last executing test programs: 6m42.097440234s ago: executing program 1 (id=3268): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000000c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0) sendmsg$NFT_BATCH(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000006c0)={{0x14}, [@NFT_MSG_NEWSET={0x3c, 0x12, 0xa, 0x9, 0x0, 0x0, {0x2}, [@NFTA_SET_NAME={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_KEY_TYPE={0x8}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_FLAGS={0x8, 0x3, 0x1, 0x0, 0x1}]}, @NFT_MSG_DELOBJ={0x34, 0x14, 0xa, 0x3, 0x0, 0x0, {0x2}, [@NFTA_OBJ_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_OBJ_TYPE={0x8, 0x3, 0x1, 0x0, 0xa}, @NFTA_OBJ_HANDLE={0xc, 0x6, 0x1, 0x0, 0x2}]}], {0x14}}, 0x98}}, 0x0) 6m41.283188878s ago: executing program 1 (id=3272): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0) sendmsg$NFT_BATCH(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000001600)=ANY=[@ANYBLOB="1400000010000100fb000000000000000000000a50000000060a0b0400000000000000000200000024000480200001800d00010073796e70726f7879000000000c00028008000340000000330900010073797a30000000000900020073797a32"], 0x78}}, 0x0) 6m40.270672381s ago: executing program 1 (id=3277): capset(&(0x7f0000000000)={0x20080522}, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x81, 0xffffffff}) r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) ioctl$SG_IO(r0, 0x2285, &(0x7f00000005c0)={0x53, 0xfffffffffffffffc, 0x6, 0x0, @buffer={0x0, 0x0, 0x0}, &(0x7f0000000040)="0800bcb20000", 0x0, 0x7, 0x0, 0x10004, 0x0}) 6m39.55834547s ago: executing program 1 (id=3282): syz_mount_image$hfs(&(0x7f0000000240), &(0x7f0000000280)='./file0\x00', 0x0, &(0x7f0000000600)=ANY=[@ANYRES16=0x0], 0xff, 0x27f, &(0x7f00000002c0)="$eJzs3c9q1FwYx/HfyUzfpm9rTf+I4LJa0I20uhE3lTIX4UrUzhSKoYJWUFfiWrwA996ACy/ClXgDuhIEL2B2kXNyatNMJplWO6djvx+YEJPzJM+Zk5jzTGlHAM6szU5bUuaopZak21IkKZbsrgu6GD/b3dvZS3vdugO1XIR9GeWRZqDN1m6vKtTGuQgvsf9qa664DSfDjvu30EkgOOPu4EGRNO3vTrc/HntmJ+NV6AQCM3319VzzofMAAITln/+Rf87P+fl7FEmr/rE/qc//yiqiP/48TpXC89+9P5mx43ve7Tqo91wJZ/dHX9/f/G5fzUc+N7DlP+VX1qEJpmmqKl0usbZ30g8tKe1Geq0Nr9Bs2S27+aW7ryHblYratMbofS+btYtoansn7d0YyH/KLZf+7hkPm6rYZj6Zz+aeSfRO3d/zv3Zm7DC5kUpKI5Xnvzb8LK6XSd5qyCgtuJNc8mfwGnoZV1ck2r+iFkq3dtKUp4taLEVdc1HrDVFLpSg/pg1Ry+WoGRt1fetxWvtRyskyb81ds6Kf+qhOYf4f2Xd7VaPcmbaNa+mvjNr+tF3LZITEijewZkbpCo7vjR7qluafvnj56EGa9p4cceXOsaKCrsSnIw1W/Epmils2gufzZyvz6bSk4GkMXfmRHTEq9H9QGIeDQQ+dCQKx8y6T13+FemXNlUh2kdTM07OmgxeOuD6kNlh0y/+PVMHNDq/gamuunKu5Ll+VrlScsZ/5n4Yelvg8/xGmoy+6z+f/AAAAAAAAAAAAAAAAAAAAk2Ycv3sQuo8AAAAAAAAAAAAAAAAAAAAAAEy6zc7+37123wDG9/8CZ8ivAAAA//8034io") mount(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000780)='mqueue\x00', 0x10001, 0x0) mount$binder(0x0, &(0x7f0000000000)='./file0\x00', 0x0, 0x28, 0x0) 6m38.543064s ago: executing program 1 (id=3288): syz_mount_image$hfsplus(&(0x7f0000007340), &(0x7f0000000000)='./file0\x00', 0x1600008, &(0x7f0000000100)=ANY=[@ANYBLOB='nodecompose,gid=', @ANYRESHEX=0x0, @ANYBLOB="2c626172726965722c6e6f626172726965722c6e6c733d6d6163726f6d616e2c747970653d05f2875e2c747970653deaab9aa02c00000000"], 0x3, 0x632, &(0x7f0000000800)="$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") setxattr(&(0x7f0000000040)='./file0\x00', &(0x7f0000000340)=ANY=[@ANYBLOB='osx.:'], 0x0, 0x0, 0x0) unlinkat(0xffffffffffffff9c, &(0x7f0000000380)='./file1\x00', 0x0) 6m37.922319159s ago: executing program 1 (id=3291): r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000100), r0) sendmsg$IEEE802154_LLSEC_DEL_DEVKEY(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)={0x34, r1, 0x821, 0x70bd2c, 0x2ddfdbff, {}, [@IEEE802154_ATTR_HW_ADDR={0xc, 0x5, {0xaaaaaaaaaaaa0202}}, @IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan0\x00'}, @IEEE802154_ATTR_LLSEC_KEY_MODE={0x5, 0x2b, 0x1}]}, 0x34}, 0x1, 0x0, 0x0, 0x41}, 0x40480c4) 6m35.576291918s ago: executing program 32 (id=3291): r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000100), r0) sendmsg$IEEE802154_LLSEC_DEL_DEVKEY(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)={0x34, r1, 0x821, 0x70bd2c, 0x2ddfdbff, {}, [@IEEE802154_ATTR_HW_ADDR={0xc, 0x5, {0xaaaaaaaaaaaa0202}}, @IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan0\x00'}, @IEEE802154_ATTR_LLSEC_KEY_MODE={0x5, 0x2b, 0x1}]}, 0x34}, 0x1, 0x0, 0x0, 0x41}, 0x40480c4) 6.572626457s ago: executing program 5 (id=4826): r0 = openat$ttyprintk(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0x7) ioctl$TIOCSTI(r0, 0x5412, &(0x7f00000000c0)=0xc0) 6.452977692s ago: executing program 3 (id=4827): syz_mount_image$hfs(&(0x7f0000000180), &(0x7f0000000000)='./file2\x00', 0x3000812, &(0x7f0000000500)=ANY=[@ANYBLOB="71756965742c636f6465706167653d63703836302c696f636861727365743d63703836312c00808fead042bd35dc78f7f06333a5e7165b8271e41aee85e59cbb6c2df3d4e5c16b06c73f2e3b348a7fba46e286378a15ee516bac8d4813c9c3d9cee1ddb95d1bbcf504e065b3749a1cbd841e685a558598cf0db10b55885946e678d0a71877037a090000000700848879ef1604cadc1faca3aa22a576750d559c4e124d4cb7293e7393b77286fa8c6dc449eda0a03d342382e84d6d3c29ab95cc923fbe25e134d1c421320a3bffaa17fcd6b5178e322cc47133b3811e3d3bc34998dc7ed029834ad591d9d56c41063d8de2d50a2398e73ff2913a9fe8e954a4e4ca99ceb5737e57193c5f47fd63b16c8b34f256dbac0e5ebd009078df2cb1ca1051ad091adbfee5126d8a59fa5438734bc3e8cc7b7edc10716a0a9b711952cdf96586e06fbace21dc04bdb4a1a2072ce5f72cf0", @ANYRESOCT, @ANYRESDEC, @ANYRES8, @ANYRESOCT, @ANYRESOCT=0x0], 0x11, 0x2f0, &(0x7f00000019c0)="$eJzs3c1qE18Yx/HfmaRN+m/+NX0RwWW1oBvRuhE3EcktCOJCtG2EYqioFdSNqbgS0b17b8GLcKN4A7pyIV5Auxo5Z16SSSYzaWkyDX4/oE5m5pnznMzbcwJyBOCfdbP549PVX/aPkUoqSW+vS56kqlSWdFpnqs92drd3262trAOVXIQOfBkFkWZgn82dlvt3L7naxrmIUN1+KqvWuw7j4fv+jZ996357BSWDwri7P4UnVcK7022vTjyzbHtHjOsccx7TxuxrX8+1UHQeAIBi2ff/XlD42/d8LazfPU9aC1/7J/L9f1T7RScwdn7m1p73vxtl+cae31NuU3e854ZwdrsXjRJHaXmm7/OsgkIyUWCavFGly8Wbe7Ddbl3afNTe8vRajVDPbitxCyF7heZku5oyNs0wQt9NakUZpOXN2D6sD8l/+YgtZhgYviVOiPlivpm7pq6P2orrv7JvbLYu4XrfmQryvzy8vXkXZfdS+NhoNBqeO1Bk0TVyNnmmcnpZTR+RKPpiF5X8gaCel6eLWuqLCnp3JTWgEkctp0atR5+GtLWSiLK9ia/m4VmOm3lvbptV/dFnNXvqf8/mt6bMO7N715i14EZz33jQn9n05srumPWBN0dHd2rJNfG3WBmW+kH2Mw0jiM7hO23omhaevnj5sNRut57YhfspC49r8ZqZN1LqPgUvqNNdU5HvDOwcPQMnmdjFYz2gfX7k7mzvsol0cKxXgrwTcmkNWWh+HdeF5FdOQgf/L/ABhUnqnvSiM0FBbN1lgvGfq+TDet8VCvavW5XhdXpUkKWVbK56D4/o2xo7HgFVE/FLbum/ZBmdMzaYD+uYlHFcR6ONuc5dkM6P3mI9zHM6+K9ydjBNfdc9fv8HAAAAAAAAAAAAAAAAAACYNof/HwJzh44quo8AAAAAAAAAAAAAAAAAAAAAAEy7eP5fRfP/arT5f/unYgnn/60qZ/7fjcEcBub//bAj05GY/xcYr78BAAD//xzCgK4=") r0 = openat(0xffffffffffffff9c, &(0x7f0000000240)='./file1\x00', 0x105042, 0x1db) writev(r0, &(0x7f0000000140)=[{&(0x7f0000001200)="10", 0x3fe00}], 0x1) 6.078824782s ago: executing program 4 (id=4828): r0 = syz_open_dev$usbfs(&(0x7f00000000c0), 0x201, 0x2) mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0, 0x11012, r0, 0x10115000) syz_clone(0x1000, 0x0, 0x0, 0x0, 0x0, 0x0) 5.820812331s ago: executing program 5 (id=4831): capset(&(0x7f0000000040)={0x20080522}, &(0x7f0000000080)={0x0, 0x1}) r0 = syz_open_dev$sg(&(0x7f0000007700), 0x0, 0x0) ioctl$SG_IO(r0, 0x2285, &(0x7f0000000040)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0xf5ff, 0x0}, &(0x7f0000000000)="a2b2536b0513", 0x0, 0x0, 0x0, 0x0, 0x0}) 5.65411051s ago: executing program 0 (id=4832): open(0x0, 0x0, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x4) ioctl$FS_IOC_FSGETXATTR(r0, 0x801c581f, &(0x7f0000000080)={0x0, 0x80000000, 0x3, 0x5, 0x8}) 5.030830224s ago: executing program 3 (id=4833): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_IRQCHIP(r1, 0xc008aeba, 0x0) 5.024967667s ago: executing program 5 (id=4834): r0 = socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000300)={'bridge0\x00', 0x0}) sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000440)=ANY=[@ANYBLOB="24000000700039022abd7000fbdbdf2507000000", @ANYRES32=r1, @ANYBLOB="0c000180"], 0x24}, 0x1, 0x0, 0x0, 0x800}, 0x0) 4.818585401s ago: executing program 2 (id=4835): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0) sendmsg$NFT_BATCH(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000003c0)={{0x14}, [@NFT_MSG_NEWRULE={0x48, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x1c, 0x4, 0x0, 0x1, [{0x18, 0x1, 0x0, 0x1, @dup_ipv4={{0x8}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_DUP_SREG_ADDR={0x8, 0x1, 0x1, 0x0, 0x9}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x7}}}, 0x70}}, 0x4) 4.440460333s ago: executing program 4 (id=4836): seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000001740)={0x1, &(0x7f0000000380)=[{0x6, 0x0, 0x84, 0x7fffffff}]}) r0 = signalfd4(0xffffffffffffffff, &(0x7f0000000180)={[0x4000000000]}, 0x8, 0x0) faccessat2(r0, &(0x7f0000000040)='\x00', 0x2, 0x1200) 4.398902474s ago: executing program 0 (id=4837): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000990000000d"], 0x50) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000900)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x6, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_LINK_CREATE(0x1c, &(0x7f0000000380)={r1, 0xffffffffffffffff, 0x0, 0x0, @void}, 0x10) 4.037721889s ago: executing program 5 (id=4838): r0 = socket(0x10, 0x3, 0x0) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=ANY=[@ANYBLOB="5000000020000103feffffff0000000002000000000000000400010008000a000008000005001e"], 0x50}}, 0x4000850) sendmmsg$alg(r0, &(0x7f0000000140), 0x4924b68, 0x0) 4.037519232s ago: executing program 2 (id=4839): socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f00000001c0)={0x3, &(0x7f0000000040)=[{0x20, 0x0, 0x0, 0xab49}, {0x20, 0x0, 0x3, 0xffeff010}, {0x6}]}, 0x8) write$binfmt_aout(r0, &(0x7f0000000000)=ANY=[], 0xfdef) 3.773888325s ago: executing program 3 (id=4840): r0 = syz_init_net_socket$nfc_llcp(0x27, 0x3, 0x1) r1 = epoll_create(0x8) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000340)={0xb0000000}) 3.552920455s ago: executing program 4 (id=4841): r0 = openat$ttyprintk(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0x7) ioctl$TIOCSTI(r0, 0x5412, &(0x7f00000000c0)=0xc0) 3.478257975s ago: executing program 0 (id=4842): r0 = io_uring_setup(0xaff, &(0x7f0000000380)={0x0, 0xeb9e, 0x400, 0x0, 0x10000003}) r1 = io_uring_setup(0x5625, &(0x7f0000000600)={0x0, 0x7aef, 0x0, 0xfffffffd, 0x2cb}) io_uring_register$IORING_REGISTER_FILES(r1, 0x1e, &(0x7f0000000000)=[r0], 0x1) 3.295794628s ago: executing program 2 (id=4843): r0 = syz_open_dev$sg(&(0x7f00000000c0), 0x0, 0x0) capset(&(0x7f0000000080)={0x20071026}, &(0x7f0000000040)={0x200000, 0x200000, 0x0, 0x0, 0x8}) ioctl$SG_IO(r0, 0x2285, &(0x7f0000000140)={0x53, 0xfffffffffffffffe, 0x6, 0x8, @buffer={0x0, 0x0, 0x0}, &(0x7f0000000440)="45d3fb080000", 0x0, 0xfffffffb, 0x1c4ba80ff697ec1, 0x3, 0x0}) 3.055490367s ago: executing program 5 (id=4844): syz_mount_image$hfsplus(&(0x7f00000002c0), &(0x7f0000000640)='./file0\x00', 0x200014, &(0x7f0000000700)={[{@type={'type', 0x3d, "07b40dd6"}}, {@nodecompose}]}, 0x1, 0x607, &(0x7f0000000dc0)="$eJzs3U9vHGcdB/DvbOKNbaRkkyZtg5CwilShRiT+k4KRkIBSwEIVqsQlUtWDRezGyjqtbBc5OSAX8Qp4BUXIHCoOHDghkHLgzJmbUY9InHLxzWhmZ70bx1mcP/Wu089Hmn2eZ5+ZZ37zy8yTmbEsB/jSWriRsa0UWbjyzmbZ3tmea+9sz61260nOJGkk40mK8uu/JPk82UpnyeVuR1/5iPcnmw8+e+/ycqc1Xi/V+sWg7Y5mP5ZWJ9aqfF7jzT7zeL0jnEpyoS5h6Pa6/n1o9zNelwDAKCuSU4d930om65v18jmgc1fcucc+0baGHQAAAAAcg3O72c1mzg47DgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADhJ6r//X9RLo1ufStH9+//N+rvU9RPt/rADAAAAAAAAAIDn4Ou72c1mznbbe0X1M//XqsbF6vMr+TjrWcparmYzi9nIRtYyk6TVN1Bzc3FjY23mCFvOHrrl7PEcLwAAAAAAAAC8oH6Thd7P/wEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAYBQUyaleNRfrsmilcTrJeJJm2bmV/K1bP8nuDzsAAAAAOAbndrObzZytm3tF55n/5eq5fzwf5042spKNtLOUm9W7gM5Tf2Nne669sz23Wi6PjvvD/z5RGNWI6b57OGzP09Ual/bXXshP8otcyVTezVpW8qssZiNLmcrbVW0xRVr124tWN87D4/3BQ613/1+sr1aRTGQ5K1VsV/PLfJh2bqZRHUO1zuA9flJmp/h+7Yg5ulmX5RH9rC5HQ6vKyNh+Rqbr3JfZOD84E094nhzc00wa+++gLn4BOZ+syzLXbx93zrcGdR7MxGzf2ffy4Ewkr//hdw9ute/cvrW8fmV0TqOndDATc32ZeGVgJm5MJC9SJpp1NjqzaHe2zJFmy9eqbc9mJaeruWYp3871zGc2b+Z6ZvLdvNmX10tHuNYaT3atfeObdWUsyY/rcjSUeT3fl9f+ma5V9fV/08vShec/I53+al0pT9a3Ru5/gfMH5uZuJl4anInf75Wf6+07t9duLX50xP29XpdlBn40Upkoz5cL5T9W1Xr47Cj7Xjq0b6bqu7jf13ik79J+X+dK/Xk+fMyV2qzv4Q6OVGS26nvl0L3MVX2v1n33H3OXA8DIm3xjsjnxn4l/Tnw68duJWxPvjL91Zv7M15oZ+8fpv576c+OPje8Vb+TT/Hr/+R8AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHgG63fv3V5st5fWTnrlk9EI40WpjLX3ziVDD+PEVn76rz+tjkAYd+/dLraSp9l82DMT8EW7trH60bX1u/e+tbK6+MHSB0t3rs9/50yuz8zPX1teaS9Ndz6HHSUA8Dz1bvqHHQkAAAAAAAAAAAAAAPA4x/FLyMM+RgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA4MW2cCNjWykyM311umzvbM+1y6Vb7605nqQoK39P8nmylc6SVt9wxeP28/5k88Fn711e7o013l2/GLRdZW9w94FYGgdiegoPjTf7zOP1jnAqyYW6hKH7XwAAAP//msoC1A==") ioctl$vim2m_VIDIOC_DQBUF(0xffffffffffffffff, 0xc0585611, 0x0) syz_usb_connect(0x2, 0x36, 0x0, 0x0) 2.697491522s ago: executing program 3 (id=4845): munmap(&(0x7f00003fe000/0xc00000)=nil, 0xc00000) mmap(&(0x7f0000699000/0x4000)=nil, 0x4000, 0x2000004, 0x3032, 0xffffffffffffffff, 0x4000) mremap(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x2000, 0x3, &(0x7f00007fe000/0x800000)=nil) 2.52668976s ago: executing program 0 (id=4846): r0 = socket$inet(0x2, 0x3, 0x6) setsockopt$IP_VS_SO_SET_ADD(r0, 0x0, 0x482, &(0x7f0000000080)={0x84, @remote, 0x4e22, 0x3, 'sh\x00', 0x8, 0xffff0722, 0x66}, 0x2c) setsockopt$IP_VS_SO_SET_DEL(r0, 0x0, 0x484, &(0x7f00000000c0)={0x84, @remote, 0x4e22, 0x3, 'nq\x00', 0x0, 0x3, 0x5c}, 0x2c) 2.357854343s ago: executing program 2 (id=4847): r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x802, 0x0) mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x0) write$uinput_user_dev(r0, &(0x7f0000000080)={'syz1\x00', {0x7, 0x5, 0x3, 0x3}, 0x40, [0x10, 0x200, 0x63, 0x6, 0x10001, 0x9, 0x3626, 0xffff, 0x3b, 0x4, 0xff, 0x5f19, 0x6, 0x3, 0x3, 0x6, 0x8, 0x7, 0xfffffff4, 0x23, 0xfffffff7, 0x1, 0x20003, 0x6, 0x6, 0x8, 0x10001, 0x0, 0x0, 0xb2, 0x0, 0x1, 0x6, 0x3, 0x6, 0x8, 0x8, 0x0, 0x80000001, 0x3, 0x1, 0x7, 0x4, 0x7ff, 0xfffffffd, 0x3, 0x9f, 0x1, 0x8f2, 0x9, 0x0, 0x100, 0x0, 0x6, 0x6, 0x7, 0x4, 0xa, 0x81, 0x2, 0x1aff, 0x8, 0x9, 0x7f], [0xd, 0x2, 0x9, 0xfffffffe, 0x4, 0x4, 0x87c5, 0x800, 0x9, 0xd, 0x10, 0x80000000, 0x5, 0x7, 0x4, 0xed2f, 0x8, 0x400, 0x6002, 0x7, 0x10001, 0x2, 0xdbf, 0x401, 0x8001, 0x5f58, 0x10, 0x200, 0x6, 0x4, 0x18, 0x80, 0x101, 0x8, 0x2, 0x4, 0x3, 0x63, 0x0, 0x7f, 0x0, 0x0, 0x101, 0x9, 0x42a4, 0x6, 0x5, 0x5, 0x7, 0x3, 0xfffffff3, 0x8d, 0x6, 0x6, 0x4, 0x0, 0x0, 0xff, 0x1, 0xffff, 0x36cc, 0x7, 0xa, 0x43d], [0x0, 0x80000000, 0xf, 0x400, 0x3, 0xd9, 0x0, 0x2, 0x1, 0x6586de57, 0x1ff, 0x6, 0x7, 0xec, 0x7, 0xfffffe00, 0x1, 0x1005, 0x80, 0x6, 0x5, 0x80000000, 0xfffffffc, 0x80, 0x1, 0xeb9, 0x1000, 0xec5, 0x0, 0x400, 0x1, 0xb54, 0x101, 0x3f, 0x100, 0x7, 0x0, 0x2, 0x4, 0x4, 0x9, 0x4, 0x69, 0x3, 0x3c5, 0x0, 0x6, 0x9, 0x8, 0x400000, 0x1, 0xe32, 0x2, 0xffff0000, 0xfffffff9, 0x85ebe063, 0x1, 0xc, 0x400, 0x2, 0x2, 0x3, 0xf, 0xa48], [0x1, 0x1, 0x8, 0x9, 0x8009, 0x5, 0x2351, 0x7, 0x6, 0xfff, 0x2, 0x6, 0x10, 0x1, 0x80000000, 0x1, 0xd, 0xa7f, 0x0, 0x100, 0x1, 0x4, 0xd2, 0x3, 0x8000002, 0x2b, 0x9, 0x4, 0x6, 0x7f, 0xea6b, 0x7, 0x2, 0x0, 0xffff8d95, 0xec, 0x0, 0x7f, 0xfffffffb, 0x10, 0x3, 0x9, 0xb, 0xfffffffe, 0x8, 0x5, 0x7e, 0xb, 0x3ff, 0x5, 0xe, 0x7, 0x7f, 0x6, 0x9, 0x93, 0x8, 0x6, 0x7f, 0x0, 0x7, 0x7, 0x0, 0x4]}, 0x45c) 2.276338644s ago: executing program 4 (id=4848): r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0) connect$bt_l2cap(r0, &(0x7f0000000040)={0x1f, 0x1, @any, 0x0, 0x1}, 0xe) bind$bt_l2cap(r0, &(0x7f0000000000)={0x1f, 0x0, @any, 0x4, 0x1}, 0xe) 1.696273015s ago: executing program 3 (id=4849): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x11, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="180100002100000000000000000000008500000075000000a50000002300000095"], &(0x7f00000000c0)='GPL\x00'}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000001c0)='mmap_lock_acquire_returned\x00', r0}, 0x10) keyctl$search(0xa, 0x0, &(0x7f0000000140)='keyring\x00', 0x0, 0x0) 1.696119993s ago: executing program 0 (id=4850): r0 = socket(0x400000000010, 0x3, 0x0) socket$unix(0x1, 0x5, 0x0) ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(r0, 0x89f1, &(0x7f00000000c0)={'ip6tnl0\x00', &(0x7f0000000140)={'syztnl2\x00', 0x0, 0x29, 0x3, 0x0, 0x6a, 0x20, @private2, @mcast2, 0x40, 0x1, 0x4, 0xcd}}) 1.443588182s ago: executing program 4 (id=4851): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x11, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000021000000000000004bc311ec8500000075000000a70000000800000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f00000000c0)='percpu_alloc_percpu\x00', r0}, 0x10) seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7ff00000}]}) 1.219855085s ago: executing program 5 (id=4852): syz_mount_image$hfsplus(&(0x7f0000007340), &(0x7f0000000000)='./file0\x00', 0x1600008, &(0x7f0000000080)=ANY=[@ANYBLOB="6e6f6465636f6d706f73652c63726561746f723d3e8bef9c2c666f7263652c747970653d726965722c747970653d05f2875e2c6e6c733d6370313235352c00"/73], 0x3, 0x646, &(0x7f0000000900)="$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") r0 = syz_open_procfs(0x0, &(0x7f0000000040)='mountinfo\x00') read$FUSE(r0, &(0x7f0000000f00)={0x2020}, 0x2020) 1.194291491s ago: executing program 2 (id=4853): r0 = syz_open_dev$sg(&(0x7f0000001600), 0x0, 0x40000) setreuid(0x0, 0xee00) ioctl$SCSI_IOCTL_SEND_COMMAND(r0, 0x1, &(0x7f00000000c0)=ANY=[]) 790.970288ms ago: executing program 0 (id=4854): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="0b0000004f000000cc0002000600000005"], 0x50) bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000200)='T', &(0x7f0000000240), 0x4af, r0}, 0x38) bpf$MAP_LOOKUP_BATCH(0x18, &(0x7f00000001c0)={0x0, &(0x7f0000000740)=""/4096, &(0x7f00000000c0), &(0x7f00000003c0), 0x2, r0}, 0x38) 329.345578ms ago: executing program 3 (id=4855): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0xd0}, 0x0) sendmsg$NFT_BATCH(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000500)={{0x14}, [@NFT_MSG_NEWRULE={0x4c, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x20, 0x4, 0x0, 0x1, [{0x1c, 0x1, 0x0, 0x1, @redir={{0xa}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_REDIR_FLAGS={0x8, 0x3, 0x1, 0x0, 0x4}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x74}, 0x1, 0x0, 0x0, 0x8c0}, 0x0) 117.314465ms ago: executing program 4 (id=4856): r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB="18000000240001030000000000000000010000000400ae"], 0x18}}, 0x4044004) recvmmsg(r0, &(0x7f000000d580)=[{{0x0, 0x0, &(0x7f0000000240)=[{&(0x7f00000000c0)=""/164, 