last executing test programs: 3m13.47604778s ago: executing program 4 (id=890): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000040)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_JOIN_MESH(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)={0x28, r1, 0x203, 0x70bd26, 0x25dfdbf9, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MESH_CONFIG={0xc, 0x23, 0x0, 0x1, [@NL80211_MESHCONF_HWMP_MAX_PREQ_RETRIES={0x5, 0x8, 0x7}]}]}, 0x28}, 0x1, 0x0, 0x0, 0x400c004}, 0x4000) 3m12.578076904s ago: executing program 4 (id=893): r0 = socket$inet6_sctp(0xa, 0x5, 0x84) shutdown(r0, 0x0) getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f0000000000)={0x0, 0x1c, &(0x7f0000000240)=[@in6={0xa, 0x4e21, 0xfff, @private0, 0x9}]}, &(0x7f0000000300)=0x10) setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f00000000c0)={r1, @in={{0x2, 0x1, @empty}}, 0x0, 0x9, 0x0, 0x0, 0xce024d}, 0x9c) 3m11.659198137s ago: executing program 4 (id=898): r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/power/disk', 0x0, 0x0) r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/power/disk', 0x129a02, 0x0) fsetxattr$trusted_overlay_opaque(r0, &(0x7f0000000000), &(0x7f0000000040), 0x2, 0x3) sendfile(r1, r0, &(0x7f0000000080)=0xb, 0x8) 3m10.396386073s ago: executing program 4 (id=901): r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000480)={0x26, 'hash\x00', 0x0, 0x0, 'nhpoly1305-generic\x00'}, 0x58) r1 = accept4(r0, 0x0, 0x0, 0x0) recvmmsg$unix(r1, &(0x7f0000003140)=[{{0x0, 0x0, 0x0}}], 0x1, 0x2000, 0x0) 3m9.714083383s ago: executing program 4 (id=906): r0 = openat$dir(0xffffffffffffff9c, &(0x7f00000000c0)='.\x00', 0x0, 0x83) sendmsg$nl_route_sched_retired(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000000)=@newtaction={0xf0, 0x32, 0x205, 0x70bd2d, 0x25dfdbfc, {}, [{0xc9}]}, 0xf0}, 0x1, 0x0, 0x0, 0x85}, 0x8000) ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(r0, 0x40086602, &(0x7f0000000000)) mkdirat(0xffffffffffffff9c, &(0x7f0000000200)='./file0\x00', 0x100) 3m9.017855551s ago: executing program 4 (id=910): mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$tmpfs(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000400), 0x0, &(0x7f0000000180)=ANY=[@ANYBLOB='huge=always,mpol=interleave']) chdir(&(0x7f0000000240)='./file0\x00') openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuset.effective_cpus\x00', 0x275a, 0x0) 2m53.423044601s ago: executing program 32 (id=910): mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$tmpfs(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000400), 0x0, &(0x7f0000000180)=ANY=[@ANYBLOB='huge=always,mpol=interleave']) chdir(&(0x7f0000000240)='./file0\x00') openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuset.effective_cpus\x00', 0x275a, 0x0) 16.313800055s ago: executing program 0 (id=1590): syz_mount_image$exfat(&(0x7f00000003c0), &(0x7f0000000240)='./file0\x00', 0x3000050, &(0x7f0000000600)=ANY=[], 0x2, 0x14fe, &(0x7f0000003680)="$eJzs3Au0ztXWMPA511p/NklPkvuaa/55kssiSXJJSCRJkiS5JSRJkoTEJrckJCH3JPeQ3GIn9/st9yQ5kiQJCUnWN3Q6n/e8nfftnO+c7/V9Z8/fGGvsNff/mfNZa889nv9ljL2/7Ti4av1qlesyM/xT8M9fUgEgBQD6AcA1ABABQKlspbIBDoNMGlP/uTcR/1oPTbvSKxBXkvQ/fZP+p2/S//RN+p++Sf/TN+l/+ib9T9+k/0KkZ1un575WRvod/3PP/0Ge//8/R87//0YOFxvz5fpi13f6B1Kk/+mb9D99k/6nb9L/9E36n75J///NRQCV/pvD0v/0TfovRHp2pZ8/y7iy40r//gkhhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGESB/OhcsMAPxlfqXXJYQQQgghhBBCiH+dkPFKr0AIIYQQQgghhBD/9yEo0GAgggyQEVIgE2SGqyALXA1Z4RpIwLWQDa6D7HA95ICckAtyQx7IC/nAAoEDhhjyQwFIwg1QEG6EQlAYikBR8FAMisNNUAJuhpJwC5SCW6E03AZloCyUg/JwO1SAO6AiVILKcCdUgbugKlSDu6E63AM14F6oCfdBLbgfasMDUAcehLrwENSDh6E+PAIN4FFoCI2gMTSBpv9H+S9CV3gJukF3SIUe0BNehl7QG/pAX+gHr0B/eBUGwGswEAbBYHgdhsAbMBTehGEwHEbAWzASRsFoGANjYRyMh7dhArwDE+FdmASTYQpMhWkwHWbAezATZsFseB/mwAcwF+bBfFgAC+FDWASLIQ0+giXwMSyFZbAcVsBKWAWrYQ2shXWwHjbARtgEm2ELbIVPYBtshx2wE3bBbtgDn8Je+Az2weewH774B/PP/qf8TggIqFChQYMZMAOmYApmxsyYBbNgVsyKCUxgNsyG2TE75sAcmAtzYR7Mg/kwHxISMjLmx/yYxCQWxIJYCAthESyCHj0Wx+JYAm/GklgSS2EpLI2lsQyWxbJYHstjBayAFbEiVsbKWAWrYFWsinfj3XgP1sAaWBNrYi2shbWxNtbBOlgX62I9rIf1sT42wAbYEBtiY2yMTbEpNsNm2BybY0tsia2wFbbG1tgG22BbbIvtsB22x/bYATtgR+yInbAzdsYX8UV8CV/C7lhF9cCe2BN7YS/sg32xL76C/fFVfBVfw4E4CAfj6/g6voFD8QwOw+E4AkdgBTUKR+MYZDUOx+N4nIATcCJOxEk4GSfjVJyG03EGzsCZOAtn4fs4Bz/AD3AezsMFuBAX4iJcjGmYhkvwLC7FZbgcV+BKXIUrcQ2uxTW4HjfgetyEm3ALbsFP8BPcjttxJ+7E3bgbP8VP8TP8DAfiftyPB/AAHsSDeAgP4WE8jEfwCB7Fo3gMj+FxPI4n8CSewpN4Gk/jGTyL5/AcnsfzeAGfz/N1vd2F1w0EdYlRRmVQGVSKSlGZVWaVRWVRWVVWlVAJlU1lU9lVdpVD5VC5VC6VR+VR+VQ+RYoUq1jlV/lVUiVVQVVQFVKFVBFVRHnlVXFVXJVQJVRJVVKVUreq0uo2VUaVVS18eVVeVVAtfUVVSVVWlVUVdZeqqqqpaqq6qq5qqBqqpqqpaqlaqrZ6QNVRPbAPPqQudaa+GoQN1GBsqBqpxqqJegMfU83UUGyuWqiW6gk1HIdha9XMt1FPq7ZqNLZTz6ox+JzqoMZhR/WC6qQ6qy7qRdVVNffdMvz2EaimYi/VW/VRfdVMvEtd6lhV9ZoaqAapwep1tQDfUEPVm2qYGq5GqLfUSDVKjVZj1Fg1To1Xb6sJ6h01Ub2rJqnJaoqaqqap6WqGek/NVLPUbPW+mqM+UHPVPDVfLVAL1YdqkVqs0tRHaon6WC1Vy9RytUKtVKvUarVGrVXr1Hq1QW1Um9RmtUVtVZ+obWq72qF2ql1qt9qjPlV71Wdqn/pc7VdfqAPqT+qg+lIdUl+pw+prdUR9o46qb9Ux9Z06rr5XJ9RJdUr9oE6rH9UZdVadUz+p8+pndUH9oi6qoECjVlproyOdQWfUKTqTzqyv0ln01TqrvkYn9LU6m75OZ9fX6xw6p86lc+s8Oq/Op60m7TTrWOfXBXRS36AL6ht1IV1YF9FFtdfFdHF9ky6hb9Yl9S26lL5Vl9a36TK6rC6ny+vbdQV9h66oK+nK+k5dRd+lq+pq+m5dXd+ja+h7dU19n66l79e19QO6jn5Q19UP6Xr6YV1fP6Ib6Ed1Q91IN9ZNdFP9mG6mH9fNdQvdUj+hW+kndWv9lG6jn9Zt9TO6nX5Wt9fP6Q76ed1Rv6A76c66i/5FX9RBd9PddaruoXvql3Uv3Vv30X11P/2K7q9f1QP0a3qgHqQH69f1EP2GHqrf1MP0cD1Cv6VH6lF6tB6jx+pxerx+W0/Q7+iJ+l09SU/WU/RUPU1P131+qzT778h/52/kD/j13bforfoTvU1v1zv0Tr1L79Z79B69V+/V+/Q+vV/v1wf0AX1QH9SH9CF9WB/WR/QRfVQf1cf0MX1cH9cn9En9k/5Bn9Y/6jP6rD6rf9Ln9Xl94befARg0ymhjTGQymIwmxWQymc1VJou52mQ115iEudZkM9eZ7OZ6k8PkNLlMbpPH5DX5jDVknGETm/ymgEmaG0xBc6MpZAqbIqao8aaYKW5u+qfz/2h9TU1T08w0M81Nc9PStDStTCvT2rQ2bUwb09a0Ne1MO9PetDcdTAfT0XQ0nUwn08V0MV1NV9PNdDOpJtX0NC+bXqa36WP6mn7mFdPf9DcDzAAz0Aw0g81gM8QMMUPNUDPMDDMjzAgz0ow0o81oM9aMNePNeDPBTDATzUQzyUwyU8wUM81MMzPMDDPTzDSzzWwzx8wxc81cM9/MNwvNQrPILDJpJs0sMUvMUrPMLDMrzAqzyqwya8was86sMxvMBrPJbDJLzVaz1Wwz28wOs8PsMrvMHrPH7DV7zT6zz+w3+80Bc8AcNAfNIXPIHDaHzRFzxBw1R80xc8wcN8fNCXPCnDKnzGlz2pwxZ8w5c86cN+fNBXPBXDQXL132RSpSkYlMlCHKEKVEKVHmKHOUJcoSZY2yRokoEWWLskXZo+ujHFHOKFeUO8oT5Y1SwUYUuYijOMofFYiS0Q1RwejGqFBUOCoSFY18VCwqHt0UlYhujkpGt0Sloluj0tFtUZmobFQuKh/dHlWI7ogqRpWiytGdUZXorqhqVC26O6oe3RPViO6Nakb3RbWi+6Pa0QNRnejBqG70UFQvejiqHz0SNYgejRpGjaLGUZOo6b+0fghncj7uu9nuNtX2sD3ty7aX7W372L62n33F9rev2gH2NTvQDrKD7et2iH3DDrVv2mF2uB1h37Ij7Sg72o6xY+04O96+bSfYd+xE+66dZCfbKXaqnWan2xn2PTvTzrKz7ft2jv3AzrXz7Hy7wC60H9pFdrFNsx/ZJfZju9Qus8vtCrvSrrKr7Rq71q6z6+0Gu9FuspvtFrvVfmK32e12h91pd9nddo/91O61n9l99nO7335hD9g/2YP2S3vIfmUP26/tEfuNPWq/tcfsd/a4/d6esCftKfuDPW1/tGfsWXvO/mTP25/tBfuLvWjDpYv7S6d3MmQoA2WgFEqhzJSZslAWykpZKUEJykbZKDtlpxyUg3JRLspDeSgf5aNLmJjyU35KUpIKUkEqRIWoCBUhT56KU3EqQSWoJJWkUlSKSlNpKkNlqByVo9vpdrqD7qBKVInupDvpLrqLqlE1qk7VqQbVoJpUk2pRLapNtakO1aG6VJfqUT2qT/WpATWghtSQGlNjakpNqRk1o+bUnFpSS2pFrag1taY21IbaUltqR+2oPbWnDtSBOlJH6kSdqAt1oa7UlbpRN0qlVOpJPakX9aI+1If6UT/qT/1pAA2ggTSQBtNgGkJDaCgNpWE0nEbQWzSSRtFoGkNjaRyNp/E0gSbQRJpIk2gSTaEpNI2m0QyaQTNpJs2m2TSH5tBcmkvzaT4tpIW0iBZRGqXRElpCS2kpLafltJJW0mpaTWtpLa2n9bSRNtJm2kxbaStto220g3bQLtpFe2gP7aW9tI/20X7aTwfoAB2kg3SIDtFhOkxH6AgdpaN0jI7RcTpOJ+gEnaJTdJpO0xk6Q+foHJ2nn+kC/UIXKVCKU5DZXeWyuKtdVneNS3GZ3KU4AoBLcS6X2+VxeV0+Z10Ol/OvYnLOFXKFXRFX1HlXzBV3N/0uLuPKunKuvLvdVXB3uIq/i6u7e1wNd6+r6e5z1dzdfxXXcve72u4RV8c96uq6Rq6ea+Lqu0dcA/eoa+gaucauiWvlnnSt3VOujXvatXXP/C5e5Ba7tW6dW+82uL3uM3fO/eSOum/defez6+a6u37uFdffveoGuNfcQDfod/EI95Yb6Ua50W6MG+vG/S6e4qa6aW66m+HeczPdrN/FC92Hbo5Lc3PdPDffLfg1vrSmNPeRW+I+dkvdMrfcrXAr3Sq32q3532td4Ta5zW6L2+M+ddvcdrfD7XS73O5f40v72Oc+d/vdF+6I+8YddF+6Q+6YO+y+/jW+tL9j7jt33H3vTriT7pT7wZ12P7oz7uyv+7+09x/cL+6iCw4YWbFmwxFn4Iycwpk4M1/FWfhqzsrXcIKv5Wx8HWfn6zkH5+RcnJvzcF7Ox5aJHTPHnJ8LcJJv4IJ8IxfiwlyEi7LnYlycb+ISfDOX5Fu4FN/Kpfk2LsNluRyX59u5At/BFbkSV+Y7uUoIXJWr8d1cne/hGnwv1+T7uBbfz7X5Aa7DD3Jdfojr8cNcnx/hBvwoN+RG3JibcFN+jJvx49ycW3BLfoJb8ZPcmp/iNvw0t+VnuB0/y+35Oe7Az3NHfoE7cWfuwi9yV36Ju3F3TuUe3JNf5l7cm/twX+7Hr3B/fpUH8Gs8kAfxYH6dh/AbPJTf5GE8nEfwWzySR/FoHsNjeRyP57d5Ar/DE/ldnsSTeQpP5Wk8nWfwezyTZ/Fsfp/n8Ac8l+fxfF7AC/lDXsSLOY0/4iX8MS/lZbycV/BKXsWreQ2v5XW8njfwRt7Em3kLb+VPeBtv5x28k3fxbt7Dn/Je/oz38ee8n7/gA/wnPshf8iH+ig/z13yEv+Gj/C0f4+/4OH/PJ/gkn+If+DT/yGf4LJ/jn/g8/8wX+Be+yIEhxljFOjZxFGeIM8YpcaY4c3xVnCW+Os4aXxMn4mvjbPF1cfb4+jhHnDPOFeeO88R543yxjSl2McdxnD8uECfjG+KC8Y1xobhwXCQuGvu4WFw8vikuEd8cl4xviUvFt8al49viMnHZ+JH7yse3xxXiO+KKcaW4cnxnXCW+K64aV4vvjqvH98Q14nvjmvF9ccn4/rh2/EBcJ34wrhs/FNeLH47rx4/EDeJH44Zxo7hx3CRuGj8WN4sfj5vHLeKW8RNxq/jJuHX8VNwmfjpuGz/zh8dT4x5xz/jl+OU4hHv1/OSC5MLkh8lFycXJtORHySXJj5NLk8uSy5MrkiuTq5Krk2uSa5PrkuuTG5Ibk5uSm5NbkiFUywgevfLaGx/5DD6jT/GZfGZ/lc/ir/ZZ/TU+4a/12fx1Pru/3ufwOX0un9vn8Xl9Pm89eefZxz6/L+CT/gZf0N/oC/nCvogv6r0v5ov7Jr6pb+qb+cd9c9/Ct/RP+Cf8k/5J/5R/yj/t2/pnfDv/rG/vn/Md/PP+ef+C7+Q7+y7+Rd/Vv+S7+e4+1af6nr6n7+V7+T6+j+/n+/n+vr8f4Af4gX6gH+wH+yF+iB/qh/phfpgf4Uf4kX6kH+1H+7F+rB/vx/sJfoKf6Cf6SX6Sn+Kn+Gl+mp/hZ/iZfqaf7Wf7OYXm+Ll+rp/v5/uFfqFf5Bf5NJ/ml/glfqlf6pf75X6lX+lX+9V+rV/r1/v1fqPf6Df7zX6r3+q3+W1+h9/hd/ldfo/f4/f6vX6f3+f3+/3+gD/gD/qD/pD/yh/2X/sj/ht/1H/rj/nv/HH/vT/hT/pT/gd/2v/oz/iz/pz/yZ/3P/sL/hd/0Qc/PvF2YkLincTExLuJSYnJiSmJqYlpiemJGYn3EjMTsxKzE+8n5iQ+SMxNzEvMTyxILEx8mFiUWJxIS3yUWJL4OLE0sSyxPLEisTKxKhFC3m1xyB8KhGS4IRQMN4ZCoXAoEooGH4qF4uGmUCLcHEqGW0KpcGsoHW4LZULZUC48GhqGRqFxaBKahsdCs/B4aB5ahJbhidAqPBlah6dCm/B0aBueCe3Cs6F9eC50CM+HjuGF0Cl0Dl3Ci6FreCl0C91DaugReoaXQ6/QO/QJfUO/8EroH14NA8JrYWAYFAaH18OQ8EYYGt4Mw8LwMCK8FUaGUWF0GBPGhnFhfHg7TAjvhInh3TApTA5TwtQwLUwPM8J7YWaYFWaH98Oc8EGYG+aF+WFBWBg+DIvC4pAWPgpLwsdhaVgWlocVYWVYFVaHNWFtWBfWhw1hY9gUNoctYWv4JGwL28OOsDPsCrvDnvBp2Bs+C/vC52F/+CIcCH8KB8OX4VD4KhwOX4cj4ZtwNHwbjoXvwvHwfTgRToZT4YdwOvwYzoSz4Vz4KZwPP4cL4ZdwUf5mTQghhBDi76L/4HiPv/G9DACgfpv3BICrt+c+/J9rbszx53lvladVAgCe7t7xob+MKlVSU1N/e+1SDVGBeQCQ+Ov6f4mXQUt4EtpACyjxN9fXW3U+z39QP3krQOb/kJMCl+PL9W/+L+o/9sSIRaXjc9n+m/rzAAoVuJyTCS7Hl+uX/C/q52z2B+vP9OV4gOb/IScLXI4v1y8Oj8Mz0OavXimEEEIIIYQQQvxZb1Wu/R/dP1+6P89jLudkhMvxH92fCyGEEEIIIYQQ4sp7rnOXpx5r06ZF+79vgr89F/jHsmQiE5n8fza50p9MQgghhBBCiH+1yxf9V3olQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCFE+vU/8e/ErvQehRBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCiCvtfwUAAP//luw5aQ==") chdir(&(0x7f0000000200)='./file0\x00') truncate(&(0x7f0000000040)='./file0\x00', 0x1b1c) openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x42, 0x0) 15.055768316s ago: executing program 0 (id=1596): write$uinput_user_dev(0xffffffffffffffff, &(0x7f0000000400)={'syz0\x00', {0x7, 0x4, 0x6, 0xfffa}, 0x1d, [0x6, 0xc95a, 0xfffffff3, 0x6, 0x7f, 0x2, 0x1, 0x7f, 0x6, 0x4d, 0xfffffff2, 0x5f, 0xa, 0xfffffffa, 0xffff2d33, 0x1dd2, 0x6, 0x7, 0x0, 0x80000000, 0x4, 0x7, 0x3, 0x3c5b, 0x1, 0x24, 0xffffffff, 0xfffffffe, 0x1f461e2c, 0x2, 0xe661, 0x4, 0x3, 0x3, 0x107fff, 0x4c74, 0xfbf5, 0x0, 0xb, 0xa, 0x0, 0x71, 0x7, 0x2000007, 0x103, 0x0, 0x5, 0x3c, 0x91, 0x6, 0x6, 0x3, 0x4, 0x4, 0x8, 0x0, 0x7f, 0x0, 0x5, 0x6, 0x8, 0x4, 0x1, 0x40], [0x10000007, 0xffff, 0x12f, 0x8000, 0x10, 0x8, 0x129432e6, 0xcb, 0xf9, 0xd, 0x2bf, 0x6c9, 0xfffff000, 0xfffffffe, 0x8, 0x0, 0xb, 0x5, 0x2f, 0xe, 0x312, 0x78, 0xea4, 0xa, 0x4, 0x0, 0x8000, 0x9, 0x400, 0x1, 0x6, 0xfffffffd, 0xff, 0x1005, 0x801, 0x8, 0x4, 0x0, 0x104, 0x2, 0x8, 0x4, 0x9, 0x8, 0x9, 0x6, 0x5, 0x0, 0x1, 0x8000, 0xffff, 0x2, 0x83, 0x9, 0x5, 0x10003, 0x4, 0x1, 0x7, 0xd, 0x9, 0x48c93690, 0x2, 0xff], [0x7, 0x4, 0x0, 0x64e, 0xfffffdfe, 0x7fffffff, 0x8d2, 0x9, 0x387d, 0x7fff, 0x0, 0x5, 0xb, 0x4, 0x5, 0x5, 0x0, 0x1ef, 0x5, 0x8, 0x86, 0x3, 0x10000009, 0x3e7, 0xb, 0x5, 0x2, 0x80002, 0xf, 0x8, 0x4, 0x6d01, 0x5, 0x3b, 0x3, 0x200, 0x80, 0x3, 0x4, 0x2, 0x0, 0xa2, 0x7, 0x53cf697b, 0x20005, 0x6, 0x54fe12d2, 0xbf, 0x200, 0x3, 0x400002, 0xfffffff9, 0x0, 0x6, 0x5, 0x0, 0x6, 0xfffffffb, 0x120000, 0x3, 0x6, 0x9, 0x2000008, 0x3], [0x9, 0xbb31, 0x3, 0xb, 0x5, 0x938, 0x6, 0x6, 0xfffffffd, 0x5, 0xce5, 0x1fd, 0x6, 0x5, 0x5, 0x40000003, 0x6, 0x10000, 0x6, 0x7fff, 0x8ffff, 0xa620, 0x2, 0x5, 0x1, 0x5, 0xffffffff, 0x60a7, 0x6, 0x5, 0xffffffff, 0x7ffffffb, 0x5, 0x8, 0xc8, 0x37, 0x3, 0x80ffff, 0x200003, 0x5, 0x80000000, 0x9602, 0xa, 0x2, 0x4, 0x10, 0x1, 0x10000, 0x5, 0x8, 0x2b91, 0xa1f, 0x8, 0xf, 0x40000001, 0x6c1b, 0x3, 0x8, 0x5, 0xb1c, 0x1, 0x200, 0xffff3441, 0xfff]}, 0x45c) openat$mice(0xffffffffffffff9c, &(0x7f0000000080), 0x0) r0 = syz_open_dev$evdev(&(0x7f0000000000), 0x3, 0x822b01) write$char_usb(r0, &(0x7f0000000040)="e2", 0x918) 14.315964086s ago: executing program 0 (id=1600): r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000001f40)={&(0x7f00000004c0)=@updpolicy={0xfc, 0x19, 0x1, 0x0, 0x25dfdbfe, {{@in6=@rand_addr=' \x01\x00', @in=@local, 0x0, 0x0, 0x0, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}, {0x0, 0xa9, 0x0, 0x0, 0x0, 0xffffffffffffffff}, {0x0, 0xa00, 0x40800000000000, 0x800000000000000}}, [@tmpl={0x44, 0x5, [{{@in=@local, 0x0, 0x3c}, 0x0, @in=@broadcast, 0x0, 0x0, 0x3}]}]}, 0xfc}}, 0x0) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r1, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={&(0x7f00000005c0)=@migrate={0xbc, 0x21, 0x1, 0x0, 0x0, {{@in=@broadcast, @in6=@private2, 0x0, 0x0, 0x0, 0x0, 0xa, 0x80}}, [@migrate={0x50, 0x11, [{@in=@loopback, @in=@private=0xa010100, @in=@private=0xa010100, @in=@rand_addr=0x64010100, 0x3c, 0x0, 0x0, 0x0, 0xa, 0x2}]}, @encap={0x1c, 0x4, {0x2, 0x4e24, 0x4e23, @in6=@private1}}]}, 0xbc}}, 0x0) 13.53806579s ago: executing program 0 (id=1605): syz_mount_image$erofs(&(0x7f0000000340), &(0x7f0000000580)='./file1\x00', 0x2000000, &(0x7f00000004c0)=ANY=[], 0x6, 0x229, &(0x7f00000005c0)="$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") mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000180), 0x1204001, &(0x7f00000011c0)={[{@lowerdir={'lowerdir', 0x3d, '.'}, 0x3a}], [], 0x2f}) chdir(&(0x7f0000000040)='./file0\x00') getxattr(&(0x7f0000000040)='./file1\x00', &(0x7f0000000000)=@random={'user.', 'overlay\x00'}, 0x0, 0x0) 12.727452524s ago: executing program 0 (id=1609): mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2, 0x31, 0xffffffffffffffff, 0x0) unshare(0x24040400) r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000340)='cgroup.controllers\x00', 0x275a, 0x0) cachestat(r0, &(0x7f0000000240)={0x3, 0x2}, &(0x7f000009de80), 0x0) 11.721195842s ago: executing program 0 (id=1611): r0 = socket$can_j1939(0x1d, 0x2, 0x7) ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000000)={'vcan0\x00', 0x0}) bind$can_j1939(r0, &(0x7f00000000c0)={0x1d, r1}, 0x18) sendmmsg(r0, &(0x7f0000000f80)=[{{&(0x7f0000000a80)=@can={0x1d, r1}, 0x80, &(0x7f0000000580)=[{0x0}, {&(0x7f0000001dc0)="d6", 0x1}], 0x2}}], 0x1, 0x60000800) 9.44067186s ago: executing program 33 (id=1611): r0 = socket$can_j1939(0x1d, 0x2, 0x7) ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000000)={'vcan0\x00', 0x0}) bind$can_j1939(r0, &(0x7f00000000c0)={0x1d, r1}, 0x18) sendmmsg(r0, &(0x7f0000000f80)=[{{&(0x7f0000000a80)=@can={0x1d, r1}, 0x80, &(0x7f0000000580)=[{0x0}, {&(0x7f0000001dc0)="d6", 0x1}], 0x2}}], 0x1, 0x60000800) 7.50406604s ago: executing program 2 (id=1625): r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000004002, 0x0) io_setup(0x222, &(0x7f0000000180)=0x0) r2 = eventfd2(0x1, 0x80800) io_submit(r1, 0x1, &(0x7f00000005c0)=[&(0x7f0000000540)={0x0, 0x0, 0x0, 0x0, 0xffff, r0, &(0x7f0000000a00)="1c73de19da4e24a4be5c3011d88efffbb251589a5bef61f451a747474f315938cc426a841b78d07b04cc6f2d276323ea48a6fd1c0ba66f5055239df5a21b234315694fd58fe32aeaa543e5fe08ccdf3e689caa8cedec8010f8bb8c59eaa1ecbf0f6f66afde88c010b3138095b6a0116af9c9011f03cc24e087286f2553198568c0aea639920383723c00002839b5dcb5ecf2eb92eeb24271354e1719e92347b792d0402fb04bbbf78fbebbf4b4832385561e1010dd612da55e8f738b13288b548d333c1d174ade527cafb3fc6576c16cd2e71f68286e28d5d8a17ef63d253bc56ce36b8d4aef6c0a34d8b9463ce4535f9c1700a5bf7b0f217ae63d3d377ddbcf7d4dd2f3f8f08de60c87b1e07487cae176e2f76ea307fa1693d84328c7f751d6d997555964813b103ea44b6e2e8bcc09609c25e5d1e0f174c44dfed19aa2fc6e6a60c589909709ff6b1a8e3c7462427d11469f81fa4d9a69ee39b8f3824889f3ee0c5838a22832193d9f42bfcff8f1990746da71c109c82f51aaffbc9b33b03fe4993f4bfb59461c5a2e13514072283677447793cfe1e7bf5b48416b80a7e18e22cb13e0370f7bb9bf952c4c5355dbb8fe0d912f88d743c536db4b306075c2dcd59d602e75bb159f71e4f11192631fc338203c136c9efc5f05bf94d2fee1a6ad20f2c7e834e5be49ebedde2d9735f46eb08c6537d24f3f06589a4597f2d9378f", 0x200, 0x200, 0x0, 0x1, r2}]) 6.807420815s ago: executing program 2 (id=1628): bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, &(0x7f0000000080)='syzkaller\x00', 0x6, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5) r0 = socket$pppoe(0x18, 0x1, 0x0) connect$pppoe(r0, &(0x7f0000000080)={0x18, 0x0, {0xfffe, @local, 'veth1_to_team\x00'}}, 0x1e) 6.175221835s ago: executing program 2 (id=1632): r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_int(r0, 0x29, 0x8, &(0x7f0000000380)=0xffff7b6e, 0x4) setsockopt$inet6_int(r0, 0x29, 0x2, &(0x7f00000001c0)=0x7, 0x4) getsockopt$inet6_buf(r0, 0x29, 0x6, &(0x7f00000002c0)=""/14, &(0x7f0000000240)=0xffffffffffffffd2) 5.463885643s ago: executing program 2 (id=1635): mmap(&(0x7f0000001000/0xc00000)=nil, 0xc00000, 0x4000002, 0x3032, 0xffffffffffffffff, 0x2a1cf000) mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2, 0x31, 0xffffffffffffffff, 0x0) remap_file_pages(&(0x7f0000031000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0) mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x4, 0x0, 0x0, 0x2) 5.392246173s ago: executing program 3 (id=1636): syz_io_uring_setup(0x497, &(0x7f0000000180)={0x0, 0x14885, 0x10000, 0x4, 0x1d}, 0x0, 0x0) r0 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000040), 0x8002, 0x0) pselect6(0x40, &(0x7f0000000100)={0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xfffffffffffffffd, 0xffffffffffffffff, 0x0, 0xfffffffffffffffd}, 0x0, &(0x7f0000000000)={0x1f, 0x0, 0xffff, 0x0, 0x4, 0x1, 0x1}, 0x0, 0x0) write$P9_RSTATu(r0, &(0x7f00000004c0)=ANY=[@ANYBLOB="930200007d00000005f0000000000000000000000000000000000000000000000000000000000000000000000000000000001f00206e6f6465767b6376666f7892ffffff8102000000000031ffcebc920000003800704a86cec602007dfa673effeb09b5351f5bde05f7"], 0x232) 4.51383723s ago: executing program 5 (id=1640): munmap(&(0x7f0000002000/0x1000)=nil, 0x1000) r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) r1 = dup(r0) write$UHID_INPUT(r1, &(0x7f0000001300)={0xc, {"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", 0x1000}}, 0x1006) 3.957687153s ago: executing program 3 (id=1642): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0), r0) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_CHANNEL_SWITCH(r0, &(0x7f0000003980)={0x0, 0x0, &(0x7f0000003940)={&(0x7f0000000200)={0x1c, r1, 0x1, 0x70bd2a, 0x25dfdbfd, {{}, {@val={0x8, 0x3, r2}, @void}}}, 0x1c}}, 0x0) 3.653797166s ago: executing program 5 (id=1643): r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder1\x00', 0x1802, 0x0) r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) setsockopt$sock_linger(r1, 0x1, 0xd, &(0x7f0000000040)={0x1}, 0x8) close_range(r0, 0xffffffffffffffff, 0x0) 3.499516357s ago: executing program 1 (id=1644): syz_mount_image$msdos(&(0x7f00000001c0), &(0x7f0000000040)='./file0\x00', 0x100c404, &(0x7f0000000380)={[{@dots}, {@fat=@fmask={'fmask', 0x3d, 0xdbd}}, {@fat=@uid}, {@fat=@uid={'uid', 0x3d, 0xee00}}, {@dots}, {@nodots}, {@fat=@gid={'gid', 0x3d, 0xee00}}, {@nodots}, {@nodots}, {@dots}, {@nodots}, {@nodots}, {@nodots}, {}, {@nodots}, {@fat=@nfs}, {@nodots}, {@fat=@showexec}, {@fat=@flush}, {@fat=@umask={'umask', 0x3d, 0x7}}, {@nodots}, {@dots}]}, 0x1, 