last executing test programs: 7.65330199s ago: executing program 3 (id=2301): r0 = syz_open_dev$loop(&(0x7f0000001800), 0x8, 0x101000) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000200)='cpuacct.stat\x00', 0x275a, 0x0) write$binfmt_misc(r1, &(0x7f0000000040), 0xe09) ioctl$LOOP_CONFIGURE(r0, 0x4c0a, &(0x7f00000002c0)={r1, 0x0, {0x2a00, 0x80010000, 0x0, 0x2, 0x0, 0x0, 0x0, 0x9, 0x1c, "fee8a2ab78fc979fd1e00d96072000001ea89de2b7fb0000e60080b8785d9600010000000000000000000000000000000000000000000000000400", "2809e8dbe108598948224ad54afac11d875397bdb22d0000b420a1a93c5240f45f819e01177d3d458dd4992861ac00000000170000000400", "f4bd000000801900", [0x100000000, 0x8000000000000000]}}) 6.644374642s ago: executing program 1 (id=2305): capset(&(0x7f0000000080)={0x20071026}, &(0x7f0000000040)={0x200000, 0x240000, 0x0, 0x0, 0x0, 0xfffffffe}) r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000380)=0x3) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000080)=0x1) 6.557984882s ago: executing program 3 (id=2306): r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000000)=ANY=[@ANYBLOB="180000002500010324bd7002ffdbdf25010000000400ae"], 0x18}, 0x1, 0x0, 0x0, 0x4009}, 0x0) recvmsg(r0, &(0x7f00000031c0)={0x0, 0x0, 0x0}, 0x2000) recvmmsg(r0, &(0x7f0000000d80)=[{{0x0, 0x0, 0x0}, 0xac}, {{0x0, 0x0, 0x0}, 0x2000008}, {{0x0, 0x0, &(0x7f0000001840)=[{&(0x7f0000000480)=""/92, 0x5c}, {&(0x7f0000003200)=""/4124, 0x101c}, {&(0x7f0000001680)=""/114, 0x72}, {&(0x7f0000000040)=""/78, 0x4e}, {&(0x7f00000005c0)=""/45, 0x2d}], 0x5}, 0xb0a}, {{0x0, 0x0, 0x0}, 0xd3a9}, {{0x0, 0x0, 0x0}, 0x7}, {{0x0, 0x0, 0x0}, 0x5}, {{0x0, 0x0, 0x0}, 0x6}, {{0x0, 0x0, 0x0}, 0x10001}, {{0x0, 0x0, 0x0}, 0xa9e5}], 0x9, 0x2000, 0x0) 5.838912606s ago: executing program 1 (id=2310): r0 = socket$inet6_sctp(0xa, 0x1, 0x84) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000280)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c) ioctl$int_in(r0, 0x5452, &(0x7f00000000c0)=0x6) sendmmsg$inet6(r0, &(0x7f0000000000)=[{{&(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback, 0x40}, 0x1c, &(0x7f0000000500)=[{&(0x7f0000000040)='\x00', 0x1}], 0x1}}], 0x1, 0x34000091) 5.776479683s ago: executing program 3 (id=2313): r0 = socket$inet(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000300)={'bond0\x00', 0x0}) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r2, &(0x7f0000000280)={0x0, 0x12, &(0x7f0000000040)={&(0x7f00000006c0)=ANY=[@ANYBLOB="5000000010000104020006000000000000000000", @ANYRES32=0x0, @ANYBLOB="2825020000080000280012800c0001006d6163766c616e00180002800a0009000000000000000000080007000100000008000500", @ANYRES32=r1], 0x50}}, 0x800) 4.99301551s ago: executing program 3 (id=2318): syz_mount_image$msdos(&(0x7f0000000140), &(0x7f0000000640)='./file1\x00', 0x800010, &(0x7f0000000800)=ANY=[@ANYBLOB="666c7573682c6e6f646f74732c646973636172642c646d61736b3d30303030303030303030303030303030303030303030322c646d61736b3d30303030303030303030303030303030303030303137372c646f74732c6e6f646f74732c71756965742c646f74732c0023c3cb4d2e3cbf18508098fe0de2af38db67d42d1bc4ab714d52f019082433fc9ca2d7174b2c4ece31c9f4c7a4d53914e100"/167], 0x1, 0x17d, &(0x7f0000000340)="$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") syz_mount_image$vfat(&(0x7f00000000c0), &(0x7f0000000000)='./file1\x00', 0x4000, &(0x7f0000000140)=ANY=[@ANYBLOB="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"], 0x6, 0x2ab, &(0x7f0000000a80)="$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") mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000240)='blkio.bfq.idle_time\x00', 0x275a, 0x0) 4.853221607s ago: executing program 2 (id=2319): r0 = socket$inet6_udp(0xa, 0x2, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000c80)={'lo\x00', 0x0}) ioctl$sock_inet6_SIOCSIFADDR(r0, 0x8916, &(0x7f0000005b80)={@loopback={0xfec0ffffffffffff}, 0x32, r1}) ioctl$sock_inet6_SIOCSIFADDR(r0, 0x8916, &(0x7f0000000100)={@initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, 0x6f, r1}) 4.416044109s ago: executing program 4 (id=2320): sendmsg$NFNL_MSG_CTHELPER_NEW(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)={0x44, 0x0, 0x9, 0x101, 0x0, 0x0, {0x2, 0x0, 0x3}, [@NFCTH_TUPLE={0x30, 0x2, [@CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @loopback}, {0x14, 0x4, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}}}}]}]}, 0x44}, 0x1, 0x0, 0x0, 0x24000000}, 0x0) r0 = socket$inet6_sctp(0xa, 0x1, 0x84) mprotect(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1) getsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000040)={0x0, 0x0, 0x30}, &(0x7f0000000080)=0xc) 4.415867896s ago: executing program 1 (id=2321): r0 = socket$inet_udp(0x2, 0x2, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$inet_mreq(r1, 0x0, 0x23, &(0x7f0000000000)={@multicast1=0xe0000300, @local}, 0x8) close_range(r0, 0xffffffffffffffff, 0x0) 4.331199074s ago: executing program 3 (id=2323): syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000780)='./bus\x00', 0x41, &(0x7f0000002c40)={[{@errors_remount}, {@noload}, {@mb_optimize_scan={'mb_optimize_scan', 0x3d, 0x1}}, {@noblock_validity}, {@noblock_validity}, {@nogrpid}, {@mblk_io_submit}, {@dioread_lock}, {@stripe={'stripe', 0x3d, 0x65cf}}], [], 0x3d}, 0x65, 0x51c, &(0x7f0000000200)="$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") r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000080)=ANY=[@ANYBLOB="12010000000000106a05310300000000000109022400010000800009040002010300010009210000000122f80409058103"], 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, &(0x7f0000000140)={0x24, 0x0, 0x0, &(0x7f0000000040)=ANY=[@ANYBLOB="00220508"], 0x0}, 0x0) 4.20457768s ago: executing program 2 (id=2324): r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000004840), r1) sendmsg$IEEE802154_SCAN_REQ(r0, &(0x7f0000001140)={0x0, 0x0, &(0x7f0000001100)={&(0x7f00000010c0)={0x24, r2, 0x1, 0x70bd29, 0x25dfdbfe, {}, [@IEEE802154_ATTR_CHANNELS={0x8, 0x14, 0x11}, @IEEE802154_ATTR_SCAN_TYPE={0x5, 0x13, 0x6f}]}, 0x24}, 0x1, 0x0, 0x0, 0x20}, 0x40010) 3.737987533s ago: executing program 1 (id=2325): syz_mount_image$nilfs2(&(0x7f0000000180), &(0x7f0000000840)='./file3\x00', 0x0, &(0x7f0000001040)=ANY=[], 0x1, 0xaf3, &(0x7f0000002400)="$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") mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000180), 0x0, &(0x7f00000001c0)={[{@lowerdir={'lowerdir', 0x3d, './file0'}, 0x3a}], [], 0x2f}) r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000002180)='./file0\x00', 0x0, 0x1c1) ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(r0, 0x80086601, 0x0) 3.664555591s ago: executing program 4 (id=2326): r0 = userfaultfd(0x801) r1 = epoll_create1(0x0) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000400)={0xe000200d}) epoll_ctl$EPOLL_CTL_MOD(r1, 0x3, r0, &(0x7f00000000c0)={0xa0000010}) 3.640198875s ago: executing program 0 (id=2327): r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'bridge0\x00', 0x0}) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0xffffffffffffff01, &(0x7f0000000040)={&(0x7f00000001c0)=@RTM_NEWMDB={0x38, 0x55, 0x2e5, 0x70bd26, 0xfffffffe, {0x7, r2}, [@MDBA_SET_ENTRY={0x20, 0x1, {r2, 0x1, 0x0, 0xffe, {@ip4=@empty}}}]}, 0x38}, 0x1, 0x0, 0x0, 0x44}, 0x20000100) 3.414626903s ago: executing program 2 (id=2328): bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000200)={&(0x7f0000000140)=ANY=[@ANYBLOB="9feb01"], 0x0, 0x50}, 0x28) r0 = socket$netlink(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000200)={'geneve0\x00', 0x0}) sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="4400000010000100"/20, @ANYRES32=r1, @ANYBLOB="00000000000000001c0012800b00010067656e65766500000c00028008000200ac1414bb080004"], 0x44}, 0x1, 0x2}, 0x4000040) 3.086915638s ago: executing program 1 (id=2329): r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x21, '\x00', 0x0, @fallback=0x2}, 0x94) mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x5) fcntl$lock(r0, 0x410, &(0x7f00000000c0)={0x1, 0x1, 0x8c9b, 0xfffc}) 2.722790924s ago: executing program 0 (id=2330): r0 = socket$nl_route(0x10, 0x3, 0x0) setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x33, &(0x7f0000000b00)={0x1, &(0x7f00000001c0)=[{0x6, 0x4, 0x8, 0xa}]}, 0x10) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'erspan0\x00', 0x0}) sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[@ANYBLOB="440000001000050400"/20, @ANYRES32=r1, @ANYBLOB="0000000000000000240012800b00010065727370616e000014000280050016000000000006000e"], 0x44}}, 0x0) 2.658827738s ago: executing program 4 (id=2331): r0 = io_uring_setup(0x7287, &(0x7f0000000400)={0x0, 0xd612, 0x40, 0x1, 0x28b}) write$FUSE_LK(0xffffffffffffffff, &(0x7f0000000040)={0x28, 0x0, 0x0, {{0xfffffffffffffffe, 0xfffffffffffe}}}, 0x28) io_uring_register$IORING_REGISTER_FILES_UPDATE2(r0, 0xd, &(0x7f0000000140)={0x7, 0x0, 0x0, 0x0}, 0x20) io_uring_register$IORING_REGISTER_FILES_UPDATE2(r0, 0xe, &(0x7f0000001180)={0x0, 0x0, &(0x7f0000000040)=[{0x0, 0xffffffff00000000}], &(0x7f0000000100), 0x7}, 0x20) 2.644595545s ago: executing program 2 (id=2332): ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) r0 = syz_open_procfs(0x0, &(0x7f00000002c0)='maps\x00') prctl$PR_SET_VMA(0x53564d41, 0x0, &(0x7f0000000000/0x1000)=nil, 0x1000, &(0x7f0000000100)='maps\x00') ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0xc0686611, &(0x7f0000000040)={0x68, 0x0, 0x17, 0x2000, &(0x7f0000ffd000/0x2000)=nil}) 2.098744528s ago: executing program 0 (id=2333): r0 = syz_open_dev$radio(&(0x7f00000003c0), 0x2, 0x2) read(r0, &(0x7f0000000280)=""/96, 0x60) r1 = syz_open_dev$radio(&(0x7f00000003c0), 0x2, 0x2) read(r1, &(0x7f0000000080)=""/116, 0xfffffeb2) 1.966898281s ago: executing program 4 (id=2334): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0) sendmsg$NFT_BATCH(r0, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000002100)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a5c000000090a010400000000000000000a0000040900010073797a310000000008000540000000040900020073797a310000000008000a40fffffffc200011800e000100636f6e6e6c696d69740000000c00028008000140fffff27414000000110001"], 0x84}, 0x1, 0x0, 0x0, 0x4000850}, 0x40) syz_emit_ethernet(0x4f, &(0x7f0000000100)=ANY=[@ANYBLOB="aaaaaaaaaaaa00400000000086dd6c2d01000019840100000000000000000002000000010102fe8000000000000000000000000000aaa5ba94e385673ccfd3fe184ab0643975bcc85fbf438632261b"], 0x0) 