last executing test programs: 3m15.803198328s ago: executing program 4 (id=5): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPCTNL_MSG_TIMEOUT_NEW(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={0x0, 0x4c}, 0x1, 0x0, 0x0, 0x40}, 0x4040) sendmsg$IPCTNL_MSG_TIMEOUT_DELETE(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB="14000000020801010000000020000000050000072f401c6ddc8070749e8204e6b047bd7698e8356518d0a8a6"], 0x14}, 0x1, 0x0, 0x0, 0x404c080}, 0x80080) 3m15.655508098s ago: executing program 4 (id=16): r0 = syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0x200000, &(0x7f00000024c0)={[{@noblock_validity}, {}, {@sysvgroups}, {@norecovery}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {@orlov}, {@min_batch_time={'min_batch_time', 0x3d, 0x6}}, {@noauto_da_alloc}, {@nomblk_io_submit}]}, 0x3, 0x571, &(0x7f0000002580)="$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") openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0) creat(&(0x7f0000000040)='./bus\x00', 0x0) mount(&(0x7f0000000200)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x41800, 0x0) r1 = open(&(0x7f0000000080)='./bus\x00', 0x185102, 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r1, 0x0) syz_mount_image$squashfs(&(0x7f0000000100), &(0x7f00000001c0)='./bus\x00', 0x3008022, &(0x7f00000003c0)=ANY=[@ANYBLOB="bd56562f3f06ea5c5a67961a1dd3a572ae11b52d6d441663767f8f80dc02606a6edb3ccd50d71347e2500fd059c61d535656", @ANYBLOB="aacd1d6630d7b44c49df74341c5bd77616f04336e4558973bc74f6f8187fcbd7158fd887e3a9369443f256a16775f8cdfbe3481a5438ab2a8b258a4a33b687501ee3fd519a05f607e785e346bf4951f435f5a6846527092db6f8c7b1a7e6a287782ed75c22267b4759cbf0807429711f5c0e0c98763608cc066e22c73833b634663b26", @ANYRESHEX, @ANYRES32, @ANYRES8=r0, @ANYRESHEX=r1, @ANYRESHEX=0x0, @ANYRESHEX, @ANYBLOB="18438e7e306803b3cc28a3bb70b05dab460057688752b12b7677bc9b2aaae463796088be7239f42c1f98cfff97dc5bb662e4149f6cc36ab79c28f521e780f690af8ebbc6447340672604938c07437e142f3e802a0b6f3ec92bab863f62d272aa05538c7eba10af08b4dea442ae0d6d29e666d58d39b599959f"], 0x0, 0x1dc, &(0x7f00000006c0)="$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") unlinkat(0xffffffffffffff9c, &(0x7f0000000c40)='./file1\x00', 0x0) 3m14.998811966s ago: executing program 4 (id=21): seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f00000001c0)={0x1, &(0x7f0000000080)=[{0x6, 0x0, 0x0, 0x7fff0000}]}) setfsgid(0x0) 3m13.870183539s ago: executing program 4 (id=29): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000280), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000002c0)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000640)={&(0x7f0000000300)={0x40, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_FRAME={0x24, 0x33, @reassoc_resp={{{0x0, 0x0, 0x8}, {}, @broadcast, @device_a, @random="f7ab87594b3f"}, 0x0, 0x0, @random, @val, @void}}]}, 0x40}}, 0x0) socket$nl_audit(0x10, 0x3, 0x9) 3m12.119093596s ago: executing program 32 (id=29): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000280), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000002c0)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000640)={&(0x7f0000000300)={0x40, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_FRAME={0x24, 0x33, @reassoc_resp={{{0x0, 0x0, 0x8}, {}, @broadcast, @device_a, @random="f7ab87594b3f"}, 0x0, 0x0, @random, @val, @void}}]}, 0x40}}, 0x0) socket$nl_audit(0x10, 0x3, 0x9) 10.309318148s ago: executing program 5 (id=1044): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe5000/0x18000)=nil, &(0x7f00000000c0)=[@text32={0x20, 0x0}], 0x1, 0x48, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x5, 0x10000, 0x1000, &(0x7f0000feb000/0x1000)=nil}) 9.920355847s ago: executing program 5 (id=1047): r0 = syz_usb_connect(0x0, 0x2d, &(0x7f00000000c0)=ANY=[@ANYBLOB="1201fb0009030320d812010079de01ec020109021b0001000003000904000001785ecc00090585020004"], 0x0) r1 = syz_open_dev$char_usb(0xc, 0xb4, 0x0) read$char_usb(r1, &(0x7f0000000000)=""/188, 0xbc) syz_usb_disconnect(0xffffffffffffffff) syz_usb_disconnect(0xffffffffffffffff) syz_usb_disconnect(0xffffffffffffffff) syz_usb_disconnect(r0) 8.572687855s ago: executing program 1 (id=1053): mknodat(0xffffffffffffff9c, &(0x7f00000000c0)='./file2\x00', 0x81c0, 0x0) execveat(0xffffffffffffff9c, &(0x7f0000000280)='./file2\x00', 0x0, 0x0, 0x0) openat$procfs(0xffffffffffffff9c, &(0x7f0000000900)='/proc/keys\x00', 0x0, 0x0) 8.020115985s ago: executing program 1 (id=1054): r0 = socket(0x2000000000000021, 0x800, 0x10000000000002) r1 = epoll_create1(0x0) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000080)) r2 = socket$inet_icmp(0x2, 0x2, 0x1) getsockopt$inet_int(r2, 0x0, 0x15, 0x0, &(0x7f0000000040)) r3 = syz_mount_image$hfs(&(0x7f0000001600), &(0x7f0000000000)='./bus\x00', 0x2000000, &(0x7f00000004c0)=ANY=[@ANYBLOB="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"], 0x5, 0x30e, &(0x7f0000000900)="$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") socket(0x1d, 0x2, 0x6) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r4 = getpid() sched_setscheduler(r4, 0x2, &(0x7f0000000200)=0x5) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000840)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r5, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r6, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r5, &(0x7f0000000480), 0x400034f, 0x2, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) name_to_handle_at(0xffffffffffffff9c, 0x0, &(0x7f0000000880)=ANY=[@ANYBLOB="1400000052000000040000c667a5da5ad69753d400f2000800"/35], 0x0, 0x0) setsockopt$IP6T_SO_SET_REPLACE(0xffffffffffffffff, 0x29, 0x40, 0x0, 0x0) openat(r3, 0x0, 0x400080, 0x6) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000840)='memory.events.local\x00', 0x275a, 0x0) r7 = syz_open_dev$swradio(&(0x7f0000000000), 0x1, 0x2) mount(&(0x7f0000000000)=@sr0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000100)='ecryptfs\x00', 0x0, 0x0) poll(&(0x7f0000000140)=[{r7, 0x19f23}], 0x1, 0x0) io_destroy(0x0) 5.519533388s ago: executing program 1 (id=1057): r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000840)='memory.events.local\x00', 0x275a, 0x0) r1 = socket$nl_netfilter(0x10, 0x3, 0xc) r2 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_CREATE(r2, 0x0, 0x0) write$binfmt_script(r0, &(0x7f0000000040), 0x208e24b) r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000940), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000000)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_SET_CQM(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000a40)={&(0x7f0000000040)=ANY=[@ANYBLOB, @ANYRES16=r3, @ANYBLOB="010000000000000000003f00000008000300", @ANYRES32=r4, @ANYBLOB="20005e800800060000000000080005000000000004"], 0x3c}}, 0x0) quotactl_fd$Q_SYNC(r1, 0xffffffff80000100, 0x0, 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r0, 0x0) ioctl$KVM_IRQ_LINE_STATUS(0xffffffffffffffff, 0xc008ae67, 0x0) r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r6, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil}) r7 = socket$l2tp6(0xa, 0x2, 0x73) bind$l2tp6(r7, 0x0, 0x0) r8 = ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0) getsockopt$inet_pktinfo(r0, 0x0, 0x8, &(0x7f00000000c0)={0x0, @broadcast}, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r8, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, 0x0}], 0x1, 0x64, 0x0, 0x0) ioctl$KVM_RUN(r8, 0xae80, 0x0) madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15) sendmsg$IPCTNL_MSG_CT_GET(0xffffffffffffffff, 0x0, 0x200040c4) ftruncate(r0, 0x3) 4.333914194s ago: executing program 5 (id=1063): pipe(&(0x7f00000007c0)={0xffffffffffffffff, 0xffffffffffffffff}) vmsplice(r1, &(0x7f00000000c0)=[{&(0x7f0000000180)="77690addcfbe1fbb66ec", 0xff3b}], 0x1, 0x1) close(r1) r2 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r2, 0x6, 0x80000000000002, &(0x7f0000000800)=0x16c, 0x4) setsockopt$inet_tcp_TCP_MD5SIG(r2, 0x6, 0xe, &(0x7f0000000480)={@in={{0x2, 0x0, @loopback}}, 0x0, 0x20000000005, 0x21}, 0xd8) socket$packet(0x11, 0x3, 0x300) sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0) bind$inet(r2, &(0x7f0000deb000)={0x2, 0x4e23, @multicast2}, 0x10) sendto$inet(r2, 0x0, 0x0, 0x240087f9, &(0x7f0000000100)={0x2, 0x4e23, @loopback}, 0x10) splice(r0, 0x0, r1, 0x0, 0xfffd, 0x0) 4.174550206s ago: executing program 1 (id=1065): r0 = syz_usb_connect$printer(0x2, 0x2d, &(0x7f0000000dc0)=ANY=[@ANYBLOB="12011001000000202505a8a4720b1c25030109021f000101ff8008090400fd01070101010905010220"], 0x0) syz_usb_control_io$printer(r0, &(0x7f0000001100)={0x14, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="0003620000000003"]}, 0x0) syz_usb_control_io(r0, &(0x7f00000015c0)={0x2c, 0x0, &(0x7f0000001480)={0x0, 0x3, 0x4, @lang_id={0x4, 0x3, 0x40b}}, 0x0, 0x0, 0x0}, 0x0) syz_usb_control_io(r0, 0x0, &(0x7f0000003d00)={0x84, 0x0, 0x0, 0x0, 0x0, &(0x7f0000003a00)={0x20, 0x0, 0x4, {0x2, 0x10}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) r1 = syz_open_dev$char_usb(0xc, 0xb4, 0x10000) write$char_usb(r1, &(0x7f0000001300)='7', 0x1) write$char_usb(r1, 0x0, 0x0) syz_usb_disconnect(r0) 4.033804336s ago: executing program 3 (id=1067): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000004c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000200)={0x40000004}) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000240)={0x307e}) 3.902652895s ago: executing program 5 (id=1070): bpf$MAP_CREATE(0x0, &(0x7f0000000600)=ANY=[@ANYBLOB="020000000400000005"], 0x48) r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="02000000040000000800"], 0x48) prlimit64(0x0, 0xe, &(0x7f0000000140)={0xc, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x9) r1 = getpid() sched_setscheduler(r1, 0x2, &(0x7f0000000000)=0x4) timer_create(0x0, &(0x7f0000000680)={0x0, 0x21}, &(0x7f0000000180)) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)) pipe(&(0x7f0000000200)) syz_mount_image$vfat(&(0x7f00000000c0), &(0x7f0000000040)='./bus\x00', 0x14542, &(0x7f0000000240)=ANY=[], 0x1, 0x1222, &(0x7f0000001580)="$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") syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) socketpair$nbd(0x1, 0x1, 0x0, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0x15, &(0x7f0000000180)=@framed={{0x18, 0x0, 0x0, 0x0, 0x20, 0x0, 0x0, 0x0, 0x800}, [@ringbuf_output={{}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x5}, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x4, 0x0, 0x0, 0x2}}, @ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x9}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, &(0x7f0000000380)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0xd, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xe, 0xc, &(0x7f0000000080)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x58, '\x00', 0x0, @fallback=0x87bed69c1f9dec2a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r2}, 0x10) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), r3) sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r3, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000580)={&(0x7f00000004c0)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB='ya\x00?\b\x00\x00\x00\x00\x00~'], 0x1c}}, 0x4000054) 3.877269707s ago: executing program 3 (id=1071): r0 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x0) mremap(&(0x7f0000000000/0x9000)=nil, 0x600600, 0x200000, 0x3, &(0x7f0000a00000/0x600000)=nil) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r0, 0x0) r1 = socket$inet6_udp(0xa, 0x2, 0x0) setsockopt$IP6T_SO_SET_REPLACE(r1, 0x29, 0x40, &(0x7f0000001300)=@raw={'raw\x00', 0x3c1, 0x3, 0x2b0, 0x240, 0x168, 0x9, 0x168, 0xb, 0x240, 0x250, 0x250, 0x240, 0x250, 0x3, 0x0, {[{{@ipv6={@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @ipv4={'\x00', '\xff\xff', @loopback}, [], [], 'veth0_to_bond\x00', 'sit0\x00'}, 0x6000000, 0xa8, 0x108, 0x0, {0x0, 0x28e}}, @common=@inet=@HMARK={0x60, 'HMARK\x00', 0x0, {@ipv4=@local}}}, {{@uncond, 0x0, 0xa8, 0xd8}, @common=@inet=@SET2={0x30}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x310) 2.499101108s ago: executing program 0 (id=1073): r0 = openat$nvme_fabrics(0xffffffffffffff9c, &(0x7f0000000000), 0x101200, 0x0) syz_io_uring_setup(0x1d77, &(0x7f00000003c0)={0x0, 0x147d, 0x80, 0x3, 0x241, 0x0, r0}, &(0x7f00000000c0), &(0x7f0000000100)) clock_gettime(0x0, 0x0) pselect6(0x40, &(0x7f0000000140)={0x84, 0xfffffffffffffff7, 0x0, 0x8, 0x0, 0x1, 0x4, 0xe423}, &(0x7f0000000180)={0x5, 0x7c71, 0x6, 0x40, 0x8, 0x1, 0x9b9}, &(0x7f00000001c0)={0x4, 0x7fff, 0x2a2, 0xf80, 0xfffffffffffffffb, 0x4, 0x2, 0x2}, &(0x7f0000000240), &(0x7f00000002c0)={&(0x7f0000000280)={[0x6a1]}, 0x8}) r1 = syz_open_dev$sndctrl(&(0x7f0000000340), 0x1ff, 0x102) ioctl$SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(r1, 0xc0045516, &(0x7f0000000380)=0x6) r2 = openat$dsp1(0xffffffffffffff9c, &(0x7f00000000c0), 0x109801, 0x0) write$dsp(r2, &(0x7f0000000200)='.', 0x1) ioctl$SNDCTL_DSP_SYNC(r2, 0x5001, 0x0) ioctl$SNDCTL_DSP_SPEED(r2, 0xc0045002, &(0x7f0000000300)=0x3) socket$inet6_udplite(0xa, 0x2, 0x88) write$P9_RVERSION(r0, 0x0, 0x15) 2.498934528s ago: executing program 2 (id=1074): r0 = syz_open_dev$swradio(&(0x7f0000000000), 0x1, 0x2) ioctl$VIDIOC_QUERYBUF_DMABUF(r0, 0xc04c5609, &(0x7f00000000c0)={0x1, 0xb, 0x4, 0x174000, 0x1, {0x77359400}, {0x4, 0x1, 0x10, 0x5, 0xa, 0x5, "cfe7584d"}, 0xfffffffe, 0x4, {}, 0xdb}) 2.451210951s ago: executing program 3 (id=1075): pwritev(0xffffffffffffffff, &(0x7f0000000040), 0x0, 0x9, 0x20000) bind$inet6(0xffffffffffffffff, &(0x7f00000000c0)={0xa, 0x4e21, 0xffffffff, @empty}, 0x1c) r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000580)=ANY=[@ANYBLOB="e846000040000900ffffffff000000000200000004001f00d0460180", @ANYRESDEC], 0x46e8}, 0x1, 0x0, 0x0, 0x4000441}, 0xc090) 2.208248959s ago: executing program 2 (id=1076): setsockopt$IP6T_SO_SET_REPLACE(0xffffffffffffffff, 0x29, 0x40, 0x0, 0x0) fchown(0xffffffffffffffff, 0x0, 0x0) mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x3, 0x200000005c832, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101) r1 = dup(r0) write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c) read$FUSE(0xffffffffffffffff, 0x0, 0x0) mbind(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x0, 0x0, 0x0, 0x2) 2.129868605s ago: executing program 3 (id=1077): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x600, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2) syz_usb_connect(0x0, 0x24, 0x0, 0x0) syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) io_uring_register$IORING_REGISTER_NAPI(0xffffffffffffffff, 0x1b, &(0x7f0000000100)={0xfffffffc, 0x6}, 0x1) openat$snapshot(0xffffffffffffff9c, &(0x7f00000002c0), 0x40000, 0x0) 2.077556609s ago: executing program 0 (id=1078): r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040), 0x84042, 0x0) r1 = syz_open_dev$loop(&(0x7f0000000080), 0x47ffffa, 0x122c42) ioctl$LOOP_CONFIGURE(r1, 0x4c0a, &(0x7f0000001ac0)={r0, 0x0, {0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3, 0x1c, "ff9f020bbe82b398b1c4369d03740250ceaac594b1b3d741dd17c1ac0d38ef2a565ef1e8336300", "a9103939c787a16c1ca43f80026d1f3c4da06963dd89d130e04d528539f3d3289737f0374c72a964a02447a75df8a69ea917deb7ba193b7e7772fd29f35239d2", "24431a1e77a68e174f000000000000000010e200", [0xfffffffffffffffe]}}) ioctl$LOOP_SET_STATUS64(r1, 0x4c04, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x80, 0x3, 0x0, 0x0, 0x13, 0xd, "89753015418ab0df6afb245518580ce0c8bf604cca41f31c108938fcfa393ef569e0bcf244bb4b23555b13ecab66c7d257a037d0f08e8ad896ba67a07696defa", "8b609009aaa722687f3f2513d754f688a9e306ee1dba533f02e1b69da6e26ec889fee40080000027cc7d24fdc26f1a95d702020000e4b8fb1703e47463b969e4", "ca1b97448abe996b48956570128218a0d22915216fddb100", [0x9, 0x7]}) 1.09557378s ago: executing program 3 (id=1079): r0 = socket(0x10, 0x2, 0x0) r1 = syz_open_procfs(0x0, &(0x7f0000000380)='net/ip_vs\x00') pread64(r1, &(0x7f00000012c0)=""/4130, 0x1022, 0x8f) ioctl$sock_ipv6_tunnel_SIOCGETTUNNEL(r0, 0x89f0, &(0x7f0000000600)={'syztnl0\x00', &(0x7f0000000580)={'syztnl2\x00', 0x0, 0x4, 0x6, 0xa, 0x8, 0x21, @remote, @mcast2, 0x80, 0x8000, 0x1358, 0x1}}) 993.826318ms ago: executing program 1 (id=1080): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, 0x0, 0x0) setsockopt$inet_msfilter(0xffffffffffffffff, 0x0, 0x29, 0x0, 0x57) getsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(0xffffffffffffffff, 0x84, 0x72, 0x0, 0x0) sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000b40)={0x0, 0x0, &(0x7f0000000b00)={&(0x7f00000005c0)=ANY=[@ANYBLOB="14000000100001ff00000000000000000000000a2c000000050a01020000000000000000020000000900030073797a32000000000900010073797a300000000014000000020a031747d21400000000000000000014000000110001"], 0x68}}, 0x0) r1 = socket$nl_netfilter(0x10, 0x3, 0xc) setsockopt$inet6_group_source_req(0xffffffffffffffff, 0x29, 0x2b, 0x0, 0x0) r2 = syz_open_procfs(0x0, 0x0) writev(r2, 0x0, 0x0) setsockopt$inet6_group_source_req(0xffffffffffffffff, 0x29, 0x2b, 0x0, 0x0) sendmsg$NFT_BATCH(r1, &(0x7f0000000180)={0x0, 0x14, &(0x7f0000000100)={&(0x7f0000000540)=ANY=[@ANYBLOB="14000000100001000b000000000000000000000a20000000000a03000000000000000000010000000900010073797a300000000044000000090a010400000000000000000100000008000a40000000000900020073797a32000000000900010073797a3000000000080005400000001f08000340000000045c0000000c0a01020000000000000000010000000900020073797a32000000000900010073797a3000000000300003802c00008028000180230001"], 0xe8}}, 0x0) 853.843428ms ago: executing program 5 (id=1081): syz_mount_image$ext4(&(0x7f0000000240)='ext4\x00', &(0x7f0000000280)='mnt\x00', 0x4, &(0x7f0000000000), 0x0, 0x236, &(0x7f0000000300)="$eJzs3TFoM2UcBvDnLomf/b4gVRdBUEFEtFDqJrjURaEgpYgIKlREXJRWqC1urZOLg84qnVyKuFkdpUtxUQSnqh3qImhxsDjoELlcK9VGFFNz8t3vB5fcJe97//e4e95kOS5Aa00nmU/SSTKTpJekON/grnqZPt3cntpfTgaDx38shu3q7dpZv2tJtpI8mGSvLPJiN9nYffro54NH731jvXfPe7tPTU30IE8dHx0+dvLu4usfLjyw8fmX3y8WmU//D8d1+YoRn3WL5Jb/otj/RNFtegT8E0uvfvBVlftbk9w9zH8vZeqT9+baDXu93P/OX/V964cvbp/kWIHLNxj0qt/ArQHQOmWSfopyNkm9Xpazs/V/+K87V8uXVtdemXlhdX3l+aZnKuCy9JPDRz6+8tG1P+X/u06df+D6VeX/iaWdb6r1k07TowEmqcr/zLOb90X+oXXkH9pL/qG95B/aS/6hveQf2kv+ob3kH9pL/qG95B/a63z+AYB2GVxp+g5koClNzz8AAAAAAAAAAAAAAAAAAMBF21P7y2fLpGp++nZy/HCS7qj6neHziJMbh69XfyqqZr8r6m5jeebOMXcwpvcbvvv6pm+brf/ZHc3W31xJtl5LMtftXrz+itPr79+7+W++7z03ZoExPfRks/V/3Wm2/sJB8kk1/8yNmn/K3DZ8Hz3/9KvzN2b9l38ZcwcAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABMzG8BAAD//8n0bSk=") syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x21087c, &(0x7f0000000040)={[{@grpquota}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x800}}, {@minixdf}]}, 0x1, 0x507, &(0x7f0000000ac0)="$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") r0 = socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8b29, &(0x7f0000000040)={'wlan1\x00'}) r1 = openat(0xffffffffffffff9c, &(0x7f0000000540)='mnt\x00', 0x0, 0x0) ioctl$FS_IOC_ADD_ENCRYPTION_KEY(r1, 0xc0506617, &(0x7f0000000580)={@id={0x2, 0x0, @a}, 0x40, 0x0, '\x00', @a}) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$ethtool(&(0x7f0000000400), 0xffffffffffffffff) sendmsg$ETHTOOL_MSG_LINKMODES_SET(r0, &(0x7f00000001c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000140)={0x0}, 0x1, 0x0, 0x0, 0x4}, 0x4008014) openat$rfkill(0xffffffffffffff9c, 0x0, 0x602, 0x0) mkdirat(0xffffffffffffff9c, &(0x7f0000000640)='mnt/encrypted_dir\x00', 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000680)='mnt/encrypted_dir\x00', 0x800, 0x0) ioctl$FS_IOC_SET_ENCRYPTION_POLICY(r2, 