last executing test programs: 19m36.944896783s ago: executing program 4 (id=916): r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000000)=ANY=[@ANYBLOB="12010000ff199610b90661408801010203010902120001000000000904"], 0x0) syz_usb_control_io(r0, &(0x7f0000000100)={0x2c, 0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="0003270000002703"], 0x0, 0x0, 0x0}, 0x0) 19m34.371057098s ago: executing program 4 (id=930): r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r0, &(0x7f0000005c40)={0x0, 0x0, &(0x7f0000005c00)={&(0x7f0000000000)=@newtaction={0x64, 0x30, 0x1, 0x0, 0x0, {}, [{0x50, 0x1, [@m_bpf={0x4c, 0x1, 0x0, 0x0, {{0x8}, {0x24, 0x2, 0x0, 0x1, [@TCA_ACT_BPF_OPS_LEN={0x4}, @TCA_ACT_BPF_PARMS={0x18}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0x64}}, 0x0) 19m33.634517685s ago: executing program 4 (id=935): r0 = socket(0x400000000010, 0x3, 0x0) ioctl$sock_SIOCETHTOOL(r0, 0x89f0, &(0x7f0000001440)={'bridge0\x00', &(0x7f0000000100)=@ethtool_ringparam={0xa, 0x0, 0x300}}) 19m32.953242216s ago: executing program 4 (id=939): syz_mount_image$exfat(&(0x7f0000000480), &(0x7f0000000000)='./file0\x00', 0x800, &(0x7f0000000580)={[{@errors_continue}, {@utf8}, {@iocharset={'iocharset', 0x3d, 'cp850'}}, {@fmask={'fmask', 0x3d, 0x8c1}}, {@iocharset={'iocharset', 0x3d, 'macinuit'}}, {@allow_utime={'allow_utime', 0x3d, 0x4}}, {@keep_last_dots}, {@errors_remount}, {@keep_last_dots}, {@iocharset={'iocharset', 0x3d, 'macinuit'}}, {@namecase}]}, 0x1, 0x1531, &(0x7f0000001f80)="$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") mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x109041, 0x0) 19m31.576761695s ago: executing program 4 (id=945): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000005700)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000005640)=@newlink={0x64, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x48003, 0x10000}, [@IFLA_LINKINFO={0x38, 0x12, 0x0, 0x1, @geneve={{0xb}, {0x28, 0x2, 0x0, 0x1, [@IFLA_GENEVE_REMOTE6={0x14, 0x7, @private0={0xfc, 0x0, '\x00', 0x1}}, @IFLA_GENEVE_REMOTE={0x8, 0x2, @local}, @IFLA_GENEVE_ID={0x8}]}}}, @IFLA_ADDRESS={0xa, 0x1, @remote}]}, 0x64}, 0x1, 0x0, 0x0, 0x20008040}, 0x0) 19m30.760688598s ago: executing program 4 (id=950): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000040)=ANY=[@ANYBLOB="440000001a0001002bbd7000000000000a000000", @ANYRES32=0x0, @ANYBLOB="04000004140003000700000000000000000000000000000014000100ff"], 0x44}}, 0x0) 19m28.188674593s ago: executing program 32 (id=950): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000040)=ANY=[@ANYBLOB="440000001a0001002bbd7000000000000a000000", @ANYRES32=0x0, @ANYBLOB="04000004140003000700000000000000000000000000000014000100ff"], 0x44}}, 0x0) 6m52.20728824s ago: executing program 2 (id=4700): r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$netlbl_cipso(&(0x7f0000000480), r0) sendmsg$NLBL_CIPSOV4_C_ADD(r0, &(0x7f0000000540)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000100)={0x4c, r1, 0x207, 0x0, 0x0, {}, [@NLBL_CIPSOV4_A_MLSLVLLST={0x4}, @NLBL_CIPSOV4_A_TAGLST={0x24, 0x4, 0x0, 0x1, [{0x5, 0x3, 0x1}, {0x5}, {0x5, 0x3, 0x1}, {0x5, 0x3, 0x5}]}, @NLBL_CIPSOV4_A_DOI={0x8, 0x1, 0x3}, @NLBL_CIPSOV4_A_MTYPE={0x8, 0x2, 0x1}]}, 0x4c}}, 0x880) 6m51.206355373s ago: executing program 2 (id=4705): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0) sendmsg$NFT_BATCH(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000001600)=ANY=[@ANYBLOB="1400000010000100fb000000000000000000000a50000000060a0b0400000000000000000200000024000480200001800d00010073796e70726f7879000000000c00028008000340000000330900010073797a30000000000900020073797a32"], 0x78}}, 0x0) 6m50.192276015s ago: executing program 2 (id=4709): r0 = getpid() r1 = syz_pidfd_open(r0, 0x0) process_madvise(r1, 0x0, 0x0, 0x18, 0x0) 6m49.325704507s ago: executing program 2 (id=4713): syz_mount_image$hfs(&(0x7f0000000240), &(0x7f0000000280)='./file0\x00', 0x0, &(0x7f0000000600)=ANY=[@ANYRES16=0x0], 0xff, 0x27f, &(0x7f00000002c0)="$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") mount(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000780)='mqueue\x00', 0x10001, 0x0) mount$binder(0x0, &(0x7f0000000000)='./file0\x00', 0x0, 0x28, 0x0) 6m48.127844561s ago: executing program 2 (id=4719): syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000000)='./file0\x00', 0x804810, &(0x7f0000000a40), 0x26, 0x75c, &(0x7f0000000b00)="$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") r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file2\x00', 0x166940, 0x102) ioctl$FS_IOC_ENABLE_VERITY(r0, 0x40806685, &(0x7f0000000a80)={0x1, 0x3, 0x1000, 0x0, 0x0, 0x0, 0x0, 0x0}) 6m47.313436006s ago: executing program 2 (id=4722): r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) bind$bt_sco(r0, &(0x7f0000000040)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x12}}, 0x8) bind$bt_sco(r0, &(0x7f0000000e80), 0x8) 6m44.811295796s ago: executing program 33 (id=4722): r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) bind$bt_sco(r0, &(0x7f0000000040)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x12}}, 0x8) bind$bt_sco(r0, &(0x7f0000000e80), 0x8) 6.160315419s ago: executing program 3 (id=6274): socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f00000001c0)={0x3, &(0x7f0000000040)=[{0x20, 0x0, 0x0, 0xab49}, {0x20, 0x0, 0x3, 0xffeff010}, {0x6}]}, 0x8) write$binfmt_aout(r0, &(0x7f0000000000)=ANY=[], 0xfdef) 6.155045997s ago: executing program 5 (id=6275): r0 = socket$packet(0x11, 0x3, 0x300) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000000c0)={'macvlan1\x00', 0x0}) sendto$packet(r0, &(0x7f00000004c0)="27ae7a5c0cbed4eb3bebc9ec4672", 0xe, 0x800, &(0x7f0000000080)={0x11, 0x8808, r1, 0x1, 0x0, 0x6, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x1}}, 0x14) 5.588972952s ago: executing program 5 (id=6276): r0 = socket(0x10, 0x3, 0x0) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=ANY=[@ANYBLOB="5000000020000103feffffff0000000002000000000000000400010008000a000008000005001e"], 0x50}}, 0x4000850) sendmmsg$alg(r0, &(0x7f0000000140), 0x4924b68, 0x0) 5.177007321s ago: executing program 6 (id=6277): syz_mount_image$hfs(&(0x7f0000000180), &(0x7f0000001a80)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x2000400, &(0x7f0000000640)=ANY=[@ANYBLOB="636f6465706167653d63703835322c006fb691d2737b705dc556d65d9df1cb7dba7e22e9401baeb7cec264b4e5364639fd3f79a413496c6f6ee520f4e84b336e780abd660b52e8e0821bb6db0d3823e1a16d8daa1b5613f213c29a616e2ef7bbce58232e3aa6ed2a6744cf109759d8491ce6643490d484408e16eede91d78ef35b7e90df199605a94fe0527e93cb7b2a98be7d4ddee04c980658d34ab783479a07adc05722c7fc5058312dc1e6ed8f0685e0a3a445d76146412c95e4715118847084a5baa5a7e1eec512c152d9feee0b7cd673b5c2f965fcecbf0d62972a98e12a14a3d980d6a37926d88c7c32c4"], 0x1, 0x2e0, &(0x7f0000000340)="$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") r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x90) getdents64(r0, &(0x7f0000000f80)=""/4096, 0x1000) 5.070999626s ago: executing program 3 (id=6278): mmap(&(0x7f0000003000/0x2000)=nil, 0x2000, 0x6, 0x31, 0xffffffffffffffff, 0x660f3000) r0 = socket$packet(0x11, 0x2, 0x300) ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f0000000000)={'veth0_to_hsr\x00', &(0x7f0000002fc0)=@ethtool_stats}) 4.920223892s ago: executing program 1 (id=6279): r0 = socket$inet(0x2, 0x3, 0x6) setsockopt$IP_VS_SO_SET_ADD(r0, 0x0, 0x482, &(0x7f0000000080)={0x84, @remote, 0x4e22, 0x3, 'sh\x00', 0x8, 0xffff0722, 0x66}, 0x2c) setsockopt$IP_VS_SO_SET_DEL(r0, 0x0, 0x484, &(0x7f00000000c0)={0x84, @remote, 0x4e22, 0x3, 'nq\x00', 0x0, 0x3, 0x5c}, 0x2c) 4.904502841s ago: executing program 0 (id=6280): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0) sendmsg$NFT_BATCH(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f00000003c0)={{0x14}, [@NFT_MSG_NEWRULE={0x64, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x38, 0x4, 0x0, 0x1, [{0x34, 0x1, 0x0, 0x1, @payload={{0xc}, @val={0x24, 0x2, 0x0, 0x1, [@NFTA_PAYLOAD_OFFSET={0x8, 0x3, 0x1, 0x0, 0x1}, @NFTA_PAYLOAD_BASE={0x8}, @NFTA_PAYLOAD_DREG={0x8}, @NFTA_PAYLOAD_LEN={0x8, 0x4, 0x1, 0x0, 0x2}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x8c}}, 0x0) 4.754257656s ago: executing program 5 (id=6281): syz_mount_image$ext4(&(0x7f0000000700)='ext4\x00', &(0x7f0000000080)='./file0\x00', 0x8052, &(0x7f0000000380)={[{@grpjquota}, {@init_itable_val={'init_itable', 0x3d, 0x7}}, {@dioread_nolock}, {@auto_da_alloc_val={'auto_da_alloc', 0x3d, 0x7fffffff}}]}, 0x3, 0x4de, &(0x7f0000000c40)="$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") r0 = openat$incfs(0xffffffffffffff9c, &(0x7f0000000100)='.log\x00', 0x20642, 0x0) ioctl$FS_IOC_FIEMAP(r0, 0xc020660b, &(0x7f0000000600)=ANY=[@ANYBLOB="0200000000000000060000008000000006"]) 4.102567561s ago: executing program 6 (id=6282): r0 = openat$ttynull(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0x3) ioctl$TIOCSTI(r0, 0x5412, &(0x7f0000000100)=0x2) 4.095576821s ago: executing program 0 (id=6283): r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB="18000000240001030000000000000000010000000400ae"], 0x18}}, 0x4000) recvmmsg(r0, &(0x7f0000000ec0)=[{{0x0, 0x0, 0x0}, 0x1000}, {{0x0, 0x0, 0x0}, 0x10000}, {{0x0, 0x0, 0x0}, 0x1}, {{0x0, 0x0, &(0x7f0000001a00)=[{&(0x7f0000000380)=""/188, 0xbc}, {&(0x7f0000000840)=""/245, 0xf5}, {&(0x7f0000001b80)=""/4113, 0x1011}, {&(0x7f00000006c0)=""/243, 0xf3}, {&(0x7f0000000480)=""/101, 0x65}, {&(0x7f0000001a80)=""/207, 0xcf}], 0x6}, 0x80000000}], 0x4, 0x20, 0x0) 4.033044215s ago: executing program 1 (id=6284): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x11, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000021000000000000004bc311ec8500000075000000a70000000800000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f00000000c0)='percpu_alloc_percpu\x00', r0}, 0x10) seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7ff00000}]}) 3.936569996s ago: executing program 3 (id=6285): sendmsg$key(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000004c0)=ANY=[@ANYBLOB="0213"], 0x10}}, 0x0) r0 = socket$key(0xf, 0x3, 0x2) sendmmsg(r0, &(0x7f0000000180), 0x32bc45944b084a6, 0x0) 3.195617434s ago: executing program 6 (id=6287): r0 = socket$kcm(0x10, 0x2, 0x10) r1 = syz_genetlink_get_family_id$gtp(&(0x7f0000000680), 0xffffffffffffffff) sendmsg$GTP_CMD_GETPDP(r0, &(0x7f0000000780)={0x0, 0x0, &(0x7f0000000740)={&(0x7f00000006c0)={0x14, r1, 0x103, 0x70bd25, 0x25dfdbff}, 0x14}, 0x1, 0x0, 0x0, 0x84880}, 0x4000024) 3.090474905s ago: executing program 5 (id=6288): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a300000001f0900030073797a320000000014000000110001"], 0x7c}}, 0x0) sendmsg$NFT_BATCH(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000008c0)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x1}}, [@NFT_MSG_NEWRULE={0x2c, 0x6, 0xa, 0x715a9d1e7a68469f, 0x0, 0x0, {0x2}, [@NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}]}], {0x14}}, 0x54}}, 0x0) 2.999380612s ago: executing program 0 (id=6289): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000002280)={0x4c, 0x2, 0x6, 0x801, 0x0, 0x0, {}, [@IPSET_ATTR_FAMILY={0x5, 0x5, 0x2}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_TYPENAME={0x11, 0x3, 'hash:net,net\x00'}]}, 0x4c}, 0x1, 0x0, 0x0, 0x2002c0c4}, 0x0) sendmsg$IPSET_CMD_DESTROY(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000040)={0x28, 0x3, 0x6, 0x301, 0x0, 0x0, {0x0, 0x0, 0x2}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_PROTOCOL={0x5}]}, 0x28}}, 0x10) 2.996202223s ago: executing program 3 (id=6290): mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x2, 0x4c831, 0xffffffffffffffff, 0x0) mbind(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x1, 0x0, 0x0, 0x2) madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9) 2.761324316s ago: executing program 1 (id=6291): r0 = socket$inet_mptcp(0x2, 0x1, 0x106) bind$inet(r0, 0x0, 0x0) setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f0000000000)=0x2400, 0x4) 2.165157649s ago: executing program 6 (id=6292): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x10) sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000003c0)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x5}}, [@NFT_MSG_NEWRULE={0x28, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN_ID={0x8, 0xb, 0x1, 0x0, 0x2}]}], {0x14}}, 0x50}}, 0x0) 2.064828506s ago: executing program 0 (id=6293): ioctl$EVIOCSFF(0xffffffffffffffff, 0x40304580, &(0x7f00000006c0)={0x0, 0x0, 0x2, {0x2, 0x1}, {0x45, 0x2}, @cond=[{0x84, 0x3ff, 0x404, 0x4, 0x6, 0x20d}, {0x0, 0xa0, 0x3, 0x5, 0x800, 0xff01}]}) r0 = syz_open_dev$evdev(&(0x7f00000000c0), 0x2, 0x822b01) write$char_usb(r0, &(0x7f0000000040)="e2", 0x12d8) 2.02705255s ago: executing program 5 (id=6294): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$ethtool(&(0x7f00000000c0), 0xffffffffffffffff) sendmsg$ETHTOOL_MSG_CHANNELS_SET(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000340)={0x3c, r1, 0x1, 0x0, 0x0, {}, [@ETHTOOL_A_CHANNELS_RX_COUNT={0x8, 0x6, 0x1}, @ETHTOOL_A_CHANNELS_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'bridge_slave_1\x00'}]}, @ETHTOOL_A_CHANNELS_TX_COUNT={0x8, 0x7, 0x10}]}, 0x3c}}, 0x0) 1.673960438s ago: executing program 3 (id=6295): r0 = socket$inet(0x2, 0x3, 0x6) setsockopt$IP_VS_SO_SET_ADD(r0, 0x0, 0x482, &(0x7f0000000080)={0x84, @remote, 0x4e22, 0x3, 'sh\x00', 0x8, 0xffff0722, 0x66}, 0x2c) setsockopt$IP_VS_SO_SET_DEL(r0, 0x0, 0x484, &(0x7f00000000c0)={0x84, @remote, 0x4e22, 0x3, 'nq\x00', 0x0, 0x3, 0x5c}, 0x2c) 1.636706619s ago: executing program 1 (id=6296): r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$sock_int(r0, 0x1, 0xa, &(0x7f00000002c0)=0x1, 0x4) getsockopt$inet6_tcp_TCP_ZEROCOPY_RECEIVE(r0, 0x6, 0x23, &(0x7f00000001c0)={&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0}, &(0x7f0000000280)=0x40) 1.30686713s ago: executing program 6 (id=6297): r0 = socket$kcm(0x2, 0xa, 0x2) sendmsg$kcm(r0, 0x0, 0x0) ioctl$SIOCSIFHWADDR(r0, 0x8918, &(0x7f0000000000)={'ipvlan0\x00', @random="0200ff7fffff"}) 1.165173711s ago: executing program 0 (id=6298): r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$KDSETMODE(r0, 0x4b3a, 0x1) ioctl$TCXONC(r0, 0x4b3a, 0x2) 1.115921352s ago: executing program 5 (id=6299): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x11, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="180100002100000000000000000000008500000075000000a50000002300000095"], &(0x7f00000000c0)='GPL\x00'}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000001c0)='mmap_lock_acquire_returned\x00', r0}, 0x10) keyctl$search(0xa, 0x0, &(0x7f0000000140)='keyring\x00', 0x0, 0x0) 1.013772171s ago: executing program 1 (id=6300): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0xd0}, 0x0) sendmsg$NFT_BATCH(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000500)={{0x14}, [@NFT_MSG_NEWRULE={0x4c, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x20, 0x4, 0x0, 0x1, [{0x1c, 0x1, 0x0, 0x1, @redir={{0xa}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_REDIR_FLAGS={0x8, 0x3, 0x1, 0x0, 0x4}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x74}, 0x1, 0x0, 0x0, 0x8c0}, 0x0) 724.37443ms ago: executing program 3 (id=6301): syz_mount_image$ext4(&(0x7f00000001c0)='ext4\x00', &(0x7f0000000200)='./bus\x00', 0x1400c, &(0x7f0000000680)={[{@test_dummy_encryption}, {@init_itable}, {@noload}]}, 0x3, 0x470, &(0x7f0000001240)="$eJzs3M1vG0UbAPBn13H65k0hoZSvlo9AQVQIkqYt0AMHQCBxKBISHOBoJaEqTQtqgkSrSKQcygkhJO6II/8CJ7ggxAmJK9xRpQr1QsvJaL27iZ3YTtPYcYt/P8ntM/vhmce7Y8/u2AlgaE1l/yQReyPi94iYyIutG0zl/12/tjJ349rKXBL1+tt/JY3t/r62MlduWu433lyIJA62qXfpwsUztcXFhfNFeWb57EczSxcuPnf6bO3UwqmFc0dPnDh+bPbFF44+35M8xyMtojfe++rNk1+05L8hjx6Z6rbyqXq9x9UN1l1N8cgA28H2VIrjVW30/4moNB29iXj9s7XCpwNqINA39Xq9Pt559Wod+A9LorWsy8OwKD/oy+vfdtfBL/dt9DF4V1/JL4CyvK8Xj3zNyNodg+qG69temoqId1f/+SZ7RH/uQwAAtPghG/88m412Vuayscf6+CON+5u2u7uYG5qMiHsiYl9E3BvnYn9E3BfR2PaBiHhwm/U3TZI0hpmbxz/plVtO7iZk47+Xirmt1vFfOfqLyUqjdCEvRDV5//TiwpHiNTkc1T1ZebZLHT++9tuXndY1j/+yR1Z/ORYs2nFlZE/rPvO15dqtZ9zq6qWIAyPt8k/WZgKSiHgoIg60e4J06zpOP/Pdw53WbZ1/Fz2YaKp/G/F0fvxXY0P+paT7/OTM/2Jx4chMeVZs9suvl9/qVP+O8u+B7Pj/v+35v5b/ZNI8X7u0/Tou//F5x2uaqWoRbOP8X60t10aTdxrxaLHsk9ry8vnZiNHkZN7o5uVH1/cty+X2Wf6HD7Xv//ti/ZU4GBHZSfxIRDwaEY8Vx+7xiHgiIg51yf/nV5/8YOOysTL/2+D4z2/r+K8Ho9G6JG2zTRZUzvz0fUulk+thkf+N7u9/xxvR4WLJzbz/bW5F+2Cnrx8AAADcCdKI2BtJOr0Wp+n0dP4d/v351Hfm43Pz+W8EJqOalne6Jpruh84Wl/V5+VJE5F8tKNcfi7Rx3/jrylijPD334eL8QDMHxjv0/8yflUG3Dug7P9iC4aX/w/Dq2v+ru9cOYPdt6v9d+/yevrYF2F1tPv/HBtEOYPe1G//7ez8wHDb0f9N+METc/4fhpf/D8NL/YSgtjcXWP5LvGpTPdIu7bxVMROy0hYMJonpbNKNvQaR9r2K0v6dW34LkDmzzpmBw70kAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAC99G8AAAD//1KFzjw=") symlink(&(0x7f0000000540)='.