1.966630367s ago: executing program 2 (id=2335): r0 = socket$pppoe(0x18, 0x1, 0x0) connect$pppoe(r0, &(0x7f0000000040)={0x18, 0x0, {0x3, @random="bb7fb37b9489", 'bond0\x00'}}, 0x1e) r1 = socket$kcm(0x10, 0x2, 0x0) sendmsg$kcm(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000100)=[{&(0x7f00000002c0)="2e00000011008b88040f80ee59acbc04130800480f0000005e2900421803001825800000000000000280000c0012", 0x2e}], 0x1}, 0x0) 1.454658277s ago: executing program 1 (id=2336): syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x10000, &(0x7f00000002c0)={[{@usrjquota}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x3}}, {}, {@quota}, {@bsdgroups}, {@dioread_nolock}]}, 0x1, 0x50a, &(0x7f0000000e80)="$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") r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x40) pwrite64(r0, &(0x7f0000000140)='2', 0x1, 0x8000c61) lseek(r0, 0x5960, 0x3) 1.445343925s ago: executing program 0 (id=2337): sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f0000000580)=ANY=[@ANYBLOB="5c000000020605000000000000000000000000000c00078005001500267d00000500010007000000050005000a000000050004"], 0x5c}}, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000380), r0) sendmsg$ETHTOOL_MSG_DEBUG_SET(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000001500)={&(0x7f0000000580)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="01000000040200f2c8dc1b000000180001801400020073797a5f74756e0003000000000000000c000280"], 0x38}, 0x1, 0x0, 0x0, 0x20000844}, 0x0) 1.423576514s ago: executing program 4 (id=2338): mknod(&(0x7f0000000040)='./file0\x00', 0x8001420, 0x0) setxattr$security_capability(0x0, &(0x7f0000000280), 0x0, 0x0, 0x0) lsetxattr$security_capability(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0), &(0x7f0000000100)=@v3={0x3000000, [{0x8}, {0x0, 0xfffffff6}], 0xee00}, 0x18, 0x0) lgetxattr(&(0x7f0000000000)='./file0\x00', &(0x7f0000000280)=ANY=[], &(0x7f00000002c0)=""/203, 0xfffffffffffffe5f) 346.631893ms ago: executing program 32 (id=2336): syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x10000, &(0x7f00000002c0)={[{@usrjquota}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x3}}, {}, {@quota}, {@bsdgroups}, {@dioread_nolock}]}, 0x1, 0x50a, &(0x7f0000000e80)="$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") r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x40) pwrite64(r0, &(0x7f0000000140)='2', 0x1, 0x8000c61) lseek(r0, 0x5960, 0x3) 336.083965ms ago: executing program 0 (id=2340): r0 = socket$inet(0x2, 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x1, 0x5, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x15, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x4000000}, 0x94) mprotect(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1) setsockopt$inet_msfilter(r0, 0x0, 0x29, &(0x7f00000000c0)={@initdev={0xac, 0x1e, 0x0, 0x0}, @loopback, 0x1}, 0x10) 306.567724ms ago: executing program 2 (id=2341): r0 = openat$vmci(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0) ioctl$IOCTL_VMCI_VERSION2(r0, 0x7a7, &(0x7f00000000c0)=0xb0000) ioctl$IOCTL_VMCI_INIT_CONTEXT(r0, 0x7a0, &(0x7f0000000000)={@my=0x1}) ioctl$IOCTL_VMCI_QUEUEPAIR_SETVA(r0, 0x7a4, &(0x7f0000000540)={{@local, 0x2}, 0x0, 0x9, 0xffffffff, 0x40}) 299.131211ms ago: executing program 3 (id=2342): syz_mount_image$hfsplus(&(0x7f0000000140), &(0x7f0000000640)='./file1\x00', 0x3010012, &(0x7f0000000100)=ANY=[@ANYRES64=0x0, @ANYRES16], 0x1, 0x5f4, &(0x7f0000000d00)="$eJzs3T1vHMcdB+DfLimKVACJtiXbCRKEkIoEFiLxeLbMIkCUIAhYGIGBNG5cENLJInSiDZIOaCMIpLy2+QZ2CqpOlSJIIcCp8xUIpHARID07Bbu3R57FF5F64R3t5wGGM3OzOzvz5+7wdg/EBfjGWngvpx6myMLld9ar+uZGu7u50b7bLyc5naRMxntZiuWk+CK5nl7Kt6sXm+6K/Y7z/mdvz3/ZenC/VxtvUr19edB+h3OvSZlJMtbkz6u/G8/cX7E9wypgl/qBg2F7tMu9o+z+jNctMAqK3t/NXaaTM0kmm/cBaVaH8nhH97Qm92050ioHAAAAJ9S5rWxlPWeHPQ4AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA4SZrv/y+aVPbLMyn63/8/0byWpnyiPRz2AAAAAAAAAADgOfj+VraynrP9+qOi/sz/Yl05X//8Vj7OajpZyZWsZzFrWctKWkmmBzqaWF9cW1tpHWLPuT33nDue+QIAAAAAAADA19TvsrDz+T8AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIyCIhnrZXU63y9PpxxPMplkotruXvLPfvkkezjsAQAAAMAxOLeVraznbL/+qKjv+V+t7/sn83GWs5alrKWbTm7WzwJ6d/3l5ka7u7nRvlul3f3+9H9HGkbdY3rPHvY+8my9xYXtPRbyi/wqlzOTd7OSpfw6i1lLJzP5eV1aTJHp5unFdH+ce4/3+ldq7z5prK/XI5nKrSzVY7uSG/kw3dxMWc+h3ubgI96volP8pHHIGN1s8mpGf2ny0TBdR+TUdkRmUxRF8xt96eBIHPE8efxIrZTbz6DOv4CYn2nyajZ/GumYzw2cfa8eHInk4n++9/fb3eU7t2+tXh6dKT3JPiN9PBLtgUi89vWMxD4mmmj0VtGjrZYX633PZim/zIe5mU7eynzeylzezJuZzXyuDcT1wiGutfJo19qlHzaFqSR/bvLRUMX1pYG4Dq5003Xb4Cs7UXr5+a9I499pCtUxft/ko+HxSLQGIvHKwZH466Pq52p3+c7K7cWPDnm8HzR5ddn+caTW5up8ebn6ZdW1r54dVdsre7a16rbz223lrrYL221PulInmvdwu3uaq9te27OtXbe9PtC217scAEbemTfOTEz9d+rfU59P/WHq9tQ7kz87PX/6uxM59a/xf4z9rXxQ/rh4I5/ntzv3/wAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAwNNb/eTTO4vdbmdF4WkKY6MxjOEXzjXn07P2UyYZgekodIe8MAEv3NW1ux9dXf3k0x8tlYsfdD7oLLfbrWtz89fm565dvbXU7cxevbU03pkd9jCBF2Dnj/6wRwIAAAAAAAAAAAAc1nH8O8Gw5wgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACcbAvv5dTDFGnNXpmt6psb7W6V+uWdLceTlEmK3yTFF8n19FKmB7or9jvO+5+9Pf9l68H9nb7G+9uXB+13OPealJkkY03+vPq78cz9FdszrAJ2qR84GLb/BwAA//9ncwfo") syz_mount_image$udf(&(0x7f0000000040), &(0x7f0000000480)='./file0\x00', 0x2018008, &(0x7f00000000c0)=ANY=[@ANYRES32=0x0, @ANYBLOB="2f93edc77863113d68e33456dfe3c025878b46bc73df14f991a8f7a341a10f44c05fc1c37ad73b0239a18733e7436f3b54758b4ce59af971d50e53c14277216c0bba6ad052fa7a6d77f0b19c8b2381abc46dfa7e4bc6c37bbab3f908f48d1a6055a6457c5d503502300a69dc517cc08b955df0d19ae4c120c512eceffbf3fc154e4ba08f2497b14e95cfdef1c26e8623eab9941404ca9d84df9a2c44e453a0cfffbf23e5bf1e872ee040a582eda3d84714e82dde4c02836e5f66775f4df1bdcfbc28eb5ced2b332944d3ab2b9efe3cbb2111fe"], 0xfe, 0x4b1, &(0x7f0000001d00)="$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") mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5) syz_mount_image$fuse(&(0x7f0000000480), &(0x7f00000020c0)='./file1\x00', 0x208402, &(0x7f00000021c0)=ANY=[], 0x0, 0x0, 0x0) 296.385962ms ago: executing program 4 (id=2343): r0 = syz_open_procfs(0x0, &(0x7f0000002140)='fdinfo\x00') lseek(r0, 0xff, 0x0) getdents64(r0, 0xffffffffffffffff, 0x18) getdents64(r0, 0x0, 0x0) 0s ago: executing program 0 (id=2344): r0 = creat(&(0x7f0000000040)='./file0\x00', 0x1) syz_mount_image$exfat(&(0x7f0000002bc0), &(0x7f0000000880)='\xe9\x1fq\x89Y\x1e\x923aK\x00', 0x804, &(0x7f0000000100)=ANY=[@ANYBLOB='allow_utime=00000000000000000000006,dmask=00000000000000000000010,sys_tz,iocharset=cp737,umask=00000000000000000000015,namecase=1,keep_last_dots,errors=continue,gid=', @ANYRESHEX=0x0, @ANYRESOCT=r0], 0x1, 0x152f, &(0x7f00000008c0)="$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") r1 = open(&(0x7f00000000c0)='.\x00', 0x8000, 0x50) getdents(r1, &(0x7f0000001fc0)=""/184, 0xb8) kernel console output (not intermixed with test programs): 794] EXT4-fs error (device loop0): ext4_orphan_get:1397: inode #15: comm syz.0.359: inode has both inline data and extents flags [ 277.091225][ T6794] loop0: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117 [ 277.093866][ C1] EXT4-fs (loop0): error count since last fsck: 1 [ 277.110037][ C1] EXT4-fs (loop0): initial error at time 1780025250: ext4_orphan_get:1397: inode 15 [ 277.119787][ C1] EXT4-fs (loop0): last error at time 1780025250: ext4_orphan_get:1397: inode 15 [ 277.141836][ T6794] EXT4-fs error (device loop0): ext4_orphan_get:1402: comm syz.0.359: couldn't read orphan inode 15 (err -117) [ 277.194559][ T6786] loop2: detected capacity change from 0 to 8192 [ 277.205678][ T6794] loop0: lost filesystem error report for type 5 error -117 [ 277.224735][ T6794] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 277.678383][ T6794] fscrypt (loop0): Missing crypto API support for AES-256-XTS (API name: "xts(aes)") [ 277.762315][ T6801] loop4: detected capacity change from 0 to 256 [ 277.847441][ T6801] exfat: Deprecated parameter 'namecase' [ 277.885514][ T6801] exfat: Deprecated parameter 'utf8' [ 278.022508][ T6801] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0xea424414, utbl_chksum : 0xe619d30d) [ 278.154894][ T5582] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 278.836814][ T6809] loop3: detected capacity change from 0 to 2048 [ 279.025605][ T6809] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 279.175340][ T6821] netlink: 200 bytes leftover after parsing attributes in process `syz.4.368'. [ 279.444839][ T5596] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 279.463543][ T5688] kernel write not supported for file bpf-map (pid: 5688 comm: kworker/1:5) [ 279.678533][ T6825] netlink: 4 bytes leftover after parsing attributes in process `syz.0.370'. [ 279.993579][ T6828] loop4: detected capacity change from 0 to 256 [ 280.124155][ T6828] exFAT-fs (loop4): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x3963664b, utbl_chksum : 0xe619d30d) [ 280.180325][ T6833] loop2: detected capacity change from 0 to 1024 [ 280.219894][ T6833] EXT4-fs: Ignoring removed bh option [ 280.256566][ T6833] EXT4-fs (loop2): stripe (5) is not aligned with cluster size (16), stripe is disabled [ 280.350067][ T6828] exFAT-fs (loop4): start_clu is invalid cluster(0xffffffff) [ 280.378360][ T6833] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 280.392970][ T6828] exFAT-fs (loop4): failed to test cluster bit(11) [ 280.670257][ T6833] EXT4-fs (loop2): re-mounted 00000000-0000-0000-0000-000000000000 ro. [ 281.102897][ T5595] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 281.207899][ T6847] netlink: 4 bytes leftover after parsing attributes in process `syz.4.379'. [ 281.439849][ T6850] loop1: detected capacity change from 0 to 256 [ 281.485692][ T6850] exfat: Deprecated parameter 'utf8' [ 281.601852][ T6850] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0xe3908169, utbl_chksum : 0xe619d30d) [ 282.488990][ T6864] loop0: detected capacity change from 0 to 1024 [ 282.504228][ T6866] loop4: detected capacity change from 0 to 256 [ 282.561450][ T6866] FAT-fs (loop4): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 282.627046][ T6866] FAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 284.004503][ T5688] usb 3-1: new high-speed USB device number 5 using dummy_hcd [ 284.186263][ T5688] usb 3-1: Using ep0 maxpacket: 32 [ 284.202842][ T5688] usb 3-1: config 0 has an invalid interface number: 67 but max is 0 [ 284.224186][ T5688] usb 3-1: config 0 has no interface number 0 [ 