0x1f5, &(0x7f0000000600)="$eJzs3cFqE1EUANCbmCYTcdGdIAgjLnRV1C+oSAUxIFSy0J2gK7NqN6mb9jP8Bf/LD5CuspEncSadmKYxBDKj7Tmb3pn7Xt+7M2SSTW5SFL7f/RpZ1or2fuzHpBW70Y6ZswAArpNJSvEjFZreCwBQjzXe/3/WvCUAYMvevnv/+vlgcHCY51nE+dl4OB4Wf4v8y1eDgyf5b7vVrPPxeHjrIv80X/zsMM3vxO0y/6yYn1+kuxEx7Mbjh0V+mnvxZpD/Ob8XH7dcOwAAAAAAAAAAAAAAAAAAAAAANOV+5DNL+/vs7S3m+2W+OJrrD7TQv6cT9zrlYdUeKJ3WURQAAAAAAAAAAAAAAAAAAAD8Z45Pvnz+MBp9OqqCXkTMn+ksGXN10Cr/8VqDmw/asdn0flnmBou2yku03QL7y2/uOkF0/pW7s2mQ17BWf+XlTWkaLH8VzNpiXDm9GxGrV390uOnmJyml0bcHR8cnkVYOrp4RvVqfSAAAAAAAAAAAAAAAAAAAcHPNfev7kqyJDQEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABAA6rf/58Gl8+sDE4j4k78dfBsrZ3IGq0VAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACA6+tXAAAA//85ziI4") mkdirat(0xffffffffffffff9c, &(0x7f0000000540)='./file7\x00', 0x1c0) syz_mount_image$fuse(0x0, &(0x7f0000000340)='./file7/file0\x00', 0x4000, 0x0, 0x1, 0x0, 0x0) renameat2(0xffffffffffffff9c, &(0x7f0000000780)='./file0\x00', 0xffffffffffffff9c, &(0x7f0000000000)='./file7/file0\x00', 0x0) 3.261413022s ago: executing program 3 (id=1645): syz_mount_image$msdos(&(0x7f0000000040), &(0x7f0000000000)='./file0\x00', 0xc2, &(0x7f00000007c0)={[{@fat=@nfs}, {@fat=@errors_continue}, {@dots}, {@fat=@dos1xfloppy}, {@nodots}, {@dots}, {@dots}, {@nodots}, {}, {@nodots}, {@dots}]}, 0xfe, 0x25f, &(0x7f0000000140)="$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") mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', 0x0, 0x804000, 0x0) mount$bind(0x0, &(0x7f0000000300)='./file0\x00', 0x0, 0x20e3030, 0x0) 3.020300729s ago: executing program 5 (id=1646): r0 = socket$netlink(0x10, 0x3, 0xc) bind$netlink(r0, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc) r1 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPCTNL_MSG_CT_NEW(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)={0x78, 0x0, 0x1, 0x401, 0x0, 0x0, {0x2}, [@CTA_TUPLE_ORIG={0x24, 0x1, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @multicast2=0xe0000001}, {0x8, 0x2, @dev}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TUPLE_REPLY={0x24, 0x2, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @multicast1}, {0x8, 0x2, @multicast1}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_LABELS={0x14, 0x16, 0x1, 0x0, [0x0, 0x0, 0x0, 0x8]}, @CTA_TIMEOUT={0x8, 0x7, 0x1, 0x0, 0x7}]}, 0x78}}, 0x0) 2.70247276s ago: executing program 1 (id=1647): socket$inet_icmp_raw(0x2, 0x3, 0x1) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000001f40)={&(0x7f0000000000)=ANY=[@ANYBLOB="b80000001900010000000000000000007f000001000000000000000000000000fe800000000000000000000000000027000000000000000002"], 0xb8}}, 0x0) syz_emit_ethernet(0x2a, &(0x7f0000000000)={@link_local, @dev, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x1c, 0x0, 0x0, 0x0, 0x1, 0x0, @private, @broadcast}, @address_reply={0x2a}}}}}, 0x0) 2.423219648s ago: executing program 3 (id=1648): r0 = syz_genetlink_get_family_id$nl80211(&(0x7f00000006c0), 0xffffffffffffffff) r1 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000001240)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_SET_TID_CONFIG(r1, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000bc0)={&(0x7f0000000000)={0x2c, r0, 0x1, 0x71bd25, 0x3, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_TID_CONFIG={0x10, 0x11d, 0x0, 0x1, [{0x4}, {0x4}, {0x4}]}]}, 0x2c}, 0x1, 0x0, 0x0, 0x20000080}, 0x0) 2.419535411s ago: executing program 5 (id=1649): syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x21081e, &(0x7f0000000300)={[{@grpquota}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x800}}, {@quota}, {@stripe={'stripe', 0x3d, 0x2}}, {@jqfmt_vfsold}]}, 0x1, 0x4fa, &(0x7f00000005c0)="$eJzs3c9vG1kdAPCvnThx0uwmu+wBEOyW3YWCqjqJuxut9gDLCSFUCdEjSG1I3CiKHUexU5rQQ3rmikQlTnDkD+DcE3cuCG5cygGJHxGoQeLg1YwnqZvaTdQkdhR/PtJo3ps39fe9pvNe/U3iF8DQuhoRuxExFhF3I2I6u57LjvisfST3Pdt7uLS/93ApF63W7X/l0vbkWnT8mcSV7DWLEfGj70X8NPdy3Mb2ztpitVrZzOqzzdrGbGN758ZqbXGlslJZL5cX5hfmPrn5cfnMxvpebSwrffXpH3e/9fOkW1PZlc5xnKX20AuHcRKjEfGD8wg2ACPZeMYG3RFeSz4i3o6I99PnfzpG0q8mAHCZtVrT0ZrurAMAl10+zYHl8qUsFzAV+Xyp1M7hvROT+Wq90bx+r761vtzOlc1EIX9vtVqZy3KFM1HIJfX5tPy8Xj5SvxkRb0XEL8cn0nppqV5dHuR/fABgiF05sv7/d7y9/gMAl1xx0B0AAPrO+g8Aw8f6DwDDx/oPAMOnvf5PDLobAEAfef8PAMPH+g8AQ+WHt24lR2s/+/zr5fvbW2v1+zeWK421Um1rqbRU39wordTrK+ln9tSOe71qvb4x/1FsPZj59kajOdvY3rlTq2+tN++kn+t9p1JI79rtw8gAgF7eeu/JX3LJivzpRHpEx14OhYH2DDhv+UF3ABiYkUF3ABgYu33B8DrFe3zpAbgkumzR+4Jit18QarVarfPrEnDOrn1J/h+GVUf+308Bw5CR/4fhJf8Pw6vVyp10z/846Y0AwMUmxw/0+P7/29n5d9k3B36yfPSOx+fZKwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAALjYDvb/LWV7gU9FPl8qRbwRETNRyN1brVbmIuLNiPjzeGE8qc8PuM8AwGnl/57L9v+6Nv3h1AtN7145LI5FxM9+fftXDxabzc0/RYzl/j1+cL35OLte7n/vAYDjHazT6bnjjfyzvYdLB0c/+/OP70ZEsR1/f28s9g/jj8Zoei5GISIm/5PL6m25jtzFaew+iogvdht/LqbSHEh759Oj8ZPYb/Q1fv6F+Pm0rX1O/i6+cAZ9gWHzJJl/Puv2/OXjanru/vwX0xnq9LL5L3mppf10Dnwe/2D+G+kx/109aYyP/vD9dmni5bZHEV8ejTiIvd8x/xzEz/WI/+EJ4//1K+++36ut9ZuIa9E9fmes2WZtY7axvXNjtba4UlmprJfLC/MLc5/c/Lg8m+aoZ3uvBv/89PqbvdqS8U/2iF88ZvxfP+H4f/v/uz/+2ivif/ODbvHz8c4r4idr4jdOGH9x8vfFXm1J/OUe4z/u63/9hPGf/m3npW3DAYDBaWzvrC1Wq5VNBYWLX0j+yV6AbnQtfKdfscaie9MvPmg/00eaWq3XitVrxjiLrBtwERw+9BHxv0F3BgAAAAAAAAAAAAAA6Kofv7E06DECAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABweX0eAAD//19xzyM=") r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x42) ioctl$FS_IOC_REMOVE_ENCRYPTION_KEY(r0, 0x8004587d, &(0x7f0000000080)={@desc={0x1, 0x0, @desc2}}) unlink(&(0x7f0000000180)='./file1\x00') 2.038806115s ago: executing program 2 (id=1650): mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2, 0x31, 0xffffffffffffffff, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) remap_file_pages(&(0x7f000057a000/0x1000)=nil, 0x1000, 0x0, 0x3fe, 0x1c0000) madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x19) 1.965106918s ago: executing program 1 (id=1651): r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl802154(&(0x7f0000002300), r0) ioctl$sock_SIOCGIFINDEX_802154(r0, 0x8933, &(0x7f0000002380)={'wpan0\x00', 0x0}) sendmsg$NL802154_CMD_NEW_SEC_LEVEL(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000024c0)={&(0x7f0000000700)={0x38, r1, 0x1, 0x70bd28, 0x25dfdbfd, {}, [@NL802154_ATTR_IFINDEX={0x8, 0x3, r2}, @NL802154_ATTR_SEC_LEVEL={0x1c, 0x2d, 0x0, 0x1, [@NL802154_SECLEVEL_ATTR_FRAME={0x8, 0x2, 0x1}, @NL802154_SECLEVEL_ATTR_LEVELS={0x5, 0x1, 0x3}, @NL802154_SECLEVEL_ATTR_DEV_OVERRIDE={0x5}]}]}, 0x38}, 0x1, 0x0, 0x0, 0x40810}, 0x4804) 1.630476562s ago: executing program 3 (id=1652): r0 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000100)={'netdevsim0\x00', 0x0}) r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0x1, 0x7, 0x2261, 0x2, 0x0, 0xffffffffffffffff, 0x0, '\x00', r1}, 0x50) bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000140)={r2, 0x0, 0x0}, 0x10) 1.293283384s ago: executing program 2 (id=1653): bind$inet(0xffffffffffffffff, &(0x7f0000000040)={0x2, 0x4e21, @broadcast}, 0x10) r0 = syz_usb_connect$hid(0x2, 0x36, &(0x7f0000000440)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x20, 0x50d, 0x3201, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x60, 0xb1, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x1, 0x0, {0x9, 0x21, 0x101, 0x8, 0x1, {0x22, 0x3}}, {{{0x9, 0x5, 0x81, 0x3, 0x3ff, 0xc, 0x0, 0x3}}}}}]}}]}}, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io(r0, &(0x7f0000000340)={0x2c, &(0x7f0000000040)=ANY=[@ANYBLOB="00220f020000"], 0x0, 0x0, 0x0, 0x0}, 0x0) 1.231154732s ago: executing program 5 (id=1654): r0 = socket$packet(0x11, 0x3, 0x300) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000001c0)={'geneve0\x00', 0x0}) setsockopt$packet_int(r0, 0x107, 0xf, &(0x7f0000000000)=0xf3f, 0x4) sendto$packet(r0, &(0x7f0000000040)="3f031c000302140006001e00890000004a1b7880610cc945000088a800008100000088a80000", 0x26, 0x1, &(0x7f0000000300)={0xc9, 0x88a8, r1, 0x1, 0x7, 0x6, @dev={'\xaa\xaa\xaa\xaa\xaa', 0xc}}, 0x14) 1.227486523s ago: executing program 1 (id=1655): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000280)={0x30, r1, 0x5, 0x70bd27, 0x25dfdc01, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}, @mon_options=[@NL80211_ATTR_MNTR_FLAGS={0xc, 0x17, 0x0, 0x1, [@NL80211_MNTR_FLAG_ACTIVE={0x4}, @NL80211_MNTR_FLAG_COOK_FRAMES={0x4}]}]]}, 0x30}, 0x1, 0x0, 0x0, 0x40048}, 0x0) 481.770602ms ago: executing program 1 (id=1656): r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000008000000000000001000000940000000fad413ec50000000f00000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x78) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='netlink_extack\x00', r1}, 0x10) sendmsg$nl_route(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000001c0)=@newnexthop={0x28, 0x68, 0x1, 0xfffff, 0x7ffffffd, {}, [@NHA_GROUP={0xc, 0x2, [{0x1, 0x15}]}, @NHA_RES_GROUP={0x4}]}, 0x28}, 0x1, 0x0, 0x0, 0x4008018}, 0x4000080) 407.18655ms ago: executing program 5 (id=1657): syz_mount_image$hfsplus(&(0x7f00000000c0), &(0x7f0000000980)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0, &(0x7f00000001c0)=ANY=[@ANYBLOB="6e6f626172726965722c706172743d3078303030303030303030303030303030392c756d61736b3d3030303030303030303030303030303030302c6e6c733d64656661756c742c747970653df268d6512c756d61736b3d30303030303030303030303030303030303030363734352c000000000000"], 0x3, 0x6b2, &(0x7f0000000280)="$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") rename(&(0x7f0000000000)='./file0\x00', &(0x7f0000000380)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00') r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0) getdents64(r0, &(0x7f0000001280)=""/4089, 0xff9) 245.444395ms ago: executing program 3 (id=1658): r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='memory.stat\x00', 0x275a, 0x0) write$UHID_CREATE2(r0, &(0x7f00000001c0)=ANY=[], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r0, 0x0) syz_emit_ethernet(0xfdef, &(0x7f0000000000)={@random="e904a200", @link_local, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x0, 0xe000, 0x0, 0x11, 0x0, @empty, @empty}, {0x0, 0x0, 0x10, 0x0, @gue={{0x2, 0x1, 0x1, 0x4}}}}}}}, 0x0) 0s ago: executing program 1 (id=1659): socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)) r0 = syz_io_uring_setup(0x4aa, &(0x7f0000000380)={0x0, 0xfffffffc, 0x10100, 0x10000000, 0x13a}, &(0x7f0000000000)=0x0, &(0x7f0000000200)=0x0) syz_io_uring_submit(r1, r2, &(0x7f00000002c0)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0, 0x0, {0x8126}}) io_uring_enter(r0, 0x38c5, 0x2000000, 0x0, 0x0, 0x0) kernel console output (not intermixed with test programs): 2 [ 249.916487][ T11] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 249.924901][ T11] usb 1-1: Product: syz [ 249.929237][ T11] usb 1-1: Manufacturer: syz [ 249.934287][ T11] usb 1-1: SerialNumber: syz [ 250.066513][ T11] usb 1-1: config 0 descriptor?? [ 250.500141][ T9] usb 5-1: new high-speed USB device number 2 using dummy_hcd [ 250.588761][ T11] usb 1-1: USB disconnect, device number 3 [ 250.679941][ T9] usb 5-1: Using ep0 maxpacket: 8 [ 250.732449][ T9] usb 5-1: New USB device found, idVendor=0ccd, idProduct=0039, bcdDevice=90.7b [ 250.741966][ T9] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 250.829319][ T9] pvrusb2: Hardware description: Terratec Grabster AV400 [ 250.837113][ T9] pvrusb2: ********** [ 250.841466][ T9] pvrusb2: ***WARNING*** Support for this device (Terratec Grabster AV400) is experimental. [ 250.851896][ T9] pvrusb2: Important functionality might not be entirely working. [ 250.862358][ T9] pvrusb2: Please consider contacting the driver author to help with further stabilization of the driver. [ 250.874254][ T9] pvrusb2: ********** [ 251.115750][ T2334] pvrusb2: Invalid write control endpoint [ 251.422700][ T5468] usb 5-1: USB disconnect, device number 2 [ 251.554086][ T5897] hid-generic 0005:16C0:05DF.0003: item fetching failed at offset 0/1 [ 251.578565][ T2334] pvrusb2: Invalid write control endpoint [ 251.585303][ T2334] pvrusb2: ***WARNING*** Detected a wedged cx25840 chip; the device will not work. [ 251.594951][ T2334] pvrusb2: ***WARNING*** Try power cycling the pvrusb2 device. [ 251.602792][ T2334] pvrusb2: ***WARNING*** Disabling further access to the device to prevent other foul-ups. [ 251.613611][ T2334] pvrusb2: Device being rendered inoperable [ 251.622417][ T2334] cx25840 1-0044: Unable to detect h/w, assuming cx23887 [ 251.630448][ T2334] cx25840 1-0044: cx23887 A/V decoder found @ 0x88 (pvrusb2_a) [ 251.632606][ T5897] hid-generic 0005:16C0:05DF.0003: probe with driver hid-generic failed with error -22 [ 251.641453][ T2334] pvrusb2: Attached sub-driver cx25840 [ 251.653711][ T2334] pvrusb2: ***WARNING*** pvrusb2 device hardware appears to be jammed and I can't clear it. [ 251.664109][ T2334] pvrusb2: You might need to power cycle the pvrusb2 device in order to recover. [ 251.912529][ T6533] loop2: detected capacity change from 0 to 1024 [ 251.935886][ T6533] EXT4-fs: Ignoring removed bh option [ 251.986618][ T6533] EXT4-fs (loop2): stripe (3) is not aligned with cluster size (16), stripe is disabled [ 252.036832][ T6536] loop0: detected capacity change from 0 to 16 [ 252.092016][ T6536] erofs (device loop0): mounted with root inode @ nid 36. [ 252.150179][ T5897] usb 4-1: new high-speed USB device number 4 using dummy_hcd [ 252.191468][ T6533] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 252.371015][ T5897] usb 4-1: Using ep0 maxpacket: 32 [ 252.403395][ T5897] usb 4-1: config 0 has an invalid interface number: 2 but max is 0 [ 252.412428][ T5897] usb 4-1: config 0 has no interface number 0 [ 252.418856][ T5897] usb 4-1: config 0 interface 2 has no altsetting 0 [ 252.497599][ T5897] usb 4-1: New USB device found, idVendor=086a, idProduct=0003, bcdDevice=f0.3f [ 252.507401][ T5897] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 252.515899][ T5897] usb 4-1: Product: syz [ 252.520424][ T5897] usb 4-1: Manufacturer: syz [ 252.525199][ T5897] usb 4-1: SerialNumber: syz [ 252.624467][ T5815] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 252.660796][ T5897] usb 4-1: config 0 descriptor?? [ 252.792409][ T6543] netlink: 4 bytes leftover after parsing attributes in process `syz.4.229'. [ 252.939268][ T5897] usb 4-1: Quirk or no altset; falling back to MIDI 1.0 [ 253.241341][ T5897] usb 4-1: USB disconnect, device number 4 [ 253.547141][ T5999] udevd[5999]: error opening ATTR{/sys/devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.2/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 253.796488][ T6544] loop1: detected capacity change from 0 to 8192 [ 253.874100][ T6544] msdos: Unknown parameter 'A' [ 254.696076][ T6562] warning: `syz.2.237' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211 [ 255.454704][ T6571] loop2: detected capacity change from 0 to 128 [ 255.731033][ T30] audit: type=1804 audit(1758860806.129:2): pid=6571 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.241" name="/newroot/48/file0/file0" dev="loop2" ino=1048610 res=1 errno=0 [ 257.285536][ T6591] netlink: 24 bytes leftover after parsing attributes in process `syz.3.251'. [ 257.597482][ T6592] loop0: detected capacity change from 0 to 2048 [ 257.828849][ T6599] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 257.955246][ T6600] netlink: 36 bytes leftover after parsing attributes in process `syz.3.254'. [ 258.410794][ T6599] NILFS (loop0): vblocknr = 23 has abnormal lifetime: start cno (= 4294967298) > current cno (= 3) [ 258.425068][ T6599] NILFS error (device loop0): nilfs_bmap_propagate: broken bmap (inode number=4) [ 258.438950][ T6606] loop6: detected capacity change from 0 to 524288000 [ 258.456041][ T6599] Remounting filesystem read-only [ 258.487679][ T5814] NILFS (loop0): disposed unprocessed dirty file(s) when stopping log writer [ 258.582861][ T6606] loop6: detected capacity change from 524288000 to 1 [ 259.027163][ T6614] loop4: detected capacity change from 0 to 128 [ 259.154969][ T6614] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 259.294942][ T6614] ext4 filesystem being mounted at /46/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 259.332114][ T6620] netlink: 20 bytes leftover after parsing attributes in process `syz.3.263'. [ 259.894618][ T5827] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 260.626240][ T6637] netlink: 'syz.2.271': attribute type 3 has an invalid length. [ 260.641392][ T6637] netlink: 8 bytes leftover after parsing attributes in process `syz.2.271'. [ 261.851832][ T6654] overlayfs: lowerdir is in-use as upperdir/workdir of another mount, accessing files from both mounts will result in undefined behavior. [ 261.872978][ T6654] overlayfs: overlapping lowerdir path [ 262.125912][ T6659] loop1: detected capacity change from 0 to 1024 [ 263.270759][ T5897] usb 3-1: new high-speed USB device number 5 using dummy_hcd [ 263.520246][ T5897] usb 3-1: Using ep0 maxpacket: 16 [ 263.576811][ T6667] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 263.591996][ T6667] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 263.687415][ T6673] loop1: detected capacity change from 0 to 512 [ 263.745490][ T5897] usb 3-1: unable to get BOS descriptor or descriptor too short [ 263.821483][ T5897] usb 3-1: unable to read config index 0 descriptor/start: -71 [ 263.829323][ T5897] usb 3-1: can't read configurations, error -71 [ 263.870468][ T6673] EXT4-fs error (device loop1): ext4_orphan_get:1392: inode #15: comm syz.1.286: casefold flag without casefold feature [ 263.958759][ T6673] EXT4-fs error (device loop1): ext4_orphan_get:1397: comm syz.1.286: couldn't read orphan inode 15 (err -117) [ 263.978767][ T6673] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 264.707872][ T5828] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 266.115440][ T6697] tap0: tun_chr_ioctl cmd 1074025677 [ 266.122528][ T6697] tap0: linktype set to 0 [ 266.395838][ T6702] netlink: 44 bytes leftover after parsing attributes in process `syz.2.299'. [ 267.585189][ T6713] sctp: [Deprecated]: syz.2.304 (pid 6713) Use of int in max_burst socket option. [ 267.585189][ T6713] Use struct sctp_assoc_value instead [ 267.772615][ T6717] openvswitch: netlink: Either Ethernet header or EtherType is required. [ 267.991676][ T6719] loop4: detected capacity change from 0 to 512 [ 268.275716][ T6719] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x61000000 (sector = 1) [ 269.264749][ T6732] netlink: 'syz.3.311': attribute type 1 has an invalid length. [ 269.578921][ T6734] loop4: detected capacity change from 0 to 1024 [ 269.674570][ T6734] EXT4-fs: Ignoring removed nobh option [ 269.680858][ T6734] EXT4-fs: Ignoring removed bh option [ 269.896014][ T6734] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 270.907311][ T5827] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 271.266553][ T6756] loop3: detected capacity change from 0 to 256 [ 271.549032][ T6756] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0xb5f78e84, utbl_chksum : 0xe619d30d) [ 271.847681][ T11] usb 5-1: new high-speed USB device number 3 using dummy_hcd [ 272.177486][ T11] usb 5-1: New USB device found, idVendor=1a86, idProduct=7522, bcdDevice=35.17 [ 272.191756][ T11] usb 5-1: New USB device strings: Mfr=129, Product=2, SerialNumber=3 [ 272.206675][ T11] usb 5-1: Product: syz [ 272.216543][ T11] usb 5-1: Manufacturer: syz [ 272.226926][ T11] usb 5-1: SerialNumber: syz [ 272.368067][ T11] usb 5-1: config 0 descriptor?? [ 272.449079][ T11] ch341 5-1:0.0: ch341-uart converter detected [ 273.045671][ T6776] netlink: 8 bytes leftover after parsing attributes in process `syz.0.329'. [ 273.060059][ T6776] netlink: 8 bytes leftover after parsing attributes in process `syz.0.329'. [ 273.078734][ T11] usb 5-1: failed to send control message: -71 [ 273.090874][ T11] ch341-uart ttyUSB0: probe with driver ch341-uart failed with error -71 [ 273.208842][ T11] usb 5-1: USB disconnect, device number 3 [ 273.275771][ T11] ch341 5-1:0.0: device disconnected [ 273.588988][ T6781] netlink: 'syz.1.331': attribute type 1 has an invalid length. [ 274.478188][ T6788] loop2: detected capacity change from 0 to 512 [ 274.819283][ T6788] EXT4-fs error (device loop2): ext4_orphan_get:1392: inode #15: comm syz.2.333: casefold flag without casefold feature [ 275.002893][ T6788] EXT4-fs error (device loop2): ext4_orphan_get:1397: comm syz.2.333: couldn't read orphan inode 15 (err -117) [ 275.107801][ T6788] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 275.327487][ T6796] netlink: 8 bytes leftover after parsing attributes in process `syz.0.337'. [ 275.492826][ T6801] loop4: detected capacity change from 0 to 64 [ 275.605842][ T6785] geneve0: entered promiscuous mode [ 275.611486][ T6785] geneve0: entered allmulticast mode [ 276.377958][ T5815] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 277.969979][ T6825] Zero length message leads to an empty skb [ 278.918033][ T6830] sctp: failed to load transform for md5: -2 [ 279.726451][ T6846] loop3: detected capacity change from 0 to 1024 [ 279.899916][ T6846] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 279.912589][ T6846] ext4 filesystem being mounted at /74/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 280.011611][ T6854] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 21 vs 268369941 free clusters [ 280.662396][ T5817] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 281.595425][ T5820] Bluetooth: hci0: command 0x0406 tx timeout [ 282.483777][ T6885] loop2: detected capacity change from 0 to 512 [ 282.627793][ T6884] loop4: detected capacity change from 0 to 512 [ 282.784521][ T6884] EXT4-fs (loop4): mounting ext3 file system using the ext4 subsystem [ 282.808353][ T6885] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 283.004531][ T6884] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8042c118, mo2=0002] [ 283.091265][ T6884] EXT4-fs error (device loop4): ext4_iget_extra_inode:5104: inode #15: comm syz.4.368: corrupted in-inode xattr: e_value size too large [ 283.137912][ T6894] loop0: detected capacity change from 0 to 256 [ 283.229833][ T6884] EXT4-fs error (device loop4): ext4_orphan_get:1397: comm syz.4.368: couldn't read orphan inode 15 (err -117) [ 283.286880][ T6884] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 283.327058][ T6892] loop3: detected capacity change from 0 to 1024 [ 283.586446][ T6892] hfsplus: xattr searching failed [ 283.593816][ T5815] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 283.657623][ T6892] hfsplus: xattr searching failed [ 283.735165][ T6897] hfsplus: xattr searching failed [ 284.221109][ T6903] netlink: 8 bytes leftover after parsing attributes in process `syz.0.378'. [ 284.230360][ T6903] netlink: 'syz.0.378': attribute type 21 has an invalid length. [ 284.346672][ T5827] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 285.526729][ T5468] usb 3-1: new high-speed USB device number 7 using dummy_hcd [ 285.745329][ T5468] usb 3-1: Using ep0 maxpacket: 8 [ 285.810088][ T5468] usb 3-1: config 179 has an invalid interface number: 65 but max is 0 [ 285.826385][ T5468] usb 3-1: config 179 has no interface number 0 [ 285.835229][ T5468] usb 3-1: config 179 interface 65 altsetting 0 endpoint 0xF has an invalid bInterval 0, changing to 7 [ 285.846658][ T5468] usb 3-1: config 179 interface 65 altsetting 0 endpoint 0xF has invalid maxpacket 1025, setting to 1024 [ 285.858216][ T5468] usb 3-1: config 179 interface 65 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 7 [ 285.869838][ T5468] usb 3-1: config 179 interface 65 altsetting 0 endpoint 0x83 has invalid maxpacket 41728, setting to 1024 [ 285.881566][ T5468] usb 3-1: config 179 interface 65 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 23 [ 285.895214][ T5468] usb 3-1: New USB device found, idVendor=12ab, idProduct=90a3, bcdDevice=1e.eb [ 285.904586][ T5468] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 285.944929][ T1288] ieee802154 phy0 wpan0: encryption failed: -22 [ 285.956379][ T1288] ieee802154 phy1 wpan1: encryption failed: -22 [ 286.636136][ T6911] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22 [ 287.634229][ T5468] input: Generic X-Box pad as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:179.65/input/input7 [ 287.925706][ T11] usb 3-1: USB disconnect, device number 7 [ 287.925732][ C1] xpad 3-1:179.65: xpad_irq_out - usb_submit_urb failed with result -19 [ 287.925919][ C1] xpad 3-1:179.65: xpad_irq_in - usb_submit_urb failed with result -19 [ 288.252099][ T6931] netlink: 28 bytes leftover after parsing attributes in process `syz.3.389'. [ 288.700494][ T5468] usb 2-1: new high-speed USB device number 4 using dummy_hcd [ 288.970278][ T5468] usb 2-1: Using ep0 maxpacket: 16 [ 289.037589][ T5468] usb 2-1: config 166 has an invalid interface number: 177 but max is 1 [ 289.046438][ T5468] usb 2-1: config 166 has an invalid interface number: 34 but max is 1 [ 289.055182][ T5468] usb 2-1: config 166 has no interface number 0 [ 289.061817][ T5468] usb 2-1: config 166 has no interface number 1 [ 289.068283][ T5468] usb 2-1: config 166 interface 177 altsetting 4 has an invalid descriptor for endpoint zero, skipping [ 289.080386][ T5468] usb 2-1: config 166 interface 177 altsetting 4 has an invalid descriptor for endpoint zero, skipping [ 289.091852][ T5468] usb 2-1: config 166 interface 34 altsetting 1 has a duplicate endpoint with address 0x9, skipping [ 289.109237][ T5468] usb 2-1: config 166 interface 34 altsetting 1 has an endpoint descriptor with address 0xA6, changing to 0x86 [ 289.124570][ T5468] usb 2-1: config 166 interface 34 altsetting 1 endpoint 0x86 has invalid maxpacket 23105, setting to 1024 [ 289.136297][ T5468] usb 2-1: config 166 interface 34 altsetting 1 bulk endpoint 0x86 has invalid maxpacket 1024 [ 289.146956][ T5468] usb 2-1: config 166 interface 34 altsetting 1 endpoint 0x85 has an invalid bInterval 0, changing to 7 [ 289.158469][ T5468] usb 2-1: config 166 interface 34 altsetting 1 endpoint 0x85 has invalid wMaxPacketSize 0 [ 289.168780][ T5468] usb 2-1: config 166 interface 34 altsetting 1 has 5 endpoint descriptors, different from the interface descriptor's value: 4 [ 289.182373][ T5468] usb 2-1: config 166 interface 177 has no altsetting 0 [ 289.189651][ T5468] usb 2-1: config 166 interface 34 has no altsetting 0 [ 289.215980][ T5468] usb 2-1: New USB device found, idVendor=0bda, idProduct=0138, bcdDevice=30.12 [ 289.225488][ T5468] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 289.233804][ T5468] usb 2-1: Product: syz [ 289.238138][ T5468] usb 2-1: Manufacturer: syz [ 289.243123][ T5468] usb 2-1: SerialNumber: syz [ 289.595616][ T5468] ums-realtek 2-1:166.177: USB Mass Storage device detected [ 289.834607][ T5468] ums-realtek 2-1:166.34: USB Mass Storage device detected [ 290.065278][ T5468] ums-realtek 2-1:166.34: probe with driver ums-realtek failed with error -5 [ 290.254562][ T5468] usb 2-1: Found UVC 0.00 device syz (0bda:0138) [ 290.261455][ T5468] usb 2-1: No valid video chain found. [ 290.322469][ T5468] usb 2-1: USB disconnect, device number 4 [ 290.970566][ T6958] block nbd0: server does not support multiple connections per device. [ 290.980453][ T6958] block nbd0: shutting down sockets [ 291.347290][ T30] audit: type=1326 audit(1758860841.759:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6963 comm="syz.3.403" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf709e539 code=0x7ffc0000 [ 291.528694][ T30] audit: type=1326 audit(1758860841.819:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6963 comm="syz.3.403" exe="/root/syz-executor" sig=0 arch=40000003 syscall=132 compat=1 ip=0xf709e539 code=0x7ffc0000 [ 291.551236][ T30] audit: type=1326 audit(1758860841.819:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6963 comm="syz.3.403" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf709e539 code=0x7ffc0000 [ 291.581761][ T30] audit: type=1326 audit(1758860841.819:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6963 comm="syz.3.403" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf709e539 code=0x7ffc0000 [ 291.603804][ T30] audit: type=1326 audit(1758860841.839:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6963 comm="syz.3.403" exe="/root/syz-executor" sig=0 arch=40000003 syscall=434 compat=1 ip=0xf709e539 code=0x7ffc0000 [ 291.626494][ T30] audit: type=1326 audit(1758860841.839:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6963 comm="syz.3.403" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf709e539 code=0x7ffc0000 [ 291.648779][ T30] audit: type=1326 audit(1758860841.839:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6963 comm="syz.3.403" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf709e539 code=0x7ffc0000 [ 291.677289][ T30] audit: type=1326 audit(1758860841.869:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6963 comm="syz.3.403" exe="/root/syz-executor" sig=0 arch=40000003 syscall=424 compat=1 ip=0xf709e539 code=0x7ffc0000 [ 291.702258][ T30] audit: type=1326 audit(1758860841.869:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6963 comm="syz.3.403" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf709e539 code=0x7ffc0000 [ 291.724447][ T30] audit: type=1326 audit(1758860841.869:12): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6963 comm="syz.3.403" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf709e539 code=0x7ffc0000 [ 293.006893][ T6981] sp0: Synchronizing with TNC [ 293.165362][ T6986] netlink: 4 bytes leftover after parsing attributes in process `syz.4.412'. [ 294.069373][ T6999] loop1: detected capacity change from 0 to 128 [ 294.462441][ T7004] input: syz0 as /devices/virtual/input/input8 [ 295.134645][ T11] usb 2-1: new high-speed USB device number 5 using dummy_hcd [ 295.301006][ T7013] loop6: detected capacity change from 1 to 0 [ 295.334716][ T11] usb 2-1: Using ep0 maxpacket: 32 [ 295.447650][ T11] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 295.459856][ T11] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 295.470408][ T11] usb 2-1: New USB device found, idVendor=0403, idProduct=6030, bcdDevice= 0.00 [ 295.479826][ T11] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 295.597438][ T11] usb 2-1: config 0 descriptor?? [ 295.835043][ T5897] usb 3-1: new high-speed USB device number 8 using dummy_hcd [ 295.918360][ T7019] loop0: detected capacity change from 0 to 64 [ 296.071643][ T5897] usb 3-1: Using ep0 maxpacket: 32 [ 296.131955][ T5897] usb 3-1: config 0 has an invalid interface number: 1 but max is 0 [ 296.140375][ T5897] usb 3-1: config 0 has no interface number 0 [ 296.156112][ T11] ft260 0003:0403:6030.0004: unknown main item tag 0x7 [ 296.230700][ T5897] usb 3-1: New USB device found, idVendor=061d, idProduct=c150, bcdDevice=ce.6f [ 296.240203][ T5897] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 296.248500][ T5897] usb 3-1: Product: syz [ 296.253004][ T5897] usb 3-1: Manufacturer: syz [ 296.257768][ T5897] usb 3-1: SerialNumber: syz [ 296.341746][ C0] raw-gadget.0 gadget.1: ignoring, device is not running [ 296.349833][ T11] ft260 0003:0403:6030.0004: failed to retrieve chip version [ 296.382142][ T11] ft260 0003:0403:6030.0004: probe with driver ft260 failed with error -32 [ 296.410700][ T5897] usb 3-1: config 0 descriptor?? [ 296.432895][ T5897] quatech2 3-1:0.1: Quatech 2nd gen USB to Serial Driver converter detected [ 296.507875][ T11] usb 2-1: USB disconnect, device number 5 [ 296.713194][ T5897] usb 3-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB0 [ 296.812445][ T5897] usb 3-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB1 [ 296.875924][ T7027] loop0: detected capacity change from 0 to 16 [ 296.946487][ T7027] erofs (device loop0): mounted with root inode @ nid 36. [ 297.061936][ T7027] erofs (device loop0): readahead error at folio 6 @ nid 36 [ 297.070589][ T7027] erofs (device loop0): readahead error at folio 4 @ nid 36 [ 297.079028][ T7027] erofs (device loop0): invalid logical cluster 0 at nid 36 [ 297.094547][ T7027] erofs (device loop0): readahead error at folio 0 @ nid 36 [ 297.104943][ T7027] syz.0.431: attempt to access beyond end of device [ 297.104943][ T7027] loop0: rw=524288, sector=296, nr_sectors = 16 limit=16 [ 297.119604][ T7027] syz.0.431: attempt to access beyond end of device [ 297.119604][ T7027] loop0: rw=524288, sector=1049264, nr_sectors = 16 limit=16 [ 297.134271][ T7027] syz.0.431: attempt to access beyond end of device [ 297.134271][ T7027] loop0: rw=524288, sector=8, nr_sectors = 16 limit=16 [ 297.148610][ T7027] syz.0.431: attempt to access beyond end of device [ 297.148610][ T7027] loop0: rw=524288, sector=720, nr_sectors = 16 limit=16 [ 297.163571][ T7027] erofs (device loop0): invalid logical cluster 0 at nid 36 [ 297.171633][ T7027] syz.0.431: attempt to access beyond end of device [ 297.171633][ T7027] loop0: rw=0, sector=296, nr_sectors = 8 limit=16 [ 297.192541][ T7027] erofs (device loop0): read error -5 @ 0 of nid 36 [ 297.199379][ T7027] erofs (device loop0): failed to readdir of logical block 0 of nid 36 [ 297.218142][ C1] usb 3-1: qt2_read_bulk_callback - non-zero urb status: -71 [ 297.241365][ T5897] usb 3-1: USB disconnect, device number 8 [ 297.286677][ T5897] quatech-serial ttyUSB0: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB0 [ 297.345063][ T7027] erofs (device loop0): invalid logical cluster 0 at nid 36 [ 297.357951][ T7027] syz.0.431: attempt to access beyond end of device [ 297.357951][ T7027] loop0: rw=0, sector=296, nr_sectors = 8 limit=16 [ 297.376308][ T7027] erofs (device loop0): read error -5 @ 0 of nid 36 [ 297.388023][ T7027] erofs (device loop0): failed to readdir of logical block 0 of nid 36 [ 297.437747][ T5897] quatech-serial ttyUSB1: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB1 [ 297.452329][ T5897] quatech2 3-1:0.1: device disconnected [ 297.786082][ T7029] netlink: 60 bytes leftover after parsing attributes in process `syz.4.433'. [ 298.810629][ T7036] loop4: detected capacity change from 0 to 2048 [ 298.977882][ T7036] NILFS (loop4): invalid segment: Inconsistency found [ 298.989989][ T7036] NILFS (loop4): trying rollback from an earlier position [ 299.160001][ T7036] NILFS (loop4): recovery complete [ 299.243725][ T7042] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 299.846336][ T7046] loop0: detected capacity change from 0 to 512 [ 299.972497][ T7046] FAT-fs (loop0): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 301.594849][ T7057] capability: warning: `syz.0.443' uses 32-bit capabilities (legacy support in use) [ 301.748022][ T7057] Bluetooth: MGMT ver 1.23 [ 302.634007][ T7067] netlink: 173 bytes leftover after parsing attributes in process `syz.3.449'. [ 303.306129][ T7074] loop1: detected capacity change from 0 to 1024 [ 303.572318][ T7074] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 304.722948][ T5828] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 304.735692][ T7089] mmap: syz.2.457 (7089) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 304.930802][ T30] audit: type=1326 audit(1758860855.349:13): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7092 comm="syz.3.459" exe="/root/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf709e539 code=0x0 [ 305.858245][ T7100] loop4: detected capacity change from 0 to 1024 [ 305.884449][ T7100] EXT4-fs: Ignoring removed orlov option [ 306.154075][ T7102] loop1: detected capacity change from 0 to 2048 [ 306.165273][ T7100] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 306.371429][ T7102] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 307.072087][ T5827] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 307.856341][ T7121] netlink: 'syz.1.470': attribute type 7 has an invalid length. [ 307.887809][ T7120] loop4: detected capacity change from 0 to 1024 [ 307.995005][ T7123] Illegal XDP return value 4294967274 on prog (id 39) dev N/A, expect packet loss! [ 308.477952][ T5820] Bluetooth: hci0: command 0x0406 tx timeout [ 308.489671][ T5818] Bluetooth: hci1: command 0x0406 tx timeout [ 308.498962][ T5823] Bluetooth: hci2: command 0x0406 tx timeout [ 308.505608][ T5820] Bluetooth: hci3: command 0x0406 tx timeout [ 308.739087][ T7126] loop0: detected capacity change from 0 to 2048 [ 308.994593][ T7133] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 309.215166][ T7126] NILFS (loop0): error -2 truncating bmap (ino=16) [ 309.227760][ T7136] netlink: 544 bytes leftover after parsing attributes in process `syz.2.476'. [ 309.915674][ T7141] loop4: detected capacity change from 0 to 1024 [ 309.937103][ T7141] EXT4-fs: Ignoring removed orlov option [ 310.175221][ T7141] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 310.470273][ T7141] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000000000. [ 310.496396][ T7152] netlink: 4 bytes leftover after parsing attributes in process `syz.2.480'. [ 310.530337][ T7152] batman_adv: Cannot find parent device. Skipping batadv-on-batadv check for ip6gretap1 [ 311.428020][ T5827] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 313.010376][ T7165] loop4: detected capacity change from 0 to 32768 [ 313.459133][ T7165] bcachefs (loop4): starting version 1.7: mi_btree_bitmap opts=errors=continue,metadata_checksum=none,data_checksum=none,compression=lz4,nojournal_transaction_names,read_only [ 313.459264][ T7165] allowing incompatible features above 0.0: (unknown version) [ 313.459353][ T7165] features: lz4,new_siphash,inline_data,new_extent_overwrite,btree_ptr_v2,new_varint,journal_no_flush,alloc_v2,extents_across_btree_nodes [ 313.508762][ T7165] bcachefs (loop4): Using encoding defined by superblock: utf8-12.1.0 [ 313.517401][ T7165] bcachefs (loop4): initializing new filesystem [ 313.543137][ T7165] bcachefs (loop4): going read-write [ 313.587249][ T7165] bcachefs (loop4): marking superblocks [ 313.642157][ T7165] bcachefs (loop4): initializing freespace [ 313.671118][ T7165] bcachefs (loop4): done initializing freespace [ 313.701655][ T7165] bcachefs (loop4): reading snapshots table [ 313.707996][ T7165] bcachefs (loop4): reading snapshots done [ 313.854919][ T7165] bcachefs (loop4): going read-only [ 313.860508][ T7165] bcachefs (loop4): finished waiting for writes to stop [ 313.911158][ T7165] bcachefs (loop4): flushing journal and stopping allocators, journal seq 1 [ 314.054801][ T11] usb 3-1: new full-speed USB device number 9 using dummy_hcd [ 314.270265][ T7165] bcachefs (loop4): flushing journal and stopping allocators complete, journal seq 2 [ 314.305912][ T7165] bcachefs (loop4): clean shutdown complete, journal seq 3 [ 314.305948][ T11] usb 3-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3 [ 314.316023][ T7165] bcachefs (loop4): marking filesystem clean [ 314.322863][ T7165] bcachefs (loop4): done starting filesystem [ 314.332383][ T11] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 314.678378][ T11] usb 3-1: config 0 descriptor?? [ 314.737037][ T11] cp210x 3-1:0.0: cp210x converter detected [ 314.913168][ T7165] syz.4.486 (7165) used greatest stack depth: 1120 bytes left [ 315.025257][ T5827] bcachefs (loop4): shutting down [ 315.367806][ T5827] bcachefs (loop4): shutdown complete [ 315.387595][ T11] usb 3-1: cp210x converter now attached to ttyUSB0 [ 315.590738][ T5897] usb 3-1: USB