\x00', &(0x7f0000000380)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00') readlinkat(0xffffffffffffff9c, &(0x7f0000000100)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0xffffffffffffffff, 0xb4) 345.001613ms ago: executing program 6 (id=6302): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="0b0000004f000000cc0002000600000005"], 0x50) bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000200)='T', &(0x7f0000000240), 0x4af, r0}, 0x38) bpf$MAP_LOOKUP_BATCH(0x18, &(0x7f00000001c0)={0x0, &(0x7f0000000740)=""/4096, &(0x7f00000000c0), &(0x7f00000003c0), 0x2, r0}, 0x38) 64.220791ms ago: executing program 1 (id=6303): r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) setsockopt$WPAN_SECURITY(r0, 0x0, 0x1, &(0x7f0000000040)=0x2, 0x4) sendmsg$802154_dgram(r0, &(0x7f00000000c0)={&(0x7f0000000000)={0x24, @long={0x3, 0xffff, {0xaaaaaaaaaaaa0302}}}, 0x14, &(0x7f0000000080)={0x0}, 0x1, 0x0, 0x0, 0x20044005}, 0x4000010) 0s ago: executing program 0 (id=6304): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000800), 0xffffffffffffffff) sendmsg$NL80211_CMD_SET_TID_CONFIG(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000240)={0x48, r1, 0xc4fc9e906872338b, 0x24, 0x0, {{0x15}, {@void, @val={0xc, 0x99, {0x8, 0x2}}}}, [@NL80211_ATTR_TID_CONFIG={0x28, 0x11d, 0x0, 0x1, [{0x24, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_TX_RATE={0x20, 0xd, 0x0, 0x1, [@NL80211_BAND_6GHZ={0x1c, 0x3, 0x0, 0x0, [@NL80211_TXRATE_GI={0x5, 0x4, 0x2}, @NL80211_TXRATE_HE_LTF={0x5, 0x7, 0x2}, @NL80211_TXRATE_HE_GI={0x5, 0x6, 0x2}]}]}]}]}]}, 0x48}}, 0x0) kernel console output (not intermixed with test programs): as not properly unmounted. Some data may be corrupt. Please run fsck. [ 1269.538862][T16964] exFAT-fs (loop3): Medium has reported failures. Some data may be lost. [ 1269.795087][T16964] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0xe6eb135a, utbl_chksum : 0xe619d30d) [ 1269.988484][T16967] loop6: detected capacity change from 0 to 1024 [ 1270.338192][T16967] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1270.597373][T16967] EXT4-fs error (device loop6): ext4_lookup:1787: comm syz.6.4873: inode #12: comm syz.6.4873: iget: illegal inode # [ 1270.690526][T16967] EXT4-fs (loop6): Remounting filesystem read-only [ 1271.223050][T16519] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1272.257256][T16994] loop3: detected capacity change from 0 to 64 [ 1272.340863][T16994] BFS-fs: bfs_fill_super(): loop3 is unclean, continuing [ 1274.253218][ T1286] ieee802154 phy0 wpan0: encryption failed: -22 [ 1274.260629][ T1286] ieee802154 phy1 wpan1: encryption failed: -22 [ 1275.544339][T17026] loop6: detected capacity change from 0 to 1024 [ 1275.658971][T17026] EXT4-fs: Ignoring removed i_version option [ 1275.797575][T17026] EXT4-fs (loop6): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 1275.952500][T17033] tipc: Started in network mode [ 1275.957789][T17033] tipc: Node identity feff010000000000000000000000001, cluster identity 4711 [ 1275.968684][T17033] tipc: Enabling of bearer rejected, failed to enable media [ 1276.078264][T17026] EXT4-fs error (device loop6): ext4_map_blocks:816: inode #3: block 1: comm syz.6.4894: lblock 1 mapped to illegal pblock 1 (length 1) [ 1276.160395][T17026] Quota error (device loop6): write_blk: dquota write failed [ 1276.170781][T17026] Quota error (device loop6): qtree_write_dquot: Error -117 occurred while creating quota [ 1276.181465][T17026] EXT4-fs error (device loop6): ext4_acquire_dquot:6933: comm syz.6.4894: Failed to acquire dquot type 0 [ 1276.351333][T17026] EXT4-fs error (device loop6): ext4_free_blocks:6587: comm syz.6.4894: Freeing blocks not in datazone - block = 0, count = 4096 [ 1276.437669][T17026] EXT4-fs error (device loop6): ext4_read_inode_bitmap:139: comm syz.6.4894: Invalid inode bitmap blk 0 in block_group 0 [ 1276.460687][T15862] EXT4-fs error (device loop6): ext4_map_blocks:780: inode #3: block 1: comm kworker/u8:0: lblock 1 mapped to illegal pblock 1 (length 1) [ 1276.538762][T17026] EXT4-fs error (device loop6) in ext4_free_inode:361: Corrupt filesystem [ 1276.560512][T15862] Quota error (device loop6): remove_tree: Can't read quota data block 1 [ 1276.569336][T15862] EXT4-fs error (device loop6): ext4_release_dquot:6969: comm kworker/u8:0: Failed to release dquot type 0 [ 1276.613049][T17026] EXT4-fs (loop6): 1 orphan inode deleted [ 1276.621714][T17026] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1277.144283][T17046] loop1: detected capacity change from 0 to 64 [ 1277.294484][T16519] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1277.771748][T17050] trusted_key: encrypted_key: keyword 'new' not allowed when called from .update method [ 1278.086002][T17054] loop6: detected capacity change from 0 to 256 [ 1278.637170][T17054] FAT-fs (loop6): Directory bread(block 64) failed [ 1278.648375][T17054] FAT-fs (loop6): Directory bread(block 65) failed [ 1278.656591][T17054] FAT-fs (loop6): Directory bread(block 66) failed [ 1278.663960][T17054] FAT-fs (loop6): Directory bread(block 67) failed [ 1278.671132][T17054] FAT-fs (loop6): Directory bread(block 68) failed [ 1278.677954][T17054] FAT-fs (loop6): Directory bread(block 69) failed [ 1278.685943][T17054] FAT-fs (loop6): Directory bread(block 70) failed [ 1278.693563][T17054] FAT-fs (loop6): Directory bread(block 71) failed [ 1278.700743][T17054] FAT-fs (loop6): Directory bread(block 72) failed [ 1278.707550][T17054] FAT-fs (loop6): Directory bread(block 73) failed [ 1279.806636][T17069] loop1: detected capacity change from 0 to 128 [ 1279.812292][T17069] FAT-fs (loop1): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 1279.901087][T17069] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 1280.189022][T17074] netlink: 'syz.3.4911': attribute type 46 has an invalid length. [ 1280.651962][T10792] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 1280.764401][T17076] loop5: detected capacity change from 0 to 2048 [ 1281.544647][T17085] loop3: detected capacity change from 0 to 2048 [ 1281.556800][T17086] loop1: detected capacity change from 0 to 2048 [ 1281.625340][T17086] NILFS (loop1): broken superblock, retrying with spare superblock (blocksize = 1024) [ 1281.655652][ T9] IPVS: starting estimator thread 0... [ 1281.703159][T17091] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 1281.722202][T17085] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 1281.760121][T17090] IPVS: using max 192 ests per chain, 9600 per kthread [ 1283.514231][T17109] loop0: detected capacity change from 0 to 8 [ 1283.652092][T17109] SQUASHFS error: lzo decompression failed, data probably corrupt [ 1283.664681][T17109] SQUASHFS error: Failed to read block 0x91: -5 [ 1283.672284][T17109] SQUASHFS error: Unable to read metadata cache entry [8f] [ 1283.679975][T17109] SQUASHFS error: Unable to read inode 0x11f [ 1284.967686][T17127] team0: Device lo is loopback device. Loopback devices can't be added as a team port [ 1284.983405][T17127] net_ratelimit: 1 callbacks suppressed [ 1284.983495][T17127] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 1285.063889][T17114] loop1: detected capacity change from 0 to 4096 [ 1285.136177][T17114] ntfs3(loop1): Different NTFS sector size (4096) and media sector size (512). [ 1285.827576][T17131] loop5: detected capacity change from 0 to 512 [ 1286.265903][T17131] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1286.280834][T17131] ext4 filesystem being mounted at /779/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 1286.691144][T17139] loop0: detected capacity change from 0 to 128 [ 1286.772314][T17139] EXT4-fs: Ignoring removed nobh option [ 1286.814065][T17139] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 1286.893800][ T8065] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1286.912329][T17139] ext4 filesystem being mounted at /1012/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 1287.828854][ T5812] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 1287.867420][T17151] loop3: detected capacity change from 0 to 8 [ 1289.101286][T17163] netlink: 'syz.3.4938': attribute type 28 has an invalid length. [ 1289.605342][T17168] netlink: 20 bytes leftover after parsing attributes in process `syz.0.4941'. [ 1290.075033][T17174] loop6: detected capacity change from 0 to 64 [ 1290.759223][T17172] sctp: failed to load transform for md5: -2 [ 1290.851466][T17176] sctp: failed to load transform for md5: -2 [ 1292.605540][T17206] loop6: detected capacity change from 0 to 128 [ 1292.677648][T17206] EXT4-fs: Ignoring removed nobh option [ 1292.725910][T17210] syz.1.4954 (17210): drop_caches: 4 [ 1292.817182][T17206] EXT4-fs (loop6): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 1292.870859][T17206] ext4 filesystem being mounted at /24/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 1293.464752][T16519] EXT4-fs (loop6): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 1294.746150][T17226] sctp: failed to load transform for md5: -2 [ 1294.807772][T17230] sctp: failed to load transform for md5: -2 [ 1297.164913][T17267] loop6: detected capacity change from 0 to 64 [ 1297.623074][T17273] loop5: detected capacity change from 0 to 1024 [ 1297.805530][T17273] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1297.899838][ T30] audit: type=1326 audit(1752506222.865:140): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17263 comm="syz.0.4972" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f28539 code=0x7fc00000 [ 1298.564230][ T8065] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1299.343109][T17285] sctp: failed to load transform for md5: -2 [ 1299.413694][T17288] sctp: failed to load transform for md5: -2 [ 1299.506097][T17299] sp0: Synchronizing with TNC [ 1299.656551][T17297] [U] è [ 1300.488339][T17311] loop3: detected capacity change from 0 to 64 [ 1301.133437][T17317] loop0: detected capacity change from 0 to 1024 [ 1301.508341][ T30] audit: type=1800 audit(1752506226.515:141): pid=17317 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.4988" name="file1" dev="loop0" ino=20 res=0 errno=0 [ 1301.665782][ T30] audit: type=1800 audit(1752506226.565:142): pid=17317 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.4988" name="file1" dev="loop0" ino=20 res=0 errno=0 [ 1302.147553][ T1884] hfsplus: b-tree write err: -5, ino 4 [ 1302.974037][T17341] loop3: detected capacity change from 0 to 8 [ 1303.078567][T17343] loop5: detected capacity change from 0 to 64 [ 1303.185126][T17341] SQUASHFS error: zstd decompression error: 10 [ 1303.192302][T17341] SQUASHFS error: zstd decompression failed, data probably corrupt [ 1303.202294][T17341] SQUASHFS error: Failed to read block 0x60: -5 [ 1303.210043][T17341] SQUASHFS error: zstd decompression error: 10 [ 1303.216491][T17341] SQUASHFS error: zstd decompression failed, data probably corrupt [ 1303.228028][T17341] SQUASHFS error: Failed to read block 0x60: -5 [ 1305.798876][T17368] loop1: detected capacity change from 0 to 2048 [ 1305.956300][T17368] NILFS (loop1): broken superblock, retrying with spare superblock (blocksize = 1024) [ 1306.193062][T17368] syz.1.5004: attempt to access beyond end of device [ 1306.193062][T17368] loop1: rw=524288, sector=33554430, nr_sectors = 2 limit=2048 [ 1306.235470][T17378] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 1306.391244][T17368] NILFS error (device loop1): nilfs_bmap_lookup_contig: broken bmap (inode number=16) [ 1306.483496][T17368] Remounting filesystem read-only [ 1306.489285][T17368] NILFS error (device loop1): nilfs_bmap_last_key: broken bmap (inode number=16) [ 1306.502370][T17368] NILFS (loop1): error -5 truncating bmap (ino=16) [ 1307.154738][T17392] loop6: detected capacity change from 0 to 64 [ 1307.531481][ T5810] NILFS (loop1): disposed unprocessed dirty file(s) when detaching log writer [ 1309.098982][T17412] loop0: detected capacity change from 0 to 64 [ 1309.338983][ T30] audit: type=1800 audit(1752506234.335:143): pid=17412 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.5019" name="file1" dev="loop0" ino=18 res=0 errno=0 [ 1310.070357][ T39] usb 2-1: new high-speed USB device number 22 using dummy_hcd [ 1310.270091][ T39] usb 2-1: Using ep0 maxpacket: 16 [ 1310.323194][ T39] usb 2-1: config 0 interface 0 altsetting 64 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 1310.334926][ T39] usb 2-1: config 0 interface 0 has no altsetting 0 [ 1310.342074][ T39] usb 2-1: New USB device found, idVendor=0079, idProduct=1844, bcdDevice= 0.00 [ 1310.351740][ T39] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1310.471506][ T39] usb 2-1: config 0 descriptor?? [ 1311.156858][ T39] hid_mf 0003:0079:1844.0008: hidraw0: USB HID v1.00 Device [HID 0079:1844] on usb-dummy_hcd.1-1/input0 [ 1311.172009][ T39] hid_mf 0003:0079:1844.0008: Invalid report, this should never happen! [ 1311.181558][ T39] hid_mf 0003:0079:1844.0008: Force feedback init failed. [ 1311.231971][T17431] loop6: detected capacity change from 0 to 1024 [ 1311.315365][T17431] EXT4-fs: Ignoring removed nobh option [ 1311.321999][T17431] EXT4-fs: Ignoring removed oldalloc option [ 1311.328432][T17431] EXT4-fs: Ignoring removed bh option [ 1311.393887][T17435] loop3: detected capacity change from 0 to 16 [ 1311.468964][T17435] erofs (device loop3): mounted with root inode @ nid 36. [ 1311.490396][ T39] usb 2-1: USB disconnect, device number 22 [ 1311.728058][T17431] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-001000000000 r/w without journal. Quota mode: none. [ 1312.308726][T17436] fido_id[17436]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.1/usb2/report_descriptor': No such file or directory [ 1312.396003][T16519] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-001000000000. [ 1312.568118][T17445] netlink: 12 bytes leftover after parsing attributes in process `syz.0.5030'. [ 1314.261166][T17464] loop5: detected capacity change from 0 to 2048 [ 1315.655555][T17483] ucma_write: process 2077 (syz.3.5046) changed security contexts after opening file descriptor, this is not allowed. [ 1315.834894][T17481] loop0: detected capacity change from 0 to 1024 [ 1316.638739][T10775] hfsplus: b-tree write err: -5, ino 4 [ 1317.459879][T17503] netlink: 8 bytes leftover after parsing attributes in process `syz.3.5053'. [ 1317.586543][T17506] loop5: detected capacity change from 0 to 64 [ 1318.241823][T17511] loop1: detected capacity change from 0 to 512 [ 1318.388166][T17511] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 1318.574387][T17511] EXT4-fs (loop1): 1 truncate cleaned up [ 1318.587382][T17511] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1319.665677][ T5810] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1320.776387][T17542] loop3: detected capacity change from 0 to 2048 [ 1321.057105][T17542] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1321.161582][T17542] EXT4-fs error (device loop3): ext4_search_dir:1474: inode #12: block 9: comm syz.3.5067: bad entry in directory: rec_len % 4 != 0 - offset=0, inode=13, rec_len=21, size=56 fake=0 [ 1321.250263][T17542] EXT4-fs (loop3): Remounting filesystem read-only [ 1321.314646][T17544] loop1: detected capacity change from 0 to 4096 [ 1321.646446][T17553] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 1321.742975][ T5811] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1322.517108][T17558] loop0: detected capacity change from 0 to 16 [ 1322.621148][T17558] erofs (device loop0): mounted with root inode @ nid 36. [ 1322.772488][T17558] VFS: Lookup of '$' in erofs loop0 would have caused loop [ 1324.700723][T17582] loop6: detected capacity change from 0 to 16 [ 1324.866316][T17582] erofs (device loop6): mounted with root inode @ nid 36. [ 1327.958505][T17628] loop3: detected capacity change from 0 to 8 [ 1328.086188][T17628] SQUASHFS error: xz decompression failed, data probably corrupt [ 1328.094616][T17628] SQUASHFS error: Failed to read block 0x108: -5 [ 1328.101512][T17628] SQUASHFS error: Unable to read metadata cache entry [106] [ 1328.112910][T17628] SQUASHFS error: Unable to read inode 0x11f [ 1328.256918][T17630] loop5: detected capacity change from 0 to 128 [ 1328.526390][ T30] audit: type=1800 audit(1752506253.515:144): pid=17630 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.5095" name="file1" dev="loop5" ino=1048729 res=0 errno=0 [ 1328.909963][T13898] usb 4-1: new high-speed USB device number 18 using dummy_hcd [ 1329.181556][T13898] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x7 has invalid wMaxPacketSize 0 [ 1329.192886][T13898] usb 4-1: config 0 interface 0 altsetting 0 bulk endpoint 0x7 has invalid maxpacket 0 [ 1329.203959][T13898] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x89 has invalid maxpacket 33119, setting to 1024 [ 1329.216484][T13898] usb 4-1: config 0 interface 0 altsetting 0 bulk endpoint 0x89 has invalid maxpacket 1024 [ 1329.377744][T13898] usb 4-1: New USB device found, idVendor=2040, idProduct=2000, bcdDevice=65.72 [ 1329.388338][T13898] usb 4-1: New USB device strings: Mfr=151, Product=0, SerialNumber=0 [ 1329.403168][T13898] usb 4-1: Manufacturer: syz [ 1329.564690][T13898] usb 4-1: config 0 descriptor?? [ 1329.577969][T17628] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22 [ 1329.644317][T13898] smsusb:smsusb_probe: board id=9, interface number 0 [ 1329.709469][T13898] smsusb:siano_media_device_register: media controller created [ 1329.721185][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes [ 1329.731060][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes [ 1329.738777][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes [ 1329.746424][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes [ 1329.754098][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes [ 1329.761775][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes [ 1329.770586][T13898] smsmdtv:smscore_sendrequest_and_wait: sendrequest returned error -22 [ 1329.779230][T13898] smsmdtv:smscore_set_device_mode: mode detect failed -22 [ 1329.784880][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes [ 1329.799835][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes [ 1329.807447][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes [ 1329.815034][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes [ 1329.822852][T13898] smsmdtv:smscore_start_device: set device mode failed , rc -22 [ 1329.834817][T13898] smsusb:smsusb_init_device: smscore_start_device(...) failed [ 1329.855254][T13898] ------------[ cut here ]------------ [ 1329.862196][T13898] WARNING: CPU: 1 PID: 13898 at mm/slub.c:4753 free_large_kmalloc+0x2ee/0x330 [ 1329.871589][T13898] Modules linked in: [ 1329.875848][T13898] CPU: 1 UID: 0 PID: 13898 Comm: kworker/1:2 Not tainted 6.16.0-rc6-syzkaller #0 PREEMPT(none) [ 1329.887672][T13898] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 1329.898175][T13898] Workqueue: usb_hub_wq hub_event [ 1329.904680][T13898] RIP: 0010:free_large_kmalloc+0x2ee/0x330 [ 1329.910979][T13898] Code: ff ff ff e8 b4 8e 13 00 41 81 ff 00 00 00 f8 0f 84 ca fd ff ff eb 12 e8 a0 8e 13 00 41 81 ff 00 00 00 f8 0f 84 ff fd ff ff 90 <0f> 0b 90 48 8b 7d c8 48 c7 c6 0f 28 e6 91 e8 8f 50 e3 ff e9 0a ff [ 1329.932813][T13898] RSP: 0018:ffff888057a3a9e8 EFLAGS: 00010206 [ 1329.939259][T13898] RAX: 0000000000000000 RBX: ffffea00022dee00 RCX: 00000000f8ffffff [ 1329.948097][T13898] RDX: ffffffff954e2000 RSI: 0000000000000001 RDI: 0000000000000000 [ 1329.961552][T13898] RBP: ffff888057a3aa40 R08: ffffea000000000f R09: 0000000000000000 [ 1329.971159][T13898] R10: ffff88804d797900 R11: ffffffff81d3f030 