0x800c6613, &(0x7f00000006c0)=@v2={0x2, @aes256, 0x0, '\x00', @a}) chdir(&(0x7f00000002c0)='mnt/encrypted_dir\x00') symlink(&(0x7f0000000700)='./file0\x00', &(0x7f0000000780)='./file0\x00') r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='mnt/encrypted_dir\x00', 0x420040, 0xdb) ioctl$FS_IOC_REMOVE_ENCRYPTION_KEY(r3, 0x8004587d, &(0x7f0000000080)={@id={0x2, 0x0, @c}}) ioctl$FS_IOC_REMOVE_ENCRYPTION_KEY_ALL_USERS(r2, 0xc0406619, &(0x7f0000000080)={@id={0x2, 0x0, @a}}) lstat(&(0x7f0000000200)='./file0\x00', &(0x7f00000002c0)) 845.371039ms ago: executing program 1 (id=1082): r0 = syz_usb_connect$cdc_ncm(0x0, 0x72, &(0x7f00000003c0)=ANY=[@ANYBLOB="1201000002000040257d15a4400001040001090260004201000000090400000102090000052406000105240000000d240f01000004eaffffff1e0006031a00000804800200090581", @ANYBLOB="f7", @ANYRESDEC], 0x0) syz_open_dev$char_usb(0xc, 0xb4, 0x0) syz_usb_ep_write(r0, 0x81, 0x0, 0x0) 736.338876ms ago: executing program 2 (id=1083): r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket(0x10, 0x803, 0x0) sendmsg$NL80211_CMD_GET_COALESCE(r1, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000400)={0x0, 0x14}}, 0x0) getsockname$packet(r1, &(0x7f0000000200)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000040)=0x8f) r3 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000580)={&(0x7f00000002c0)=ANY=[@ANYBLOB="3c0000001000030400000006000000005dcc0300", @ANYRES32=r2, @ANYBLOB="71e79fd800000000140012800c0001006d616376746170001400028008000500", @ANYRES32=r3], 0x3c}}, 0x0) sendmsg$nl_route_sched(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)=@newtfilter={0x24, 0x10, 0x1, 0x0, 0x0, {0x0, 0x0, 0x74, r2, {0xffe0}, {}, {0xa, 0x1}}}, 0x24}, 0x1, 0xf0ffffffffffff, 0x0, 0x4004140}, 0x0) 736.223067ms ago: executing program 3 (id=1084): prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680)) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x0) madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9) syz_clone3(&(0x7f00000003c0)={0x2000000, 0x0, 0x0, 0x0, {0x1b}, 0x0, 0x0, 0x0, 0x0}, 0x58) 640.594883ms ago: executing program 0 (id=1085): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_X86_SETUP_MCE(r2, 0x4008ae9c, &(0x7f0000000000)={0x6, 0x4, 0x1}) ioctl$KVM_SET_MSRS(r2, 0x4008ae89, &(0x7f0000000080)=ANY=[@ANYBLOB="01000000000000009802"]) 376.775943ms ago: executing program 0 (id=1086): r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff) write$binfmt_elf64(r0, &(0x7f0000000400)=ANY=[@ANYBLOB="7f454c4600000000000000000000e0ff02003e0000000000000000000000000040000000000000000000000000e0000009000000000038000100feff0000000003000000000000000000000000e50000000000000000000000000000000000000008"], 0x78) close(r0) execveat(0xffffffffffffff9c, &(0x7f0000000140)='./file1\x00', 0x0, 0x0, 0x0) 232.330113ms ago: executing program 0 (id=1087): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000000)={0x2, 0x0, [{0x1, 0xae1, 0x0, 0x0, 0x0, 0xffffffff}, {0x7, 0x0, 0x7, 0x5, 0xfffffffb, 0x4}]}) 221.645974ms ago: executing program 2 (id=1088): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newlink={0x3c, 0x10, 0x405, 0x0, 0xfffffffc, {}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @erspan={{0xb}, {0xc, 0x2, 0x0, 0x1, [@IFLA_GRE_ERSPAN_VER={0x5, 0x16, 0x82}]}}}]}, 0x3c}}, 0x0) 152.582509ms ago: executing program 2 (id=1089): setsockopt$inet_buf(0xffffffffffffffff, 0x0, 0x20, &(0x7f0000000240)="d8995a89e0e6bb05be", 0x9) r0 = socket$inet6_sctp(0xa, 0x801, 0x84) setsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r0, 0x84, 0x85, &(0x7f00000001c0)={0x0, @in={{0x2, 0x4e24, @empty}}, 0xffff, 0xffc0}, 0x90) 83.959244ms ago: executing program 5 (id=1090): ioctl$VHOST_SET_VRING_BASE(0xffffffffffffffff, 0xaf01, 0x0) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r0 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101) r1 = dup(r0) socket$nl_generic(0x10, 0x3, 0x10) write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c) r2 = syz_io_uring_setup(0x239, &(0x7f0000000740)={0x0, 0x1c2a, 0x10100, 0x0, 0x0, 0x0, r1}, &(0x7f0000000180)=0x0, &(0x7f00000001c0)=0x0) syz_io_uring_submit(r3, r4, &(0x7f0000000040)=@IORING_OP_POLL_ADD={0x6, 0x2, 0x0, @fd=r0, 0x0, 0x0, 0x0, {}, 0x1}) io_uring_enter(r2, 0x2ded, 0x4000, 0x0, 0x0, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$lock(r5, 0x6, &(0x7f0000002000)={0x1, 0x0, 0x0, 0x1}) setsockopt$packet_int(0xffffffffffffffff, 0x107, 0xf, 0x0, 0x0) fcntl$lock(r5, 0x26, &(0x7f0000000080)) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) r6 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]}) close_range(r6, 0xffffffffffffffff, 0x0) socket$nl_xfrm(0x10, 0x3, 0x6) 146.48µs ago: executing program 2 (id=1091): bpf$MAP_CREATE(0x0, &(0x7f0000000600)=ANY=[@ANYBLOB="020000000400000005"], 0x48) r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="02000000040000000800"], 0x48) prlimit64(0x0, 0xe, &(0x7f0000000140)={0xc, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x9) r1 = getpid() sched_setscheduler(r1, 0x2, &(0x7f0000000000)=0x4) timer_create(0x0, &(0x7f0000000680)={0x0, 0x21}, &(0x7f0000000180)) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) splice(r2, 0x0, 0xffffffffffffffff, 0x0, 0x8000f28, 0x0) syz_mount_image$vfat(&(0x7f00000000c0), &(0x7f0000000040)='./bus\x00', 0x14542, &(0x7f0000000240)=ANY=[], 0x1, 0x1222, &(0x7f0000001580)="$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") syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) socketpair$nbd(0x1, 0x1, 0x0, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0x15, &(0x7f0000000180)=@framed={{0x18, 0x0, 0x0, 0x0, 0x20, 0x0, 0x0, 0x0, 0x800}, [@ringbuf_output={{}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x5}, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x4, 0x0, 0x0, 0x2}}, @ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x9}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, &(0x7f0000000380)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0xd, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xe, 0xc, &(0x7f0000000080)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x58, '\x00', 0x0, @fallback=0x87bed69c1f9dec2a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r3}, 0x10) r4 = socket$nl_generic(0x10, 0x3, 0x10) r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), r4) sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r4, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000580)={&(0x7f00000004c0)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r5, @ANYBLOB='ya\x00?\b\x00\x00\x00\x00\x00~'], 0x1c}}, 0x4000054) 0s ago: executing program 0 (id=1092): r0 = io_uring_setup(0x2ea4, &(0x7f0000000500)={0x0, 0xafa, 0x12, 0x2, 0xc6}) r1 = socket$inet6_sctp(0xa, 0x1, 0x84) bind$inet6(r1, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) socket$inet6_mptcp(0xa, 0x1, 0x106) setsockopt$inet_int(0xffffffffffffffff, 0x0, 0x31, &(0x7f0000000100), 0x4) bind$inet6(r2, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @ipv4={'\x00', '\xff\xff', @empty}, 0xf}, 0x1c) r3 = socket$inet_mptcp(0x2, 0x1, 0x106) connect$inet(r3, &(0x7f0000000140)={0x2, 0x4e22, @loopback}, 0x10) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$mptcp(&(0x7f0000000000), 0xffffffffffffffff) setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, 0x0, 0x0) sendto$inet6(r1, &(0x7f0000847fff)='X', 0xfee4, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) close_range(r0, 0xffffffffffffffff, 0x0) kernel console output (not intermixed with test programs): ommended to keep mac addresses unique to avoid problems! [ 84.153034][ T4356] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 84.163513][ T4356] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 84.191149][ T4356] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 84.290924][ T4234] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 84.320473][ T4234] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 84.360476][ T4234] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 84.441240][ T4234] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 84.593398][ T4589] trusted_key: encrypted_key: insufficient parameters specified [ 84.618239][ T4356] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 84.659329][ T4356] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 84.699335][ T4356] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 84.739596][ T4356] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 84.749598][ T4245] usb 1-1: new high-speed USB device number 3 using dummy_hcd [ 84.778420][ T4356] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 84.809354][ T4356] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 84.829467][ T4356] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 84.849337][ T4356] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 84.872302][ T4356] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 84.901072][ T4592] device batadv_slave_0 entered promiscuous mode [ 84.933015][ T4594] device lo entered promiscuous mode [ 84.943527][ T4481] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 84.958685][ T4481] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 84.985732][ T4356] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 85.010082][ T4356] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 85.054870][ T4356] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 85.077709][ T4356] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 85.105167][ T4591] device lo left promiscuous mode [ 85.112555][ T4591] device batadv_slave_0 left promiscuous mode [ 85.159727][ T4245] usb 1-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3 [ 85.180203][ T4245] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 85.233447][ T4245] usb 1-1: config 0 descriptor?? [ 85.352040][ T4604] loop3: detected capacity change from 0 to 1024 [ 85.420469][ T9] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 85.429536][ T9] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 85.590073][ T9] hfsplus: b-tree write err: -5, ino 8 [ 85.603870][ T4234] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 85.626361][ T4234] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 85.871035][ T4330] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 85.890593][ T4245] cp210x 1-1:0.0: cp210x converter detected [ 85.898912][ T4330] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 86.282640][ T4245] cp210x 1-1:0.0: failed to get vendor val 0x000e size 678: -71 [ 86.299171][ T4245] cp210x 1-1:0.0: GPIO initialisation failed: -71 [ 86.308437][ T4245] usb 1-1: cp210x converter now attached to ttyUSB0 [ 86.325524][ T4245] usb 1-1: USB disconnect, device number 3 [ 86.360078][ T4245] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0 [ 86.393261][ T4245] cp210x 1-1:0.0: device disconnected [ 86.849024][ T4640] trusted_key: encrypted_key: insufficient parameters specified [ 87.109364][ T4650] loop2: detected capacity change from 0 to 512 [ 87.191892][ T4654] binder: 4652:4654 ioctl c0306201 400000000140 returned -14 [ 87.402932][ T4655] loop3: detected capacity change from 0 to 512 [ 87.600227][ T4650] EXT4-fs (loop2): mounted filesystem without journal. Opts: max_dir_size_kb=0x0000000000004739,inode_readahead_blks=0x0000000000000800,norecovery,,errors=continue. Quota mode: writeback. [ 87.679596][ T4650] ext4 filesystem being mounted at /17/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 87.945011][ T4680] loop3: detected capacity change from 0 to 2048 [ 87.955341][ T4682] devtmpfs: Too few inodes for current use [ 88.091013][ T4680] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 88.145990][ T4685] trusted_key: encrypted_key: insufficient parameters specified [ 90.151546][ T4736] netlink: 8 bytes leftover after parsing attributes in process `syz.0.112'. [ 90.172384][ T4739] trusted_key: encrypted_key: insufficient parameters specified [ 90.199499][ T1107] usb 3-1: new high-speed USB device number 5 using dummy_hcd [ 90.236531][ T4736] loop0: detected capacity change from 0 to 512 [ 90.349496][ T4736] EXT4-fs (loop0): Ignoring removed orlov option [ 90.379425][ T4736] EXT4-fs (loop0): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 90.580872][ T4736] EXT4-fs error (device loop0): ext4_orphan_get:1401: inode #15: comm syz.0.112: casefold flag without casefold feature [ 90.602570][ T1107] usb 3-1: Using ep0 maxpacket: 16 [ 90.802828][ T4736] EXT4-fs (loop0): Remounting filesystem read-only [ 90.818094][ T4736] EXT4-fs error (device loop0): ext4_orphan_get:1406: comm syz.0.112: couldn't read orphan inode 15 (err -117) [ 90.830935][ T1107] usb 3-1: config 0 has an invalid interface number: 251 but max is 0 [ 90.853090][ T1107] usb 3-1: config 0 has no interface number 0 [ 90.888325][ T1107] usb 3-1: config 0 interface 251 altsetting 0 bulk endpoint 0x4 has invalid maxpacket 16 [ 90.940262][ T4736] EXT4-fs (loop0): Remounting filesystem read-only [ 90.993389][ T1107] usb 3-1: config 0 interface 251 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 64 [ 91.013530][ T4736] EXT4-fs (loop0): mounted filesystem without journal. Opts: orlov,nodelalloc,errors=remount-ro,grpquota,auto_da_alloc,dioread_nolock,quota,. Quota mode: writeback. [ 91.400805][ T4766] loop5: detected capacity change from 0 to 128 [ 91.469707][ T1107] usb 3-1: New USB device found, idVendor=0b95, idProduct=172a, bcdDevice=f7.f4 [ 91.485199][ T1107] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 91.499321][ T1107] usb 3-1: Product: syz [ 91.503533][ T1107] usb 3-1: Manufacturer: syz [ 91.695209][ T1107] usb 3-1: SerialNumber: syz [ 91.703260][ T1107] usb 3-1: config 0 descriptor?? [ 91.710700][ T4766] EXT4-fs (loop5): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 91.719661][ T4728] raw-gadget.0 gadget: fail, usb_ep_enable returned -22 [ 91.739324][ T4728] raw-gadget.0 gadget: fail, usb_ep_enable returned -22 [ 91.782199][ T4766] ext4 filesystem being mounted at /9/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 92.104975][ T4728] raw-gadget.0 gadget: fail, usb_ep_enable returned -22 [ 92.481033][ T4728] raw-gadget.0 gadget: fail, usb_ep_enable returned -22 [ 92.744784][ T4793] device syzkaller0 entered promiscuous mode [ 92.747709][ T4799] trusted_key: encrypted_key: insufficient parameters specified [ 92.759403][ T4766] fscrypt: AES-256-CTS-CBC using implementation "cts-cbc-aes-aesni" [ 92.834419][ T1107] asix 3-1:0.251 (unnamed net_device) (uninitialized): Failed to read reg index 0x0000: -71 [ 92.884386][ T1107] asix 3-1:0.251 (unnamed net_device) (uninitialized): Failed to read software interface selection register: -71 [ 92.940014][ T1107] asix: probe of 3-1:0.251 failed with error -71 [ 92.941605][ T4803] loop5: detected capacity change from 0 to 512 [ 92.950603][ T4804] netlink: 8 bytes leftover after parsing attributes in process `syz.3.128'. [ 92.981560][ T4803] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode [ 92.987596][ T1107] usb 3-1: USB disconnect, device number 5 [ 93.007257][ T4804] loop3: detected capacity change from 0 to 512 [ 93.025968][ T4803] EXT4-fs (loop5): 1 truncate cleaned up [ 93.039046][ T4803] EXT4-fs (loop5): mounted filesystem without journal. Opts: nogrpid,resuid=0x0000000000000000,debug_want_extra_isize=0x0000000000000068,jqfmt=vfsv0,nolazytime,quota,,errors=continue. Quota mode: writeback. [ 93.086177][ T4804] EXT4-fs (loop3): Ignoring removed orlov option [ 93.099166][ T4804] EXT4-fs (loop3): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 93.138945][ T4804] EXT4-fs error (device loop3): ext4_orphan_get:1401: inode #15: comm syz.3.128: casefold flag without casefold feature [ 93.157016][ T4804] EXT4-fs (loop3): Remounting filesystem read-only [ 93.163982][ T4804] EXT4-fs error (device loop3): ext4_orphan_get:1406: comm syz.3.128: couldn't read orphan inode 15 (err -117) [ 93.209288][ T4804] EXT4-fs (loop3): Remounting filesystem read-only [ 93.215847][ T4804] EXT4-fs (loop3): mounted filesystem without journal. Opts: orlov,nodelalloc,errors=remount-ro,grpquota,auto_da_alloc,dioread_nolock,quota,. Quota mode: writeback. [ 93.249316][ T7] usb 1-1: new high-speed USB device number 4 using dummy_hcd [ 93.559811][ T7] usb 1-1: no configurations [ 93.566813][ T7] usb 1-1: can't read configurations, error -22 [ 94.445411][ T4826] loop3: detected capacity change from 0 to 128 [ 94.523206][ T4826] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 94.556291][ T4826] ext4 filesystem being mounted at /28/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 94.752209][ T7] usb 1-1: new high-speed USB device number 5 using dummy_hcd [ 95.261030][ T7] usb 1-1: no configurations [ 95.267017][ T7] usb 1-1: can't read configurations, error -22 [ 95.518514][ T4826] fscrypt: loop3: 1 inode(s) still busy after removing key with identifier 69b2f6edeee720cce0577937eb8a6751, including ino 12 [ 95.533033][ T7] usb usb1-port1: attempt power cycle [ 95.678666][ T4848] device syzkaller0 entered promiscuous mode [ 95.979335][ T7] usb 1-1: new high-speed USB device number 6 using dummy_hcd [ 96.030055][ T4865] netlink: 8 bytes leftover after parsing attributes in process `syz.3.144'. [ 96.068251][ T4865] loop3: detected capacity change from 0 to 512 [ 96.081935][ T4872] Zero length message leads to an empty skb [ 96.121182][ T4865] EXT4-fs (loop3): Ignoring removed orlov option [ 96.127699][ T4865] EXT4-fs (loop3): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 96.164317][ T4865] EXT4-fs error (device loop3): ext4_orphan_get:1401: inode #15: comm syz.3.144: casefold flag without casefold feature [ 96.180741][ T4865] EXT4-fs (loop3): Remounting filesystem read-only [ 96.197722][ T4865] EXT4-fs error (device loop3): ext4_orphan_get:1406: comm syz.3.144: couldn't read orphan inode 15 (err -117) [ 96.219331][ T7] usb 1-1: device not accepting address 6, error -71 [ 96.259143][ T4865] EXT4-fs (loop3): Remounting filesystem read-only [ 96.277858][ T4865] EXT4-fs (loop3): mounted filesystem without journal. Opts: orlov,nodelalloc,errors=remount-ro,grpquota,auto_da_alloc,dioread_nolock,quota,. Quota mode: writeback. [ 97.497482][ T4890] netlink: 32 bytes leftover after parsing attributes in process `syz.3.149'. [ 97.712656][ T4902] netlink: 20 bytes leftover after parsing attributes in process `syz.3.154'. [ 97.869300][ T4528] usb 3-1: new high-speed USB device number 6 using dummy_hcd [ 97.950505][ T4909] device syzkaller0 entered promiscuous mode [ 97.998091][ T4910] netlink: 4 bytes leftover after parsing attributes in process `syz.5.157'. [ 98.398840][ T4919] binder: 4918:4919 ioctl c0306201 0 returned -14 [ 98.416537][ T4919] loop3: detected capacity change from 0 to 1024 [ 98.427899][ T4528] usb 3-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 98.439970][ T4528] usb 3-1: config 1 interface 1 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 1024 [ 98.450047][ T4528] usb 3-1: config 1 interface 1 altsetting 1 endpoint 0x3 has invalid wMaxPacketSize 0 [ 98.493596][ T4919] hfsplus: invalid extent max_key_len 0 [ 98.499894][ T4919] hfsplus: failed to load extents file [ 98.832931][ T4528] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 98.842583][ T4528] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 98.850804][ T4528] usb 3-1: Product: syz [ 98.855523][ T4528] usb 3-1: Manufacturer: syz [ 98.860522][ T4528] usb 3-1: SerialNumber: syz [ 99.198603][ T4900] raw-gadget.0 gadget: fail, usb_ep_enable returned -22 [ 99.958377][ T4962] netlink: 