284.259476][ T5688] usb 3-1: New USB device found, idVendor=0424, idProduct=9901, bcdDevice=c2.57 [ 284.282951][ T5688] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 284.301530][ T5688] usb 3-1: Product: syz [ 284.312729][ T5688] usb 3-1: Manufacturer: syz [ 284.329068][ T5688] usb 3-1: SerialNumber: syz [ 284.381856][ T5688] usb 3-1: config 0 descriptor?? [ 284.589655][ T6899] netlink: 12 bytes leftover after parsing attributes in process `syz.1.401'. [ 284.639060][ T6899] netlink: 12 bytes leftover after parsing attributes in process `syz.1.401'. [ 285.090002][ T5688] smsc95xx 3-1:0.67 (unnamed net_device) (uninitialized): Failed to write reg index 0x00000030: -71 [ 285.126128][ T5688] smsc95xx 3-1:0.67 (unnamed net_device) (uninitialized): Error writing E2P_CMD [ 285.160999][ T5688] smsc95xx 3-1:0.67 (unnamed net_device) (uninitialized): Failed to write reg index 0x00000014: -71 [ 285.185086][ T5688] smsc95xx 3-1:0.67: probe with driver smsc95xx failed with error -71 [ 285.249767][ T5688] usb 3-1: USB disconnect, device number 5 [ 285.616753][ T6910] pim6reg1: tun_chr_ioctl cmd 1074025680 [ 286.395505][ T6923] loop2: detected capacity change from 0 to 8 [ 286.482610][ T6923] squashfs image failed sanity check [ 286.914501][ T6930] netlink: 12 bytes leftover after parsing attributes in process `syz.0.415'. [ 287.465141][ T6936] netlink: 'syz.1.418': attribute type 1 has an invalid length. [ 287.492349][ T6936] netlink: 'syz.1.418': attribute type 2 has an invalid length. [ 288.601966][ T6954] netlink: 8 bytes leftover after parsing attributes in process `syz.0.429'. [ 288.675070][ T6957] netlink: 1 bytes leftover after parsing attributes in process `syz.3.427'. [ 288.785255][ T6960] netlink: 20 bytes leftover after parsing attributes in process `syz.2.430'. [ 289.423616][ T29] audit: type=1326 audit(1780025518.622:28): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6967 comm="syz.3.434" exe="/root/ci-upstream-kmsan-gce-386-root/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf706f01c code=0x0 [ 289.921786][ T6978] loop2: detected capacity change from 0 to 512 [ 289.978622][ T6978] EXT4-fs error (device loop2): ext4_do_update_inode:5690: inode #15: comm syz.2.438: corrupted inode contents [ 290.054771][ T6978] loop2: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117 [ 290.061451][ T6978] EXT4-fs error (device loop2) in ext4_orphan_del:303: Corrupt filesystem [ 290.071224][ C0] EXT4-fs (loop2): error count since last fsck: 1 [ 290.071313][ C0] EXT4-fs (loop2): initial error at time 1780025519: ext4_do_update_inode:5690: inode 15 [ 290.071467][ C0] EXT4-fs (loop2): last error at time 1780025519: ext4_do_update_inode:5690: inode 15 [ 290.107505][ T6978] loop2: lost filesystem error report for type 5 error -117 [ 290.113074][ T6978] EXT4-fs error (device loop2): ext4_do_update_inode:5690: inode #15: comm syz.2.438: corrupted inode contents [ 290.222518][ T6978] loop2: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117 [ 290.224111][ T6978] EXT4-fs error (device loop2): ext4_evict_inode:315: inode #15: comm syz.2.438: mark_inode_dirty error [ 290.293695][ T6978] loop2: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117 [ 290.297424][ T6978] EXT4-fs (loop2): 1 orphan inode deleted [ 290.367492][ T6978] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 290.447155][ T6984] overlay: filesystem on ./file0 is read-only [ 290.662345][ T6987] netlink: 12 bytes leftover after parsing attributes in process `syz.0.441'. [ 290.740164][ T5595] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 290.907140][ T6991] netlink: 12 bytes leftover after parsing attributes in process `syz.4.443'. [ 292.043186][ T7007] vivid-007: disconnect [ 292.062334][ T7006] vivid-007: reconnect [ 292.318755][ T7011] Bluetooth: MGMT ver 1.23 [ 292.962814][ T7025] netlink: 196 bytes leftover after parsing attributes in process `syz.4.458'. [ 294.646527][ T7039] loop4: detected capacity change from 0 to 4096 [ 296.603093][ T7070] netlink: 48 bytes leftover after parsing attributes in process `syz.0.475'. [ 297.484209][ T5688] usb 5-1: new high-speed USB device number 3 using dummy_hcd [ 297.694008][ T5688] usb 5-1: Using ep0 maxpacket: 32 [ 297.722001][ T5688] usb 5-1: config index 0 descriptor too short (expected 35577, got 27) [ 297.758093][ T5688] usb 5-1: config 1 has too many interfaces: 92, using maximum allowed: 32 [ 297.782126][ T5688] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 92 [ 297.816194][ T5688] usb 5-1: config 1 has no interface number 0 [ 297.827755][ T5688] usb 5-1: config 1 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7 [ 297.860889][ T5688] usb 5-1: config 1 interface 1 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 17 [ 297.898220][ T5688] usb 5-1: New USB device found, idVendor=0e41, idProduct=5051, bcdDevice=d5.e8 [ 297.934859][ T5688] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 298.026315][ T5688] snd_usb_pod 5-1:1.1: Line 6 Pocket POD found [ 298.213138][ T5688] snd_usb_pod 5-1:1.1: Line 6 Pocket POD now attached [ 298.408720][ T7087] loop3: detected capacity change from 0 to 128 [ 298.660121][ T5682] usb 5-1: USB disconnect, device number 3 [ 298.681534][ T5682] snd_usb_pod 5-1:1.1: Line 6 Pocket POD now disconnected [ 299.850238][ T7102] loop3: detected capacity change from 0 to 512 [ 299.899896][ T7102] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 299.981413][ T7102] EXT4-fs error (device loop3): xattr_find_entry:337: inode #15: comm syz.3.489: corrupted xattr entries [ 300.020532][ T7102] loop3: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117 [ 300.022728][ T7102] EXT4-fs warning (device loop3): ext4_expand_extra_isize_ea:2860: Unable to expand inode 15. Delete some EAs or run e2fsck. [ 300.032524][ C0] EXT4-fs (loop3): error count since last fsck: 1 [ 300.032609][ C0] EXT4-fs (loop3): initial error at time 1780025529: xattr_find_entry:337: inode 15 [ 300.032761][ C0] EXT4-fs (loop3): last error at time 1780025529: xattr_find_entry:337: inode 15 [ 300.091372][ T7102] EXT4-fs (loop3): 1 truncate cleaned up [ 300.108476][ T7102] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 300.204526][ T7102] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000000000 ro. [ 300.384991][ T7115] netlink: 4 bytes leftover after parsing attributes in process `syz.4.493'. [ 300.853842][ T5596] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 301.004215][ T5682] usb 1-1: new high-speed USB device number 5 using dummy_hcd [ 301.076442][ T7120] loop2: detected capacity change from 0 to 512 [ 301.135309][ T7120] EXT4-fs (loop2): couldn't mount as ext2 due to feature incompatibilities [ 301.258624][ T5682] usb 1-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08 [ 301.316496][ T5682] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 301.344212][ T5682] usb 1-1: Product: syz [ 301.360246][ T5682] usb 1-1: Manufacturer: syz [ 301.391726][ T5682] usb 1-1: SerialNumber: syz [ 301.457155][ T5682] usb 1-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested [ 301.644817][ T5691] usb 1-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008 [ 302.346508][ T5688] usb 1-1: USB disconnect, device number 5 [ 302.906061][ T5691] usb 1-1: Service connection timeout for: 256 [ 302.945174][ T5691] ath9k_htc 1-1:1.0: ath9k_htc: Unable to initialize HTC services [ 302.984344][ T5691] ath9k_htc: Failed to initialize the device [ 303.017397][ T5688] usb 1-1: ath9k_htc: USB layer deinitialized [ 303.034213][ T7138] netlink: 4 bytes leftover after parsing attributes in process `syz.3.504'. [ 304.231727][ T7156] loop0: detected capacity change from 0 to 256 [ 304.308133][ T7156] FAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 304.458217][ T7159] loop4: detected capacity change from 0 to 512 [ 304.462429][ T5682] Process accounting resumed [ 304.479885][ T7160] loop3: detected capacity change from 0 to 512 [ 304.494228][ T5682] FAT-fs (loop0): error, corrupted file size (i_pos 196, 16779264) [ 304.540720][ T5682] FAT-fs (loop0): Filesystem has been set read-only [ 304.572583][ T7160] EXT4-fs (loop3): Test dummy encryption mode enabled [ 304.604546][ T7160] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 304.680491][ T7160] EXT4-fs error (device loop3): ext4_orphan_get:1423: comm syz.3.513: bad orphan inode 131083 [ 304.740019][ T7160] loop3: lost filesystem error report for type 5 error -117 [ 304.743851][ C1] EXT4-fs (loop3): error count since last fsck: 1 [ 304.757982][ C1] EXT4-fs (loop3): initial error at time 1780025789: ext4_orphan_get:1423 [ 304.766759][ C1] EXT4-fs (loop3): last error at time 1780025789: ext4_orphan_get:1423 [ 304.834679][ T7160] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 305.342271][ T5596] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 305.485686][ T7167] netlink: 136 bytes leftover after parsing attributes in process `syz.0.516'. [ 305.734476][ T5682] usb 5-1: new high-speed USB device number 4 using dummy_hcd [ 305.935131][ T5682] usb 5-1: Using ep0 maxpacket: 32 [ 306.012511][ T5682] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 306.028992][ T7171] loop3: detected capacity change from 0 to 1024 [ 306.043389][ T5682] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 306.089499][ T5682] usb 5-1: New USB device found, idVendor=0403, idProduct=6030, bcdDevice= 0.00 [ 306.124734][ T5682] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 306.182569][ T5682] usb 5-1: config 0 descriptor?? [ 306.193450][ T7171] EXT4-fs (loop3): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none. [ 306.317747][ T7171] ext4 filesystem being mounted at /105/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 306.432364][ T7178] loop2: detected capacity change from 0 to 256 [ 306.683018][ T29] audit: type=1800 audit(1780025791.877:29): pid=7178 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.519" name="file1" dev="loop2" ino=1048678 res=0 errno=0 [ 306.704436][ T7178] FAT-fs (loop2): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001) [ 306.719022][ T5682] hid_parser_main: 3 callbacks suppressed [ 306.719115][ T5682] ft260 0003:0403:6030.0004: unknown main item tag 0x0 [ 306.756936][ T5682] ft260 0003:0403:6030.0004: unknown main item tag 0x0 [ 306.859552][ T5596] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0006-0000-000000000000. [ 