R12: 0000000000000000 [ 1329.980064][T13898] R13: 0000000000000000 R14: 0000000000000000 R15: 00000000ff000000 [ 1329.988363][T13898] FS: 0000000000000000(0000) GS:ffff8881aa95a000(0000) knlGS:0000000000000000 [ 1329.997982][T13898] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1330.005009][T13898] CR2: 00000000f7f155c0 CR3: 00000000134ae000 CR4: 00000000003526f0 [ 1330.013427][T13898] Call Trace: [ 1330.016961][T13898] [ 1330.020271][T13898] kfree+0x64b/0xec0 [ 1330.024492][T13898] ? usb_free_urb+0x125/0x150 [ 1330.031013][T13898] ? kmsan_internal_set_shadow_origin+0x79/0x110 [ 1330.037751][T13898] ? kmsan_get_metadata+0xfb/0x160 [ 1330.043855][T13898] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 1330.055874][T13898] usb_free_urb+0x125/0x150 [ 1330.061962][T13898] smsusb_term_device+0x350/0x700 [ 1330.067359][T13898] smsusb_probe+0x2cf0/0x36c0 [ 1330.072612][T13898] ? __pfx_smsusb_sendrequest+0x10/0x10 [ 1330.078512][T13898] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 1330.085112][T13898] ? __pfx_smsusb_probe+0x10/0x10 [ 1330.090638][T13898] usb_probe_interface+0xd01/0x1310 [ 1330.096220][T13898] ? __pfx_usb_probe_interface+0x10/0x10 [ 1330.102423][T13898] really_probe+0x4d1/0xd90 [ 1330.107367][T13898] __driver_probe_device+0x268/0x380 [ 1330.113665][T13898] driver_probe_device+0x70/0x8b0 [ 1330.119109][T13898] ? kmsan_get_metadata+0xfb/0x160 [ 1330.124776][T13898] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 1330.132550][T13898] __device_attach_driver+0x4ee/0x950 [ 1330.138550][T13898] bus_for_each_drv+0x3e0/0x680 [ 1330.146931][T13898] ? __pfx___device_attach_driver+0x10/0x10 [ 1330.158750][T13898] __device_attach+0x3c8/0x5c0 [ 1330.165309][T13898] device_initial_probe+0x33/0x40 [ 1330.171366][T13898] bus_probe_device+0x3ba/0x5e0 [ 1330.176637][T13898] device_add+0x12a9/0x1c10 [ 1330.181782][T13898] usb_set_configuration+0x3493/0x3b70 [ 1330.187783][T13898] usb_generic_driver_probe+0xfc/0x290 [ 1330.193865][T13898] ? __pfx_usb_generic_driver_probe+0x10/0x10 [ 1330.200599][T13898] usb_probe_device+0x38d/0x690 [ 1330.205812][T13898] ? __pfx_usb_probe_device+0x10/0x10 [ 1330.211745][T13898] really_probe+0x4d1/0xd90 [ 1330.216663][T13898] __driver_probe_device+0x268/0x380 [ 1330.222565][T13898] driver_probe_device+0x70/0x8b0 [ 1330.227988][T13898] ? kmsan_get_metadata+0xfb/0x160 [ 1330.235041][T13898] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 1330.241752][T13898] __device_attach_driver+0x4ee/0x950 [ 1330.247604][T13898] bus_for_each_drv+0x3e0/0x680 [ 1330.258076][T13898] ? __pfx___device_attach_driver+0x10/0x10 [ 1330.266093][T13898] __device_attach+0x3c8/0x5c0 [ 1330.271449][T13898] device_initial_probe+0x33/0x40 [ 1330.276865][T13898] bus_probe_device+0x3ba/0x5e0 [ 1330.282275][T13898] device_add+0x12a9/0x1c10 [ 1330.287207][T13898] usb_new_device+0x104b/0x20c0 [ 1330.292733][T13898] hub_event+0x5588/0x7580 [ 1330.297622][T13898] ? pwq_dec_nr_in_flight+0x1678/0x1d80 [ 1330.303951][T13898] ? __pfx_hub_event+0x10/0x10 [ 1330.309147][T13898] process_scheduled_works+0xb91/0x1d80 [ 1330.315402][T13898] worker_thread+0xedf/0x1590 [ 1330.320721][T13898] kthread+0xd59/0xf00 [ 1330.325326][T13898] ? __pfx_worker_thread+0x10/0x10 [ 1330.330989][T13898] ? __pfx_kthread+0x10/0x10 [ 1330.337892][T13898] ret_from_fork+0x1e0/0x310 [ 1330.343434][T13898] ? __pfx_kthread+0x10/0x10 [ 1330.348396][T13898] ret_from_fork_asm+0x1a/0x30 [ 1330.354028][T13898] [ 1330.362649][T13898] ---[ end trace 0000000000000000 ]--- [ 1330.368393][T13898] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x6f962 [ 1330.378836][T13898] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff) [ 1330.386590][T13898] raw: 00fff00000000000 0000000000000000 ffffea00022deeb0 0000000000000000 [ 1330.395625][T13898] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000 [ 1330.404692][T13898] raw: ffffea00022b6ea0 ffffea00022caea0 [ 1330.410759][T13898] page dumped because: Not a kmalloc allocation [ 1330.417966][T13898] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x6f960 [ 1330.427216][T13898] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff) [ 1330.434896][T13898] raw: 00fff00000000000 0000000000000000 dead000000000122 0000000000000000 [ 1330.445939][T13898] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000 [ 1330.455383][T13898] raw: ffffea00022b6e00 ffffea00022cae00 [ 1330.466198][T13898] page dumped because: Not a kmalloc allocation [ 1330.474701][T13898] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x6f95e [ 1330.483932][T13898] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff) [ 1330.491568][T13898] raw: 00fff00000000000 0000000000000000 ffffea00022ded68 0000000000000000 [ 1330.500833][T13898] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000 [ 1330.510392][T13898] raw: ffffea00022b6d60 ffffea00022cad60 [ 1330.516367][T13898] page dumped because: Not a kmalloc allocation [ 1330.523624][T13898] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x6f95c [ 1330.533290][T13898] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff) [ 1330.542288][T13898] raw: 00fff00000000000 0000000000000000 ffffea00022decc8 0000000000000000 [ 1330.551786][T13898] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000 [ 1330.566151][T13898] raw: ffffea00022b6cc0 ffffea00022cacc0 [ 1330.573431][T13898] page dumped because: Not a kmalloc allocation [ 1330.580715][T13898] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x6f95a [ 1330.589909][T13898] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff) [ 1330.597396][T13898] raw: 00fff00000000000 0000000000000000 ffffea00022dec30 0000000000000000 [ 1330.606626][T13898] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000 [ 1330.615686][T13898] raw: ffffea00022b6c20 ffffea00022cac20 [ 1330.621977][T13898] page dumped because: Not a kmalloc allocation [ 1330.629164][T13898] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x6f958 [ 1330.638431][T13898] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff) [ 1330.647350][T13898] raw: 00fff00000000000 0000000000000000 dead000000000122 0000000000000000 [ 1330.656838][T13898] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000 [ 1330.670732][T13898] raw: ffffea00022b6b80 ffffea00022cab80 [ 1330.676650][T13898] page dumped because: Not a kmalloc allocation [ 1330.685188][T13898] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x6f956 [ 1330.694642][T13898] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff) [ 1330.702284][T13898] raw: 00fff00000000000 0000000000000000 ffffea00022deae8 0000000000000000 [ 1330.711319][T13898] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000 [ 1330.720407][T13898] raw: ffffea00022b6ae0 ffffea00022caae0 [ 1330.726323][T13898] page dumped because: Not a kmalloc allocation [ 1330.733620][T13898] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x6f954 [ 1330.742944][T13898] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff) [ 1330.751938][T13898] raw: 00fff00000000000 0000000000000000 ffffea00022dea48 0000000000000000 [ 1330.761397][T13898] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000 [ 1330.775233][T13898] raw: ffffea00022b6a40 ffffea00022caa40 [ 1330.782334][T13898] page dumped because: Not a kmalloc allocation [ 1330.789682][T13898] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x6f952 [ 1330.798767][T13898] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff) [ 1330.806771][T13898] raw: 00fff00000000000 0000000000000000 ffffea00022de9b0 0000000000000000 [ 1330.815833][T13898] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000 [ 1330.824869][T13898] raw: ffffea00022b69a0 ffffea00022ca9a0 [ 1330.830963][T13898] page dumped because: Not a kmalloc allocation [ 1330.838199][T13898] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x6f950 [ 1330.849099][T13898] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff) [ 1330.857094][T13898] raw: 00fff00000000000 0000000000000000 dead000000000122 0000000000000000 [ 1330.866187][T13898] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000 [ 1330.880170][T13898] raw: ffffea00022b6900 ffffea00022ca900 [ 1330.886085][T13898] page dumped because: Not a kmalloc allocation [ 1331.183871][T17645] netlink: 8 bytes leftover after parsing attributes in process `syz.6.5100'. [ 1331.208927][T17645] netlink: 8 bytes leftover after parsing attributes in process `syz.6.5100'. [ 1331.223942][T13898] smsusb:smsusb_probe: Device initialized with return code -22 [ 1331.448621][T13898] smsusb 4-1:0.0: probe with driver smsusb failed with error -22 [ 1331.558060][T13898] usb 4-1: USB disconnect, device number 18 [ 1331.940585][T17655] netlink: 4 bytes leftover after parsing attributes in process `syz.0.5105'. [ 1333.774036][T17673] netlink: 4 bytes leftover after parsing attributes in process `syz.6.5110'. [ 1333.822387][T17673] netlink: 4 bytes leftover after parsing attributes in process `syz.6.5110'. [ 1335.446413][T17692] loop0: detected capacity change from 0 to 256 [ 1335.689303][ T1286] ieee802154 phy0 wpan0: encryption failed: -22 [ 1335.696357][ T1286] ieee802154 phy1 wpan1: encryption failed: -22 [ 1336.086701][T17692] FAT-fs (loop0): Directory bread(block 64) failed [ 1336.104171][T17692] FAT-fs (loop0): Directory bread(block 65) failed [ 1336.112596][T17692] FAT-fs (loop0): Directory bread(block 66) failed [ 1336.119433][T17692] FAT-fs (loop0): Directory bread(block 67) failed [ 1336.129837][T17692] FAT-fs (loop0): Directory bread(block 68) failed [ 1336.136680][T17692] FAT-fs (loop0): Directory bread(block 69) failed [ 1336.144428][T17692] FAT-fs (loop0): Directory bread(block 70) failed [ 1336.154367][T17692] FAT-fs (loop0): Directory bread(block 71) failed [ 1336.161589][T17692] FAT-fs (loop0): Directory bread(block 72) failed [ 1336.168417][T17692] FAT-fs (loop0): Directory bread(block 73) failed [ 1339.130213][T17730] loop6: detected capacity change from 0 to 164 [ 1339.253331][T17730] Unable to read rock-ridge attributes [ 1339.430545][T17730] Unable to read rock-ridge attributes [ 1339.870205][ T30] audit: type=1326 audit(1752506264.865:145): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17736 comm="syz.1.5135" exe="/root/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7fa7539 code=0x0 [ 1343.090127][T13446] usb 2-1: new full-speed USB device number 23 using dummy_hcd [ 1343.127389][T17776] netlink: 'syz.0.5149': attribute type 3 has an invalid length. [ 1343.137604][T17776] netlink: 199824 bytes leftover after parsing attributes in process `syz.0.5149'. [ 1343.298015][T13446] usb 2-1: config 0 has an invalid interface number: 1 but max is 0 [ 1343.306892][T13446] usb 2-1: config 0 has no interface number 0 [ 1343.313763][T13446] usb 2-1: New USB device found, idVendor=0b48, idProduct=1005, bcdDevice=8c.1e [ 1343.323501][T13446] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1343.451209][T17781] loop6: detected capacity change from 0 to 1024 [ 1343.503925][T13446] usb 2-1: config 0 descriptor?? [ 1343.603307][T13446] usb 2-1: selecting invalid altsetting 1 [ 1343.610105][T13446] dvb_ttusb_budget: ttusb_init_controller: error [ 1343.616687][T13446] dvbdev: DVB: registering new adapter (Technotrend/Hauppauge Nova-USB) [ 1344.541227][T13446] DVB: Unable to find symbol cx22700_attach() [ 1345.006969][T17793] tipc: Started in network mode [ 1345.012566][T17793] tipc: Node identity ac141412, cluster identity 4711 [ 1345.020471][T17793] tipc: New replicast peer: 255.255.255.255 [ 1345.029961][T17793] tipc: Enabled bearer , priority 10 [ 1345.143233][T17795] loop6: detected capacity change from 0 to 256 [ 1345.199297][T17795] exfat: Deprecated parameter 'namecase' [ 1345.208966][T17795] exfat: Deprecated parameter 'utf8' [ 1345.351294][T13446] DVB: Unable to find symbol tda10046_attach() [ 1345.357752][T13446] dvb_ttusb_budget: no frontend driver found for device [0b48:1005] [ 1345.397583][T17798] loop5: detected capacity change from 0 to 1024 [ 1345.450735][T17795] exFAT-fs (loop6): failed to load upcase table (idx : 0x00010000, chksum : 0x22785e93, utbl_chksum : 0xe619d30d) [ 1345.474765][T13446] usb 2-1: USB disconnect, device number 23 [ 1345.662138][T17798] hfsplus: bad catalog entry type [ 1345.754809][T17802] loop0: detected capacity change from 0 to 128 [ 1345.783797][ T30] audit: type=1800 audit(1752506270.755:146): pid=17795 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.6.5156" name="file1" dev="loop6" ino=1048736 res=0 errno=0 [ 1345.990738][ T30] audit: type=1800 audit(1752506270.995:147): pid=17802 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.5158" name="file1" dev="loop0" ino=1048737 res=0 errno=0 [ 1346.036502][T13446] tipc: Node number set to 2886997010 [ 1346.183372][ T1093] hfsplus: b-tree write err: -5, ino 4 [ 1346.548639][T17807] loop3: detected capacity change from 0 to 64 [ 1348.633025][T17820] loop5: detected capacity change from 0 to 4096 [ 1349.580971][ T30] audit: type=1800 audit(1752506274.585:148): pid=17820 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.5164" name="file0" dev="loop5" ino=0 res=0 errno=0 [ 1349.658129][T17836] vivid-007: disconnect [ 1349.722953][T17834] vivid-007: reconnect [ 1350.453858][T17841] netlink: 8 bytes leftover after parsing attributes in process `syz.1.5172'. [ 1350.463365][T17841] netlink: 8 bytes leftover after parsing attributes in process `syz.1.5172'. [ 1350.805415][T17846] netlink: 1268 bytes leftover after parsing attributes in process `syz.6.5174'. [ 1352.500208][T17862] tipc: Enabling of bearer rejected, failed to enable media [ 1353.082112][T17847] Bluetooth: hci4: command 0x0406 tx timeout [ 1353.754334][T17868] loop0: detected capacity change from 0 to 512 [ 1353.936407][T17868] EXT4-fs warning (device loop0): dx_probe:846: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 1353.948448][T17868] EXT4-fs warning (device loop0): dx_probe:849: Enable large directory feature to access it [ 1353.959360][T17868] EXT4-fs warning (device loop0): dx_probe:934: inode #2: comm syz.0.5182: Corrupt directory, running e2fsck is recommended [ 1354.274937][T17868] EXT4-fs (loop0): Cannot turn on journaled quota: type 1: error -117 [ 1354.284778][T17868] EXT4-fs error (device loop0): ext4_iget_extra_inode:5035: inode #15: comm syz.0.5182: corrupted in-inode xattr: invalid ea_ino [ 1354.354477][T17868] EXT4-fs error (device loop0): ext4_orphan_get:1398: comm syz.0.5182: couldn't read orphan inode 15 (err -117) [ 1354.503434][T17868] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1355.083891][ T5812] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1355.110328][ T30] audit: type=1326 audit(1752506280.115:149): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17891 comm="syz.3.5190" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f07539 code=0x7ffc0000 [ 1355.225026][ T30] audit: type=1326 audit(1752506280.165:150): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17891 comm="syz.3.5190" exe="/root/syz-executor" sig=0 arch=40000003 syscall=274 compat=1 ip=0xf7f07539 code=0x7ffc0000 [ 1355.251400][ T30] audit: type=1326 audit(1752506280.185:151): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17891 comm="syz.3.5190" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f07539 code=0x7ffc0000 [ 1355.275132][ T30] audit: type=1326 audit(1752506280.185:152): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17891 comm="syz.3.5190" exe="/root/syz-executor" sig=0 arch=40000003 syscall=450 compat=1 ip=0xf7f07539 code=0x7ffc0000 [ 1355.298284][ T30] audit: type=1326 audit(1752506280.195:153): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17891 comm="syz.3.5190" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f07539 code=0x7ffc0000 [ 1355.867913][T17900] netlink: 4 bytes leftover after parsing attributes in process `syz.0.5191'. [ 1356.194113][T17906] loop3: detected capacity change from 0 to 256 [ 1358.658312][T17925] loop1: detected capacity change from 0 to 512 [ 1358.738768][T17925] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 1358.862036][T17925] EXT4-fs (loop1): 1 truncate cleaned up [ 1358.893433][T17925] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1359.066353][T17927] loop3: detected capacity change from 0 to 512 [ 1359.211649][T17927] EXT4-fs warning (device loop3): dx_probe:846: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 1359.225461][T17927] EXT4-fs warning (device loop3): dx_probe:849: Enable large directory feature to access it [ 1359.242836][T17927] EXT4-fs warning (device loop3): dx_probe:934: inode #2: comm syz.3.5202: Corrupt directory, running e2fsck is recommended [ 1359.262973][T17927] EXT4-fs (loop3): Cannot turn on journaled quota: type 1: error -117 [ 1359.291526][T17927] EXT4-fs error (device loop3): ext4_iget_extra_inode:5035: inode #15: comm syz.3.5202: corrupted in-inode xattr: invalid ea_ino [ 1359.430060][T17927] EXT4-fs error (device loop3): ext4_orphan_get:1398: comm syz.3.5202: couldn't read orphan inode 15 (err -117) [ 1359.556046][T17927] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1359.811415][ T5810] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1360.121259][ T5811] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1360.224858][T17940] loop6: detected capacity change from 0 to 256 [ 1360.485169][T17940] exFAT-fs (loop6): failed to load upcase table (idx : 0x00010000, chksum : 0xf6e00961, utbl_chksum : 0xe619d30d) [ 1360.986959][T16006] usb 4-1: new high-speed USB device number 19 using dummy_hcd [ 1361.163154][T16006] usb 4-1: Using ep0 maxpacket: 16 [ 1361.184505][T16006] usb 4-1: config 8 has an invalid interface number: 39 but max is 0 [ 1361.199127][T16006] usb 4-1: config 8 has no interface number 0 [ 1361.205950][T16006] usb 4-1: config 8 interface 39 altsetting 1 has an endpoint descriptor with address 0xDF, changing to 0x8F [ 1361.218177][T16006] usb 4-1: config 8 interface 39 altsetting 1 endpoint 0x8F has invalid wMaxPacketSize 0 [ 1361.231535][T16006] usb 4-1: config 8 interface 39 altsetting 1 bulk endpoint 0x8F has invalid maxpacket 0 [ 1361.247057][T16006] usb 4-1: config 8 interface 39 