsing attributes in process `syz.0.2356'. [ 604.514590][T10956] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2364'. [ 604.811264][T10961] netlink: 'syz.4.2366': attribute type 21 has an invalid length. [ 604.819862][T10961] netlink: 144 bytes leftover after parsing attributes in process `syz.4.2366'. [ 605.252037][ T1286] ieee802154 phy0 wpan0: encryption failed: -22 [ 605.259447][ T1286] ieee802154 phy1 wpan1: encryption failed: -22 [ 606.109586][T10983] netlink: 100 bytes leftover after parsing attributes in process `syz.0.2375'. [ 606.119135][T10983] netlink: 'syz.0.2375': attribute type 2 has an invalid length. [ 606.127078][T10983] netlink: 'syz.0.2375': attribute type 1 has an invalid length. [ 606.140928][T10983] netlink: 20 bytes leftover after parsing attributes in process `syz.0.2375'. [ 607.447755][ T30] audit: type=1326 audit(1755564742.513:125): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11002 comm="syz.0.2387" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f16539 code=0x7ffc0000 [ 607.619610][ T30] audit: type=1326 audit(1755564742.603:126): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11002 comm="syz.0.2387" exe="/root/syz-executor" sig=0 arch=40000003 syscall=338 compat=1 ip=0xf7f16539 code=0x7ffc0000 [ 607.642612][ T30] audit: type=1326 audit(1755564742.603:127): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11002 comm="syz.0.2387" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f16539 code=0x7ffc0000 [ 607.665294][ T30] audit: type=1326 audit(1755564742.623:128): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11002 comm="syz.0.2387" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f16539 code=0x7ffc0000 [ 608.058481][ T30] audit: type=1326 audit(1755564743.033:129): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11004 comm="syz.4.2388" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ee539 code=0x7ffc0000 [ 608.090448][ T30] audit: type=1326 audit(1755564743.033:130): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11004 comm="syz.4.2388" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ee539 code=0x7ffc0000 [ 608.113061][ T30] audit: type=1326 audit(1755564743.103:131): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11004 comm="syz.4.2388" exe="/root/syz-executor" sig=0 arch=40000003 syscall=294 compat=1 ip=0xf70ee539 code=0x7ffc0000 [ 608.135779][ T30] audit: type=1326 audit(1755564743.133:132): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11004 comm="syz.4.2388" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ee539 code=0x7ffc0000 [ 608.159233][ T30] audit: type=1326 audit(1755564743.133:133): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11004 comm="syz.4.2388" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ee539 code=0x7ffc0000 [ 608.799680][T11015] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2393'. [ 608.961887][T11019] netlink: 'syz.3.2395': attribute type 1 has an invalid length. [ 608.970632][T11019] netlink: 168864 bytes leftover after parsing attributes in process `syz.3.2395'. [ 609.314995][T11023] netlink: 16 bytes leftover after parsing attributes in process `syz.2.2397'. [ 609.858372][T11031] loop1: detected capacity change from 0 to 64 [ 609.876820][T11030] CIFS: No dialect specified on mount. Default has changed to a more secure dialect, SMB2.1 or later (e.g. SMB3.1.1), from CIFS (SMB1). To use the less secure SMB1 dialect to access old servers which do not support SMB3.1.1 (or even SMB3 or SMB2.1) specify vers=1.0 on mount. [ 609.903791][T11030] CIFS mount error: No usable UNC path provided in device string! [ 609.903791][T11030] [ 609.915342][T11030] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string! [ 609.950395][T11031] Trying to free block not in datazone [ 610.951549][T11040] loop1: detected capacity change from 0 to 1764 [ 610.989129][T11025] loop0: detected capacity change from 0 to 8192 [ 611.213993][T11025] FAT-fs (loop0): error, clusters badly computed (1 != 0) [ 611.337215][T11045] netlink: 96 bytes leftover after parsing attributes in process `syz.2.2408'. [ 611.474072][T11047] ieee802154 phy0 wpan0: encryption failed: -22 [ 