306.889642][ T5682] ft260 0003:0403:6030.0004: chip code: 0000 0000 [ 307.109679][ T5682] ft260 0003:0403:6030.0004: failed to retrieve system status [ 307.148665][ T5682] ft260 0003:0403:6030.0004: probe with driver ft260 failed with error -71 [ 307.216277][ T5682] usb 5-1: USB disconnect, device number 4 [ 307.281169][ T7181] loop0: detected capacity change from 0 to 256 [ 307.336615][ T7181] exfat: Deprecated parameter 'utf8' [ 307.401204][ T7181] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0x36dfe6b4, utbl_chksum : 0xe619d30d) [ 308.316363][ T7194] loop4: detected capacity change from 0 to 256 [ 308.428299][ T7195] syzkaller0: tun_chr_ioctl cmd 1074025681 [ 308.481052][ T7194] exFAT-fs (loop4): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x32e3664b, utbl_chksum : 0xe619d30d) [ 309.289180][ T7209] netlink: 8 bytes leftover after parsing attributes in process `syz.0.532'. [ 309.883359][ T7219] netlink: 4 bytes leftover after parsing attributes in process `syz.4.536'. [ 310.746425][ T7231] netlink: 128 bytes leftover after parsing attributes in process `syz.4.542'. [ 311.146255][ T7237] loop0: detected capacity change from 0 to 128 [ 311.184963][ T7237] UDF-fs: error (device loop0): udf_read_tagged: read failed, block=256, location=256 [ 312.177388][ T7250] loop4: detected capacity change from 0 to 512 [ 312.262653][ T7250] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 312.723426][ T5588] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 313.707490][ T29] audit: type=1326 audit(1780025798.907:30): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7280 comm="syz.4.563" exe="/root/ci-upstream-kmsan-gce-386-root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf704f01c code=0x7ffc0000 [ 313.718928][ T7269] loop2: detected capacity change from 0 to 4096 [ 313.821072][ T29] audit: type=1326 audit(1780025798.947:32): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7280 comm="syz.4.563" exe="/root/ci-upstream-kmsan-gce-386-root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf704f01c code=0x7ffc0000 [ 313.924946][ T29] audit: type=1326 audit(1780025798.947:31): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7280 comm="syz.4.563" exe="/root/ci-upstream-kmsan-gce-386-root/syz-executor" sig=0 arch=40000003 syscall=267 compat=1 ip=0xf71861ab code=0x7ffc0000 [ 314.043589][ T29] audit: type=1326 audit(1780025798.947:33): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7280 comm="syz.4.563" exe="/root/ci-upstream-kmsan-gce-386-root/syz-executor" sig=0 arch=40000003 syscall=267 compat=1 ip=0xf71861ab code=0x7ffc0000 [ 314.118680][ T29] audit: type=1326 audit(1780025798.957:34): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7280 comm="syz.4.563" exe="/root/ci-upstream-kmsan-gce-386-root/syz-executor" sig=0 arch=40000003 syscall=267 compat=1 ip=0xf71861ab code=0x7ffc0000 [ 314.172832][ T7286] loop3: detected capacity change from 0 to 256 [ 314.234271][ T29] audit: type=1326 audit(1780025798.957:35): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7280 comm="syz.4.563" exe="/root/ci-upstream-kmsan-gce-386-root/syz-executor" sig=0 arch=40000003 syscall=267 compat=1 ip=0xf71861ab code=0x7ffc0000 [ 314.337068][ T29] audit: type=1326 audit(1780025798.957:36): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7280 comm="syz.4.563" exe="/root/ci-upstream-kmsan-gce-386-root/syz-executor" sig=0 arch=40000003 syscall=267 compat=1 ip=0xf71861ab code=0x7ffc0000 [ 314.382353][ T7286] FAT-fs (loop3): error, corrupted directory (invalid entries) [ 314.468328][ T29] audit: type=1326 audit(1780025798.967:37): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7280 comm="syz.4.563" exe="/root/ci-upstream-kmsan-gce-386-root/syz-executor" sig=0 arch=40000003 syscall=267 compat=1 ip=0xf71861ab code=0x7ffc0000 [ 314.586105][ T29] audit: type=1326 audit(1780025798.967:38): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7280 comm="syz.4.563" exe="/root/ci-upstream-kmsan-gce-386-root/syz-executor" sig=0 arch=40000003 syscall=267 compat=1 ip=0xf71861ab code=0x7ffc0000 [ 314.704442][ T29] audit: type=1326 audit(1780025798.967:39): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7280 comm="syz.4.563" exe="/root/ci-upstream-kmsan-gce-386-root/syz-executor" sig=0 arch=40000003 syscall=267 compat=1 ip=0xf71861ab code=0x7ffc0000 [ 314.809058][ T7288] netlink: 4 bytes leftover after parsing attributes in process `syz.1.565'. [ 314.997576][ T7293] netlink: 4 bytes leftover after parsing attributes in process `syz.2.566'. [ 315.855672][ T7302] netlink: 4 bytes leftover after parsing attributes in process `syz.4.571'. [ 316.315127][ T7309] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details. [ 317.107186][ T7317] loop4: detected capacity change from 0 to 512 [ 317.170999][ T7317] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 317.238402][ T7317] EXT4-fs error (device loop4): __ext4_fill_super:5596: inode #2: comm syz.4.576: inode has both inline data and extents flags [ 317.267886][ T7317] loop4: lost file I/O error report for ino 2 type 5 pos 0x0 len 0x0 error -117 [ 317.270817][ T7317] EXT4-fs (loop4): get root inode failed [ 317.280364][ C1] EXT4-fs (loop4): error count since last fsck: 1 [ 317.280450][ C1] EXT4-fs (loop4): initial error at time 1780025802: __ext4_fill_super:5596: inode 2 [ 317.280600][ C1] EXT4-fs (loop4): last error at time 1780025802: __ext4_fill_super:5596: inode 2 [ 317.343011][ T7317] EXT4-fs (loop4): mount failed [ 317.520857][ T7324] bpf: Bad value for 'gid' [ 317.575886][ T7325] loop4: detected capacity change from 0 to 512 [ 317.693498][ T7327] netlink: 4 bytes leftover after parsing attributes in process `syz.3.581'. [ 317.745494][ T7325] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 318.239420][ T5588] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 318.807245][ T7342] netlink: 16 bytes leftover after parsing attributes in process `syz.1.588'. [ 320.725417][ T7365] loop4: detected capacity change from 0 to 256 [ 320.816987][ T7365] FAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 321.031553][ T5208] Process accounting resumed [ 321.065816][ T5208] FAT-fs (loop4): error, corrupted file size (i_pos 196, 16779264) [ 321.129869][ T5208] FAT-fs (loop4): Filesystem has been set read-only [ 322.708943][ T7379] sctp: [Deprecated]: syz.4.604 (pid 7379) Use of int in max_burst socket option. [ 322.708943][ T7379] Use struct sctp_assoc_value instead [ 322.896319][ T7381] loop3: detected capacity change from 0 to 1024 [ 323.106826][ T7381] __quota_error: 68 callbacks suppressed [ 323.106911][ T7381] Quota error (device loop3): do_check_range: Getting block 64 out of range 1-5 [ 323.123699][ T7381] Quota error (device loop3): qtree_read_dquot: Can't read quota structure for id 0 [ 323.135438][ T7381] EXT4-fs error (device loop3): ext4_acquire_dquot:7034: comm syz.3.603: Failed to acquire dquot type 0 [ 323.147861][ T7381] loop3: lost filesystem error report for type 5 error -117 [ 323.153868][ C1] EXT4-fs (loop3): error count since last fsck: 1 [ 323.167944][ C1] EXT4-fs (loop3): initial error at time 1780025808: ext4_acquire_dquot:7034 [ 323.177008][ C1] EXT4-fs (loop3): last error at time 1780025808: ext4_acquire_dquot:7034 [ 323.190127][ T7381] EXT4-fs error (device loop3): mb_free_blocks:2049: group 0, inode 13: block 144:freeing already freed block (bit 9); block bitmap corrupt. [ 323.207593][ T7381] EXT4-fs error (device loop3): ext4_do_update_inode:5690: inode #13: comm syz.3.603: corrupted inode contents [ 323.220077][ T7381] loop3: lost file I/O error report for ino 13 type 5 pos 0x0 len 0x0 error -117 [ 323.221270][ T7381] EXT4-fs error (device loop3): ext4_dirty_inode:6587: inode #13: comm syz.3.603: mark_inode_dirty error [ 323.244100][ T7381] loop3: lost file I/O error report for ino 13 type 5 pos 0x0 len 0x0 error -117 [ 323.246742][ T7381] EXT4-fs error (device loop3): ext4_do_update_inode:5690: inode #13: comm syz.3.603: corrupted inode contents [ 323.386510][ T7381] loop3: lost file I/O error report for ino 13 type 5 pos 0x0 len 0x0 error -117 [ 323.387802][ T7381] EXT4-fs error (device loop3): __ext4_ext_dirty:207: inode #13: comm syz.3.603: mark_inode_dirty error [ 323.429350][ T7381] loop3: lost file I/O error report for ino 13 type 5 pos 0x0 len 0x0 error -117 [ 323.432411][ T7381] EXT4-fs error (device loop3): ext4_do_update_inode:5690: inode #13: comm syz.3.603: corrupted inode contents [ 323.472384][ T7389] loop4: detected capacity change from 0 to 256 [ 323.488037][ T7381] loop3: lost file I/O error report for ino 13 type 5 pos 0x0 len 0x0 error -117 [ 323.489314][ T7381] EXT4-fs error (device loop3) in ext4_orphan_del:303: Corrupt filesystem [ 323.512626][ T7389] exfat: Deprecated parameter 'utf8' [ 323.521387][ T7381] loop3: lost filesystem error report for type 5 error -117 [ 323.524447][ T7381] EXT4-fs error (device loop3): ext4_do_update_inode:5690: inode #13: comm syz.3.603: corrupted inode contents [ 323.567939][ T7391] netlink: 128 bytes leftover after parsing attributes in process `syz.1.608'. [ 323.577834][ T7381] loop3: lost file I/O error report for ino 13 type 5 pos 0x0 len 0x0 error -117 [ 323.582059][ T7381] EXT4-fs error (device loop3): ext4_truncate:4690: inode #13: comm syz.3.603: mark_inode_dirty error [ 323.633004][ T7389] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0x36dfe6b4, utbl_chksum : 0xe619d30d) [ 323.672303][ T7381] loop3: lost file I/O error report for ino 13 type 5 pos 0x0 len 0x0 error -117 [ 323.673527][ T7381] EXT4-fs error (device loop3) in ext4_process_orphan:345: Corrupt filesystem [ 323.721956][ T7381] loop3: lost filesystem error report for type 5 error -117 [ 323.732058][ T7381] EXT4-fs (loop3): 1 truncate cleaned up [ 323.777489][ T7381] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 323.957564][ T7377] netlink: 8 bytes leftover after parsing attributes in process `syz.3.603'. [ 324.083265][ T7395] loop2: detected capacity change from 0 to 256 [ 324.161484][ T7397] netlink: 4 bytes leftover after parsing attributes in process `syz.0.609'. [ 324.184825][ T7395] FAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 324.310479][ T5596] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 324.349388][ T5208] Process accounting resumed [ 324.355569][ T5208] FAT-fs (loop2): error, corrupted file size (i_pos 