disconnect, device number 9 [ 315.698447][ T5897] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0 [ 315.831139][ T5897] cp210x 3-1:0.0: device disconnected [ 316.974821][ T7199] loop1: detected capacity change from 0 to 1024 [ 317.041356][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 317.050459][ T0] NOHZ tick-stop error: local softirq work is pending, handler #100!!! [ 317.058908][ T7199] EXT4-fs: Ignoring removed mblk_io_submit option [ 317.245234][ T7199] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 317.293940][ T7203] netlink: 104 bytes leftover after parsing attributes in process `syz.2.497'. [ 317.303285][ T7203] netlink: 104 bytes leftover after parsing attributes in process `syz.2.497'. [ 317.444480][ T30] audit: type=1326 audit(1758860867.839:14): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7198 comm="syz.1.496" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f96539 code=0x7ffc0000 [ 317.696025][ T30] audit: type=1326 audit(1758860867.899:15): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7198 comm="syz.1.496" exe="/root/syz-executor" sig=0 arch=40000003 syscall=81 compat=1 ip=0xf7f96539 code=0x7ffc0000 [ 317.718225][ T30] audit: type=1326 audit(1758860867.899:16): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7198 comm="syz.1.496" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f96539 code=0x7ffc0000 [ 317.740505][ T30] audit: type=1326 audit(1758860867.899:17): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7198 comm="syz.1.496" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f96539 code=0x7ffc0000 [ 317.762856][ T30] audit: type=1326 audit(1758860867.899:18): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7198 comm="syz.1.496" exe="/root/syz-executor" sig=0 arch=40000003 syscall=353 compat=1 ip=0xf7f96539 code=0x7ffc0000 [ 317.791134][ T30] audit: type=1326 audit(1758860867.949:19): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7198 comm="syz.1.496" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f96539 code=0x7ffc0000 [ 317.815263][ T30] audit: type=1326 audit(1758860867.949:20): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7198 comm="syz.1.496" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f96539 code=0x7ffc0000 [ 318.375618][ T5828] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 318.771931][ T7214] Falling back ldisc for ttyS3. [ 322.153306][ T5897] usb 2-1: new high-speed USB device number 6 using dummy_hcd [ 322.361494][ T5897] usb 2-1: Using ep0 maxpacket: 32 [ 322.447257][ T5897] usb 2-1: New USB device found, idVendor=1964, idProduct=0001, bcdDevice=d4.15 [ 322.457250][ T5897] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 322.465771][ T5897] usb 2-1: Product: syz [ 322.470417][ T5897] usb 2-1: Manufacturer: syz [ 322.475186][ T5897] usb 2-1: SerialNumber: syz [ 322.803534][ T5897] usb 2-1: config 0 descriptor?? [ 323.128543][ T5897] RobotFuzz Open Source InterFace, OSIF 2-1:0.0: version d4.15 found at bus 002 address 006 [ 323.344412][ T7247] i2c i2c-1: adapter quirk: no zero length (addr 0x0001, size 0, read) [ 323.407106][ T11] usb 2-1: USB disconnect, device number 6 [ 324.236435][ T7262] loop3: detected capacity change from 0 to 2048 [ 324.375296][ T7262] NILFS (loop3): broken superblock, retrying with spare superblock (blocksize = 1024) [ 324.670523][ T7269] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 326.428526][ T7283] loop1: detected capacity change from 0 to 2048 [ 326.653132][ T7283] NILFS (loop1): broken superblock, retrying with spare superblock (blocksize = 1024) [ 326.957674][ T7295] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 327.541921][ T7301] overlayfs: missing 'lowerdir' [ 330.408281][ T7327] program syz.4.545 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 331.855977][ T7343] netlink: 4 bytes leftover after parsing attributes in process `syz.1.552'. [ 332.900499][ T7352] netlink: 'syz.1.555': attribute type 3 has an invalid length. [ 332.908418][ T7352] netlink: 32 bytes leftover after parsing attributes in process `syz.1.555'. [ 333.696366][ T7361] loop3: detected capacity change from 0 to 8 [ 333.925479][ T7361] SQUASHFS error: Failed to read block 0x2d7: -5 [ 333.932383][ T7361] SQUASHFS error: Unable to read metadata cache entry [2d5] [ 334.313790][ T7367] loop2: detected capacity change from 0 to 128 [ 334.811724][ T7375] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 337.967553][ T7395] loop2: detected capacity change from 0 to 64 [ 339.927201][ T7406] loop2: detected capacity change from 0 to 2048 [ 340.171785][ T7406] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 340.351766][ T7406] EXT4-fs (loop2): shut down requested (1) [ 341.055632][ T5815] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 341.619126][ T7431] loop0: detected capacity change from 0 to 256 [ 341.708339][ T7431] exfat: Deprecated parameter 'namecase' [ 341.714510][ T7431] exfat: Deprecated parameter 'utf8' [ 342.105868][ T7431] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0x36dfe6b4, utbl_chksum : 0xe619d30d) [ 343.306090][ T7445] netlink: 44 bytes leftover after parsing attributes in process `syz.0.600'. [ 343.320415][ T7445] netlink: 43 bytes leftover after parsing attributes in process `syz.0.600'. [ 343.334510][ T7445] netlink: 'syz.0.600': attribute type 5 has an invalid length. [ 343.347204][ T7445] netlink: 43 bytes leftover after parsing attributes in process `syz.0.600'. [ 344.465785][ T7458] loop3: detected capacity change from 0 to 256 [ 345.049136][ T7461] loop1: detected capacity change from 0 to 2048 [ 345.218095][ T7461] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 345.410587][ T7466] netlink: 16 bytes leftover after parsing attributes in process `syz.0.608'. [ 345.428282][ T7466] netlink: 16 bytes leftover after parsing attributes in process `syz.0.608'. [ 345.707188][ T7468] loop4: detected capacity change from 0 to 512 [ 346.054411][ T7468] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a846e02c, mo2=0002] [ 346.141280][ T7468] System zones: 1-12 [ 346.182072][ T7468] EXT4-fs error (device loop4): dx_probe:791: inode #2: comm syz.4.609: Directory hole found for htree index block 0 [ 346.275278][ T7468] EXT4-fs (loop4): Remounting filesystem read-only [ 346.320913][ T7468] EXT4-fs (loop4): Cannot turn on journaled quota: type 0: error -117 [ 346.360431][ T7476] ptrace attach of ""[7479] was attempted by "./syz-executor exec"[7476] [ 346.391365][ T7468] EXT4-fs (loop4): Cannot turn on journaled quota: type 1: error -117 [ 346.401990][ T7468] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 346.435599][ T7481] netlink: 20 bytes leftover after parsing attributes in process `syz.2.612'. [ 347.077324][ T5827] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 347.395284][ T1288] ieee802154 phy0 wpan0: encryption failed: -22 [ 347.407337][ T1288] ieee802154 phy1 wpan1: encryption failed: -22 [ 348.019677][ T7489] loop4: detected capacity change from 0 to 2048 [ 348.244683][ T7489] Alternate GPT is invalid, using primary GPT. [ 348.252172][ T7489] loop4: p1 p2 p3 [ 349.874882][ T6000] udevd[6000]: inotify_add_watch(7, /dev/loop4p3, 10) failed: No such file or directory [ 349.894949][ T5986] udevd[5986]: inotify_add_watch(7, /dev/loop4p1, 10) failed: No such file or directory [ 350.055225][ T7509] loop3: detected capacity change from 0 to 1024 [ 350.296455][ T7509] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 350.403466][ T7516] pimreg3: entered allmulticast mode [ 350.568451][ T7513] pimreg3: left allmulticast mode [ 351.224313][ T5817] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 352.506015][ T7536] loop4: detected capacity change from 0 to 256 [ 352.545418][ T7536] exFAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 352.557469][ T7536] exFAT-fs (loop4): Medium has reported failures. Some data may be lost. [ 352.733601][ T7536] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d) [ 354.830349][ T5897] usb 2-1: new high-speed USB device number 7 using dummy_hcd [ 355.115010][ T5897] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 355.126448][ T5897] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 355.136640][ T5897] usb 2-1: New USB device found, idVendor=0419, idProduct=0600, bcdDevice= 0.00 [ 355.152356][ T5897] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 355.363396][ T5897] usb 2-1: config 0 descriptor?? [ 355.439271][ T7568] loop2: detected capacity change from 0 to 1024 [ 355.782478][ T7568] hfsplus: bad catalog entry type [ 355.837329][ T5897] samsung 0003:0419:0600.0005: item fetching failed at offset 0/7 [ 355.915361][ T5897] samsung 0003:0419:0600.0005: parse failed [ 355.922441][ T5897] samsung 0003:0419:0600.0005: probe with driver samsung failed with error -22 [ 356.107677][ T5897] usb 2-1: USB disconnect, device number 7 [ 356.279236][ T3650] hfsplus: b-tree write err: -5, ino 4 [ 357.159727][ T5897] usb 5-1: new high-speed USB device number 4 using dummy_hcd [ 357.411449][ T5897] usb 5-1: Using ep0 maxpacket: 16 [ 357.469184][ T5897] usb 5-1: config 0 interface 0 has no altsetting 0 [ 357.476223][ T5897] usb 5-1: New USB device found, idVendor=056a, idProduct=0331, bcdDevice= 0.00 [ 357.485850][ T5897] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 357.622835][ T5897] usb 5-1: config 0 descriptor?? [ 358.196197][ T5897] hid (null): nested delimiters [ 358.753368][ T5897] usb 5-1: USB disconnect, device number 4 [ 358.970917][ T7592] netlink: 28 bytes leftover after parsing attributes in process `syz.3.662'. [ 360.447119][ T7609] netlink: 8 bytes leftover after parsing attributes in process `syz.3.669'. [ 360.631661][ T7612] netlink: 20 bytes leftover after parsing attributes in process `syz.0.668'. [ 360.810170][ T7614] netlink: 20 bytes leftover after parsing attributes in process `syz.0.668'. [ 361.095770][ T7617] loop4: detected capacity change from 0 to 256 [ 361.218290][ T7617] FAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 361.345280][ T7614] Can't find ip_set type [ 361.413213][ T7617] FAT-fs (loop4): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 361.422196][ T7617] FAT-fs (loop4): Filesystem has been set read-only [ 362.027491][ T7627] netlink: 12 bytes leftover after parsing attributes in process `syz.2.675'. [ 362.792964][ T7632] loop4: detected capacity change from 0 to 2048 [ 362.955039][ T7632] UDF-fs: error (device loop4): udf_read_tagged: tag checksum failed, block 99: 0x27 != 0x4d [ 363.076790][ T7632] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 363.869116][ T30] audit: type=1326 audit(1758860914.259:21): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7645 comm="syz.3.684" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf709e539 code=0x7ffc0000 [ 364.019943][ T30] audit: type=1326 audit(1758860914.349:22): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7645 comm="syz.3.684" exe="/root/syz-executor" sig=0 arch=40000003 syscall=20 compat=1 ip=0xf709e539 code=0x7ffc0000 [ 364.042284][ T30] audit: type=1326 audit(1758860914.349:23): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7645 comm="syz.3.684" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf709e539 code=0x7ffc0000 [ 364.070486][ T30] audit: type=1326 audit(1758860914.349:24): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7645 comm="syz.3.684" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf709e539 code=0x7ffc0000 [ 364.094872][ T30] audit: type=1326 audit(1758860914.359:25): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7645 comm="syz.3.684" exe="/root/syz-executor" sig=0 arch=40000003 syscall=434 compat=1 ip=0xf709e539 code=0x7ffc0000 [ 364.117164][ T30] audit: type=1326 audit(1758860914.369:26): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7645 comm="syz.3.684" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf709e539 code=0x7ffc0000 [ 364.139282][ T30] audit: type=1326 audit(1758860914.369:27): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7645 comm="syz.3.684" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf709e539 code=0x7ffc0000 [ 364.167389][ T30] audit: type=1326 audit(1758860914.389:28): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7645 comm="syz.3.684" exe="/root/syz-executor" sig=0 arch=40000003 syscall=438 compat=1 ip=0xf709e539 code=0x7ffc0000 [ 364.192260][ T30] audit: type=1326 audit(1758860914.399:29): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7645 comm="syz.3.684" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf709e539 code=0x7ffc0000 [ 364.214515][ T30] audit: type=1326 audit(1758860914.399:30): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7645 comm="syz.3.684" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf709e539 code=0x7ffc0000 [ 364.498082][ T7650] loop0: detected capacity change from 0 to 128 [ 364.749343][ T7650] qnx6: superblock #1 checksum error [ 365.467038][ T7655] loop2: detected capacity change from 0 to 4096 [ 365.532866][ T7656] loop3: detected capacity change from 0 to 4096 [ 365.545307][ T7655] ntfs3(loop2): Different NTFS sector size (1024) and media sector size (512). [ 365.784111][ T11] usb 2-1: new high-speed USB device number 8 using dummy_hcd [ 365.941202][ T7655] ntfs3(loop2): ino=1a, mi_enum_attr [ 365.946903][ T7655] ntfs3(loop2): Mark volume as dirty due to NTFS errors [ 365.954402][ T11] usb 2-1: Using ep0 maxpacket: 32 [ 365.977848][ T11] usb 2-1: config 0 has an invalid interface number: 184 but max is 0 [ 365.991287][ T11] usb 2-1: config 0 has no interface number 0 [ 365.999905][ T11] usb 2-1: config 0 interface 184 has no altsetting 0 [ 366.066020][ T11] usb 2-1: New USB device found, idVendor=0424, idProduct=7500, bcdDevice=69.ee [ 366.080569][ T11] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 366.088778][ T11] usb 2-1: Product: syz [ 366.097998][ T11] usb 2-1: Manufacturer: syz [ 366.105395][ T11] usb 2-1: SerialNumber: syz [ 366.154293][ T7662] bridge0: entered promiscuous mode [ 366.162628][ T7655] netlink: 8 bytes leftover after parsing attributes in process `syz.2.689'. [ 366.164694][ T7662] macsec1: entered allmulticast mode [ 366.187212][ T7662] bridge0: entered allmulticast mode [ 366.288016][ T11] usb 2-1: config 0 descriptor?? [ 366.318349][ T11] smsc75xx v1.0.0 [ 366.327155][ T11] smsc75xx 2-1:0.184 (unnamed net_device) (uninitialized): usbnet_get_endpoints failed: -22 [ 366.343307][ T11] smsc75xx 2-1:0.184: probe with driver smsc75xx failed with error -22 [ 366.595686][ T11] usb 2-1: USB disconnect, device number 8 [ 369.470313][ T7682] nbd: socks must be embedded in a SOCK_ITEM attr [ 369.477159][ T7682] block nbd0: shutting down sockets [ 369.937179][ T7684] loop0: detected capacity change from 0 to 64 [ 370.569645][ T5897] usb 2-1: new high-speed USB device number 9 using dummy_hcd [ 370.800840][ T5897] usb 2-1: Using ep0 maxpacket: 16 [ 370.940024][ T5897] usb 2-1: New USB device found, idVendor=17ef, idProduct=721e, bcdDevice=de.06 [ 370.949547][ T5897] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 370.957747][ T5897] usb 2-1: Product: syz [ 370.962580][ T5897] usb 2-1: Manufacturer: syz [ 370.967361][ T5897] usb 2-1: SerialNumber: syz [ 371.128300][ T5897] r8152-cfgselector 2-1: Unknown version 0x0000 [ 371.134952][ T5897] r8152-cfgselector 2-1: config 0 descriptor?? [ 371.495838][ T5897] r8152-cfgselector 2-1: Needed 2 retries to read version [ 371.801071][ T5897] r8152-cfgselector 2-1: USB disconnect, device number 9 [ 373.051153][ T7706] loop1: detected capacity change from 0 to 16 [ 373.120603][ T7706] erofs (device loop1): mounted with root inode @ nid 36. [ 373.746542][ T7708] bridge0: port 1(bridge_slave_0) entered disabled state [ 373.799284][ T7711] loop2: detected capacity change from 0 to 2364 [ 374.068356][ T7716] netlink: 27 bytes leftover after parsing attributes in process `syz.1.716'. [ 374.470489][ T7699] loop0: detected capacity change from 0 to 8192 [ 374.694024][ T7719] loop4: detected capacity change from 0 to 256 [ 374.966736][ T7699] FAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 375.094706][ T7719] exFAT-fs (loop4): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x53fda505, utbl_chksum : 0xe619d30d) [ 375.113267][ T7719] exFAT-fs (loop4): bogus allocation bitmap size(need : 2, cur : 17179869186) [ 376.596769][ T7727] loop2: detected capacity change from 0 to 512 [ 376.847824][ T7732] netlink: 'syz.4.723': attribute type 49 has an invalid length. [ 377.070832][ T7727] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 377.084048][ T7727] ext4 filesystem being mounted at /142/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 377.755635][ T5815] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 378.406740][ T7746] loop2: detected capacity change from 0 to 256 [ 378.564712][ T7746] exFAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 378.575683][ T7746] exFAT-fs (loop2): Medium has reported failures. Some data may be lost. [ 378.810548][ T7746] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0xe5674ec2, utbl_chksum : 0xe619d30d) [ 378.886657][ T7750] loop3: detected capacity change from 0 to 47 [ 380.133040][ T7763] sp0: Synchronizing with TNC [ 380.150774][ T7129] Bluetooth: hci4: command 0x0406 tx timeout [ 380.386587][ T7757] [U] ш [ 380.991175][ T5111] Bluetooth: hci4: unexpected event 0x01 length: 4 > 1 [ 382.702034][ T7784] sctp: failed to load transform for md5: -2 [ 383.232261][ T7794] netlink: 28 bytes leftover after parsing attributes in process `syz.2.745'. [ 384.176393][ T7800] loop1: detected capacity change from 0 to 4096 [ 384.517427][ T7809] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 388.752086][ T7834] loop1: detected capacity change from 0 to 4096 [ 388.814763][ T7834] ntfs3(loop1): Different NTFS sector size (1024) and media sector size (512). [ 388.856445][ T7834] ntfs3(loop1): ino=3, mi_enum_attr [ 391.036157][ T7864] loop1: detected capacity change from 0 to 512 [ 391.092411][ T7864] udf: Unknown parameter 'v°' [ 392.296490][ T7881] netlink: 'syz.4.782': attribute type 11 has an invalid length. [ 392.380629][ T5897] usb 1-1: new full-speed USB device number 4 using dummy_hcd [ 393.014640][ T5897] usb 1-1: unable to get BOS descriptor or descriptor too short [ 393.065628][ T5897] usb 1-1: not running at top speed; connect to a high speed hub [ 393.181363][ T5897] usb 1-1: config 1 interface 1 altsetting 1 endpoint 0x1 has an invalid bInterval 147, changing to 4 [ 393.367390][ T5897] usb 1-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40 [ 393.377278][ T5897] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 393.385634][ T5897] usb 1-1: Product: syz [ 393.390047][ T5897] usb 1-1: Manufacturer: syz [ 393.394849][ T5897] usb 1-1: SerialNumber: syz [ 394.307861][ T5897] usb 1-1: 2:1 : UAC_AS_GENERAL descriptor not found [ 394.613025][ T7898] sctp: failed to load transform for md5: -2 [ 394.644911][ T5897] usb 1-1: USB disconnect, device number 4 [ 394.988216][ T5986] udevd[5986]: error opening ATTR{/sys/devices/platform/dummy_hcd.0/usb1/1-1/1-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 395.726511][ T7910] loop3: detected capacity change from 0 to 512 [ 397.929571][ T7928] loop4: detected capacity change from 0 to 2048 [ 398.219337][ T7936] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 398.485516][ T7928] NILFS error (device loop4): nilfs_dotdot: directory #12 missing '.' [ 398.548949][ T7928] Remounting filesystem read-only [ 398.624578][ T7938] netlink: 