8 bytes leftover after parsing attributes in process `syz.0.170'. [ 99.985460][ T4945] loop5: detected capacity change from 0 to 8 [ 99.992498][ T4962] loop0: detected capacity change from 0 to 512 [ 100.032256][ T4962] EXT4-fs (loop0): Ignoring removed orlov option [ 100.040882][ T4900] raw-gadget.0 gadget: fail, usb_ep_enable returned -22 [ 100.044115][ T4962] EXT4-fs (loop0): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 100.167616][ T4962] EXT4-fs error (device loop0): ext4_orphan_get:1401: inode #15: comm syz.0.170: casefold flag without casefold feature [ 100.195700][ T4962] EXT4-fs (loop0): Remounting filesystem read-only [ 100.205227][ T4962] EXT4-fs error (device loop0): ext4_orphan_get:1406: comm syz.0.170: couldn't read orphan inode 15 (err -117) [ 100.279706][ T4528] cdc_mbim 3-1:1.0: bind() failure [ 100.293526][ T4962] EXT4-fs (loop0): Remounting filesystem read-only [ 100.315499][ T4528] cdc_ncm 3-1:1.1: CDC Union missing and no IAD found [ 100.337108][ T4962] EXT4-fs (loop0): mounted filesystem without journal. Opts: orlov,nodelalloc,errors=remount-ro,grpquota,auto_da_alloc,dioread_nolock,quota,. Quota mode: writeback. [ 100.361756][ T4528] cdc_ncm 3-1:1.1: bind() failure [ 100.528362][ T4972] netlink: 16178 bytes leftover after parsing attributes in process `syz.1.172'. [ 100.905109][ T4976] binder: 4975:4976 ioctl c0306201 0 returned -14 [ 100.921883][ T4976] loop0: detected capacity change from 0 to 1024 [ 101.348974][ T4983] loop3: detected capacity change from 0 to 8192 [ 101.429904][ T4976] hfsplus: invalid extent max_key_len 0 [ 101.435773][ T4976] hfsplus: failed to load extents file [ 101.537469][ T4983] FAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 102.567793][ T4983] netlink: 8 bytes leftover after parsing attributes in process `syz.3.175'. [ 102.603082][ T4983] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2 [ 102.613137][ T4983] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db [ 103.187619][ T4983] syz.3.175 (4983) used greatest stack depth: 18776 bytes left [ 103.254257][ T1107] usb 3-1: USB disconnect, device number 6 [ 104.324625][ T5014] trusted_key: encrypted_key: insufficient parameters specified [ 104.326386][ T5010] netlink: 8 bytes leftover after parsing attributes in process `syz.2.183'. [ 104.358642][ T5015] loop0: detected capacity change from 0 to 256 [ 104.376253][ T5010] loop2: detected capacity change from 0 to 512 [ 104.466176][ T5010] EXT4-fs (loop2): Ignoring removed orlov option [ 104.495054][ T5010] EXT4-fs (loop2): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 104.551842][ T5021] netlink: 'syz.1.188': attribute type 39 has an invalid length. [ 104.621679][ T5010] EXT4-fs error (device loop2): ext4_orphan_get:1401: inode #15: comm syz.2.183: casefold flag without casefold feature [ 104.688727][ T5010] EXT4-fs (loop2): Remounting filesystem read-only [ 104.703628][ T5010] EXT4-fs error (device loop2): ext4_orphan_get:1406: comm syz.2.183: couldn't read orphan inode 15 (err -117) [ 104.717913][ T5010] EXT4-fs (loop2): Remounting filesystem read-only [ 104.725245][ T5010] EXT4-fs (loop2): mounted filesystem without journal. Opts: orlov,nodelalloc,errors=remount-ro,grpquota,auto_da_alloc,dioread_nolock,quota,. Quota mode: writeback. [ 104.809380][ T4214] usb 4-1: new high-speed USB device number 4 using dummy_hcd [ 105.210123][ T4214] usb 4-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 105.461125][ T5059] trusted_key: encrypted_key: insufficient parameters specified [ 105.912688][ T5054] device syzkaller0 entered promiscuous mode [ 106.044002][ T4214] usb 4-1: config 1 interface 1 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 1024 [ 106.055382][ T4214] usb 4-1: config 1 interface 1 altsetting 1 endpoint 0x3 has invalid wMaxPacketSize 0 [ 106.133729][ T5067] dccp_close: ABORT with 20 bytes unread [ 106.180900][ T5071] tipc: Started in network mode [ 106.200656][ T5071] tipc: Node identity f2816242c672, cluster identity 4711 [ 106.219734][ T4214] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 106.220064][ T5071] tipc: Enabled bearer , priority 0 [ 106.259421][ T4214] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 106.280324][ T4214] usb 4-1: Product: syz [ 106.284565][ T4214] usb 4-1: Manufacturer: syz [ 106.315414][ T4214] usb 4-1: SerialNumber: syz [ 106.402742][ T5065] device syzkaller0 entered promiscuous mode [ 106.423015][ T5082] netlink: 24 bytes leftover after parsing attributes in process `syz.5.203'. [ 106.508456][ T5063] tipc: Resetting bearer [ 106.593112][ T5026] raw-gadget.0 gadget: fail, usb_ep_enable returned -22 [ 106.648937][ T5063] tipc: Disabling bearer [ 106.916395][ T5107] trusted_key: encrypted_key: insufficient parameters specified [ 107.270092][ T5026] raw-gadget.0 gadget: fail, usb_ep_enable returned -22 [ 107.456191][ T5126] nf_conntrack: default automatic helper assignment has been turned off for security reasons and CT-based firewall rule not found. Use the iptables CT target to attach helpers instead. [ 107.509655][ T4214] cdc_mbim 4-1:1.0: bind() failure [ 107.519134][ T4214] cdc_ncm 4-1:1.1: CDC Union missing and no IAD found [ 107.542353][ T4214] cdc_ncm 4-1:1.1: bind() failure [ 107.566846][ T5128] netlink: 4 bytes leftover after parsing attributes in process `syz.5.212'. [ 107.879601][ T5133] device syzkaller0 entered promiscuous mode [ 108.283870][ T5154] binder: 5145:5154 ioctl c0306201 0 returned -14 [ 108.300780][ T5154] loop5: detected capacity change from 0 to 1024 [ 108.450826][ T5157] loop1: detected capacity change from 0 to 512 [ 108.592321][ T1107] usb 1-1: new high-speed USB device number 8 using dummy_hcd [ 108.622849][ T5154] hfsplus: invalid extent max_key_len 0 [ 108.628854][ T5154] hfsplus: failed to load extents file [ 108.833985][ T5166] loop1: detected capacity change from 0 to 2048 [ 109.039840][ T1107] usb 1-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3 [ 109.058355][ T5166] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 109.069572][ T1107] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 109.080721][ T1107] usb 1-1: config 0 descriptor?? [ 109.124485][ T1107] cp210x 1-1:0.0: cp210x converter detected [ 109.125263][ T5180] trusted_key: encrypted_key: insufficient parameters specified [ 109.438521][ T1110] usb 4-1: USB disconnect, device number 4 [ 109.629497][ T1107] cp210x 1-1:0.0: failed to get vendor val 0x000e size 3: 0 [ 109.757392][ T5203] loop5: detected capacity change from 0 to 128 [ 109.772113][ T5205] binder: 5191:5205 ioctl c0306201 0 returned -14 [ 109.820344][ T5205] loop1: detected capacity change from 0 to 1024 [ 109.839450][ T1107] cp210x 1-1:0.0: failed to get vendor val 0x370c size 73: -71 [ 109.880629][ T1107] cp210x 1-1:0.0: GPIO initialisation failed: -71 [ 109.912514][ T5203] EXT4-fs (loop5): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 109.935153][ T5205] hfsplus: invalid extent max_key_len 0 [ 109.941091][ T5205] hfsplus: failed to load extents file [ 109.966069][ T1107] usb 1-1: cp210x converter now attached to ttyUSB0 [ 109.979470][ T5203] ext4 filesystem being mounted at /30/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 110.048250][ T1107] usb 1-1: USB disconnect, device number 8 [ 110.048376][ T5205] loop1: detected capacity change from 0 to 2048 [ 110.120382][ T1107] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0 [ 110.128659][ T1107] cp210x 1-1:0.0: device disconnected [ 110.519619][ T5221] loop3: detected capacity change from 0 to 8192 [ 110.569141][ T5205] binder: 5191:5205 ioctl c0046209 0 returned -22 [ 110.631797][ T5221] FAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 111.142435][ T5231] loop2: detected capacity change from 0 to 128 [ 111.200950][ T5231] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 111.239549][ T5233] loop3: detected capacity change from 0 to 512 [ 111.246367][ T5231] ext4 filesystem being mounted at /38/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 111.514002][ T5239] loop3: detected capacity change from 0 to 2048 [ 111.579537][ T4215] usb 6-1: new high-speed USB device number 2 using dummy_hcd [ 111.654001][ T5239] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 111.874026][ T5251] netlink: 20 bytes leftover after parsing attributes in process `syz.2.236'. [ 111.959937][ T4215] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 111.987787][ T4215] usb 6-1: config 1 interface 1 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 1024 [ 112.069389][ T4215] usb 6-1: config 1 interface 1 altsetting 1 endpoint 0x3 has invalid wMaxPacketSize 0 [ 112.094684][ T4215] usb 6-1: config 1 interface 1 altsetting 1 bulk endpoint 0x3 has invalid maxpacket 0 [ 112.293968][ T4215] usb 6-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 112.326344][ T4215] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 112.354673][ T4215] usb 6-1: Product: syz [ 112.365485][ T4215] usb 6-1: Manufacturer: syz [ 112.376837][ T4215] usb 6-1: SerialNumber: syz [ 112.912023][ T5271] loop1: detected capacity change from 0 to 8192 [ 112.990130][ T4216] usb 1-1: new high-speed USB device number 9 using dummy_hcd [ 113.112882][ T5238] raw-gadget.0 gadget: fail, usb_ep_enable returned -22 [ 113.181683][ T5271] FAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 113.577471][ T5275] loop3: detected capacity change from 0 to 128 [ 113.649361][ T4216] usb 1-1: Using ep0 maxpacket: 16 [ 113.662703][ T5275] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 113.679918][ T5275] ext4 filesystem being mounted at /47/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 113.791030][ T4216] usb 1-1: config 0 has an invalid interface number: 251 but max is 0 [ 113.819855][ T4216] usb 1-1: config 0 has no interface number 0 [ 113.846143][ T4216] usb 1-1: config 0 interface 251 altsetting 0 bulk endpoint 0x4 has invalid maxpacket 16 [ 113.906767][ T4216] usb 1-1: config 0 interface 251 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 64 [ 114.119572][ T4216] usb 1-1: New USB device found, idVendor=0b95, idProduct=172a, bcdDevice=f7.f4 [ 114.129256][ T4216] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 114.137409][ T4216] usb 1-1: Product: syz [ 114.156965][ T4216] usb 1-1: Manufacturer: syz [ 114.167017][ T4216] usb 1-1: SerialNumber: syz [ 114.193104][ T4216] usb 1-1: config 0 descriptor?? [ 114.249853][ T5264] raw-gadget.1 gadget: fail, usb_ep_enable returned -22 [ 114.264601][ T5264] raw-gadget.1 gadget: fail, usb_ep_enable returned -22 [ 114.343379][ T5238] raw-gadget.0 gadget: fail, usb_ep_enable returned -22 [ 114.407664][ T5305] binder: 5294:5305 ioctl c0306201 0 returned -14 [ 114.468760][ T5305] loop3: detected capacity change from 0 to 1024 [ 114.669279][ T5305] hfsplus: invalid extent max_key_len 0 [ 114.676000][ T5305] hfsplus: failed to load extents file [ 114.719875][ T4215] cdc_mbim 6-1:1.0: bind() failure [ 114.792192][ T4215] cdc_ncm 6-1:1.1: CDC Union missing and no IAD found [ 114.916191][ T5305] loop3: detected capacity change from 0 to 2048 [ 114.962012][ T5264] raw-gadget.1 gadget: fail, usb_ep_enable returned -22 [ 114.980762][ T5264] raw-gadget.1 gadget: fail, usb_ep_enable returned -22 [ 114.989828][ T4215] cdc_ncm 6-1:1.1: bind() failure [ 115.001363][ T5308] device veth0 entered promiscuous mode [ 115.018741][ T5308] device veth0 left promiscuous mode [ 115.082976][ T5300] binder: 5294:5300 ioctl c0046209 0 returned -22 [ 115.299611][ T4216] asix 1-1:0.251 (unnamed net_device) (uninitialized): Failed to read reg index 0x0000: -71 [ 115.310412][ T4216] asix 1-1:0.251 (unnamed net_device) (uninitialized): Failed to read MAC address: -71 [ 115.320259][ T4216] asix: probe of 1-1:0.251 failed with error -5 [ 115.340826][ T4216] usb 1-1: USB disconnect, device number 9 [ 116.116073][ T5341] netlink: 8 bytes leftover after parsing attributes in process `syz.2.268'. [ 116.229584][ T4216] usb 1-1: new high-speed USB device number 10 using dummy_hcd [ 116.346593][ T1110] usb 6-1: USB disconnect, device number 2 [ 116.709599][ T5360] binder: 5350:5360 ioctl c0306201 0 returned -14 [ 116.767634][ T5360] loop2: detected capacity change from 0 to 1024 [ 116.825222][ T5360] hfsplus: invalid extent max_key_len 0 [ 116.831851][ T5360] hfsplus: failed to load extents file [ 117.011100][ T5360] binder: 5350:5360 ioctl c0046209 0 returned -22 [ 117.584931][ T5369] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 117.649463][ T4216] usb 1-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3 [ 117.658547][ T4216] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 117.708769][ T4216] usb 1-1: config 0 descriptor?? [ 117.790034][ T4216] cp210x 1-1:0.0: cp210x converter detected [ 117.937799][ T5378] loop5: detected capacity change from 0 to 1024 [ 117.944599][ T1107] usb 4-1: new high-speed USB device number 5 using dummy_hcd [ 117.996398][ T4262] hfsplus: b-tree write err: -5, ino 8 [ 118.002455][ T4245] usb 2-1: new high-speed USB device number 6 using dummy_hcd [ 118.231529][ T4216] cp210x 1-1:0.0: failed to get vendor val 0x000e size 3: 0 [ 118.341296][ T1107] usb 4-1: Using ep0 maxpacket: 16 [ 118.419688][ T4245] usb 2-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 118.435280][ T4245] usb 2-1: config 1 interface 1 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 1024 [ 118.446159][ T4216] cp210x 1-1:0.0: failed to get vendor val 0x370c size 73: -71 [ 118.456293][ T4216] cp210x 1-1:0.0: GPIO initialisation failed: -71 [ 118.465229][ T1107] usb 4-1: config 0 has an invalid interface number: 251 but max is 0 [ 118.469858][ T4216] usb 1-1: cp210x converter now attached to ttyUSB0 [ 118.480377][ T4245] usb 2-1: config 1 interface 1 altsetting 1 endpoint 0x3 has invalid wMaxPacketSize 0 [ 118.480474][ T1107] usb 4-1: config 0 has no interface number 0 [ 118.501672][ T1107] usb 4-1: config 0 interface 251 altsetting 0 bulk endpoint 0x4 has invalid maxpacket 16 [ 118.503256][ T4245] usb 2-1: config 1 interface 1 altsetting 1 bulk endpoint 0x3 has invalid maxpacket 0 [ 118.515636][ T1107] usb 4-1: config 0 interface 251 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 64 [ 118.524323][ T4216] usb 1-1: USB disconnect, device number 10 [ 118.546205][ T4216] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0 [ 118.555843][ T4216] cp210x 1-1:0.0: device disconnected [ 118.709527][ T1107] usb 4-1: New USB device found, idVendor=0b95, idProduct=172a, bcdDevice=f7.f4 [ 118.723673][ T1107] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 118.731990][ T1107] usb 4-1: Product: syz [ 118.736174][ T1107] usb 4-1: Manufacturer: syz [ 118.739464][ T4245] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 118.751367][ T1107] usb 4-1: SerialNumber: syz [ 118.751562][ T4245] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 118.764716][ T4245] usb 2-1: Product: syz [ 118.769004][ T4245] usb 2-1: Manufacturer: syz [ 118.774119][ T1107] usb 4-1: config 0 descriptor?? [ 118.778330][ T4245] usb 2-1: SerialNumber: syz [ 118.811030][ T5366] raw-gadget.0 gadget: fail, usb_ep_enable returned -22 [ 118.821912][ T5366] raw-gadget.0 gadget: fail, usb_ep_enable returned -22 [ 119.073258][ T5366] raw-gadget.0 gadget: fail, usb_ep_enable returned -22 [ 119.101258][ T5401] netlink: 8 bytes leftover after parsing attributes in process `syz.0.293'. [ 119.105535][ T5373] raw-gadget.2 gadget: fail, usb_ep_enable returned -22 [ 119.114464][ T5401] IPv6: ADDRCONF(NETDEV_CHANGE): gre1: link becomes ready [ 119.124635][ T5366] raw-gadget.0 gadget: fail, usb_ep_enable returned -22 [ 119.268142][ T5407] netlink: 4 bytes leftover after parsing attributes in process `syz.2.296'. [ 119.487771][ T1107] asix 4-1:0.251 (unnamed net_device) (uninitialized): Failed to read reg index 0x0000: -71 [ 119.498756][ T1107] asix 4-1:0.251 (unnamed net_device) (uninitialized): Failed to read MAC address: -71 [ 119.509167][ T1107] asix: probe of 4-1:0.251 failed with error -5 [ 119.521135][ T1107] usb 4-1: USB disconnect, device number 5 [ 119.641478][ T5414] bridge0: port 2(bridge_slave_1) entered disabled state [ 119.810349][ T5373] raw-gadget.2 gadget: fail, usb_ep_enable returned -22 [ 119.935575][ T5426] loop3: detected capacity change from 0 to 128 [ 120.039623][ T4245] cdc_mbim 2-1:1.0: bind() failure [ 120.073413][ T4245] cdc_ncm 2-1:1.1: CDC Union missing and no IAD found [ 120.096613][ T4245] cdc_ncm 2-1:1.1: bind() failure [ 120.115695][ T5426] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 120.154344][ T5426] ext4 filesystem being mounted at /54/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 120.650407][ T5462] loop5: detected capacity change from 0 to 16 [ 120.729761][ T5466] loop2: detected capacity change from 0 to 128 [ 120.806616][ T5462] erofs: (device loop5): mounted with root inode @ nid 36. [ 120.859563][ T4215] usb 4-1: new high-speed USB device number 6 using dummy_hcd [ 120.891387][ T5466] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 120.907434][ T5466] ext4 filesystem being mounted at /66/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 121.109617][ T4215] usb 4-1: Using ep0 maxpacket: 16 [ 121.243316][ T4215] usb 4-1: config 0 has an invalid interface number: 251 but max is 0 [ 121.257913][ T4215] usb 4-1: config 0 has no interface number 0 [ 121.288424][ T4215] usb 4-1: config 0 interface 251 altsetting 0 bulk endpoint 0x4 has invalid maxpacket 16 [ 121.289814][ T5485] tipc: Started in network mode [ 121.306554][ T4215] usb 4-1: config 0 interface 251 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 64 [ 121.329042][ T5485] tipc: Node identity 4, cluster identity 4711 [ 121.362172][ T5485] tipc: Node number set to 4 [ 121.368268][ T5485] tipc: Cannot configure node identity twice [ 121.375720][ T5487] netlink: 76 bytes leftover after parsing attributes in process `syz.2.329'. [ 121.521465][ T5492] loop0: detected capacity change from 0 to 16 [ 121.609391][ T4215] usb 4-1: New USB device found, idVendor=0b95, idProduct=172a, bcdDevice=f7.f4 [ 121.620104][ T4215] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 121.626313][ T5492] erofs: (device loop0): mounted with root inode @ nid 36. [ 121.629035][ T4215] usb 4-1: Product: syz [ 121.642361][ T4215] usb 4-1: Manufacturer: syz [ 121.648906][ T4215] usb 4-1: SerialNumber: syz [ 121.667531][ T4215] usb 4-1: config 0 descriptor?? [ 121.700386][ T5459] raw-gadget.0 gadget: fail, usb_ep_enable returned -22 [ 121.723242][ T5459] raw-gadget.0 gadget: fail, usb_ep_enable returned -22 [ 121.735389][ T5498] loop2: detected capacity change from 0 to 128 [ 121.847592][ T5498] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 121.888946][ T1107] usb 2-1: USB disconnect, device number 6 [ 121.913701][ T5498] ext4 filesystem being mounted at /72/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 121.953125][ T5459] raw-gadget.0 gadget: fail, usb_ep_enable returned -22 [ 121.973071][ T5459] raw-gadget.0 gadget: fail, usb_ep_enable returned -22 [ 122.240681][ T4215] asix 4-1:0.251 (unnamed net_device) (uninitialized): Failed to read reg index 0x0000: -71 [ 122.261479][ T4215] asix 4-1:0.251 (unnamed net_device) (uninitialized): Failed to read MAC address: -71 [ 122.277091][ T4215] asix: probe of 4-1:0.251 failed with error -5 [ 122.348214][ T4215] usb 4-1: USB disconnect, device number 6 [ 122.407106][ T5516] device syzkaller0 entered promiscuous mode [ 122.445354][ T5521] device