612.349991][T11056] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2412'. [ 612.968259][ T30] audit: type=1400 audit(1755564748.043:134): apparmor="DENIED" operation="change_profile" class="file" info="label not found" error=-2 profile="unconfined" name=262620FFFFFFFFFFFFFFFF pid=11063 comm="syz.2.2417" [ 613.340286][T11069] netlink: 'syz.4.2420': attribute type 21 has an invalid length. [ 613.348850][T11069] netlink: 156 bytes leftover after parsing attributes in process `syz.4.2420'. [ 613.358458][T11069] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2420'. [ 613.654616][T11073] netlink: 'syz.1.2421': attribute type 10 has an invalid length. [ 613.663150][T11073] netlink: 40 bytes leftover after parsing attributes in process `syz.1.2421'. [ 613.689401][T11073] batman_adv: batadv0: Adding interface: ipvlan0 [ 613.696015][T11073] batman_adv: batadv0: The MTU of interface ipvlan0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 613.724430][T11073] batman_adv: batadv0: Interface activated: ipvlan0 [ 616.515379][T11109] loop3: detected capacity change from 0 to 2048 [ 616.616197][T11116] loop4: detected capacity change from 0 to 512 [ 616.694197][T11118] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 616.815310][T11109] NILFS error (device loop3): nilfs_bmap_lookup_contig: broken bmap (inode number=16) [ 616.833309][T11109] Remounting filesystem read-only [ 616.841787][T11109] NILFS error (device loop3): nilfs_bmap_lookup_contig: broken bmap (inode number=16) [ 616.852384][T11109] NILFS error (device loop3): nilfs_bmap_lookup_contig: broken bmap (inode number=16) [ 616.859349][T11116] EXT4-fs error (device loop4): ext4_iget_extra_inode:5104: inode #15: comm syz.4.2444: corrupted in-inode xattr: invalid ea_ino [ 616.864812][T11109] NILFS error (device loop3): nilfs_bmap_lookup_contig: broken bmap (inode number=16) [ 616.889971][T11109] NILFS error (device loop3): nilfs_bmap_lookup_contig: broken bmap (inode number=16) [ 616.902268][T11109] NILFS error (device loop3): nilfs_bmap_lookup_contig: broken bmap (inode number=16) [ 616.912747][T11109] NILFS error (device loop3): nilfs_bmap_lookup_contig: broken bmap (inode number=16) [ 616.923216][T11109] NILFS error (device loop3): nilfs_bmap_lookup_contig: broken bmap (inode number=16) [ 616.933963][T11116] EXT4-fs error (device loop4): ext4_orphan_get:1397: comm syz.4.2444: couldn't read orphan inode 15 (err -117) [ 616.955225][T11109] NILFS error (device loop3): nilfs_bmap_lookup_contig: broken bmap (inode number=16) [ 616.966696][T11109] NILFS error (device loop3): nilfs_bmap_lookup_contig: broken bmap (inode number=16) [ 617.018558][ T30] audit: type=1800 audit(1755564752.063:135): pid=11109 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.2440" name="file2" dev="loop3" ino=16 res=0 errno=0 [ 617.025589][T11116] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 617.134313][T11122] netlink: 16 bytes leftover after parsing attributes in process `syz.1.2445'. [ 617.163850][T11124] program syz.0.2446 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 617.567373][ T5825] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 617.900473][T11128] : renamed from bond_slave_0 (while UP) [ 618.059294][T11133] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details. [ 618.298976][T11136] A link change request failed with some changes committed already. Interface team0 may have been left with an inconsistent configuration, please check. [ 618.770305][T11141] netlink: 'syz.1.2454': attribute type 10 has an invalid length. [ 618.779663][T11141] macvtap0: entered promiscuous mode [ 618.792810][T11141] batman_adv: batadv0: Adding interface: macvtap0 [ 618.800220][T11141] batman_adv: batadv0: The MTU of interface macvtap0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 618.826572][T11141] batman_adv: batadv0: Interface activated: macvtap0 [ 619.876133][T11152] netlink: 'syz.1.2460': attribute type 10 has an invalid length. [ 619.901022][T11152] team0: Port device virt_wifi0 added [ 620.101781][T11155] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2462'. [ 621.856979][T11175] vxcan2: entered promiscuous mode [ 621.863044][T11175] vxcan2: entered allmulticast mode [ 622.491494][T11182] netlink: 412 bytes leftover after parsing attributes in process `syz.1.2475'. [ 623.337455][T11190] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2478'. [ 623.347074][T11190] netlink: 60 bytes leftover after parsing attributes in process `syz.2.2478'. [ 623.616329][T11197] mmap: syz.4.2482 (11197): VmData 37376000 exceed data ulimit 3. Update limits or use boot option ignore_rlimit_data. [ 624.331895][T11204] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2485'. [ 626.148423][ T2055] usb 3-1: new high-speed USB device number 4 using dummy_hcd [ 626.296160][T11226] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2497'. [ 626.307552][T11226] netlink: 40 bytes leftover after parsing attributes in process `syz.4.2497'. [ 626.351842][T11228] netlink: 36 bytes leftover after parsing attributes in process `syz.1.2496'. [ 626.362239][T11228] netlink: 36 bytes leftover after parsing attributes in process `syz.1.2496'. [ 626.372202][T11228] netlink: 492 bytes leftover after parsing attributes in process `syz.1.2496'. [ 626.472424][ T2055] usb 3-1: New USB device found, idVendor=2770, idProduct=9052, bcdDevice=15.f5 [ 626.482031][ T2055] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 626.491175][ T2055] usb 3-1: Product: syz [ 626.495563][ T2055] usb 3-1: Manufacturer: syz [ 626.500534][ T2055] usb 3-1: SerialNumber: syz [ 626.634927][ T2055] usb 3-1: config 0 descriptor?? [ 626.732332][ T2055] gspca_main: sq905c-2.14.0 probing 2770:9052 [ 627.137038][ T2055] gspca_sq905c: sq905c_read: usb_control_msg failed (-71) [ 627.144816][ T2055] sq905c 3-1:0.0: Reading version command failed [ 627.152180][ T2055] sq905c 3-1:0.0: probe with driver sq905c failed with error -71 [ 627.223834][ T2055] usb 3-1: USB disconnect, device number 4 [ 627.249949][T11236] 9p: Unknown Cache mode or invalid value n [ 629.534494][T11264] bridge2: entered promiscuous mode [ 629.542440][T11264] bridge2: entered allmulticast mode [ 631.205097][T11287] trusted_key: encrypted_key: master key parameter 'user:' is invalid [ 631.421554][T11286] loop0: detected capacity change from 0 to 2048 [ 631.627065][T11291] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 631.728709][T11286] NILFS error (device loop0): nilfs_bmap_lookup_contig: broken bmap (inode number=16) [ 631.903362][T11286] Remounting filesystem read-only [ 631.910431][T11286] NILFS error (device loop0): nilfs_bmap_lookup_contig: broken bmap (inode number=16) [ 631.921086][T11286] NILFS error (device loop0): nilfs_bmap_lookup_contig: broken bmap (inode number=16) [ 631.933507][T11286] NILFS error (device loop0): nilfs_bmap_lookup_contig: broken bmap (inode number=16) [ 631.956094][T11286] NILFS error (device loop0): nilfs_bmap_lookup_contig: broken bmap (inode number=16) [ 631.971076][T11286] NILFS error (device loop0): nilfs_bmap_lookup_contig: broken bmap (inode number=16) [ 631.981663][T11286] NILFS error (device loop0): nilfs_bmap_lookup_contig: broken bmap (inode number=16) [ 631.992052][T11286] NILFS error (device loop0): nilfs_bmap_lookup_contig: broken bmap (inode number=16) [ 632.070462][T11286] NILFS error (device loop0): nilfs_bmap_lookup_contig: broken bmap (inode number=16) [ 632.081105][T11286] NILFS error (device loop0): nilfs_bmap_lookup_contig: broken bmap (inode number=16) [ 632.113988][ T30] audit: type=1800 audit(1755564767.173:136): pid=11286 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.2525" name="file2" dev="loop0" ino=16 res=0 errno=0 [ 633.793941][T11317] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2540'. [ 634.384503][T11325] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2543'. [ 636.353544][T11348] loop0: detected capacity change from 0 to 2048 [ 636.419783][T11341] Bluetooth: hci0: Opcode 0x0c03 failed: -4 [ 636.494119][T11348] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 638.060448][T11368] openvswitch: netlink: Actions may not be safe on all matching packets [ 638.700377][T11376] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2569'. [ 639.253203][T11384] netlink: 'syz.2.2573': attribute type 1 has an invalid length. [ 