0xa4}, {&(0x7f00000006c0)=""/4096, 0x1000}, {&(0x7f00000001c0)=""/57, 0x39}], 0x3}, 0x3}], 0x1, 0x100, 0x0) 0s ago: executing program 2 (id=4857): r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) setsockopt$WPAN_SECURITY(r0, 0x0, 0x1, &(0x7f0000000040)=0x2, 0x4) sendmsg$802154_dgram(r0, &(0x7f00000000c0)={&(0x7f0000000000)={0x24, @long={0x3, 0xffff, {0xaaaaaaaaaaaa0302}}}, 0x14, &(0x7f0000000080)={0x0}, 0x1, 0x0, 0x0, 0x20044005}, 0x4000010) kernel console output (not intermixed with test programs): 114] NILFS (loop0): broken superblock, retrying with spare superblock (blocksize = 1024) [ 1014.879719][ T4821] hfsplus: b-tree write err: -5, ino 4 [ 1014.895351][T14119] loop2: detected capacity change from 0 to 64 [ 1014.956667][T14114] syz.0.3604: attempt to access beyond end of device [ 1014.956667][T14114] loop0: rw=524288, sector=33554430, nr_sectors = 2 limit=2048 [ 1015.002903][T14121] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 1015.119520][T14114] NILFS error (device loop0): nilfs_bmap_lookup_contig: broken bmap (inode number=16) [ 1015.120052][ T5819] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1015.236670][T14114] Remounting filesystem read-only [ 1015.242539][T14114] NILFS error (device loop0): nilfs_bmap_last_key: broken bmap (inode number=16) [ 1015.253428][T14114] NILFS (loop0): error -5 truncating bmap (ino=16) [ 1016.047480][T14126] loop5: detected capacity change from 0 to 2048 [ 1016.395311][ T5815] NILFS (loop0): disposed unprocessed dirty file(s) when detaching log writer [ 1016.458399][T14126] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1016.695871][T14126] EXT4-fs error (device loop5): ext4_search_dir:1474: inode #12: block 9: comm syz.5.3607: bad entry in directory: rec_len % 4 != 0 - offset=0, inode=13, rec_len=21, size=56 fake=0 [ 1016.805087][T14126] EXT4-fs (loop5): Remounting filesystem read-only [ 1017.369283][T13178] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1018.378563][T14150] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3614'. [ 1019.868404][T14169] loop0: detected capacity change from 0 to 16 [ 1019.896106][T14167] loop3: detected capacity change from 0 to 2048 [ 1020.007413][T14169] erofs (device loop0): mounted with root inode @ nid 36. [ 1020.048841][T14167] NILFS (loop3): broken superblock, retrying with spare superblock (blocksize = 1024) [ 1020.199267][T14167] syz.3.3621: attempt to access beyond end of device [ 1020.199267][T14167] loop3: rw=524288, sector=33554430, nr_sectors = 2 limit=2048 [ 1020.203808][T14174] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 1020.273275][T14173] loop4: detected capacity change from 0 to 1024 [ 1020.360960][T14173] EXT4-fs: Ignoring removed nobh option [ 1020.368616][T14173] EXT4-fs: Ignoring removed oldalloc option [ 1020.376140][T14173] EXT4-fs: Ignoring removed bh option [ 1020.470529][T14167] NILFS error (device loop3): nilfs_bmap_lookup_contig: broken bmap (inode number=16) [ 1020.576554][T14167] Remounting filesystem read-only [ 1020.582323][T14167] NILFS error (device loop3): nilfs_bmap_last_key: broken bmap (inode number=16) [ 1020.592095][T14167] NILFS (loop3): error -5 truncating bmap (ino=16) [ 1020.606006][T14173] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-001000000000 r/w without journal. Quota mode: none. [ 1021.216885][ T5819] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-001000000000. [ 1021.600387][T14190] loop2: detected capacity change from 0 to 16 [ 1021.722208][T14190] erofs (device loop2): mounted with root inode @ nid 36. [ 1021.835320][T14190] VFS: Lookup of '$' in erofs loop2 would have caused loop [ 1021.863797][ T5814] NILFS (loop3): disposed unprocessed dirty file(s) when detaching log writer [ 1022.298314][T14197] loop0: detected capacity change from 0 to 16 [ 1022.364034][T14197] erofs (device loop0): mounted with root inode @ nid 36. [ 1023.330307][T14203] loop3: detected capacity change from 0 to 2048 [ 1023.576208][T14210] ucma_write: process 1565 (syz.0.3636) changed security contexts after opening file descriptor, this is not allowed. [ 1025.019060][T14226] loop4: detected capacity change from 0 to 8 [ 1025.280412][T14226] SQUASHFS error: xz decompression failed, data probably corrupt [ 1025.288481][T14225] loop2: detected capacity change from 0 to 2048 [ 1025.298724][T14226] SQUASHFS error: Failed to read block 0x108: -5 [ 1025.305623][T14226] SQUASHFS error: Unable to read metadata cache entry [106] [ 1025.319327][T14226] SQUASHFS error: Unable to read inode 0x11f [ 1025.354213][T14225] NILFS (loop2): broken superblock, retrying with spare superblock (blocksize = 1024) [ 1025.472162][T14225] syz.2.3642: attempt to access beyond end of device [ 1025.472162][T14225] loop2: rw=524288, sector=33554430, nr_sectors = 2 limit=2048 [ 1025.487708][T14234] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 1025.599456][T14237] loop0: detected capacity change from 0 to 64 [ 1025.695495][T14225] NILFS error (device loop2): nilfs_bmap_lookup_contig: broken bmap (inode number=16) [ 1025.796097][T14225] Remounting filesystem read-only [ 1025.801925][T14225] NILFS error (device loop2): nilfs_bmap_last_key: broken bmap (inode number=16) [ 1025.812012][T14225] NILFS (loop2): error -5 truncating bmap (ino=16) [ 1026.054830][ T9617] usb 5-1: new high-speed USB device number 17 using dummy_hcd [ 1026.318859][ T9617] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x7 has invalid wMaxPacketSize 0 [ 1026.329317][ T9617] usb 5-1: config 0 interface 0 altsetting 0 bulk endpoint 0x7 has invalid maxpacket 0 [ 1026.340483][ T9617] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x89 has invalid maxpacket 33119, setting to 1024 [ 1026.352151][ T9617] usb 5-1: config 0 interface 0 altsetting 0 bulk endpoint 0x89 has invalid maxpacket 1024 [ 1026.516002][ T9617] usb 5-1: New USB device found, idVendor=2040, idProduct=2000, bcdDevice=65.72 [ 1026.525666][ T9617] usb 5-1: New USB device strings: Mfr=151, Product=0, SerialNumber=0 [ 1026.534394][ T9617] usb 5-1: Manufacturer: syz [ 1026.703386][ T9617] usb 5-1: config 0 descriptor?? [ 1026.717879][T14226] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22 [ 1026.834672][ T9617] smsusb:smsusb_probe: board id=9, interface number 0 [ 1026.848218][ T5826] NILFS (loop2): disposed unprocessed dirty file(s) when detaching log writer [ 1026.939070][ T9617] smsusb:siano_media_device_register: media controller created [ 1026.950292][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes [ 1026.958494][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes [ 1026.966759][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes [ 1026.975643][ T9617] smsmdtv:smscore_sendrequest_and_wait: sendrequest returned error -22 [ 1026.985640][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes [ 1026.985923][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes [ 1026.986184][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes [ 1026.986452][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes [ 1026.986711][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes [ 1026.986971][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes [ 1026.987226][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes [ 1027.041736][ T9617] smsmdtv:smscore_set_device_mode: mode detect failed -22 [ 1027.049290][ T9617] smsmdtv:smscore_start_device: set device mode failed , rc -22 [ 1027.057301][ T9617] smsusb:smsusb_init_device: smscore_start_device(...) failed [ 1027.074506][ T9617] ------------[ cut here ]------------ [ 1027.080265][ T9617] WARNING: CPU: 1 PID: 9617 at mm/slub.c:4753 free_large_kmalloc+0x2ee/0x330 [ 1027.089697][ T9617] Modules linked in: [ 1027.095812][ T9617] CPU: 1 UID: 0 PID: 9617 Comm: kworker/1:1 Not tainted 6.16.0-rc6-syzkaller #0 PREEMPT(none) [ 1027.107006][ T9617] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 1027.117555][ T9617] Workqueue: usb_hub_wq hub_event [ 1027.123235][ T9617] RIP: 0010:free_large_kmalloc+0x2ee/0x330 [ 1027.129442][ T9617] Code: ff ff ff e8 b4 8e 13 00 41 81 ff 00 00 00 f8 0f 84 ca fd ff ff eb 12 e8 a0 8e 13 00 41 81 ff 00 00 00 f8 0f 84 ff fd ff ff 90 <0f> 0b 90 48 8b 7d c8 48 c7 c6 0f 28 e6 91 e8 8f 50 e3 ff e9 0a ff [ 1027.149680][ T9617] RSP: 0018:ffff888116c6e9e8 EFLAGS: 00010206 [ 1027.156237][ T9617] RAX: 0000000000000000 RBX: ffffea0001ba4e00 RCX: 00000000f8ffffff [ 1027.165492][ T9617] RDX: ffffffff954e2000 RSI: 0000000000000001 RDI: 0000000000000000 [ 1027.176414][ T9617] RBP: ffff888116c6ea40 R08: ffffea000000000f R09: 0000000000000000 [ 1027.185682][ T9617] R10: ffff88804d573780 R11: ffffffff81d3f030 R12: 0000000000000000 [ 1027.195473][ T9617] R13: 0000000000000000 R14: 0000000000000000 R15: 00000000ff000000 [ 1027.204344][ T9617] FS: 0000000000000000(0000) GS:ffff8881aa95a000(0000) knlGS:0000000000000000 [ 1027.213691][ T9617] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1027.220583][ T9617] CR2: 00007fb87906c008 CR3: 000000001383e000 CR4: 00000000003526f0 [ 1027.229005][ T9617] Call Trace: [ 1027.232520][ T9617] [ 1027.235823][ T9617] kfree+0x64b/0xec0 [ 1027.240045][ T9617] ? usb_free_urb+0x125/0x150 [ 1027.245240][ T9617] ? kmsan_internal_set_shadow_origin+0x79/0x110 [ 1027.251969][ T9617] ? kmsan_get_metadata+0xfb/0x160 [ 1027.257588][ T9617] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 1027.264028][ T9617] usb_free_urb+0x125/0x150 [ 1027.268923][ T9617] smsusb_term_device+0x350/0x700 [ 1027.274418][ T9617] smsusb_probe+0x2cf0/0x36c0 [ 1027.280984][ T9617] ? __pfx_smsusb_sendrequest+0x10/0x10 [ 1027.289071][ T9617] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 1027.297402][ T9617] ? __pfx_smsusb_probe+0x10/0x10 [ 1027.302847][ T9617] usb_probe_interface+0xd01/0x1310 [ 1027.308930][ T9617] ? __pfx_usb_probe_interface+0x10/0x10 [ 1027.315029][ T9617] really_probe+0x4d1/0xd90 [ 1027.319960][ T9617] __driver_probe_device+0x268/0x380 [ 1027.325872][ T9617] driver_probe_device+0x70/0x8b0 [ 1027.331304][ T9617] ? kmsan_get_metadata+0xfb/0x160 [ 1027.336916][ T9617] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 1027.343296][ T9617] __device_attach_driver+0x4ee/0x950 [ 1027.349108][ T9617] bus_for_each_drv+0x3e0/0x680 [ 1027.354504][ T9617] ? __pfx___device_attach_driver+0x10/0x10 [ 1027.360848][ T9617] __device_attach+0x3c8/0x5c0 [ 1027.366165][ T9617] device_initial_probe+0x33/0x40 [ 1027.371586][ T9617] bus_probe_device+0x3ba/0x5e0 [ 1027.376922][ T9617] device_add+0x12a9/0x1c10 [ 1027.383351][ T9617] usb_set_configuration+0x3493/0x3b70 [ 1027.389342][ T9617] usb_generic_driver_probe+0xfc/0x290 [ 1027.395866][ T9617] ? __pfx_usb_generic_driver_probe+0x10/0x10 [ 1027.404348][ T9617] usb_probe_device+0x38d/0x690 [ 1027.409562][ T9617] ? __pfx_usb_probe_device+0x10/0x10 [ 1027.415874][ T9617] really_probe+0x4d1/0xd90 [ 1027.420837][ T9617] __driver_probe_device+0x268/0x380 [ 1027.426681][ T9617] driver_probe_device+0x70/0x8b0 [ 1027.432189][ T9617] ? kmsan_get_metadata+0xfb/0x160 [ 1027.437821][ T9617] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 1027.444263][ T9617] __device_attach_driver+0x4ee/0x950 [ 1027.450070][ T9617] bus_for_each_drv+0x3e0/0x680 [ 1027.455458][ T9617] ? __pfx___device_attach_driver+0x10/0x10 [ 1027.461935][ T9617] __device_attach+0x3c8/0x5c0 [ 1027.467349][ T9617] device_initial_probe+0x33/0x40 [ 1027.472780][ T9617] bus_probe_device+0x3ba/0x5e0 [ 1027.478140][ T9617] device_add+0x12a9/0x1c10 [ 1027.484603][ T9617] usb_new_device+0x104b/0x20c0 [ 1027.489936][ T9617] hub_event+0x5588/0x7580 [ 1027.495396][ T9617] ? pwq_dec_nr_in_flight+0x1678/0x1d80 [ 1027.502835][ T9617] ? __pfx_hub_event+0x10/0x10 [ 1027.508480][ T9617] process_scheduled_works+0xb91/0x1d80 [ 1027.514720][ T9617] worker_thread+0xedf/0x1590 [ 1027.519849][ T9617] kthread+0xd59/0xf00 [ 1027.524364][ T9617] ? __pfx_worker_thread+0x10/0x10 [ 1027.529909][ T9617] ? __pfx_kthread+0x10/0x10 [ 1027.535025][ T9617] ret_from_fork+0x1e0/0x310 [ 1027.539979][ T9617] ? __pfx_kthread+0x10/0x10 [ 1027.545030][ T9617] ret_from_fork_asm+0x1a/0x30 [ 1027.550212][ T9617] [ 1027.553582][ T9617] ---[ end trace 0000000000000000 ]--- [ 1027.559294][ T9617] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x58762 [ 1027.568472][ T9617] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff) [ 1027.576198][ T9617] raw: 00fff00000000000 0000000000000000 ffffea0001ba4eb0 0000000000000000 [ 1027.586582][ T9617] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000 [ 1027.596083][ T9617] raw: ffffea0001b7cea0 ffffea0001b90ea0 [ 1027.603600][ T9617] page dumped because: Not a kmalloc allocation [ 1027.610832][ T9617] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x58760 [ 1027.620537][ T9617] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff) [ 1027.628223][ T9617] raw: 00fff00000000000 0000000000000000 dead000000000122 0000000000000000 [ 1027.637460][ T9617] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000 [ 1027.646456][ T9617] raw: ffffea0001b7ce00 ffffea0001b90e00 [ 1027.652346][ T9617] page dumped because: Not a kmalloc allocation [ 1027.659662][ T9617] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x5875e [ 1027.668834][ T9617] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff) [ 1027.676439][ T9617] raw: 00fff00000000000 0000000000000000 ffffea0001ba4d68 0000000000000000 [ 1027.686863][ T9617] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000 [ 1027.696425][ T9617] raw: ffffea0001b7cd60 ffffea0001b90d60 [ 1027.702328][ T9617] page dumped because: Not a kmalloc allocation [ 1027.711055][ T9617] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x5875c [ 1027.720662][ T9617] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff) [ 1027.728302][ T9617] raw: 00fff00000000000 0000000000000000 ffffea0001ba4cc8 0000000000000000 [ 1027.737377][ T9617] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000 [ 1027.746420][ T9617] raw: ffffea0001b7ccc0 ffffea0001b90cc0 [ 1027.752307][ T9617] page dumped because: Not a kmalloc allocation [ 1027.759744][ T9617] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x5875a [ 1027.769077][ T9617] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff) [ 1027.776706][ T9617] raw: 00fff00000000000 0000000000000000 ffffea0001ba4c30 0000000000000000 [ 1027.785735][ T9617] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000 [ 1027.796215][ T9617] raw: ffffea0001b7cc20 ffffea0001b90c20 [ 1027.802107][ T9617] page dumped because: Not a kmalloc allocation [ 1027.811189][ T9617] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x58758 [ 1027.820826][ T9617] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff) [ 1027.828602][ T9617] raw: 00fff00000000000 0000000000000000 dead000000000122 0000000000000000 [ 1027.844528][ T9617] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000 [ 1027.855640][ T9617] raw: ffffea0001b7cb80 ffffea0001b90b80 [ 1027.862418][ T9617] page dumped because: Not a kmalloc allocation [ 1027.869764][ T9617] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x58756 [ 1027.879052][ T9617] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff) [ 1027.886628][ T9617] raw: 00fff00000000000 0000000000000000 ffffea0001ba4ae8 0000000000000000 [ 1027.897135][ T9617] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000 [ 1027.907509][ T9617] raw: ffffea0001b7cae0 ffffea0001b90ae0 [ 1027.914929][ T9617] page dumped because: Not a kmalloc allocation [ 1027.922102][ T9617] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x58754 [ 1027.931678][ T9617] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff) [ 1027.939373][ T9617] raw: 00fff00000000000 0000000000000000 ffffea0001ba4a48 0000000000000000 [ 1027.948394][ T9617] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000 [ 1027.957585][ T9617] raw: ffffea0001b7ca40 ffffea0001b90a40 [ 1027.965011][ T9617] page dumped because: Not a kmalloc allocation [ 1027.972194][ T9617] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x58752 [ 1027.981394][ T9617] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff) [ 1027.989040][ T9617] raw: 00fff00000000000 0000000000000000 ffffea0001ba49b0 0000000000000000 [ 1027.999563][ T9617] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000 [ 1028.009161][ T9617] raw: ffffea0001b7c9a0 ffffea0001b909a0 [ 1028.016747][ T9617] page dumped because: Not a kmalloc allocation [ 1028.024422][ T9617] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x58750 [ 1028.033693][ T9617] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff) [ 1028.041174][ T9617] raw: 00fff00000000000 0000000000000000 dead000000000122 0000000000000000 [ 1028.050235][ T9617] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000 [ 1028.059439][ T9617] raw: ffffea0001b7c900 ffffea0001b90900 [ 1028.065494][ T9617] page dumped because: Not a kmalloc allocation [ 1028.077622][ T9617] smsusb:smsusb_probe: Device initialized with return code -22 [ 1028.449074][ T1286] ieee802154 phy0 wpan0: encryption failed: -22 [ 1028.456168][ T1286] ieee802154 phy1 wpan1: encryption failed: -22 [ 1028.486989][ T9617] smsusb 5-1:0.0: probe with driver smsusb failed with error -22 [ 1028.542043][ T9617] usb 5-1: USB disconnect, device number 17 [ 1032.436984][T14294] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3664'. [ 1032.504587][T14298] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3664'. [ 1032.849531][T14300] loop4: detected capacity change from 0 to 1024 [ 1033.342370][T14305] loop2: detected capacity change from 0 to 256 [ 1033.496353][T13176] hfsplus: b-tree write err: -5, ino 4 [ 1033.818399][T14305] FAT-fs (loop2): Directory bread(block 64) failed [ 1033.818537][T14305] FAT-fs (loop2): Directory bread(block 65) failed [ 1033.818797][T14305] FAT-fs (loop2): Directory bread(block 66) failed [ 1033.818914][T14305] FAT-fs (loop2): Directory bread(block 67) failed [ 1033.819168][T14305] FAT-fs (loop2): Directory bread(block 68) failed [ 1033.819287][T14305] FAT-fs (loop2): Directory bread(block 69) failed [ 1033.819555][T14305] FAT-fs (loop2): Directory bread(block 70) failed [ 1033.819672][T14305] FAT-fs (loop2): Directory bread(block 71) failed [ 1033.819926][T14305] FAT-fs (loop2): Directory bread(block 72) failed [ 1033.820043][T14305] FAT-fs (loop2): Directory bread(block 73) failed [ 1036.135088][T14323] loop4: detected capacity change from 0 to 