vlan2 entered promiscuous mode [ 122.466590][ T5529] loop0: detected capacity change from 0 to 16 [ 122.526999][ T5529] erofs: (device loop0): mounted with root inode @ nid 36. [ 122.713728][ T5538] loop1: detected capacity change from 0 to 128 [ 122.826978][ T5538] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 122.871736][ T5538] ext4 filesystem being mounted at /75/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 123.009500][ T23] usb 1-1: new high-speed USB device number 11 using dummy_hcd [ 123.599787][ T23] usb 1-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 123.638758][ T23] usb 1-1: config 1 interface 1 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 1024 [ 123.717616][ T23] usb 1-1: config 1 interface 1 altsetting 1 endpoint 0x3 has invalid wMaxPacketSize 0 [ 123.802692][ T23] usb 1-1: config 1 interface 1 altsetting 1 bulk endpoint 0x3 has invalid maxpacket 0 [ 123.915174][ T5569] device syzkaller0 entered promiscuous mode [ 123.986856][ T5574] netlink: 104 bytes leftover after parsing attributes in process `syz.3.360'. [ 123.989776][ T23] usb 1-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 124.015267][ T23] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 124.027388][ T23] usb 1-1: Product: syz [ 124.050719][ T23] usb 1-1: Manufacturer: syz [ 124.055390][ T23] usb 1-1: SerialNumber: syz [ 124.252254][ T5582] loop2: detected capacity change from 0 to 256 [ 124.314261][ T5584] loop1: detected capacity change from 0 to 128 [ 124.333528][ T5541] raw-gadget.0 gadget: fail, usb_ep_enable returned -22 [ 124.369345][ T4245] usb 4-1: new high-speed USB device number 7 using dummy_hcd [ 124.384847][ T5584] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 124.477474][ T5584] ext4 filesystem being mounted at /81/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 124.516886][ T5582] exFAT-fs (loop2): error, invalid dentry access beyond EOF (clu : 5, eidx : 129) [ 124.580743][ T5582] exFAT-fs (loop2): Filesystem has been set read-only [ 124.605937][ T5582] exFAT-fs (loop2): error, failed to bmap (inode : ffff88805e8a2860 iblock : 8, err : -5) [ 124.632091][ T5582] exFAT-fs (loop2): error, invalid dentry access beyond EOF (clu : 5, eidx : 129) [ 124.639281][ T4245] usb 4-1: Using ep0 maxpacket: 16 [ 124.801145][ T4245] usb 4-1: config 0 has an invalid interface number: 251 but max is 0 [ 124.821792][ T4245] usb 4-1: config 0 has no interface number 0 [ 124.856482][ T4245] usb 4-1: config 0 interface 251 altsetting 0 bulk endpoint 0x4 has invalid maxpacket 16 [ 124.896836][ T5590] IPVS: stopping backup sync thread 5593 ... [ 124.911389][ T5593] IPVS: sync thread started: state = BACKUP, mcast_ifn = macsec0, syncid = 2, id = 0 [ 124.925207][ T4245] usb 4-1: config 0 interface 251 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 64 [ 124.936680][ T5591] binder: 5586:5591 ioctl c0306201 0 returned -14 [ 124.953601][ T5591] loop5: detected capacity change from 0 to 1024 [ 125.026043][ T5591] hfsplus: invalid extent max_key_len 0 [ 125.031944][ T5591] hfsplus: failed to load extents file [ 125.098171][ T5541] raw-gadget.0 gadget: fail, usb_ep_enable returned -22 [ 125.283474][ T26] audit: type=1326 audit(1739563805.967:15): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5589 comm="syz.2.368" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4ae7acbde9 code=0x7ffc0000 [ 125.315588][ T26] audit: type=1326 audit(1739563805.967:16): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5589 comm="syz.2.368" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4ae7acbde9 code=0x7ffc0000 [ 125.345836][ T26] audit: type=1326 audit(1739563805.977:17): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5589 comm="syz.2.368" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f4ae7acbde9 code=0x7ffc0000 [ 125.373379][ T26] audit: type=1326 audit(1739563805.977:18): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5589 comm="syz.2.368" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4ae7acbde9 code=0x7ffc0000 [ 125.401014][ T26] audit: type=1326 audit(1739563805.977:19): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5589 comm="syz.2.368" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4ae7acbde9 code=0x7ffc0000 [ 125.440322][ T26] audit: type=1326 audit(1739563805.977:20): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5589 comm="syz.2.368" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f4ae7acbde9 code=0x7ffc0000 [ 125.466957][ T26] audit: type=1326 audit(1739563805.977:21): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5589 comm="syz.2.368" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4ae7acbde9 code=0x7ffc0000 [ 125.493550][ T26] audit: type=1326 audit(1739563805.977:22): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5589 comm="syz.2.368" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4ae7acbde9 code=0x7ffc0000 [ 125.649469][ T23] cdc_mbim 1-1:1.0: bind() failure [ 125.729532][ T4245] usb 4-1: New USB device found, idVendor=0b95, idProduct=172a, bcdDevice=f7.f4 [ 125.756976][ T4245] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 125.788195][ T4245] usb 4-1: Product: syz [ 125.795623][ T4245] usb 4-1: Manufacturer: syz [ 125.804377][ T4245] usb 4-1: SerialNumber: syz [ 125.945076][ T23] cdc_ncm 1-1:1.1: CDC Union missing and no IAD found [ 125.952007][ T23] cdc_ncm 1-1:1.1: bind() failure [ 126.305034][ T4245] usb 4-1: config 0 descriptor?? [ 126.329631][ T5578] raw-gadget.1 gadget: fail, usb_ep_enable returned -22 [ 126.335111][ T5608] device syzkaller0 entered promiscuous mode [ 126.339773][ T5578] raw-gadget.1 gadget: fail, usb_ep_enable returned -22 [ 126.371125][ T5610] device syzkaller0 entered promiscuous mode [ 126.573950][ T5578] raw-gadget.1 gadget: fail, usb_ep_enable returned -22 [ 126.602433][ T5578] raw-gadget.1 gadget: fail, usb_ep_enable returned -22 [ 126.639107][ T5617] loop5: detected capacity change from 0 to 128 [ 126.664843][ T5620] loop1: detected capacity change from 0 to 256 [ 126.799984][ T5617] EXT4-fs (loop5): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 126.822358][ T5617] ext4 filesystem being mounted at /64/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 127.080036][ T4245] asix 4-1:0.251 (unnamed net_device) (uninitialized): Failed to read reg index 0x0000: -71 [ 127.128487][ T4245] asix 4-1:0.251 (unnamed net_device) (uninitialized): Failed to read software interface selection register: -71 [ 127.212268][ T4245] asix: probe of 4-1:0.251 failed with error -71 [ 127.258652][ T5629] nf_conntrack: default automatic helper assignment has been turned off for security reasons and CT-based firewall rule not found. Use the iptables CT target to attach helpers instead. [ 127.302497][ T4245] usb 4-1: USB disconnect, device number 7 [ 127.566923][ T4245] usb 1-1: USB disconnect, device number 11 [ 127.791688][ T26] audit: type=1326 audit(1739563808.567:23): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5632 comm="syz.5.382" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9934a1dde9 code=0x7ffc0000 [ 128.478142][ T26] audit: type=1326 audit(1739563808.577:24): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5632 comm="syz.5.382" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9934a1dde9 code=0x7ffc0000 [ 128.691465][ T5646] dccp_close: ABORT with 20 bytes unread [ 128.899716][ T5653] netlink: 'syz.0.391': attribute type 1 has an invalid length. [ 129.013062][ T5657] loop2: detected capacity change from 0 to 128 [ 129.030962][ T5653] 8021q: adding VLAN 0 to HW filter on device bond1 [ 129.401004][ T5657] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 129.455400][ T5657] ext4 filesystem being mounted at /83/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 129.477513][ T5659] 8021q: adding VLAN 0 to HW filter on device bond1 [ 129.510013][ T5659] bond1: (slave ipip0): The slave device specified does not support setting the MAC address [ 129.545484][ T7] Bluetooth: hci0: command 0x0c1a tx timeout [ 129.553559][ T5659] bond1: (slave ipip0): Error -95 calling set_mac_address [ 129.620435][ T5661] bond1: (slave ip6erspan0): making interface the new active one [ 129.690858][ T5661] bond1: (slave ip6erspan0): Enslaving as an active interface with an up link [ 129.973067][ T5677] loop2: detected capacity change from 0 to 256 [ 130.856809][ T26] kauditd_printk_skb: 6 callbacks suppressed [ 130.857010][ T26] audit: type=1326 audit(1739563811.217:31): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5679 comm="syz.3.398" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f082c83bde9 code=0x7ffc0000 [ 131.166073][ T26] audit: type=1326 audit(1739563811.217:32): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5679 comm="syz.3.398" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f082c83bde9 code=0x7ffc0000 [ 131.214115][ T26] audit: type=1326 audit(1739563811.227:33): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5679 comm="syz.3.398" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f082c83bde9 code=0x7ffc0000 [ 131.305763][ T5690] loop3: detected capacity change from 0 to 512 [ 131.315518][ T26] audit: type=1326 audit(1739563811.227:34): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5679 comm="syz.3.398" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f082c83bde9 code=0x7ffc0000 [ 131.392183][ T26] audit: type=1326 audit(1739563811.227:35): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5679 comm="syz.3.398" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f082c83bde9 code=0x7ffc0000 [ 131.421179][ T26] audit: type=1326 audit(1739563811.227:36): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5679 comm="syz.3.398" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f082c83bde9 code=0x7ffc0000 [ 131.444484][ T26] audit: type=1326 audit(1739563811.587:37): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5679 comm="syz.3.398" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f082c83bde9 code=0x7ffc0000 [ 131.483209][ T26] audit: type=1326 audit(1739563811.597:38): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5679 comm="syz.3.398" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f082c83bde9 code=0x7ffc0000 [ 131.659542][ T5694] loop0: detected capacity change from 0 to 1024 [ 131.704811][ T5697] loop3: detected capacity change from 0 to 2048 [ 132.047340][ T5697] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 132.844698][ T1429] ieee802154 phy0 wpan0: encryption failed: -22 [ 132.852245][ T1429] ieee802154 phy1 wpan1: encryption failed: -22 [ 134.460454][ T26] audit: type=1326 audit(1739563814.607:39): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5719 comm="syz.3.411" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f082c83bde9 code=0x7ffc0000 [ 134.583993][ T26] audit: type=1326 audit(1739563814.607:40): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5719 comm="syz.3.411" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f082c83bde9 code=0x7ffc0000 [ 134.655371][ T5733] netlink: 209852 bytes leftover after parsing attributes in process `syz.3.417'. [ 135.697942][ T5746] loop1: detected capacity change from 0 to 512 [ 135.883858][ T5750] dccp_close: ABORT with 20 bytes unread [ 136.509408][ T26] kauditd_printk_skb: 6 callbacks suppressed [ 136.509426][ T26] audit: type=1326 audit(1739563817.247:47): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5752 comm="syz.5.424" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9934a1dde9 code=0x7ffc0000 [ 136.812609][ T26] audit: type=1326 audit(1739563817.247:48): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5752 comm="syz.5.424" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9934a1dde9 code=0x7ffc0000 [ 136.841246][ T5759] netlink: 12 bytes leftover after parsing attributes in process `syz.2.426'. [ 136.909484][ T4721] hfsplus: b-tree write err: -5, ino 4 [ 136.953039][ T26] audit: type=1326 audit(1739563817.247:49): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5752 comm="syz.5.424" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f9934a1dde9 code=0x7ffc0000 [ 137.085691][ T26] audit: type=1326 audit(1739563817.247:50): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5752 comm="syz.5.424" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9934a1dde9 code=0x7ffc0000 [ 137.133742][ T26] audit: type=1326 audit(1739563817.247:51): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5752 comm="syz.5.424" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9934a1dde9 code=0x7ffc0000 [ 137.166643][ T5765] netlink: 8 bytes leftover after parsing attributes in process `syz.1.428'. [ 137.210962][ T26] audit: type=1326 audit(1739563817.247:52): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5752 comm="syz.5.424" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f9934a1dde9 code=0x7ffc0000 [ 137.396714][ T26] audit: type=1326 audit(1739563817.287:53): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5752 comm="syz.5.424" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9934a1dde9 code=0x7ffc0000 [ 137.856139][ T26] audit: type=1326 audit(1739563817.287:54): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5752 comm="syz.5.424" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9934a1dde9 code=0x7ffc0000 [ 138.349700][ T5777] input: syz1 as /devices/virtual/input/input5 [ 138.598043][ T5785] netlink: 44 bytes leftover after parsing attributes in process `syz.2.437'. [ 138.835039][ T5792] loop2: detected capacity change from 0 to 512 [ 139.257567][ T5801] pit: kvm: requested 4190 ns i8254 timer period limited to 200000 ns [ 139.314725][ T5801] kvm: pic: non byte read [ 139.335709][ T5801] kvm: pic: level sensitive irq not supported [ 139.338482][ T5801] kvm: pic: non byte read [ 139.377633][ T5801] kvm: pic: non byte read [ 139.398836][ T5801] kvm: pic: non byte read [ 139.419463][ T21] usb 4-1: new high-speed USB device number 8 using dummy_hcd [ 139.460538][ T5801] kvm: pic: non byte read [ 139.465264][ T5801] kvm: pic: non byte read [ 139.532052][ T5801] kvm: pic: non byte read [ 139.551629][ T5801] kvm: pic: non byte read [ 139.556459][ T5801] kvm: pic: non byte read [ 139.574369][ T5801] kvm: pic: non byte read [ 139.929714][ T21] usb 4-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3 [ 140.023212][ T21] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 140.476309][ T21] usb 4-1: config 0 descriptor?? [ 140.540614][ T21] cp210x 4-1:0.0: cp210x converter detected [ 140.749742][ T21] cp210x 4-1:0.0: failed to get vendor val 0x370b size 1: -32 [ 140.757644][ T21] cp210x 4-1:0.0: querying part number failed [ 140.808640][ T21] usb 4-1: cp210x converter now attached to ttyUSB0 [ 141.501678][ T5837] loop5: detected capacity change from 0 to 1024 [ 142.122499][ T4721] hfsplus: b-tree write err: -5, ino 4 [ 142.135349][ T21] usb 4-1: USB disconnect, device number 8 [ 142.188943][ T21] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0 [ 142.208793][ T5842] loop0: detected capacity change from 0 to 512 [ 142.221569][ T21] cp210x 4-1:0.0: device disconnected [ 143.199836][ T5853] trusted_key: encrypted_key: insufficient parameters specified [ 143.229404][ T4215] usb 6-1: new high-speed USB device number 3 using dummy_hcd [ 143.599517][ T4215] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 143.631461][ T4215] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 143.652363][ T4215] usb 6-1: New USB device found, idVendor=046d, idProduct=c222, bcdDevice= 0.00 [ 143.672001][ T4215] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 143.694256][ T4215] usb 6-1: config 0 descriptor?? [ 143.973440][ T5851] netlink: 'syz.5.458': attribute type 1 has an invalid length. [ 144.069713][ T4215] usbhid 6-1:0.0: can't add hid device: -71 [ 144.111495][ T4215] usbhid: probe of 6-1:0.0 failed with error -71 [ 144.319720][ T4215] usb 6-1: USB disconnect, device number 3 [ 144.912856][ T5881] loop2: detected capacity change from 0 to 1024 [ 145.155152][ T5889] trusted_key: encrypted_key: insufficient parameters specified [ 146.244410][ T5898] loop1: detected capacity change from 0 to 512 [ 146.510546][ T5905] netlink: 4 bytes leftover after parsing attributes in process `syz.5.474'. [ 146.612393][ T5907] loop1: detected capacity change from 0 to 2048 [ 146.634875][ T4234] hfsplus: b-tree write err: -5, ino 4 [ 146.780437][ T5907] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 147.102858][ T26] audit: type=1326 audit(1739563827.897:55): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5919 comm="syz.5.478" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f9934a1dde9 code=0x0 [ 148.424668][ T5932] netlink: 8 bytes leftover after parsing attributes in process `syz.5.482'. [ 148.452014][ T5935] pim6reg: tun_chr_ioctl cmd 1074025673 [ 148.466863][ T5932] loop5: detected capacity change from 0 to 512 [ 148.546397][ T5932] EXT4-fs (loop5): Ignoring removed orlov option [ 148.588821][ T5932] EXT4-fs (loop5): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 148.781155][ T5932] EXT4-fs error (device loop5): ext4_orphan_get:1401: inode #15: comm syz.5.482: casefold flag without casefold feature [ 148.804470][ T5943] loop3: detected capacity change from 0 to 64 [ 149.670883][ T5932] EXT4-fs (loop5): Remounting filesystem read-only [ 149.755894][ T5932] EXT4-fs error (device loop5): ext4_orphan_get:1406: comm syz.5.482: couldn't read orphan inode 15 (err -117) [ 149.905484][ T5943] ecryptfs_parse_options: You must supply at least one valid auth tok signature as a mount parameter; see the eCryptfs README [ 149.918781][ T5943] Error parsing options; rc = [-22] [ 149.947228][ T5932] EXT4-fs (loop5): Remounting filesystem read-only [ 149.976881][ T5932] EXT4-fs (loop5): mounted filesystem without journal. Opts: orlov,nodelalloc,errors=remount-ro,grpquota,auto_da_alloc,dioread_nolock,quota,. Quota mode: writeback. [ 150.446563][ T5959] binder: 5954:5959 ioctl c0306201 0 returned -14 [ 150.500614][ T5959] loop2: detected capacity change from 0 to 1024 [ 150.556423][ T5959] hfsplus: invalid extent max_key_len 0 [ 150.563043][ T5959] hfsplus: failed to load extents file [ 150.954716][ T5958] loop0: detected capacity change from 0 to 512 [ 150.972631][ T5963] loop3: detected capacity change from 0 to 128 [ 151.061241][ T5963] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 151.100146][ T5963] ext4 filesystem being mounted at /79/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 151.215988][ T5963] fscrypt: loop3: 1 inode(s) still busy after removing key with identifier 69b2f6edeee720cce0577937eb8a6751, including ino 12 [ 151.273246][ T5958] loop0: detected capacity change from 0 to 2048 [ 151.435224][ T5958] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 152.233506][ T0] NOHZ tick-stop error: Non-RCU local softirq work is pending, handler #140!!! [ 153.059441][ T7] usb 1-1: new high-speed USB device number 12 using dummy_hcd [ 153.219437][ T4158] usb 4-1: new high-speed USB device number 9 using dummy_hcd [ 153.459466][ T7] usb 1-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3 [ 153.469312][ T4158] usb 4-1: Using ep0 maxpacket: 8 [ 153.479359][ T7] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 153.536440][ T7] usb 1-1: config 0 descriptor?? [ 153.580600][ T7] cp210x 1-1:0.0: cp210x converter detected [ 153.589711][ T4158] usb 4-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid maxpacket 56832, setting to 