639.543845][T11388] netlink: 'syz.1.2575': attribute type 10 has an invalid length. [ 639.606790][T11388] team0: Cannot enslave team device to itself [ 640.434346][T11401] bridge3: entered promiscuous mode [ 640.442218][T11401] bridge3: entered allmulticast mode [ 640.595656][T11402] loop1: detected capacity change from 0 to 1024 [ 640.722303][T11402] EXT4-fs (loop1): stripe (3) is not aligned with cluster size (16), stripe is disabled [ 640.905130][T11402] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 641.036576][T11402] EXT4-fs error (device loop1): ext4_xattr_inode_iget:437: inode #11: comm syz.1.2582: missing EA_INODE flag [ 641.098233][T11402] EXT4-fs (loop1): Remounting filesystem read-only [ 641.521987][ T5815] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 642.388589][T11431] cgroup: noprefix used incorrectly [ 642.648617][T10208] usb 1-1: new high-speed USB device number 9 using dummy_hcd [ 642.706345][ T30] audit: type=1400 audit(1755564777.763:137): apparmor="DENIED" operation="change_hat" class="file" info="unconfined can not change_hat" error=-1 profile="unconfined" pid=11433 comm="syz.2.2597" [ 642.777547][T11437] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2598'. [ 642.851407][T10208] usb 1-1: Using ep0 maxpacket: 32 [ 642.874593][T10208] usb 1-1: config 0 has an invalid interface number: 2 but max is 0 [ 642.883256][T10208] usb 1-1: config 0 has no interface number 0 [ 642.889847][T10208] usb 1-1: config 0 interface 2 has no altsetting 0 [ 642.947081][T10208] usb 1-1: New USB device found, idVendor=086a, idProduct=0003, bcdDevice=f0.3f [ 642.957696][T10208] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 642.966131][T10208] usb 1-1: Product: syz [ 642.971675][T10208] usb 1-1: Manufacturer: syz [ 642.976509][T10208] usb 1-1: SerialNumber: syz [ 643.142836][T10208] usb 1-1: config 0 descriptor?? [ 643.312681][ T30] audit: type=1400 audit(1755564778.383:138): apparmor="DENIED" operation="stack_onexec" class="file" info="label not found" error=-2 profile="unconfined" name="#(%#{//" pid=11440 comm="syz.1.2600" [ 643.419007][T10208] usb 1-1: Quirk or no altset; falling back to MIDI 1.0 [ 643.534262][T10208] snd-usb-audio 1-1:0.2: probe with driver snd-usb-audio failed with error -2 [ 643.710983][ T2055] usb 1-1: USB disconnect, device number 9 [ 643.794735][ T5999] udevd[5999]: error opening ATTR{/sys/devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.2/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 643.842325][T11439] loop4: detected capacity change from 0 to 4096 [ 643.887417][T11439] ntfs3(loop4): Different NTFS sector size (1024) and media sector size (512). [ 644.089938][T11449] loop1: detected capacity change from 0 to 512 [ 644.144750][T11449] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 644.221202][T11439] ntfs3(loop4): Mark volume as dirty due to NTFS errors [ 644.251735][T11449] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 644.265408][T11449] ext4 filesystem being mounted at /516/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 644.443312][T11457] loop2: detected capacity change from 0 to 256 [ 644.491985][T11457] exfat: Deprecated parameter 'utf8' [ 644.518890][T11458] loop0: detected capacity change from 0 to 512 [ 644.582915][T11458] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 644.688575][T11457] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0x7b823c56, utbl_chksum : 0xe619d30d) [ 644.730750][T11458] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 644.746276][T11458] ext4 filesystem being mounted at /522/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 644.836036][ T5815] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 645.483548][T11466] netlink: 194488 bytes leftover after parsing attributes in process `syz.1.2610'. [ 645.561965][ T5811] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 647.257238][ T30] audit: type=1326 audit(1755564782.323:139): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11487 comm="syz.4.2621" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ee539 code=0x7ffc0000 [ 647.280296][ T30] audit: type=1326 audit(1755564782.323:140): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11487 