4 bytes leftover after parsing attributes in process `syz.0.802'. [ 398.635156][ T7938] netlink: 4 bytes leftover after parsing attributes in process `syz.0.802'. [ 399.085020][ T5827] NILFS (loop4): disposed unprocessed dirty file(s) when detaching log writer [ 399.150610][ T7942] Bluetooth: MGMT ver 1.23 [ 399.700002][ T5897] usb 4-1: new high-speed USB device number 5 using dummy_hcd [ 399.915932][ T5897] usb 4-1: Using ep0 maxpacket: 8 [ 400.016485][ T5897] usb 4-1: New USB device found, idVendor=0ccd, idProduct=00b3, bcdDevice=2d.ea [ 400.026110][ T5897] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 400.034555][ T5897] usb 4-1: Product: syz [ 400.038887][ T5897] usb 4-1: Manufacturer: syz [ 400.043817][ T5897] usb 4-1: SerialNumber: syz [ 400.220164][ T5897] usb 4-1: config 0 descriptor?? [ 400.520335][ T5897] usb 4-1: dvb_usb_v2: found a 'TerraTec NOXON DAB Stick' in warm state [ 401.248446][ T5897] dvb_usb_rtl28xxu 4-1:0.0: probe with driver dvb_usb_rtl28xxu failed with error -71 [ 401.355067][ T5897] usb 4-1: USB disconnect, device number 5 [ 401.394225][ T7959] loop2: detected capacity change from 0 to 512 [ 401.597328][ T7961] loop1: detected capacity change from 0 to 1024 [ 401.601999][ T7959] FAT-fs (loop2): error, corrupted directory (invalid entries) [ 401.665531][ T7961] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 401.795860][ T7961] EXT4-fs error (device loop1): ext4_read_block_bitmap_nowait:483: comm syz.1.814: Invalid block bitmap block 0 in block_group 0 [ 401.855170][ T7961] Quota error (device loop1): write_blk: dquota write failed [ 401.863071][ T7961] Quota error (device loop1): qtree_write_dquot: Error -117 occurred while creating quota [ 401.873560][ T7961] EXT4-fs error (device loop1): ext4_acquire_dquot:6937: comm syz.1.814: Failed to acquire dquot type 0 [ 401.875673][ T7966] netlink: 4 bytes leftover after parsing attributes in process `syz.0.815'. [ 401.938091][ T7961] EXT4-fs error (device loop1): ext4_free_blocks:6696: comm syz.1.814: Freeing blocks not in datazone - block = 0, count = 4096 [ 402.011009][ T7961] EXT4-fs error (device loop1): ext4_read_inode_bitmap:139: comm syz.1.814: Invalid inode bitmap blk 0 in block_group 0 [ 402.073623][ T3709] Quota error (device loop1): do_check_range: Getting block 0 out of range 1-8 [ 402.083183][ T3709] EXT4-fs error (device loop1): ext4_release_dquot:6973: comm kworker/u8:15: Failed to release dquot type 0 [ 402.158841][ T7961] EXT4-fs error (device loop1) in ext4_free_inode:361: Corrupt filesystem [ 402.214421][ T7961] EXT4-fs (loop1): 1 orphan inode deleted [ 402.222781][ T7961] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 402.335805][ T7971] netlink: 4 bytes leftover after parsing attributes in process `syz.4.817'. [ 402.507043][ T7961] EXT4-fs error (device loop1): ext4_lookup:1787: inode #16: comm syz.1.814: iget: bad extra_isize 65535 (inode size 256) [ 402.791558][ T7975] netlink: 'syz.3.819': attribute type 21 has an invalid length. [ 402.799836][ T7975] netlink: 156 bytes leftover after parsing attributes in process `syz.3.819'. [ 402.957483][ T7975] netlink: 'syz.3.819': attribute type 21 has an invalid length. [ 402.973317][ T7975] netlink: 156 bytes leftover after parsing attributes in process `syz.3.819'. [ 403.168652][ T5828] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 403.424493][ T7981] loop2: detected capacity change from 0 to 64 [ 403.618711][ T7981] BFS-fs: bfs_fill_super(): loop2 is unclean, continuing [ 403.998481][ T7986] af_packet: tpacket_rcv: packet too big, clamped from 88 to 4294967272. macoff=96 [ 404.681794][ T7989] netlink: 8 bytes leftover after parsing attributes in process `syz.1.826'. [ 405.191941][ T7993] loop3: detected capacity change from 0 to 2048 [ 405.616316][ T7993] NILFS (loop3): broken superblock, retrying with spare superblock (blocksize = 1024) [ 405.809606][ T8002] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 407.564917][ T11] usb 2-1: new high-speed USB device number 10 using dummy_hcd [ 407.774462][ T11] usb 2-1: Using ep0 maxpacket: 8 [ 407.856432][ T11] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 407.872624][ T11] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 407.889136][ T11] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 407.912529][ T11] usb 2-1: New USB device found, idVendor=1e71, idProduct=170e, bcdDevice= 0.00 [ 407.926580][ T11] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 408.099184][ T8017] netlink: 8 bytes leftover after parsing attributes in process `syz.3.838'. [ 408.117944][ T8017] netlink: 'syz.3.838': attribute type 30 has an invalid length. [ 408.126894][ T8017] netlink: 4 bytes leftover after parsing attributes in process `syz.3.838'. [ 408.184938][ T11] usb 2-1: config 0 descriptor?? [ 408.736879][ T11] nzxt-kraken2 0003:1E71:170E.0007: unknown main item tag 0x2 [ 408.750914][ T11] nzxt-kraken2 0003:1E71:170E.0007: unknown main item tag 0x0 [ 408.758694][ T11] nzxt-kraken2 0003:1E71:170E.0007: item fetching failed at offset 2/5 [ 408.837730][ T1288] ieee802154 phy0 wpan0: encryption failed: -22 [ 408.854377][ T1288] ieee802154 phy1 wpan1: encryption failed: -22 [ 408.894249][ T11] nzxt-kraken2 0003:1E71:170E.0007: hid parse failed with -22 [ 408.907445][ T11] nzxt-kraken2 0003:1E71:170E.0007: probe with driver nzxt-kraken2 failed with error -22 [ 408.971448][ T8022] netlink: 12 bytes leftover after parsing attributes in process `syz.2.841'. [ 408.995934][ T11] usb 2-1: USB disconnect, device number 10 [ 410.686946][ T8038] loop0: detected capacity change from 0 to 1024 [ 411.053191][ T8041] loop1: detected capacity change from 0 to 128 [ 411.227475][ T8041] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 411.376205][ T8041] ext4 filesystem being mounted at /170/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 411.538605][ T8041] overlayfs: upper fs needs to support d_type. [ 411.590545][ T8046] loop2: detected capacity change from 0 to 2048 [ 411.737184][ T8046] loop2: p1 < > p3 [ 411.850730][ T12] hfsplus: b-tree write err: -5, ino 4 [ 411.877803][ T8046] loop2: p3 size 134217728 extends beyond EOD, truncated [ 412.434935][ T5828] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 413.135267][ T8056] loop0: detected capacity change from 0 to 1764 [ 413.318204][ T11] kernel write not supported for file /media2 (pid: 11 comm: kworker/0:1) [ 413.698344][ T8065] netlink: 8 bytes leftover after parsing attributes in process `syz.2.859'. [ 413.896541][ T5986] udevd[5986]: inotify_add_watch(7, /dev/loop2p1, 10) failed: No such file or directory [ 414.444713][ T8072] loop1: detected capacity change from 0 to 1024 [ 414.466755][ T5986] udevd[5986]: inotify_add_watch(7, /dev/loop2p3, 10) failed: No such file or directory [ 414.569771][ T8072] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 415.335728][ T5828] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 415.801986][ T8087] netlink: 'syz.2.869': attribute type 1 has an invalid length. [ 417.783363][ T8107] loop1: detected capacity change from 0 to 256 [ 417.861143][ T8107] exfat: Deprecated parameter 'namecase' [ 417.867464][ T8107] exfat: Deprecated parameter 'utf8' [ 418.116859][ T8107] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x36dfe6b4, utbl_chksum : 0xe619d30d) [ 418.577149][ T8117] loop4: detected capacity change from 0 to 128 [ 418.642050][ T8117] EXT4-fs: Ignoring removed nobh option [ 418.775902][ T8117] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 418.868394][ T8117] ext4 filesystem being mounted at /164/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 419.593572][ T5827] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 419.612410][ T8130] tun0: tun_chr_ioctl cmd 2148553947 [ 420.727216][ T8143] fuse: Unexpected value for 'default_permissions' [ 421.144751][ T8149] loop3: detected capacity change from 0 to 8 [ 421.361266][ T8149] SQUASHFS error: Failed to read block 0x4de: -5 [ 421.368763][ T8149] SQUASHFS error: Failed to read block 0x4de: -5 [ 421.405483][ T30] audit: type=1800 audit(1758860971.809:31): pid=8149 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.895" name="file1" dev="loop3" ino=5 res=0 errno=0 [ 421.518675][ T8149] SQUASHFS error: Failed to read block 0x6e6: -5 [ 421.525335][ T8149] SQUASHFS error: Unable to read metadata cache entry [6e4] [ 421.532977][ T8149] SQUASHFS error: read_indexes: reading block [6e4:0] [ 421.540286][ T8149] SQUASHFS error: Failed to read block 0x4de: -5 [ 421.546972][ T8149] SQUASHFS error: Unable to read metadata cache entry [6e4] [ 421.554885][ T8149] SQUASHFS error: read_indexes: reading block [6e4:0] [ 421.562521][ T8149] SQUASHFS error: Failed to read block 0x4de: -5 [ 421.569206][ T8149] SQUASHFS error: Unable to read metadata cache entry [6e4] [ 421.576748][ T8149] SQUASHFS error: read_indexes: reading block [6e4:0] [ 421.583971][ T8149] SQUASHFS error: Failed to read block 0x4de: -5 [ 421.591030][ T8149] SQUASHFS error: Unable to read metadata cache entry [6e4] [ 421.598465][ T8149] SQUASHFS error: read_indexes: reading block [6e4:0] [ 421.612732][ T8149] SQUASHFS error: Failed to read block 0x4de: -5 [ 421.621700][ T8149] SQUASHFS error: Unable to read metadata cache entry [6e4] [ 421.629150][ T8149] SQUASHFS error: read_indexes: reading block [6e4:0] [ 421.636352][ T8149] SQUASHFS error: Failed to read block 0x4de: -5 [ 421.643135][ T8149] SQUASHFS error: Unable to read metadata cache entry [6e4] [ 421.650679][ T8149] SQUASHFS error: read_indexes: reading block [6e4:0] [ 421.657759][ T8149] SQUASHFS error: Failed to read block 0x4de: -5 [ 421.664521][ T8149] SQUASHFS error: Unable to read metadata cache entry [6e4] [ 421.672061][ T8149] SQUASHFS error: read_indexes: reading block [6e4:0] [ 421.679135][ T8149] SQUASHFS error: Failed to read block 0x4de: -5 [ 421.686218][ T8149] SQUASHFS error: Unable to read metadata cache entry [6e4] [ 421.693809][ T8149] SQUASHFS error: read_indexes: reading block [6e4:0] [ 421.701004][ T8149] SQUASHFS error: Failed to read block 0x4de: -5 [ 421.714611][ T8149] SQUASHFS error: Unable to read metadata cache entry [6e4] [ 421.724380][ T8149] SQUASHFS error: read_indexes: reading block [6e4:0] [ 421.731586][ T8149] SQUASHFS error: Failed to read block 0x4de: -5 [ 421.738349][ T8149] SQUASHFS error: Unable to read metadata cache entry [6e4] [ 421.745920][ T8149] SQUASHFS error: read_indexes: reading block [6e4:0] [ 421.753141][ T8149] SQUASHFS error: Failed to read block 0x4de: -5 [ 421.759990][ T8149] SQUASHFS error: Unable to read metadata cache entry [6e4] [ 421.767422][ T8149] SQUASHFS error: read_indexes: reading block [6e4:0] [ 421.774600][ T8149] SQUASHFS error: Failed to read block 0x4de: -5 [ 421.781824][ T8149] SQUASHFS error: Unable to read metadata cache entry [6e4] [ 421.789256][ T8149] SQUASHFS error: read_indexes: reading block [6e4:0] [ 421.796461][ T8149] SQUASHFS error: Failed to read block 0x4de: -5 [ 421.803231][ T8149] SQUASHFS error: Unable to read metadata cache entry [6e4] [ 421.818076][ T8149] SQUASHFS error: read_indexes: reading block [6e4:0] [ 421.827422][ T8149] SQUASHFS error: Failed to read block 0x4de: -5 [ 421.834222][ T8149] SQUASHFS error: Unable to read metadata cache entry [6e4] [ 421.841777][ T8149] SQUASHFS error: read_indexes: reading block [6e4:0] [ 421.848862][ T8149] SQUASHFS error: Failed to read block 0x4de: -5 [ 421.855626][ T8149] SQUASHFS error: Unable to read metadata cache entry [6e4] [ 421.863239][ T8149] SQUASHFS error: read_indexes: reading block [6e4:0] [ 421.870737][ T8149] SQUASHFS error: Failed to read block 0x4de: -5 [ 421.877416][ T8149] SQUASHFS error: Unable to read metadata cache entry [6e4] [ 421.885006][ T8149] SQUASHFS error: read_indexes: reading block [6e4:0] [ 421.892175][ T8149] SQUASHFS error: Failed to read block 0x4de: -5 [ 421.898847][ T8149] SQUASHFS error: Unable to read metadata cache entry [6e4] [ 421.906493][ T8149] SQUASHFS error: read_indexes: reading block [6e4:0] [ 421.920697][ T8149] SQUASHFS error: Failed to read block 0x4de: -5 [ 421.927381][ T8149] SQUASHFS error: Unable to read metadata cache entry [6e4] [ 421.937121][ T8149] SQUASHFS error: read_indexes: reading block [6e4:0] [ 421.944304][ T8149] SQUASHFS error: Failed to read block 0x4de: -5 [ 421.951130][ T8149] SQUASHFS error: Unable to read metadata cache entry [6e4] [ 421.958563][ T8149] SQUASHFS error: read_indexes: reading block [6e4:0] [ 421.965855][ T8149] SQUASHFS error: Failed to read block 0x4de: -5 [ 421.972638][ T8149] SQUASHFS error: Unable to read metadata cache entry [6e4] [ 421.980194][ T8149] SQUASHFS error: read_indexes: reading block [6e4:0] [ 421.987268][ T8149] SQUASHFS error: Failed to read block 0x4de: -5 [ 421.994082][ T8149] SQUASHFS error: Unable to read metadata cache entry [6e4] [ 422.001648][ T8149] SQUASHFS error: read_indexes: reading block [6e4:0] [ 422.008724][ T8149] SQUASHFS error: Failed to read block 0x4de: -5 [ 422.022498][ T8149] SQUASHFS error: Unable to read metadata cache entry [6e4] [ 422.033192][ T8149] SQUASHFS error: read_indexes: reading block [6e4:0] [ 422.040385][ T8149] SQUASHFS error: Failed to read block 0x4de: -5 [ 422.047064][ T8149] SQUASHFS error: Unable to read metadata cache entry [6e4] [ 422.054595][ T8149] SQUASHFS error: read_indexes: reading block [6e4:0] [ 422.061883][ T8149] SQUASHFS error: Failed to read block 0x4de: -5 [ 422.068542][ T8149] SQUASHFS error: Unable to read metadata cache entry [6e4] [ 422.076221][ T8149] SQUASHFS error: read_indexes: reading block [6e4:0] [ 422.083389][ T8149] SQUASHFS error: Failed to read block 0x4de: -5 [ 422.090179][ T8149] SQUASHFS error: Unable to read metadata cache entry [6e4] [ 422.097603][ T8149] SQUASHFS error: read_indexes: reading block [6e4:0] [ 422.104803][ T8149] SQUASHFS error: Failed to read block 0x4de: -5 [ 422.111568][ T8149] SQUASHFS error: Unable to read metadata cache entry [6e4] [ 422.126334][ T8149] SQUASHFS error: read_indexes: reading block [6e4:0] [ 422.135844][ T8149] SQUASHFS error: Failed to read block 0x4de: -5 [ 422.142644][ T8149] SQUASHFS error: Unable to read metadata cache entry [6e4] [ 422.150190][ T8149] SQUASHFS error: read_indexes: reading block [6e4:0] [ 422.157265][ T8149] SQUASHFS error: Failed to read block 0x4de: -5 [ 422.164047][ T8149] SQUASHFS error: Unable to read metadata cache entry [6e4] [ 422.171592][ T8149] SQUASHFS error: read_indexes: reading block [6e4:0] [ 422.178667][ T8149] SQUASHFS error: Failed to read block 0x4de: -5 [ 422.185513][ T8149] SQUASHFS error: Unable to read metadata cache entry [6e4] [ 422.193337][ T8149] SQUASHFS error: read_indexes: reading block [6e4:0] [ 422.200527][ T8149] SQUASHFS error: Failed to read block 0x4de: -5 [ 422.207212][ T8149] SQUASHFS error: Unable to read metadata cache entry [6e4] [ 422.214739][ T8149] SQUASHFS error: read_indexes: reading block [6e4:0] [ 422.228952][ T8149] SQUASHFS error: Failed to read block 0x4de: -5 [ 422.238443][ T8149] SQUASHFS error: Unable to read metadata cache entry [6e4] [ 422.245991][ T8149] SQUASHFS error: read_indexes: reading block [6e4:0] [ 422.253186][ T8149] SQUASHFS error: Failed to read block 0x4de: -5 [ 422.260012][ T8149] SQUASHFS error: Unable to read metadata cache entry [6e4] [ 422.267450][ T8149] SQUASHFS error: read_indexes: reading block [6e4:0] [ 422.274629][ T8149] SQUASHFS error: Failed to read block 0x4de: -5 [ 422.281898][ T8149] SQUASHFS error: Unable to read metadata cache entry [6e4] [ 422.289471][ T8149] SQUASHFS error: read_indexes: reading block [6e4:0] [ 422.296543][ T8149] SQUASHFS error: Failed to read block 0x4de: -5 [ 422.303429][ T8149] SQUASHFS error: Unable to read metadata cache entry [6e4] [ 422.311189][ T8149] SQUASHFS error: read_indexes: reading block [6e4:0] [ 422.327186][ T8149] SQUASHFS error: Unable to read metadata cache entry [6e4] [ 422.334767][ T8149] SQUASHFS error: read_indexes: reading block [6e4:0] [ 422.875109][ T5171] udevd[5171]: worker [5986] terminated by signal 33 (Unknown signal 33) [ 422.959080][ T5171] udevd[5171]: worker [5986] failed while handling '/devices/virtual/block/loop3' [ 422.979062][ T8162] Bluetooth: MGMT ver 1.23 [ 424.784506][ T8182] loop0: detected capacity change from 0 to 256 [ 424.843756][ T8182] exfat: Deprecated parameter 'namecase' [ 425.225029][ T8182] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0x5441951d, utbl_chksum : 0xe619d30d) [ 425.264703][ T8191] syzkaller1: tun_chr_ioctl cmd 1074025677 [ 425.271931][ T8191] syzkaller1: linktype set to 774 [ 426.458935][ T8197] input: syz0 as /devices/virtual/input/input9 [ 427.607831][ T8209] netlink: 12 bytes leftover after parsing attributes in process `syz.2.922'. [ 428.298893][ T8216] netlink: 8 bytes leftover after parsing attributes in process `syz.1.924'. [ 428.314384][ T8216] IPVS: Error joining to the multicast group [ 428.384710][ T30] audit: type=1326 audit(1758860978.789:32): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8215 comm="syz.3.923" exe="/root/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf709e539 code=0x0 [ 429.198482][ T8225] netlink: 'syz.1.927': attribute type 2 has an invalid length. [ 430.034403][ T30] audit: type=1326 audit(1758860980.429:33): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8232 comm="syz.1.931" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f96539 code=0x7ffc0000 [ 430.061494][ T30] audit: type=1326 audit(1758860980.429:34): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8232 comm="syz.1.931" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f96539 code=0x7ffc0000 [ 430.088589][ T30] audit: type=1326 audit(1758860980.489:35): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8232 comm="syz.1.931" exe="/root/syz-executor" sig=0 arch=40000003 syscall=277 compat=1 ip=0xf7f96539 code=0x7ffc0000 [ 430.118799][ T30] audit: type=1326 audit(1758860980.489:36): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8232 comm="syz.1.931" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f96539 code=0x7ffc0000 [ 430.141705][ T30] audit: type=1326 audit(1758860980.489:37): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8232 comm="syz.1.931" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f96539 code=0x7ffc0000 [ 430.169300][ T30] audit: type=1326 audit(1758860980.509:38): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8232 comm="syz.1.931" exe="/root/syz-executor" sig=0 arch=40000003 syscall=279 compat=1 ip=0xf7f96539 code=0x7ffc0000 [ 430.201282][ T30] audit: type=1326 audit(1758860980.509:39): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8232 comm="syz.1.931" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f96539 code=0x7ffc0000 [ 430.229984][ T30] audit: type=1326 audit(1758860980.539:40): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8232 comm="syz.1.931" exe="/root/syz-executor" sig=0 arch=40000003 syscall=280 compat=1 ip=0xf7f96539 code=0x7ffc0000 [ 430.257640][ T30] audit: type=1326 audit(1758860980.539:41): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8232 comm="syz.1.931" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f96539 code=0x7ffc0000 [ 430.712325][ T8236] netlink: 136 bytes leftover after parsing attributes in process `syz.0.932'. [ 430.729539][ T8236] A link change request failed with some changes committed already. Interface erspan0 may have been left with an inconsistent configuration, please check. [ 433.556920][ T8268] loop2: detected capacity change