196, 16779264) [ 324.391551][ T5208] FAT-fs (loop2): Filesystem has been set read-only [ 326.832371][ T1314] ieee802154 phy0 wpan0: encryption failed: -22 [ 326.839165][ T1314] ieee802154 phy1 wpan1: encryption failed: -22 [ 327.783234][ T7438] : renamed from bond_slave_0 (while UP) [ 328.510646][ T7450] loop3: detected capacity change from 0 to 256 [ 328.610647][ T29] audit: type=1800 audit(1780025813.807:108): pid=7450 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.632" name="bus" dev="loop3" ino=1048693 res=0 errno=0 [ 328.648728][ T7450] Invalid ELF header magic: != ELF [ 329.396028][ T7460] netlink: 24 bytes leftover after parsing attributes in process `syz.0.638'. [ 330.176142][ T7471] macvlan0: entered promiscuous mode [ 330.208464][ T7471] netlink: 'syz.0.653': attribute type 1 has an invalid length. [ 330.243154][ T7471] netlink: 'syz.0.653': attribute type 2 has an invalid length. [ 330.340366][ T7473] loop4: detected capacity change from 0 to 512 [ 330.372437][ T7475] netlink: 4 bytes leftover after parsing attributes in process `syz.3.644'. [ 330.399887][ T7473] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 330.407050][ T7475] netlink: 16 bytes leftover after parsing attributes in process `syz.3.644'. [ 330.517567][ T7473] EXT4-fs (loop4): 1 orphan inode deleted [ 330.595936][ T7473] EXT4-fs (loop4): 1 truncate cleaned up [ 330.661405][ T7473] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 330.780994][ T7473] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1317: group 0, block bitmap and bg descriptor inconsistent: 191 vs 220 free clusters [ 330.853630][ T7473] EXT4-fs (loop4): Remounting filesystem read-only [ 331.135814][ T5588] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 331.772676][ T7494] loop0: detected capacity change from 0 to 2048 [ 331.821037][ T7494] UDF-fs: error (device loop0): udf_process_sequence: Primary Volume Descriptor not found! [ 331.901490][ T7494] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 334.451069][ T7526] loop2: detected capacity change from 0 to 2048 [ 334.532566][ T7533] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 335.794139][ T7547] sg_write: data in/out 404444/42 bytes for SCSI command 0x0-- guessing data in; [ 335.794139][ T7547] program syz.0.674 not setting count and/or reply_len properly [ 336.613679][ T5691] usb 4-1: new high-speed USB device number 7 using dummy_hcd [ 336.794751][ T5691] usb 4-1: Using ep0 maxpacket: 16 [ 336.806392][ T5682] kernel read not supported for file /vcs (pid: 5682 comm: kworker/0:3) [ 336.830209][ T5691] usb 4-1: config 0 interface 0 has no altsetting 0 [ 336.843227][ T5691] usb 4-1: New USB device found, idVendor=05ac, idProduct=0320, bcdDevice= 0.00 [ 336.843364][ T5691] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 336.863341][ T5691] usb 4-1: config 0 descriptor?? [ 337.381837][ T7564] netlink: 76 bytes leftover after parsing attributes in process `syz.2.683'. [ 337.409948][ T5691] apple 0003:05AC:0320.0005: unknown main item tag 0x2 [ 337.417400][ T5691] apple 0003:05AC:0320.0005: unknown main item tag 0x6 [ 337.450486][ T5691] apple 0003:05AC:0320.0005: ignoring exceeding usage max [ 337.521527][ T5691] apple 0003:05AC:0320.0005: hidraw0: USB HID v0.81 Device [HID 05ac:0320] on usb-dummy_hcd.3-1/input0 [ 337.596290][ T5691] usb 4-1: USB disconnect, device number 7 [ 337.904811][ T7570] netlink: 4 bytes leftover after parsing attributes in process `syz.4.685'. [ 337.987372][ T7568] fido_id[7568]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.3/usb4/report_descriptor': No such file or directory [ 339.296651][ T7592] loop2: detected capacity change from 0 to 128 [ 339.347889][ T7592] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 339.450360][ T7592] ext4 filesystem being mounted at /126/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 339.623393][ T29] audit: type=1804 audit(1780025824.817:109): pid=7592 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.697" name="/newroot/126/bus/file1" dev="loop2" ino=12 res=1 errno=0 [ 339.916050][ T5595] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 341.062745][ T7619] loop3: detected capacity change from 0 to 512 [ 341.105363][ T7619] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 341.166759][ T7619] EXT4-fs (loop3): 1 orphan inode deleted [ 341.180881][ T7619] EXT4-fs (loop3): 1 truncate cleaned up [ 341.200525][ T7619] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 341.348093][ T7619] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1317: group 0, block bitmap and bg descriptor inconsistent: 191 vs 220 free clusters [ 341.416069][ T7619] EXT4-fs (loop3): Remounting filesystem read-only [ 341.553294][ T5596] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 342.639828][ T7642] loop0: detected capacity change from 0 to 512 [ 342.686919][ T7642] EXT4-fs: Ignoring removed oldalloc option [ 342.762937][ T7642] EXT4-fs (loop0): 1 truncate cleaned up [ 342.786004][ T7642] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 342.863159][ T7642] EXT4-fs error (device loop0): ext4_find_dest_de:2050: inode #2: block 13: comm syz.0.717: bad entry in directory: directory entry overrun - offset=76, inode=0, rec_len=1024, size=1024 fake=0 [ 342.931777][ T7642] EXT4-fs (loop0): Remounting filesystem read-only [ 343.112264][ T7648] netlink: 16 bytes leftover after parsing attributes in process `syz.2.720'. [ 343.206776][ T5582] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 344.320815][ T5208] usb 4-1: new high-speed USB device number 8 using dummy_hcd [ 344.520242][ T5208] usb 4-1: Using ep0 maxpacket: 32 [ 344.543608][ T5208] usb 4-1: config 0 has an invalid interface number: 67 but max is 0 [ 344.568866][ T5208] usb 4-1: config 0 has no interface number 0 [ 344.594997][ T5208] usb 4-1: New USB device found, idVendor=0424, idProduct=9901, bcdDevice=c2.57 [ 344.608241][ T5208] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 344.618395][ T5208] usb 4-1: Product: syz [ 344.622797][ T5208] usb 4-1: Manufacturer: syz [ 344.629286][ T5208] usb 4-1: SerialNumber: syz [ 344.642258][ T5208] usb 4-1: config 0 descriptor?? [ 345.048021][ T7674] loop2: detected capacity change from 0 to 1024 [ 345.349193][ T5208] smsc95xx 4-1:0.67 (unnamed net_device) (uninitialized): Failed to write reg index 0x00000030: -71 [ 345.419204][ T5208] smsc95xx 4-1:0.67 (unnamed net_device) (uninitialized): Error writing E2P_CMD [ 345.465154][ T5208] smsc95xx 4-1:0.67 (unnamed net_device) (uninitialized): Failed to write reg index 0x00000014: -71 [ 345.507581][ T5208] smsc95xx 4-1:0.67: probe with driver smsc95xx failed with error -71 [ 345.600974][ T5208] usb 4-1: USB disconnect, device number 8 [ 347.330451][ T7707] netlink: 8 bytes leftover after parsing attributes in process `syz.3.746'. [ 349.174342][ T5208] usb 3-1: new full-speed USB device number 6 using dummy_hcd [ 349.370258][ T5208] usb 3-1: config 0 has an invalid interface number: 214 but max is 0 [ 349.389103][ T5208] usb 3-1: config 0 has no interface number 0 [ 349.409010][ T5208] usb 3-1: config 0 interface 214 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 10 [ 349.433472][ T5208] usb 3-1: config 0 interface 214 altsetting 0 endpoint 0x83 has invalid wMaxPacketSize 0 [ 349.467494][ T5208] usb 3-1: New USB device found, idVendor=0596, idProduct=0001, bcdDevice= 5.f5 [ 349.493181][ T5208] usb 3-1: New USB device strings: Mfr=1, Product=0, SerialNumber=3 [ 349.522970][ T5208] usb 3-1: Manufacturer: syz [ 349.536818][ T5208] usb 3-1: SerialNumber: syz [ 349.569816][ T5208] usb 3-1: config 0 descriptor?? [ 350.251416][ T5208] usbtouchscreen 3-1:0.214: probe with driver usbtouchscreen failed with error -71 [ 350.338637][ T5208] usb 3-1: USB disconnect, device number 6 [ 350.686254][ T7746] netlink: 76 bytes leftover after parsing attributes in process `syz.1.761'. [ 352.651805][ T5688] usb 4-1: new high-speed USB device number 9 using dummy_hcd [ 352.855087][ T5688] usb 4-1: Using ep0 maxpacket: 16 [ 352.876862][ T5688] usb 4-1: config 0 interface 0 altsetting 2 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 352.912231][ T5688] usb 4-1: config 0 interface 0 altsetting 2 endpoint 0x81 has invalid wMaxPacketSize 0 [ 352.949477][ T5688] usb 4-1: config 0 interface 0 has no altsetting 0 [ 352.967958][ T5688] usb 4-1: New USB device found, idVendor=056a, idProduct=0331, bcdDevice= 0.00 [ 352.990253][ T5688] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 353.011997][ T5688] usb 4-1: config 0 descriptor?? [ 353.363356][ T7775] netlink: 76 bytes leftover after parsing attributes in process `syz.4.774'. [ 353.718033][ T5688] hid (null): unknown global tag 0xcc [ 353.840855][ T5688] usb 4-1: USB disconnect, device number 9 [ 354.316068][ T7785] netlink: 8 bytes leftover after parsing attributes in process `syz.2.779'. [ 355.700774][ T7812] netlink: 76 bytes leftover after parsing attributes in process `syz.0.788'. [ 355.909286][ T7816] netlink: 4 bytes leftover after parsing attributes in process `syz.3.791'. [ 357.294579][ T5688] usb 1-1: new full-speed USB device number 6 using dummy_hcd [ 357.355265][ T7832] netlink: 8 bytes leftover after parsing attributes in process `syz.1.798'. [ 357.498525][ T5688] usb 1-1: New USB device found, idVendor=20b7, idProduct=1540, bcdDevice=b7.5a [ 357.520654][ T5688] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 357.544397][ T5688] usb 1-1: Product: syz [ 357.554890][ T5688] usb 1-1: Manufacturer: syz [ 357.564986][ T5688] usb 1-1: SerialNumber: syz [ 357.587781][ T5688] usb 1-1: config 0 descriptor?? [ 358.060543][ T5688] usb 1-1: Firmware: major: 236, minor: 109, hardware type: ATUSB (2) [ 358.263060][ T5688] usb 1-1: failed to fetch extended address, random address set [ 358.421854][ T5688] usb 1-1: USB disconnect, device number 6 [ 358.750107][ T7854] loop2: detected capacity change from 0 to 128 [ 358.848957][ T7854] EXT4-fs: Ignoring removed nobh option [ 358.979046][ T7854] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 359.070533][ T7854] ext4 filesystem being mounted at /147/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 359.155355][ T7854] fscrypt (loop2, inode 12): Sub-block data units not yet supported with IV_INO_LBLK_32 [ 359.782686][ T5595] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 360.024738][ T7870] loop0: detected capacity change from 0 to 512 [ 360.898126][ T7884] hsr_slave_0: hsr_addr_subst_dest: Unknown node [ 360.905461][ T7884] hsr_slave_1: hsr_addr_subst_dest: Unknown node [ 361.910365][ T7900] netlink: 140 bytes leftover after parsing attributes in process `syz.2.818'. [ 362.177805][ T5231] veth1_macvtap: left promiscuous mode [ 364.944121][ T5682] usb 4-1: new high-speed USB device number 10 using dummy_hcd [ 365.121094][ T5682] usb 4-1: Using ep0 maxpacket: 16 [ 365.161276][ T5682] usb 4-1: config 0 has an invalid interface number: 68 but max is 0 [ 365.188889][ T5682] usb 4-1: config 0 has no interface number 0 [ 365.214586][ T5682] usb 4-1: config 0 interface 68 altsetting 0 endpoint 0x81 has invalid maxpacket 254, setting to 64 [ 365.267499][ T5682] usb 4-1: New USB device found, idVendor=13b1, idProduct=0042, bcdDevice=dc.c4 [ 365.284561][ T5682] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 365.299049][ T5682] usb 4-1: Product: syz [ 365.306232][ T5682] usb 4-1: Manufacturer: syz [ 365.317271][ T5682] usb 4-1: SerialNumber: syz [ 365.332727][ T5682] usb 4-1: config 0 descriptor?? [ 365.380084][ T5682] usb 4-1: Warning: ath10k USB support is incomplete, don't expect anything to work! [ 365.635602][ T7957] netlink: 'syz.0.839': attribute type 1 has an invalid length. [ 365.637065][ T14] usb 4-1: Failed to submit usb control message: -71 [ 365.656456][ T5682] usb 4-1: USB disconnect, device number 10 [ 365.680136][ T7957] netlink: 'syz.0.839': attribute type 2 has an invalid length. [ 365.699777][ T14] usb 4-1: unable to send the bmi data to the device: -71 [ 365.724142][ T14] usb 4-1: unable to get target info from device [ 365.742004][ T14] usb 4-1: could not get target info (-71) [ 365.770842][ T14] usb 4-1: could not probe fw (-71) [ 369.967495][ T5688] kernel read not supported for file /409/comm (pid: 5688 comm: kworker/1:5) [ 370.388937][ T8029] netlink: 4 bytes leftover after parsing attributes in process `syz.2.863'. [ 370.461316][ T8029] netlink: 4 bytes leftover after parsing attributes in process `syz.2.863'. [ 370.874201][ T5688] usb 1-1: new high-speed USB device number 7 using dummy_hcd [ 371.072702][ T5688] usb 1-1: too many configurations: 127, using maximum allowed: 8 [ 371.194913][ T5688] usb 1-1: New USB device found, idVendor=0bda, idProduct=8150, bcdDevice= 0.00 [ 371.222792][ T5688] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 371.249746][ T5688] usb 1-1: Product: syz [ 371.260325][ T5688] usb 1-1: Manufacturer: syz [ 371.283245][ T5688] usb 1-1: SerialNumber: syz [ 371.441725][ T8041] autofs: Bad value for 'fd' [ 371.906899][ T5688] rtl8150 1-1:1.0: couldn't reset the device [ 371.916546][ T5688] rtl8150 1-1:1.0: probe with driver rtl8150 failed with error -5 [ 371.993414][ T5688] usb 1-1: USB disconnect, device number 7 [ 372.261488][ T8055] netlink: 4 bytes leftover after parsing attributes in process `syz.4.875'. [ 372.674860][ T5682] usb 4-1: new high-speed USB device number 11 using dummy_hcd [ 372.866231][ T5682] usb 4-1: config 1 has too many interfaces: 66, using maximum allowed: 32 [ 372.910121][ T5682] usb 4-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config [ 372.938102][ T5682] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 66 [ 372.965414][ T5682] usb 4-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 52, changing to 9 [ 372.997711][ T5682] usb 4-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8241, setting to 1024 [ 373.053388][ T5682] usb 4-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40 [ 373.081645][ T5682] usb 4-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0 [ 373.112366][ T8067] netlink: 12 bytes leftover after parsing attributes in process `syz.4.879'. [ 373.136010][ T5682] usb 4-1: Product: syz [ 373.148635][ T5682] usb 4-1: Manufacturer: syz [ 373.205182][ T5682] cdc_wdm 4-1:1.0: skipping garbage [ 373.229656][ T5682] cdc_wdm 4-1:1.0: skipping garbage [ 373.276338][ T5682] cdc_wdm 4-1:1.0: cdc-wdm0: USB WDM device [ 373.300089][ T5682] cdc_wdm 4-1:1.0: Unknown control protocol [ 373.687974][ T5691] usb 4-1: USB disconnect, device number 11 [ 375.387148][ T8101] loop3: detected capacity change from 0 to 256 [ 375.467512][ T8104] netlink: 4 bytes leftover after parsing attributes in process `syz.4.897'. [ 377.349399][ T8130] loop3: detected capacity change from 0 to 512 [ 377.516729][ T8130] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 377.614858][ T8130] ext4 filesystem being mounted at /170/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 377.943053][ T5596] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 379.566643][ T8169] loop3: detected capacity change from 0 to 512 [ 379.602231][ T8169] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 379.700190][ T8169] EXT4-fs error (device loop3): ext4_free_branches:1023: inode #11: comm syz.3.918: invalid indirect mapped block 9 (level 0) [ 379.829010][ T8169] loop3: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117 [ 379.833899][ C0] EXT4-fs (loop3): error count since last fsck: 1 [ 379.849973][ C0] EXT4-fs (loop3): initial error at time 1780025865: ext4_free_branches:1023: inode 11 [ 379.860027][ C0] EXT4-fs (loop3): last error at time 1780025865: ext4_free_branches:1023: inode 11 [ 379.871229][ T8169] EXT4-fs (loop3): 1 truncate cleaned up [ 379.888358][ T8169] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 379.969492][ T8169] EXT4-fs (loop3): Online defrag not supported for non-extent files [ 380.241582][ T5596] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 380.892727][ T8184] netlink: 4 bytes leftover after parsing attributes in process `syz.3.921'. [ 381.738401][ T8195] block device autoloading is deprecated and will be removed. [ 384.027089][ T5688] usb 3-1: new high-speed USB device number 7 using dummy_hcd [ 384.255971][ T5688] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 384.299876][ T5688] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 384.346350][ T5688] usb 3-1: New USB device found, idVendor=1532, idProduct=010e, bcdDevice= 0.00 [ 384.388664][ T5688] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 384.447085][ T5688] usb 3-1: config 0 descriptor?? [ 384.891625][ T8238] loop0: detected capacity change from 0 to 2048 [ 385.002481][ T8238] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 385.138495][ T5688] razer 0003:1532:010E.0007: unknown main item tag 0x0 [ 385.168252][ T29] audit: type=1800 audit(1780025870.357:110): pid=8238 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.943" name="file1" dev="loop0" ino=1415 res=0 errno=0 [ 385.185116][ T5688] razer 0003:1532:010E.0007: unknown main item tag 0x0 [ 385.274403][ T5688] razer 0003:1532:010E.0007: unknown main item tag 0x0 [ 385.342257][ T5688] razer 0003:1532:010E.0007: unknown main item tag 0x0 [ 385.375637][ T5688] razer 0003:1532:010E.0007: unknown main item tag 0x0 [ 385.447777][ T5688] razer 0003:1532:010E.0007: failed to enable macro keys: -71 [ 385.514854][ T5688] razer 0003:1532:010E.0007: hidraw0: USB HID v0.00 Device [HID 1532:010e] on usb-dummy_hcd.2-1/input0 [ 385.615579][ T5688] usb 3-1: USB disconnect, device number 7 [ 386.167513][ T8248] fido_id[8248]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.2/usb3/report_descriptor': No such file or directory [ 386.291258][ T8254] netlink: 4 bytes leftover after parsing attributes in process `syz.1.947'. [ 386.757553][ T8252] loop3: detected capacity change from 0 to 8192 [ 386.819246][ T8252] FAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 388.272940][ T1314] ieee802154 phy0 wpan0: encryption failed: -22 [ 388.279854][ T1314] ieee802154 phy1 wpan1: encryption failed: -22 [ 388.465235][ T8276] loop2: detected capacity change from 0 to 512 [ 388.669151][ T8276] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 388.723524][ T8275] loop3: detected capacity change from 0 to 4096 [ 388.840640][ T8287] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 389.537260][ T8293] netem: change failed [ 389.675591][ T5595] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 390.175552][ T8301] bridge1: entered promiscuous mode [ 392.262973][ T8333] loop0: detected capacity change from 0 to 64 [ 393.091882][ T5688] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0 [ 393.141043][ T5688] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0 [ 393.185540][ T5688] hid-generic 0000:0000:0000.0008: hidraw0: HID v0.00 Device [syz0] on syz0 [ 393.766221][ T8352] fido_id[8352]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory [ 394.364268][ T8365] netlink: 276 bytes leftover after parsing attributes in process `syz.4.997'. [ 394.403438][ T8365] netlink: 276 bytes leftover after parsing attributes in process `syz.4.997'. [ 395.443527][ T8382] program syz.3.1004 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 395.529029][ T8384] loop2: detected capacity change from 0 to 64 [ 396.154116][ T8389] loop3: detected capacity change from 0 to 64 [ 396.300643][ T8389] hfs: request for non-existent node 131072 in B*Tree [ 396.349208][ T8389] hfs: request for non-existent node 131072 in B*Tree [ 397.628824][ T8409] loop3: detected capacity change from 0 to 128 [ 397.685531][ T8409] hpfs: Unknown parameter 'e§¢' [ 397.967416][ T8407] bridge0: port 2(bridge_slave_1) entered disabled state [ 398.198468][ T8409] loop3: detected capacity change from 0 to 2048 [ 398.370186][ T8409] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 398.407238][ T8418] program syz.0.1019 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 398.497278][ T8409] EXT4-fs error (device loop3): ext4_map_blocks:791: inode #12: block 2: comm syz.3.1016: lblock 0 mapped to illegal pblock 2 (length 1) [ 398.839894][ T5596] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 399.868752][ T8438] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1027'. [ 400.007598][ T8442] loop3: detected capacity change from 0 to 256 [ 400.042495][ T8442] FAT-fs (loop3): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 400.128012][ T8442] FAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 400.168919][ T8444] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1030'. [ 400.464332][ T8446] netlink: 'syz.1.1031': attribute type 10 has an invalid length. [ 400.720428][ T8446] team0: Port device dummy0 added [ 400.888815][ T8452] netlink: 