comm="syz.4.2621" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ee539 code=0x7ffc0000 [ 647.303572][ T30] audit: type=1326 audit(1755564782.363:141): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11487 comm="syz.4.2621" exe="/root/syz-executor" sig=0 arch=40000003 syscall=340 compat=1 ip=0xf70ee539 code=0x7ffc0000 [ 647.328174][ T30] audit: type=1326 audit(1755564782.363:142): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11487 comm="syz.4.2621" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ee539 code=0x7ffc0000 [ 647.350860][ T30] audit: type=1326 audit(1755564782.363:143): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11487 comm="syz.4.2621" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ee539 code=0x7ffc0000 [ 648.345365][T11508] netlink: 'syz.0.2630': attribute type 1 has an invalid length. [ 648.354247][T11508] netlink: 224 bytes leftover after parsing attributes in process `syz.0.2630'. [ 650.770972][T11538] loop1: detected capacity change from 0 to 4096 [ 651.248855][T11538] ntfs3(loop1): Mark volume as dirty due to NTFS errors [ 651.549712][T11538] ntfs3(loop1): Failed to load $Extend (-22). [ 651.556087][T11538] ntfs3(loop1): Failed to initialize $Extend. [ 651.683582][T11561] netlink: 130984 bytes leftover after parsing attributes in process `syz.2.2658'. [ 652.393035][T11569] loop2: detected capacity change from 0 to 8 [ 652.466811][T11569] cramfs: empty filesystem [ 653.218416][T11582] loop3: detected capacity change from 0 to 256 [ 653.587763][T11582] FAT-fs (loop3): Directory bread(block 64) failed [ 653.594974][T11582] FAT-fs (loop3): Directory bread(block 65) failed [ 653.602785][T11582] FAT-fs (loop3): Directory bread(block 66) failed [ 653.610500][T11582] FAT-fs (loop3): Directory bread(block 67) failed [ 653.617442][T11582] FAT-fs (loop3): Directory bread(block 68) failed [ 653.624391][T11582] FAT-fs (loop3): Directory bread(block 69) failed [ 653.631908][T11582] FAT-fs (loop3): Directory bread(block 70) failed [ 653.638800][T11582] FAT-fs (loop3): Directory bread(block 71) failed [ 653.652852][T11582] FAT-fs (loop3): Directory bread(block 72) failed [ 653.661767][T11582] FAT-fs (loop3): Directory bread(block 73) failed [ 653.830120][ T30] audit: type=1326 audit(1755564788.893:144): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11588 comm="syz.0.2671" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f16539 code=0x7ffc0000 [ 653.854579][ T30] audit: type=1326 audit(1755564788.893:145): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11588 comm="syz.0.2671" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f16539 code=0x7ffc0000 [ 653.911220][T11593] netlink: 'syz.2.2672': attribute type 32 has an invalid length. [ 653.919688][T11593] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2672'. [ 653.929047][T11593] netlink: 'syz.2.2672': attribute type 32 has an invalid length. [ 653.944661][ T30] audit: type=1326 audit(1755564788.973:146): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11588 comm="syz.0.2671" exe="/root/syz-executor" sig=0 arch=40000003 syscall=27 compat=1 ip=0xf7f16539 code=0x7ffc0000 [ 653.968976][ T30] audit: type=1326 audit(1755564788.973:147): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11588 comm="syz.0.2671" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f16539 code=0x7ffc0000 [ 653.991881][ T30] audit: type=1326 audit(1755564788.973:148): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11588 comm="syz.0.2671" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f16539 code=0x7ffc0000 [ 655.470467][T11614] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2682'. [ 656.779905][T11628] netlink: 34 bytes leftover after parsing attributes in process `syz.2.2690'. [ 658.038201][ T2055] usb 1-1: new high-speed USB device number 10 using dummy_hcd [ 658.259993][ T2055] usb 1-1: Using ep0 maxpacket: 32 [ 658.279031][ T2055] usb 1-1: unable to get BOS descriptor or descriptor too short [ 658.342929][ T2055] usb 1-1: config 7 has an invalid interface number: 128 but max is 0 [ 658.352714][ T2055] usb 1-1: config 7 contains an unexpected descriptor of type 