has no altsetting 0 [ 1361.505455][T16006] usb 4-1: New USB device found, idVendor=05ac, idProduct=c704, bcdDevice=62.77 [ 1361.515425][T16006] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1361.524273][T16006] usb 4-1: Product: syz [ 1361.528715][T16006] usb 4-1: Manufacturer: syz [ 1361.536629][T16006] usb 4-1: SerialNumber: syz [ 1362.239159][T16006] ipheth 4-1:8.39: ipheth_enable_ncm: usb_control_msg: -71 [ 1362.268806][T16006] ipheth 4-1:8.39: Apple iPhone USB Ethernet device attached [ 1362.273448][T17956] loop6: detected capacity change from 0 to 64 [ 1362.320186][T17658] usb 2-1: new high-speed USB device number 24 using dummy_hcd [ 1362.444892][T16006] usb 4-1: USB disconnect, device number 19 [ 1362.550728][T17658] usb 2-1: New USB device found, idVendor=17e9, idProduct=8b4e, bcdDevice=9c.08 [ 1362.560781][T17658] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1362.579355][T16006] ipheth 4-1:8.39: Apple iPhone USB Ethernet now disconnected [ 1362.683566][T17658] usb 2-1: config 0 descriptor?? [ 1363.013843][T17658] udl 2-1:0.0: [drm] Unrecognized vendor firmware descriptor [ 1363.230763][T17658] [drm:udl_init] *ERROR* Selecting channel failed [ 1363.418863][T17658] [drm] Initialized udl 0.0.1 for 2-1:0.0 on minor 2 [ 1363.427471][T17658] [drm] Initialized udl on minor 2 [ 1363.470303][T17658] udl 2-1:0.0: [drm] *ERROR* Read EDID byte 0 failed err ffffffb9 [ 1363.479994][T17658] udl 2-1:0.0: [drm] Cannot find any crtc or sizes [ 1363.500687][T13446] udl 2-1:0.0: [drm] *ERROR* Read EDID byte 0 failed err ffffffb9 [ 1363.531157][T13446] udl 2-1:0.0: [drm] *ERROR* Read EDID byte 0 failed err ffffffb9 [ 1363.543668][T13446] udl 2-1:0.0: [drm] Cannot find any crtc or sizes [ 1363.562259][T17658] usb 2-1: USB disconnect, device number 24 [ 1363.828400][T17962] loop0: detected capacity change from 0 to 512 [ 1363.836703][T17965] netlink: 8 bytes leftover after parsing attributes in process `syz.6.5217'. [ 1363.851253][T17965] netlink: 28 bytes leftover after parsing attributes in process `syz.6.5217'. [ 1363.905515][T17962] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 1364.255686][T17962] EXT4-fs (loop0): 1 truncate cleaned up [ 1364.267361][T17962] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1364.803733][T17969] loop1: detected capacity change from 0 to 512 [ 1364.960360][T17969] EXT4-fs warning (device loop1): dx_probe:846: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 1364.975942][T17969] EXT4-fs warning (device loop1): dx_probe:849: Enable large directory feature to access it [ 1364.990610][T17969] EXT4-fs warning (device loop1): dx_probe:934: inode #2: comm syz.1.5219: Corrupt directory, running e2fsck is recommended [ 1365.079093][ T5812] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1365.121467][T17969] EXT4-fs (loop1): Cannot turn on journaled quota: type 1: error -117 [ 1365.219676][T17969] EXT4-fs error (device loop1): ext4_iget_extra_inode:5035: inode #15: comm syz.1.5219: corrupted in-inode xattr: invalid ea_ino [ 1365.305005][T17969] EXT4-fs error (device loop1): ext4_orphan_get:1398: comm syz.1.5219: couldn't read orphan inode 15 (err -117) [ 1365.461548][T17969] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1365.963893][ T5810] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1367.695164][T17994] loop6: detected capacity change from 0 to 2048 [ 1367.737233][T17990] loop1: detected capacity change from 0 to 4096 [ 1367.797397][T17994] UDF-fs: error (device loop6): udf_read_tagged: tag checksum failed, block 99: 0x27 != 0x4d [ 1367.880945][T17994] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 1369.229126][T18007] sp0: Synchronizing with TNC [ 1370.666249][T18018] loop6: detected capacity change from 0 to 2048 [ 1370.831793][T18018] NILFS (loop6): broken superblock, retrying with spare superblock (blocksize = 1024) [ 1370.908132][T18013] loop0: detected capacity change from 0 to 4096 [ 1370.955696][T18018] syz.6.5242: attempt to access beyond end of device [ 1370.955696][T18018] loop6: rw=524288, sector=33554430, nr_sectors = 2 limit=2048 [ 1370.957640][T18023] NILFS (loop6): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 1372.434122][T18031] loop1: detected capacity change from 0 to 2048 [ 1372.572579][T18031] UDF-fs: error (device loop1): udf_read_tagged: tag checksum failed, block 99: 0x27 != 0x4d [ 1372.699953][T18031] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 1375.964381][T18069] loop1: detected capacity change from 0 to 256 [ 1376.020783][T18069] exFAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 1376.035488][T18069] exFAT-fs (loop1): Medium has reported failures. Some data may be lost. [ 1376.317791][T18069] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0xe5674ec2, utbl_chksum : 0xe619d30d) [ 1377.671329][T17658] usb 6-1: new high-speed USB device number 9 using dummy_hcd [ 1377.881175][T17658] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 1377.892642][T17658] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 1377.902917][T17658] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 1377.916399][T17658] usb 6-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 1377.926100][T17658] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1378.083986][T18089] loop6: detected capacity change from 0 to 256 [ 1378.101018][T18089] FAT-fs (loop6): bogus logical sector size 58182 [ 1378.108051][T18089] FAT-fs (loop6): Can't find a valid FAT filesystem [ 1378.131668][T17658] usb 6-1: config 0 descriptor?? [ 1378.787211][T17658] plantronics 0003:047F:FFFF.0009: unknown main item tag 0x0 [ 1378.801767][T17658] plantronics 0003:047F:FFFF.0009: unknown main item tag 0x0 [ 1378.813255][T17658] plantronics 0003:047F:FFFF.0009: unknown main item tag 0x0 [ 1378.823566][T17658] plantronics 0003:047F:FFFF.0009: unknown main item tag 0x0 [ 1378.833932][T17658] plantronics 0003:047F:FFFF.0009: unknown main item tag 0x0 [ 1378.844356][T17658] plantronics 0003:047F:FFFF.0009: unknown main item tag 0x0 [ 1378.886314][T17658] plantronics 0003:047F:FFFF.0009: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.5-1/input0 [ 1378.914522][T17658] usb 6-1: USB disconnect, device number 9 [ 1379.345770][T18096] tipc: Enabling of bearer rejected, media not registered [ 1379.892563][T18094] fido_id[18094]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.5/usb6/report_descriptor': No such file or directory [ 1381.333347][T18110] loop6: detected capacity change from 0 to 4096 [ 1381.403908][T18110] ntfs3(loop6): Different NTFS sector size (2048) and media sector size (512). [ 1381.700492][T18118] loop3: detected capacity change from 0 to 1024 [ 1381.953042][T18123] netlink: 4 bytes leftover after parsing attributes in process `syz.1.5288'. [ 1382.040777][T18110] ntfs3(loop6): ino=b, mi_enum_attr [ 1382.046597][T18110] ntfs3(loop6): Mark volume as dirty due to NTFS errors [ 1382.193741][T18110] ntfs3(loop6): Failed to load $Extend (-22). [ 1382.200564][T18110] ntfs3(loop6): Failed to initialize $Extend. [ 1382.472046][T18125] loop5: detected capacity change from 0 to 64 [ 1382.602144][T10777] hfsplus: b-tree write err: -5, ino 4 [ 1383.348382][T14879] Bluetooth: hci0: unexpected event for opcode 0x2042 [ 1383.506454][T18132] loop0: detected capacity change from 0 to 256 [ 1383.721062][T18132] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0xf6e0d861, utbl_chksum : 0xe619d30d) [ 1383.983087][ T30] audit: type=1326 audit(1752506308.975:154): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18135 comm="syz.6.5292" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf711e539 code=0x7ffc0000 [ 1384.006833][ T30] audit: type=1326 audit(1752506308.975:155): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18135 comm="syz.6.5292" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf711e539 code=0x7ffc0000 [ 1384.260195][ T30] audit: type=1326 audit(1752506309.125:156): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18135 comm="syz.6.5292" exe="/root/syz-executor" sig=0 arch=40000003 syscall=61 compat=1 ip=0xf711e539 code=0x7ffc0000 [ 1384.283677][ T30] audit: type=1326 audit(1752506309.125:157): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18135 comm="syz.6.5292" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf711e539 code=0x7ffc0000 [ 1385.130453][T18149] loop6: detected capacity change from 0 to 512 [ 1385.197995][T18148] loop0: detected capacity change from 0 to 1024 [ 1385.292952][T18148] EXT4-fs: Ignoring removed nomblk_io_submit option [ 1385.329075][T18139] loop1: detected capacity change from 0 to 4096 [ 1385.407376][T18149] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1385.420924][T18149] ext4 filesystem being mounted at /96/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 1385.475016][T18148] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1385.574564][T18149] EXT4-fs error (device loop6): ext4_do_update_inode:5568: inode #2: comm syz.6.5300: corrupted inode contents [ 1385.706722][T18149] EXT4-fs (loop6): Remounting filesystem read-only [ 1385.833468][ T30] audit: type=1800 audit(1752506310.835:158): pid=18148 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.5298" name="file1" dev="loop0" ino=15 res=0 errno=0 [ 1386.403529][T16519] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1386.434147][T10780] Quota error (device loop6): dquot_write_dquot: Can't write quota structure (error -30). Quota may get out of sync! [ 1386.608529][ T5812] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1387.347829][T18169] loop0: detected capacity change from 0 to 128 [ 1387.429313][T14879] Bluetooth: hci0: Controller not accepting commands anymore: ncmd = 0 [ 1387.442681][T14879] Bluetooth: hci0: Injecting HCI hardware error event [ 1387.451074][T14879] Bluetooth: hci0: hardware error 0x00 [ 1387.612916][T18169] FAT-fs (loop0): error, corrupted directory (invalid entries) [ 1387.621049][T18169] FAT-fs (loop0): Filesystem has been set read-only [ 1387.738468][T18169] FAT-fs (loop0): error, corrupted directory (invalid entries) [ 1388.764150][T18173] loop5: detected capacity change from 0 to 4096 [ 1389.330553][T18173] ntfs3(loop5): ino=1a, mi_enum_attr [ 1389.336253][T18173] ntfs3(loop5): Mark volume as dirty due to NTFS errors [ 1389.484074][T14879] Bluetooth: hci0: Opcode 0x0c03 failed: -110 [ 1390.935233][T18203] loop0: detected capacity change from 0 to 256 [ 1390.954710][T18199] loop6: detected capacity change from 0 to 1024 [ 1391.211264][T18203] FAT-fs (loop0): error, fat_get_cluster: invalid cluster chain (i_pos 196) [ 1391.220773][T18203] FAT-fs (loop0): Filesystem has been set read-only [ 1391.227845][T18203] FAT-fs (loop0): error, fat_get_cluster: invalid cluster chain (i_pos 196) [ 1391.237237][T18203] FAT-fs (loop0): error, fat_get_cluster: invalid cluster chain (i_pos 196) [ 1391.246589][T18203] FAT-fs (loop0): error, fat_get_cluster: invalid cluster chain (i_pos 196) [ 1391.256362][T18203] FAT-fs (loop0): error, fat_get_cluster: invalid cluster chain (i_pos 196) [ 1391.266861][T18203] FAT-fs (loop0): error, fat_get_cluster: invalid cluster chain (i_pos 196) [ 1391.276568][T18203] FAT-fs (loop0): error, fat_get_cluster: invalid cluster chain (i_pos 196) [ 1391.290515][T18203] FAT-fs (loop0): error, fat_get_cluster: invalid cluster chain (i_pos 196) [ 1391.300957][T18203] FAT-fs (loop0): error, fat_get_cluster: invalid cluster chain (i_pos 196) [ 1391.310388][T18203] FAT-fs (loop0): error, fat_get_cluster: invalid cluster chain (i_pos 196) [ 1391.454793][ T30] audit: type=1800 audit(1752506316.455:159): pid=18203 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.5320" name="file1" dev="loop0" ino=1048747 res=0 errno=0 [ 1391.686377][T18209] loop3: detected capacity change from 0 to 128 [ 1391.713770][T18203] FAT-fs (loop0): error, fat_free_clusters: deleting FAT entry beyond EOF [ 1391.831975][T18206] loop1: detected capacity change from 0 to 1024 [ 1391.845578][T18206] EXT4-fs: Ignoring removed mblk_io_submit option [ 1391.853617][T18206] EXT4-fs: Ignoring removed nobh option [ 1391.859804][T18206] EXT4-fs: Ignoring removed bh option [ 1391.988194][T18206] EXT4-fs (loop1): can't mount with journal_checksum, fs mounted w/o journal [ 1395.061479][T18239] loop1: detected capacity change from 0 to 128 [ 1395.143682][T18239] UDF-fs: error (device loop1): udf_read_tagged: read failed, block=256, location=256 [ 1395.208498][ T30] audit: type=1326 audit(1752506320.215:160): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18240 comm="syz.0.5338" exe="/root/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7f28539 code=0x0 [ 1395.233248][T18239] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 1395.764182][T18245] loop6: detected capacity change from 0 to 16 [ 1395.780487][T18246] loop5: detected capacity change from 0 to 256 [ 1395.853258][T18245] erofs (device loop6): mounted with root inode @ nid 36. [ 1395.929098][T18246] exFAT-fs (loop5): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 1395.940739][T18246] exFAT-fs (loop5): Medium has reported failures. Some data may be lost. [ 1396.038358][T18248] loop3: detected capacity change from 0 to 256 [ 1396.065578][ T30] audit: type=1800 audit(1752506321.045:161): pid=18245 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.6.5340" name="file1" dev="loop6" ino=86 res=0 errno=0 [ 1396.208034][T18246] exFAT-fs (loop5): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d) [ 1397.127035][ T1286] ieee802154 phy0 wpan0: encryption failed: -22 [ 1397.134066][ T1286] ieee802154 phy1 wpan1: encryption failed: -22 [ 1397.143550][T18253] loop0: detected capacity change from 0 to 512 [ 1397.211220][T18253] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 1397.377066][T18253] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 191 vs 220 free clusters [ 1397.383652][T18253] EXT4-fs (loop0): 1 truncate cleaned up [ 1397.385947][T18253] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1397.472750][ T30] audit: type=1800 audit(1752506322.465:162): pid=18253 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.5343" name="bus" dev="loop0" ino=18 res=0 errno=0 [ 1398.134598][ T5812] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1398.805537][T18270] loop0: detected capacity change from 0 to 64 [ 1399.273301][T17658] usb 7-1: new high-speed USB device number 2 using dummy_hcd [ 1399.526647][T17658] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 1399.538102][T17658] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 1399.548518][T17658] usb 7-1: New USB device found, idVendor=04b4, idProduct=de61, bcdDevice= 0.00 [ 1399.559230][T17658] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1399.767289][T17658] usb 7-1: config 0 descriptor?? [ 1400.360086][T17658] cypress 0003:04B4:DE61.000A: unknown main item tag 0x0 [ 1400.367555][T17658] cypress 0003:04B4:DE61.000A: unknown main item tag 0x0 [ 1400.375249][T17658] cypress 0003:04B4:DE61.000A: unknown main item tag 0x0 [ 1400.384523][T17658] cypress 0003:04B4:DE61.000A: unknown main item tag 0x0 [ 1400.392525][T17658] cypress 0003:04B4:DE61.000A: unknown main item tag 0x0 [ 1400.404880][T17658] cypress 0003:04B4:DE61.000A: unknown main item tag 0x0 [ 1400.414146][T17658] cypress 0003:04B4:DE61.000A: unknown main item tag 0x0 [ 1400.733843][T17658] cypress 0003:04B4:DE61.000A: hidraw0: USB HID v0.00 Device [HID 04b4:de61] on usb-dummy_hcd.6-1/input0 [ 1400.824090][T17658] usb 7-1: USB disconnect, device number 2 [ 1402.006339][ T30] audit: type=1326 audit(1752506327.015:163): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18296 comm="syz.1.5363" exe="/root/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7fa7539 code=0x0 [ 1402.059424][T18293] fido_id[18293]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.6/usb7/report_descriptor': No such file or directory [ 1403.712368][T18315] sg_write: data in/out 209152/1 bytes for SCSI command 0xf2-- guessing data in; [ 1403.712368][T18315] program syz.1.5371 not setting count and/or reply_len properly [ 1404.046330][T14879] Bluetooth: hci3: Malformed LE Event: 0x0d [ 1404.631981][T18325] loop1: detected capacity change from 0 to 1024 [ 1404.686417][T18325] EXT4-fs: Ignoring removed nobh option [ 1404.693210][T18325] EXT4-fs: inline encryption not supported [ 1404.848307][T18329] loop3: detected capacity change from 0 to 1024 [ 1405.002062][T18325] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1405.739300][ T5810] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1406.173981][T18342] pim6reg: entered allmulticast mode [ 1406.733995][ T30] audit: type=1326 audit(1752506331.745:164): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18345 comm="syz.1.5383" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa7539 code=0x7ffc0000 [ 1406.762926][ T30] audit: type=1326 audit(1752506331.745:165): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18345 comm="syz.1.5383" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa7539 code=0x7ffc0000 [ 1406.867262][T16006] usb 4-1: new high-speed USB device number 20 using dummy_hcd [ 1406.886955][T18350] netlink: 'syz.5.5385': attribute type 7 has an invalid length. [ 1407.021976][ T30] audit: type=1326 audit(1752506331.915:166): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18345 comm="syz.1.5383" exe="/root/syz-executor" sig=0 arch=40000003 syscall=322 compat=1 ip=0xf7fa7539 code=0x7ffc0000 [ 1407.049005][ T30] audit: type=1326 audit(1752506331.915:167): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18345 comm="syz.1.5383" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa7539 code=0x7ffc0000 [ 1407.077598][ T30] audit: type=1326 audit(1752506331.915:168): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18345 comm="syz.1.5383" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa7539 code=0x7ffc0000 [ 1407.194713][T16006] usb 4-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7 [ 1407.206513][T16006] usb 4-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47 [ 1407.217041][T16006] usb 4-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d [ 1407.229746][T16006] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1407.334320][T18344] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22 [ 1407.366284][T16006] usb 4-1: Quirk or no altset; falling back to MIDI 1.0 [ 1407.901926][T16006] usb 4-1: USB disconnect, device number 20 [ 1408.334652][ T9150] udevd[9150]: error opening ATTR{/sys/devices/platform/dummy_hcd.3/usb4/4-1/4-1:27.