from 0 to 8 [ 434.256417][ T8271] loop3: detected capacity change from 0 to 1024 [ 434.919086][ T1897] hfsplus: b-tree write err: -5, ino 4 [ 435.891324][ T8286] loop2: detected capacity change from 0 to 512 [ 435.965325][ T8286] EXT4-fs: Ignoring removed nomblk_io_submit option [ 436.055748][ T8286] EXT4-fs (loop2): revision level too high, forcing read-only mode [ 436.068770][ T8286] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=842c01c, mo2=0002] [ 436.171705][ T8286] EXT4-fs (loop2): couldn't mount RDWR because of unsupported optional features (80) [ 436.181682][ T8286] EXT4-fs (loop2): Skipping orphan cleanup due to unknown ROCOMPAT features [ 436.192729][ T8286] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none. [ 436.469870][ T8286] EXT4-fs warning (device loop2): dx_probe:861: inode #2: comm syz.2.954: dx entry: limit 65535 != root limit 120 [ 436.482388][ T8286] EXT4-fs warning (device loop2): dx_probe:934: inode #2: comm syz.2.954: Corrupt directory, running e2fsck is recommended [ 436.647209][ T8286] EXT4-fs error (device loop2): ext4_readdir:264: inode #2: block 3: comm syz.2.954: path /194/file0: bad entry in directory: rec_len % 4 != 0 - offset=0, inode=4294967295, rec_len=17, size=1024 fake=0 [ 436.654899][ T8292] loop0: detected capacity change from 0 to 128 [ 436.988146][ T8292] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 437.025445][ T8292] ext4 filesystem being mounted at /192/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 437.291991][ T5815] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 438.113876][ T5814] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 438.837539][ T8299] loop1: detected capacity change from 0 to 4096 [ 438.936484][ T8303] loop0: detected capacity change from 0 to 1764 [ 440.547594][ T8311] dvmrp1: tun_chr_ioctl cmd 35108 [ 440.836016][ T8313] netlink: 8 bytes leftover after parsing attributes in process `syz.1.966'. [ 442.104950][ T7129] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 442.117152][ T7129] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 442.131194][ T7129] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 442.156463][ T7129] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 442.170462][ T7129] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 442.451592][ T8326] syz.1.971 calls setitimer() with new_value NULL pointer. Misfeature support will be removed [ 442.834871][ T8330] loop0: detected capacity change from 0 to 136 [ 444.267660][ T7129] Bluetooth: hci5: command tx timeout [ 445.290561][ T8322] chnl_net:caif_netlink_parms(): no params data found [ 445.433525][ T8349] loop3: detected capacity change from 0 to 4096 [ 446.115771][ T8349] ntfs3(loop3): failed to convert "0080" to cp862 [ 446.147287][ T8363] loop0: detected capacity change from 0 to 1024 [ 446.314841][ T7129] Bluetooth: hci5: command tx timeout [ 446.536906][ T8363] EXT4-fs (loop0): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none. [ 446.551685][ T8363] ext4 filesystem being mounted at /200/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 446.732537][ T3603] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 447.117336][ T3603] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 447.250806][ T8372] netlink: 'syz.2.986': attribute type 4 has an invalid length. [ 447.258744][ T8372] netlink: 8 bytes leftover after parsing attributes in process `syz.2.986'. [ 447.356178][ T8371] loop1: detected capacity change from 0 to 1024 [ 447.414236][ T3603] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 447.437851][ T8371] EXT4-fs: Ignoring removed nobh option [ 447.445224][ T8371] EXT4-fs: Ignoring removed bh option [ 447.650197][ T5814] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0006-0000-000000000000. [ 447.700309][ T3603] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 447.837017][ T8371] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 448.389257][ T3603] bridge_slave_1: left allmulticast mode [ 448.405191][ T3603] bridge_slave_1: left promiscuous mode [ 448.416632][ T3603] bridge0: port 2(bridge_slave_1) entered disabled state [ 448.424713][ T7129] Bluetooth: hci5: command tx timeout [ 448.476478][ T3603] bridge_slave_0: left allmulticast mode [ 448.482595][ T3603] bridge_slave_0: left promiscuous mode [ 448.489145][ T3603] bridge0: port 1(bridge_slave_0) entered disabled state [ 448.784487][ T30] audit: type=1326 audit(1758860999.179:42): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8380 comm="syz.3.989" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf709e539 code=0x7ffc0000 [ 448.812172][ T30] audit: type=1326 audit(1758860999.179:43): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8380 comm="syz.3.989" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf709e539 code=0x7ffc0000 [ 449.089215][ T5828] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 449.695183][ T8391] loop0: detected capacity change from 0 to 512 [ 449.808189][ T8392] netlink: 'syz.1.991': attribute type 1 has an invalid length. [ 449.854643][ T8391] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 449.999133][ T8391] EXT4-fs (loop0): 1 truncate cleaned up [ 450.003418][ T3603] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 450.012211][ T8391] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 450.079453][ T3603] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 450.104873][ T3603] bond0 (unregistering): Released all slaves [ 450.187851][ T8394] netlink: 'syz.3.994': attribute type 5 has an invalid length. [ 450.469795][ T7129] Bluetooth: hci5: command tx timeout [ 450.687999][ T8322] bridge0: port 1(bridge_slave_0) entered blocking state [ 450.700608][ T8322] bridge0: port 1(bridge_slave_0) entered disabled state [ 450.708279][ T8322] bridge_slave_0: entered allmulticast mode [ 450.890275][ T8322] bridge_slave_0: entered promiscuous mode [ 451.020127][ T5814] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 451.276993][ T8322] bridge0: port 2(bridge_slave_1) entered blocking state [ 451.294521][ T8322] bridge0: port 2(bridge_slave_1) entered disabled state [ 451.315039][ T8322] bridge_slave_1: entered allmulticast mode [ 451.329306][ T8322] bridge_slave_1: entered promiscuous mode [ 451.356187][ T1897] netdevsim netdevsim1 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0 [ 451.587652][ T1897] netdevsim netdevsim1 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0 [ 452.076325][ T8322] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 452.125302][ T1897] netdevsim netdevsim1 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0 [ 452.214696][ T1897] netdevsim netdevsim1 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0 [ 452.275917][ T8322] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 452.408672][ T3603] hsr_slave_0: left promiscuous mode [ 452.506120][ T3603] hsr_slave_1: left promiscuous mode [ 452.514392][ T3603] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 452.522258][ T3603] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 452.719910][ T3603] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 452.727498][ T3603] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 452.960444][ T3603] veth1_macvtap: left promiscuous mode [ 452.966162][ T3603] veth0_macvtap: left promiscuous mode [ 452.972299][ T3603] veth1_vlan: left promiscuous mode [ 452.977820][ T3603] veth0_vlan: left promiscuous mode [ 453.137097][ T8419] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1003'. [ 455.015417][ T8437] netlink: 44 bytes leftover after parsing attributes in process `syz.0.1009'. [ 455.061272][ T3603] team0 (unregistering): Port device team_slave_1 removed [ 455.237542][ T3603] team0 (unregistering): Port device team_slave_0 removed [ 455.555313][ T30] audit: type=1800 audit(1758861005.969:44): pid=8443 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.1011" name="SYSV00000000" dev="tmpfs" ino=0 res=0 errno=0 [ 455.581930][ T8430] loop2: detected capacity change from 0 to 4096 [ 456.697267][ T30] audit: type=1800 audit(1758861007.119:45): pid=8430 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.1007" name="bus" dev="loop2" ino=33 res=0 errno=0 [ 456.944322][ T8322] team0: Port device team_slave_0 added [ 457.070329][ T8322] team0: Port device team_slave_1 added [ 457.698072][ T8322] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 457.705532][ T8322] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 457.732043][ T8322] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 458.045334][ T8322] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 458.052689][ T8322] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 458.086037][ T8322] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 459.031270][ T8322] hsr_slave_0: entered promiscuous mode [ 459.142506][ T8322] hsr_slave_1: entered promiscuous mode [ 459.151448][ T8322] debugfs: 'hsr0' already exists in 'hsr' [ 459.157336][ T8322] Cannot create hsr debugfs directory [ 461.945161][ T8322] netdevsim netdevsim5 netdevsim0: renamed from eth0 [ 461.973706][ T8503] loop1: detected capacity change from 0 to 512 [ 462.074174][ T8503] FAT-fs (loop1): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 462.119802][ T8322] netdevsim netdevsim5 netdevsim1: renamed from eth1 [ 462.281907][ T8322] netdevsim netdevsim5 netdevsim2: renamed from eth2 [ 462.428022][ T8322] netdevsim netdevsim5 netdevsim3: renamed from eth3 [ 462.944607][ T8512] loop0: detected capacity change from 0 to 512 [ 463.871981][ T8521] loop2: detected capacity change from 0 to 64 [ 463.983233][ T8521] BFS-fs: bfs_fill_super(): loop2 is unclean, continuing [ 464.235671][ T8524] loop3: detected capacity change from 0 to 256 [ 464.288539][ T8322] 8021q: adding VLAN 0 to HW filter on device bond0 [ 464.505778][ T8526] loop0: detected capacity change from 0 to 512 [ 464.564936][ T8524] exFAT-fs (loop3): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d) [ 464.585179][ T8526] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 464.656712][ T8322] 8021q: adding VLAN 0 to HW filter on device team0 [ 464.734623][ T3603] bridge0: port 1(bridge_slave_0) entered blocking state [ 464.742308][ T3603] bridge0: port 1(bridge_slave_0) entered forwarding state [ 464.757653][ T3603] bridge0: port 2(bridge_slave_1) entered blocking state [ 464.765201][ T3603] bridge0: port 2(bridge_slave_1) entered forwarding state [ 464.856450][ T8526] EXT4-fs warning (device loop0): ext4_expand_extra_isize_ea:2848: Unable to expand inode 15. Delete some EAs or run e2fsck. [ 464.926676][ T8526] EXT4-fs (loop0): 1 truncate cleaned up [ 464.944559][ T8526] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 465.920137][ T5814] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 469.198120][ T8563] loop2: detected capacity change from 0 to 4096 [ 469.237931][ T8322] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 469.307047][ T8563] ntfs3(loop2): Different NTFS sector size (1024) and media sector size (512). [ 470.114452][ T8584] loop1: detected capacity change from 0 to 16 [ 470.197008][ T8563] ntfs3(loop2): ino=1e, "file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" ni_find_attr [ 470.258456][ T1288] ieee802154 phy0 wpan0: encryption failed: -22 [ 470.270131][ T1288] ieee802154 phy1 wpan1: encryption failed: -22 [ 470.500105][ T8577] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1054'. [ 470.517459][ T8577] bridge0: port 2(bridge_slave_1) entered disabled state [ 470.623806][ T6000] udevd[6000]: incorrect cramfs checksum on /dev/loop1 [ 471.116022][ T6284] udevd[6284]: incorrect cramfs checksum on /dev/loop1 [ 471.946239][ T8601] 9pnet_fd: Insufficient options for proto=fd [ 473.000323][ T8613] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1064'. [ 473.358243][ T8615] loop3: detected capacity change from 0 to 256 [ 474.068724][ T8626] loop2: detected capacity change from 0 to 512 [ 474.487144][ T8626] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 474.501009][ T8626] ext4 filesystem being mounted at /221/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 474.659114][ T7129] Bluetooth: hci0: unexpected event for opcode 0x1004 [ 474.694235][ T8626] EXT4-fs (loop2): shut down requested (1) [ 474.926702][ T8322] veth0_vlan: entered promiscuous mode [ 475.188063][ T8322] veth1_vlan: entered promiscuous mode [ 475.421396][ T5815] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 475.888921][ T8322] veth0_macvtap: entered promiscuous mode [ 475.968435][ T8322] veth1_macvtap: entered promiscuous mode [ 476.162240][ T8648] netlink: 132 bytes leftover after parsing attributes in process `syz.2.1074'. [ 476.427877][ T8322] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 476.625807][ T8322] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 476.939785][ T3687] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 476.948799][ T3687] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 477.093012][ T3687] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 477.240081][ T3687] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 477.971008][ T8652] loop3: detected capacity change from 0 to 2048 [ 478.205356][ T8652] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 478.714663][ T7129] Bluetooth: hci0: Controller not accepting commands anymore: ncmd = 0 [ 478.723586][ T7129] Bluetooth: hci0: Injecting HCI hardware error event [ 478.731506][ T7129] Bluetooth: hci0: hardware error 0x00 [ 480.487336][ T8690] netlink: 92 bytes leftover after parsing attributes in process `syz.2.1088'. [ 480.496892][ T8690] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1088'. [ 480.810312][ T7129] Bluetooth: hci0: Opcode 0x0c03 failed: -110 [ 482.521509][ T8715] netlink: 'syz.1.1097': attribute type 2 has an invalid length. [ 483.669237][ T8725] loop3: detected capacity change from 0 to 1024 [ 483.680667][ T8725] EXT4-fs: Ignoring removed nomblk_io_submit option [ 483.959861][ T8725] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 484.502364][ T5817] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 485.201339][ T8744] loop3: detected capacity change from 0 to 512 [ 485.250639][ T8744] EXT4-fs error (device loop3): ext4_orphan_get:1392: inode #15: comm syz.3.1104: casefold flag without casefold feature [ 485.376020][ T8744] EXT4-fs error (device loop3): ext4_orphan_get:1397: comm syz.3.1104: couldn't read orphan inode 15 (err -117) [ 485.572539][ T8744] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 486.392619][ T5817] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 486.500843][ T8755] loop0: detected capacity change from 0 to 512 [ 487.007540][ T8755] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 487.174982][ T30] audit: type=1800 audit(1758861037.589:46): pid=8755 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.1106" name="file1" dev="loop0" ino=15 res=0 errno=0 [ 487.849133][ T8765] EXT4-fs error (device loop0): ext4_validate_block_bitmap:423: comm ext4lazyinit: bg 0: bad block bitmap checksum [ 488.065804][ T5814] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 488.997843][ T8778] loop0: detected capacity change from 0 to 64 [ 489.245384][ T8778] BFS-fs: bfs_fill_super(): loop0 is unclean, continuing [ 489.280763][ T3687] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 489.290485][ T3687] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 489.417131][ T8778] BFS-fs: bfs_fill_super(): Inode 0x00000002 corrupted on loop0 [ 489.720056][ T1845] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 489.728193][ T1845] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 491.141340][ T30] audit: type=1326 audit(1758861041.529:47): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8791 comm="syz.5.964" exe="/root/syz-executor" sig=31 arch=40000003 syscall=20 compat=1 ip=0xf705e539 code=0x0 [ 491.408789][ T8795] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1116'. [ 493.030424][ T8808] loop2: detected capacity change from 0 to 256 [ 493.550454][ T8811] loop0: detected capacity change from 0 to 512 [ 494.167075][ T8811] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 494.184987][ T8811] ext4 filesystem being mounted at /231/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 494.360678][ T8809] loop1: detected capacity change from 0 to 4096 [ 494.647944][ T30] audit: type=1800 audit(1758861045.049:48): pid=8811 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.1124" name="file1" dev="loop0" ino=15 res=0 errno=0 [ 495.056011][ T8824] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1128'. [ 495.110622][ T8819] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 96 vs 65376 free clusters [ 495.590242][ T5814] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 498.244095][ T8849] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1137'. [ 498.576826][ T8853] netlink: 72 bytes leftover after parsing attributes in process `syz.0.1138'. [ 501.202768][ T8876] netlink: 'syz.5.1149': attribute type 4 has an invalid length. [ 502.274748][ T11] usb 6-1: new high-speed USB device number 2 using dummy_hcd [ 502.536297][ T11] usb 6-1: config 0 has no interfaces? [ 502.547049][ T11] usb 6-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 502.561722][ T11] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 502.687957][ T11] usb 6-1: config 0 descriptor?? [ 502.837951][ T8895] loop3: detected capacity change from 0 to 256 [ 502.877562][ T8893] netlink: 'syz.0.1157': attribute type 14 has an invalid length. [ 502.988478][ T8896] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1159'. [ 502.992248][ T8895] exFAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 503.008629][ T8895] exFAT-fs (loop3): Medium has reported failures. Some data may be lost. [ 503.048572][ T11] usb 6-1: USB disconnect, device number 2 [ 503.229938][ T8895] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d) [ 506.947578][ T8929] pimreg: entered allmulticast mode [ 507.108915][ T8933] pimreg: left allmulticast mode [ 507.687950][ T8932] loop3: detected capacity change from 0 to 4096 [ 507.942115][ T8932] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 508.825022][ T5817] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 510.276521][ T8957] loop3: detected capacity change from 0 to 1024 [ 511.834610][ T8971] loop0: detected capacity change from 0 to 512 [ 512.000118][ T8971] EXT4-fs (loop0): external journal device major/minor numbers have changed [ 512.009140][ T8971] EXT4-fs (loop0): failed to open journal device unknown-block(128,0) -6 [ 512.340941][ T8973] loop2: detected capacity change from 0 to 1024 [ 512.396841][ T8976] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1192'. [ 512.704867][ T30] audit: type=1800 audit(1758861063.109:49): pid=8973 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.1190" name="file1" dev="loop2" ino=2 res=0 errno=0 [ 513.127056][ T3650] hfsplus: bad catalog folder entry [ 513.171064][ T3650] hfsplus: bad catalog file entry [ 514.605495][ T8996] loop2: detected capacity change from 0 to 64 [ 515.838072][ T11] kernel write not supported for file /input/event2 (pid: 11 comm: kworker/0:1) [ 516.801790][ T9006] loop2: detected capacity change from 0 to 4096 [ 517.208109][ T9011] loop3: detected capacity change from 0 to 2048 [ 517.465245][ T9011] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 518.478942][ T9014] loop0: detected capacity change from 0 to 4096 [ 519.609107][ T9014] ntfs3(loop0): Failed to read $UpCase (-4). [ 