0x1, skipping [ 658.367211][ T2055] usb 1-1: config 7 has an invalid descriptor of length 0, skipping remainder of the config [ 658.379488][ T2055] usb 1-1: config 7 has no interface number 0 [ 658.385929][ T2055] usb 1-1: config 7 interface 128 altsetting 2 has an endpoint descriptor with address 0x17, changing to 0x7 [ 658.398099][ T2055] usb 1-1: config 7 interface 128 altsetting 2 bulk endpoint 0x7 has invalid maxpacket 32 [ 658.408646][ T2055] usb 1-1: config 7 interface 128 altsetting 2 endpoint 0x87 has an invalid bInterval 209, changing to 11 [ 658.420568][ T2055] usb 1-1: config 7 interface 128 altsetting 2 has 2 endpoint descriptors, different from the interface descriptor's value: 6 [ 658.434096][ T2055] usb 1-1: config 7 interface 128 has no altsetting 0 [ 658.472684][ T2055] usb 1-1: New USB device found, idVendor=6033, idProduct=4108, bcdDevice=cc.13 [ 658.482538][ T2055] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 658.491050][ T2055] usb 1-1: Product: syz [ 658.495434][ T2055] usb 1-1: Manufacturer: syz [ 658.500385][ T2055] usb 1-1: SerialNumber: syz [ 658.518536][T11648] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22 [ 658.822706][ T2055] usb 1-1: Quirk or no altset; falling back to MIDI 1.0 [ 658.830315][ T2055] usb 1-1: MIDIStreaming interface descriptor not found [ 659.040697][ T2055] usb 1-1: USB disconnect, device number 10 [ 661.101786][T11698] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2723'. [ 662.460020][ T5812] Bluetooth: hci3: unexpected event for opcode 0x200a [ 663.040002][T11733] netlink: 17 bytes leftover after parsing attributes in process `syz.2.2740'. [ 663.049865][T11733] netlink: zone id is out of range [ 663.055277][T11733] netlink: zone id is out of range [ 663.060926][T11733] netlink: zone id is out of range [ 663.072895][T11733] netlink: zone id is out of range [ 663.080368][T11733] netlink: zone id is out of range [ 663.085677][T11733] netlink: zone id is out of range [ 663.091108][T11733] netlink: zone id is out of range [ 663.096382][T11733] netlink: zone id is out of range [ 663.101850][T11733] netlink: zone id is out of range [ 663.107106][T11733] netlink: zone id is out of range [ 663.813779][T11744] netlink: 'syz.2.2746': attribute type 6 has an invalid length. [ 663.822008][T11744] netlink: 199836 bytes leftover after parsing attributes in process `syz.2.2746'. [ 663.876045][T11743] ALSA: mixer_oss: invalid OSS volume 'u' [ 664.049189][ T5999] udevd[5999]: error opening ATTR{/sys/devices/platform/dummy_hcd.0/usb1/1-1/1-1:7.128/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 664.796164][T11762] loop1: detected capacity change from 0 to 64 [ 664.983959][T11762] Trying to free block not in datazone [ 665.009784][T11762] minix_free_block (loop1:21): bit already cleared [ 665.553545][T11771] ipip0: entered promiscuous mode [ 666.664956][ T1286] ieee802154 phy0 wpan0: encryption failed: -22 [ 666.671968][ T1286] ieee802154 phy1 wpan1: encryption failed: -22 [ 666.829957][T11796] comedi comedi0: Minor 6980 is invalid! [ 667.010760][T11794] loop4: detected capacity change from 0 to 2048 [ 667.091280][T11794] UDF-fs: error (device loop4): udf_process_sequence: Primary Volume Descriptor not found! [ 667.210180][T11794] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 668.096295][T11806] loop0: detected capacity change from 0 to 4096 [ 668.263787][T11806] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 668.457824][T11814] loop4: detected capacity change from 0 to 4096 [ 668.627660][ T5811] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 669.476128][T11836] netlink: 'syz.1.2789': attribute type 24 has an invalid length. [ 669.668569][T10208] usb 4-1: new high-speed USB device number 7 using dummy_hcd [ 669.888743][T10208] usb 4-1: New USB device found, idVendor=0cf3, idProduct=9375, bcdDevice=1a.9e [ 669.898359][T10208] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 669.962534][T10208] usb 4-1: config 0 descriptor?? [ 670.397841][T10208] ath6kl: Failed to read usb control message: -71 [ 670.406942][T10208] ath6kl: Unable to read the bmi data from the device: -71 [ 670.414547][T10208] ath6kl: Unable to