4096 [ 1036.330420][T14336] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 1038.517605][T14355] loop2: detected capacity change from 0 to 1024 [ 1039.315832][T14366] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3691'. [ 1039.436302][T14366] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3691'. [ 1040.282474][T14377] netlink: 'syz.4.3696': attribute type 3 has an invalid length. [ 1040.294229][T14377] netlink: 199824 bytes leftover after parsing attributes in process `syz.4.3696'. [ 1041.265080][T14386] netlink: 4 bytes leftover after parsing attributes in process `syz.5.3698'. [ 1041.360066][T14390] loop3: detected capacity change from 0 to 256 [ 1041.412709][T14390] exfat: Deprecated parameter 'namecase' [ 1041.419141][T14390] exfat: Deprecated parameter 'utf8' [ 1041.500619][T14392] tipc: Started in network mode [ 1041.507426][T14392] tipc: Node identity ac141412, cluster identity 4711 [ 1041.517546][T14392] tipc: New replicast peer: 255.255.255.255 [ 1041.526984][T14392] tipc: Enabled bearer , priority 10 [ 1041.700505][T14390] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0x22785e93, utbl_chksum : 0xe619d30d) [ 1041.906672][ T30] audit: type=1800 audit(1752506262.712:105): pid=14390 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.3699" name="file1" dev="loop3" ino=1048713 res=0 errno=0 [ 1042.644892][ T9617] tipc: Node number set to 2886997010 [ 1045.571413][T14433] loop2: detected capacity change from 0 to 128 [ 1045.776958][ T30] audit: type=1800 audit(1752506266.582:106): pid=14433 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.3713" name="file1" dev="loop2" ino=1048714 res=0 errno=0 [ 1045.971500][T14438] netlink: 4 bytes leftover after parsing attributes in process `syz.4.3715'. [ 1046.021772][T14439] loop5: detected capacity change from 0 to 64 [ 1047.549534][T14450] loop5: detected capacity change from 0 to 164 [ 1047.637837][T14450] Unable to read rock-ridge attributes [ 1047.752220][T14450] Unable to read rock-ridge attributes [ 1047.902394][T14452] loop3: detected capacity change from 0 to 512 [ 1048.057258][T14452] EXT4-fs warning (device loop3): dx_probe:846: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 1048.073412][T14452] EXT4-fs warning (device loop3): dx_probe:849: Enable large directory feature to access it [ 1048.092368][T14452] EXT4-fs warning (device loop3): dx_probe:934: inode #2: comm syz.3.3721: Corrupt directory, running e2fsck is recommended [ 1048.120658][T14452] EXT4-fs (loop3): Cannot turn on journaled quota: type 1: error -117 [ 1048.238797][T14452] EXT4-fs error (device loop3): ext4_iget_extra_inode:5035: inode #15: comm syz.3.3721: corrupted in-inode xattr: invalid ea_ino [ 1048.281093][T14452] EXT4-fs error (device loop3): ext4_orphan_get:1398: comm syz.3.3721: couldn't read orphan inode 15 (err -117) [ 1048.295562][ T30] audit: type=1326 audit(1752506269.082:107): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14456 comm="syz.0.3724" exe="/root/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf70fe539 code=0x0 [ 1048.435400][T14452] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1049.086080][ T5814] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1050.574324][T14478] netlink: 1268 bytes leftover after parsing attributes in process `syz.4.3732'. [ 1050.802678][T14482] loop0: detected capacity change from 0 to 256 [ 1050.969328][T11268] Bluetooth: hci0: command 0x0406 tx timeout [ 1051.151563][T14482] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0xf6e00961, utbl_chksum : 0xe619d30d) [ 1052.357200][T14499] tipc: Enabling of bearer rejected, failed to enable media [ 1053.139702][T14505] loop3: detected capacity change from 0 to 1024 [ 1053.454562][T14505] hfsplus: bad catalog entry type [ 1053.610518][T14513] loop2: detected capacity change from 0 to 512 [ 1053.742425][T14513] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 1053.881744][T14513] EXT4-fs (loop2): 1 truncate cleaned up [ 1053.896869][T14513] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1053.982120][ T7288] hfsplus: b-tree write err: -5, ino 4 [ 1054.194596][T14519] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3750'. [ 1054.736380][ T5826] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1055.479006][T14521] loop4: detected capacity change from 0 to 4096 [ 1055.627775][T14527] loop3: detected capacity change from 0 to 256 [ 1056.703779][ T9617] usb 3-1: new high-speed USB device number 19 using dummy_hcd [ 1056.913773][ T9617] usb 3-1: config 0 has an invalid interface number: 98 but max is 0 [ 1056.922363][ T9617] usb 3-1: config 0 has no interface number 0 [ 1056.929088][ T9617] usb 3-1: config 0 interface 98 has no altsetting 0 [ 1057.037441][ T9617] usb 3-1: New USB device found, idVendor=1110, idProduct=9024, bcdDevice=db.24 [ 1057.047629][ T9617] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1057.056259][ T9617] usb 3-1: Product: syz [ 1057.060708][ T9617] usb 3-1: Manufacturer: syz [ 1057.065742][ T9617] usb 3-1: SerialNumber: syz [ 1057.226389][ T9617] usb 3-1: config 0 descriptor?? [ 1057.631348][ T9617] usb 3-1: [ueagle-atm] ADSL device founded vid (0X1110) pid (0X9024) Rev (0XDB24): Eagle II [ 1058.114700][ T9617] usb 3-1: reset high-speed USB device number 19 using dummy_hcd [ 1058.597155][T10454] usb 4-1: new high-speed USB device number 14 using dummy_hcd [ 1058.644273][ T9617] usb 3-1: failed to restore interface 98 altsetting 4 (error=-71) [ 1058.674125][ T9617] usb 3-1: [ueagle-atm] pre-firmware device, uploading firmware [ 1058.682265][ T9617] usb 3-1: [ueagle-atm] loading firmware ueagle-atm/eagleII.fw [ 1058.697236][ T5881] usb 3-1: Direct firmware load for ueagle-atm/eagleII.fw failed with error -2 [ 1058.706720][ T5881] usb 3-1: Falling back to sysfs fallback for: ueagle-atm/eagleII.fw [ 1058.794013][ T9617] usb 3-1: USB disconnect, device number 19 [ 1058.837148][T10454] usb 4-1: Using ep0 maxpacket: 16 [ 1058.874025][T10454] usb 4-1: config 8 has an invalid interface number: 39 but max is 0 [ 1058.878580][T14551] vivid-007: disconnect [ 1058.882603][T10454] usb 4-1: config 8 has no interface number 0 [ 1058.893467][T10454] usb 4-1: config 8 interface 39 altsetting 1 has an endpoint descriptor with address 0xDF, changing to 0x8F [ 1058.905519][T10454] usb 4-1: config 8 interface 39 altsetting 1 endpoint 0x8F has invalid wMaxPacketSize 0 [ 1058.915915][T10454] usb 4-1: config 8 interface 39 altsetting 1 bulk endpoint 0x8F has invalid maxpacket 0 [ 1058.927149][T10454] usb 4-1: config 8 interface 39 has no altsetting 0 [ 1058.969817][T14550] vivid-007: reconnect [ 1059.177657][T10454] usb 4-1: New USB device found, idVendor=05ac, idProduct=c704, bcdDevice=62.77 [ 1059.187382][T10454] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1059.196107][T10454] usb 4-1: Product: syz [ 1059.200562][T10454] usb 4-1: Manufacturer: syz [ 1059.207653][T10454] usb 4-1: SerialNumber: syz [ 1059.640588][T14548] loop0: detected capacity change from 0 to 4096 [ 1060.068673][T10454] ipheth 4-1:8.39: ipheth_enable_ncm: usb_control_msg: -71 [ 1060.095152][T10454] ipheth 4-1:8.39: Apple iPhone USB Ethernet device attached [ 1060.305319][T10454] usb 4-1: USB disconnect, device number 14 [ 1060.352830][ T30] audit: type=1800 audit(1752506281.142:108): pid=14548 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.3764" name="file0" dev="loop0" ino=0 res=0 errno=0 [ 1060.508341][T10454] ipheth 4-1:8.39: Apple iPhone USB Ethernet now disconnected [ 1062.348898][T14578] loop0: detected capacity change from 0 to 512 [ 1062.473511][T14578] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 1062.711625][T14578] EXT4-fs (loop0): 1 truncate cleaned up [ 1062.720819][T14578] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1063.339499][ T5815] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1063.645552][T14592] sp0: Synchronizing with TNC [ 1066.058529][T14620] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3793'. [ 1066.068069][T14620] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3793'. [ 1066.084121][T14621] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3794'. [ 1066.821050][T14628] loop0: detected capacity change from 0 to 2048 [ 1067.073567][T14628] UDF-fs: error (device loop0): udf_read_tagged: tag checksum failed, block 99: 0x27 != 0x4d [ 1067.210672][T14628] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 1067.770916][ T30] audit: type=1326 audit(1752506288.562:109): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14640 comm="syz.3.3800" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ce539 code=0x7ffc0000 [ 1067.933640][ T30] audit: type=1326 audit(1752506288.642:110): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14640 comm="syz.3.3800" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ce539 code=0x7ffc0000 [ 1067.957400][ T30] audit: type=1326 audit(1752506288.682:111): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14640 comm="syz.3.3800" exe="/root/syz-executor" sig=0 arch=40000003 syscall=274 compat=1 ip=0xf70ce539 code=0x7ffc0000 [ 1067.980647][ T30] audit: type=1326 audit(1752506288.682:112): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14640 comm="syz.3.3800" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ce539 code=0x7ffc0000 [ 1068.003343][ T30] audit: type=1326 audit(1752506288.682:113): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14640 comm="syz.3.3800" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ce539 code=0x7ffc0000 [ 1068.025979][ T30] audit: type=1326 audit(1752506288.702:114): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14640 comm="syz.3.3800" exe="/root/syz-executor" sig=0 arch=40000003 syscall=450 compat=1 ip=0xf70ce539 code=0x7ffc0000 [ 1068.051388][ T30] audit: type=1326 audit(1752506288.702:115): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14640 comm="syz.3.3800" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ce539 code=0x7ffc0000 [ 1069.474491][T14655] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3816'. [ 1069.485215][T14655] netlink: 28 bytes leftover after parsing attributes in process `syz.2.3816'. [ 1070.737095][T14671] loop3: detected capacity change from 0 to 64 [ 1070.947049][T14669] loop4: detected capacity change from 0 to 2048 [ 1071.086489][T14669] NILFS (loop4): broken superblock, retrying with spare superblock (blocksize = 1024) [ 1071.131052][T14669] syz.4.3812: attempt to access beyond end of device [ 1071.131052][T14669] loop4: rw=524288, sector=33554430, nr_sectors = 2 limit=2048 [ 1071.153363][T14673] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 1071.315670][T14674] loop2: detected capacity change from 0 to 256 [ 1071.404965][T14674] exFAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 1071.417267][T14674] exFAT-fs (loop2): Medium has reported failures. Some data may be lost. [ 1071.552605][T14674] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0xe5674ec2, utbl_chksum : 0xe619d30d) [ 1071.857946][ T30] audit: type=1326 audit(1752506292.632:116): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14679 comm="syz.3.3818" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ce539 code=0x7ffc0000 [ 1071.880864][ T30] audit: type=1326 audit(1752506292.632:117): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14679 comm="syz.3.3818" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ce539 code=0x7ffc0000 [ 1072.137532][ T30] audit: type=1326 audit(1752506292.732:118): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14679 comm="syz.3.3818" exe="/root/syz-executor" sig=0 arch=40000003 syscall=296 compat=1 ip=0xf70ce539 code=0x7ffc0000 [ 1072.708661][T14684] loop4: detected capacity change from 0 to 1024 [ 1073.221996][ T4821] hfsplus: b-tree write err: -5, ino 4 [ 1074.182406][T14692] loop5: detected capacity change from 0 to 4096 [ 1074.222622][T14692] ntfs3(loop5): Different NTFS sector size (2048) and media sector size (512). [ 1074.479393][T14692] ntfs3(loop5): ino=b, mi_enum_attr [ 1074.497188][T14692] ntfs3(loop5): Mark volume as dirty due to NTFS errors [ 1074.536432][T14692] ntfs3(loop5): Failed to load $Extend (-22). [ 1074.543342][T14692] ntfs3(loop5): Failed to initialize $Extend. [ 1076.634564][ T5870] usb 6-1: new high-speed USB device number 2 using dummy_hcd [ 1076.734139][T14719] netlink: 4 bytes leftover after parsing attributes in process `syz.4.3835'. [ 1076.879780][ T5870] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 1076.891538][ T5870] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 1076.904787][ T5870] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 1076.918608][ T5870] usb 6-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 1076.928272][ T5870] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1077.020417][ T5870] usb 6-1: config 0 descriptor?? [ 1077.518849][T14716] loop0: detected capacity change from 0 to 4096 [ 1077.544288][ T5870] plantronics 0003:047F:FFFF.000D: unknown main item tag 0x0 [ 1077.552100][ T5870] plantronics 0003:047F:FFFF.000D: unknown main item tag 0x0 [ 1077.562148][ T5870] plantronics 0003:047F:FFFF.000D: unknown main item tag 0x0 [ 1077.573529][ T5870] plantronics 0003:047F:FFFF.000D: unknown main item tag 0x0 [ 1077.581320][ T5870] plantronics 0003:047F:FFFF.000D: unknown main item tag 0x0 [ 1077.598939][ T5870] plantronics 0003:047F:FFFF.000D: unknown main item tag 0x0 [ 1077.767124][T11268] Bluetooth: hci3: unexpected event for opcode 0x2042 [ 1077.890511][ T5870] plantronics 0003:047F:FFFF.000D: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.5-1/input0 [ 1078.057433][ T5870] usb 6-1: USB disconnect, device number 2 [ 1079.226197][T14728] fido_id[14728]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.5/usb6/report_descriptor': No such file or directory [ 1081.605205][T14758] loop0: detected capacity change from 0 to 1024 [ 1081.657302][T14758] EXT4-fs: Ignoring removed mblk_io_submit option [ 1081.665082][T14758] EXT4-fs: Ignoring removed nobh option [ 1081.672071][T14758] EXT4-fs: Ignoring removed bh option [ 1081.819725][T14758] EXT4-fs (loop0): can't mount with journal_checksum, fs mounted w/o journal [ 1081.843685][T11268] Bluetooth: hci3: Controller not accepting commands anymore: ncmd = 0 [ 1081.852371][T11268] Bluetooth: hci3: Injecting HCI hardware error event [ 1081.865143][T11268] Bluetooth: hci3: hardware error 0x00 [ 1082.558158][T14768] loop4: detected capacity change from 0 to 256 [ 1082.574042][T14769] loop3: detected capacity change from 0 to 64 [ 1082.687637][T14771] loop2: detected capacity change from 0 to 128 [ 1082.732724][T14768] FAT-fs (loop4): error, fat_get_cluster: invalid cluster chain (i_pos 196) [ 1082.742379][T14768] FAT-fs (loop4): Filesystem has been set read-only [ 1082.749636][T14768] FAT-fs (loop4): error, fat_get_cluster: invalid cluster chain (i_pos 196) [ 1082.758850][T14768] FAT-fs (loop4): error, fat_get_cluster: invalid cluster chain (i_pos 196) [ 1082.768173][T14768] FAT-fs (loop4): error, fat_get_cluster: invalid cluster chain (i_pos 196) [ 1082.778784][T14768] FAT-fs (loop4): error, fat_get_cluster: invalid cluster chain (i_pos 196) [ 1082.788426][T14768] FAT-fs (loop4): error, fat_get_cluster: invalid cluster chain (i_pos 196) [ 1082.798917][T14768] FAT-fs (loop4): error, fat_get_cluster: invalid cluster chain (i_pos 196) [ 1082.808479][T14768] FAT-fs (loop4): error, fat_get_cluster: invalid cluster chain (i_pos 196) [ 1082.817767][T14768] FAT-fs (loop4): error, fat_get_cluster: invalid cluster chain (i_pos 196) [ 1082.827047][T14768] FAT-fs (loop4): error, fat_get_cluster: invalid cluster chain (i_pos 196) [ 1082.953123][T14771] FAT-fs (loop2): error, corrupted directory (invalid entries) [ 1082.961029][T14771] FAT-fs (loop2): Filesystem has been set read-only [ 1082.974856][ T30] kauditd_printk_skb: 4 callbacks suppressed [ 1082.974934][ T30] audit: type=1800 audit(1752506303.712:123): pid=14768 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.3858" name="file1" dev="loop4" ino=1048721 res=0 errno=0 [ 1083.045261][T14775] FAT-fs (loop2): error, corrupted directory (invalid entries) [ 1083.191443][T14768] FAT-fs (loop4): error, fat_free_clusters: deleting FAT entry beyond EOF [ 1083.209816][T14777] loop0: detected capacity change from 0 to 256 [ 1083.381890][T14777] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0xf6e0d861, utbl_chksum : 0xe619d30d) [ 1083.855529][T14776] loop5: detected capacity change from 0 to 4096 [ 1083.924811][T11268] Bluetooth: hci3: Opcode 0x0c03 failed: -110 [ 1084.289424][T14783] loop2: detected capacity change from 0 to 1024 [ 1084.374065][T14783] EXT4-fs: Ignoring removed nomblk_io_submit option [ 1084.499777][T14783] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1084.663106][T14790] loop0: detected capacity change from 0 to 512 [ 1084.713351][ T30] audit: type=1800 audit(1752506305.512:124): pid=14783 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.3863" name="file1" dev="loop2" ino=15 res=0 errno=0 [ 1084.876568][T14790] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1084.896189][T14790] ext4 filesystem being mounted at /799/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 1085.146631][T14790] EXT4-fs error (device loop0): ext4_do_update_inode:5568: inode #2: comm syz.0.3865: corrupted inode contents [ 1085.286166][T14790] EXT4-fs (loop0): Remounting filesystem read-only [ 1085.324457][ T5826] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1085.867335][ T5815] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1085.894200][ T7311] Quota error (device loop0): dquot_write_dquot: Can't write quota structure (error -30). Quota may get out of sync! [ 1086.609239][T14797] loop4: detected capacity change from 0 to 4096 [ 1086.891472][T14797] ntfs3(loop4): ino=1a, mi_enum_attr [ 1086.911005][T14797] ntfs3(loop4): Mark volume as dirty due to NTFS errors [ 1087.228715][T14808] loop2: detected capacity change from 0 to 256 [ 1087.310308][T14808] FAT-fs (loop2): bogus logical sector size 58182 [ 1087.317904][T14808] FAT-fs (loop2): Can't find a valid FAT filesystem [ 1087.976579][T14813] tipc: Enabling of bearer rejected, media not registered [ 1088.626637][T14821] loop0: detected capacity change from 0 to 128 [ 1088.932602][T14823] loop3: detected capacity change from 0 to 16 [ 1089.153878][T14823] erofs (device loop3): mounted with