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 1411.083152][T18385] loop0: detected capacity change from 0 to 2048 [ 1411.358426][T18389] loop5: detected capacity change from 0 to 1024 [ 1411.523074][T18393] loop6: detected capacity change from 0 to 64 [ 1411.692722][T18389] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1411.801528][T18393] hfs: keylen 1794 too large [ 1411.827194][T18393] hfs: keylen 1794 too large [ 1411.984588][T18389] EXT4-fs error (device loop5): ext4_xattr_inode_iget:437: inode #11: comm syz.5.5405: missing EA_INODE flag [ 1412.033683][T18389] EXT4-fs (loop5): Remounting filesystem read-only [ 1412.719679][ T8065] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1413.418265][T18410] loop5: detected capacity change from 0 to 256 [ 1414.041309][T18412] netlink: 'syz.1.5413': attribute type 1 has an invalid length. [ 1414.049955][T18410] FAT-fs (loop5): Directory bread(block 64) failed [ 1414.056935][T18410] FAT-fs (loop5): Directory bread(block 65) failed [ 1414.067161][T18410] FAT-fs (loop5): Directory bread(block 66) failed [ 1414.074305][T18410] FAT-fs (loop5): Directory bread(block 67) failed [ 1414.081461][T18410] FAT-fs (loop5): Directory bread(block 68) failed [ 1414.088272][T18410] FAT-fs (loop5): Directory bread(block 69) failed [ 1414.098410][T18410] FAT-fs (loop5): Directory bread(block 70) failed [ 1414.106547][T18410] FAT-fs (loop5): Directory bread(block 71) failed [ 1414.114016][T18410] FAT-fs (loop5): Directory bread(block 72) failed [ 1414.127320][T18410] FAT-fs (loop5): Directory bread(block 73) failed [ 1415.209775][T18427] loop3: detected capacity change from 0 to 24 [ 1416.156720][T18433] loop6: detected capacity change from 0 to 256 [ 1416.724201][T18439] netlink: 4 bytes leftover after parsing attributes in process `syz.0.5427'. [ 1416.734037][T18439] netlink: 4 bytes leftover after parsing attributes in process `syz.0.5427'. [ 1416.746397][T18439] netlink: 4 bytes leftover after parsing attributes in process `syz.0.5427'. [ 1416.853578][T18441] loop1: detected capacity change from 0 to 512 [ 1417.063409][T18441] EXT4-fs error (device loop1): ext4_orphan_get:1393: inode #15: comm syz.1.5426: casefold flag without casefold feature [ 1417.165631][T18441] EXT4-fs error (device loop1): ext4_orphan_get:1398: comm syz.1.5426: couldn't read orphan inode 15 (err -117) [ 1417.296995][T18441] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1417.835571][T18450] loop6: detected capacity change from 0 to 512 [ 1418.205167][ T5810] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1418.267158][T18450] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1418.280759][T18450] ext4 filesystem being mounted at /121/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 1418.456955][T18450] EXT4-fs error (device loop6): ext4_do_update_inode:5568: inode #2: comm syz.6.5428: corrupted inode contents [ 1418.595079][T18450] EXT4-fs error (device loop6): ext4_dirty_inode:6459: inode #2: comm syz.6.5428: mark_inode_dirty error [ 1418.692501][T18463] loop3: detected capacity change from 0 to 64 [ 1418.751573][T18450] EXT4-fs error (device loop6): ext4_do_update_inode:5568: inode #2: comm syz.6.5428: corrupted inode contents [ 1418.925929][T18462] EXT4-fs error (device loop6): ext4_do_update_inode:5568: inode #2: comm syz.6.5428: corrupted inode contents [ 1419.042970][T18462] EXT4-fs error (device loop6): ext4_dirty_inode:6459: inode #2: comm syz.6.5428: mark_inode_dirty error [ 1419.174939][T18462] EXT4-fs error (device loop6): ext4_do_update_inode:5568: inode #2: comm syz.6.5428: corrupted inode contents [ 1419.253749][T18462] EXT4-fs error (device loop6): __ext4_ext_dirty:206: inode #2: comm syz.6.5428: mark_inode_dirty error [ 1419.330933][T18462] EXT4-fs error (device loop6): ext4_do_update_inode:5568: inode #2: comm syz.6.5428: corrupted inode contents [ 1419.428041][T18462] EXT4-fs error (device loop6): ext4_dirty_inode:6459: inode #2: comm syz.6.5428: mark_inode_dirty error [ 1419.965226][T16519] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1420.508518][T18477] loop0: detected capacity change from 0 to 256 [ 1420.803256][T18480] loop6: detected capacity change from 0 to 512 [ 1420.866299][T18480] EXT4-fs: Ignoring removed i_version option [ 1420.873139][T18480] EXT4-fs: Ignoring removed mblk_io_submit option [ 1420.950545][T18480] EXT4-fs (loop6): Test dummy encryption mode enabled [ 1421.011383][T18480] EXT4-fs (loop6): orphan cleanup on readonly fs [ 1421.031528][T18477] FAT-fs (loop0): Directory bread(block 64) failed [ 1421.038402][T18477] FAT-fs (loop0): Directory bread(block 65) failed [ 1421.046035][T18477] FAT-fs (loop0): Directory bread(block 66) failed [ 1421.053049][T18477] FAT-fs (loop0): Directory bread(block 67) failed [ 1421.060249][T18477] FAT-fs (loop0): Directory bread(block 68) failed [ 1421.068240][T18477] FAT-fs (loop0): Directory bread(block 69) failed [ 1421.075898][T18477] FAT-fs (loop0): Directory bread(block 70) failed [ 1421.087248][T18477] FAT-fs (loop0): Directory bread(block 71) failed [ 1421.095304][T18477] FAT-fs (loop0): Directory bread(block 72) failed [ 1421.102413][T18477] FAT-fs (loop0): Directory bread(block 73) failed [ 1421.135412][T18480] EXT4-fs error (device loop6): ext4_orphan_get:1393: comm syz.6.5438: inode #13: comm syz.6.5438: iget: illegal inode # [ 1421.224290][T18480] EXT4-fs (loop6): Remounting filesystem read-only [ 1421.233646][T18480] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none. [ 1421.991024][T16519] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1422.432221][T18492] futex_wake_op: syz.5.5447 tries to shift op by 35; fix this program [ 1422.648525][T18494] loop6: detected capacity change from 0 to 1024 [ 1422.760208][T18496] loop0: detected capacity change from 0 to 16 [ 1422.826442][T18496] erofs (device loop0): unsupported datalayout 7 of nid 36 [ 1423.003261][T18490] loop3: detected capacity change from 0 to 4096 [ 1423.098590][T18490] ntfs3(loop3): Different NTFS sector size (4096) and media sector size (512). [ 1423.376393][T15862] hfsplus: b-tree write err: -5, ino 4 [ 1423.645477][T18490] ntfs3(loop3): ino=19, mi_enum_attr [ 1423.651296][T18490] ntfs3(loop3): Mark volume as dirty due to NTFS errors [ 1424.016571][T18503] loop1: detected capacity change from 0 to 256 [ 1424.141210][T18503] exFAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 1424.155476][T18503] exFAT-fs (loop1): Medium has reported failures. Some data may be lost. [ 1424.417451][T18503] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d) [ 1425.464836][T18514] loop3: detected capacity change from 0 to 1764 [ 1425.658917][T18516] loop5: detected capacity change from 0 to 512 [ 1425.901165][T18516] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1425.915090][T18516] ext4 filesystem being mounted at /889/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 1426.542020][ T8065] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1426.710111][T18530] netlink: 'syz.3.5461': attribute type 3 has an invalid length. [ 1426.835890][T18531] loop0: detected capacity change from 0 to 128 [ 1426.884796][T18531] FAT-fs (loop0): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 1427.003252][T18531] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 1427.441757][T18535] netlink: 'syz.6.5465': attribute type 5 has an invalid length. [ 1427.675518][T18537] loop3: detected capacity change from 0 to 64 [ 1430.170408][T18555] loop1: detected capacity change from 0 to 4096 [ 1430.268821][T18560] loop6: detected capacity change from 0 to 512 [ 1430.318951][T18562] loop5: detected capacity change from 0 to 64 [ 1430.395588][T18555] NILFS error (device loop1): nilfs_bmap_lookup_at_level: broken bmap (inode number=6) [ 1430.414883][T18565] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 1430.435724][T18555] Remounting filesystem read-only [ 1430.447652][T18563] loop3: detected capacity change from 0 to 512 [ 1430.528058][T18560] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1430.541606][T18560] ext4 filesystem being mounted at /130/file2 supports timestamps until 2038-01-19 (0x7fffffff) [ 1430.593537][T18563] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 1430.732674][T18563] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a843c018, mo2=0002] [ 1430.786298][T18560] EXT4-fs error (device loop6): ext4_do_update_inode:5568: inode #4: comm syz.6.5479: corrupted inode contents [ 1430.803805][T18560] EXT4-fs error (device loop6): ext4_dirty_inode:6459: inode #4: comm syz.6.5479: mark_inode_dirty error [ 1430.822357][T18563] System zones: 0-2, 18-18, 34-34 [ 1430.865572][T18560] EXT4-fs error (device loop6): ext4_do_update_inode:5568: inode #4: comm syz.6.5479: corrupted inode contents [ 1430.895465][T18563] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1430.909273][T18563] ext4 filesystem being mounted at /1100/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 1430.937966][T18560] EXT4-fs error (device loop6): __ext4_ext_dirty:206: inode #4: comm syz.6.5479: mark_inode_dirty error [ 1430.958541][T18560] Quota error (device loop6): write_blk: dquota write failed [ 1430.967021][T18560] Quota error (device loop6): qtree_write_dquot: Error -117 occurred while creating quota [ 1430.977712][T18560] EXT4-fs error (device loop6): ext4_acquire_dquot:6933: comm syz.6.5479: Failed to acquire dquot type 1 [ 1431.172042][T18572] EXT4-fs error (device loop6): ext4_do_update_inode:5568: inode #4: comm syz.6.5479: corrupted inode contents [ 1431.337906][T18572] EXT4-fs error (device loop6): ext4_dirty_inode:6459: inode #4: comm syz.6.5479: mark_inode_dirty error [ 1431.453605][T18572] EXT4-fs error (device loop6): ext4_do_update_inode:5568: inode #4: comm syz.6.5479: corrupted inode contents [ 1431.523590][ T5811] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1431.560296][T18572] EXT4-fs error (device loop6): __ext4_ext_dirty:206: inode #4: comm syz.6.5479: mark_inode_dirty error [ 1431.619012][T18572] Quota error (device loop6): write_blk: dquota write failed [ 1431.632361][T18572] Quota error (device loop6): find_free_dqentry: Can't write quota data block 5 [ 1431.650921][T18572] Quota error (device loop6): qtree_write_dquot: Error -117 occurred while creating quota [ 1431.661408][T18572] EXT4-fs error (device loop6): ext4_acquire_dquot:6933: comm syz.6.5479: Failed to acquire dquot type 1 [ 1432.280125][T16519] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1433.327437][T18590] netlink: 'syz.1.5489': attribute type 11 has an invalid length. [ 1434.577946][T18604] loop1: detected capacity change from 0 to 512 [ 1434.660536][T18604] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 1434.865429][T18604] EXT4-fs (loop1): 1 truncate cleaned up [ 1434.943998][T18604] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1435.510442][ T5810] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1436.058001][T18619] loop1: detected capacity change from 0 to 512 [ 1436.145582][T18619] EXT4-fs: Ignoring removed mblk_io_submit option [ 1436.349866][T18619] EXT4-fs (loop1): Cannot turn on journaled quota: type 0: error -13 [ 1436.388270][T18619] EXT4-fs error (device loop1): ext4_clear_blocks:876: inode #13: comm syz.1.5500: attempt to clear invalid blocks 2 len 1 [ 1436.537827][T18619] EXT4-fs (loop1): Remounting filesystem read-only [ 1436.622002][T18619] EXT4-fs (loop1): 1 truncate cleaned up [ 1436.631801][T18619] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1437.085381][T18630] 9pnet: Limiting 'msize' to 1048576 as this is the maximum supported by transport fd [ 1437.256011][ T5810] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1437.922343][ T30] audit: type=1326 audit(1752506362.915:169): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18635 comm="syz.3.5509" exe="/root/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7f07539 code=0x0 [ 1438.085912][T18633] loop0: detected capacity change from 0 to 4096 [ 1438.205612][T18634] loop5: detected capacity change from 0 to 4096 [ 1438.293785][T18638] loop1: detected capacity change from 0 to 2048 [ 1438.300549][T18634] ntfs3(loop5): Different NTFS sector size (4096) and media sector size (512). [ 1438.528133][T18643] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 1438.621810][T18633] ntfs3(loop0): ino=b, mi_enum_attr [ 1438.627399][T18633] ntfs3(loop0): Mark volume as dirty due to NTFS errors [ 1438.726216][T18634] ntfs3(loop5): ino=19, mi_enum_attr [ 1438.771638][T18633] ntfs3(loop0): Failed to load $Extend (-22). [ 1438.779096][T18633] ntfs3(loop0): Failed to initialize $Extend. [ 1439.034913][T18633] ntfs3(loop0): ino=1e, "file1" attr_set_size [ 1439.298461][T18643] NILFS (loop1): vblocknr = 18 has abnormal lifetime: start cno (= 504403158265495554) > current cno (= 3) [ 1439.315501][T18643] NILFS error (device loop1): nilfs_bmap_propagate: broken bmap (inode number=2) [ 1439.436071][T18643] Remounting filesystem read-only [ 1439.443449][ T5810] NILFS (loop1): disposed unprocessed dirty file(s) when stopping log writer [ 1439.836140][T18648] loop3: detected capacity change from 0 to 47 [ 1440.194375][T18648] MINIX-fs: deleted inode referenced: 9 [ 1440.235294][T18648] MINIX-fs: deleted inode referenced: 9 [ 1441.544272][T18667] loop0: detected capacity change from 0 to 256 [ 1441.569231][T18667] exfat: Deprecated parameter 'utf8' [ 1441.578458][T18667] exfat: Deprecated parameter 'utf8' [ 1441.780158][T18667] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0x23a77120, utbl_chksum : 0xe619d30d) [ 1441.890169][T18663] loop6: detected capacity change from 0 to 2048 [ 1441.969828][T18663] UDF-fs: error (device loop6): udf_read_tagged: tag version 0x0000 != 0x0002 || 0x0003, block 0 [ 1442.106660][T18663] UDF-fs: warning (device loop6): udf_load_vrs: No anchor found [ 1442.115017][T18663] UDF-fs: Scanning with blocksize 512 failed [ 1442.326841][T18671] loop5: detected capacity change from 0 to 16 [ 1442.363790][T18663] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 1442.397874][T18671] erofs (device loop5): mounted with root inode @ nid 36. [ 1442.602007][T18669] loop1: detected capacity change from 0 to 4096 [ 1442.700049][T18669] ntfs3(loop1): Different NTFS sector size (1024) and media sector size (512). [ 1443.186084][T18669] ntfs3(loop1): Mark volume as dirty due to NTFS errors [ 1443.540278][T18675] tipc: Started in network mode [ 1443.545542][T18675] tipc: Node identity ff010000000000000000000000000001, cluster identity 4711 [ 1443.558202][T18675] tipc: Enabling of bearer rejected, failed to enable media [ 1445.721537][T18683] loop1: detected capacity change from 0 to 4096 [ 1446.705947][T18683] ntfs3(loop1): failed to convert "0080" to cp862 [ 1448.030204][T18708] loop6: detected capacity change from 0 to 4096 [ 1448.111349][T18706] loop5: detected capacity change from 0 to 4096 [ 1448.173815][T18708] ntfs3(loop6): Different NTFS sector size (4096) and media sector size (512). [ 1448.197268][T18706] ntfs3(loop5): Different NTFS sector size (4096) and media sector size (512). [ 1448.228156][T18714] netlink: 8 bytes leftover after parsing attributes in process `syz.1.5542'. [ 1448.658563][T18708] ntfs3(loop6): Failed to load $Extend (-22). [ 1448.665569][T18708] ntfs3(loop6): Failed to initialize $Extend. [ 1448.714855][T18706] ntfs3(loop5): Failed to initialize $Extend/$Reparse. [ 1448.900401][T18706] ntfs3(loop5): ino=1e, mi_enum_attr [ 1448.906196][T18706] ntfs3(loop5): ino=1e, mi_enum_attr [ 1449.130554][T18717] ip6_vti0 speed is unknown, defaulting to 1000 [ 1449.146837][T18717] ip6_vti0 speed is unknown, defaulting to 1000 [ 1449.157805][T18717] ip6_vti0 speed is unknown, defaulting to 1000 [ 1449.787140][T18717] infiniband syz2: set active [ 1449.792320][T18717] infiniband syz2: added ip6_vti0 [ 1449.802612][T17658] ip6_vti0 speed is unknown, defaulting to 1000 [ 1449.983163][T18717] workqueue: Failed to create a rescuer kthread for wq "ib_mad1": -EINTR [ 1450.029285][T18717] infiniband syz2: Couldn't open port 1 [ 1450.347420][T18717] RDS/IB: syz2: added [ 1450.356898][T18717] smc: adding ib device syz2 with port count 1 [ 1450.364121][T18717] smc: ib device syz2 port 1 has pnetid SYZ2 (user defined) [ 1450.378323][T18717] ip6_vti0 speed is unknown, defaulting to 1000 [ 1450.413233][T11725] ip6_vti0 speed is unknown, defaulting to 1000 [ 1450.751459][T18728] netlink: 96 bytes leftover after parsing attributes in process `syz.0.5550'. [ 1450.762236][T18728] netlink: 96 bytes leftover after parsing attributes in process `syz.0.5550'. [ 1451.881459][T18717] ip6_vti0 speed is unknown, defaulting to 1000 [ 1452.610894][T18717] ip6_vti0 speed is unknown, defaulting to 1000 [ 1453.144815][T18717] ip6_vti0 speed is unknown, defaulting to 1000 [ 1453.793756][T18753] [U] „ [ 1454.064187][T17658] usb 6-1: new high-speed USB device number 10 using dummy_hcd [ 1454.300827][T17658] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 1454.312341][T17658] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 1454.322616][T17658] usb 6-1: New USB device found, idVendor=1532, idProduct=010e, bcdDevice= 0.00 [ 1454.332137][T17658] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1454.382815][T18717] ip6_vti0 speed is unknown, defaulting to 1000 [ 1454.496521][T17658] usb 6-1: config 0 descriptor?? [ 1455.260485][T17658] razer 0003:1532:010E.000B: failed to enable macro keys: -71 [ 1455.332401][T17658] razer 0003:1532:010E.000B: hidraw0: USB HID v0.00 Device [HID 1532:010e] on usb-dummy_hcd.5-1/input0 [ 1455.477047][T17658] usb 6-1: USB disconnect, device number 10 [ 1456.938832][T18770] fido_id[18770]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.5/usb6/report_descriptor': No such