recv target info: -71 [ 670.439686][T10208] ath6kl: Failed to init ath6kl core: -71 [ 670.448108][T10208] ath6kl_usb 4-1:0.0: probe with driver ath6kl_usb failed with error -71 [ 670.498642][T10208] usb 4-1: USB disconnect, device number 7 [ 674.061297][T11911] loop2: detected capacity change from 0 to 764 [ 674.197149][T11911] Symlink component flag not implemented [ 674.203762][T11911] Symlink component flag not implemented (101) [ 674.255166][T11914] tmpfs: Bad value for 'size' [ 674.576434][T11919] loop4: detected capacity change from 0 to 256 [ 674.682129][T11919] exfat: Deprecated parameter 'utf8' [ 674.784558][T11922] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2829'. [ 674.821352][T11919] exFAT-fs (loop4): failed to load upcase table (idx : 0x00011ded, chksum : 0x9858084d, utbl_chksum : 0xe619d30d) [ 674.908905][T11925] netlink: 3540 bytes leftover after parsing attributes in process `syz.2.2830'. [ 675.119810][T11927] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2831'. [ 675.152116][T11927] ip6gre1: entered allmulticast mode [ 675.431691][T11933] netdevsim netdevsim2 netdevsim0: left promiscuous mode [ 675.440078][T11933] netdevsim netdevsim2 netdevsim0: entered allmulticast mode [ 675.449108][T11933] net_ratelimit: 75 callbacks suppressed [ 675.449226][T11933] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check. [ 675.854373][T11938] loop3: detected capacity change from 0 to 512 [ 676.032349][T11938] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 676.045954][T11938] ext4 filesystem being mounted at /565/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 676.084845][ T30] audit: type=1326 audit(1755564811.163:149): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11945 comm="syz.2.2839" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f38539 code=0x7ffc0000 [ 676.158680][ T30] audit: type=1326 audit(1755564811.233:150): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11945 comm="syz.2.2839" exe="/root/syz-executor" sig=0 arch=40000003 syscall=62 compat=1 ip=0xf7f38539 code=0x7ffc0000 [ 676.184959][ T30] audit: type=1326 audit(1755564811.233:151): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11945 comm="syz.2.2839" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f38539 code=0x7ffc0000 [ 676.207776][ T30] audit: type=1326 audit(1755564811.233:152): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11945 comm="syz.2.2839" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f38539 code=0x7ffc0000 [ 676.582728][ T5820] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 676.927415][T11954] loop2: detected capacity change from 0 to 1024 [ 677.087780][T11954] ===================================================== [ 677.096615][T11954] BUG: KMSAN: uninit-value in hfsplus_lookup+0x674/0xf70 [ 677.104234][T11954] hfsplus_lookup+0x674/0xf70 [ 677.109311][T11954] lookup_one_qstr_excl+0x23c/0x7a0 [ 677.114732][T11954] do_renameat2+0x827/0x1a50 [ 677.119736][T11954] __ia32_sys_renameat2+0x15d/0x210 [ 677.125194][T11954] ia32_sys_call+0x3490/0x4310 [ 677.130380][T11954] __do_fast_syscall_32+0xb0/0x150 [ 677.135756][T11954] do_fast_syscall_32+0x38/0x80 [ 677.141307][T11954] do_SYSENTER_32+0x1f/0x30 [ 677.146056][T11954] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 677.153477][T11954] [ 677.155910][T11954] Uninit was created at: [ 677.160780][T11954] __alloc_frozen_pages_noprof+0x689/0xf00 [ 677.166831][T11954] alloc_pages_mpol+0x328/0x860 [ 677.172106][T11954] alloc_frozen_pages_noprof+0xf7/0x200 [ 677.178026][T11954] allocate_slab+0x24d/0x1220 [ 677.182894][T11954] ___slab_alloc+0x1024/0x34e0 [ 677.188020][T11954] kmem_cache_alloc_lru_noprof+0x922/0xed0 [ 677.194079][T11954] hfsplus_alloc_inode+0x5a/0xd0 [ 677.202043][T11954] alloc_inode+0x8a/0x4a0 [ 677.206604][T11954] new_inode+0x39/0x460 [ 677.213012][T11954] hfsplus_new_inode+0x5e/0xb70 [ 677.218357][T11954] hfsplus_mknod+0xb8/0x560 [ 677.223078][T11954] hfsplus_mkdir+0x5a/0x80 [ 677.227742][T11954] vfs_mkdir+0x4ea/0x850 [ 677.232322][T11954] do_mkdirat+0x41a/0xf30 [ 677.236856][T11954] __ia32_sys_mkdirat+0xc1/0x140 [ 677.242306][T11954] ia32_sys_call+0x1951/0x4310 [ 