root inode @ nid 36. [ 1089.335379][ T30] audit: type=1800 audit(1752506310.122:125): pid=14823 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.3881" name="file1" dev="loop3" ino=86 res=0 errno=0 [ 1089.876384][ T1286] ieee802154 phy0 wpan0: encryption failed: -22 [ 1089.883637][ T1286] ieee802154 phy1 wpan1: encryption failed: -22 [ 1091.306250][T14843] loop5: detected capacity change from 0 to 1024 [ 1091.422176][T14851] loop0: detected capacity change from 0 to 64 [ 1091.478017][T14850] loop2: detected capacity change from 0 to 128 [ 1091.540893][T14850] UDF-fs: error (device loop2): udf_read_tagged: read failed, block=256, location=256 [ 1091.698623][T14850] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 1092.587180][ T5870] usb 4-1: new high-speed USB device number 15 using dummy_hcd [ 1092.874902][ T5870] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 1092.889337][ T5870] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 1092.900147][ T5870] usb 4-1: New USB device found, idVendor=04b4, idProduct=de61, bcdDevice= 0.00 [ 1092.911805][ T5870] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1092.996554][ T5870] usb 4-1: config 0 descriptor?? [ 1093.658225][ T5870] cypress 0003:04B4:DE61.000E: unknown main item tag 0x0 [ 1093.666625][ T5870] cypress 0003:04B4:DE61.000E: unknown main item tag 0x0 [ 1093.677235][ T5870] cypress 0003:04B4:DE61.000E: unknown main item tag 0x0 [ 1093.684847][ T5870] cypress 0003:04B4:DE61.000E: unknown main item tag 0x0 [ 1093.692268][ T5870] cypress 0003:04B4:DE61.000E: unknown main item tag 0x0 [ 1093.700038][ T5870] cypress 0003:04B4:DE61.000E: unknown main item tag 0x0 [ 1093.710404][ T5870] cypress 0003:04B4:DE61.000E: unknown main item tag 0x0 [ 1093.923684][ T5870] cypress 0003:04B4:DE61.000E: hidraw0: USB HID v0.00 Device [HID 04b4:de61] on usb-dummy_hcd.3-1/input0 [ 1094.099923][ T5870] usb 4-1: USB disconnect, device number 15 [ 1094.839999][T14870] fido_id[14870]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.3/usb4/report_descriptor': No such file or directory [ 1095.419280][T14872] loop4: detected capacity change from 0 to 4096 [ 1096.087755][T14888] loop5: detected capacity change from 0 to 256 [ 1096.190179][T14888] exFAT-fs (loop5): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 1096.203433][T14888] exFAT-fs (loop5): Medium has reported failures. Some data may be lost. [ 1096.447004][T14888] exFAT-fs (loop5): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d) [ 1096.955018][T11268] Bluetooth: hci2: Malformed LE Event: 0x0d [ 1097.276743][ T30] audit: type=1326 audit(1752506318.062:126): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14895 comm="syz.3.3916" exe="/root/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf70ce539 code=0x0 [ 1098.502436][T14907] loop0: detected capacity change from 0 to 1024 [ 1098.526483][T14911] sg_write: data in/out 209152/1 bytes for SCSI command 0xf2-- guessing data in; [ 1098.526483][T14911] program syz.4.3922 not setting count and/or reply_len properly [ 1100.943939][T14924] loop0: detected capacity change from 0 to 4096 [ 1102.750857][T14946] pim6reg: entered allmulticast mode [ 1103.354413][ T30] audit: type=1326 audit(1752506324.152:127): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14953 comm="syz.5.3943" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ae539 code=0x7ffc0000 [ 1103.489447][ T30] audit: type=1326 audit(1752506324.232:128): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14953 comm="syz.5.3943" exe="/root/syz-executor" sig=0 arch=40000003 syscall=322 compat=1 ip=0xf70ae539 code=0x7ffc0000 [ 1103.515661][ T30] audit: type=1326 audit(1752506324.232:129): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14953 comm="syz.5.3943" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ae539 code=0x7ffc0000 [ 1103.538513][ T30] audit: type=1326 audit(1752506324.232:130): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14953 comm="syz.5.3943" exe="/root/syz-executor" sig=0 arch=40000003 syscall=326 compat=1 ip=0xf70ae539 code=0x7ffc0000 [ 1103.564250][ T30] audit: type=1326 audit(1752506324.232:131): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14953 comm="syz.5.3943" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ae539 code=0x7ffc0000 [ 1105.133439][T10454] usb 4-1: new high-speed USB device number 16 using dummy_hcd [ 1105.136913][T14973] loop5: detected capacity change from 0 to 512 [ 1105.288376][T14973] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode [ 1105.364486][T10454] usb 4-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7 [ 1105.376279][T10454] usb 4-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47 [ 1105.386698][T10454] usb 4-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d [ 1105.396317][T10454] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1105.414225][T14973] EXT4-fs error (device loop5): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 191 vs 220 free clusters [ 1105.488518][T14970] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22 [ 1105.496875][T14973] EXT4-fs (loop5): 1 truncate cleaned up [ 1105.506954][T14973] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1105.599174][T10454] usb 4-1: Quirk or no altset; falling back to MIDI 1.0 [ 1105.684614][T14968] loop2: detected capacity change from 0 to 4096 [ 1105.721976][ T30] audit: type=1800 audit(1752506326.512:132): pid=14973 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.3952" name="bus" dev="loop5" ino=18 res=0 errno=0 [ 1106.224284][T10454] usb 4-1: USB disconnect, device number 16 [ 1106.473531][T13178] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1106.617755][T14982] loop0: detected capacity change from 0 to 512 [ 1106.696033][T12700] udevd[12700]: error opening ATTR{/sys/devices/platform/dummy_hcd.3/usb4/4-1/4-1:27.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 1106.936350][T14982] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1106.951073][T14982] ext4 filesystem being mounted at /817/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 1107.206827][T14982] EXT4-fs error (device loop0): ext4_do_update_inode:5568: inode #2: comm syz.0.3956: corrupted inode contents [ 1107.301576][T14982] EXT4-fs error (device loop0): ext4_dirty_inode:6459: inode #2: comm syz.0.3956: mark_inode_dirty error [ 1107.427969][T14982] EXT4-fs error (device loop0): ext4_do_update_inode:5568: inode #2: comm syz.0.3956: corrupted inode contents [ 1107.629674][T14990] EXT4-fs error (device loop0): ext4_do_update_inode:5568: inode #2: comm syz.0.3956: corrupted inode contents [ 1107.703598][T14990] EXT4-fs error (device loop0): ext4_dirty_inode:6459: inode #2: comm syz.0.3956: mark_inode_dirty error [ 1107.737053][T14990] EXT4-fs error (device loop0): ext4_do_update_inode:5568: inode #2: comm syz.0.3956: corrupted inode contents [ 1107.822115][T14990] EXT4-fs error (device loop0): __ext4_ext_dirty:206: inode #2: comm syz.0.3956: mark_inode_dirty error [ 1107.881212][T14990] EXT4-fs error (device loop0): ext4_do_update_inode:5568: inode #2: comm syz.0.3956: corrupted inode contents [ 1107.920178][T14995] loop2: detected capacity change from 0 to 256 [ 1107.948601][T14990] EXT4-fs error (device loop0): ext4_dirty_inode:6459: inode #2: comm syz.0.3956: mark_inode_dirty error [ 1108.379798][ T5815] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1109.125910][ T30] audit: type=1326 audit(1752506329.922:133): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15001 comm="syz.0.3962" exe="/root/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf70fe539 code=0x0 [ 1110.723704][T15020] sg_write: data in/out 209152/1 bytes for SCSI command 0xf2-- guessing data in; [ 1110.723704][T15020] program syz.2.3972 not setting count and/or reply_len properly [ 1111.427886][T15022] loop5: detected capacity change from 0 to 2048 [ 1111.875889][T15028] loop0: detected capacity change from 0 to 1024 [ 1111.919722][T15030] loop2: detected capacity change from 0 to 24 [ 1112.170192][T15028] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1112.398132][T15028] EXT4-fs error (device loop0): ext4_xattr_inode_iget:437: inode #11: comm syz.0.3976: missing EA_INODE flag [ 1112.484256][T15028] EXT4-fs (loop0): Remounting filesystem read-only [ 1112.629841][T15035] loop4: detected capacity change from 0 to 256 [ 1112.855859][ T5815] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1112.932816][T15037] loop3: detected capacity change from 0 to 512 [ 1113.097894][T15037] EXT4-fs error (device loop3): ext4_orphan_get:1393: inode #15: comm syz.3.3979: casefold flag without casefold feature [ 1113.113655][T15040] loop5: detected capacity change from 0 to 1024 [ 1113.131875][T15040] EXT4-fs: Ignoring removed nobh option [ 1113.138095][T15040] EXT4-fs: inline encryption not supported [ 1113.224428][T15037] EXT4-fs error (device loop3): ext4_orphan_get:1398: comm syz.3.3979: couldn't read orphan inode 15 (err -117) [ 1113.320849][T15037] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1113.358002][T15040] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1113.630774][ T5814] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1113.838505][T15046] loop0: detected capacity change from 0 to 64 [ 1114.339185][T13178] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1114.615490][T15053] loop3: detected capacity change from 0 to 256 [ 1115.075687][T15053] FAT-fs (loop3): Directory bread(block 64) failed [ 1115.082807][T15053] FAT-fs (loop3): Directory bread(block 65) failed [ 1115.091396][T15053] FAT-fs (loop3): Directory bread(block 66) failed [ 1115.099433][T15053] FAT-fs (loop3): Directory bread(block 67) failed [ 1115.106647][T15053] FAT-fs (loop3): Directory bread(block 68) failed [ 1115.113783][T15053] FAT-fs (loop3): Directory bread(block 69) failed [ 1115.120947][T15053] FAT-fs (loop3): Directory bread(block 70) failed [ 1115.128015][T15053] FAT-fs (loop3): Directory bread(block 71) failed [ 1115.136320][T15053] FAT-fs (loop3): Directory bread(block 72) failed [ 1115.143708][T15053] FAT-fs (loop3): Directory bread(block 73) failed [ 1115.322271][T15057] sg_write: data in/out 209152/1 bytes for SCSI command 0xf2-- guessing data in; [ 1115.322271][T15057] program syz.0.3987 not setting count and/or reply_len properly [ 1117.015141][T15076] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3994'. [ 1117.610549][T15084] loop3: detected capacity change from 0 to 64 [ 1117.759182][T15083] netlink: 'syz.5.3999': attribute type 7 has an invalid length. [ 1117.995809][T15086] netlink: 4 bytes leftover after parsing attributes in process `syz.4.4000'. [ 1118.007885][T15086] netlink: 4 bytes leftover after parsing attributes in process `syz.4.4000'. [ 1118.020689][T15086] netlink: 4 bytes leftover after parsing attributes in process `syz.4.4000'. [ 1118.255637][T15088] loop0: detected capacity change from 0 to 16 [ 1118.303619][T15088] erofs (device loop0): unsupported datalayout 7 of nid 36 [ 1118.607963][T15092] futex_wake_op: syz.5.4003 tries to shift op by 35; fix this program [ 1119.160707][T15096] loop3: detected capacity change from 0 to 512 [ 1119.246795][T15096] EXT4-fs: Ignoring removed i_version option [ 1119.254960][T15096] EXT4-fs: Ignoring removed mblk_io_submit option [ 1119.403947][T15096] EXT4-fs (loop3): Test dummy encryption mode enabled [ 1119.495882][T15096] EXT4-fs (loop3): orphan cleanup on readonly fs [ 1119.502809][T15096] EXT4-fs error (device loop3): ext4_orphan_get:1393: comm syz.3.4005: inode #13: comm syz.3.4005: iget: illegal inode # [ 1119.594397][T15096] EXT4-fs (loop3): Remounting filesystem read-only [ 1119.604510][T15096] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none. [ 1119.738896][T15103] loop5: detected capacity change from 0 to 64 [ 1120.018750][T15103] hfs: keylen 1794 too large [ 1120.106499][T15106] hfs: keylen 1794 too large [ 1120.179609][T15105] loop4: detected capacity change from 0 to 512 [ 1120.264390][ T5814] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1120.408486][T15105] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1120.425157][T15105] ext4 filesystem being mounted at /800/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 1120.599413][ T5881] usb 3-1: [UEAGLE-ATM] firmware is not available [ 1120.989724][T15112] loop0: detected capacity change from 0 to 2048 [ 1121.170896][ T5819] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1121.214857][T15112] UDF-fs: error (device loop0): udf_read_tagged: tag version 0x0000 != 0x0002 || 0x0003, block 0 [ 1121.226027][T15112] UDF-fs: warning (device loop0): udf_load_vrs: No anchor found [ 1121.234159][T15112] UDF-fs: Scanning with blocksize 512 failed [ 1121.450118][T15112] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 1122.170380][T15122] loop4: detected capacity change from 0 to 1024 [ 1122.344556][T15125] netlink: 'syz.3.4016': attribute type 1 has an invalid length. [ 1122.884158][ T7311] hfsplus: b-tree write err: -5, ino 4 [ 1123.482013][T15137] netlink: 'syz.4.4023': attribute type 3 has an invalid length. [ 1124.631287][T15146] loop5: detected capacity change from 0 to 1764 [ 1126.234076][T15166] netlink: 'syz.5.4033': attribute type 11 has an invalid length. [ 1126.402646][ T5881] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0 [ 1126.411007][ T5881] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0 [ 1126.420376][ T5881] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0 [ 1126.429281][ T5881] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0 [ 1126.437174][ T5881] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0 [ 1126.445166][ T5881] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0 [ 1126.453131][ T5881] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0 [ 1126.460890][ T5881] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0 [ 1126.468947][ T5881] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0 [ 1126.477123][ T5881] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0 [ 1126.485029][ T5881] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0 [ 1126.492779][ T5881] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0 [ 1126.500714][ T5881] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0 [ 1126.510136][ T5881] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0 [ 1126.518387][ T5881] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0 [ 1126.527665][ T5881] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0 [ 1126.536002][ T5881] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0 [ 1126.543926][ T5881] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0 [ 1126.551711][ T5881] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0 [ 1126.559581][ T5881] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0 [ 1126.567456][ T5881] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0 [ 1126.575380][ T5881] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0 [ 1126.583260][ T5881] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0 [ 1126.591061][ T5881] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0 [ 1126.599521][ T5881] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0 [ 1126.608476][ T5881] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0 [ 1126.616722][ T5881] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0 [ 1126.626369][ T5881] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0 [ 1126.634611][ T5881] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0 [ 1126.642383][ T5881] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0 [ 1126.650318][ T5881] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0 [ 1126.658359][ T5881] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0 [ 1126.666219][ T5881] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0 [ 1126.674131][ T5881] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0 [ 1126.681883][ T5881] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0 [ 1126.689796][ T5881] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0 [ 1126.697768][ T5881] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0 [ 1126.705667][ T5881] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0 [ 1126.715127][ T5881] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0 [ 1126.723562][ T5881] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0 [ 1126.732415][ T5881] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0 [ 1126.740688][ T5881] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0 [ 1126.748581][ T5881] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0 [ 1126.756509][ T5881] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0 [ 1126.764445][ T5881] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0 [ 1126.772212][ T5881] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0 [ 1126.780296][ T5881] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0 [ 1126.788169][ T5881] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0 [ 1126.796072][ T5881] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0 [ 1126.805859][ T5881] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0 [ 1126.815273][ T5881] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0 [ 1126.823522][ T5881] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0 [ 1126.832699][ T5881] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0 [ 1126.841001][ T5881] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0 [ 1126.849285][ T5881] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0 [ 1126.857193][ T5881] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0 [ 1126.865106][ T5881] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0 [ 1126.872878][ T5881] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0 [ 1126.883331][ T5881] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0 [ 1126.891119][ T5881] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0 [ 1126.899089][ T5881] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0 [ 1126.906980][ T5881] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0 [ 1126.915926][ T5881] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0 [ 1126.924236][ T5881] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0 [ 1126.933414][ T5881] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0 [ 1126.941184][ T5881] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0 [ 1126.949899][ T5881] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0 [ 1126.957755][ T5881] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0 [ 1126.965765][ T5881] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0 [ 1126.973717][ T5881] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0 [ 1126.981642][ T5881] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0 [ 1126.989530][ T5881] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0 [ 1126.997391][ T5881] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0 [ 1127.005264][ T5881] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0 [ 1127.014406][ T5881] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0 [ 1127.022160][ T5881] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0 [ 1127.030472][ T5881] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0 [ 1127.041065][ T5881] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0 [ 1127.049335][ T5881] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0 [ 1127.057228][ T5881] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0 [ 1127.065267][ T5881] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0 [ 1127.073162][ T5881] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0 [ 1127.080915][ T5881] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0 [ 1127.265487][ T5881] hid-generic 0000:0000:0000.000F: hidraw0: HID v0.03 Device [syz1] on syz1 [ 1127.711301][T15177] loop2: detected capacity change from 0 to 256 [ 1127.759562][T15177] exfat: Deprecated parameter 'utf8' [ 1127.765771][T15177] exfat: Deprecated parameter 'utf8' [ 1128.117629][T15177] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0x23a77120, utbl_chksum : 0xe619d30d) [ 1128.150502][T15175] fido_id[15175]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory [ 1128.396985][T15182] loop4: detected capacity change from 0 to 512 [ 1128.588971][T15187] loop0: detected capacity change from 0 to 256 [ 1128.684789][T15182] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1128.698505][T15182] ext4 filesystem being mounted at /806/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 1128.868962][T15182] EXT4-fs error (device loop4): ext4_do_update_inode:5568: inode #2: comm syz.4.4039: corrupted inode contents [ 1128.945006][T15182] EXT4-fs error (device loop4): ext4_dirty_inode:6459: inode #2: comm syz.4.4039: mark_inode_dirty error [ 1128.990925][T15182] EXT4-fs error (device loop4): ext4_do_update_inode:5568: inode #2: comm syz.4.4039: corrupted inode contents [ 1129.099448][T15194] EXT4-fs error (device loop4): ext4_do_update_inode:5568: inode #2: comm syz.4.4039: corrupted inode contents [ 1129.139097][T15194] EXT4-fs error (device loop4): ext4_dirty_inode:6459: inode #2: comm syz.4.4039: mark_inode_dirty error [ 1129.264920][T15194] EXT4-fs error (device loop4): ext4_do_update_inode:5568: inode #2: comm syz.4.4039: corrupted inode contents [ 1129.279116][T15187] FAT-fs (loop0): Directory bread(block 64) failed [ 1129.288278][T15187] FAT-fs (loop0): Directory bread(block 65) failed [ 1129.295749][T15187] FAT-fs (loop0): Directory bread(block 66) failed [ 1129.302618][T15187] FAT-fs (loop0): Directory bread(block 67) failed [ 1129.309783][T15187] FAT-fs (loop0): Directory bread(block 68) failed [ 1129.316704][T15187] FAT-fs (loop0): Directory bread(block 69) failed [ 1129.323842][T15187] FAT-fs (loop0): Directory bread(block 70) failed [ 1129.330657][T15187] FAT-fs (loop0): Directory bread(block 71) failed [ 1129.337931][T15187] FAT-fs (loop0): Directory bread(block 72) failed [ 1129.345385][T15187] FAT-fs (loop0): Directory bread(block 73) failed [ 1129.408542][T15194] EXT4-fs error (device loop4): __ext4_ext_dirty:206: inode #2: comm syz.4.4039: mark_inode_dirty error [ 1129.470050][T15194] EXT4-fs error (device loop4): ext4_do_update_inode:5568: inode #2: comm syz.4.4039: corrupted inode contents [ 1129.565461][T15194] EXT4-fs error (device loop4): ext4_dirty_inode:6459: inode #2: comm syz.4.4039: mark_inode_dirty error [ 1129.704302][T15199] loop2: detected capacity change from 0 to 512 [ 1129.917866][T15199] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1129.936701][T15199] ext4 filesystem being mounted at /780/file2 supports timestamps until 2038-01-19 (0x7fffffff) [ 1130.047578][ T5819] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1130.235117][T15205] loop3: detected capacity change from 0 to 512 [ 1130.254463][T15199] EXT4-fs error (device loop2): ext4_do_update_inode:5568: inode #4: comm syz.2.4044: corrupted inode contents [ 1130.362401][T15205] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 1130.394340][T15199] EXT4-fs error (device loop2): ext4_dirty_inode:6459: inode #4: comm syz.2.4044: mark_inode_dirty error [ 1130.544756][T15199] EXT4-fs error (device loop2): ext4_do_update_inode:5568: inode #4: comm syz.2.4044: corrupted inode contents [ 1130.650702][T15210] loop5: detected capacity change from 0 to 64 [ 1130.677224][T15205] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a843c018, mo2=0002] [ 1130.686712][T15199] EXT4-fs error (device loop2): __ext4_ext_dirty:206: inode #4: comm syz.2.4044: mark_inode_dirty error [ 1130.733927][T15199] Quota error (device loop2): write_blk: dquota write failed [ 1130.737907][T15205] System zones: 0-2, 18-18 [ 1130.741803][T15199] Quota error (device loop2): qtree_write_dquot: Error -117 occurred while creating quota [ 1130.741837][T15205] , 34-34 [ 1130.742127][T15199] EXT4-fs error (device loop2): ext4_acquire_dquot:6933: comm syz.2.4044: Failed to acquire dquot type 1 [ 1130.746727][T15205] [ 1130.843701][T15206] EXT4-fs error (device loop2): ext4_do_update_inode:5568: inode #4: comm syz.2.4044: corrupted inode contents [ 1130.866368][T15205] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1130.880223][T15205] ext4 filesystem being mounted at /820/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 1130.967232][T15206] EXT4-fs error (device loop2): ext4_dirty_inode:6459: inode #4: comm syz.2.4044: mark_inode_dirty error [ 1131.046826][T15206] EXT4-fs error (device loop2): ext4_do_update_inode:5568: inode #4: comm syz.2.4044: corrupted inode contents [ 1131.127156][T15206] EXT4-fs error (device loop2): __ext4_ext_dirty:206: inode #4: comm syz.2.4044: mark_inode_dirty error [ 1131.291174][T15206] Quota error (device loop2): write_blk: dquota write failed [ 1131.299622][T15206] Quota error (device loop2): find_free_dqentry: Can't write quota data block 5 [ 1131.312744][T15206] Quota error (device loop2): qtree_write_dquot: Error -117 occurred while creating quota [ 1131.324711][T15206] EXT4-fs error (device loop2): ext4_acquire_dquot:6933: comm syz.2.4044: Failed to acquire dquot type 1 [ 1131.521251][ T5814] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1131.871671][ T5826] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1133.426308][T15232] netlink: 'syz.0.4057': attribute type 11 has an invalid length. [ 1133.555937][T15235] loop3: detected capacity change from 0 to 256 [ 1133.621733][T15235] exFAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 1133.633107][T15235] exFAT-fs (loop3): Medium has reported failures. Some data may be lost. [ 1133.872005][T15235] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d) [ 1134.554391][T15245] loop5: detected capacity change from 0 to 128 [ 1134.654951][T15245] FAT-fs (loop5): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 1134.857812][T15245] FAT-fs (loop5): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 1135.168933][T15243] loop4: detected capacity change from 0 to 4096 [ 1135.257744][T15243] ntfs3(loop4): Different NTFS sector size (1024) and media sector size (512). [ 1135.368304][T15250] netlink: 'syz.2.4066': attribute type 5 has an invalid length. [ 1135.585257][T15243] ntfs3(loop4): Mark volume as dirty due to NTFS errors [ 1137.818560][T15261] loop0: detected capacity change from 0 to 4096 [ 1137.838386][ T30] audit: type=1326 audit(1752506358.622:134): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15270 comm="syz.4.4076" exe="/root/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf711e539 code=0x0 [ 1137.920970][T15261] ntfs3(loop0): Different NTFS sector size (4096) and media sector size (512). [ 1138.303715][T15261] ntfs3(loop0): ino=19, mi_enum_attr [ 1138.755601][T15273] loop2: detected capacity change from 0 to 4096 [ 1139.068084][T15273] NILFS error (device loop2): nilfs_bmap_lookup_at_level: broken bmap (inode number=6) [ 1139.078503][T15281] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 1139.129562][T15273] Remounting filesystem read-only [ 1139.145799][T15282] loop0: detected capacity change from 0 to 47 [ 1139.295833][T15282] MINIX-fs: deleted inode referenced: 9 [ 1139.340027][T15282] MINIX-fs: deleted inode referenced: 9 [ 1141.347290][T15305] loop2: detected capacity change from 0 to 16 [ 1141.421290][T15305] erofs (device loop2): mounted with root inode @ nid 36. [ 1142.205529][T15312] loop4: detected capacity change from 0 to 512 [ 1142.242771][T15312] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 1142.332563][T15312] EXT4-fs (loop4): 1 truncate cleaned up [ 1142.341397][T15312] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1142.557096][T15321] tipc: Enabling of bearer rejected, failed to enable media [ 1142.765143][T15314] loop3: detected capacity change from 0 to 4096 [ 1142.906233][ T5819] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1143.667319][T15314] ntfs3(loop3): failed to convert "0080" to cp862 [ 1143.737174][T15314] ntfs3(loop3): failed to convert name for inode 1e. [ 1143.767523][T15314] ntfs3(loop3): ino=1f, mi_enum_attr [ 1143.773580][T15314] ntfs3(loop3): Mark volume as dirty due to NTFS errors [ 1146.245561][T15355] loop0: detected capacity change from 0 to 512 [ 1146.336007][T15355] EXT4-fs: Ignoring removed mblk_io_submit option [ 1146.431270][T15355] EXT4-fs (loop0): Cannot turn on journaled quota: type 0: error -13 [ 1146.465901][T15355] EXT4-fs error (device loop0): ext4_clear_blocks:876: inode #13: comm syz.0.4110: attempt to clear invalid blocks 2 len 1 [ 1146.605727][T15355] EXT4-fs (loop0): Remounting filesystem read-only [ 1146.622840][T15355] EXT4-fs (loop0): 1 truncate cleaned up [ 1146.662697][T15361] 9pnet: Limiting 'msize' to 1048576 as this is the maximum supported by transport fd [ 1146.676935][T15355] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1147.019375][T15356] loop3: detected capacity change from 0 to 4096 [ 1147.094053][T15356] ntfs3(loop3): Different NTFS sector size (4096) and media sector size (512). [ 1147.190352][ T5815] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1147.545179][T15356] ntfs3(loop3): Failed to load $Extend (-22). [ 1147.551732][T15356] ntfs3(loop3): Failed to initialize $Extend. [ 1147.645009][T15360] loop2: detected capacity change from 0 to 4096 [ 1148.493811][T15360] ntfs3(loop2): ino=b, mi_enum_attr [ 1148.499382][T15360] ntfs3(loop2): Mark volume as dirty due to NTFS errors [ 1148.616988][T15360] ntfs3(loop2): Failed to load $Extend (-22). [ 1148.624817][T15360] ntfs3(loop2): Failed to initialize $Extend. [ 1148.918579][T15360] ntfs3(loop2): ino=1e, "file1" attr_set_size [ 1149.230257][T15376] [U] [ 1150.007890][T15384] netlink: 96 bytes leftover after parsing attributes in process `syz.2.4122'. [ 1150.017719][T15384] netlink: 96 bytes leftover after parsing attributes in process `syz.2.4122'. [ 1151.308187][ T1286] ieee802154 phy0 wpan0: encryption failed: -22 [ 1151.315154][ T1286] ieee802154 phy1 wpan1: encryption failed: -22 [ 1152.045186][T15396] loop2: detected capacity change from 0 to 4096 [ 1152.098834][T15396] ntfs3(loop2): Different NTFS sector size (4096) and media sector size (512). [ 1152.525143][T15396] ntfs3(loop2): ino=19, mi_enum_attr [ 1152.532285][T15396] ntfs3(loop2): Mark volume as dirty due to NTFS errors [ 1153.121665][T15412] loop4: detected capacity change from 0 to 2048 [ 1153.352673][T15415] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 1154.021529][T15415] NILFS (loop4): vblocknr = 18 has abnormal lifetime: start cno (= 504403158265495554) > current cno (= 3) [ 1154.036711][T15415] NILFS error (device loop4): nilfs_bmap_propagate: broken bmap (inode number=2) [ 1154.117771][T15415] Remounting filesystem read-only [ 1154.140806][ T5819] NILFS (loop4): disposed unprocessed dirty file(s) when stopping log writer [ 1156.065199][T15438] pimreg: entered allmulticast mode [ 1156.602425][T15443] netlink: 8 bytes leftover after parsing attributes in process `syz.2.4148'. [ 1157.608267][T15457] loop5: detected capacity change from 0 to 256 [ 1157.815907][T15449] loop4: detected capacity change from 0 to 4096 [ 1157.875044][T15449] ntfs3(loop4): Different NTFS sector size (4096) and media sector size (512). [ 1157.892158][T15457] exFAT-fs (loop5): failed to load upcase table (idx : 0x000104d0, chksum : 0xda218cab, utbl_chksum : 0xe619d30d) [ 1158.616057][T15449] ntfs3(loop4): Failed to initialize $Extend/$Reparse. [ 1158.717826][T15449] ntfs3(loop4): ino=1e, mi_enum_attr [ 1158.723954][T15449] ntfs3(loop4): ino=1e, mi_enum_attr [ 1160.033965][ T5881] usb 4-1: new high-speed USB device number 17 using dummy_hcd [ 1160.305803][ T5881] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 1160.317304][ T5881] usb 4-1: New USB device found, idVendor=172f, idProduct=0500, bcdDevice= 0.00 [ 1160.327297][ T5881] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1160.477672][ T5881] usb 4-1: config 0 descriptor?? [ 1161.038006][ T5881] waltop 0003:172F:0500.0010: item fetching failed at offset 2/5 [ 1161.129219][ T5881] waltop 0003:172F:0500.0010: probe with driver waltop failed with error -22 [ 1161.226139][ T5881] usb 4-1: USB disconnect, device number 17 [ 1162.612031][T15498] loop3: detected capacity change from 0 to 256 [ 1163.723375][ T5881] usb 3-1: new high-speed USB device number 20 using dummy_hcd [ 1163.820488][T15509] netlink: 24 bytes leftover after parsing attributes in process `syz.3.4180'. [ 1163.948015][ T5881] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 1163.960018][ T5881] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 1163.970447][ T5881] usb 3-1: New USB device found, idVendor=1532, idProduct=010e, bcdDevice= 0.00 [ 1163.981331][ T5881] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1164.160984][ T5881] usb 3-1: config 0 descriptor?? [ 1164.505733][T15516] netlink: 4 bytes leftover after parsing attributes in process `syz.5.4183'. [ 1164.563823][T15517] netlink: 4 bytes leftover after parsing attributes in process `syz.5.4183'. [ 1164.893645][ T5881] razer 0003:1532:010E.0011: failed to enable macro keys: -71 [ 1164.936104][ T5881] razer 0003:1532:010E.0011: hidraw0: USB HID v0.00 Device [HID 1532:010e] on usb-dummy_hcd.2-1/input0 [ 1164.971939][T15520] loop0: detected capacity change from 0 to 256 [ 1165.020662][T15520] exfat: Deprecated parameter 'namecase' [ 1165.036657][ T5881] usb 3-1: USB disconnect, device number 20 [ 1165.045976][T15520] exfat: Deprecated parameter 'utf8' [ 1165.195805][T15523] loop4: detected capacity change from 0 to 256 [ 1165.202631][T15520] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0xdc42f586, utbl_chksum : 0xe619d30d) [ 1165.257466][T15523] exfat: Deprecated parameter 'namecase' [ 1165.450861][T15523] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0x36dfe6b4, utbl_chksum : 0xe619d30d) [ 1166.811477][T15529] fido_id[15529]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.2/usb3/report_descriptor': No such file or directory [ 1167.623477][T15539] loop3: detected capacity change from 0 to 2048 [ 1167.820396][T15547] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 1168.901377][ T30] audit: type=1800 audit(1752506389.682:135): pid=15557 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.5.4200" name="SYSV00000000" dev="hugetlbfs" ino=0 res=0 errno=0 [ 1169.077880][T15559] loop3: detected capacity change from 0 to 256 [ 1170.741281][T15574] loop2: detected capacity change from 0 to 256 [ 1171.176094][T15576] loop3: detected capacity change from 0 to 1024 [ 1171.305885][T15574] FAT-fs (loop2): Directory bread(block 64) failed [ 1171.312767][T15574] FAT-fs (loop2): Directory bread(block 65) failed [ 1171.320164][T15574] FAT-fs (loop2): Directory bread(block 66) failed [ 1171.327291][T15574] FAT-fs (loop2): Directory bread(block 67) failed [ 1171.334588][T15574] FAT-fs (loop2): Directory bread(block 68) failed [ 1171.341431][T15574] FAT-fs (loop2): Directory bread(block 69) failed [ 1171.348606][T15574] FAT-fs (loop2): Directory bread(block 70) failed [ 1171.356637][T15574] FAT-fs (loop2): Directory bread(block 71) failed [ 1171.364199][T15574] FAT-fs (loop2): Directory bread(block 72) failed [ 1171.371005][T15574] FAT-fs (loop2): Directory bread(block 73) failed [ 1171.454110][T15576] hfsplus: extend alloc file! (8192,63991,0) [ 1172.311291][T15580] loop0: detected capacity change from 0 to 4096 [ 1172.643709][T15587] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 1172.897053][T15589] binder: 15588:15589 ioctl c018620b 80000240 returned -14 [ 1174.593525][T15603] bpf: Bad value for 'gid' [ 1174.686799][T15605] netlink: 8 bytes leftover after parsing attributes in process `syz.3.4223'. [ 1174.803130][T15605] macvlan2: entered promiscuous mode [ 1174.808895][T15605] macvlan2: entered allmulticast mode [ 1174.815043][T15605] erspan0: entered allmulticast mode [ 1176.340216][T15623] loop4: detected capacity change from 0 to 64 [ 1177.592807][T15632] loop5: detected capacity change from 0 to 512 [ 1177.896422][T15632] Quota error (device loop5): do_check_range: Getting dqdh_prev_free 1536 out of range 0-5 [ 1177.912090][T15632] Quota error (device loop5): qtree_write_dquot: Error -117 occurred while creating quota [ 1177.923286][T15632] EXT4-fs error (device loop5): ext4_acquire_dquot:6933: comm syz.5.4235: Failed to acquire dquot type 1 [ 1178.056918][T15632] EXT4-fs (loop5): 1 truncate cleaned up [ 1178.065508][T15632] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1178.078687][T15632] ext4 filesystem being mounted at /174/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 1178.610768][T15647] loop4: detected capacity change from 0 to 1024 [ 1178.790415][T15647] EXT4-fs (loop4): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none. [ 1178.796833][T13178] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1178.803356][T15647] ext4 