file or directory [ 1457.875707][T18796] loop5: detected capacity change from 0 to 256 [ 1458.196688][T18796] exFAT-fs (loop5): failed to load upcase table (idx : 0x000104d0, chksum : 0xda218cab, utbl_chksum : 0xe619d30d) [ 1458.550606][ T1286] ieee802154 phy0 wpan0: encryption failed: -22 [ 1458.557383][ T1286] ieee802154 phy1 wpan1: encryption failed: -22 [ 1459.338556][T18806] pimreg: entered allmulticast mode [ 1462.395663][T18835] loop1: detected capacity change from 0 to 256 [ 1462.825856][T18841] netlink: 24 bytes leftover after parsing attributes in process `syz.3.5594'. [ 1462.894298][T18835] FAT-fs (loop1): Directory bread(block 64) failed [ 1462.904383][T18835] FAT-fs (loop1): Directory bread(block 65) failed [ 1462.911877][T18835] FAT-fs (loop1): Directory bread(block 66) failed [ 1462.918700][T18835] FAT-fs (loop1): Directory bread(block 67) failed [ 1462.925888][T18835] FAT-fs (loop1): Directory bread(block 68) failed [ 1462.935706][T18835] FAT-fs (loop1): Directory bread(block 69) failed [ 1462.942900][T18835] FAT-fs (loop1): Directory bread(block 70) failed [ 1462.951199][T18835] FAT-fs (loop1): Directory bread(block 71) failed [ 1462.958205][T18835] FAT-fs (loop1): Directory bread(block 72) failed [ 1462.971500][T18835] FAT-fs (loop1): Directory bread(block 73) failed [ 1464.197254][T18851] loop5: detected capacity change from 0 to 256 [ 1464.258415][T18851] exfat: Deprecated parameter 'namecase' [ 1464.266068][T18851] exfat: Deprecated parameter 'utf8' [ 1464.274522][T18853] netlink: 4 bytes leftover after parsing attributes in process `syz.1.5599'. [ 1464.347244][T18855] loop6: detected capacity change from 0 to 256 [ 1464.357996][T18855] exfat: Deprecated parameter 'namecase' [ 1464.374994][T18856] netlink: 4 bytes leftover after parsing attributes in process `syz.1.5599'. [ 1464.473644][T18851] exFAT-fs (loop5): failed to load upcase table (idx : 0x00010000, chksum : 0xdc42f586, utbl_chksum : 0xe619d30d) [ 1464.510121][T18855] exFAT-fs (loop6): failed to load upcase table (idx : 0x00010000, chksum : 0x36dfe6b4, utbl_chksum : 0xe619d30d) [ 1466.581905][T18874] loop5: detected capacity change from 0 to 256 [ 1467.149784][T17658] usb 4-1: new high-speed USB device number 21 using dummy_hcd [ 1467.359837][T17658] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 1467.373289][T17658] usb 4-1: New USB device found, idVendor=172f, idProduct=0500, bcdDevice= 0.00 [ 1467.384753][T17658] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1467.517782][T17658] usb 4-1: config 0 descriptor?? [ 1467.750005][T18882] loop1: detected capacity change from 0 to 2048 [ 1467.997572][T18887] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 1468.060677][T17658] waltop 0003:172F:0500.000C: item fetching failed at offset 2/5 [ 1468.094600][T18888] loop0: detected capacity change from 0 to 256 [ 1468.160011][T17658] waltop 0003:172F:0500.000C: probe with driver waltop failed with error -22 [ 1468.237244][ T30] audit: type=1800 audit(1752506393.245:170): pid=18889 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.5.5616" name="SYSV00000000" dev="hugetlbfs" ino=0 res=0 errno=0 [ 1468.353485][T17658] usb 4-1: USB disconnect, device number 21 [ 1471.175591][T18911] loop3: detected capacity change from 0 to 2048 [ 1471.282458][T18911] loop3: p1 < > p3 p4 < > [ 1471.321981][T18911] loop3: p3 start 4284289 is beyond EOD, truncated [ 1472.432981][T18927] binder: 18925:18927 ioctl c018620b 80000240 returned -14 [ 1472.740218][T18923] loop0: detected capacity change from 0 to 4096 [ 1472.974876][T18932] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 1473.426104][T18937] bpf: Bad value for 'gid' [ 1473.485866][T18938] loop1: detected capacity change from 0 to 128 [ 1473.713054][T18938] syz.1.5638: attempt to access beyond end of device [ 1473.713054][T18938] loop1: rw=0, sector=2071, nr_sectors = 1 limit=128 [ 1473.725206][ T30] audit: type=1800 audit(1752506398.695:171): pid=18938 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.5638" name="file2" dev="loop1" ino=1048820 res=0 errno=0 [ 1474.352018][T18942] netlink: 8 bytes leftover after parsing attributes in process `syz.6.5642'. [ 1474.438737][T18942] macvlan2: entered promiscuous mode [ 1474.448224][T18942] macvlan2: entered allmulticast mode [ 1474.454167][T18942] erspan0: entered allmulticast mode [ 1475.718466][T18959] loop0: detected capacity change from 0 to 64 [ 1476.758764][T18964] loop6: detected capacity change from 0 to 1024 [ 1477.041765][T18964] hfsplus: extend alloc file! (8192,63991,0) [ 1478.449186][T18982] loop3: detected capacity change from 0 to 1024 [ 1478.570860][T18984] netdevsim netdevsim5: Firmware load for '../file0' refused, path contains '..' component [ 1478.691948][T18982] EXT4-fs (loop3): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none. [ 1478.704917][T18982] ext4 filesystem being mounted at /1130/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 1478.788337][T18990] netlink: 1 bytes leftover after parsing attributes in process `syz.1.5663'. [ 1478.901914][T18982] EXT4-fs error (device loop3): ext4_map_blocks:816: inode #15: block 3: comm syz.3.5660: lblock 3 mapped to illegal pblock 3 (length 3) [ 1478.972894][T18982] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 3 with max blocks 3 with error 117 [ 1478.989218][T18982] EXT4-fs (loop3): This should not happen!! Data will be lost [ 1478.989218][T18982] [ 1479.715867][ T1884] EXT4-fs error (device loop3): ext4_map_blocks:816: inode #15: block 8: comm kworker/u8:8: lblock 8 mapped to illegal pblock 8 (length 8) [ 1479.837900][ T1884] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 8 with max blocks 8 with error 117 [ 1479.852205][ T1884] EXT4-fs (loop3): This should not happen!! Data will be lost [ 1479.852205][ T1884] [ 1480.046674][ T5811] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0006-0000-000000000000. [ 1481.386316][T19008] loop3: detected capacity change from 0 to 2048 [ 1481.663429][T19017] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 1482.588994][T19024] loop5: detected capacity change from 0 to 256 [ 1482.813958][T19024] exFAT-fs (loop5): failed to load upcase table (idx : 0x00010000, chksum : 0x3b112d97, utbl_chksum : 0xe619d30d) [ 1484.097769][T19038] loop0: detected capacity change from 0 to 512 [ 1484.340243][T19038] Quota error (device loop0): do_check_range: Getting dqdh_prev_free 1536 out of range 0-5 [ 1484.352874][T19038] Quota error (device loop0): qtree_write_dquot: Error -117 occurred while creating quota [ 1484.366934][T19038] EXT4-fs error (device loop0): ext4_acquire_dquot:6933: comm syz.0.5680: Failed to acquire dquot type 1 [ 1484.482411][T19038] EXT4-fs (loop0): 1 truncate cleaned up [ 1484.491075][T19038] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1484.504642][T19038] ext4 filesystem being mounted at /1159/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 1484.939030][T19050] loop5: detected capacity change from 0 to 256 [ 1485.093322][ T5812] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1485.134916][T19049] loop3: detected capacity change from 0 to 1024 [ 1486.875990][T19067] ieee802154 phy0 wpan0: encryption failed: -22 [ 1487.146333][T19070] loop1: detected capacity change from 0 to 512 [ 1487.362967][T19070] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 1487.511550][T19070] EXT4-fs (loop1): 1 truncate cleaned up [ 1487.521526][T19070] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1487.728527][T19070] EXT4-fs error (device loop1): ext4_generic_delete_entry:2668: inode #2: block 13: comm syz.1.5695: bad entry in directory: rec_len is smaller than minimal - offset=24, inode=11, rec_len=8, size=1024 fake=0 [ 1487.852371][T19079] loop3: detected capacity change from 0 to 256 [ 1487.880873][T19070] EXT4-fs error (device loop1) in ext4_delete_entry:2739: Corrupt filesystem [ 1487.958674][T19079] UDF-fs: error (device loop3): udf_read_tagged: read failed, block=256, location=256 [ 1488.125946][T19079] UDF-fs: error (device loop3): udf_read_tagged: read failed, block=512, location=512 [ 1488.137152][T19079] UDF-fs: warning (device loop3): udf_load_vrs: No anchor found [ 1488.145866][T19079] UDF-fs: Scanning with blocksize 512 failed [ 1488.302541][ T5810] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1488.319049][T19079] UDF-fs: error (device loop3): udf_read_tagged: read failed, block=256, location=256 [ 1488.452773][T19079] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 1488.717396][T19083] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore [ 1488.726807][T19083] overlayfs: conflicting options: userxattr,metacopy=on [ 1489.561467][T19092] batadv0: entered promiscuous mode [ 1489.576330][T19092] 8021q: adding VLAN 0 to HW filter on device macvlan2 [ 1489.631109][T19092] batadv0: left promiscuous mode [ 1491.073432][T19107] loop6: detected capacity change from 0 to 1024 [ 1491.093003][T19107] hfsplus: Unknown parameter 'creatŒÓ¨˜ãSºÜ' [ 1491.272576][T19107] CIFS mount error: No usable UNC path provided in device string! [ 1491.272576][T19107] [ 1491.286117][T19107] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string! [ 1491.400526][T17847] Bluetooth: hci4: command 0x0406 tx timeout [ 1491.854680][T19113] loop3: detected capacity change from 0 to 1024 [ 1491.933181][T19113] EXT4-fs: Ignoring removed bh option [ 1492.131068][T19113] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-001000000000 r/w without journal. Quota mode: writeback. [ 1492.316884][T19124] netlink: 40 bytes leftover after parsing attributes in process `syz.6.5717'. [ 1492.963672][ T5811] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-001000000000. [ 1493.193566][T19130] loop1: detected capacity change from 0 to 512 [ 1493.230142][T19130] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 1493.397510][T19130] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1493.414261][T19130] ext4 filesystem being mounted at /1142/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 1494.061173][ T5810] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1494.916514][T19147] Bluetooth: MGMT ver 1.23 [ 1495.007071][T19148] loop6: detected capacity change from 0 to 1024 [ 1495.563694][T19153] syz.6.5727: attempt to access beyond end of device [ 1495.563694][T19153] loop6: rw=0, sector=201326592, nr_sectors = 2 limit=1024 [ 1495.578065][T19153] Buffer I/O error on dev loop6, logical block 100663296, async page read [ 1495.587608][T19153] syz.6.5727: attempt to access beyond end of device [ 1495.587608][T19153] loop6: rw=0, sector=201326592, nr_sectors = 2 limit=1024 [ 1495.602327][T19153] Buffer I/O error on dev loop6, logical block 100663296, async page read [ 1495.710720][T19150] loop3: detected capacity change from 0 to 2048 [ 1495.844220][T19150] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 1496.521962][T19158] ALSA: mixer_oss: invalid OSS volume '’ߎA¬k¾âX!é¥û`=UWôÍW¿[ã' [ 1496.533413][T19158] ALSA: mixer_oss: invalid OSS volume 'ÄNi)À·E{:ÊT%½cB' [ 1497.510314][T19169] gretap0: entered promiscuous mode [ 1497.515964][T19169] vlan2: entered promiscuous mode [ 1497.547458][T19164] loop6: detected capacity change from 0 to 4096 [ 1497.705482][T19164] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1497.980811][T19164] EXT4-fs error (device loop6): ext4_get_first_dir_block:3545: inode #12: block 80: comm syz.6.5733: bad entry in directory: rec_len is smaller than minimal - offset=12, inode=6, rec_len=0, size=4096 fake=0 [ 1498.078298][T19164] EXT4-fs (loop6): Remounting filesystem read-only [ 1498.515822][T19178] loop0: detected capacity change from 0 to 1024 [ 1498.573745][T16519] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1499.332802][T19184] loop3: detected capacity change from 0 to 256 [ 1499.495809][T19186] netlink: 8 bytes leftover after parsing attributes in process `syz.1.5746'. [ 1499.841209][T19184] FAT-fs (loop3): Directory bread(block 64) failed [ 1499.849116][T19184] FAT-fs (loop3): Directory bread(block 65) failed [ 1499.856400][T19184] FAT-fs (loop3): Directory bread(block 66) failed [ 1499.863415][T19184] FAT-fs (loop3): Directory bread(block 67) failed [ 1499.870701][T19184] FAT-fs (loop3): Directory bread(block 68) failed [ 1499.877504][T19184] FAT-fs (loop3): Directory bread(block 69) failed [ 1499.886611][T19184] FAT-fs (loop3): Directory bread(block 70) failed [ 1499.894133][T19184] FAT-fs (loop3): Directory bread(block 71) failed [ 1499.901251][T19184] FAT-fs (loop3): Directory bread(block 72) failed [ 1499.908065][T19184] FAT-fs (loop3): Directory bread(block 73) failed [ 1501.637309][T19203] loop3: detected capacity change from 0 to 1024 [ 1501.711226][T19203] EXT4-fs: Ignoring removed bh option [ 1501.907715][T19203] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-001000000000 r/w without journal. Quota mode: writeback. [ 1502.206238][T19213] loop5: detected capacity change from 0 to 512 [ 1502.267688][T19213] EXT4-fs (loop5): mounting ext3 file system using the ext4 subsystem [ 1502.351517][T19214] loop1: detected capacity change from 0 to 512 [ 1502.428894][ T5811] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-001000000000. [ 1502.474226][T19214] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 1502.530824][T19213] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8042c118, mo2=0002] [ 1502.603754][T19213] EXT4-fs error (device loop5): ext4_iget_extra_inode:5035: inode #15: comm syz.5.5755: corrupted in-inode xattr: e_value size too large [ 1502.657263][T19213] EXT4-fs error (device loop5): ext4_orphan_get:1398: comm syz.5.5755: couldn't read orphan inode 15 (err -117) [ 1502.732489][T19213] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1502.761604][T19214] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1502.775078][T19214] ext4 filesystem being mounted at /1150/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 1502.946270][T19213] EXT4-fs warning (device loop5): ext4_block_to_path:107: block 863271013 > max in inode 18 [ 1503.420519][T19223] sock: sock_set_timeout: `syz.3.5760' (pid 19223) tries to set negative timeout [ 1503.566581][ T8065] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1503.612228][ T5810] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1504.455796][T19231] loop5: detected capacity change from 0 to 8 [ 1504.505406][T19229] loop1: detected capacity change from 0 to 512 [ 1504.551609][T19231] unable to read id index table [ 1504.608989][T19233] loop0: detected capacity change from 0 to 256 [ 1507.554190][T19257] loop0: detected capacity change from 0 to 512 [ 1507.654297][T19257] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 1507.953786][T19257] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1507.967260][T19257] ext4 filesystem being mounted at /1178/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 1508.048923][T19266] loop1: detected capacity change from 0 to 256 [ 1508.198678][T19265] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 41 vs 39667 free clusters [ 1508.342791][T19266] exFAT-fs (loop1): failed to load upcase table (idx : 0x00012c80, chksum : 0x0ff561db, utbl_chksum : 0xe619d30d) [ 1508.645822][ T5812] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1509.608778][T19277] loop3: detected capacity change from 0 to 256 [ 1509.783010][ T30] audit: type=1800 audit(1752506434.785:172): pid=19277 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.5784" name="bus" dev="loop3" ino=1048852 res=0 errno=0 [ 1509.804742][ T30] audit: type=1804 audit(1752506434.795:173): pid=19277 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.3.5784" name="/newroot/1153/file0/bus" dev="loop3" ino=1048852 res=1 errno=0 [ 1511.585595][T19289] Bluetooth: hci0: Opcode 0x0c20 failed: -4 [ 1513.606126][T19314] loop3: detected capacity change from 0 to 8 [ 1513.718611][T19314] SQUASHFS error: Unknown LZ4 version [ 1513.725016][T19314] squashfs image failed sanity check [ 1514.988340][T11725] usb 4-1: new full-speed USB device number 22 using dummy_hcd [ 1515.189997][ T30] audit: type=1326 audit(1752506440.185:174): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19334 comm="syz.0.5809" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f28539 code=0x7ffc0000 [ 1515.266728][T11725] usb 4-1: config 0 has an invalid interface number: 128 but max is 0 [ 1515.279990][T11725] usb 4-1: config 0 has no interface number 0 [ 1515.380606][T11725] usb 4-1: New USB device found, idVendor=20b7, idProduct=1540, bcdDevice=b7.5a [ 1515.395881][T11725] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1515.407747][T11725] usb 4-1: Product: syz [ 1515.413393][T11725] usb 4-1: Manufacturer: syz [ 1515.418355][T11725] usb 4-1: SerialNumber: syz [ 1515.445753][ T30] audit: type=1326 audit(1752506440.305:175): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19334 comm="syz.0.5809" exe="/root/syz-executor" sig=0 arch=40000003 syscall=83 compat=1 ip=0xf7f28539 code=0x7ffc0000 [ 1515.471582][ T30] audit: type=1326 audit(1752506440.335:176): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19334 comm="syz.0.5809" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f28539 code=0x7ffc0000 [ 1515.497524][ T30] audit: type=1326 audit(1752506440.355:177): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19334 comm="syz.0.5809" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f28539 code=0x7ffc0000 [ 1515.709183][T11725] usb 4-1: config 0 descriptor?? [ 1516.401300][T11725] usb 4-1: Firmware version (0.0) predates our first public release. [ 1516.410101][T11725] usb 4-1: Please update to version 0.2 or newer [ 1516.699332][T11725] usb 4-1: USB disconnect, device number 22 [ 1517.930056][T19363] devtmpfs: Cannot retroactively limit inodes [ 1518.410203][T19367] loop6: detected capacity change from 0 to 256 [ 1518.690033][ T30] audit: type=1800 audit(1752506443.685:178): pid=19367 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.6.5821" name="bus" dev="loop6" ino=1048853 res=0 errno=0 [ 1518.803660][ T30] audit: type=1804 audit(1752506443.735:179): pid=19367 