677.247349][T11954] __do_fast_syscall_32+0xb0/0x150 [ 677.253078][T11954] do_fast_syscall_32+0x38/0x80 [ 677.258284][T11954] do_SYSENTER_32+0x1f/0x30 [ 677.263023][T11954] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 677.269727][T11954] [ 677.272270][T11954] CPU: 1 UID: 0 PID: 11954 Comm: syz.2.2843 Not tainted 6.17.0-rc2-syzkaller-00028-gbe48bcf004f9 #0 PREEMPT(none) [ 677.284737][T11954] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 677.295502][T11954] ===================================================== [ 677.303986][T11954] Disabling lock debugging due to kernel taint [ 677.310681][T11954] Kernel panic - not syncing: kmsan.panic set ... [ 677.317317][T11954] CPU: 1 UID: 0 PID: 11954 Comm: syz.2.2843 Tainted: G B 6.17.0-rc2-syzkaller-00028-gbe48bcf004f9 #0 PREEMPT(none) [ 677.331161][T11954] Tainted: [B]=BAD_PAGE [ 677.335428][T11954] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 677.345645][T11954] Call Trace: [ 677.349121][T11954] [ 677.352168][T11954] __dump_stack+0x26/0x30 [ 677.356742][T11954] dump_stack_lvl+0x53/0x270 [ 677.361532][T11954] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 677.367570][T11954] dump_stack+0x1e/0x25 [ 677.371937][T11954] vpanic+0x361/0xc50 [ 677.376118][T11954] panic+0x15d/0x160 [ 677.380263][T11954] kmsan_report+0x31c/0x320 [ 677.384995][T11954] ? __msan_warning+0x1b/0x30 [ 677.389902][T11954] ? hfsplus_lookup+0x674/0xf70 [ 677.394988][T11954] ? lookup_one_qstr_excl+0x23c/0x7a0 [ 677.400572][T11954] ? do_renameat2+0x827/0x1a50 [ 677.405567][T11954] ? __ia32_sys_renameat2+0x15d/0x210 [ 677.411141][T11954] ? ia32_sys_call+0x3490/0x4310 [ 677.416251][T11954] ? __do_fast_syscall_32+0xb0/0x150 [ 677.421747][T11954] ? do_fast_syscall_32+0x38/0x80 [ 677.426977][T11954] ? do_SYSENTER_32+0x1f/0x30 [ 677.431934][T11954] ? entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 677.438666][T11954] ? kmsan_get_metadata+0xfb/0x160 [ 677.443989][T11954] ? kmsan_internal_memmove_metadata+0x91/0x230 [ 677.450444][T11954] ? __msan_memcpy+0x108/0x1c0 [ 677.455424][T11954] ? hfsplus_bnode_read+0x6f8/0x990 [ 677.460835][T11954] ? kmsan_get_metadata+0xfb/0x160 [ 677.466161][T11954] ? kmsan_get_metadata+0xfb/0x160 [ 677.471485][T11954] __msan_warning+0x1b/0x30 [ 677.476167][T11954] hfsplus_lookup+0x674/0xf70 [ 677.481096][T11954] ? kmsan_get_metadata+0xfb/0x160 [ 677.486468][T11954] ? kmsan_get_metadata+0xfb/0x160 [ 677.491896][T11954] ? kmsan_internal_set_shadow_origin+0x79/0x110 [ 677.498418][T11954] ? kmsan_internal_unpoison_memory+0x14/0x20 [ 677.504739][T11954] ? _raw_spin_unlock+0x30/0x50 [ 677.509755][T11954] ? kmsan_get_metadata+0xfb/0x160 [ 677.515083][T11954] ? __pfx_hfsplus_lookup+0x10/0x10 [ 677.520531][T11954] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 677.526578][T11954] ? __pfx_hfsplus_lookup+0x10/0x10 [ 677.532004][T11954] lookup_one_qstr_excl+0x23c/0x7a0 [ 677.537364][T11954] ? kmsan_get_metadata+0xfb/0x160 [ 677.542688][T11954] do_renameat2+0x827/0x1a50 [ 677.547494][T11954] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 677.553593][T11954] __ia32_sys_renameat2+0x15d/0x210 [ 677.559062][T11954] ia32_sys_call+0x3490/0x4310 [ 677.564079][T11954] __do_fast_syscall_32+0xb0/0x150 [ 677.569413][T11954] ? irqentry_exit_to_user_mode+0x82/0xa0 [ 677.575376][T11954] do_fast_syscall_32+0x38/0x80 [ 677.580444][T11954] do_SYSENTER_32+0x1f/0x30 [ 677.585202][T11954] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 677.591818][T11954] RIP: 0023:0xf7f38539 [ 677.596038][T11954] Code: 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 [ 677.615858][T11954] RSP: 002b:00000000f545655c EFLAGS: 00000206 ORIG_RAX: 0000000000000161 [ 677.624440][T11954] RAX: ffffffffffffffda RBX: 00000000ffffff9c RCX: 00000000800007c0 [ 677.632543][T11954] RDX: 00000000ffffff9c RSI: 00000000800005c0 RDI: 0000000000000000 [ 677.640682][T11954] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 677.648854][T11954] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000 [ 677.657014][T11954] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 677.665160][T11954] [ 677.668820][T11954] Kernel Offset: disabled [ 677.673228][T11954] Rebooting in 86400 seconds..