filesystem being mounted at /844/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 1179.021135][T15647] EXT4-fs error (device loop4): ext4_map_blocks:816: inode #15: block 3: comm syz.4.4241: lblock 3 mapped to illegal pblock 3 (length 3) [ 1179.251643][T15647] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 3 with max blocks 3 with error 117 [ 1179.275166][T15647] EXT4-fs (loop4): This should not happen!! Data will be lost [ 1179.275166][T15647] [ 1179.395122][T15651] loop3: detected capacity change from 0 to 2048 [ 1179.616484][T15651] loop3: p1 < > p3 p4 < > [ 1179.674739][T15651] loop3: p3 start 4284289 is beyond EOD, truncated [ 1179.781778][T15660] netlink: 1 bytes leftover after parsing attributes in process `syz.5.4245'. [ 1179.911789][ T14] EXT4-fs error (device loop4): ext4_map_blocks:816: inode #15: block 8: comm kworker/u8:1: lblock 8 mapped to illegal pblock 8 (length 8) [ 1180.018801][ T14] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 8 with max blocks 8 with error 117 [ 1180.031763][ T14] EXT4-fs (loop4): This should not happen!! Data will be lost [ 1180.031763][ T14] [ 1180.151216][ T5819] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0006-0000-000000000000. [ 1180.308302][T15662] loop0: detected capacity change from 0 to 2048 [ 1180.466852][T15665] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 1181.005570][T15668] sch_tbf: burst 1 is lower than device ip6tnl0 mtu (1452) ! [ 1182.033375][T15677] loop4: detected capacity change from 0 to 256 [ 1182.248061][T15677] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0x3b112d97, utbl_chksum : 0xe619d30d) [ 1185.390112][T15715] loop2: detected capacity change from 0 to 256 [ 1185.464686][T15717] netdevsim netdevsim5: Firmware load for '../file0' refused, path contains '..' component [ 1186.354578][T15724] batadv0: entered promiscuous mode [ 1186.367452][T15724] 8021q: adding VLAN 0 to HW filter on device macvlan2 [ 1186.380408][T15724] batadv0: left promiscuous mode [ 1187.048831][T15731] ieee802154 phy0 wpan0: encryption failed: -22 [ 1187.523940][ T5817] Bluetooth: hci0: command 0x0406 tx timeout [ 1187.599843][T15738] loop3: detected capacity change from 0 to 256 [ 1187.725935][T15738] UDF-fs: error (device loop3): udf_read_tagged: read failed, block=256, location=256 [ 1187.808871][T15738] UDF-fs: error (device loop3): udf_read_tagged: read failed, block=512, location=512 [ 1187.819120][T15738] UDF-fs: warning (device loop3): udf_load_vrs: No anchor found [ 1187.827236][T15738] UDF-fs: Scanning with blocksize 512 failed [ 1187.951949][T15741] loop0: detected capacity change from 0 to 512 [ 1188.031394][T15741] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 1188.048232][T15738] UDF-fs: error (device loop3): udf_read_tagged: read failed, block=256, location=256 [ 1188.177246][T15741] EXT4-fs (loop0): 1 truncate cleaned up [ 1188.185918][T15741] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1188.236619][T15738] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 1188.237020][T15741] EXT4-fs error (device loop0): ext4_generic_delete_entry:2668: inode #2: block 13: comm syz.0.4283: bad entry in directory: rec_len is smaller than minimal - offset=24, inode=11, rec_len=8, size=1024 fake=0 [ 1188.294923][T15741] EXT4-fs error (device loop0) in ext4_delete_entry:2739: Corrupt filesystem [ 1188.636187][ T5815] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1189.169757][T15754] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore [ 1189.180813][T15754] overlayfs: conflicting options: userxattr,metacopy=on [ 1191.188985][T15773] loop4: detected capacity change from 0 to 2048 [ 1191.417987][T15773] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 1191.899370][ T1996] usb 6-1: new full-speed USB device number 3 using dummy_hcd [ 1192.103571][ T1996] usb 6-1: config 4 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10 [ 1192.115643][ T1996] usb 6-1: config 4 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 1192.160611][T15789] loop2: detected capacity change from 0 to 1024 [ 1192.255995][ T1996] usb 6-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40 [ 1192.266383][T15789] EXT4-fs: Ignoring removed bh option [ 1192.279855][ T1996] usb 6-1: New USB device strings: Mfr=255, Product=255, SerialNumber=0 [ 1192.288758][ T1996] usb 6-1: Product: syz [ 1192.293438][ T1996] usb 6-1: Manufacturer: syz [ 1192.405589][T15789] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-001000000000 r/w without journal. Quota mode: writeback. [ 1192.477876][ T1996] hub 6-1:4.0: USB hub found [ 1192.777411][ T5826] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-001000000000. [ 1192.805082][ T1996] hub 6-1:4.0: 6 ports detected [ 1192.832723][ T1996] hub 6-1:4.0: insufficient power available to use all downstream ports [ 1192.968412][T15796] loop4: detected capacity change from 0 to 512 [ 1193.083468][T15796] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 1193.213603][ T1996] hub 6-1:4.0: set hub depth failed [ 1193.256076][ T1996] usb 6-1: USB disconnect, device number 3 [ 1193.356645][T15796] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1193.373981][T15796] ext4 filesystem being mounted at /856/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 1194.112822][ T5819] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1194.770839][T15813] loop0: detected capacity change from 0 to 1024 [ 1194.963755][T15819] syz.0.4314: attempt to access beyond end of device [ 1194.963755][T15819] loop0: rw=0, sector=201326592, nr_sectors = 2 limit=1024 [ 1194.978444][T15819] Buffer I/O error on dev loop0, logical block 100663296, async page read [ 1194.987893][T15819] syz.0.4314: attempt to access beyond end of device [ 1194.987893][T15819] loop0: rw=0, sector=201326592, nr_sectors = 2 limit=1024 [ 1195.002092][T15819] Buffer I/O error on dev loop0, logical block 100663296, async page read [ 1195.634335][T15823] Bluetooth: MGMT ver 1.23 [ 1196.006333][T15827] netlink: 8 bytes leftover after parsing attributes in process `syz.4.4319'. [ 1196.323578][T15822] loop5: detected capacity change from 0 to 4096 [ 1196.538224][T15822] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1196.790046][T15822] EXT4-fs error (device loop5): ext4_get_first_dir_block:3545: inode #12: block 80: comm syz.5.4316: bad entry in directory: rec_len is smaller than minimal - offset=12, inode=6, rec_len=0, size=4096 fake=0 [ 1196.879943][T15822] EXT4-fs (loop5): Remounting filesystem read-only [ 1197.416495][T13178] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1197.756106][T15844] loop4: detected capacity change from 0 to 1024 [ 1198.440617][T15846] loop2: detected capacity change from 0 to 1024 [ 1198.498400][T15849] loop0: detected capacity change from 0 to 256 [ 1198.590404][T15852] sock: sock_set_timeout: `syz.5.4327' (pid 15852) tries to set negative timeout [ 1199.016392][T15849] FAT-fs (loop0): Directory bread(block 64) failed [ 1199.031247][T15849] FAT-fs (loop0): Directory bread(block 65) failed [ 1199.040873][T15849] FAT-fs (loop0): Directory bread(block 66) failed [ 1199.048621][T15849] FAT-fs (loop0): Directory bread(block 67) failed [ 1199.055955][T15849] FAT-fs (loop0): Directory bread(block 68) failed [ 1199.062765][T15849] FAT-fs (loop0): Directory bread(block 69) failed [ 1199.069933][T15849] FAT-fs (loop0): Directory bread(block 70) failed [ 1199.077215][T15849] FAT-fs (loop0): Directory bread(block 71) failed [ 1199.084487][T15849] FAT-fs (loop0): Directory bread(block 72) failed [ 1199.091295][T15849] FAT-fs (loop0): Directory bread(block 73) failed [ 1199.451058][T15855] loop4: detected capacity change from 0 to 1024 [ 1199.557452][T15855] hfsplus: Unknown parameter 'creatS' [ 1199.675371][T15855] CIFS mount error: No usable UNC path provided in device string! [ 1199.675371][T15855] [ 1199.686175][T15855] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string! [ 1201.438064][T15875] loop0: detected capacity change from 0 to 512 [ 1201.513644][T15879] loop5: detected capacity change from 0 to 256 [ 1201.539123][T15875] EXT4-fs (loop0): mounting ext3 file system using the ext4 subsystem [ 1201.666638][T15875] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8042c118, mo2=0002] [ 1201.766788][T15875] EXT4-fs error (device loop0): ext4_iget_extra_inode:5035: inode #15: comm syz.0.4342: corrupted in-inode xattr: e_value size too large [ 1201.813596][T15875] EXT4-fs error (device loop0): ext4_orphan_get:1398: comm syz.0.4342: couldn't read orphan inode 15 (err -117) [ 1201.908535][T15875] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1202.110648][T15875] EXT4-fs warning (device loop0): ext4_block_to_path:107: block 863271013 > max in inode 18 [ 1202.529959][T15889] loop2: detected capacity change from 0 to 512 [ 1202.635852][T15889] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 1202.636558][ T5815] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1202.788347][T15889] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1202.803381][T15889] ext4 filesystem being mounted at /842/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 1203.286545][ T5826] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1204.253425][T15903] loop0: detected capacity change from 0 to 8 [ 1204.366952][T15903] unable to read id index table [ 1204.712819][T15906] loop4: detected capacity change from 0 to 512 [ 1204.953502][T15911] ALSA: mixer_oss: invalid OSS volume 'ߎAkX!`=UWW[' [ 1204.968285][T15911] ALSA: mixer_oss: invalid OSS volume 'Ni)E{:T%cB' [ 1205.743702][T15917] gretap0: entered promiscuous mode [ 1205.749334][T15917] vlan2: entered promiscuous mode [ 1205.871358][T15920] loop2: detected capacity change from 0 to 512 [ 1205.975127][T15920] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 1206.219761][T15920] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1206.236842][T15920] ext4 filesystem being mounted at /845/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 1206.847317][ T5826] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1207.713583][T10454] usb 3-1: new full-speed USB device number 21 using dummy_hcd [ 1207.959095][T10454] usb 3-1: config 0 has an invalid interface number: 128 but max is 0 [ 1207.971354][T10454] usb 3-1: config 0 has no interface number 0 [ 1208.070559][T10454] usb 3-1: New USB device found, idVendor=20b7, idProduct=1540, bcdDevice=b7.5a [ 1208.080406][T10454] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1208.089030][T10454] usb 3-1: Product: syz [ 1208.094157][T10454] usb 3-1: Manufacturer: syz [ 1208.099037][T10454] usb 3-1: SerialNumber: syz [ 1208.196906][T15945] loop0: detected capacity change from 0 to 256 [ 1208.258337][T10454] usb 3-1: config 0 descriptor?? [ 1208.595357][T15945] exFAT-fs (loop0): failed to load upcase table (idx : 0x00012c80, chksum : 0x0ff561db, utbl_chksum : 0xe619d30d) [ 1209.004875][T10454] usb 3-1: Firmware version (0.0) predates our first public release. [ 1209.015150][T10454] usb 3-1: Please update to version 0.2 or newer [ 1209.118109][T10454] usb 3-1: USB disconnect, device number 21 [ 1209.628559][T15958] loop3: detected capacity change from 0 to 256 [ 1209.756648][T15956] loop5: detected capacity change from 0 to 1024 [ 1209.860385][T15956] EXT4-fs: Ignoring removed bh option [ 1209.930021][ T30] audit: type=1800 audit(1752506430.732:136): pid=15958 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.4373" name="bus" dev="loop3" ino=1048828 res=0 errno=0 [ 1210.065452][T15956] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-001000000000 r/w without journal. Quota mode: writeback. [ 1210.113271][ T30] audit: type=1804 audit(1752506430.812:137): pid=15958 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.3.4373" name="/newroot/879/file0/bus" dev="loop3" ino=1048828 res=1 errno=0 [ 1210.686511][T13178] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-001000000000. [ 1211.500389][T15970] Bluetooth: hci0: Opcode 0x0c20 failed: -4 [ 1212.339272][T15986] netlink: 43 bytes leftover after parsing attributes in process `syz.2.4386'. [ 1212.348899][T15986] tipc: Enabling of bearer rejected, failed to enable media [ 1212.764158][ T1286] ieee802154 phy0 wpan0: encryption failed: -22 [ 1212.770920][ T1286] ieee802154 phy1 wpan1: encryption failed: -22 [ 1212.883457][T11268] Bluetooth: hci0: command 0x0406 tx timeout [ 1214.047543][T16005] loop3: detected capacity change from 0 to 8 [ 1214.173989][T16005] SQUASHFS error: Unknown LZ4 version [ 1214.187041][T16005] squashfs image failed sanity check [ 1214.746079][T16010] ptrace attach of "./syz-executor exec"[16012] was attempted by "./syz-executor exec"[16010] [ 1215.474763][T16011] sctp: failed to load transform for md5: -2 [ 1216.450087][ T30] audit: type=1326 audit(1752506437.252:138): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16032 comm="syz.4.4406" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf711e539 code=0x7ffc0000 [ 1216.524218][ T30] audit: type=1326 audit(1752506437.282:139): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16032 comm="syz.4.4406" exe="/root/syz-executor" sig=0 arch=40000003 syscall=83 compat=1 ip=0xf711e539 code=0x7ffc0000 [ 1216.548164][ T30] audit: type=1326 audit(1752506437.292:140): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16032 comm="syz.4.4406" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf711e539 code=0x7ffc0000 [ 1216.571091][ T30] audit: type=1326 audit(1752506437.292:141): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16032 comm="syz.4.4406" exe="/root/syz-executor" sig=0 arch=40000003 syscall=85 compat=1 ip=0xf711e539 code=0x7ffc0000 [ 1216.595452][ T30] audit: type=1326 audit(1752506437.292:142): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16032 comm="syz.4.4406" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf711e539 code=0x7ffc0000 [ 1218.099802][T16051] devtmpfs: Cannot retroactively limit inodes [ 1218.143882][T10454] usb 6-1: new high-speed USB device number 4 using dummy_hcd [ 1218.395239][T10454] usb 6-1: New USB device found, idVendor=17e9, idProduct=8b4e, bcdDevice=9c.08 [ 1218.404939][T10454] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1218.465831][T10454] usb 6-1: config 0 descriptor?? [ 1218.763424][T10454] udl 6-1:0.0: [drm] Unrecognized vendor firmware descriptor [ 1218.981975][T10454] [drm:udl_init] *ERROR* Selecting channel failed [ 1219.075735][T10454] [drm] Initialized udl 0.0.1 for 6-1:0.0 on minor 2 [ 1219.083069][T10454] [drm] Initialized udl on minor 2 [ 1219.157034][T10454] udl 6-1:0.0: [drm] *ERROR* Read EDID byte 0 failed err ffffffb9 [ 1219.167126][T10454] udl 6-1:0.0: [drm] Cannot find any crtc or sizes [ 1219.182293][ T5881] udl 6-1:0.0: [drm] *ERROR* Read EDID byte 0 failed err ffffffb9 [ 1219.240387][ T5881] udl 6-1:0.0: [drm] *ERROR* Read EDID byte 0 failed err ffffffb9 [ 1219.249372][ T5881] udl 6-1:0.0: [drm] Cannot find any crtc or sizes [ 1219.286797][T10454] usb 6-1: USB disconnect, device number 4 [ 1220.005582][T16068] IPVS: Unknown mcast interface: caif0 [ 1220.394294][ T5870] usb 4-1: new full-speed USB device number 18 using dummy_hcd [ 1220.667254][ T5870] usb 4-1: config 4 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10 [ 1220.679082][ T5870] usb 4-1: config 4 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 1220.840556][ T5870] usb 4-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40 [ 1220.850193][ T5870] usb 4-1: New USB device strings: Mfr=255, Product=255, SerialNumber=0 [ 1220.859085][ T5870] usb 4-1: Product: syz [ 1220.863760][ T5870] usb 4-1: Manufacturer: syz [ 1220.883905][T16078] loop4: detected capacity change from 0 to 512 [ 1220.952125][T16078] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 1221.007984][ T5870] hub 4-1:4.0: USB hub found [ 1221.204041][T16078] EXT4-fs (loop4): 1 truncate cleaned up [ 1221.212386][T16078] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1221.293681][ T5870] hub 4-1:4.0: 6 ports detected [ 1221.314404][ T5870] hub 4-1:4.0: insufficient power available to use all downstream ports [ 1221.356702][T16084] loop5: detected capacity change from 0 to 256 [ 1221.687274][ T5870] hub 4-1:4.0: set hub depth failed [ 1221.778295][ T5870] usb 4-1: USB disconnect, device number 18 [ 1221.875126][T16084] FAT-fs (loop5): Directory bread(block 64) failed [ 1221.882175][T16084] FAT-fs (loop5): Directory bread(block 65) failed [ 1221.889497][T16084] FAT-fs (loop5): Directory bread(block 66) failed [ 1221.896582][T16084] FAT-fs (loop5): Directory bread(block 67) failed [ 1221.903700][T16084] FAT-fs (loop5): Directory bread(block 68) failed [ 1221.910505][T16084] FAT-fs (loop5): Directory bread(block 69) failed [ 1221.917696][T16084] FAT-fs (loop5): Directory bread(block 70) failed [ 1221.924798][T16084] FAT-fs (loop5): Directory bread(block 71) failed [ 1221.931745][T16084] FAT-fs (loop5): Directory bread(block 72) failed [ 1221.939785][T16084] FAT-fs (loop5): Directory bread(block 73) failed [ 1222.027579][ T5819] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1222.974976][T16095] loop2: detected capacity change from 0 to 256 [ 1223.185457][T16095] exFAT-fs (loop2): failed to load upcase table (idx : 0x00012c80, chksum : 0x0ff561db, utbl_chksum : 0xe619d30d) [ 1225.457812][T16123] loop4: detected capacity change from 0 to 8 [ 1225.483887][ T5870] usb 3-1: new full-speed USB device number 22 using dummy_hcd [ 1225.484846][T16121] ptrace attach of "./syz-executor exec"[16124] was attempted by "./syz-executor exec"[16121] [ 1225.556213][T16123] SQUASHFS error: Unknown LZ4 version [ 1225.562071][T16123] squashfs image failed sanity check [ 1225.714977][ T5870] usb 3-1: config 4 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10 [ 1225.727953][ T5870] usb 3-1: config 4 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 1225.831195][ T5870] usb 3-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40 [ 1225.841505][ T5870] usb 3-1: New USB device strings: Mfr=255, Product=255, SerialNumber=0 [ 1225.856665][ T5870] usb 3-1: Product: syz [ 1225.861139][ T5870] usb 3-1: Manufacturer: syz [ 1226.008040][ T5870] hub 3-1:4.0: USB hub found [ 1226.196444][T16129] loop3: detected capacity change from 0 to 256 [ 1226.278232][ T5870] hub 3-1:4.0: 6 ports detected [ 1226.299224][ T5870] hub 3-1:4.0: insufficient power available to use all downstream ports [ 1226.470272][T16129] exFAT-fs (loop3): failed to load upcase table (idx : 0x00012c80, chksum : 0x0ff561db, utbl_chksum : 0xe619d30d) [ 1226.713615][ T5870] hub 3-1:4.0: set hub depth failed [ 1226.761860][ T5870] usb 3-1: USB disconnect, device number 22 [ 1227.690070][T16141] loop0: detected capacity change from 0 to 64 [ 1228.156557][ T30] audit: type=1326 audit(1752506448.952:143): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16144 comm="syz.2.4456" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ee539 code=0x7ffc0000 [ 1228.313773][ T30] audit: type=1326 audit(1752506448.992:144): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16144 comm="syz.2.4456" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ee539 code=0x7ffc0000 [ 1228.336607][ T30] audit: type=1326 audit(1752506449.022:145): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16144 comm="syz.2.4456" exe="/root/syz-executor" sig=0 arch=40000003 syscall=83 compat=1 ip=0xf70ee539 code=0x7ffc0000 [ 1228.359419][ T30] audit: type=1326 audit(1752506449.022:146): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16144 comm="syz.2.4456" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ee539 code=0x7ffc0000 [ 1228.381999][ T30] audit: type=1326 audit(1752506449.022:147): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16144 comm="syz.2.4456" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ee539 code=0x7ffc0000 [ 1228.405742][ T30] audit: type=1326 audit(1752506449.042:148): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16144 comm="syz.2.4456" exe="/root/syz-executor" sig=0 arch=40000003 syscall=85 compat=1 ip=0xf70ee539 code=0x7ffc0000 [ 1228.429491][ T30] audit: type=1326 audit(1752506449.042:149): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16144 comm="syz.2.4456" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ee539 code=0x7ffc0000 [ 1229.181575][T16156] loop0: detected capacity change from 0 to 128 [ 1229.225423][T16156] FAT-fs (loop0): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 1229.279046][T16156] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 1229.715091][T16152] Bluetooth: hci0: Opcode 0x0c20 failed: -4 [ 1230.474685][T16170] IPVS: sync thread started: state = BACKUP, mcast_ifn = caif0, syncid = 0, id = 0 [ 1230.519727][T16169] devtmpfs: Cannot retroactively limit inodes [ 1230.966000][T11268] Bluetooth: hci0: command 0x0406 tx timeout [ 1232.033325][T16184] loop3: detected capacity change from 0 to 128 [ 1232.099541][T16184] FAT-fs (loop3): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 1232.164183][T16184] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 1232.298070][T16188] loop5: detected capacity change from 0 to 512 [ 1232.381155][T16188] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 1232.566384][T16188] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1232.580307][T16188] ext4 filesystem being mounted at /220/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 1233.065137][T13178] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1233.955970][T16205] loop5: detected capacity change from 0 to 8 [ 1234.103502][T16205] SQUASHFS error: Unknown LZ4 version [ 1234.109291][T16205] squashfs image failed sanity check [ 1235.429776][T16222] loop3: detected capacity change from 0 to 256 [ 1235.505356][T16222] exfat: Deprecated parameter 'utf8' [ 1235.511456][T16222] exfat: Deprecated parameter 'utf8' [ 1235.710744][T16222] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0x23a77120, utbl_chksum : 0xe619d30d) [ 1237.058770][T16237] loop5: detected capacity change from 0 to 1024 [ 1237.724148][ T14] hfsplus: b-tree write err: -5, ino 4 [ 1238.222518][T16241] loop0: detected capacity change from 0 to 4096 [ 1238.848101][T16247] loop2: detected capacity change from 0 to 512 [ 1238.851934][T16247] EXT4-fs: Ignoring removed mblk_io_submit option [ 1238.970843][T16241] ntfs3(loop0): failed to convert "0080" to cp862 [ 1238.974112][T16247] EXT4-fs (loop2): Cannot turn on journaled quota: type 0: error -13 [ 1238.979360][T16241] ntfs3(loop0): failed to convert name for inode 1e. [ 1238.989623][T16241] ntfs3(loop0): ino=1f, mi_enum_attr [ 1238.989776][T16241] ntfs3(loop0): Mark volume as dirty due to NTFS errors [ 1239.001737][T16247] EXT4-fs error (device loop2): ext4_clear_blocks:876: inode #13: comm syz.2.4503: attempt to clear invalid blocks 2 len 1 [ 1239.002599][T16247] EXT4-fs (loop2): Remounting filesystem read-only [ 1239.004679][T16247] EXT4-fs (loop2): 1 truncate cleaned up [ 1239.006964][T16247] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1239.558155][ T5826] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1240.419820][T16258] loop5: detected capacity change from 0 to 16 [ 1240.524696][T16258] erofs (device loop5): mounted with root inode @ nid 36. [ 1240.534860][T16259] tipc: Enabling of bearer rejected, failed to enable media [ 1240.628310][T16253] loop0: detected capacity change from 0 to 4096 [ 1240.733665][T16253] ntfs3(loop0): Different NTFS sector size (4096) and media sector size (512). [ 1241.103714][T16253] ntfs3(loop0): ino=19, mi_enum_attr [ 1241.119545][T16253] ntfs3(loop0): Mark volume as dirty due to NTFS errors [ 1242.889415][T16279] loop3: detected capacity change from 0 to 128 [ 1243.051353][T16279] UDF-fs: error (device loop3): udf_read_tagged: read failed, block=256, location=256 [ 1243.250109][T16279] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 1243.277362][T16277] loop5: detected capacity change from 0 to 4096 [ 1244.235813][T16277] ntfs3(loop5): failed to convert "0080" to cp862 [ 1244.255612][T16277] ntfs3(loop5): failed to convert name for inode 1e. [ 1244.259498][T16277] ntfs3(loop5): ino=1f, mi_enum_attr [ 1244.259649][T16277] ntfs3(loop5): Mark volume as dirty due to NTFS errors [ 1244.538254][T16289] loop2: detected capacity change from 0 to 512 [ 1244.552791][T16290] tipc: Enabling of bearer rejected, already enabled [ 1244.604047][T16289] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 1244.806459][T16289] EXT4-fs (loop2): 1 truncate cleaned up [ 1244.829940][T16289] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1245.326885][ T5826] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1245.524455][ T30] audit: type=1326 audit(1752506466.292:150): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16294 comm="syz.3.4523" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ce539 code=0x7ffc0000 [ 1245.524714][ T30] audit: type=1326 audit(1752506466.292:151): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16294 comm="syz.3.4523" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ce539 code=0x7ffc0000 [ 1245.545707][ T30] audit: type=1326 audit(1752506466.352:152): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16294 comm="syz.3.4523" exe="/root/syz-executor" sig=0 arch=40000003 syscall=106 compat=1 ip=0xf70ce539 code=0x7ffc0000 [ 1245.545970][ T30] audit: type=1326 audit(1752506466.352:153): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16294 comm="syz.3.4523" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ce539 code=0x7ffc0000 [ 1245.546233][ T30] audit: type=1326 audit(1752506466.352:154): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16294 comm="syz.3.4523" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ce539 code=0x7ffc0000 [ 1247.034972][T16303] loop5: detected capacity change from 0 to 4096 [ 1247.093606][T16303] ntfs3(loop5): Different NTFS sector size (4096) and media sector size (512). [ 1247.602156][T16303] ntfs3(loop5): Failed to initialize $Extend/$Reparse. [ 1247.618217][T16312] loop2: detected capacity change from 0 to 512 [ 1247.817116][T16312] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1247.831217][T16312] ext4 filesystem being mounted at /883/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 1247.921641][T16303] ntfs3(loop5): ino=1e, mi_enum_attr [ 1247.927750][T16303] ntfs3(loop5): ino=1e, mi_enum_attr [ 1248.574867][ T5826] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1248.615020][T16321] netlink: 'syz.3.4536': attribute type 83 has an invalid length. [ 1248.667364][T16319] loop4: detected capacity change from 0 to 4096 [ 1249.170203][T16326] tipc: Started in network mode [ 1249.179711][T16326] tipc: Node identity ff010000000000000000000000000001, cluster identity 4711 [ 1249.190253][T16326] tipc: Enabling of bearer rejected, failed to enable media [ 1249.547229][T16319] ntfs3(loop4): failed to convert "0080" to cp862 [ 1249.603988][T16319] ntfs3(loop4): failed to convert name for inode 1e. [ 1249.701748][T16319] ntfs3(loop4): ino=1f, mi_enum_attr [ 1249.707842][T16319] ntfs3(loop4): Mark volume as dirty due to NTFS errors [ 1250.696472][ T30] audit: type=1326 audit(1752506471.502:155): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16339 comm="syz.0.4553" exe="/root/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf70fe539 code=0x0 [ 1252.250719][T16359] loop3: detected capacity change from 0 to 64 [ 1252.329965][T16361] loop2: detected capacity change from 0 to 16 [ 1252.400825][T16361] erofs (device loop2): mounted with root inode @ nid 36. [ 1253.355731][T16365] loop0: detected capacity change from 0 to 2048 [ 1253.534761][T16365] NILFS (loop0): broken superblock, retrying with spare superblock (blocksize = 1024) [ 1253.545121][T16365] NILFS (loop0): mounting unchecked fs [ 1253.727017][T16365] NILFS (loop0): recovery complete [ 1253.762440][T16373] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 1256.596290][T16404] loop3: detected capacity change from 0 to 16 [ 1256.674437][T16404] erofs (device loop3): mounted with root inode @ nid 36. [ 1256.963230][T16408] loop4: detected capacity change from 0 to 2048 [ 1257.038444][T16408] NILFS (loop4): broken superblock, retrying with spare superblock (blocksize = 1024) [ 1257.048775][T16408] NILFS (loop4): mounting unchecked fs [ 1257.105444][T16410] loop0: detected capacity change from 0 to 64 [ 1257.236153][T16408] NILFS (loop4): recovery complete [ 1257.295795][T16412] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 1258.831225][T16423] netlink: 24 bytes leftover after parsing attributes in process `syz.4.4577'. [ 1259.485071][T16431] netlink: 8 bytes leftover after parsing attributes in process `syz.5.4581'. [ 1259.494779][T16431] netlink: 4 bytes leftover after parsing attributes in process `syz.5.4581'. [ 1260.043726][T16435] loop4: detected capacity change from 0 to 256 [ 1260.101210][T16435] exfat: Deprecated parameter 'namecase' [ 1260.107922][T16435] exfat: Deprecated parameter 'utf8' [ 1260.219885][T16435] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0xdc42f586, utbl_chksum : 0xe619d30d) [ 1260.696871][T16440] tipc: Enabled bearer , priority 10 [ 1261.944712][ T30] audit: type=1326 audit(1752506482.742:156): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16450 comm="syz.2.4592" exe="/root/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf70ee539 code=0x0 [ 1262.324941][T16457] netlink: 24 bytes leftover after parsing attributes in process `syz.3.4594'. [ 1262.698030][T16459] syz.0.4605 (16459): /proc/16459/oom_adj is deprecated, please use /proc/16459/oom_score_adj instead. [ 1263.040084][T16464] loop4: detected capacity change from 0 to 128 [ 1263.113465][T16465] loop3: detected capacity change from 0 to 64 [ 1263.193620][ T30] audit: type=1800 audit(1752506483.992:157): pid=16464 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.4596" name="file2" dev="loop4" ino=1048866 res=0 errno=0 [ 1263.223179][T16465] hfs: unable to locate alternate MDB [ 1263.230026][T16465] hfs: continuing without an alternate MDB [ 1263.364947][T11268] Bluetooth: hci0: command 0x0406 tx timeout [ 1263.666783][T16470] loop0: detected capacity change from 0 to 256 [ 1263.730119][T16470] exfat: Deprecated parameter 'namecase' [ 1263.915641][T16470] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0x2eabf3fa, utbl_chksum : 0xe619d30d) [ 1265.399040][T16489] loop2: detected capacity change from 0 to 1024 [ 1265.725290][T16493] hfsplus: extend alloc file! (8192,63991,0) [ 1265.831396][T16494] sp0: Synchronizing with TNC [ 1266.894527][T16506] loop2: detected capacity change from 0 to 64 [ 1266.943210][T16507] netlink: 8 bytes leftover after parsing attributes in process `syz.4.4626'. [ 1266.965492][T16506] hfs: unable to locate alternate MDB [ 1266.971275][T16506] hfs: continuing without an alternate MDB [ 1267.010516][T16507] macvlan2: entered promiscuous mode [ 1267.026047][T16507] macvlan2: entered allmulticast mode [ 1267.031772][T16507] erspan0: entered allmulticast mode [ 1267.656465][T16513] loop0: detected capacity change from 0 to 256 [ 1268.290818][ T30] audit: type=1800 audit(1752506489.082:158): pid=16521 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.4621" name="SYSV00000000" dev="hugetlbfs" ino=1 res=0 errno=0 [ 1269.357924][T16530] loop3: detected capacity change from 0 to 1024 [ 1269.502575][T16533] loop4: detected capacity change from 0 to 1024 [ 1269.854268][T16533] hfsplus: extend alloc file! (8192,63991,0) [ 1271.805087][T16558] loop3: detected capacity change from 0 to 256 [ 1271.861301][T16558] exfat: Deprecated parameter 'namecase' [ 1272.079187][T16558] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0x2eabf3fa, utbl_chksum : 0xe619d30d) [ 1272.965386][T10454] usb 3-1: new high-speed USB device number 23 using dummy_hcd [ 1273.175568][T10454] usb 3-1: Using ep0 maxpacket: 8 [ 1273.184050][T16568] loop4: detected capacity change from 0 to 1024 [ 1273.227076][T10454] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 1273.238584][T10454] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 1273.250195][T10454] usb 3-1: New USB device found, idVendor=056a, idProduct=0000, bcdDevice= 0.00 [ 1273.260897][T10454] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1273.347256][T10454] usb 3-1: config 0 descriptor?? [ 1273.622217][T16574] loop0: detected capacity change from 0 to 512 [ 1273.860266][T10454] wacom 0003:056A:0000.0012: unbalanced delimiter at end of report description [ 1273.886923][T16574] Quota error (device loop0): do_check_range: Getting dqdh_prev_free 1536 out of range 0-5 [ 1273.898186][T16574] Quota error (device loop0): qtree_write_dquot: Error -117 occurred while creating quota [ 1273.898982][T10454] wacom 0003:056A:0000.0012: parse failed [ 1273.908715][T16574] EXT4-fs error (device loop0): ext4_acquire_dquot:6933: comm syz.0.4646: Failed to acquire dquot type 1 [ 1273.915217][T10454] wacom 0003:056A:0000.0012: probe with driver wacom failed with error -22 [ 1273.987141][T16574] EXT4-fs (loop0): 1 truncate cleaned up [ 1273.996062][T16574] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1274.009478][T16574] ext4 filesystem being mounted at /950/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 1274.160455][T10454] usb 3-1: USB disconnect, device number 23 [ 1274.216158][ T1286] ieee802154 phy0 wpan0: encryption failed: -22 [ 1274.223341][ T1286] ieee802154 phy1 wpan1: encryption failed: -22 [ 1274.668794][ T5815] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1274.947461][T16585] loop4: detected capacity change from 0 to 2048 [ 1275.122597][T16586] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 1275.706860][T16594] loop3: detected capacity change from 0 to 64 [ 1276.170435][T16596] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(3) [ 1276.177360][T16596] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed) [ 1276.185966][T16596] vhci_hcd vhci_hcd.0: Device attached [ 1276.294263][T16593] loop2: detected capacity change from 0 to 4096 [ 1276.410398][T16604] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 1276.483667][ T5870] usb 33-1: new low-speed USB device number 2 using vhci_hcd [ 1276.814122][T16597] vhci_hcd: connection reset by peer [ 1276.823368][ T1883] vhci_hcd: stop threads [ 1276.829207][ T1883] vhci_hcd: release socket [ 1276.834267][ T1883] vhci_hcd: disconnect device [ 1277.820580][T16614] loop4: detected capacity change from 0 to 512 [ 1277.904678][T16614] Quota error (device loop4): do_check_range: Getting dqdh_prev_free 1536 out of range 0-5 [ 1277.905371][T16614] Quota error (device loop4): qtree_write_dquot: Error -117 occurred while creating quota [ 1277.905565][T16614] EXT4-fs error (device loop4): ext4_acquire_dquot:6933: comm syz.4.4661: Failed to acquire dquot type 1 [ 1277.931862][T16614] EXT4-fs (loop4): 1 truncate cleaned up [ 1277.949337][T16614] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1277.949779][T16614] ext4 filesystem being mounted at /929/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 1278.317726][ T5819] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1278.323522][ T5881] usb 6-1: new high-speed USB device number 5 using dummy_hcd [ 1278.507015][ T5881] usb 6-1: Using ep0 maxpacket: 8 [ 1278.529699][ T5881] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 1278.529876][ T5881] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 1278.530075][ T5881] usb 6-1: New USB device found, idVendor=056a, idProduct=0000, bcdDevice= 0.00 [ 1278.530225][ T5881] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1278.541250][ T5881] usb 6-1: config 0 descriptor?? [ 1279.054640][ T5881] wacom 0003:056A:0000.0013: unbalanced delimiter at end of report description [ 1279.119118][ T5881] wacom 0003:056A:0000.0013: parse failed [ 1279.125911][ T5881] wacom 0003:056A:0000.0013: probe with driver wacom failed with error -22 [ 1279.274107][ T1996] usb 6-1: USB disconnect, device number 5 [ 1279.521152][T16631] loop4: detected capacity change from 0 to 64 [ 1280.461258][T16636] loop3: detected capacity change from 0 to 2048 [ 1280.575730][T16636] NILFS (loop3): broken superblock, retrying with spare superblock (blocksize = 1024) [ 1280.700816][T16642] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 1280.812070][ T5817] Bluetooth: hci0: command 0x0406 tx timeout [ 1281.593687][ T5870] vhci_hcd: vhci_device speed not set [ 1282.080440][T16653] loop5: detected capacity change from 0 to 128 [ 1282.161526][T16653] EXT4-fs (loop5): invalid first ino: 9 [ 1282.452066][T16657] loop2: detected capacity change from 0 to 1024 [ 1282.573848][ T5881] usb 5-1: new high-speed USB device number 18 using dummy_hcd [ 1282.767210][ T5881] usb 5-1: Using ep0 