'syz.0.1034': attribute type 10 has an invalid length. [ 400.921398][ T8452] netlink: 152 bytes leftover after parsing attributes in process `syz.0.1034'. [ 401.077782][ T8448] netlink: 48 bytes leftover after parsing attributes in process `syz.4.1033'. [ 401.655601][ T30] usb 4-1: new high-speed USB device number 12 using dummy_hcd [ 401.832985][ T30] usb 4-1: config 0 interface 0 altsetting 0 bulk endpoint 0x6 has invalid maxpacket 1023 [ 401.864502][ T30] usb 4-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xBA, changing to 0x8A [ 401.921541][ T30] usb 4-1: config 0 interface 0 altsetting 0 bulk endpoint 0x8A has invalid maxpacket 121 [ 401.971137][ T30] usb 4-1: New USB device found, idVendor=2294, idProduct=425b, bcdDevice=a2.10 [ 401.990059][ T30] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 402.011872][ T30] usb 4-1: Product: syz [ 402.021084][ T30] usb 4-1: Manufacturer: syz [ 402.040922][ T30] usb 4-1: SerialNumber: syz [ 402.070639][ T30] usb 4-1: config 0 descriptor?? [ 402.095529][ T8457] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22 [ 402.104641][ T8457] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22 [ 402.165745][ T30] usb 4-1: ucan: probing device on interface #0 [ 402.830110][ T30] ucan 4-1:0.0: probe with driver ucan failed with error -22 [ 403.003341][ T8479] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1046'. [ 403.076477][ T5682] usb 4-1: USB disconnect, device number 12 [ 404.141330][ T8489] loop2: detected capacity change from 0 to 2048 [ 404.259953][ T8489] UDF-fs: error (device loop2): udf_process_sequence: Primary Volume Descriptor not found! [ 404.390894][ T8497] Process accounting resumed [ 404.405524][ T8489] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 406.609729][ T8533] bond0: (slave bond_slave_1): Releasing backup interface [ 407.928291][ T8556] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1084'. [ 410.205523][ T8589] tipc: Started in network mode [ 410.229942][ T8589] tipc: Node identity ac14140f, cluster identity 4711 [ 410.271427][ T8589] tipc: New replicast peer: 255.255.255.255 [ 410.321303][ T8589] tipc: Enabled bearer , priority 10 [ 411.305025][ T30] tipc: Node number set to 2886997007 [ 411.305207][ T8601] loop3: detected capacity change from 0 to 2048 [ 411.436995][ T8601] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 411.613412][ T5596] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 412.735185][ T8621] loop0: detected capacity change from 0 to 512 [ 412.825630][ T8621] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 412.873526][ T8618] loop2: detected capacity change from 0 to 8192 [ 412.918784][ T8621] ext4 filesystem being mounted at /228/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 412.951705][ T8621] EXT4-fs error (device loop0): ext4_do_update_inode:5690: inode #2: comm syz.0.1110: corrupted inode contents [ 412.987019][ T8621] EXT4-fs error (device loop0): ext4_dirty_inode:6587: inode #2: comm syz.0.1110: mark_inode_dirty error [ 413.001053][ T29] audit: type=1804 audit(1780025898.197:111): pid=8618 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.1109" name="/newroot/186/file1/bus" dev="loop2" ino=1048696 res=1 errno=0 [ 413.062310][ T8621] EXT4-fs error (device loop0): ext4_do_update_inode:5690: inode #2: comm syz.0.1110: corrupted inode contents [ 413.098934][ T29] audit: type=1800 audit(1780025898.197:112): pid=8618 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.1109" name="bus" dev="loop2" ino=1048696 res=0 errno=0 [ 413.140866][ T8621] EXT4-fs error (device loop0): __ext4_ext_dirty:207: inode #2: comm syz.0.1110: mark_inode_dirty error [ 413.231755][ T8627] EXT4-fs warning (device loop0): ext4_es_cache_extent:1082: inode #2: comm syz.0.1110: ES cache extent failed: add [0,1,20,0x1] conflict with existing [0,8,576460752303423487,0x18] [ 413.231755][ T8627] [ 413.358729][ T8627] EXT4-fs error (device loop0): ext4_do_update_inode:5690: inode #2: comm syz.0.1110: corrupted inode contents [ 413.405679][ T8627] EXT4-fs error (device loop0): ext4_append:88: inode #2: comm syz.0.1110: mark_inode_dirty error [ 413.440134][ T8627] EXT4-fs error (device loop0) in ext4_append:100: Corrupt filesystem [ 413.538536][ T8621] EXT4-fs error (device loop0): ext4_do_update_inode:5690: inode #2: comm syz.0.1110: corrupted inode contents [ 413.615418][ T8621] EXT4-fs error (device loop0): add_dirent_to_buf:2151: inode #2: comm syz.0.1110: mark_inode_dirty error [ 413.934986][ T8634] loop2: detected capacity change from 0 to 2048 [ 413.982273][ T5582] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 414.070001][ T8634] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 415.273201][ T29] audit: type=1326 audit(1780025900.467:113): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8653 comm="syz.0.1125" exe="/root/ci-upstream-kmsan-gce-386-root/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf704f01c code=0x0 [ 416.359939][ T8674] netdevsim netdevsim2 netdevsim0: entered allmulticast mode [ 416.962620][ T8682] loop2: detected capacity change from 0 to 512 [ 417.035191][ T8682] FAT-fs (loop2): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 417.047518][ T8684] SQUASHFS error: Failed to read block 0x0: -5 [ 417.117131][ T8687] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1139'. [ 417.749229][ T8696] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1143'. [ 417.795920][ T8696] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1143'. [ 417.837804][ T8696] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1143'. [ 417.850460][ T8694] loop3: detected capacity change from 0 to 2048 [ 417.862381][ T8696] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1143'. [ 417.907278][ T8696] netlink: 'syz.0.1143': attribute type 6 has an invalid length. [ 417.974969][ T8701] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 418.397393][ T8701] NILFS (loop3): vblocknr = 23 has abnormal lifetime: start cno (= 4294967298) > current cno (= 3) [ 418.461706][ T8701] NILFS error (device loop3): nilfs_bmap_propagate: broken bmap (inode number=4) [ 418.513102][ T8701] Remounting filesystem read-only [ 418.535679][ T5596] NILFS (loop3): disposed unprocessed dirty file(s) when stopping log writer [ 418.630771][ T8707] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1148'. [ 418.720646][ T8707] netlink: 72 bytes leftover after parsing attributes in process `syz.0.1148'. [ 419.445040][ T8718] loop2: detected capacity change from 0 to 2048 [ 419.486781][ T8718] NILFS (loop2): broken superblock, retrying with spare superblock (blocksize = 1024) [ 419.578458][ T8718] syz.2.1153: attempt to access beyond end of device [ 419.578458][ T8718] loop2: rw=524288, sector=33554430, nr_sectors = 2 limit=2048 [ 419.594774][ T8724] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 419.735468][ T8718] NILFS error (device loop2): nilfs_check_folio: bad entry in directory #2: directory entry across blocks - offset=104, inode=16, rec_len=1816, name_len=0 [ 419.756233][ T8727] loop0: detected capacity change from 0 to 1024 [ 419.771329][ T8727] ext3: Unknown parameter 'noacl' [ 419.786185][ T8718] Remounting filesystem read-only [ 420.428712][ T8732] netlink: 64 bytes leftover after parsing attributes in process `syz.3.1158'. [ 420.494907][ T8735] netlink: 136 bytes leftover after parsing attributes in process `syz.2.1160'. [ 421.195971][ T8747] loop2: detected capacity change from 0 to 1024 [ 421.251549][ T8747] hfsplus: Filesystem was not cleanly unmounted, running fsck.hfsplus is recommended. mounting read-only. [ 421.791177][ T8754] loop3: detected capacity change from 0 to 1024 [ 421.926695][ T8754] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 422.318355][ T5596] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 422.686848][ T8771] loop3: detected capacity change from 0 to 512 [ 422.738877][ T8771] FAT-fs (loop3): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 423.738475][ T8786] loop3: detected capacity change from 0 to 1024 [ 423.795836][ T8786] ext3: Unknown parameter 'noacl' [ 424.778468][ T8801] loop2: detected capacity change from 0 to 2048 [ 424.893165][ T8801] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 425.428198][ T5595] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 425.615454][ T8815] loop0: detected capacity change from 0 to 2048 [ 425.675897][ T8815] NILFS (loop0): broken superblock, retrying with spare superblock (blocksize = 1024) [ 425.791892][ T8815] syz.0.1195: attempt to access beyond end of device [ 425.791892][ T8815] loop0: rw=524288, sector=33554430, nr_sectors = 2 limit=2048 [ 425.806826][ T8820] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 425.905031][ T8815] NILFS error (device loop0): nilfs_check_folio: bad entry in directory #2: directory entry across blocks - offset=104, inode=16, rec_len=1816, name_len=0 [ 425.972521][ T8815] Remounting filesystem read-only [ 426.026498][ T8822] loop2: detected capacity change from 0 to 1024 [ 426.066665][ T8822] ext3: Unknown parameter 'noacl' [ 426.895386][ T8831] loop3: detected capacity change from 0 to 2048 [ 426.976073][ T8831] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 427.265270][ T5596] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 427.787352][ T8846] loop0: detected capacity change from 0 to 2048 [ 427.841635][ T8846] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 428.073593][ T29] audit: type=1326 audit(1780025913.267:114): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8853 comm="syz.2.1212" exe="/root/ci-upstream-kmsan-gce-386-root/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7f4501c code=0x0 [ 428.268420][ T5582] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 428.485164][ T8857] loop3: detected capacity change from 0 to 2048 [ 428.552311][ T8857] NILFS (loop3): broken superblock, retrying with spare superblock (blocksize = 1024) [ 428.709423][ T8857] syz.3.1213: attempt to access beyond end of device [ 428.709423][ T8857] loop3: rw=524288, sector=33554430, nr_sectors = 2 limit=2048 [ 428.726773][ T8864] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 428.844652][ T8857] NILFS error (device loop3): nilfs_check_folio: bad entry in directory #2: directory entry across blocks - offset=104, inode=16, rec_len=1816, name_len=0 [ 428.900481][ T8857] Remounting filesystem read-only [ 