1024 [ 153.617134][ T4158] usb 4-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 1024 [ 153.658376][ T4158] usb 4-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32 [ 153.672143][ T5995] netlink: 8 bytes leftover after parsing attributes in process `syz.5.498'. [ 153.688585][ T4158] usb 4-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 153.720726][ T5995] loop5: detected capacity change from 0 to 512 [ 153.729560][ T4158] usb 4-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23 [ 153.749138][ T4158] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 153.803461][ T5997] loop1: detected capacity change from 0 to 64 [ 153.820525][ T5995] EXT4-fs (loop5): Ignoring removed orlov option [ 153.836856][ T5995] EXT4-fs (loop5): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 153.861016][ T5995] EXT4-fs error (device loop5): ext4_orphan_get:1401: inode #15: comm syz.5.498: casefold flag without casefold feature [ 154.014911][ T5995] EXT4-fs (loop5): Remounting filesystem read-only [ 154.039538][ T4158] usb 4-1: GET_CAPABILITIES returned 0 [ 154.045358][ T4158] usbtmc 4-1:16.0: can't read capabilities [ 154.051715][ T5995] EXT4-fs error (device loop5): ext4_orphan_get:1406: comm syz.5.498: couldn't read orphan inode 15 (err -117) [ 154.069412][ T7] cp210x 1-1:0.0: failed to get vendor val 0x0010 size 3: -32 [ 154.094381][ T5995] EXT4-fs (loop5): Remounting filesystem read-only [ 154.107494][ T5995] EXT4-fs (loop5): mounted filesystem without journal. Opts: orlov,nodelalloc,errors=remount-ro,grpquota,auto_da_alloc,dioread_nolock,quota,. Quota mode: writeback. [ 154.139771][ T7] cp210x 1-1:0.0: GPIO initialisation failed: -524 [ 154.164968][ T7] usb 1-1: cp210x converter now attached to ttyUSB0 [ 154.217440][ T6001] ecryptfs_parse_options: You must supply at least one valid auth tok signature as a mount parameter; see the eCryptfs README [ 154.230675][ T6001] Error parsing options; rc = [-22] [ 154.418139][ T6001] vivid-003: kernel_thread() failed [ 154.715518][ T4216] usb 1-1: USB disconnect, device number 12 [ 154.752860][ T4216] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0 [ 154.775667][ T4216] cp210x 1-1:0.0: device disconnected [ 155.739930][ T4158] usb 4-1: USB disconnect, device number 9 [ 155.860087][ T6013] loop2: detected capacity change from 0 to 512 [ 156.067798][ T6013] loop2: detected capacity change from 0 to 2048 [ 156.809094][ T6013] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 157.086575][ T6039] netlink: 8 bytes leftover after parsing attributes in process `syz.0.510'. [ 157.183961][ T6039] loop0: detected capacity change from 0 to 512 [ 157.267438][ T6039] EXT4-fs (loop0): Ignoring removed orlov option [ 157.301115][ T6039] EXT4-fs (loop0): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 157.370583][ T6049] loop3: detected capacity change from 0 to 64 [ 157.389391][ T0] NOHZ tick-stop error: Non-RCU local softirq work is pending, handler #08!!! [ 157.398445][ T0] NOHZ tick-stop error: Non-RCU local softirq work is pending, handler #08!!! [ 157.407416][ T0] NOHZ tick-stop error: Non-RCU local softirq work is pending, handler #0a!!! [ 157.416456][ T0] NOHZ tick-stop error: Non-RCU local softirq work is pending, handler #0a!!! [ 157.425384][ T0] NOHZ tick-stop error: Non-RCU local softirq work is pending, handler #0a!!! [ 157.434486][ T0] NOHZ tick-stop error: Non-RCU local softirq work is pending, handler #0a!!! [ 157.443392][ T0] NOHZ tick-stop error: Non-RCU local softirq work is pending, handler #8a!!! [ 157.452407][ T0] NOHZ tick-stop error: Non-RCU local softirq work is pending, handler #8a!!! [ 157.461403][ T0] NOHZ tick-stop error: Non-RCU local softirq work is pending, handler #18a!!! [ 157.552105][ T6039] EXT4-fs error (device loop0): ext4_orphan_get:1401: inode #15: comm syz.0.510: casefold flag without casefold feature [ 157.572883][ T6039] EXT4-fs (loop0): Remounting filesystem read-only [ 157.581880][ T6039] EXT4-fs error (device loop0): ext4_orphan_get:1406: comm syz.0.510: couldn't read orphan inode 15 (err -117) [ 157.640638][ T6039] EXT4-fs (loop0): Remounting filesystem read-only [ 158.519416][ T6039] EXT4-fs (loop0): mounted filesystem without journal. Opts: orlov,nodelalloc,errors=remount-ro,grpquota,auto_da_alloc,dioread_nolock,quota,. Quota mode: writeback. [ 158.627260][ T6061] ecryptfs_parse_options: You must supply at least one valid auth tok signature as a mount parameter; see the eCryptfs README [ 158.640500][ T6061] Error parsing options; rc = [-22] [ 158.833977][ T6061] vivid-007: kernel_thread() failed [ 160.443962][ T6070] tipc: Started in network mode [ 160.455470][ T6070] tipc: Node identity aaaaaaaaaa4, cluster identity 4711 [ 160.518620][ T6070] tipc: Enabled bearer , priority 10 [ 160.614814][ T6077] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 160.677279][ T6077] device batadv_slave_1 entered promiscuous mode [ 160.774552][ T6083] loop0: detected capacity change from 0 to 512 [ 160.832258][ T6080] set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state. [ 160.878293][ T6088] syz.3.525 uses obsolete (PF_INET,SOCK_PACKET) [ 161.018300][ T6083] loop0: detected capacity change from 0 to 2048 [ 162.318408][ T4216] tipc: Node number set to 15379114 [ 162.466898][ T6083] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 162.527829][ T6110] loop1: detected capacity change from 0 to 1024 [ 162.569544][ T6109] netlink: 8 bytes leftover after parsing attributes in process `syz.2.532'. [ 162.685952][ T6109] loop2: detected capacity change from 0 to 512 [ 162.796802][ T6109] EXT4-fs (loop2): Ignoring removed orlov option [ 162.933775][ T6109] EXT4-fs (loop2): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 163.215247][ T6109] EXT4-fs error (device loop2): ext4_orphan_get:1401: inode #15: comm syz.2.532: casefold flag without casefold feature [ 163.389375][ T6109] EXT4-fs (loop2): Remounting filesystem read-only [ 163.438471][ T6109] EXT4-fs error (device loop2): ext4_orphan_get:1406: comm syz.2.532: couldn't read orphan inode 15 (err -117) [ 163.480476][ T6109] EXT4-fs (loop2): Remounting filesystem read-only [ 163.487130][ T6109] EXT4-fs (loop2): mounted filesystem without journal. Opts: orlov,nodelalloc,errors=remount-ro,grpquota,auto_da_alloc,dioread_nolock,quota,. Quota mode: writeback. [ 163.624497][ T6134] loop5: detected capacity change from 0 to 256 [ 163.768856][ T4986] hfsplus: b-tree write err: -5, ino 4 [ 164.373116][ T6157] loop3: detected capacity change from 0 to 512 [ 164.532945][ T6159] loop5: detected capacity change from 0 to 512 [ 164.612192][ T6160] loop3: detected capacity change from 0 to 2048 [ 164.673404][ T6159] EXT4-fs (loop5): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback. [ 164.709487][ T6159] ext4 filesystem being mounted at /100/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 164.801251][ T6160] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 166.387200][ T6176] netlink: 8 bytes leftover after parsing attributes in process `syz.2.550'. [ 166.465941][ T6176] loop2: detected capacity change from 0 to 512 [ 166.552668][ T6176] EXT4-fs (loop2): Ignoring removed orlov option [ 166.576688][ T6176] EXT4-fs (loop2): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 167.631657][ T6192] process 'syz.5.555' launched './file1' with NULL argv: empty string added [ 167.677567][ T6176] EXT4-fs error (device loop2): ext4_orphan_get:1401: inode #15: comm syz.2.550: casefold flag without casefold feature [ 167.702249][ T6176] EXT4-fs (loop2): Remounting filesystem read-only [ 167.709056][ T6176] EXT4-fs error (device loop2): ext4_orphan_get:1406: comm syz.2.550: couldn't read orphan inode 15 (err -117) [ 167.734988][ T6176] EXT4-fs (loop2): Remounting filesystem read-only [ 167.761870][ T6176] EXT4-fs (loop2): mounted filesystem without journal. Opts: orlov,nodelalloc,errors=remount-ro,grpquota,auto_da_alloc,dioread_nolock,quota,. Quota mode: writeback. [ 168.004041][ T6198] loop5: detected capacity change from 0 to 512 [ 168.165158][ T6198] EXT4-fs (loop5): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback. [ 168.222529][ T6198] ext4 filesystem being mounted at /105/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 168.446888][ T26] audit: type=1326 audit(1739563849.237:56): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6209 comm="syz.1.562" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f91dcdaade9 code=0x0 [ 168.468593][ C0] vkms_vblank_simulate: vblank timer overrun [ 169.514674][ T6233] netlink: 8 bytes leftover after parsing attributes in process `syz.5.568'. [ 169.533873][ T6233] loop5: detected capacity change from 0 to 512 [ 169.617362][ T6236] binder: 6226:6236 ioctl c0306201 0 returned -14 [ 169.672677][ T6236] loop2: detected capacity change from 0 to 1024 [ 169.726874][ T6236] hfsplus: invalid extent max_key_len 0 [ 169.733869][ T6236] hfsplus: failed to load extents file [ 169.776093][ T6233] EXT4-fs (loop5): Ignoring removed orlov option [ 169.966778][ T6236] loop2: detected capacity change from 0 to 2048 [ 170.018792][ T6233] EXT4-fs (loop5): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 170.167279][ T6236] binder: 6226:6236 ioctl c0046209 0 returned -22 [ 170.375440][ T6233] EXT4-fs error (device loop5): ext4_orphan_get:1401: inode #15: comm syz.5.568: casefold flag without casefold feature [ 170.461379][ T6233] EXT4-fs (loop5): Remounting filesystem read-only [ 170.467999][ T6233] EXT4-fs error (device loop5): ext4_orphan_get:1406: comm syz.5.568: couldn't read orphan inode 15 (err -117) [ 170.475450][ T6241] loop3: detected capacity change from 0 to 512 [ 170.499558][ T6233] EXT4-fs (loop5): Remounting filesystem read-only [ 170.506989][ T6233] EXT4-fs (loop5): mounted filesystem without journal. Opts: orlov,nodelalloc,errors=remount-ro,grpquota,auto_da_alloc,dioread_nolock,quota,. Quota mode: writeback. [ 170.622170][ T6241] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback. [ 170.713458][ T6241] ext4 filesystem being mounted at /97/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 172.299764][ T1110] usb 4-1: new high-speed USB device number 10 using dummy_hcd [ 172.350410][ T6276] binder: 6272:6276 ioctl c0306201 0 returned -14 [ 172.406053][ T6276] loop2: detected capacity change from 0 to 1024 [ 172.709591][ T1110] usb 4-1: Using ep0 maxpacket: 16 [ 172.890118][ T1110] usb 4-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 172.950392][ T1110] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 3 [ 173.124888][ T6276] hfsplus: invalid extent max_key_len 0 [ 173.130987][ T6276] hfsplus: failed to load extents file [ 173.257429][ T6275] loop2: detected capacity change from 0 to 2048 [ 173.259731][ T1110] usb 4-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40 [ 173.275198][ T6280] netlink: 8 bytes leftover after parsing attributes in process `syz.1.585'. [ 173.294678][ T1110] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 173.307874][ T1110] usb 4-1: Product: syz [ 173.315793][ T6280] loop1: detected capacity change from 0 to 512 [ 173.322392][ T1110] usb 4-1: Manufacturer: syz [ 173.327242][ T1110] usb 4-1: SerialNumber: syz [ 173.354029][ T6275] binder: 6272:6275 ioctl c0046209 0 returned -22 [ 173.475403][ T6280] EXT4-fs (loop1): Ignoring removed orlov option [ 173.504794][ T6280] EXT4-fs (loop1): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 173.590608][ T6280] EXT4-fs error (device loop1): ext4_orphan_get:1401: inode #15: comm syz.1.585: casefold flag without casefold feature [ 173.723251][ T6280] EXT4-fs (loop1): Remounting filesystem read-only [ 173.734386][ T6280] EXT4-fs error (device loop1): ext4_orphan_get:1406: comm syz.1.585: couldn't read orphan inode 15 (err -117) [ 173.751923][ T1110] usb 4-1: 0:2 : does not exist [ 173.790800][ T1110] usb 4-1: USB disconnect, device number 10 [ 173.811864][ T6280] EXT4-fs (loop1): Remounting filesystem read-only [ 173.831737][ T6280] EXT4-fs (loop1): mounted filesystem without journal. Opts: orlov,nodelalloc,errors=remount-ro,grpquota,auto_da_alloc,dioread_nolock,quota,. Quota mode: writeback. [ 174.048292][ T6294] loop2: detected capacity change from 0 to 512 [ 174.078672][ T4161] udevd[4161]: error opening ATTR{/sys/devices/platform/dummy_hcd.3/usb4/4-1/4-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 174.401288][ T6294] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback. [ 174.431956][ T6294] ext4 filesystem being mounted at /130/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 175.229151][ T6294] EXT4-fs error (device loop2): ext4_dx_csum_verify:502: inode #2: comm syz.2.590: dir seems corrupt? Run e2fsck -D. [ 175.295871][ T6294] EXT4-fs error (device loop2): dx_probe:823: inode #2: comm syz.2.590: Directory index failed checksum [ 175.357132][ T6294] EXT4-fs error (device loop2): ext4_dx_csum_verify:502: inode #2: comm syz.2.590: dir seems corrupt? Run e2fsck -D. [ 175.447625][ T6294] EXT4-fs error (device loop2): dx_probe:823: inode #2: comm syz.2.590: Directory index failed checksum [ 175.467795][ T6317] loop9: detected capacity change from 0 to 2 [ 175.560459][ T6317] Dev loop9: unable to read RDB block 2 [ 175.625288][ T6317] loop9: unable to read partition table [ 175.669097][ T6320] loop1: detected capacity change from 0 to 64 [ 175.679621][ T6317] loop9: partition table beyond EOD, truncated [ 175.709410][ T6317] loop_reread_partitions: partition scan of loop9 (被x ) failed (rc=-5) [ 176.047132][ T6328] netlink: 104 bytes leftover after parsing attributes in process `syz.3.600'. [ 176.138092][ T6329] ecryptfs_parse_options: You must supply at least one valid auth tok signature as a mount parameter; see the eCryptfs README [ 176.151349][ T6329] Error parsing options; rc = [-22] [ 176.339220][ T6329] vivid-003: kernel_thread() failed [ 176.504526][ T6333] netlink: 8 bytes leftover after parsing attributes in process `syz.2.601'. [ 176.567621][ T6333] loop2: detected capacity change from 0 to 512 [ 176.710922][ T6333] EXT4-fs (loop2): Ignoring removed orlov option [ 176.717443][ T6333] EXT4-fs (loop2): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 176.829721][ T6333] EXT4-fs error (device loop2): ext4_orphan_get:1401: inode #15: comm syz.2.601: casefold flag without casefold feature [ 176.889596][ T6333] EXT4-fs (loop2): Remounting filesystem read-only [ 176.926818][ T6333] EXT4-fs error (device loop2): ext4_orphan_get:1406: comm syz.2.601: couldn't read orphan inode 15 (err -117) [ 176.989856][ T6333] EXT4-fs (loop2): Remounting filesystem read-only [ 176.996424][ T6333] EXT4-fs (loop2): mounted filesystem without journal. Opts: orlov,nodelalloc,errors=remount-ro,grpquota,auto_da_alloc,dioread_nolock,quota,. Quota mode: writeback. [ 177.579194][ C0] sched: RT throttling activated [ 179.491033][ T6371] xt_recent: hitcount (134217728) is larger than allowed maximum (255) [ 179.629352][ T4245] usb 1-1: new high-speed USB device number 13 using dummy_hcd [ 179.777952][ T6376] kvm: pic: non byte write [ 179.889376][ T4245] usb 1-1: Using ep0 maxpacket: 32 [ 180.074104][ T6383] semctl(GETNCNT/GETZCNT) is since 3.16 Single Unix Specification compliant. [ 180.074104][ T6383] The task syz.2.617 (6383) triggered the difference, watch for misbehavior. [ 180.210704][ T4245] usb 1-1: New USB device found, idVendor=05a9, idProduct=1550, bcdDevice=e4.bb [ 180.228873][ T4245] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 180.257436][ T4245] usb 1-1: Product: syz [ 180.274030][ T4245] usb 1-1: Manufacturer: syz [ 180.294106][ T4245] usb 1-1: SerialNumber: syz [ 180.318273][ T4245] usb 1-1: config 0 descriptor?? [ 180.381555][ T4245] gspca_main: ov534_9-2.14.0 probing 05a9:1550 [ 181.109505][ T4245] gspca_ov534_9: reg_w failed -71 [ 181.539566][ T4245] gspca_ov534_9: Unknown sensor 0000 [ 181.539795][ T4245] ov534_9: probe of 1-1:0.0 failed with error -22 [ 181.593109][ T4245] usb 1-1: USB disconnect, device number 13 [ 181.993844][ T6427] loop3: detected capacity change from 0 to 128 [ 182.110279][ T6427] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 182.149651][ T6427] ext4 filesystem being mounted at /107/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 182.315879][ T6427] fscrypt: loop3: 1 inode(s) still busy after removing key with identifier 69b2f6edeee720cce0577937eb8a6751, including ino 12 [ 182.847923][ T6461] syz.0.643 sent an empty control message without MSG_MORE. [ 183.509438][ T23] usb 6-1: new full-speed USB device number 4 using dummy_hcd [ 183.835076][ T6480] loop1: detected capacity change from 0 to 128 [ 183.919712][ T23] usb 6-1: unable to get BOS descriptor or descriptor too short [ 184.036616][ T6480] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 184.209687][ T23] usb 6-1: unable to read config index 0 descriptor/start: -71 [ 184.265774][ T23] usb 6-1: can't read configurations, error -71 [ 184.303535][ T6480] ext4 filesystem being mounted at /144/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 184.696590][ T6480] fscrypt: loop1: 1 inode(s) still busy after removing key with identifier 69b2f6edeee720cce0577937eb8a6751, including ino 12 [ 185.090385][ T1107] usb 4-1: new high-speed USB device number 11 using dummy_hcd [ 185.653380][ T26] audit: type=1326 audit(1739563866.037:57): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6499 comm="syz.0.658" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f43abcb9de9 code=0x7ffc0000 [ 185.869261][ T1107] usb 4-1: Using ep0 maxpacket: 16 [ 185.954383][ T6508] loop2: detected capacity change from 0 to 1024 [ 185.962748][ T26] audit: type=1326 audit(1739563866.037:58): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6499 comm="syz.0.658" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f43abcb9de9 code=0x7ffc0000 [ 185.992021][ T26] audit: type=1326 audit(1739563866.047:59): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6499 comm="syz.0.658" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f43abcb9de9 code=0x7ffc0000 [ 186.014126][ C0] vkms_vblank_simulate: vblank timer overrun [ 186.046185][ T26] audit: type=1326 audit(1739563866.057:60): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6499 comm="syz.0.658" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f43abcb9de9 code=0x7ffc0000 [ 186.152107][ T6516] IPVS: wrr: UDP 224.0.0.2:0 - no destination available [ 186.180193][ T1107] usb 4-1: New USB device found, idVendor=2137, idProduct=0001, bcdDevice=2a.35 [ 186.298179][ T1107] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 186.485398][ T1107] usb 4-1: Product: syz [ 186.514944][ T26] audit: type=1326 audit(1739563866.057:61): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6499 comm="syz.0.658" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f43abcb9de9 code=0x7ffc0000 [ 186.536692][ T1107] usb 4-1: Manufacturer: syz [ 186.544870][ T26] audit: type=1326 audit(1739563866.057:62): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6499 comm="syz.0.658" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f43abcb9de9 code=0x7ffc0000 [ 186.568081][ T1107] usb 4-1: SerialNumber: syz [ 186.570091][ T4215] Bluetooth: hci1: command 0x0406 tx timeout [ 186.585968][ T4215] Bluetooth: hci0: command 0x0406 tx timeout [ 186.723454][ T1107] usb 4-1: config 0 descriptor?? [ 186.737383][ T4215] Bluetooth: hci3: command 0x0406 tx timeout [ 186.745799][ T4215] Bluetooth: hci2: command 0x0406 tx timeout [ 186.764506][ T1107] as10x_usb: device has been detected [ 186.778563][ T1107] dvbdev: DVB: registering new adapter (Sky IT Digital Key (green led)) [ 186.807483][ T1107] usb 4-1: DVB: registering adapter 1 frontend 0 (Sky IT Digital Key (green led))... [ 186.911620][ T1107] as10x_usb: error during firmware upload part1 [ 186.935541][ T1107] Registered device Sky IT Digital Key (green led) [ 186.945289][ T26] audit: type=1326 audit(1739563866.057:63): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6499 comm="syz.0.658" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f43abcb9de9 code=0x7ffc0000 [ 187.086380][ T26] audit: type=1326 audit(1739563866.057:64): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6499 comm="syz.0.658" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f43abcb9de9 code=0x7ffc0000 [ 187.179724][ T154] hfsplus: b-tree write err: -5, ino 4 [ 187.243119][ T26] audit: type=1326 audit(1739563866.057:65): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6499 comm="syz.0.658" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f43abcb9de9 code=0x7ffc0000 [ 187.348579][ T26] audit: type=1326 audit(1739563866.377:66): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6499 comm="syz.0.658" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f43abcb9de9 code=0x7ffc0000 [ 187.887538][ T4245] usb 4-1: USB disconnect, device number 11 [ 187.953670][ T4245] Unregistered device Sky IT Digital Key (green led) [ 187.965687][ T4245] as10x_usb: device has been disconnected [ 190.575668][ T6566] loop0: detected capacity change from 0 to 128 [ 190.690369][ T6566] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 190.709582][ T6566] ext4 filesystem being mounted at /133/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 190.802328][ T6566] fscrypt: loop0: 1 inode(s) still busy after removing key with identifier 69b2f6edeee720cce0577937eb8a6751, including ino 12 [ 190.869289][ T4245] usb 6-1: new high-speed USB device number 6 using dummy_hcd [ 191.159260][ T4245] usb 6-1: Using ep0 maxpacket: 16 [ 191.305535][ T4245] usb 6-1: config 0 has an invalid interface number: 251 but max is 0 [ 191.343312][ T4245] usb 6-1: config 0 has no interface number 0 [ 191.367629][ T4245] usb 6-1: config 0 interface 251 altsetting 0 bulk endpoint 0x4 has invalid maxpacket 16 [ 191.940176][ T26] kauditd_printk_skb: 12 callbacks suppressed [ 191.940359][ T26] audit: type=1326 audit(1739563872.237:79): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6582 comm="syz.3.686" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f082c83bde9 code=0x7ffc0000 [ 192.219331][ T4245] usb 6-1: config 0 interface 251 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 64 [ 192.259034][ T26] audit: type=1326 audit(1739563872.247:80): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6582 comm="syz.3.686" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f082c83bde9 code=0x7ffc0000 [ 192.293768][ T26] audit: type=1326 audit(1739563872.247:81): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6582 comm="syz.3.686" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f082c83bde9 code=0x7ffc0000 [ 192.363011][ T26] audit: type=1326 audit(1739563872.247:82): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6582 comm="syz.3.686" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f082c83bde9 code=0x7ffc0000 [ 192.421792][ T26] audit: type=1326 audit(1739563872.247:83): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6582 comm="syz.3.686" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f082c83bde9 code=0x7ffc0000 [ 192.445247][ T4245] usb 6-1: New USB device found, idVendor=0b95, idProduct=172a, bcdDevice=f7.f4 [ 192.458930][ T4245] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 192.476511][ T4245] usb 6-1: Product: syz [ 192.487357][ T4245] usb 6-1: Manufacturer: syz [ 192.504369][ T4245] usb 6-1: SerialNumber: syz [ 192.517418][ T26] audit: type=1326 audit(1739563872.257:84): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6582 comm="syz.3.686" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f082c83bde9 code=0x7ffc0000 [ 192.551658][ T4245] usb 6-1: config 0 descriptor?? [ 192.569554][ T6568] raw-gadget.0 gadget: fail, usb_ep_enable returned -22 [ 192.576643][ T6568] raw-gadget.0 gadget: fail, usb_ep_enable returned -22 [ 192.587342][ T26] audit: type=1326 audit(1739563872.257:85): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6582 comm="syz.3.686" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f082c83bde9 code=0x7ffc0000 [ 192.629295][ T26] audit: type=1326 audit(1739563872.257:86): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6582 comm="syz.3.686" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f082c83bde9 code=0x7ffc0000 [ 192.668963][ T26] audit: type=1326 audit(1739563872.257:87): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6582 comm="syz.3.686" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f082c83bde9 code=0x7ffc0000 [ 192.719292][ T26] audit: type=1326 audit(1739563872.617:88): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6582 comm="syz.3.686" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f082c83bde9 code=0x7ffc0000 [ 192.757186][ T6605] netlink: 8 bytes leftover after parsing attributes in process `syz.2.694'. [ 192.776224][ T6605] loop2: detected capacity change from 0 to 512 [ 192.813574][ T6568] raw-gadget.0 gadget: fail, usb_ep_enable returned -22 [ 192.828801][ T6605] EXT4-fs (loop2): Ignoring removed orlov option [ 192.844428][ T6605] EXT4-fs (loop2): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 192.858293][ T6607] loop0: detected capacity change from 0 to 128 [ 192.870759][ T6568] raw-gadget.0 gadget: fail, usb_ep_enable returned -22 [ 192.926894][ T6605] EXT4-fs error (device loop2): ext4_orphan_get:1401: inode #15: comm syz.2.694: casefold flag without casefold feature [ 192.984502][ T6607] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 192.999495][ T6607] ext4 filesystem being mounted at /138/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 193.020256][ T6605] EXT4-fs (loop2): Remounting filesystem read-only [ 193.028100][ T6605] EXT4-fs error (device loop2): ext4_orphan_get:1406: comm syz.2.694: couldn't read orphan inode 15 (err -117) [ 193.097865][ T6605] EXT4-fs (loop2): Remounting filesystem read-only [ 193.119488][ T4245] asix 6-1:0.251 (unnamed net_device) (uninitialized): Failed to read reg index 0x0000: -71 [ 193.127872][ T6607] fscrypt: loop0: 1 inode(s) still busy after removing key with identifier 69b2f6edeee720cce0577937eb8a6751, including ino 12 [ 193.150075][ T4245] asix 6-1:0.251 (unnamed net_device) (uninitialized): Failed to read MAC address: -71 [ 193.153294][ T6605] EXT4-fs (loop2): mounted filesystem without journal. Opts: orlov,nodelalloc,errors=remount-ro,grpquota,auto_da_alloc,dioread_nolock,quota,. Quota mode: writeback. [ 193.179622][ T4245] asix: probe of 6-1:0.251 failed with error -5 [ 193.229755][ T4245] usb 6-1: USB disconnect, device number 6 [ 194.345720][ T1429] ieee802154 phy0 wpan0: encryption failed: -22 [ 194.352072][ T1429] ieee802154 phy1 wpan1: encryption failed: -22 [ 194.801937][ T6633] loop2: detected capacity change from 0 to 8192 [ 194.886464][ T6633] FAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 195.354567][ T6633] netlink: 8 bytes leftover after parsing attributes in process `syz.2.699'. [ 195.368531][ T6633] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2 [ 195.378319][ T6633] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db [ 195.726830][ T6647] loop1: detected capacity change from 0 to 128 [ 195.835335][ T6653] netlink: 8 bytes leftover after parsing attributes in process `syz.5.709'. [ 195.873002][ T6647] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 195.950738][ T6647] ext4 filesystem being mounted at /154/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 196.042160][ T6653] loop5: detected capacity change from 0 to 512 [ 196.113604][ T6653] EXT4-fs (loop5): Ignoring removed orlov option [ 196.137299][ T6647] fscrypt: loop1: 1 inode(s) still busy after removing key with identifier 69b2f6edeee720cce0577937eb8a6751, including ino 12 [ 196.150893][ T6653] EXT4-fs (loop5): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 196.190893][ T6653] EXT4-fs error (device loop5): ext4_orphan_get:1401: inode #15: comm syz.5.709: casefold flag without casefold feature [ 196.232639][ T6653] EXT4-fs (loop5): Remounting filesystem read-only [ 196.248902][ T6653] EXT4-fs error (device loop5): ext4_orphan_get:1406: comm syz.5.709: couldn't read orphan inode 15 (err -117) [ 196.280102][ T6653] EXT4-fs (loop5): Remounting filesystem read-only [ 196.359407][ T6653] EXT4-fs (loop5): mounted filesystem without journal. Opts: orlov,nodelalloc,errors=remount-ro,grpquota,auto_da_alloc,dioread_nolock,quota,. Quota mode: writeback. [ 196.757517][ T6669] netlink: 8 bytes leftover after parsing attributes in process `syz.3.712'. [ 196.867142][ T6673] netem: incorrect ge model size [ 196.892927][ T6673] netem: change failed [ 197.153876][ T6676] loop3: detected capacity change from 0 to 8192 [ 197.332835][ T6676] FAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 197.946258][ T6676] netlink: 8 bytes leftover after parsing attributes in process `syz.3.714'. [ 197.962544][ T6676] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2 [ 197.972684][ T6676] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db [ 198.619431][ T6679] usb 4-1: new high-speed USB device number 12 using dummy_hcd [ 198.709423][ T4158] usb 3-1: new high-speed USB device number 7 using dummy_hcd [ 198.761978][ T6696] netlink: 8 bytes leftover after parsing attributes in process `syz.5.721'. [ 198.801177][ T6696] loop5: detected capacity change from 0 to 512 [ 198.853854][ T6696] EXT4-fs (loop5): Ignoring removed orlov option [ 198.865101][ T6696] EXT4-fs (loop5): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 198.908416][ T6696] EXT4-fs error (device loop5): ext4_orphan_get:1401: inode #15: comm syz.5.721: casefold flag without casefold feature [ 198.936088][ T6696] EXT4-fs (loop5): Remounting filesystem read-only [ 198.952828][ T6696] EXT4-fs error (device loop5): ext4_orphan_get:1406: comm syz.5.721: couldn't read orphan inode 15 (err -117) [ 198.983332][ T6696] EXT4-fs (loop5): Remounting filesystem read-only [ 199.002935][ T6696] EXT4-fs (loop5): mounted filesystem without journal. Opts: orlov,nodelalloc,errors=remount-ro,grpquota,auto_da_alloc,dioread_nolock,quota,. Quota mode: writeback. [ 199.065049][ T6679] usb 4-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3 [ 199.081033][ T6687] 8021q: adding VLAN 0 to HW filter on device macvlan2 [ 199.088170][ T6679] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 199.111335][ T6679] usb 4-1: config 0 descriptor?? [ 199.170608][ T6679] cp210x 4-1:0.0: cp210x converter detected [ 199.319447][ T4158] usb 3-1: unable to get BOS descriptor or descriptor too short [ 199.381286][ T4158] usb 3-1: unable to read config index 0 descriptor/start: -71 [ 199.388904][ T4158] usb 3-1: can't read configurations, error -71 [ 199.395297][ T6679] cp210x 4-1:0.0: failed to get vendor val 0x370b size 1: 0 [ 199.415728][ T6679] cp210x 4-1:0.0: querying part number failed [ 199.435678][ T6679] usb 4-1: cp210x converter now attached to ttyUSB0 [ 200.156189][ T6713] loop1: detected capacity change from 0 to 8192 [ 201.530740][ T6713] FAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 201.729698][ T4216] usb 6-1: new high-speed USB device number 7 using dummy_hcd [ 202.179629][ T6713] netlink: 8 bytes leftover after parsing attributes in process `syz.1.727'. [ 202.193194][ T6713] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2 [ 202.203109][ T6713] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db [ 202.239765][ T4216] usb 6-1: New USB device found, idVendor=046d, idProduct=0870, bcdDevice=61.47 [ 202.331307][ T4216] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 202.466167][ T4245] usb 4-1: USB disconnect, device number 12 [ 202.478552][ T4216] usb 6-1: config 0 descriptor?? [ 202.515194][ T4245] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0 [ 202.554655][ T4245] cp210x 4-1:0.0: device disconnected [ 202.570122][ T4216] gspca_main: STV06xx-2.14.0 probing 046d:0870 [ 202.678351][ T6734] netlink: 8 bytes leftover after parsing attributes in process `syz.1.732'. [ 202.792891][ T6734] loop1: detected capacity change from 0 to 512 [ 203.002587][ T6734] EXT4-fs (loop1): Ignoring removed orlov option [ 203.081597][ T6734] EXT4-fs (loop1): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 203.563121][ T6734] EXT4-fs error (device loop1): ext4_orphan_get:1401: inode #15: comm syz.1.732: casefold flag without casefold feature [ 203.619564][ T6734] EXT4-fs (loop1): Remounting filesystem read-only [ 203.626182][ T6734] EXT4-fs error (device loop1): ext4_orphan_get:1406: comm syz.1.732: couldn't read orphan inode 15 (err -117) [ 203.679811][ T6734] EXT4-fs (loop1): Remounting filesystem read-only [ 203.748077][ T6747] loop2: detected capacity change from 0 to 64 [ 203.766583][ T6734] EXT4-fs (loop1): mounted filesystem without journal. Opts: orlov,nodelalloc,errors=remount-ro,grpquota,auto_da_alloc,dioread_nolock,quota,. Quota mode: writeback. [ 204.025981][ T4245] usb 4-1: new high-speed USB device number 13 using dummy_hcd [ 204.179654][ T6753] ecryptfs_parse_options: You must supply at least one valid auth tok signature as a mount parameter; see the eCryptfs README [ 204.192916][ T6753] Error parsing options; rc = [-22] [ 204.629523][ T4216] gspca_stv06xx: I2C: Read error writing address: -71 [ 204.663694][ T4216] usb 6-1: USB disconnect, device number 7 [ 204.679588][ T4245] usb 4-1: New USB device found, idVendor=0af0, idProduct=7a05, bcdDevice= 0.00 [ 204.723334][ T4245] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 204.772112][ T4245] usb 4-1: Product: syz [ 204.807259][ T4245] usb 4-1: Manufacturer: syz [ 204.819565][ T4245] usb 4-1: SerialNumber: syz [ 204.868900][ T4245] usb 4-1: config 0 descriptor?? [ 205.229759][ T4245] hso 4-1:0.0: Can't find BULK IN endpoint [ 205.236557][ T4245] usb-storage 4-1:0.0: USB Mass Storage device detected [ 205.985556][ T4245] usb 4-1: USB disconnect, device number 13 [ 206.890710][ T6780] capability: warning: `syz.1.748' uses deprecated v2 capabilities in a way that may be insecure [ 207.040149][ T6785] netlink: 8 bytes leftover after parsing attributes in process `syz.5.749'. [ 207.117740][ T6785] loop5: detected capacity change from 0 to 512 [ 207.187534][ T6785] EXT4-fs (loop5): Ignoring removed orlov option [ 207.215804][ T6785] EXT4-fs (loop5): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 207.295792][ T6785] EXT4-fs error (device loop5): ext4_orphan_get:1401: inode #15: comm syz.5.749: casefold flag without casefold feature [ 207.309650][ T4245] usb 4-1: new high-speed USB device number 14 using dummy_hcd [ 207.317495][ T6785] EXT4-fs (loop5): Remounting filesystem read-only [ 207.329342][ T6785] EXT4-fs error (device loop5): ext4_orphan_get:1406: comm syz.5.749: couldn't read orphan inode 15 (err -117) [ 207.360644][ T6785] EXT4-fs (loop5): Remounting filesystem read-only [ 207.367394][ T6785] EXT4-fs (loop5): mounted filesystem without journal. Opts: orlov,nodelalloc,errors=remount-ro,grpquota,auto_da_alloc,dioread_nolock,quota,. Quota mode: writeback. [ 207.559266][ T4245] usb 4-1: Using ep0 maxpacket: 8 [ 207.679522][ T4245] usb 4-1: config index 0 descriptor too short (expected 65298, got 18) [ 207.826962][ T6808] loop1: detected capacity change from 0 to 64 [ 207.849528][ T4245] usb 4-1: New USB device found, idVendor=04a5, idProduct=3003, bcdDevice=3a.b2 [ 207.862251][ T4245] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 207.874766][ T6811] device gretap0 entered promiscuous mode [ 207.886775][ T4245] usb 4-1: Product: syz [ 207.891529][ T4245] usb 4-1: Manufacturer: syz [ 207.905622][ T4245] usb 4-1: SerialNumber: syz [ 207.912597][ T4245] usb 4-1: config 0 descriptor?? [ 207.949740][ T6811] device gretap0 left promiscuous mode [ 208.271611][ T6817] ecryptfs_parse_options: You must supply at least one valid auth tok signature as a mount parameter; see the eCryptfs README [ 208.284878][ T6817] Error parsing options; rc = [-22] [ 210.091777][ T4245] gspca_main: sunplus-2.14.0 probing 04a5:3003 [ 210.349364][ T4245] gspca_sunplus: reg_w_riv err -71 [ 210.354808][ T4245] sunplus: probe of 4-1:0.0 failed with error -71 [ 210.393091][ T4245] usb 4-1: USB disconnect, device number 14 [ 211.039394][ T4245] usb 1-1: new high-speed USB device number 14 using dummy_hcd [ 211.057756][ T6836] netlink: 8 bytes leftover after parsing attributes in process `syz.2.765'. [ 211.126342][ T4212] hid-generic 0000:0003:0000.0002: unknown main item tag 0x0 [ 211.130148][ T6836] loop2: detected capacity change from 0 to 512 [ 211.169435][ T4212] hid-generic 0000:0003:0000.0002: unknown main item tag 0x0 [ 211.193242][ T6836] EXT4-fs (loop2): Ignoring removed orlov option [ 211.207617][ T6836] EXT4-fs (loop2): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 211.221737][ T4212] hid-generic 0000:0003:0000.0002: hidraw0: HID v0.00 Device [syz0] on syz1 [ 211.310218][ T6836] EXT4-fs error (device loop2): ext4_orphan_get:1401: inode #15: comm syz.2.765: casefold flag without casefold feature [ 211.390290][ T6836] EXT4-fs (loop2): Remounting filesystem read-only [ 211.396915][ T6836] EXT4-fs error (device loop2): ext4_orphan_get:1406: comm syz.2.765: couldn't read orphan inode 15 (err -117) [ 211.469606][ T6836] EXT4-fs (loop2): Remounting filesystem read-only [ 211.479389][ T6836] EXT4-fs (loop2): mounted filesystem without journal. Opts: orlov,nodelalloc,errors=remount-ro,grpquota,auto_da_alloc,dioread_nolock,quota,. Quota mode: writeback. [ 211.579681][ T4245] usb 1-1: New USB device found, idVendor=1a86, idProduct=7522, bcdDevice=35.36 [ 211.597876][ T4245] usb 1-1: New USB device strings: Mfr=223, Product=2, SerialNumber=3 [ 211.629470][ T4245] usb 1-1: Product: syz [ 211.633680][ T4245] usb 1-1: Manufacturer: syz [ 211.657734][ T4245] usb 1-1: SerialNumber: syz [ 211.687598][ T4245] usb 1-1: config 0 descriptor?? [ 211.689265][ T4528] usb 2-1: new full-speed USB device number 7 using dummy_hcd [ 211.750885][ T4245] ch341 1-1:0.0: ch341-uart converter detected [ 211.931941][ T6861] loop2: detected capacity change from 0 to 64 [ 212.090752][ T4528] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10 [ 212.129261][ T4528] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 212.340876][ T6869] Device name cannot be null; rc = [-22] [ 212.530421][ T6869] vivid-005: kernel_thread() failed [ 212.904387][ T6878] xt_CHECKSUM: CHECKSUM should be avoided. If really needed, restrict with "-p udp" and only use in OUTPUT [ 212.937245][ T6878] Cannot find set identified by id 0 to match [ 213.339390][ T4212] usb 6-1: new high-speed USB device number 8 using dummy_hcd [ 213.549562][ T4212] usb 6-1: device descriptor read/64, error -71 [ 213.845536][ T4212] usb 6-1: new high-speed USB device number 9 using dummy_hcd [ 213.989302][ T4528] usb 2-1: New USB device found, idVendor=060b, idProduct=700a, bcdDevice= 0.00 [ 213.998386][ T4528] usb 2-1: New USB device strings: Mfr=2, Product=0, SerialNumber=0 [ 214.006683][ T4245] usb 1-1: failed to send control message: -71 [ 214.013813][ T4245] ch341-uart: probe of ttyUSB0 failed with error -71 [ 214.024245][ T4245] usb 1-1: USB disconnect, device number 14 [ 214.031115][ T4245] ch341 1-1:0.0: device disconnected [ 214.061523][ T4528] usb 2-1: Manufacturer: syz [ 214.076358][ T4212] usb 6-1: device descriptor read/64, error -71 [ 214.082689][ T1110] usb 4-1: new high-speed USB device number 15 using dummy_hcd [ 214.085876][ T4528] usb 2-1: config 0 descriptor?? [ 214.204536][ T6894] device macvlan0 entered promiscuous mode [ 214.249608][ T4212] usb usb6-port1: attempt power cycle [ 214.255327][ T6894] device ipvlan0 entered promiscuous mode [ 214.270484][ T6894] device ipvlan0 left promiscuous mode [ 214.276374][ T6894] device macvlan0 left promiscuous mode [ 214.444716][ T1110] usb 4-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3 [ 214.469217][ T1110] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 214.489962][ T1110] usb 4-1: config 0 descriptor?? [ 214.533045][ T1110] cp210x 4-1:0.0: cp210x converter detected [ 214.679406][ T4212] usb 6-1: new high-speed USB device number 10 using dummy_hcd [ 214.745905][ T1110] usb 4-1: cp210x converter now attached to ttyUSB0 [ 214.787085][ T4528] cougar 0003:060B:700A.0003: hidraw0: USB HID v0.00 Device [syz] on usb-dummy_hcd.1-1/input0 [ 214.789516][ T4212] usb 6-1: device descriptor read/8, error -71 [ 215.099638][ T4212] usb 6-1: new high-speed USB device number 11 using dummy_hcd [ 215.209591][ T4212] usb 6-1: device descriptor read/8, error -71 [ 215.329472][ T4212] usb usb6-port1: unable to enumerate USB device [ 215.562981][ T4212] usb 2-1: USB disconnect, device number 7 [ 215.902819][ T6939] netlink: 'syz.2.804': attribute type 25 has an invalid length. [ 215.986624][ T4528] usb 4-1: USB disconnect, device number 15 [ 216.016880][ T4528] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0 [ 216.042683][ T4528] cp210x 4-1:0.0: device disconnected [ 216.149548][ T4212] usb 2-1: new high-speed USB device number 8 using dummy_hcd [ 216.313347][ T6957] device vlan2 entered promiscuous mode [ 216.373017][ T6957] device team0 entered promiscuous mode [ 216.378613][ T6957] device team_slave_0 entered promiscuous mode [ 216.425122][ T6957] device team_slave_1 entered promiscuous mode [ 216.452014][ T4212] usb 2-1: Using ep0 maxpacket: 8 [ 216.461050][ T6957] IPv6: ADDRCONF(NETDEV_CHANGE): vlan2: link becomes ready [ 216.516238][ T4234] IPv6: ADDRCONF(NETDEV_CHANGE): vlan2: link becomes ready [ 216.649582][ T4212] usb 2-1: unable to get BOS descriptor or descriptor too short [ 216.759538][ T4212] usb 2-1: config 9 has an invalid interface number: 207 but max is 0 [ 216.786569][ T4212] usb 2-1: config 9 has no interface number 0 [ 216.793354][ T4212] usb 2-1: config 9 interface 207 has no altsetting 0 [ 216.827991][ T26] kauditd_printk_skb: 13 callbacks suppressed [ 216.828006][ T26] audit: type=1326 audit(1739563897.617:102): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6974 comm="syz.2.820" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f4ae7acbde9 code=0x0 [ 216.994276][ T4212] usb 2-1: New USB device found, idVendor=049f, idProduct=ffff, bcdDevice=d3.a6 [ 217.009357][ T4212] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 217.045201][ T4212] usb 2-1: Product: syz [ 217.056233][ T4212] usb 2-1: Manufacturer: syz [ 217.073581][ T4212] usb 2-1: SerialNumber: syz [ 217.520792][ T4212] safe_serial 2-1:9.207: safe_serial converter detected [ 217.534412][ T4212] safe_serial: probe of 2-1:9.207 failed with error -22 [ 217.557215][ T4212] usb 2-1: USB disconnect, device number 8 [ 218.076319][ T7010] loop1: detected capacity change from 0 to 128 [ 218.115284][ T7012] dccp_close: ABORT with 20 bytes unread [ 218.278508][ T7010] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 218.338337][ T7010] ext4 filesystem being mounted at /172/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 219.665405][ T7043] loop2: detected capacity change from 0 to 128 [ 219.806291][ T7043] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 219.807550][ T7051] loop7: detected capacity change from 0 to 524287999 [ 219.829673][ T7043] ext4 filesystem being mounted at /187/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 219.917031][ C0] blk_update_request: I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 219.928534][ C0] Buffer I/O error on dev loop7, logical block 0, async page read [ 219.948471][ T7051] ldm_validate_partition_table(): Disk read failed. [ 219.972205][ T7051] Dev loop7: unable to read RDB block 0 [ 219.981699][ C0] blk_update_request: I/O error, dev loop7, sector 8 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 220.033031][ C0] blk_update_request: I/O error, dev loop7, sector 0 op 0x1:(WRITE) flags 0x800 phys_seg 1 prio class 0 [ 220.044306][ C0] Buffer I/O error on dev loop7, logical block 0, lost async page write [ 220.052799][ C0] blk_update_request: I/O error, dev loop7, sector 24 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 220.063823][ C0] Buffer I/O error on dev loop7, logical block 3, async page read [ 220.080010][ T7051] loop7: unable to read partition table [ 220.085838][ T7051] loop_reread_partitions: partition scan of loop7 (3 ) failed (rc=-5) [ 220.724540][ T7083] netlink: 8 bytes leftover after parsing attributes in process `syz.5.861'. [ 220.953311][ T7083] loop5: detected capacity change from 0 to 512 [ 221.186479][ T7083] EXT4-fs (loop5): Ignoring removed orlov option [ 221.256441][ T7083] EXT4-fs (loop5): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 221.483711][ T7083] EXT4-fs error (device loop5): ext4_orphan_get:1401: inode #15: comm syz.5.861: casefold flag without casefold feature [ 221.503112][ T4212] usb 1-1: new high-speed USB device number 15 using dummy_hcd [ 221.523122][ T7083] EXT4-fs (loop5): Remounting filesystem read-only [ 221.550516][ T7083] EXT4-fs error (device loop5): ext4_orphan_get:1406: comm syz.5.861: couldn't read orphan inode 15 (err -117) [ 221.579377][ T4158] usb 2-1: new high-speed USB device number 9 using dummy_hcd [ 221.599526][ T7083] EXT4-fs (loop5): Remounting filesystem read-only [ 221.753799][ T7083] EXT4-fs (loop5): mounted filesystem without journal. Opts: orlov,nodelalloc,errors=remount-ro,grpquota,auto_da_alloc,dioread_nolock,quota,. Quota mode: writeback. [ 221.889362][ T4212] usb 1-1: Using ep0 maxpacket: 8 [ 222.049729][ T4212] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 222.639661][ T4158] usb 2-1: config index 0 descriptor too short (expected 23569, got 27) [ 222.649432][ T4212] usb 1-1: New USB device found, idVendor=0e9c, idProduct=0000, bcdDevice=5b.1e [ 222.686445][ T4158] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 222.697061][ T4212] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 222.717164][ T4212] usb 1-1: Product: syz [ 222.729328][ T4212] usb 1-1: Manufacturer: syz [ 222.741888][ T4212] usb 1-1: SerialNumber: syz [ 222.765218][ T4212] usb 1-1: config 0 descriptor?? [ 222.799767][ T4158] usb 2-1: New USB device found, idVendor=03eb, idProduct=0002, bcdDevice=ba.c0 [ 222.819101][ T4158] usb 2-1: New USB device strings: Mfr=5, Product=0, SerialNumber=0 [ 222.829866][ T4212] streamzap 1-1:0.0: streamzap_probe: Unexpected desc.bNumEndpoints (0) [ 222.881611][ T4158] usb 2-1: Manufacturer: syz [ 222.923046][ T4158] usb 2-1: config 0 descriptor?? [ 223.041712][ T7100] udc-core: couldn't find an available UDC or it's busy [ 223.069691][ T4158] rc_core: IR keymap rc-hauppauge not found [ 223.079523][ T7100] misc raw-gadget: fail, usb_gadget_probe_driver returned -16 [ 223.087168][ T4158] Registered IR keymap rc-empty [ 223.169967][ T4158] rc rc0: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/rc/rc0 [ 223.220956][ T4158] input: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/rc/rc0/input6 [ 223.248251][ T4212] usb 1-1: USB disconnect, device number 15 [ 223.309247][ C1] igorplugusb 2-1:0.0: Error: urb status = -32 [ 223.330464][ T4158] usb 2-1: USB disconnect, device number 9 [ 223.461879][ T4528] usb 6-1: new high-speed USB device number 12 using dummy_hcd [ 224.013374][ T4528] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 224.024769][ T1110] usb 3-1: new high-speed USB device number 9 using dummy_hcd [ 224.039270][ T4528] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 224.079214][ T4528] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 224.096494][ T4528] usb 6-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 224.106088][ T4528] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 224.160516][ T4528] usb 6-1: config 0 descriptor?? [ 225.182150][ T4528] plantronics 0003:047F:FFFF.0004: No inputs registered, leaving [ 225.195634][ T4528] plantronics 0003:047F:FFFF.0004: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.5-1/input0 [ 225.289590][ T1110] usb 3-1: config index 0 descriptor too short (expected 23569, got 27) [ 225.301688][ T1110] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 225.387163][ T4528] usb 6-1: USB disconnect, device number 12 [ 225.409672][ T1110] usb 3-1: New USB device found, idVendor=03eb, idProduct=0002, bcdDevice=ba.c0 [ 225.419434][ T1110] usb 3-1: New USB device strings: Mfr=5, Product=0, SerialNumber=0 [ 225.427591][ T1110] usb 3-1: Manufacturer: syz [ 225.435220][ T1110] usb 3-1: config 0 descriptor?? [ 225.610867][ T1110] rc_core: IR keymap rc-hauppauge not found [ 225.617175][ T1110] Registered IR keymap rc-empty [ 225.630469][ T1110] rc rc0: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.0/rc/rc0 [ 225.656491][ T1110] input: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.0/rc/rc0/input7 [ 225.979276][ C0] igorplugusb 3-1:0.0: receive overflow, at least 23 lost [ 226.258487][ T1110] usb 3-1: USB disconnect, device number 9 [ 227.769377][ T4158] usb 1-1: new high-speed USB device number 16 using dummy_hcd [ 228.191597][ T4158] usb 1-1: Using ep0 maxpacket: 8 [ 228.371204][ T4158] usb 1-1: config index 0 descriptor too short (expected 301, got 45) [ 228.505849][ T4158] usb 1-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0 [ 228.664579][ T4158] usb 1-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0 [ 229.040147][ T4158] usb 1-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32 [ 229.050531][ T4158] usb 1-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 229.069820][ T4158] usb 1-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23 [ 229.080208][ T4158] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 229.176501][ T7221] syz.3.908 calls setitimer() with new_value NULL pointer. Misfeature support will be removed [ 229.469489][ T4158] usb 1-1: GET_CAPABILITIES returned 0 [ 229.475534][ T4158] usbtmc 1-1:16.0: can't read capabilities [ 230.302628][ T21] usb 1-1: USB disconnect, device number 16 [ 230.895728][ T7251] loop3: detected capacity change from 0 to 128 [ 230.994016][ T7256] device team_slave_0 entered promiscuous mode [ 231.000751][ T7256] device team_slave_1 entered promiscuous mode [ 231.019520][ T7256] device macsec1 entered promiscuous mode [ 231.039572][ T7256] device team0 entered promiscuous mode [ 231.046393][ T7251] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 231.048264][ T7260] netlink: 4 bytes leftover after parsing attributes in process `syz.1.920'. [ 231.087346][ T7251] ext4 filesystem being mounted at /149/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 231.273631][ T7262] loop1: detected capacity change from 0 to 64 [ 231.891679][ T7272] vivid-003: kernel_thread() failed [ 232.339482][ T4212] Bluetooth: hci4: command 0x0406 tx timeout [ 233.058528][ T7294] loop2: detected capacity change from 0 to 128 [ 233.466814][ T7294] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 233.503722][ T7294] ext4 filesystem being mounted at /198/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 233.643025][ T7294] fscrypt: loop2: 1 inode(s) still busy after removing key with identifier 69b2f6edeee720cce0577937eb8a6751, including ino 12 [ 233.799429][ T7311] kvm [7310]: vcpu0, guest rIP: 0x1be disabled perfctr wrmsr: 0xc1 data 0x4000 [ 233.826715][ T7314] device syzkaller0 entered promiscuous mode [ 233.838501][ T7311] kvm [7310]: vcpu0, guest rIP: 0x1be disabled perfctr wrmsr: 0xc2 data 0x1000f3d [ 233.974761][ T7311] kvm [7310]: vcpu0, guest rIP: 0x1be disabled perfctr wrmsr: 0xc1 data 0x10e7 [ 234.089001][ T7311] kvm [7310]: vcpu0, guest rIP: 0x1be disabled perfctr wrmsr: 0xc1 data 0x4000 [ 234.476897][ T26] audit: type=1326 audit(1739563915.217:103): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7334 comm="syz.2.948" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4ae7acbde9 code=0x7ffc0000 [ 234.507308][ T7336] loop3: detected capacity change from 0 to 64 [ 234.638950][ T26] audit: type=1326 audit(1739563915.217:104): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7334 comm="syz.2.948" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4ae7acbde9 code=0x7ffc0000 [ 234.828333][ T26] audit: type=1326 audit(1739563915.217:105): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7334 comm="syz.2.948" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f4ae7acbde9 code=0x7ffc0000 [ 234.879329][ T26] audit: type=1326 audit(1739563915.217:106): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7334 comm="syz.2.948" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4ae7acbde9 code=0x7ffc0000 [ 234.906446][ T26] audit: type=1326 audit(1739563915.217:107): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7334 comm="syz.2.948" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4ae7acbde9 code=0x7ffc0000 [ 235.269588][ T26] audit: type=1326 audit(1739563915.217:108): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7334 comm="syz.2.948" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f4ae7acbde9 code=0x7ffc0000 [ 235.485879][ T26] audit: type=1326 audit(1739563915.217:109): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7334 comm="syz.2.948" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4ae7acbde9 code=0x7ffc0000 [ 236.332137][ T26] audit: type=1326 audit(1739563915.217:110): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7334 comm="syz.2.948" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4ae7acbde9 code=0x7ffc0000 [ 236.354485][ T26] audit: type=1326 audit(1739563915.217:111): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7334 comm="syz.2.948" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f4ae7acbde9 code=0x7ffc0000 [ 236.385134][ T26] audit: type=1326 audit(1739563915.257:112): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7334 comm="syz.2.948" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4ae7acbde9 code=0x7ffc0000 [ 236.502190][ T7355] loop1: detected capacity change from 0 to 128 [ 236.615800][ T7355] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 236.703512][ T7355] ext4 filesystem being mounted at /196/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 236.898431][ T7355] fscrypt: loop1: 1 inode(s) still busy after removing key with identifier 69b2f6edeee720cce0577937eb8a6751, including ino 12 [ 237.204299][ T7375] device syzkaller0 entered promiscuous mode [ 238.418123][ T7390] loop1: detected capacity change from 0 to 64 [ 240.833050][ T26] kauditd_printk_skb: 12 callbacks suppressed [ 240.833071][ T26] audit: type=1326 audit(1739563921.567:125): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7416 comm="syz.5.974" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9934a1dde9 code=0x7ffc0000 [ 241.487486][ T26] audit: type=1326 audit(1739563921.567:126): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7416 comm="syz.5.974" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9934a1dde9 code=0x7ffc0000 [ 241.546693][ T7425] loop5: detected capacity change from 0 to 64 [ 241.556720][ T4216] usb 2-1: new high-speed USB device number 10 using dummy_hcd [ 241.644896][ T26] audit: type=1326 audit(1739563921.567:127): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7416 comm="syz.5.974" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f9934a1dde9 code=0x7ffc0000 [ 241.699469][ T26] audit: type=1326 audit(1739563921.567:128): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7416 comm="syz.5.974" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9934a1dde9 code=0x7ffc0000 [ 241.829431][ T4216] usb 2-1: Using ep0 maxpacket: 32 [ 241.904718][ T26] audit: type=1326 audit(1739563921.567:129): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7416 comm="syz.5.974" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9934a1dde9 code=0x7ffc0000 [ 241.913824][ T13] usb 1-1: new high-speed USB device number 17 using dummy_hcd [ 241.927969][ T26] audit: type=1326 audit(1739563921.567:130): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7416 comm="syz.5.974" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f9934a1dde9 code=0x7ffc0000 [ 242.096155][ T26] audit: type=1326 audit(1739563921.567:131): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7416 comm="syz.5.974" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9934a1dde9 code=0x7ffc0000 [ 242.257248][ T7435] device syzkaller0 entered promiscuous mode [ 242.428285][ T7444] set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state. [ 242.454003][ T26] audit: type=1326 audit(1739563921.567:132): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7416 comm="syz.5.974" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9934a1dde9 code=0x7ffc0000 [ 242.568452][ T26] audit: type=1326 audit(1739563921.567:133): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7416 comm="syz.5.974" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f9934a1dde9 code=0x7ffc0000 [ 242.702405][ T26] audit: type=1326 audit(1739563921.607:134): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7416 comm="syz.5.974" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9934a1dde9 code=0x7ffc0000 [ 243.549244][ T4216] usb 2-1: config 0 has an invalid interface number: 12 but max is 0 [ 243.557390][ T4216] usb 2-1: config 0 has no interface number 0 [ 243.564767][ T4216] usb 2-1: config 0 interface 12 has no altsetting 0 [ 243.648088][ T4216] usb 2-1: string descriptor 0 read error: -71 [ 243.654865][ T4216] usb 2-1: New USB device found, idVendor=2c42, idProduct=1202, bcdDevice=85.40 [ 243.664205][ T4216] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 243.674185][ T4216] usb 2-1: config 0 descriptor?? [ 243.706912][ T4216] usb 2-1: can't set config #0, error -71 [ 243.722750][ T4216] usb 2-1: USB disconnect, device number 10 [ 243.779272][ T13] usb 1-1: Using ep0 maxpacket: 16 [ 244.065084][ T13] usb 1-1: config 0 has no interfaces? [ 244.077803][ T13] usb 1-1: New USB device found, idVendor=046d, idProduct=c29c, bcdDevice= 0.00 [ 244.103416][ T13] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 244.113725][ T13] usb 1-1: config 0 descriptor?? [ 244.899630][ T13] usb 1-1: can't set config #0, error -71 [ 244.915809][ T7473] trusted_key: encrypted_key: insufficient parameters specified [ 244.935646][ T13] usb 1-1: USB disconnect, device number 17 [ 244.978080][ T7479] input: syz0 as /devices/virtual/input/input8 [ 245.107162][ T7485] netlink: 40 bytes leftover after parsing attributes in process `syz.1.994'. [ 245.308911][ T7491] device syzkaller0 entered promiscuous mode [ 245.919465][ T1107] usb 3-1: new high-speed USB device number 10 using dummy_hcd [ 245.941449][ T7512] trusted_key: encrypted_key: insufficient parameters specified [ 246.229504][ T1107] usb 3-1: Using ep0 maxpacket: 16 [ 246.349438][ T1107] usb 3-1: config 0 has an invalid interface number: 251 but max is 0 [ 246.388294][ T1107] usb 3-1: config 0 has no interface number 0 [ 246.418023][ T1107] usb 3-1: config 0 interface 251 altsetting 0 bulk endpoint 0x4 has invalid maxpacket 16 [ 246.496629][ T1107] usb 3-1: config 0 interface 251 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 64 [ 246.719519][ T1107] usb 3-1: New USB device found, idVendor=0b95, idProduct=172a, bcdDevice=f7.f4 [ 246.728610][ T1107] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 246.749562][ T1107] usb 3-1: Product: syz [ 246.753769][ T1107] usb 3-1: Manufacturer: syz [ 246.758903][ T1107] usb 3-1: SerialNumber: syz [ 246.771247][ T1107] usb 3-1: config 0 descriptor?? [ 246.789585][ T7507] raw-gadget.0 gadget: fail, usb_ep_enable returned -22 [ 246.796732][ T7507] raw-gadget.0 gadget: fail, usb_ep_enable returned -22 [ 247.014467][ T7507] raw-gadget.0 gadget: fail, usb_ep_enable returned -22 [ 247.026097][ T7507] raw-gadget.0 gadget: fail, usb_ep_enable returned -22 [ 247.301155][ T7532] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1012'. [ 247.326082][ T7532] loop5: detected capacity change from 0 to 512 [ 247.415706][ T7532] EXT4-fs (loop5): Ignoring removed orlov option [ 247.464487][ T7532] EXT4-fs (loop5): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 247.489383][ T1107] asix 3-1:0.251 (unnamed net_device) (uninitialized): Failed to read reg index 0x0000: -71 [ 247.501677][ T1107] asix 3-1:0.251 (unnamed net_device) (uninitialized): Failed to read software interface selection register: -71 [ 247.519479][ T1107] asix: probe of 3-1:0.251 failed with error -71 [ 247.531645][ T1107] usb 3-1: USB disconnect, device number 10 [ 247.566459][ T7532] EXT4-fs error (device loop5): ext4_orphan_get:1401: inode #15: comm syz.5.1012: casefold flag without casefold feature [ 247.592726][ T7532] EXT4-fs (loop5): Remounting filesystem read-only [ 247.608378][ T7532] EXT4-fs error (device loop5): ext4_orphan_get:1406: comm syz.5.1012: couldn't read orphan inode 15 (err -117) [ 247.737527][ T7532] EXT4-fs (loop5): Remounting filesystem read-only [ 247.745172][ T7532] EXT4-fs (loop5): mounted filesystem without journal. Opts: orlov,nodelalloc,errors=remount-ro,grpquota,auto_da_alloc,dioread_nolock,quota,. Quota mode: writeback. [ 247.949352][ T7541] trusted_key: encrypted_key: insufficient parameters specified [ 248.133822][ T7544] device syzkaller0 entered promiscuous mode [ 250.324162][ T7565] KVM: KVM_SET_CPUID{,2} after KVM_RUN may cause guest instability [ 250.352073][ T4213] usb 4-1: new high-speed USB device number 16 using dummy_hcd [ 250.358703][ T7565] KVM: KVM_SET_CPUID{,2} will fail after KVM_RUN starting with Linux 5.16 [ 250.383701][ T7575] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1025'. [ 250.433808][ T7575] loop2: detected capacity change from 0 to 512 [ 250.501402][ T7579] loop1: detected capacity change from 0 to 64 [ 250.525961][ T7575] EXT4-fs (loop2): Ignoring removed orlov option [ 250.538206][ T7575] EXT4-fs (loop2): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 250.557998][ T7581] trusted_key: encrypted_key: insufficient parameters specified [ 250.566899][ T7575] EXT4-fs error (device loop2): ext4_orphan_get:1401: inode #15: comm syz.2.1025: casefold flag without casefold feature [ 250.580496][ T7584] snd_dummy snd_dummy.0: control 0:0:0:syz0:0 is already present [ 250.582614][ T7575] EXT4-fs (loop2): Remounting filesystem read-only [ 250.595950][ T7575] EXT4-fs error (device loop2): ext4_orphan_get:1406: comm syz.2.1025: couldn't read orphan inode 15 (err -117) [ 250.608984][ T7575] EXT4-fs (loop2): Remounting filesystem read-only [ 250.615694][ T7575] EXT4-fs (loop2): mounted filesystem without journal. Opts: orlov,nodelalloc,errors=remount-ro,grpquota,auto_da_alloc,dioread_nolock,quota,. Quota mode: writeback. [ 250.729464][ T4213] usb 4-1: New USB device found, idVendor=04f3, idProduct=0755, bcdDevice= 0.00 [ 250.815171][ T4213] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 251.029323][ T7593] Error parsing options; rc = [-22] [ 251.779435][ T7593] vivid-003: kernel_thread() failed [ 251.944130][ T7599] input: syz0 as /devices/virtual/input/input9 [ 252.066399][ T7601] loop5: detected capacity change from 0 to 1024 [ 252.153371][ T4213] usb 4-1: config 0 descriptor?? [ 252.733484][ T4371] hfsplus: b-tree write err: -5, ino 4 [ 252.771392][ T7563] device vlan2 entered promiscuous mode [ 252.842608][ T7563] device dummy0 entered promiscuous mode [ 252.909495][ T7563] device dummy0 left promiscuous mode [ 253.229443][ T4213] usbhid 4-1:0.0: can't add hid device: -71 [ 253.249514][ T4213] usbhid: probe of 4-1:0.0 failed with error -71 [ 253.325700][ T4213] usb 4-1: USB disconnect, device number 16 [ 253.458113][ T7618] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1041'. [ 253.825109][ T7630] loop0: detected capacity change from 0 to 128 [ 254.436150][ T7630] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 254.519422][ T7630] ext4 filesystem being mounted at /230/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 254.697557][ T7630] fscrypt: loop0: 1 inode(s) still busy after removing key with identifier 69b2f6edeee720cce0577937eb8a6751, including ino 12 [ 254.809274][ T13] usb 6-1: new high-speed USB device number 13 using dummy_hcd [ 255.100598][ T13] usb 6-1: Using ep0 maxpacket: 32 [ 255.205494][ T7652] loop2: detected capacity change from 0 to 8192 [ 255.355473][ T7652] FAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 255.390832][ T7652] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1052'. [ 255.551029][ T7652] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2 [ 255.561377][ T7652] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db [ 255.703081][ T1429] ieee802154 phy0 wpan0: encryption failed: -22 [ 255.709495][ T1429] ieee802154 phy1 wpan1: encryption failed: -22 [ 255.941364][ T7660] loop1: detected capacity change from 0 to 64 [ 256.441838][ T7662] Error parsing options; rc = [-22] [ 256.628428][ T7662] vivid-003: kernel_thread() failed [ 258.356348][ T13] usb 6-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 1024 [ 258.579873][ T13] usb 6-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79 [ 258.605290][ T13] usb 6-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2 [ 258.662962][ T13] usb 6-1: Product: syz [ 258.677383][ T13] usb 6-1: Manufacturer: syz [ 258.716550][ T13] usb 6-1: SerialNumber: syz [ 258.862100][ T13] usb 6-1: config 0 descriptor?? [ 259.074938][ T7640] raw-gadget.0 gadget: fail, usb_ep_enable returned -22 [ 259.340149][ T13] hub 6-1:0.0: bad descriptor, ignoring hub [ 259.347480][ T13] hub: probe of 6-1:0.0 failed with error -5 [ 259.580060][ T13] usb 6-1: USB disconnect, device number 13 [ 259.741546][ T7694] netlink: 'syz.3.1064': attribute type 1 has an invalid length. [ 260.040879][ T7709] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1069'. [ 260.182246][ T7710] loop5: detected capacity change from 0 to 8192 [ 260.209323][ T4528] usb 2-1: new full-speed USB device number 11 using dummy_hcd [ 261.236193][ T7710] FAT-fs (loop5): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 261.268683][ T7710] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1070'. [ 261.278473][ T7710] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2 [ 261.288044][ T7710] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db [ 261.917458][ T7734] loop6: detected capacity change from 0 to 524287999 [ 261.999428][ C1] blk_update_request: I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 262.010443][ C1] Buffer I/O error on dev loop6, logical block 0, async page read [ 262.075900][ C1] blk_update_request: I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 262.086979][ C1] Buffer I/O error on dev loop6, logical block 0, async page read [ 262.171308][ C1] blk_update_request: I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 262.182348][ C1] Buffer I/O error on dev loop6, logical block 0, async page read [ 262.263894][ C1] blk_update_request: I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 262.274961][ C1] Buffer I/O error on dev loop6, logical block 0, async page read [ 262.346263][ C1] blk_update_request: I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 262.357317][ C1] Buffer I/O error on dev loop6, logical block 0, async page read [ 262.427927][ C1] blk_update_request: I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 262.439174][ C1] Buffer I/O error on dev loop6, logical block 0, async page read [ 262.511665][ C1] blk_update_request: I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 262.522725][ C1] Buffer I/O error on dev loop6, logical block 0, async page read [ 262.578875][ C1] blk_update_request: I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 262.589932][ C1] Buffer I/O error on dev loop6, logical block 0, async page read [ 262.610077][ T7734] ldm_validate_partition_table(): Disk read failed. [ 262.643451][ C1] blk_update_request: I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 262.654498][ C1] Buffer I/O error on dev loop6, logical block 0, async page read [ 262.751303][ C1] blk_update_request: I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 262.762435][ C1] Buffer I/O error on dev loop6, logical block 0, async page read [ 262.877648][ T7734] Dev loop6: unable to read RDB block 0 [ 262.897642][ T7734] loop6: unable to read partition table [ 262.932860][ T7734] loop_reread_partitions: partition scan of loop6 ( 6tPΪŔA8*V^3c) failed (rc=-5) [ 263.079377][ T4528] usb 2-1: unable to read config index 0 descriptor/start: -71 [ 263.101514][ T4528] usb 2-1: can't read configurations, error -71 [ 263.106127][ T7738] loop6: detected capacity change from 524287999 to 0 [ 263.180195][ T7748] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1083'. [ 263.236489][ T7752] loop5: detected capacity change from 0 to 128 [ 263.247182][ T7748] device erspan0 entered promiscuous mode [ 263.296554][ T7748] device macvtap1 entered promiscuous mode [ 263.319435][ T7753] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1083'. [ 263.373780][ T7752] EXT4-fs (loop5): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 263.421830][ T7752] ext4 filesystem being mounted at /198/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 263.489318][ T4528] usb 2-1: new high-speed USB device number 12 using dummy_hcd [ 263.523771][ T7753] device erspan0 left promiscuous mode [ 263.614556][ T7752] fscrypt: loop5: 1 inode(s) still busy after removing key with identifier 69b2f6edeee720cce0577937eb8a6751, including ino 12 [ 264.015630][ T7771] loop2: detected capacity change from 0 to 8192 [ 264.022542][ T4528] usb 2-1: config 1 has too many interfaces: 66, using maximum allowed: 32 [ 264.042606][ T4528] usb 2-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config [ 264.081135][ T7771] FAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 264.115664][ T7771] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1091'. [ 264.125410][ T7771] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2 [ 264.135005][ T7771] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db [ 264.219372][ T4528] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 66 [ 370.099142][ C1] rcu: INFO: rcu_preempt detected stalls on CPUs/tasks: [ 370.106208][ C1] rcu: Tasks blocked on level-0 rcu_node (CPUs 0-1): P4991/1:b..l [ 370.114756][ C1] (detected by 1, t=10502 jiffies, g=27105, q=9) [ 370.121195][ C1] task:kworker/u4:14 state:R running task stack:23864 pid: 4991 ppid: 2 flags:0x00004000 [ 370.133361][ C1] Workqueue: netns cleanup_net [ 370.138197][ C1] Call Trace: [ 370.141508][ C1] [ 370.144454][ C1] __schedule+0x12c4/0x45b0 [ 370.148981][ C1] ? _raw_spin_unlock_irqrestore+0x8b/0x130 [ 370.154957][ C1] ? _raw_spin_unlock_irqrestore+0xd9/0x130 [ 370.160869][ C1] ? lockdep_hardirqs_on_prepare+0x438/0x7a0 [ 370.166874][ C1] ? mark_lock+0x98/0x340 [ 370.171223][ C1] ? lockdep_hardirqs_on_prepare+0x438/0x7a0 [ 370.177220][ C1] ? release_firmware_map_entry+0x190/0x190 [ 370.183144][ C1] ? preempt_schedule_irq+0xec/0x1c0 [ 370.188448][ C1] preempt_schedule_irq+0xf7/0x1c0 [ 370.193690][ C1] ? __cond_resched+0x20/0x20 [ 370.198412][ C1] irqentry_exit+0x53/0x80 [ 370.202844][ C1] asm_sysvec_apic_timer_interrupt+0x16/0x20 [ 370.208841][ C1] RIP: 0010:__sanitizer_cov_trace_pc+0x4/0x60 [ 370.214928][ C1] Code: 00 00 00 0f 1f 00 53 48 89 fb e8 17 00 00 00 48 8b 3d 18 04 8a 0c 48 89 de 5b e9 47 11 49 00 cc cc cc cc cc cc cc 48 8b 04 24 <65> 48 8b 0d 24 ea 81 7e 65 8b 15 25 ea 81 7e 81 e2 00 01 ff 00 74 [ 370.234566][ C1] RSP: 0018:ffffc900032b7a30 EFLAGS: 00000283 [ 370.240655][ C1] RAX: ffffffff88de5165 RBX: 00000000000586cb RCX: ffff8880268b1dc0 [ 370.248728][ C1] RDX: ffff8880268b1dc0 RSI: ffffffff8aab3e20 RDI: ffffffff8af9f2c0 [ 370.256715][ C1] RBP: ffffc900032b7b50 R08: dffffc0000000000 R09: fffffbfff1c150ee [ 370.264706][ C1] R10: 0000000000000000 R11: dffffc0000000001 R12: 1ffff92000656f5e [ 370.272692][ C1] R13: 00000000000586ca R14: dffffc0000000000 R15: ffff88814d2c3658 [ 370.280685][ C1] ? rcu_lock_acquire+0x5/0x30 [ 370.285529][ C1] rcu_lock_acquire+0x5/0x30 [ 370.290152][ C1] inet_twsk_purge+0x129/0x9d0 [ 370.294947][ C1] ? __inet_twsk_schedule+0x130/0x130 [ 370.300339][ C1] ? iput+0x6d6/0x8b0 [ 370.304345][ C1] ? dccp_v4_exit_net+0x80/0x80 [ 370.309233][ C1] cleanup_net+0x886/0xc90 [ 370.313700][ C1] ? ops_free_list+0x340/0x340 [ 370.318484][ C1] ? _raw_spin_unlock_irqrestore+0xd9/0x130 [ 370.324410][ C1] process_one_work+0x8a1/0x10c0 [ 370.329385][ C1] ? worker_detach_from_pool+0x260/0x260 [ 370.335040][ C1] ? _raw_spin_lock_irqsave+0x120/0x120 [ 370.340601][ C1] ? kthread_data+0x4e/0xc0 [ 370.345141][ C1] ? wq_worker_running+0x97/0x170 [ 370.350185][ C1] worker_thread+0xaca/0x1280 [ 370.354881][ C1] ? _raw_spin_unlock_irqrestore+0xd9/0x130 [ 370.360814][ C1] kthread+0x3f6/0x4f0 [ 370.364897][ C1] ? rcu_lock_release+0x20/0x20 [ 370.369762][ C1] ? kthread_blkcg+0xd0/0xd0 [ 370.374366][ C1] ret_from_fork+0x1f/0x30 [ 370.378808][ C1] [ 370.381847][ C1] rcu: rcu_preempt kthread starved for 9590 jiffies! g27105 f0x0 RCU_GP_WAIT_FQS(5) ->state=0x0 ->cpu=1 [ 370.392964][ C1] rcu: Unless rcu_preempt kthread gets sufficient CPU time, OOM is now expected behavior. [ 370.402937][ C1] rcu: RCU grace-period kthread stack dump: [ 370.408827][ C1] task:rcu_preempt state:R running task stack:27256 pid: 15 ppid: 2 flags:0x00004000 [ 370.419665][ C1] Call Trace: [ 370.422958][ C1] [ 370.425903][ C1] __schedule+0x12c4/0x45b0 [ 370.430429][ C1] ? _raw_spin_unlock_irqrestore+0x8b/0x130 [ 370.436372][ C1] ? release_firmware_map_entry+0x190/0x190 [ 370.442285][ C1] ? mod_timer_pending+0x20/0x20 [ 370.447241][ C1] ? lockdep_softirqs_off+0x420/0x420 [ 370.452637][ C1] schedule+0x11b/0x1f0 [ 370.456820][ C1] schedule_timeout+0x1b9/0x300 [ 370.461698][ C1] ? console_conditional_schedule+0x40/0x40 [ 370.467620][ C1] ? update_process_times+0x200/0x200 [ 370.473017][ C1] ? prepare_to_swait_event+0x321/0x340 [ 370.478583][ C1] rcu_gp_fqs_loop+0x2bf/0x1080 [ 370.483462][ C1] ? dyntick_save_progress_counter+0x230/0x230 [ 370.489639][ C1] ? rcu_gp_init+0x1140/0x1140 [ 370.494429][ C1] ? finish_swait+0xc5/0x1d0 [ 370.499049][ C1] rcu_gp_kthread+0xa4/0x360 [ 370.503653][ C1] ? _raw_spin_unlock+0x40/0x40 [ 370.508662][ C1] ? rcu_report_qs_rsp+0x1a0/0x1a0 [ 370.513796][ C1] ? _raw_spin_unlock_irqrestore+0xd9/0x130 [ 370.519713][ C1] ? __kthread_parkme+0x15c/0x1c0 [ 370.524759][ C1] kthread+0x3f6/0x4f0 [ 370.528843][ C1] ? rcu_report_qs_rsp+0x1a0/0x1a0 [ 370.533977][ C1] ? kthread_blkcg+0xd0/0xd0 [ 370.538581][ C1] ret_from_fork+0x1f/0x30 [ 370.543109][ C1] [ 370.546138][ C1] rcu: Stack dump where RCU GP kthread last ran: [ 370.552483][ C1] NMI backtrace for cpu 1 [ 370.556825][ C1] CPU: 1 PID: 0 Comm: swapper/1 Not tainted 5.15.178-syzkaller #0 [ 370.564642][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 370.574707][ C1] Call Trace: [ 370.577994][ C1] [ 370.580842][ C1] dump_stack_lvl+0x1e3/0x2d0 [ 370.585627][ C1] ? io_uring_drop_tctx_refs+0x1a0/0x1a0 [ 370.591276][ C1] ? panic+0x860/0x860 [ 370.595372][ C1] nmi_cpu_backtrace+0x46a/0x4a0 [ 370.600328][ C1] ? __wake_up_klogd+0xd5/0x100 [ 370.605205][ C1] ? nmi_trigger_cpumask_backtrace+0x2a0/0x2a0 [ 370.611375][ C1] ? _printk+0xd1/0x120 [ 370.615551][ C1] ? cpu_online+0x1f/0x40 [ 370.619917][ C1] ? panic+0x860/0x860 [ 370.624023][ C1] ? arch_trigger_cpumask_backtrace+0x10/0x10 [ 370.630111][ C1] nmi_trigger_cpumask_backtrace+0x181/0x2a0 [ 370.636118][ C1] rcu_check_gp_kthread_starvation+0x1d2/0x240 [ 370.642296][ C1] print_other_cpu_stall+0x137a/0x14d0 [ 370.647805][ C1] ? print_cpu_stall+0x600/0x600 [ 370.652769][ C1] ? __lock_acquire+0x1ff0/0x1ff0 [ 370.657810][ C1] ? do_raw_spin_unlock+0x137/0x8b0 [ 370.663027][ C1] rcu_sched_clock_irq+0xa38/0x1150 [ 370.668252][ C1] ? rcutree_dead_cpu+0x20/0x20 [ 370.673117][ C1] ? hrtimer_run_queues+0x163/0x450 [ 370.678332][ C1] ? account_process_tick+0x232/0x3a0 [ 370.683735][ C1] update_process_times+0x196/0x200 [ 370.688958][ C1] tick_sched_timer+0x386/0x550 [ 370.693829][ C1] ? tick_setup_sched_timer+0x2d0/0x2d0 [ 370.699395][ C1] __hrtimer_run_queues+0x55b/0xcf0 [ 370.704625][ C1] ? hrtimer_interrupt+0x980/0x980 [ 370.709753][ C1] ? ktime_get_update_offsets_now+0x407/0x420 [ 370.715849][ C1] hrtimer_interrupt+0x392/0x980 [ 370.720826][ C1] __sysvec_apic_timer_interrupt+0x13b/0x4b0 [ 370.726831][ C1] sysvec_apic_timer_interrupt+0x9b/0xc0 [ 370.732486][ C1] [ 370.735433][ C1] [ 370.738372][ C1] asm_sysvec_apic_timer_interrupt+0x16/0x20 [ 370.744471][ C1] RIP: 0010:acpi_idle_do_entry+0x10f/0x340 [ 370.750315][ C1] Code: a5 37 f7 48 83 e3 08 0f 85 0a 01 00 00 4c 8d 74 24 20 e8 84 1f 3e f7 0f 1f 44 00 00 e8 1a a1 37 f7 0f 00 2d a3 4f bb 00 fb f4 <4c> 89 f3 48 c1 eb 03 42 80 3c 3b 00 74 08 4c 89 f7 e8 db 89 81 f7 [ 370.769949][ C1] RSP: 0018:ffffc90000d67b00 EFLAGS: 000002d3 [ 370.776032][ C1] RAX: ffffffff8a48e476 RBX: 0000000000000000 RCX: ffff88813ff68000 [ 370.784030][ C1] RDX: 0000000000000000 RSI: ffffffff8aab2b80 RDI: ffffffff8af9f2c0 [ 370.792009][ C1] RBP: ffffc90000d67b90 R08: ffffffff81870420 R09: ffffed1027fed001 [ 370.799990][ C1] R10: 0000000000000000 R11: dffffc0000000001 R12: 1ffff920001acf60 [ 370.808061][ C1] R13: ffff888144d34004 R14: ffffc90000d67b20 R15: dffffc0000000000 [ 370.816054][ C1] ? trace_hardirqs_on+0x30/0x80 [ 370.821011][ C1] ? acpi_idle_do_entry+0x106/0x340 [ 370.826235][ C1] ? acpi_idle_enter_bm+0x5c0/0x5c0 [ 370.831446][ C1] ? rcu_preempt_deferred_qs+0x6b/0x190 [ 370.837009][ C1] ? rcu_qs+0x190/0x190 [ 370.841183][ C1] acpi_idle_enter+0x352/0x4f0 [ 370.845971][ C1] cpuidle_enter_state+0x521/0xef0 [ 370.851110][ C1] ? cpuidle_enter_s2idle+0x6b0/0x6b0 [ 370.856503][ C1] ? can_stop_idle_tick+0x20d/0x2b0 [ 370.861721][ C1] ? tick_nohz_idle_stop_tick+0x354/0xa70 [ 370.867465][ C1] cpuidle_enter+0x59/0x90 [ 370.871901][ C1] do_idle+0x3e4/0x670 [ 370.876011][ C1] ? idle_inject_timer_fn+0x60/0x60 [ 370.881252][ C1] ? do_idle+0x6/0x670 [ 370.885356][ C1] cpu_startup_entry+0x14/0x20 [ 370.890140][ C1] start_secondary+0x371/0x500 [ 370.894931][ C1] ? arch_scale_freq_tick+0x120/0x120 [ 370.900328][ C1] secondary_startup_64_no_verify+0xb1/0xbb [ 370.906252][ C1]