maxpacket: 16 [ 1282.814177][ T5881] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 1282.825847][ T5881] usb 5-1: New USB device found, idVendor=04fc, idProduct=05d8, bcdDevice= 0.00 [ 1282.835434][ T5881] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1282.996352][ T5881] usb 5-1: config 0 descriptor?? [ 1283.506555][ T5881] sunplus 0003:04FC:05D8.0014: reserved main item tag 0xd [ 1283.514264][ T5881] sunplus 0003:04FC:05D8.0014: unexpected long global item [ 1283.579096][ T5881] sunplus 0003:04FC:05D8.0014: probe with driver sunplus failed with error -22 [ 1283.726475][ T1996] usb 5-1: USB disconnect, device number 18 [ 1283.939839][T16667] netlink: 8 bytes leftover after parsing attributes in process `syz.0.4685'. [ 1283.948567][T16668] loop2: detected capacity change from 0 to 64 [ 1285.497164][T16680] loop2: detected capacity change from 0 to 2048 [ 1285.653683][T16680] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 1285.811580][T16685] loop5: detected capacity change from 0 to 512 [ 1286.017288][T16685] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode [ 1286.197083][T16685] EXT4-fs (loop5): 1 truncate cleaned up [ 1286.205826][T16685] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1286.490067][T16685] EXT4-fs error (device loop5): ext4_generic_delete_entry:2668: inode #2: block 13: comm syz.5.4692: bad entry in directory: rec_len is smaller than minimal - offset=24, inode=11, rec_len=8, size=1024 fake=0 [ 1286.559298][T16692] batadv0: entered promiscuous mode [ 1286.571410][T16692] 8021q: adding VLAN 0 to HW filter on device macvlan2 [ 1286.594906][T16692] batadv0: left promiscuous mode [ 1286.630120][T16685] EXT4-fs error (device loop5) in ext4_delete_entry:2739: Corrupt filesystem [ 1287.020249][T13178] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1288.629939][T16714] netlink: 8 bytes leftover after parsing attributes in process `syz.3.4707'. [ 1288.888573][T16715] loop2: detected capacity change from 0 to 2048 [ 1288.980220][T16715] NILFS (loop2): broken superblock, retrying with spare superblock (blocksize = 1024) [ 1289.119274][T16723] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 1289.429062][T16725] loop3: detected capacity change from 0 to 256 [ 1290.569574][T16731] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(3) [ 1290.576443][T16731] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed) [ 1290.585018][T16731] vhci_hcd vhci_hcd.0: Device attached [ 1290.641943][T16733] vhci_hcd: connection closed [ 1290.664450][ T3604] vhci_hcd: stop threads [ 1290.682486][ T3604] vhci_hcd: release socket [ 1290.687369][ T3604] vhci_hcd: disconnect device [ 1291.037717][T16739] loop5: detected capacity change from 0 to 512 [ 1291.121912][T16739] EXT4-fs (loop5): mounting ext2 file system using the ext4 subsystem [ 1291.312144][T16739] EXT4-fs error (device loop5): ext4_orphan_get:1393: inode #15: comm syz.5.4716: iget: bad i_size value: 360287970189639680 [ 1291.444879][T16739] EXT4-fs error (device loop5): ext4_orphan_get:1398: comm syz.5.4716: couldn't read orphan inode 15 (err -117) [ 1291.544262][T16739] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1292.023793][T13178] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1292.662410][T16757] loop5: detected capacity change from 0 to 1024 [ 1293.147074][T16761] loop2: detected capacity change from 0 to 1024 [ 1293.226200][T16761] hfsplus: Unknown parameter 'creatS' [ 1293.334276][T16761] CIFS mount error: No usable UNC path provided in device string! [ 1293.334276][T16761] [ 1293.344825][T16761] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string! [ 1293.912792][T16765] loop5: detected capacity change from 0 to 2048 [ 1294.024444][T16765] NILFS (loop5): broken superblock, retrying with spare superblock (blocksize = 1024) [ 1294.133833][T16772] NILFS (loop5): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 1294.756747][T16776] netlink: 40 bytes leftover after parsing attributes in process `syz.3.4731'. [ 1296.953838][T16798] loop3: detected capacity change from 0 to 512 [ 1296.978992][T16798] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 1297.209383][T16798] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1297.230909][T16798] ext4 filesystem being mounted at /958/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 1297.773925][ T5814] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1299.223728][T16823] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore [ 1299.223866][T16823] overlayfs: conflicting options: userxattr,metacopy=on [ 1300.068420][T16829] loop5: detected capacity change from 0 to 1024 [ 1300.181946][T16832] loop3: detected capacity change from 0 to 24 [ 1300.237834][T16833] [U] v3f"S/4:XTzWtlW= [ 1300.303930][T16831] [U] J"e:" [ 1300.760313][ T7311] hfsplus: b-tree write err: -5, ino 4 [ 1301.472331][T16843] loop3: detected capacity change from 0 to 256 [ 1301.535431][T16843] exfat: Deprecated parameter 'namecase' [ 1301.625651][T16846] loop4: detected capacity change from 0 to 512 [ 1301.761417][T16843] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0x5441951d, utbl_chksum : 0xe619d30d) [ 1301.826029][T16846] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1302.207888][T16853] loop5: detected capacity change from 0 to 256 [ 1302.277810][ T5819] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1302.403738][T16853] exFAT-fs (loop5): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x3963664b, utbl_chksum : 0xe619d30d) [ 1303.151937][T16860] loop0: detected capacity change from 0 to 256 [ 1303.419193][T16861] loop4: detected capacity change from 0 to 1024 [ 1303.494550][T16861] EXT4-fs: Ignoring removed bh option [ 1303.672034][T16861] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-001000000000 r/w without journal. Quota mode: writeback. [ 1304.186340][T16871] sch_tbf: burst 1 is lower than device ip6tnl0 mtu (1452) ! [ 1304.382296][ T5819] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-001000000000. [ 1304.423950][T16873] netlink: 16 bytes leftover after parsing attributes in process `syz.3.4775'. [ 1304.434609][T16873] netlink: 16 bytes leftover after parsing attributes in process `syz.3.4775'. [ 1305.203931][ T1996] usb 6-1: new high-speed USB device number 6 using dummy_hcd [ 1305.428660][ T1996] usb 6-1: Using ep0 maxpacket: 16 [ 1305.498014][ T1996] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 1305.509752][ T1996] usb 6-1: New USB device found, idVendor=04fc, idProduct=05d8, bcdDevice= 0.00 [ 1305.525273][ T1996] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1305.572296][ T1996] usb 6-1: config 0 descriptor?? [ 1306.086496][ T1996] sunplus 0003:04FC:05D8.0015: reserved main item tag 0xd [ 1306.094289][ T1996] sunplus 0003:04FC:05D8.0015: unexpected long global item [ 1306.142157][ T1996] sunplus 0003:04FC:05D8.0015: probe with driver sunplus failed with error -22 [ 1306.311708][ T5881] usb 6-1: USB disconnect, device number 6 [ 1306.423299][T16889] sp0: Synchronizing with TNC [ 1306.580834][T16888] [U] ` [ 1308.420034][T16914] ip6t_rpfilter: only valid in 'raw' or 'mangle' table, not '' [ 1309.195137][T16925] loop4: detected capacity change from 0 to 256 [ 1309.658886][T16925] FAT-fs (loop4): Directory bread(block 64) failed [ 1309.666019][T16925] FAT-fs (loop4): Directory bread(block 65) failed [ 1309.673483][T16925] FAT-fs (loop4): Directory bread(block 66) failed [ 1309.680307][T16925] FAT-fs (loop4): Directory bread(block 67) failed [ 1309.688188][T16925] FAT-fs (loop4): Directory bread(block 68) failed [ 1309.696455][T16925] FAT-fs (loop4): Directory bread(block 69) failed [ 1309.704078][T16925] FAT-fs (loop4): Directory bread(block 70) failed [ 1309.710939][T16925] FAT-fs (loop4): Directory bread(block 71) failed [ 1309.726021][T16925] FAT-fs (loop4): Directory bread(block 72) failed [ 1309.735389][T16925] FAT-fs (loop4): Directory bread(block 73) failed [ 1310.143685][T16932] program syz.0.4803 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 1311.199848][T16941] loop2: detected capacity change from 0 to 128 [ 1311.316978][T16941] UDF-fs: error (device loop2): udf_read_tagged: read failed, block=256, location=256 [ 1311.391750][T16941] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 1311.837854][T16946] loop4: detected capacity change from 0 to 1024 [ 1312.084678][T16946] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1312.097832][T16946] ext4 filesystem being mounted at /956/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 1312.146560][T16950] loop0: detected capacity change from 0 to 1024 [ 1312.418145][T16950] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1312.431410][T16950] ext4 filesystem being mounted at /986/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 1312.702437][T16950] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 21 vs 268369941 free clusters [ 1312.754145][T16950] EXT4-fs (loop0): Remounting filesystem read-only [ 1312.884823][ T5819] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1313.203611][ T5815] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1314.756414][T16981] loop0: detected capacity change from 0 to 512 [ 1314.871468][T16981] EXT4-fs (loop0): Cannot turn on journaled quota: type 1: error -13 [ 1314.923676][T16981] EXT4-fs error (device loop0): ext4_orphan_get:1393: inode #13: comm syz.0.4822: iget: bad i_size value: 12154757448730 [ 1315.053908][T16981] EXT4-fs error (device loop0): ext4_orphan_get:1398: comm syz.0.4822: couldn't read orphan inode 13 (err -117) [ 1315.115937][T16981] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1315.135019][T16984] [U] [ 1315.451865][T16990] loop3: detected capacity change from 0 to 64 [ 1315.632189][ T5815] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1315.703379][ T30] audit: type=1800 audit(1752506536.492:159): pid=16990 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.4827" name="file1" dev="loop3" ino=21 res=0 errno=0 [ 1315.730919][T16990] syz.3.4827: attempt to access beyond end of device [ 1315.730919][T16990] loop3: rw=34817, sector=39, nr_sectors = 125 limit=64 [ 1315.746935][T16990] syz.3.4827: attempt to access beyond end of device [ 1315.746935][T16990] loop3: rw=34817, sector=167, nr_sectors = 1 limit=64 [ 1315.761364][T16990] syz.3.4827: attempt to access beyond end of device [ 1315.761364][T16990] loop3: rw=34817, sector=169, nr_sectors = 1 limit=64 [ 1315.777099][T16990] syz.3.4827: attempt to access beyond end of device [ 1315.777099][T16990] loop3: rw=34817, sector=171, nr_sectors = 7 limit=64 [ 1315.816440][T16990] syz.3.4827: attempt to access beyond end of device [ 1315.816440][T16990] loop3: rw=34817, sector=179, nr_sectors = 371 limit=64 [ 1316.903406][T17002] netlink: 8 bytes leftover after parsing attributes in process `syz.5.4834'. [ 1317.750003][T17014] netlink: 36 bytes leftover after parsing attributes in process `syz.5.4838'. [ 1318.333821][T17020] sp0: Synchronizing with TNC [ 1318.386824][T17018] [U] ` [ 1318.978968][T17028] loop5: detected capacity change from 0 to 1024 [ 1319.065334][T17028] hfsplus: inconsistency in B*Tree (-1,0,1,1,0) [ 1319.072039][T17028] hfsplus: failed to load root directory [ 1320.708894][T17048] program syz.2.4853 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 1320.725799][T17046] loop5: detected capacity change from 0 to 1024 [ 1321.812747][T17057] ===================================================== [ 1321.820511][T17057] BUG: KMSAN: uninit-value in ieee802154_hdr_push+0x9ac/0xa30 [ 1321.828754][T17057] ieee802154_hdr_push+0x9ac/0xa30 [ 1321.834269][T17057] ieee802154_header_create+0x854/0xb90 [ 1321.840062][T17057] dgram_sendmsg+0xb40/0x16d0 [ 1321.845306][T17057] ieee802154_sock_sendmsg+0x8f/0xd0 [ 1321.850864][T17057] __sock_sendmsg+0x333/0x3d0 [ 1321.855958][T17057] ____sys_sendmsg+0x7e0/0xd80 [ 1321.861018][T17057] ___sys_sendmsg+0x271/0x3b0 [ 1321.866242][T17057] __sys_sendmsg+0x1aa/0x300 [ 1321.871106][T17057] __ia32_compat_sys_sendmsg+0xa4/0x100 [ 1321.877134][T17057] ia32_sys_call+0x3692/0x42c0 [ 1321.883321][T17057] __do_fast_syscall_32+0xb0/0x150 [ 1321.888726][T17057] do_fast_syscall_32+0x38/0x80 [ 1321.895148][T17057] do_SYSENTER_32+0x1f/0x30 [ 1321.901009][T17057] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 1321.908112][T17057] [ 1321.910580][T17057] Uninit was stored to memory at: [ 1321.916107][T17057] ieee802154_hdr_push+0x9a5/0xa30 [ 1321.921501][T17057] ieee802154_header_create+0x854/0xb90 [ 1321.928672][T17057] dgram_sendmsg+0xb40/0x16d0 [ 1321.933831][T17057] ieee802154_sock_sendmsg+0x8f/0xd0 [ 1321.939372][T17057] __sock_sendmsg+0x333/0x3d0 [ 1321.944497][T17057] ____sys_sendmsg+0x7e0/0xd80 [ 1321.949555][T17057] ___sys_sendmsg+0x271/0x3b0 [ 1321.954668][T17057] __sys_sendmsg+0x1aa/0x300 [ 1321.959567][T17057] __ia32_compat_sys_sendmsg+0xa4/0x100 [ 1321.965662][T17057] ia32_sys_call+0x3692/0x42c0 [ 1321.970669][T17057] __do_fast_syscall_32+0xb0/0x150 [ 1321.976292][T17057] do_fast_syscall_32+0x38/0x80 [ 1321.981434][T17057] do_SYSENTER_32+0x1f/0x30 [ 1321.987828][T17057] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 1321.994931][T17057] [ 1321.997408][T17057] Local variable hdr created at: [ 1322.003721][T17057] ieee802154_header_create+0x4e/0xb90 [ 1322.009424][T17057] dgram_sendmsg+0xb40/0x16d0 [ 1322.014984][T17057] [ 1322.017526][T17057] CPU: 1 UID: 0 PID: 17057 Comm: syz.2.4857 Tainted: G W 6.16.0-rc6-syzkaller #0 PREEMPT(none) [ 1322.029922][T17057] Tainted: [W]=WARN [ 1322.034074][T17057] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 1322.044601][T17057] ===================================================== [ 1322.051706][T17057] Disabling lock debugging due to kernel taint [ 1322.058276][T17057] Kernel panic - not syncing: kmsan.panic set ... [ 1322.064918][T17057] CPU: 1 UID: 0 PID: 17057 Comm: syz.2.4857 Tainted: G B W 6.16.0-rc6-syzkaller #0 PREEMPT(none) [ 1322.077124][T17057] Tainted: [B]=BAD_PAGE, [W]=WARN [ 1322.082336][T17057] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 1322.092610][T17057] Call Trace: [ 1322.096066][T17057] [ 1322.099161][T17057] __dump_stack+0x26/0x30 [ 1322.103802][T17057] dump_stack_lvl+0x53/0x270 [ 1322.108664][T17057] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 1322.114773][T17057] dump_stack+0x1e/0x25 [ 1322.119194][T17057] panic+0x4bd/0xd50 [ 1322.123414][T17057] kmsan_report+0x31c/0x320 [ 1322.128215][T17057] ? stack_depot_save+0x12/0x20 [ 1322.133313][T17057] ? __msan_warning+0x1b/0x30 [ 1322.138253][T17057] ? ieee802154_hdr_push+0x9ac/0xa30 [ 1322.143785][T17057] ? ieee802154_header_create+0x854/0xb90 [ 1322.149712][T17057] ? dgram_sendmsg+0xb40/0x16d0 [ 1322.154780][T17057] ? ieee802154_sock_sendmsg+0x8f/0xd0 [ 1322.160465][T17057] ? __sock_sendmsg+0x333/0x3d0 [ 1322.165523][T17057] ? ____sys_sendmsg+0x7e0/0xd80 [ 1322.170703][T17057] ? ___sys_sendmsg+0x271/0x3b0 [ 1322.175784][T17057] ? __sys_sendmsg+0x1aa/0x300 [ 1322.180781][T17057] ? __ia32_compat_sys_sendmsg+0xa4/0x100 [ 1322.186760][T17057] ? ia32_sys_call+0x3692/0x42c0 [ 1322.191902][T17057] ? __do_fast_syscall_32+0xb0/0x150 [ 1322.197457][T17057] ? do_fast_syscall_32+0x38/0x80 [ 1322.202749][T17057] ? do_SYSENTER_32+0x1f/0x30 [ 1322.207693][T17057] ? entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 1322.214484][T17057] ? entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 1322.221280][T17057] ? __ia32_compat_sys_sendmsg+0xa4/0x100 [ 1322.227316][T17057] ? ia32_sys_call+0x3692/0x42c0 [ 1322.232566][T17057] ? kmsan_get_metadata+0xfb/0x160 [ 1322.237933][T17057] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 1322.244015][T17057] ? cfg802154_pernet_exit+0x191/0x230 [ 1322.249729][T17057] ? filter_irq_stacks+0x49/0x190 [ 1322.254962][T17057] ? kmsan_get_metadata+0xfb/0x160 [ 1322.260320][T17057] ? kmsan_internal_memmove_metadata+0x91/0x230 [ 1322.266907][T17057] ? kmsan_get_metadata+0xfb/0x160 [ 1322.272282][T17057] ? kmsan_internal_memmove_metadata+0x181/0x230 [ 1322.278872][T17057] ? kmsan_get_metadata+0xfb/0x160 [ 1322.284242][T17057] __msan_warning+0x1b/0x30 [ 1322.289019][T17057] ieee802154_hdr_push+0x9ac/0xa30 [ 1322.294430][T17057] ? __msan_memcpy+0x108/0x1c0 [ 1322.299438][T17057] ieee802154_header_create+0x854/0xb90 [ 1322.305229][T17057] ? kmsan_get_metadata+0xfb/0x160 [ 1322.310640][T17057] ? __pfx_ieee802154_header_create+0x10/0x10 [ 1322.317209][T17057] dgram_sendmsg+0xb40/0x16d0 [ 1322.322138][T17057] ? __pfx_dgram_sendmsg+0x10/0x10 [ 1322.327477][T17057] ieee802154_sock_sendmsg+0x8f/0xd0 [ 1322.333016][T17057] ? __pfx_ieee802154_sock_sendmsg+0x10/0x10 [ 1322.339270][T17057] ? __pfx_ieee802154_sock_sendmsg+0x10/0x10 [ 1322.345486][T17057] __sock_sendmsg+0x333/0x3d0 [ 1322.350401][T17057] ____sys_sendmsg+0x7e0/0xd80 [ 1322.355459][T17057] ___sys_sendmsg+0x271/0x3b0 [ 1322.360399][T17057] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 1322.366485][T17057] ? __rcu_read_unlock+0x6d/0xd0 [ 1322.371637][T17057] ? __fget_files+0x3b4/0x4a0 [ 1322.376567][T17057] ? __fget_files+0x3b9/0x4a0 [ 1322.381499][T17057] ? kmsan_get_metadata+0xfb/0x160 [ 1322.386888][T17057] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 1322.392995][T17057] __sys_sendmsg+0x1aa/0x300 [ 1322.397903][T17057] __ia32_compat_sys_sendmsg+0xa4/0x100 [ 1322.403754][T17057] ia32_sys_call+0x3692/0x42c0 [ 1322.408741][T17057] __do_fast_syscall_32+0xb0/0x150 [ 1322.414141][T17057] ? irqentry_exit_to_user_mode+0x82/0xa0 [ 1322.420183][T17057] do_fast_syscall_32+0x38/0x80 [ 1322.425334][T17057] do_SYSENTER_32+0x1f/0x30 [ 1322.430100][T17057] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 1322.436674][T17057] RIP: 0023:0xf70ee539 [ 1322.440922][T17057] Code: 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 [ 1322.460775][T17057] RSP: 002b:00000000f50de55c EFLAGS: 00000206 ORIG_RAX: 0000000000000172 [ 1322.469418][T17057] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000800000c0 [ 1322.477569][T17057] RDX: 0000000004000010 RSI: 0000000000000000 RDI: 0000000000000000 [ 1322.485706][T17057] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 1322.493846][T17057] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000 [ 1322.502014][T17057] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 1322.510221][T17057] [ 1322.513703][T17057] Kernel Offset: disabled [ 1322.518159][T17057] Rebooting in 86400 seconds..