519.900132][ T5897] usb 6-1: new high-speed USB device number 3 using dummy_hcd [ 520.145087][ T5897] usb 6-1: Using ep0 maxpacket: 8 [ 520.238477][ T5897] usb 6-1: config index 0 descriptor too short (expected 30, got 18) [ 520.367802][ T5897] usb 6-1: New USB device found, idVendor=1660, idProduct=0932, bcdDevice=80.ea [ 520.378694][ T5897] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 520.387612][ T5897] usb 6-1: Product: syz [ 520.392460][ T5897] usb 6-1: Manufacturer: syz [ 520.397234][ T5897] usb 6-1: SerialNumber: syz [ 520.713840][ T5897] usb 6-1: config 0 descriptor?? [ 520.787355][ T5897] dvb-usb: found a 'Medion MD95700 (MDUSBTV-HYBRID)' in warm state. [ 520.797130][ T5897] usb 6-1: setting power ON [ 520.802063][ T5897] dvb-usb: bulk message failed: -22 (2/0) [ 521.013827][ T9028] dvb-usb: bulk message failed: -22 (3/0) [ 521.021412][ T9028] dvb-usb: bulk message failed: -22 (4/0) [ 521.028277][ T9028] cxusb: i2c read failed [ 521.126049][ T5897] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer. [ 521.292521][ T9028] dvb-usb: bulk message failed: -22 (3/0) [ 521.377125][ T5897] dvbdev: DVB: registering new adapter (Medion MD95700 (MDUSBTV-HYBRID)) [ 521.387618][ T5897] usb 6-1: media controller created [ 521.427360][ T9031] loop1: detected capacity change from 0 to 32768 [ 521.514145][ T9031] XFS (loop1): DAX unsupported by block device. Turning off DAX. [ 521.529031][ T9031] XFS (loop1): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 521.532242][ T5897] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered. [ 521.576643][ T9035] sctp: failed to load transform for md5: -2 [ 522.110874][ T5897] usb 6-1: selecting invalid altsetting 6 [ 522.116833][ T5897] usb 6-1: digital interface selection failed (-22) [ 522.123892][ T5897] dvb-usb: no frontend was attached by 'Medion MD95700 (MDUSBTV-HYBRID)' [ 522.255877][ T5897] usb 6-1: setting power OFF [ 522.270282][ T5897] dvb-usb: bulk message failed: -22 (2/0) [ 522.276193][ T5897] dvb-usb: Medion MD95700 (MDUSBTV-HYBRID) successfully initialized and connected. [ 522.288024][ T5897] (NULL device *): no alternate interface [ 522.684023][ T9031] XFS (loop1): Ending clean mount [ 522.796311][ T9031] XFS (loop1): Quotacheck needed: Please wait. [ 522.908845][ T9031] XFS (loop1): Quotacheck: Done. [ 523.259670][ T5828] XFS (loop1): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 523.516470][ T5897] dvb-usb: Medion MD95700 (MDUSBTV-HYBRID) successfully deinitialized and disconnected. [ 523.690837][ T5897] usb 6-1: USB disconnect, device number 3 [ 524.456243][ T9061] netlink: 176 bytes leftover after parsing attributes in process `syz.0.1225'. [ 526.224040][ T9070] pimreg0: tun_chr_ioctl cmd 1074812118 [ 528.247501][ T9087] loop0: detected capacity change from 0 to 1024 [ 528.440246][ T9093] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 528.657468][ T9087] EXT4-fs (loop0): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none. [ 528.670367][ T9087] ext4 filesystem being mounted at /247/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 528.839192][ T9093] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 529.315991][ T9093] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 529.603472][ T9093] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 530.022832][ T1897] EXT4-fs error (device loop0): ext4_map_blocks:814: inode #15: comm kworker/u8:9: lblock 0 mapped to illegal pblock 0 (length 1) [ 530.100466][ T1897] EXT4-fs (loop0): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 117 [ 530.113427][ T1897] EXT4-fs (loop0): This should not happen!! Data will be lost [ 530.113427][ T1897] [ 530.227989][ T5814] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0006-0000-000000000000. [ 530.267744][ T35] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 530.430225][ T35] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 530.496390][ T35] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 530.581885][ T35] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 531.714220][ T1288] ieee802154 phy0 wpan0: encryption failed: -22 [ 531.721301][ T1288] ieee802154 phy1 wpan1: encryption failed: -22 [ 532.730844][ T9113] loop5: detected capacity change from 0 to 512 [ 532.878523][ T9113] EXT4-fs (loop5): mounted filesystem 00800000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 533.009813][ T9113] EXT4-fs (loop5): shut down requested (1) [ 533.183095][ T8322] EXT4-fs (loop5): unmounting filesystem 00800000-0000-0000-0000-000000000000. [ 533.722805][ T9122] netlink: 24 bytes leftover after parsing attributes in process `syz.5.1251'. [ 535.766998][ T5897] kernel write not supported for file /dsp (pid: 5897 comm: kworker/1:6) [ 535.793885][ T9140] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1259'. [ 535.971556][ T9140] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1259'. [ 536.380383][ T9148] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1263'. [ 537.081846][ T9156] sch_fq: defrate 0 ignored. [ 540.005297][ T9191] loop1: detected capacity change from 0 to 128 [ 540.775286][ T9189] loop0: detected capacity change from 0 to 4096 [ 541.083199][ T9204] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 542.968714][ T9224] mac80211_hwsim hwsim12 wlan0: entered promiscuous mode [ 542.976322][ T9224] macsec1: entered promiscuous mode [ 542.983133][ T9224] macsec1: entered allmulticast mode [ 542.988613][ T9224] mac80211_hwsim hwsim12 wlan0: entered allmulticast mode [ 544.101319][ T9238] erspan0: entered promiscuous mode [ 546.265550][ T9252] loop5: detected capacity change from 0 to 8192 [ 546.412414][ T9252] syz.5.1313: attempt to access beyond end of device [ 546.412414][ T9252] loop5: rw=0, sector=57847, nr_sectors = 1 limit=8192 [ 546.561134][ T9252] FAT-fs (loop5): error, invalid access to FAT (entry 0x0000e1b1) [ 546.570527][ T9252] FAT-fs (loop5): Filesystem has been set read-only [ 546.629259][ T9252] FAT-fs (loop5): error, invalid access to FAT (entry 0x0000e1b1) [ 546.644727][ T9270] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1322'. [ 546.712255][ T9252] FAT-fs (loop5): error, invalid access to FAT (entry 0x0000e1b1) [ 547.698857][ T9279] loop5: detected capacity change from 0 to 2048 [ 547.820749][ T9279] NILFS (loop5): broken superblock, retrying with spare superblock (blocksize = 1024) [ 548.011813][ T9285] NILFS (loop5): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 551.045314][ T9323] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1345'. [ 552.019067][ T9338] netlink: 'syz.3.1351': attribute type 6 has an invalid length. [ 553.631566][ T9355] loop2: detected capacity change from 0 to 2048 [ 553.841336][ T9355] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 554.163059][ T9363] netlink: 84 bytes leftover after parsing attributes in process `syz.1.1361'. [ 554.607835][ T9367] netlink: 'syz.5.1363': attribute type 29 has an invalid length. [ 554.687222][ T9367] netlink: 'syz.5.1363': attribute type 29 has an invalid length. [ 554.785583][ T9370] netlink: 'syz.5.1363': attribute type 29 has an invalid length. [ 555.356476][ T9354] loop0: detected capacity change from 0 to 8192 [ 558.457650][ T9410] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1382'. [ 558.880701][ T11] usb 6-1: new high-speed USB device number 4 using dummy_hcd [ 559.075966][ T11] usb 6-1: New USB device found, idVendor=17e9, idProduct=8b4e, bcdDevice=9c.08 [ 559.085819][ T11] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 559.150256][ T11] usb 6-1: config 0 descriptor?? [ 559.444300][ T11] udl 6-1:0.0: [drm] Unrecognized vendor firmware descriptor [ 559.660909][ T11] [drm:udl_init] *ERROR* Selecting channel failed [ 559.792488][ T11] [drm] Initialized udl 0.0.1 for 6-1:0.0 on minor 2 [ 559.800887][ T11] [drm] Initialized udl on minor 2 [ 559.840241][ T11] udl 6-1:0.0: [drm] *ERROR* Read EDID byte 0 failed err ffffffb9 [ 559.852940][ T11] udl 6-1:0.0: [drm] Cannot find any crtc or sizes [ 559.870133][ T9] udl 6-1:0.0: [drm] *ERROR* Read EDID byte 0 failed err ffffffb9 [ 559.891670][ T9] udl 6-1:0.0: [drm] *ERROR* Read EDID byte 0 failed err ffffffb9 [ 559.900418][ T9] udl 6-1:0.0: [drm] Cannot find any crtc or sizes [ 559.946138][ T11] usb 6-1: USB disconnect, device number 4 [ 563.154795][ T9457] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1401'. [ 563.746751][ T9461] syzkaller0: tun_chr_ioctl cmd 1074025677 [ 563.753915][ T9461] syzkaller0: linktype set to 1 [ 564.470556][ T5111] Bluetooth: hci5: command 0x0406 tx timeout [ 564.545241][ T9471] team0: Device veth1_vlan failed to register rx_handler [ 565.262381][ T9484] 9pnet_fd: Insufficient options for proto=fd [ 566.441696][ T9500] loop0: detected capacity change from 0 to 1024 [ 566.527524][ T9493] loop5: detected capacity change from 0 to 4096 [ 566.616024][ T9493] ntfs3(loop5): Different NTFS sector size (4096) and media sector size (512). [ 566.626033][ T9500] hfsplus: can't free extent [ 567.105418][ T9493] ntfs3(loop5): ino=19, mi_enum_attr [ 567.114076][ T9493] ntfs3(loop5): Mark volume as dirty due to NTFS errors [ 568.119874][ T5897] IPVS: starting estimator thread 0... [ 568.154178][ T5865] kernel write not supported for file /sg0 (pid: 5865 comm: kworker/0:3) [ 568.230813][ T9523] IPVS: using max 240 ests per chain, 12000 per kthread [ 570.449786][ T9544] loop1: detected capacity change from 0 to 4096 [ 570.489625][ T9544] ntfs3(loop1): Different NTFS sector size (4096) and media sector size (512). [ 570.644436][ T9552] loop2: detected capacity change from 0 to 512 [ 570.685310][ T9552] EXT4-fs: Ignoring removed nobh option [ 570.691776][ T9552] EXT4-fs: Ignoring removed mblk_io_submit option [ 570.963416][ T9552] EXT4-fs (loop2): Cannot turn on journaled quota: type 0: error -2 [ 570.983782][ T9552] EXT4-fs error (device loop2): ext4_free_branches:1023: inode #13: comm syz.2.1443: invalid indirect mapped block 256 (level 1) [ 571.016281][ T9552] EXT4-fs error (device loop2): ext4_free_branches:1023: inode #13: comm syz.2.1443: invalid indirect mapped block 2683928664 (level 1) [ 571.116171][ T9552] EXT4-fs (loop2): 1 truncate cleaned up [ 571.124230][ T9552] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 571.318808][ T9544] ntfs3(loop1): ino=19, mi_enum_attr [ 571.324978][ T9544] ntfs3(loop1): Mark volume as dirty due to NTFS errors [ 571.369551][ T9552] EXT4-fs (loop2): shut down requested (1) [ 571.764959][ T5815] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 571.821093][ T9565] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1447'. [ 572.009655][ T9568] netlink: 148 bytes leftover after parsing attributes in process `syz.0.1449'. [ 572.402152][ T9572] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1451'. [ 576.099958][ T5897] usb 2-1: new high-speed USB device number 11 using dummy_hcd [ 576.369724][ T5897] usb 2-1: config 0 has no interfaces? [ 576.419770][ T5897] usb 2-1: New USB device found, idVendor=0af0, idProduct=7a05, bcdDevice=f6.00 [ 576.429066][ T5897] usb 2-1: New USB device strings: Mfr=0, Product=2, SerialNumber=3 [ 576.442522][ T5897] usb 2-1: Product: syz [ 576.446880][ T5897] usb 2-1: SerialNumber: syz [ 576.541282][ T5897] usb 2-1: config 0 descriptor?? [ 576.767288][ T9618] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 576.777583][ T9618] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 576.850842][ T7129] Bluetooth: hci4: Dropping invalid advertising data [ 576.857780][ T7129] Bluetooth: hci4: unknown advertising packet type: 0x82 [ 576.857891][ T7129] Bluetooth: hci4: unknown advertising packet type: 0x07 [ 576.865649][ T7129] Bluetooth: hci4: Malformed LE Event: 0x02 [ 576.888427][ T5897] usb 2-1: USB disconnect, device number 11 [ 577.150283][ T9637] loop5: detected capacity change from 0 to 64 [ 578.614833][ T9656] netlink: 24 bytes leftover after parsing attributes in process `syz.5.1487'. [ 578.724472][ T9657] Invalid ELF header magic: != ELF [ 579.118020][ T9661] loop5: detected capacity change from 0 to 256 [ 579.556354][ T9666] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(3) [ 579.563108][ T9666] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed) [ 579.571489][ T9666] vhci_hcd vhci_hcd.0: Device attached [ 579.840016][ T5865] usb 39-1: new low-speed USB device number 2 using vhci_hcd [ 579.870115][ T5897] usb 4-1: new high-speed USB device number 6 using dummy_hcd [ 580.122932][ T5897] usb 4-1: config 0 has no interfaces? [ 580.128666][ T5897] usb 4-1: New USB device found, idVendor=0de5, idProduct=0056, bcdDevice= 5.b5 [ 580.138712][ T5897] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 580.228553][ T5897] usb 4-1: config 0 descriptor?? [ 580.457686][ T9475] usb 4-1: USB disconnect, device number 6 [ 580.479920][ T9668] vhci_hcd: connection closed [ 580.510552][ T3848] vhci_hcd: stop threads [ 580.521042][ T3848] vhci_hcd: release socket [ 580.528472][ T3848] vhci_hcd: disconnect device [ 580.546951][ T5865] vhci_hcd: vhci_device speed not set [ 580.571597][ T9682] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1498'. [ 581.548543][ T9694] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1503'. [ 582.213432][ T5897] usb 1-1: new high-speed USB device number 5 using dummy_hcd [ 582.244223][ T9703] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1507'. [ 582.300421][ T9703] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1507'. [ 582.442079][ T5897] usb 1-1: config 0 has too many interfaces: 65, using maximum allowed: 32 [ 582.451181][ T5897] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 582.461887][ T5897] usb 1-1: config 0 has 0 interfaces, different from the descriptor's value: 65 [ 582.476425][ T5897] usb 1-1: New USB device found, idVendor=046d, idProduct=c626, bcdDevice= 0.00 [ 582.487588][ T5897] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 582.685581][ T5897] usb 1-1: config 0 descriptor?? [ 582.952420][ T5865] usb 1-1: USB disconnect, device number 5 [ 583.572118][ T9716] input: syz1 as /devices/virtual/input/input11 [ 584.820425][ T9726] netlink: 96 bytes leftover after parsing attributes in process `syz.3.1517'. [ 584.877438][ T9728] loop9: detected capacity change from 0 to 8 [ 584.900888][ T9728] Dev loop9: unable to read RDB block 8 [ 584.906811][ T9728] loop9: unable to read partition table [ 584.950361][ T9728] loop9: partition table beyond EOD, truncated [ 584.956762][ T9728] loop_reread_partitions: partition scan of loop9 (■швлx№        ) failed (rc=-5) [ 585.568072][ T9736] loop1: detected capacity change from 0 to 128 [ 585.691061][ T5865] usb 1-1: new high-speed USB device number 6 using dummy_hcd [ 585.756389][ T9738] loop5: detected capacity change from 0 to 512 [ 585.766164][ T9736] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 585.841785][ T9736] ext4 filesystem being mounted at /303/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 585.880442][ T5865] usb 1-1: Using ep0 maxpacket: 32 [ 585.890657][ T9738] EXT4-fs error (device loop5): ext4_orphan_get:1392: inode #15: comm syz.5.1523: iget: bad i_size value: 38620345925642 [ 585.950642][ T9738] EXT4-fs error (device loop5): ext4_orphan_get:1397: comm syz.5.1523: couldn't read orphan inode 15 (err -117) [ 585.982220][ T5865] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 585.993754][ T5865] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 586.006912][ T5865] usb 1-1: New USB device found, idVendor=1e7d, idProduct=2d5a, bcdDevice= 0.00 [ 586.007225][ T9738] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 586.017511][ T5865] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 586.112282][ T5828] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 586.148707][ T30] audit: type=1804 audit(1758861136.549:50): pid=9738 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.5.1523" name="/newroot/94/file1/cgroup.controllers" dev="loop5" ino=18 res=1 errno=0 [ 586.184869][ T5865] usb 1-1: config 0 descriptor?? [ 586.386079][ T8322] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 586.638976][ T5865] savu 0003:1E7D:2D5A.0008: unknown main item tag 0x6 [ 586.731900][ T5865] savu 0003:1E7D:2D5A.0008: hidraw0: USB HID v0.00 Device [HID 1e7d:2d5a] on usb-dummy_hcd.0-1/input0 [ 586.798099][ T9746] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1525'. [ 586.833871][ T5897] usb 1-1: USB disconnect, device number 6 [ 587.677678][ T9753] fido_id[9753]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.0/usb1/report_descriptor': No such file or directory [ 588.111082][ T9768] loop1: detected capacity change from 0 to 512 [ 588.174241][ T9768] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 588.354266][ T9768] EXT4-fs error (device loop1): ext4_get_branch:178: inode #11: block 4294967295: comm syz.1.1535: invalid block [ 588.429829][ T9768] EXT4-fs error (device loop1): ext4_free_branches:1023: inode #11: comm syz.1.1535: invalid indirect mapped block 4294967295 (level 1) [ 588.579787][ T9768] EXT4-fs error (device loop1): ext4_free_branches:1023: inode #11: comm syz.1.1535: invalid indirect mapped block 4294967295 (level 1) [ 588.660391][ T9768] EXT4-fs (loop1): 2 truncates cleaned up [ 588.668589][ T9768] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 588.705189][ T30] audit: type=1326 audit(1758861139.129:51): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9772 comm="syz.0.1537" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f24539 code=0x7ffc0000 [ 588.729876][ T30] audit: type=1326 audit(1758861139.129:52): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9772 comm="syz.0.1537" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f24539 code=0x7ffc0000 [ 588.753560][ T30] audit: type=1326 audit(1758861139.149:53): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9772 comm="syz.0.1537" exe="/root/syz-executor" sig=0 arch=40000003 syscall=370 compat=1 ip=0xf7f24539 code=0x7ffc0000 [ 588.775981][ T30] audit: type=1326 audit(1758861139.159:54): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9772 comm="syz.0.1537" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f24539 code=0x7ffc0000 [ 588.897208][ T9768] EXT4-fs error (device loop1): ext4_validate_block_bitmap:432: comm syz.1.1535: bg 0: block 5: invalid block bitmap [ 588.934350][ T30] audit: type=1326 audit(1758861139.239:55): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9772 comm="syz.0.1537" exe="/root/syz-executor" sig=0 arch=40000003 syscall=372 compat=1 ip=0xf7f24539 code=0x7ffc0000 [ 588.936956][ T9777] loop3: detected capacity change from 0 to 256 [ 588.956988][ T30] audit: type=1326 audit(1758861139.239:56): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9772 comm="syz.0.1537" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f24539 code=0x7ffc0000 [ 588.985604][ T30] audit: type=1326 audit(1758861139.239:57): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9772 comm="syz.0.1537" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f24539 code=0x7ffc0000 [ 589.075570][ T9777] FAT-fs (loop3): Directory bread(block 1285) failed [ 589.211716][ T9777] FAT-fs (loop3): Directory bread(block 1285) failed [ 589.315639][ T9782] loop2: detected capacity change from 0 to 64 [ 589.347711][ T9782] BFS-fs: bfs_fill_super(): loop2 is unclean, continuing [ 589.501746][ T5828] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 593.165068][ T1288] ieee802154 phy0 wpan0: encryption failed: -22 [ 593.172100][ T1288] ieee802154 phy1 wpan1: encryption failed: -22 [ 594.152160][ T9849] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1572'. [ 594.512161][ T9854] loop1: detected capacity change from 0 to 256 [ 594.565190][ T9854] exFAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 594.576273][ T9854] exFAT-fs (loop1): Medium has reported failures. Some data may be lost. [ 594.696408][ T9854] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d) [ 595.400709][ T5897] usb 4-1: new high-speed USB device number 7 using dummy_hcd [ 595.412198][ T9864] loop0: detected capacity change from 0 to 1024 [ 595.634521][ T5897] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 595.645882][ T5897] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 595.656122][ T5897] usb 4-1: New USB device found, idVendor=1e7d, idProduct=2cf6, bcdDevice= 0.00 [ 595.665501][ T5897] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 595.742800][ T5897] usb 4-1: config 0 descriptor?? [ 595.925311][ T9872] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1583'. [ 595.953562][ T9872] bridge0: port 3(vlan3) entered blocking state [ 595.960647][ T9872] bridge0: port 3(vlan3) entered disabled state [ 595.967578][ T9872] vlan3: entered allmulticast mode [ 595.973055][ T9872] bridge0: entered allmulticast mode [ 596.071100][ T9872] vlan3: left allmulticast mode [ 596.076285][ T9872] bridge0: left allmulticast mode [ 596.132723][ T9876] loop1: detected capacity change from 0 to 128 [ 596.227536][ T9876] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 596.254052][ T5897] pyra 0003:1E7D:2CF6.0009: hidraw0: USB HID v0.00 Device [HID 1e7d:2cf6] on usb-dummy_hcd.3-1/input0 [ 596.313244][ T9876] ext4 filesystem being mounted at /314/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 596.422082][ T5897] pyra 0003:1E7D:2CF6.0009: couldn't init struct pyra_device [ 596.430595][ T5897] pyra 0003:1E7D:2CF6.0009: couldn't install mouse [ 596.534489][ T5897] pyra 0003:1E7D:2CF6.0009: probe with driver pyra failed with error -71 [ 596.610866][ T5897] usb 4-1: USB disconnect, device number 7 [ 596.772920][ T5828] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 597.086822][ T9887] loop0: detected capacity change from 0 to 256 [ 597.266926][ T9887] exFAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 597.278903][ T9887] exFAT-fs (loop0): Medium has reported failures. Some data may be lost. [ 597.382948][ T9890] loop5: detected capacity change from 0 to 16 [ 597.487308][ T9890] erofs (device loop5): mounted with root inode @ nid 36. [ 597.521471][ T9887] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d) [ 598.024705][ T9891] fido_id[9891]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.3/usb4/report_descriptor': No such file or directory [ 599.251398][ T9912] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1600'. [ 599.343660][ T9914] loop5: detected capacity change from 0 to 512 [ 599.478729][ T9914] EXT4-fs error (device loop5): ext4_iget_extra_inode:5104: inode #15: comm syz.5.1601: corrupted in-inode xattr: invalid ea_ino [ 599.534544][ T9914] EXT4-fs error (device loop5): ext4_orphan_get:1397: comm syz.5.1601: couldn't read orphan inode 15 (err -117) [ 599.563398][ T9914] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 599.687906][ T5897] usb 2-1: new high-speed USB device number 12 using dummy_hcd [ 599.899646][ T5897] usb 2-1: Using ep0 maxpacket: 8 [ 599.957469][ T5897] usb 2-1: New USB device found, idVendor=0ccd, idProduct=00b3, bcdDevice=2d.ea [ 599.967213][ T5897] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 599.975699][ T5897] usb 2-1: Product: syz [ 599.980308][ T5897] usb 2-1: Manufacturer: syz [ 599.989892][ T5897] usb 2-1: SerialNumber: syz [ 600.008365][ T9926] loop0: detected capacity change from 0 to 16 [ 600.024102][ T8322] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 600.048181][ T5897] usb 2-1: config 0 descriptor?? [ 600.111076][ T9926] erofs (device loop0): mounted with root inode @ nid 36. [ 600.216694][ T9926] overlayfs: failed to get metacopy (-117) [ 600.347767][ T5897] usb 2-1: dvb_usb_v2: found a 'TerraTec NOXON DAB Stick' in warm state [ 600.580946][ T5468] usb 6-1: new full-speed USB device number 5 using dummy_hcd [ 600.768050][ T9932] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1608'. [ 600.778151][ T9932] netlink: 1 bytes leftover after parsing attributes in process `syz.3.1608'. [ 600.810744][ T5897] dvb_usb_rtl28xxu 2-1:0.0: probe with driver dvb_usb_rtl28xxu failed with error -71 [ 600.852394][ T5468] usb 6-1: config index 0 descriptor too short (expected 69, got 36) [ 600.861158][ T5468] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 600.880016][ T5897] usb 2-1: USB disconnect, device number 12 [ 601.015831][ T5468] usb 6-1: New USB device found, idVendor=093a, idProduct=2622, bcdDevice=b7.89 [ 601.025347][ T5468] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 601.033704][ T5468] usb 6-1: Product: syz [ 601.038032][ T5468] usb 6-1: Manufacturer: syz [ 601.042900][ T5468] usb 6-1: SerialNumber: syz [ 601.193737][ T5468] usb 6-1: config 0 descriptor?? [ 601.278283][ T5468] gspca_main: gspca_pac7302-2.14.0 probing 093a:2622 [ 601.596512][ T1845] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 601.867784][ T1845] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 602.046153][ T5468] gspca_pac7302: reg_w() failed i: ff v: 01 error -71 [ 602.053690][ T5468] gspca_pac7302 6-1:0.0: probe with driver gspca_pac7302 failed with error -71 [ 602.114280][ T5468] usb 6-1: USB disconnect, device number 5 [ 602.114420][ T30] audit: type=1326 audit(1758861152.529:58): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9938 comm="syz.1.1613" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f96539 code=0x7ffc0000 [ 602.156592][ T1845] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 602.266256][ T30] audit: type=1326 audit(1758861152.589:59): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9938 comm="syz.1.1613" exe="/root/syz-executor" sig=0 arch=40000003 syscall=224 compat=1 ip=0xf7f96539 code=0x7ffc0000 [ 602.289811][ T30] audit: type=1326 audit(1758861152.589:60): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9938 comm="syz.1.1613" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f96539 code=0x7ffc0000 [ 602.313154][ T30] audit: type=1326 audit(1758861152.589:61): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9938 comm="syz.1.1613" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f96539 code=0x7ffc0000 [ 602.336010][ T30] audit: type=1326 audit(1758861152.599:62): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9938 comm="syz.1.1613" exe="/root/syz-executor" sig=0 arch=40000003 syscall=177 compat=1 ip=0xf7f96539 code=0x7ffc0000 [ 602.360308][ T30] audit: type=1326 audit(1758861152.649:63): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9938 comm="syz.1.1613" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f96539 code=0x7ffc0000 [ 602.383786][ T30] audit: type=1326 audit(1758861152.649:64): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9938 comm="syz.1.1613" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f96539 code=0x7ffc0000 [ 602.527909][ T1845] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 602.810065][ T1845] bridge_slave_1: left allmulticast mode [ 602.815921][ T1845] bridge_slave_1: left promiscuous mode [ 602.822594][ T1845] bridge0: port 2(bridge_slave_1) entered disabled state [ 602.920726][ T1845] bridge_slave_0: left allmulticast mode [ 602.926571][ T1845] bridge_slave_0: left promiscuous mode [ 602.933492][ T1845] bridge0: port 1(bridge_slave_0) entered disabled state [ 603.436042][ T1845] bridge0 (unregistering): left allmulticast mode [ 603.585689][ T1845] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 603.614666][ T1845] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 603.645252][ T1845] bond0 (unregistering): Released all slaves [ 604.232966][ T9948] loop1: detected capacity change from 0 to 1024 [ 604.337807][ T1845] hsr_slave_0: left promiscuous mode [ 604.362205][ T1845] hsr_slave_1: left promiscuous mode [ 604.370321][ T1845] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 604.378064][ T1845] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 604.472553][ T1845] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 604.480237][ T1845] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 604.655243][ T1845] veth1_macvtap: left promiscuous mode [ 604.661166][ T1845] veth0_macvtap: left promiscuous mode [ 604.667199][ T1845] veth1_vlan: left promiscuous mode [ 604.673111][ T1845] veth0_vlan: left promiscuous mode [ 605.161350][ T8412] hfsplus: b-tree write err: -5, ino 4 [ 605.208926][ T5111] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 605.219477][ T5111] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 605.230332][ T5111] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 605.246470][ T5111] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 605.268466][ T5111] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 605.861600][ T1845] team0 (unregistering): Port device team_slave_1 removed [ 605.950174][ T1845] team0 (unregistering): Port device team_slave_0 removed [ 607.350399][ T5111] Bluetooth: hci0: command tx timeout [ 607.516154][ T9979] loop5: detected capacity change from 0 to 1764 [ 608.152336][ T9958] chnl_net:caif_netlink_parms(): no params data found [ 609.438024][ T5111] Bluetooth: hci0: command tx timeout [ 609.883166][T10015] loop1: detected capacity change from 0 to 256 [ 609.966788][ T9958] bridge0: port 1(bridge_slave_0) entered blocking state [ 609.974578][ T9958] bridge0: port 1(bridge_slave_0) entered disabled state [ 609.982560][ T9958] bridge_slave_0: entered allmulticast mode [ 609.992186][ T9958] bridge_slave_0: entered promiscuous mode [ 610.208990][ T9958] bridge0: port 2(bridge_slave_1) entered blocking state [ 610.216780][ T9958] bridge0: port 2(bridge_slave_1) entered disabled state [ 610.227874][ T9958] bridge_slave_1: entered allmulticast mode [ 610.237510][ T9958] bridge_slave_1: entered promiscuous mode [ 610.248133][T10017] loop3: detected capacity change from 0 to 512 [ 610.705738][ T9958] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 610.824079][ T9958] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 610.913115][T10022] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1647'. [ 611.096748][T10025] loop5: detected capacity change from 0 to 512 [ 611.171691][T10025] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 611.291228][ T9958] team0: Port device team_slave_0 added [ 611.308130][T10025] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 611.321559][T10025] ext4 filesystem being mounted at /121/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 611.389910][ T9958] team0: Port device team_slave_1 added [ 611.512303][T10025] EXT4-fs (loop5): shut down requested (1) [ 611.527089][ T5111] Bluetooth: hci0: command tx timeout [ 611.619156][ T9958] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 611.626438][ T9958] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 611.653430][ T9958] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 611.763994][ T9958] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 611.772370][ T9958] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 611.798783][ T9958] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 612.022384][ T8322] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 612.454490][ T9958] hsr_slave_0: entered promiscuous mode [ 612.464664][ T9958] hsr_slave_1: entered promiscuous mode [ 612.473547][ T9958] debugfs: 'hsr0' already exists in 'hsr' [ 612.483571][ T9958] Cannot create hsr debugfs directory [ 613.075214][T10048] loop5: detected capacity change from 0 to 1024 [ 613.334697][T10048] ===================================================== [ 613.342140][T10048] BUG: KMSAN: uninit-value in hfsplus_rename_cat+0x1173/0x17e0 [ 613.350190][T10048] hfsplus_rename_cat+0x1173/0x17e0 [ 613.355578][T10048] hfsplus_rename+0x1fc/0x2f0 [ 613.360591][T10048] vfs_rename+0x1f4e/0x2530 [ 613.365286][T10048] do_renameat2+0x1484/0x1a50 [ 613.370267][T10048] __ia32_sys_rename+0xd7/0x140 [ 613.375306][T10048] ia32_sys_call+0x351c/0x4310 [ 613.380431][T10048] __do_fast_syscall_32+0xb0/0x150 [ 613.385705][T10048] do_fast_syscall_32+0x38/0x80 [ 613.391215][T10048] do_SYSENTER_32+0x1f/0x30 [ 613.399814][T10048] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 613.406340][T10048] [ 613.408740][T10048] Uninit was stored to memory at: [ 613.415241][T10048] hfsplus_rename_cat+0x10a9/0x17e0 [ 613.420902][T10048] hfsplus_rename+0x1fc/0x2f0 [ 613.425758][T10048] vfs_rename+0x1f4e/0x2530 SYZFAIL: failed to recv rpc fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor) [ 613.430584][T10048] do_renameat2+0x1484/0x1a50 [ 613.435448][T10048] __ia32_sys_rename+0xd7/0x140 [ 613.440622][T10048] ia32_sys_call+0x351c/0x4310 [ 613.445533][T10048] __do_fast_syscall_32+0xb0/0x150 [ 613.450901][T10048] do_fast_syscall_32+0x38/0x80 [ 613.455898][T10048] do_SYSENTER_32+0x1f/0x30 [ 613.460677][T10048] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 613.467178][T10048] [ 613.469702][T10048] Uninit was stored to memory at: [ 613.474923][T10048] hfsplus_create_cat+0x18fb/0x1910 [ 613.481035][T10048] hfsplus_fill_super+0x211d/0x2730 [ 613.486396][T10048] get_tree_bdev_flags+0x6e6/0x920 [ 613.491832][T10048] get_tree_bdev+0x38/0x50 [ 613.496425][T10048] hfsplus_get_tree+0x35/0x40 [ 613.504935][T10048] vfs_get_tree+0xb3/0x5c0 [ 613.510845][T10048] do_new_mount+0x733/0x1420 [ 613.515614][T10048] path_mount+0x6db/0x1e90 [ 613.520317][T10048] __se_sys_mount+0x6eb/0x7d0 [ 613.525188][T10048] __ia32_sys_mount+0xe2/0x150 [ 613.530250][T10048] ia32_sys_call+0x2c16/0x4310 [ 613.535169][T10048] __do_fast_syscall_32+0xb0/0x150 [ 613.540614][T10048] do_fast_syscall_32+0x38/0x80 [ 613.545617][T10048] do_SYSENTER_32+0x1f/0x30 [ 613.550394][T10048] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 613.556901][T10048] [ 613.559434][T10048] Uninit was created at: [ 613.563870][T10048] __alloc_frozen_pages_noprof+0x689/0xf00 [ 613.570441][T10048] alloc_pages_mpol+0x328/0x860 [ 613.575466][T10048] alloc_frozen_pages_noprof+0xf7/0x200 [ 613.581306][T10048] allocate_slab+0x24d/0x1220 [ 613.586131][T10048] ___slab_alloc+0xff3/0x3470 [ 613.594093][T10048] kmem_cache_alloc_lru_noprof+0x922/0xed0 [ 613.601190][T10048] hfsplus_alloc_inode+0x5a/0xd0 [ 613.606282][T10048] alloc_inode+0x87/0x4a0 [ 613.614453][T10048] iget_locked+0x239/0x12d0 [ 613.619155][T10048] hfsplus_iget+0x5c/0xb80 [ 613.625054][T10048] hfsplus_btree_open+0x128/0x1cf0 [ 613.630541][T10048] hfsplus_fill_super+0x1161/0x2730 [ 613.635900][T10048] get_tree_bdev_flags+0x6e6/0x920 [ 613.641304][T10048] get_tree_bdev+0x38/0x50 [ 613.645889][T10048] hfsplus_get_tree+0x35/0x40 [ 613.650921][T10048] vfs_get_tree+0xb3/0x5c0 [ 613.655508][T10048] do_new_mount+0x733/0x1420 [ 613.661367][T10048] path_mount+0x6db/0x1e90 [ 613.665242][ T5111] Bluetooth: hci0: command tx timeout [ 613.665934][T10048] __se_sys_mount+0x6eb/0x7d0 [ 613.666072][T10048] __ia32_sys_mount+0xe2/0x150 [ 613.681788][T10048] ia32_sys_call+0x2c16/0x4310 [ 613.686690][T10048] __do_fast_syscall_32+0xb0/0x150 [ 613.692146][T10048] do_fast_syscall_32+0x38/0x80 [ 613.697142][T10048] do_SYSENTER_32+0x1f/0x30 [ 613.701901][T10048] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 613.712062][T10048] [ 613.714509][T10048] CPU: 1 UID: 0 PID: 10048 Comm: syz.5.1657 Not tainted syzkaller #0 PREEMPT(none) [ 613.725371][T10048] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 613.735688][T10048] ===================================================== [ 613.742878][T10048] Disabling lock debugging due to kernel taint [ 613.749123][T10048] Kernel panic - not syncing: kmsan.panic set ... [ 613.755677][T10048] CPU: 1 UID: 0 PID: 10048 Comm: syz.5.1657 Tainted: G B syzkaller #0 PREEMPT(none) [ 613.766798][T10048] Tainted: [B]=BAD_PAGE [ 613.771035][T10048] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 613.781213][T10048] Call Trace: [ 613.784582][T10048] [ 613.787602][T10048] __dump_stack+0x26/0x30 [ 613.792133][T10048] dump_stack_lvl+0x53/0x270 [ 613.796907][T10048] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 613.802898][T10048] dump_stack+0x1e/0x25 [ 613.807226][T10048] vpanic+0x361/0xc50 [ 613.811393][T10048] panic+0x15d/0x160 [ 613.815514][T10048] kmsan_report+0x31c/0x320 [ 613.820195][T10048] ? __msan_warning+0x1b/0x30 [ 613.825034][T10048] ? hfsplus_rename_cat+0x1173/0x17e0 [ 613.830589][T10048] ? hfsplus_rename+0x1fc/0x2f0 [ 613.835632][T10048] ? vfs_rename+0x1f4e/0x2530 [ 613.840498][T10048] ? do_renameat2+0x1484/0x1a50 [ 613.845573][T10048] ? __ia32_sys_rename+0xd7/0x140 [ 613.850800][T10048] ? ia32_sys_call+0x351c/0x4310 [ 613.855885][T10048] ? __do_fast_syscall_32+0xb0/0x150 [ 613.861328][T10048] ? do_fast_syscall_32+0x38/0x80 [ 613.866500][T10048] ? do_SYSENTER_32+0x1f/0x30 [ 613.871329][T10048] ? entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 613.878023][T10048] ? kmsan_get_metadata+0xfb/0x160 [ 613.883316][T10048] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 613.889315][T10048] ? hfsplus_bnode_dump+0x50a/0x560 [ 613.894726][T10048] ? kmsan_get_metadata+0xfb/0x160 [ 613.900011][T10048] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 613.906011][T10048] ? hfsplus_brec_remove+0x92f/0xa60 [ 613.911529][T10048] ? kmsan_get_metadata+0xfb/0x160 [ 613.916836][T10048] __msan_warning+0x1b/0x30 [ 613.921493][T10048] hfsplus_rename_cat+0x1173/0x17e0 [ 613.926925][T10048] ? kfree+0x121/0xec0 [ 613.931164][T10048] ? filter_irq_stacks+0x49/0x190 [ 613.936343][T10048] ? stack_depot_save_flags+0x35/0x7b0 [ 613.941961][T10048] ? kmsan_get_metadata+0xfb/0x160 [ 613.947248][T10048] ? kmsan_get_metadata+0xfb/0x160 [ 613.952529][T10048] ? kmsan_internal_set_shadow_origin+0x79/0x110 [ 613.959040][T10048] ? kmsan_get_metadata+0xfb/0x160 [ 613.964324][T10048] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 613.970317][T10048] ? kmsan_get_metadata+0xfb/0x160 [ 613.975608][T10048] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 613.981639][T10048] ? kmsan_internal_set_shadow_origin+0x79/0x110 [ 613.988149][T10048] hfsplus_rename+0x1fc/0x2f0 [ 613.993015][T10048] ? __pfx_hfsplus_rename+0x10/0x10 [ 613.998484][T10048] vfs_rename+0x1f4e/0x2530 [ 614.003263][T10048] do_renameat2+0x1484/0x1a50 [ 614.008199][T10048] __ia32_sys_rename+0xd7/0x140 [ 614.013251][T10048] ia32_sys_call+0x351c/0x4310 [ 614.018161][T10048] __do_fast_syscall_32+0xb0/0x150 [ 614.023421][T10048] ? irqentry_exit_to_user_mode+0x82/0xa0 [ 614.029349][T10048] do_fast_syscall_32+0x38/0x80 [ 614.034346][T10048] do_SYSENTER_32+0x1f/0x30 [ 614.038983][T10048] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 614.045492][T10048] RIP: 0023:0xf705e539 [ 614.049668][T10048] Code: 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 [ 614.069425][T10048] RSP: 002b:00000000f544e55c EFLAGS: 00000206 ORIG_RAX: 0000000000000026 [ 614.077996][T10048] RAX: ffffffffffffffda RBX: 0000000080000000 RCX: 0000000080000380 [ 614.086084][T10048] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 614.094152][T10048] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 614.102221][T10048] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000 [ 614.110289][T10048] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 614.118395][T10048] [ 614.121658][T10048] Kernel Offset: disabled [ 614.126035][T10048] Rebooting in 86400 seconds..