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.6.5821" name="/newroot/200/file0/bus" dev="loop6" ino=1048853 res=1 errno=0 [ 1519.100029][T11725] usb 4-1: new high-speed USB device number 23 using dummy_hcd [ 1519.325353][T11725] usb 4-1: New USB device found, idVendor=17e9, idProduct=8b4e, bcdDevice=9c.08 [ 1519.338216][T11725] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1519.415555][T11725] usb 4-1: config 0 descriptor?? [ 1519.699118][T11725] udl 4-1:0.0: [drm] Unrecognized vendor firmware descriptor [ 1519.907714][T11725] [drm:udl_init] *ERROR* Selecting channel failed [ 1519.992539][ T1286] ieee802154 phy0 wpan0: encryption failed: -22 [ 1519.999290][ T1286] ieee802154 phy1 wpan1: encryption failed: -22 [ 1520.038914][T11725] [drm] Initialized udl 0.0.1 for 4-1:0.0 on minor 2 [ 1520.046263][T11725] [drm] Initialized udl on minor 2 [ 1520.250703][T11725] udl 4-1:0.0: [drm] *ERROR* Read EDID byte 0 failed err ffffffb9 [ 1520.263167][T11725] udl 4-1:0.0: [drm] Cannot find any crtc or sizes [ 1520.278086][T16006] udl 4-1:0.0: [drm] *ERROR* Read EDID byte 0 failed err ffffffb9 [ 1520.330176][T16006] udl 4-1:0.0: [drm] *ERROR* Read EDID byte 0 failed err ffffffb9 [ 1520.338805][T16006] udl 4-1:0.0: [drm] Cannot find any crtc or sizes [ 1520.405239][T11725] usb 4-1: USB disconnect, device number 23 [ 1521.994528][T19401] loop5: detected capacity change from 0 to 256 [ 1522.104741][ T30] audit: type=1800 audit(1752506447.115:180): pid=19401 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.5837" name="bus" dev="loop5" ino=1048854 res=0 errno=0 [ 1522.213280][ T30] audit: type=1804 audit(1752506447.175:181): pid=19401 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.5.5837" name="/newroot/971/file0/bus" dev="loop5" ino=1048854 res=1 errno=0 [ 1523.030519][T19411] IPVS: sync thread started: state = BACKUP, mcast_ifn = caif0, syncid = 0, id = 0 [ 1524.144920][T19424] netlink: 'syz.5.5846': attribute type 5 has an invalid length. [ 1524.517125][T19428] loop0: detected capacity change from 0 to 512 [ 1524.630210][T19428] EXT4-fs (loop0): mounting ext3 file system using the ext4 subsystem [ 1524.770125][T19428] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8042c118, mo2=0002] [ 1524.858850][T19428] EXT4-fs error (device loop0): ext4_iget_extra_inode:5035: inode #15: comm syz.0.5848: corrupted in-inode xattr: e_value size too large [ 1525.060256][T19428] EXT4-fs error (device loop0): ext4_orphan_get:1398: comm syz.0.5848: couldn't read orphan inode 15 (err -117) [ 1525.103891][T19428] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1525.404499][T19428] EXT4-fs warning (device loop0): ext4_block_to_path:107: block 863271013 > max in inode 18 [ 1525.541388][T19435] loop5: detected capacity change from 0 to 8 [ 1525.620768][T19435] SQUASHFS error: Unknown LZ4 version [ 1525.626558][T19435] squashfs image failed sanity check [ 1525.925114][ T5812] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1528.002465][T19451] loop3: detected capacity change from 0 to 4096 [ 1528.060464][T19451] ntfs3(loop3): Different NTFS sector size (4096) and media sector size (512). [ 1528.597045][T19451] ntfs3(loop3): ino=19, mi_enum_attr [ 1528.718267][T19467] loop6: detected capacity change from 0 to 512 [ 1528.801140][T19467] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode [ 1528.963625][T19471] loop5: detected capacity change from 0 to 1024 [ 1529.046234][T19467] EXT4-fs (loop6): 1 truncate cleaned up [ 1529.055345][T19467] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1529.820990][ T1884] hfsplus: b-tree write err: -5, ino 4 [ 1529.995156][T16519] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1530.693778][T19481] loop0: detected capacity change from 0 to 512 [ 1530.815527][T19481] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 1531.036263][T19481] EXT4-fs (loop0): 1 truncate cleaned up [ 1531.085989][T19490] IPVS: sync thread started: state = BACKUP, mcast_ifn = caif0, syncid = 0, id = 0 [ 1531.121572][T19481] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1531.767203][ T5812] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1531.842085][T19484] loop5: detected capacity change from 0 to 4096 [ 1531.945329][T19484] ntfs3(loop5): Different NTFS sector size (1024) and media sector size (512). [ 1532.461192][T19484] ntfs3(loop5): Mark volume as dirty due to NTFS errors [ 1532.731675][T14879] Bluetooth: hci2: unexpected event for opcode 0x042e [ 1532.799021][T19502] loop6: detected capacity change from 0 to 47 [ 1532.865878][T19501] loop3: detected capacity change from 0 to 512 [ 1533.078738][T19502] MINIX-fs: deleted inode referenced: 9 [ 1533.163006][T19502] MINIX-fs: deleted inode referenced: 9 [ 1533.648767][T19506] loop0: detected capacity change from 0 to 512 [ 1533.756224][T19506] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 1533.888553][T19506] EXT4-fs (loop0): 1 truncate cleaned up [ 1533.897624][T19506] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1534.221374][T19515] 9pnet_fd: Insufficient options for proto=fd [ 1534.803517][ T5812] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1535.474997][T19529] IPVS: sync thread started: state = BACKUP, mcast_ifn = caif0, syncid = 0, id = 0 [ 1536.395466][T19534] loop0: detected capacity change from 0 to 2048 [ 1536.582556][T19543] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 1537.208621][T19539] loop6: detected capacity change from 0 to 4096 [ 1537.280921][T19543] NILFS (loop0): vblocknr = 18 has abnormal lifetime: start cno (= 504403158265495554) > current cno (= 3) [ 1537.294195][T19543] NILFS error (device loop0): nilfs_bmap_propagate: broken bmap (inode number=2) [ 1537.328915][T19539] ntfs3(loop6): Different NTFS sector size (1024) and media sector size (512). [ 1537.434638][T19543] Remounting filesystem read-only [ 1537.467537][ T5812] NILFS (loop0): disposed unprocessed dirty file(s) when stopping log writer [ 1537.744952][T19539] ntfs3(loop6): Mark volume as dirty due to NTFS errors [ 1538.182547][T19551] loop0: detected capacity change from 0 to 512 [ 1538.384305][T19551] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1538.397689][T19551] ext4 filesystem being mounted at /1201/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 1539.015090][ T5812] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1539.533056][ T30] audit: type=1326 audit(1752506464.535:182): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19562 comm="syz.3.5904" exe="/root/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7f07539 code=0x0 [ 1539.920700][T19569] loop1: detected capacity change from 0 to 16 [ 1539.965765][T19569] erofs (device loop1): mounted with root inode @ nid 36. [ 1540.971750][T19578] [U] „ [ 1544.074820][T19615] loop3: detected capacity change from 0 to 64 [ 1544.156062][T19610] loop5: detected capacity change from 0 to 2048 [ 1544.290875][T19610] NILFS (loop5): broken superblock, retrying with spare superblock (blocksize = 1024) [ 1544.301212][T19610] NILFS (loop5): mounting unchecked fs [ 1544.602349][T19610] NILFS (loop5): recovery complete [ 1544.846614][T19622] NILFS (loop5): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 1545.524067][ T30] audit: type=1326 audit(1752506470.505:183): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19626 comm="syz.6.5931" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf711e539 code=0x7ffc0000 [ 1545.547301][ T30] audit: type=1326 audit(1752506470.535:184): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19626 comm="syz.6.5931" exe="/root/syz-executor" sig=0 arch=40000003 syscall=8 compat=1 ip=0xf711e539 code=0x7ffc0000 [ 1545.573784][ T30] audit: type=1326 audit(1752506470.535:185): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19626 comm="syz.6.5931" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf711e539 code=0x7ffc0000 [ 1545.597744][ T30] audit: type=1326 audit(1752506470.585:186): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19626 comm="syz.6.5931" exe="/root/syz-executor" sig=0 arch=40000003 syscall=106 compat=1 ip=0xf711e539 code=0x7ffc0000 [ 1545.620706][ T30] audit: type=1326 audit(1752506470.585:187): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19626 comm="syz.6.5931" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf711e539 code=0x7ffc0000 [ 1546.307589][T19633] netlink: 'syz.1.5944': attribute type 83 has an invalid length. [ 1548.084686][T19655] loop1: detected capacity change from 0 to 128 [ 1548.257994][T19655] UDF-fs: error (device loop1): udf_read_tagged: read failed, block=256, location=256 [ 1548.407229][T19655] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 1549.581771][T19668] netlink: 'syz.5.5949': attribute type 83 has an invalid length. [ 1550.372703][T19673] loop3: detected capacity change from 0 to 256 [ 1550.647583][T19673] exFAT-fs (loop3): failed to load upcase table (idx : 0x000104d0, chksum : 0xda218cab, utbl_chksum : 0xe619d30d) [ 1551.080706][ T30] audit: type=1326 audit(1752506476.075:188): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19680 comm="syz.0.5954" exe="/root/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7f28539 code=0x0 [ 1551.386646][T19686] loop5: detected capacity change from 0 to 64 [ 1551.506566][T19686] hfs: unable to locate alternate MDB [ 1551.512555][T19686] hfs: continuing without an alternate MDB [ 1551.934232][T19692] loop6: detected capacity change from 0 to 128 [ 1551.957231][T19692] UDF-fs: error (device loop6): udf_read_tagged: read failed, block=256, location=256 [ 1552.080371][T19692] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 1553.699762][ T30] audit: type=1326 audit(1752506478.695:189): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19704 comm="syz.5.5967" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f26539 code=0x7ffc0000 [ 1554.781541][T19720] netlink: 4 bytes leftover after parsing attributes in process `syz.3.5971'. [ 1554.830491][T19722] netlink: 4 bytes leftover after parsing attributes in process `syz.3.5971'. [ 1554.887840][T19721] loop1: detected capacity change from 0 to 256 [ 1554.956425][T19721] exfat: Deprecated parameter 'namecase' [ 1555.209347][T19721] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x36dfe6b4, utbl_chksum : 0xe619d30d) [ 1556.164175][ T30] audit: type=1326 audit(1752506481.155:190): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19731 comm="syz.6.5975" exe="/root/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf711e539 code=0x0 [ 1557.036925][T19743] loop1: detected capacity change from 0 to 64 [ 1557.640001][T19751] sp0: Synchronizing with TNC [ 1557.649955][T13446] usb 6-1: new high-speed USB device number 11 using dummy_hcd [ 1557.900550][T13446] usb 6-1: Using ep0 maxpacket: 8 [ 1557.960214][T13446] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 1557.972561][T13446] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 1557.983266][T13446] usb 6-1: New USB device found, idVendor=056a, idProduct=0000, bcdDevice= 0.00 [ 1557.995769][T13446] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1558.156961][T13446] usb 6-1: config 0 descriptor?? [ 1558.745293][T13446] wacom 0003:056A:0000.000D: unbalanced delimiter at end of report description [ 1558.766781][T13446] wacom 0003:056A:0000.000D: parse failed [ 1558.775788][T13446] wacom 0003:056A:0000.000D: probe with driver wacom failed with error -22 [ 1558.938160][T13446] usb 6-1: USB disconnect, device number 11 [ 1558.988195][T19758] loop3: detected capacity change from 0 to 256 [ 1559.556687][T19764] loop0: detected capacity change from 0 to 256 [ 1559.605869][T19764] exfat: Deprecated parameter 'namecase' [ 1559.729006][T19764] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0x36dfe6b4, utbl_chksum : 0xe619d30d) [ 1560.588996][T19770] loop1: detected capacity change from 0 to 1024 [ 1561.383638][T19779] loop3: detected capacity change from 0 to 64 [ 1562.160242][T19783] syz.0.6003 (19783): /proc/19783/oom_adj is deprecated, please use /proc/19783/oom_score_adj instead. [ 1563.098454][T19795] netlink: 8 bytes leftover after parsing attributes in process `syz.5.6008'. [ 1563.108654][T19795] netlink: 4 bytes leftover after parsing attributes in process `syz.5.6008'. [ 1563.646557][T19799] loop1: detected capacity change from 0 to 256 [ 1563.735038][T19799] exfat: Deprecated parameter 'namecase' [ 1563.907641][T19799] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x2eabf3fa, utbl_chksum : 0xe619d30d) [ 1564.266070][T19807] tipc: Started in network mode [ 1564.271659][T19807] tipc: Node identity aaaaaaaaaa41, cluster identity 4711 [ 1564.284394][T19807] tipc: Enabled bearer , priority 10 [ 1565.400920][T16006] tipc: Node number set to 15444650 [ 1565.962138][T19821] netlink: 24 bytes leftover after parsing attributes in process `syz.1.6021'. [ 1566.232737][T19823] netlink: 8 bytes leftover after parsing attributes in process `syz.6.6024'. [ 1566.245400][T19823] netlink: 4 bytes leftover after parsing attributes in process `syz.6.6024'. [ 1567.258036][T19837] loop5: detected capacity change from 0 to 64 [ 1569.404597][T19856] binder: 19855:19856 ioctl c018620b 80000240 returned -14 [ 1570.119084][T19864] loop1: detected capacity change from 0 to 256 [ 1575.316944][T19919] loop6: detected capacity change from 0 to 64 [ 1576.053335][T19923] ieee802154 phy0 wpan0: encryption failed: -22 [ 1576.765983][T19931] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(3) [ 1576.772827][T19931] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed) [ 1576.784827][T19931] vhci_hcd vhci_hcd.0: Device attached [ 1576.952938][T19936] loop1: detected capacity change from 0 to 64 [ 1577.083062][T16006] usb 33-1: new low-speed USB device number 2 using vhci_hcd [ 1577.320506][T19939] loop5: detected capacity change from 0 to 512 [ 1577.584323][T19939] Quota error (device loop5): do_check_range: Getting dqdh_prev_free 1536 out of range 0-5 [ 1577.595890][T19939] Quota error (device loop5): qtree_write_dquot: Error -117 occurred while creating quota [ 1577.609349][T19939] EXT4-fs error (device loop5): ext4_acquire_dquot:6933: comm syz.5.6072: Failed to acquire dquot type 1 [ 1577.689326][T19932] vhci_hcd: connection reset by peer [ 1577.702231][T10780] vhci_hcd: stop threads [ 1577.703152][T19939] EXT4-fs (loop5): 1 truncate cleaned up [ 1577.706744][T10780] vhci_hcd: release socket [ 1577.706894][T10780] vhci_hcd: disconnect device [ 1577.715447][T19939] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1577.740583][T19939] ext4 filesystem being mounted at /1019/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 1578.308821][ T8065] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1578.454436][T19951] batadv0: entered promiscuous mode [ 1578.466527][T19951] 8021q: adding VLAN 0 to HW filter on device macvlan2 [ 1578.487230][T19951] batadv0: left promiscuous mode [ 1579.300892][T13446] usb 2-1: new high-speed USB device number 25 using dummy_hcd [ 1579.530385][T13446] usb 2-1: Using ep0 maxpacket: 8 [ 1579.589992][T13446] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 1579.604535][T13446] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 1579.615747][T13446] usb 2-1: New USB device found, idVendor=056a, idProduct=0000, bcdDevice= 0.00 [ 1579.625443][T13446] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1579.852281][T13446] usb 2-1: config 0 descriptor?? [ 1580.366198][T19967] loop5: detected capacity change from 0 to 2048 [ 1580.477045][T19967] NILFS (loop5): broken superblock, retrying with spare superblock (blocksize = 1024) [ 1580.606702][T13446] wacom 0003:056A:0000.000E: unbalanced delimiter at end of report description [ 1580.684888][T13446] wacom 0003:056A:0000.000E: parse failed [ 1580.691520][T13446] wacom 0003:056A:0000.000E: probe with driver wacom failed with error -22 [ 1580.720589][T19973] NILFS (loop5): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 1580.815626][T13446] usb 2-1: USB disconnect, device number 25 [ 1581.152131][T19980] sch_tbf: burst 1 is lower than device ip6tnl0 mtu (1452) ! [ 1581.426048][ T1286] ieee802154 phy0 wpan0: encryption failed: -22 [ 1581.433248][ T1286] ieee802154 phy1 wpan1: encryption failed: -22 [ 1582.232887][T16006] vhci_hcd: vhci_device speed not set [ 1584.669977][T20013] loop0: detected capacity change from 0 to 1024 [ 1584.743617][T20013] hfsplus: Unknown parameter 'creatŒÓ¨˜ãSºÜ' [ 1584.908914][T20013] CIFS mount error: No usable UNC path provided in device string! [ 1584.908914][T20013] [ 1584.919874][T20013] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string! [ 1586.212037][T20030] loop6: detected capacity change from 0 to 128 [ 1586.338064][T20030] EXT4-fs (loop6): invalid first ino: 9 [ 1587.211381][T20038] netlink: 8 bytes leftover after parsing attributes in process `syz.1.6117'. [ 1587.711042][T20043] sock: sock_set_timeout: `syz.5.6120' (pid 20043) tries to set negative timeout [ 1588.106750][T20048] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore [ 1588.116196][T20048] overlayfs: conflicting options: userxattr,metacopy=on [ 1588.524244][T20052] gretap0: entered promiscuous mode [ 1588.530036][T20052] vlan2: entered promiscuous mode [ 1588.565488][T20054] loop5: detected capacity change from 0 to 256 [ 1589.860289][T13446] usb 6-1: new high-speed USB device number 12 using dummy_hcd [ 1590.052323][T13446] usb 6-1: Using ep0 maxpacket: 16 [ 1590.117518][T13446] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 1590.130531][T13446] usb 6-1: New USB device found, idVendor=04fc, idProduct=05d8, bcdDevice= 0.00 [ 1590.140610][T13446] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1590.223510][T13446] usb 6-1: config 0 descriptor?? [ 1590.801896][T13446] sunplus 0003:04FC:05D8.000F: reserved main item tag 0xd [ 1590.809669][T13446] sunplus 0003:04FC:05D8.000F: unexpected long global item [ 1590.901747][T13446] sunplus 0003:04FC:05D8.000F: probe with driver sunplus failed with error -22 [ 1590.961129][T20073] netlink: 8 bytes leftover after parsing attributes in process `syz.0.6132'. [ 1591.054136][T13446] usb 6-1: USB disconnect, device number 12 [ 1591.813224][T20079] loop6: detected capacity change from 0 to 1024 [ 1592.239907][T20084] loop3: detected capacity change from 0 to 512 [ 1592.370973][T20084] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 1592.539184][T20086] loop1: detected capacity change from 0 to 1024 [ 1592.549028][T20088] netlink: 16 bytes leftover after parsing attributes in process `syz.5.6141'. [ 1592.551255][T20086] EXT4-fs: Ignoring removed bh option [ 1592.558770][T20088] netlink: 16 bytes leftover after parsing attributes in process `syz.5.6141'. [ 1592.632946][T20084] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1592.646408][T20084] ext4 filesystem being mounted at /1220/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 1592.700449][ T6823] hfsplus: b-tree write err: -5, ino 4 [ 1592.784143][T20091] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 41 vs 39667 free clusters [ 1592.837169][T20086] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-001000000000 r/w without journal. Quota mode: writeback. [ 1593.333611][ T5811] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1593.511333][ T5810] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-001000000000. [ 1594.519055][T20107] loop1: detected capacity change from 0 to 1024 [ 1594.763207][T20112] syz.1.6146: attempt to access beyond end of device [ 1594.763207][T20112] loop1: rw=0, sector=201326592, nr_sectors = 2 limit=1024 [ 1594.777736][T20112] Buffer I/O error on dev loop1, logical block 100663296, async page read [ 1594.786942][T20112] syz.1.6146: attempt to access beyond end of device [ 1594.786942][T20112] loop1: rw=0, sector=201326592, nr_sectors = 2 limit=1024 [ 1594.804138][T20112] Buffer I/O error on dev loop1, logical block 100663296, async page read [ 1594.867899][T20111] loop5: detected capacity change from 0 to 1024 [ 1594.990394][T20111] EXT4-fs: Ignoring removed bh option [ 1595.188085][T20111] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-001000000000 r/w without journal. Quota mode: writeback. [ 1595.539958][T13446] usb 7-1: new high-speed USB device number 3 using dummy_hcd [ 1595.761082][T13446] usb 7-1: Using ep0 maxpacket: 16 [ 1595.770973][ T8065] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-001000000000. [ 1595.828544][T13446] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 1595.840643][T13446] usb 7-1: New USB device found, idVendor=04fc, idProduct=05d8, bcdDevice= 0.00 [ 1595.850196][T13446] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1596.008120][T13446] usb 7-1: config 0 descriptor?? [ 1596.546630][T13446] sunplus 0003:04FC:05D8.0010: reserved main item tag 0xd [ 1596.555620][T13446] sunplus 0003:04FC:05D8.0010: unexpected long global item [ 1596.573688][T20127] loop0: detected capacity change from 0 to 512 [ 1596.625659][T13446] sunplus 0003:04FC:05D8.0010: probe with driver sunplus failed with error -22 [ 1596.685040][T20127] EXT4-fs (loop0): mounting ext2 file system using the ext4 subsystem [ 1596.811244][T13446] usb 7-1: USB disconnect, device number 3 [ 1596.970208][T20127] EXT4-fs error (device loop0): ext4_orphan_get:1393: inode #15: comm syz.0.6154: iget: bad i_size value: 360287970189639680 [ 1597.039115][T20127] EXT4-fs error (device loop0): ext4_orphan_get:1398: comm syz.0.6154: couldn't read orphan inode 15 (err -117) [ 1597.076632][T20127] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1597.655129][ T5812] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1600.215821][T20166] loop5: detected capacity change from 0 to 512 [ 1600.443567][T20166] EXT4-fs (loop5): mounting ext2 file system using the ext4 subsystem [ 1600.448420][T20171] loop1: detected capacity change from 0 to 256 [ 1600.494082][T20171] exfat: Deprecated parameter 'namecase' [ 1600.664685][T20166] EXT4-fs error (device loop5): ext4_orphan_get:1393: inode #15: comm syz.5.6169: iget: bad i_size value: 360287970189639680 [ 1600.776667][T20171] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x5441951d, utbl_chksum : 0xe619d30d) [ 1600.802716][T20166] EXT4-fs error (device loop5): ext4_orphan_get:1398: comm syz.5.6169: couldn't read orphan inode 15 (err -117) [ 1600.862061][T20166] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1601.312913][ T8065] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1601.481261][T20179] loop3: detected capacity change from 0 to 256 [ 1601.710512][T20179] exFAT-fs (loop3): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x3963664b, utbl_chksum : 0xe619d30d) [ 1604.007701][T20198] loop0: detected capacity change from 0 to 256 [ 1604.136698][T20200] [U] vÔ3¸Âfù¾"SçÁ/Éê4:ÃXTz“W¡t‘’lWµ«= [ 1604.212398][T20199] [U] J"—e:ÀÆ" [ 1604.733554][T20206] loop1: detected capacity change from 0 to 24 [ 1605.486083][T20214] loop6: detected capacity change from 0 to 512 [ 1605.646573][T20214] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1606.131272][T16519] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1607.313549][T20233] ip6t_rpfilter: only valid in 'raw' or 'mangle' table, not '' [ 1607.900309][T20236] [U] vÔ3¸Âfù¾"SçÁ/Éê4:ÃXTz“W¡t‘’lWµ«= [ 1607.921171][T20235] [U] J"—e:ÀÆ" [ 1608.011192][T20238] sp0: Synchronizing with TNC [ 1608.078882][T20241] loop3: detected capacity change from 0 to 24 [ 1608.108299][T20237] [U] è` [ 1609.251684][T20252] loop5: detected capacity change from 0 to 512 [ 1609.316960][T20254] loop0: detected capacity change from 0 to 256 [ 1609.370561][T20256] program syz.3.6211 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 1609.430117][T20252] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1610.041248][T20254] FAT-fs (loop0): Directory bread(block 64) failed [ 1610.048117][T20254] FAT-fs (loop0): Directory bread(block 65) failed [ 1610.058497][T20254] FAT-fs (loop0): Directory bread(block 66) failed [ 1610.065714][T20254] FAT-fs (loop0): Directory bread(block 67) failed [ 1610.073004][T20254] FAT-fs (loop0): Directory bread(block 68) failed [ 1610.083120][T20254] FAT-fs (loop0): Directory bread(block 69) failed [ 1610.090351][T20254] FAT-fs (loop0): Directory bread(block 70) failed [ 1610.098336][T20254] FAT-fs (loop0): Directory bread(block 71) failed [ 1610.105999][T20254] FAT-fs (loop0): Directory bread(block 72) failed [ 1610.118902][T20254] FAT-fs (loop0): Directory bread(block 73) failed [ 1610.234357][T20262] loop1: detected capacity change from 0 to 256 [ 1610.478338][ T8065] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1610.556402][T20262] exFAT-fs (loop1): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x3963664b, utbl_chksum : 0xe619d30d) [ 1612.066802][T20278] loop1: detected capacity change from 0 to 128 [ 1612.203549][T20278] UDF-fs: error (device loop1): udf_read_tagged: read failed, block=256, location=256 [ 1612.312486][T20278] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 1612.997902][T20284] loop6: detected capacity change from 0 to 1024 [ 1613.649180][T20288] loop3: detected capacity change from 0 to 1024 [ 1613.956039][T20290] loop1: detected capacity change from 0 to 1024 [ 1614.033182][T20288] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1614.046699][T20288] ext4 filesystem being mounted at /1238/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 1614.275175][T20290] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1614.291990][T20290] ext4 filesystem being mounted at /1249/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 1614.561298][T20290] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 21 vs 268369941 free clusters [ 1614.613842][T20290] EXT4-fs (loop1): Remounting filesystem read-only [ 1614.697264][ T5811] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1615.115345][ T5810] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1615.219969][T20306] loop5: detected capacity change from 0 to 64 [ 1615.569686][ T30] audit: type=1800 audit(1752506540.565:191): pid=20306 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.6232" name="file1" dev="loop5" ino=21 res=0 errno=0 [ 1615.609205][T20306] syz.5.6232: attempt to access beyond end of device [ 1615.609205][T20306] loop5: rw=34817, sector=39, nr_sectors = 125 limit=64 [ 1615.626214][T20306] syz.5.6232: attempt to access beyond end of device [ 1615.626214][T20306] loop5: rw=34817, sector=167, nr_sectors = 1 limit=64 [ 1615.640849][T20306] syz.5.6232: attempt to access beyond end of device [ 1615.640849][T20306] loop5: rw=34817, sector=169, nr_sectors = 1 limit=64 [ 1615.660500][T20306] syz.5.6232: attempt to access beyond end of device [ 1615.660500][T20306] loop5: rw=34817, sector=171, nr_sectors = 7 limit=64 [ 1615.700839][T20306] syz.5.6232: attempt to access beyond end of device [ 1615.700839][T20306] loop5: rw=34817, sector=179, nr_sectors = 371 limit=64 [ 1615.977059][T20309] loop3: detected capacity change from 0 to 2048 [ 1616.004343][T20309] ext2: Unknown parameter 'smackfsroot' [ 1618.224896][T20334] netlink: 36 bytes leftover after parsing attributes in process `syz.1.6244'. [ 1618.771818][T20340] loop5: detected capacity change from 0 to 512 [ 1618.952336][T20340] EXT4-fs (loop5): Cannot turn on journaled quota: type 1: error -13 [ 1619.006992][T20340] EXT4-fs error (device loop5): ext4_orphan_get:1393: inode #13: comm syz.5.6246: iget: bad i_size value: 12154757448730 [ 1619.087351][T20340] EXT4-fs error (device loop5): ext4_orphan_get:1398: comm syz.5.6246: couldn't read orphan inode 13 (err -117) [ 1619.186480][T20340] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1619.263020][T20349] loop1: detected capacity change from 0 to 1024 [ 1619.460509][T20349] hfsplus: inconsistency in B*Tree (-1,0,1,1,0) [ 1619.467312][T20349] hfsplus: failed to load root directory [ 1619.868551][ T8065] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1619.902612][T20353] netlink: 8 bytes leftover after parsing attributes in process `syz.6.6252'. [ 1620.590589][T20357] loop3: detected capacity change from 0 to 1024 [ 1622.011246][T20371] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE [ 1622.018887][T20371] IPv6: NLM_F_CREATE should be set when creating new route [ 1623.179738][T20383] loop6: detected capacity change from 0 to 512 [ 1623.340906][T20383] EXT4-fs (loop6): Cannot turn on journaled quota: type 1: error -13 [ 1623.368499][T20382] loop3: detected capacity change from 0 to 1024 [ 1623.461036][T20383] EXT4-fs error (device loop6): ext4_orphan_get:1393: inode #13: comm syz.6.6265: iget: bad i_size value: 12154757448730 [ 1623.563050][T20382] hfsplus: inconsistency in B*Tree (-1,0,1,1,0) [ 1623.570085][T20382] hfsplus: failed to load root directory [ 1623.587427][T20383] EXT4-fs error (device loop6): ext4_orphan_get:1398: comm syz.6.6265: couldn't read orphan inode 13 (err -117) [ 1623.672174][T20383] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1624.420457][T16519] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1625.602352][T20409] netlink: 36 bytes leftover after parsing attributes in process `syz.5.6276'. [ 1626.123808][T20411] loop6: detected capacity change from 0 to 64 [ 1626.364911][T17658] IPVS: starting estimator thread 0... [ 1626.478289][T20418] IPVS: using max 192 ests per chain, 9600 per kthread [ 1626.522525][T20420] loop5: detected capacity change from 0 to 512 [ 1626.581576][T20420] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 1626.791740][T20420] EXT4-fs error (device loop5): ext4_get_branch:178: inode #11: block 4294967295: comm syz.5.6281: invalid block [ 1626.870395][T20420] EXT4-fs error (device loop5): ext4_free_branches:1023: inode #11: comm syz.5.6281: invalid indirect mapped block 4294967295 (level 1) [ 1626.903080][T20420] EXT4-fs error (device loop5): ext4_free_branches:1023: inode #11: comm syz.5.6281: invalid indirect mapped block 4294967295 (level 1) [ 1626.980641][T20420] EXT4-fs (loop5): 2 truncates cleaned up [ 1626.990584][T20420] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1627.720599][ T8065] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1630.659140][T20461] loop3: detected capacity change from 0 to 512 [ 1630.774058][T20461] EXT4-fs (loop3): Test dummy encryption mode enabled [ 1630.782714][T20461] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 1630.924132][T20461] EXT4-fs error (device loop3): ext4_orphan_get:1419: comm syz.3.6301: bad orphan inode 131083 [ 1631.016930][T20466] ===================================================== [ 1631.024739][T20466] BUG: KMSAN: uninit-value in ieee802154_max_payload+0x399/0x3c0 [ 1631.033266][T20466] ieee802154_max_payload+0x399/0x3c0 [ 1631.038928][T20466] ieee802154_header_create+0x99b/0xb90 [ 1631.045004][T20466] dgram_sendmsg+0xb40/0x16d0 [ 1631.050064][T20466] ieee802154_sock_sendmsg+0x8f/0xd0 [ 1631.055603][T20466] __sock_sendmsg+0x333/0x3d0 [ 1631.060674][T20466] ____sys_sendmsg+0x7e0/0xd80 [ 1631.065732][T20466] ___sys_sendmsg+0x271/0x3b0 [ 1631.071424][T20466] __sys_sendmsg+0x1aa/0x300 [ 1631.076290][T20466] __ia32_compat_sys_sendmsg+0xa4/0x100 [ 1631.082377][T20466] ia32_sys_call+0x3692/0x42c0 [ 1631.088472][T20466] __do_fast_syscall_32+0xb0/0x150 [ 1631.094356][T20466] do_fast_syscall_32+0x38/0x80 [ 1631.100563][T20466] do_SYSENTER_32+0x1f/0x30 [ 1631.108878][T20466] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 1631.116576][T20466] [ 1631.119091][T20466] Local variable hdr created at: [ 1631.125839][T20466] ieee802154_header_create+0x4e/0xb90 [ 1631.132058][T20466] dgram_sendmsg+0xb40/0x16d0 [ 1631.136969][T20466] [ 1631.139751][T20466] CPU: 1 UID: 0 PID: 20466 Comm: syz.1.6303 Tainted: G W 6.16.0-rc6-syzkaller #0 PREEMPT(none) [ 1631.152119][T20466] Tainted: [W]=WARN [ 1631.156101][T20466] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 1631.167304][T20466] ===================================================== [ 1631.174526][T20466] Disabling lock debugging due to kernel taint [ 1631.181020][T20466] Kernel panic - not syncing: kmsan.panic set ... [ 1631.187650][T20466] CPU: 1 UID: 0 PID: 20466 Comm: syz.1.6303 Tainted: G B W 6.16.0-rc6-syzkaller #0 PREEMPT(none) [ 1631.199845][T20466] Tainted: [B]=BAD_PAGE, [W]=WARN [ 1631.205021][T20466] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 1631.215259][T20466] Call Trace: [ 1631.218682][T20466] [ 1631.221746][T20466] __dump_stack+0x26/0x30 [ 1631.226313][T20466] dump_stack_lvl+0x53/0x270 [ 1631.231136][T20466] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 1631.237227][T20466] dump_stack+0x1e/0x25 [ 1631.241606][T20466] panic+0x4bd/0xd50 [ 1631.245796][T20466] kmsan_report+0x31c/0x320 [ 1631.250557][T20466] ? do_fast_syscall_32+0x38/0x80 [ 1631.255885][T20466] ? __msan_warning+0x1b/0x30 [ 1631.260811][T20466] ? ieee802154_max_payload+0x399/0x3c0 [ 1631.266632][T20466] ? ieee802154_header_create+0x99b/0xb90 [ 1631.272578][T20466] ? dgram_sendmsg+0xb40/0x16d0 [ 1631.277631][T20466] ? ieee802154_sock_sendmsg+0x8f/0xd0 [ 1631.283355][T20466] ? __sock_sendmsg+0x333/0x3d0 [ 1631.288417][T20466] ? ____sys_sendmsg+0x7e0/0xd80 [ 1631.293606][T20466] ? ___sys_sendmsg+0x271/0x3b0 [ 1631.298709][T20466] ? __sys_sendmsg+0x1aa/0x300 [ 1631.303725][T20466] ? __ia32_compat_sys_sendmsg+0xa4/0x100 [ 1631.309737][T20466] ? ia32_sys_call+0x3692/0x42c0 [ 1631.314894][T20466] ? __do_fast_syscall_32+0xb0/0x150 [ 1631.320446][T20466] ? do_fast_syscall_32+0x38/0x80 [ 1631.325746][T20466] ? do_SYSENTER_32+0x1f/0x30 [ 1631.330685][T20466] ? entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 1631.337501][T20466] ? cfg802154_pernet_exit+0x191/0x230 [ 1631.343236][T20466] ? filter_irq_stacks+0x49/0x190 [ 1631.348471][T20466] ? kmsan_get_metadata+0xfb/0x160 [ 1631.353843][T20466] ? kmsan_internal_memmove_metadata+0x91/0x230 [ 1631.360333][T20466] ? kmsan_get_metadata+0xfb/0x160 [ 1631.365721][T20466] ? kmsan_internal_memmove_metadata+0x181/0x230 [ 1631.372319][T20466] ? __msan_memcpy+0x108/0x1c0 [ 1631.377318][T20466] ? kmsan_get_metadata+0xfb/0x160 [ 1631.382734][T20466] __msan_warning+0x1b/0x30 [ 1631.387470][T20466] ieee802154_max_payload+0x399/0x3c0 [ 1631.393114][T20466] ieee802154_header_create+0x99b/0xb90 [ 1631.398901][T20466] ? kmsan_get_metadata+0xfb/0x160 [ 1631.404282][T20466] ? __pfx_ieee802154_header_create+0x10/0x10 [ 1631.410578][T20466] dgram_sendmsg+0xb40/0x16d0 [ 1631.415505][T20466] ? __pfx_dgram_sendmsg+0x10/0x10 [ 1631.420830][T20466] ieee802154_sock_sendmsg+0x8f/0xd0 [ 1631.426380][T20466] ? __pfx_ieee802154_sock_sendmsg+0x10/0x10 [ 1631.432689][T20466] ? __pfx_ieee802154_sock_sendmsg+0x10/0x10 [ 1631.438901][T20466] __sock_sendmsg+0x333/0x3d0 [ 1631.443811][T20466] ____sys_sendmsg+0x7e0/0xd80 [ 1631.448860][T20466] ___sys_sendmsg+0x271/0x3b0 [ 1631.453811][T20466] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 1631.459893][T20466] ? __rcu_read_unlock+0x6d/0xd0 [ 1631.465047][T20466] ? __fget_files+0x3b4/0x4a0 [ 1631.469975][T20466] ? __fget_files+0x3b9/0x4a0 [ 1631.474906][T20466] ? kmsan_get_metadata+0xfb/0x160 [ 1631.480271][T20466] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 1631.486364][T20466] __sys_sendmsg+0x1aa/0x300 [ 1631.491297][T20466] __ia32_compat_sys_sendmsg+0xa4/0x100 [ 1631.497124][T20466] ia32_sys_call+0x3692/0x42c0 [ 1631.502094][T20466] __do_fast_syscall_32+0xb0/0x150 [ 1631.507466][T20466] ? irqentry_exit_to_user_mode+0x82/0xa0 [ 1631.513468][T20466] do_fast_syscall_32+0x38/0x80 [ 1631.518628][T20466] do_SYSENTER_32+0x1f/0x30 [ 1631.523386][T20466] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 1631.529966][T20466] RIP: 0023:0xf7fa7539 [ 1631.534205][T20466] Code: 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 [ 1631.554060][T20466] RSP: 002b:00000000f50c655c EFLAGS: 00000206 ORIG_RAX: 0000000000000172 [ 1631.562703][T20466] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000800000c0 [ 1631.570866][T20466] RDX: 0000000004000010 RSI: 0000000000000000 RDI: 0000000000000000 [ 1631.579034][T20466] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 1631.587174][T20466] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000 [ 1631.595319][T20466] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 1631.603504][T20466] [ 1631.607047][T20466] Kernel Offset: disabled [ 1631.611497][T20466] Rebooting in 86400 seconds..