431.381805][ T29] audit: type=1326 audit(1780025916.577:115): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8910 comm="syz.1.1232" exe="/root/ci-upstream-kmsan-gce-386-root/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7f1601c code=0x0 [ 431.414761][ T30] usb 3-1: new high-speed USB device number 8 using dummy_hcd [ 431.607118][ T30] usb 3-1: config 0 interface 0 altsetting 0 bulk endpoint 0x6 has invalid maxpacket 1023 [ 431.639618][ T30] usb 3-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xBA, changing to 0x8A [ 431.662475][ T30] usb 3-1: config 0 interface 0 altsetting 0 bulk endpoint 0x8A has invalid maxpacket 121 [ 431.690637][ T30] usb 3-1: New USB device found, idVendor=2294, idProduct=425b, bcdDevice=a2.10 [ 431.712175][ T30] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 431.720784][ T30] usb 3-1: Product: syz [ 431.725828][ T30] usb 3-1: Manufacturer: syz [ 431.730674][ T30] usb 3-1: SerialNumber: syz [ 431.741391][ T30] usb 3-1: config 0 descriptor?? [ 431.749604][ T8905] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22 [ 431.758766][ T8905] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22 [ 431.783923][ T30] usb 3-1: ucan: probing device on interface #0 [ 432.232628][ T30] usb 3-1: ucan: failed to retrieve device info [ 432.250503][ T30] usb 3-1: ucan: probe failed; try to update the device firmware [ 432.321606][ T30] usb 3-1: USB disconnect, device number 8 [ 432.835001][ T8930] netlink: 140 bytes leftover after parsing attributes in process `syz.4.1244'. [ 434.688974][ T8969] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1258'. [ 436.382477][ T8999] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1272'. [ 436.472901][ T9003] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1272'. [ 437.954758][ T5682] kernel read not supported for file /594/comm (pid: 5682 comm: kworker/0:3) [ 441.491031][ T9091] autofs: Bad value for 'fd' [ 442.486603][ T9113] fuse: Bad value for 'fd' [ 442.517558][ T9114] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1319'. [ 444.443435][ T9151] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(3) [ 444.450192][ T9151] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed) [ 444.470998][ T9151] vhci_hcd vhci_hcd.0: Device attached [ 444.525951][ T9156] vhci_hcd vhci_hcd.0: pdev(2) rhport(1) sockfd(6) [ 444.532673][ T9156] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed) [ 444.558428][ T9156] vhci_hcd vhci_hcd.0: Device attached [ 444.611311][ T9151] vhci_hcd vhci_hcd.0: pdev(2) rhport(2) sockfd(5) [ 444.618069][ T9151] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed) [ 444.717658][ T9151] vhci_hcd vhci_hcd.0: Device attached [ 444.734194][ T30] usb 37-1: new low-speed USB device number 2 using vhci_hcd [ 444.772187][ T9156] vhci_hcd vhci_hcd.0: pdev(2) rhport(3) sockfd(8) [ 444.778924][ T9156] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed) [ 444.834317][ T9156] vhci_hcd vhci_hcd.0: Device attached [ 444.853233][ T9152] vhci_hcd: connection reset by peer [ 444.859106][ T9157] vhci_hcd: connection closed [ 444.859647][ T9159] vhci_hcd: connection closed [ 444.859977][ T56] vhci_hcd vhci_hcd.2: stop threads [ 444.915929][ T56] vhci_hcd vhci_hcd.2: release socket [ 444.932857][ T56] vhci_hcd vhci_hcd.2: disconnect device [ 444.954904][ T56] vhci_hcd vhci_hcd.2: stop threads [ 444.967215][ T56] vhci_hcd vhci_hcd.2: release socket [ 444.979145][ T9164] vhci_hcd: connection closed [ 444.983412][ T56] vhci_hcd vhci_hcd.2: disconnect device [ 445.020645][ T56] vhci_hcd vhci_hcd.2: stop threads [ 445.054134][ T56] vhci_hcd vhci_hcd.2: release socket [ 445.077677][ T56] vhci_hcd vhci_hcd.2: disconnect device [ 445.104564][ T56] vhci_hcd vhci_hcd.2: stop threads [ 445.124509][ T56] vhci_hcd vhci_hcd.2: release socket [ 445.146394][ T56] vhci_hcd vhci_hcd.2: disconnect device [ 446.059489][ T9182] loop2: detected capacity change from 0 to 2048 [ 446.192265][ T9182] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 446.704038][ T5595] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 447.464432][ T5682] usb 3-1: new high-speed USB device number 9 using dummy_hcd [ 447.641819][ T5682] usb 3-1: config 1 has too many interfaces: 66, using maximum allowed: 32 [ 447.665374][ T5682] usb 3-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config [ 447.692771][ T5682] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 66 [ 447.729784][ T5682] usb 3-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 52, changing to 9 [ 447.779513][ T5682] usb 3-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8241, setting to 1024 [ 447.831808][ T5682] usb 3-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40 [ 447.868209][ T5682] usb 3-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0 [ 447.897908][ T5682] usb 3-1: Product: syz [ 447.906883][ T5682] usb 3-1: Manufacturer: syz [ 447.957817][ T5682] cdc_wdm 3-1:1.0: skipping garbage [ 447.974477][ T5682] cdc_wdm 3-1:1.0: skipping garbage [ 448.000879][ T5682] cdc_wdm 3-1:1.0: cdc-wdm0: USB WDM device [ 448.021991][ T5682] cdc_wdm 3-1:1.0: Unknown control protocol [ 448.527183][ T5682] usb 3-1: USB disconnect, device number 9 [ 448.661195][ T9222] loop0: detected capacity change from 0 to 512 [ 449.655932][ T9234] loop2: detected capacity change from 0 to 512 [ 449.721179][ T1314] ieee802154 phy0 wpan0: encryption failed: -22 [ 449.727986][ T1314] ieee802154 phy1 wpan1: encryption failed: -22 [ 449.831853][ T9234] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 449.849410][ T9234] ext4 filesystem being mounted at /231/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 449.866272][ T30] vhci_hcd vhci_hcd.2: vhci_device speed not set [ 450.069126][ T9242] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1365'. [ 450.269146][ T5595] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 450.765200][ T9250] loop3: detected capacity change from 0 to 128 [ 450.802936][ T9250] UDF-fs: error (device loop3): udf_read_tagged: read failed, block=256, location=256 [ 450.894296][ T9250] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 451.466879][ T807] usb 1-1: new high-speed USB device number 8 using dummy_hcd [ 451.650735][ T807] usb 1-1: config 1 has too many interfaces: 66, using maximum allowed: 32 [ 451.671955][ T807] usb 1-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config [ 451.685765][ T807] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 66 [ 451.696725][ T807] usb 1-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 52, changing to 9 [ 451.725320][ T807] usb 1-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8241, setting to 1024 [ 451.762555][ T807] usb 1-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40 [ 451.794727][ T807] usb 1-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0 [ 451.820887][ T807] usb 1-1: Product: syz [ 451.834761][ T807] usb 1-1: Manufacturer: syz [ 451.890713][ T807] cdc_wdm 1-1:1.0: skipping garbage [ 451.908763][ T807] cdc_wdm 1-1:1.0: skipping garbage [ 451.937702][ T807] cdc_wdm 1-1:1.0: cdc-wdm0: USB WDM device [ 451.957009][ T807] cdc_wdm 1-1:1.0: Unknown control protocol [ 452.434581][ T807] usb 1-1: USB disconnect, device number 8 [ 453.559693][ T9282] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1385'. [ 454.228227][ T9292] netlink: 60 bytes leftover after parsing attributes in process `syz.2.1391'. [ 454.236436][ T9293] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1390'. [ 454.266607][ T9292] netlink: 60 bytes leftover after parsing attributes in process `syz.2.1391'. [ 455.774269][ T9319] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1400'. [ 456.215400][ T9322] loop0: detected capacity change from 0 to 512 [ 456.365259][ T9322] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 456.470892][ T9324] loop2: detected capacity change from 0 to 2048 [ 456.590011][ T9329] bridge1: entered promiscuous mode [ 456.641206][ T9324] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 456.782836][ T29] audit: type=1800 audit(1780025941.977:116): pid=9324 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.1402" name="file1" dev="loop2" ino=1415 res=0 errno=0 [ 456.898344][ T5582] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 457.301782][ T9340] loop3: detected capacity change from 0 to 128 [ 459.012106][ T9366] bridge1: entered promiscuous mode [ 459.511559][ T9372] netlink: 276 bytes leftover after parsing attributes in process `syz.1.1423'. [ 459.560160][ T9372] netlink: 276 bytes leftover after parsing attributes in process `syz.1.1423'. [ 460.501769][ T9386] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(3) [ 460.508514][ T9386] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed) [ 460.574756][ T9390] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1432'. [ 460.583551][ T9386] vhci_hcd vhci_hcd.0: Device attached [ 460.612644][ T9391] vhci_hcd vhci_hcd.0: pdev(3) rhport(1) sockfd(6) [ 460.619365][ T9391] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed) [ 460.634408][ T9391] vhci_hcd vhci_hcd.0: Device attached [ 460.709811][ T9386] vhci_hcd vhci_hcd.0: pdev(3) rhport(2) sockfd(5) [ 460.716545][ T9386] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed) [ 460.778476][ T9386] vhci_hcd vhci_hcd.0: Device attached [ 460.833724][ T9391] vhci_hcd vhci_hcd.0: pdev(3) rhport(3) sockfd(10) [ 460.840541][ T9391] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed) [ 460.853513][ T5682] usb 39-1: new low-speed USB device number 2 using vhci_hcd [ 460.855822][ T9391] vhci_hcd vhci_hcd.0: Device attached [ 460.950813][ T9400] vhci_hcd: connection closed [ 460.951329][ T9398] vhci_hcd: connection closed [ 460.961256][ T9393] vhci_hcd: connection closed [ 460.966494][ T204] vhci_hcd vhci_hcd.3: stop threads [ 460.977119][ T9387] vhci_hcd: connection reset by peer [ 461.015037][ T204] vhci_hcd vhci_hcd.3: release socket [ 461.031674][ T204] vhci_hcd vhci_hcd.3: disconnect device [ 461.053519][ T204] vhci_hcd vhci_hcd.3: stop threads [ 461.066530][ T204] vhci_hcd vhci_hcd.3: release socket [ 461.092337][ T204] vhci_hcd vhci_hcd.3: disconnect device [ 461.118104][ T204] vhci_hcd vhci_hcd.3: stop threads [ 461.129464][ T204] vhci_hcd vhci_hcd.3: release socket [ 461.136143][ T204] vhci_hcd vhci_hcd.3: disconnect device [ 461.142951][ T204] vhci_hcd vhci_hcd.3: stop threads [ 461.154099][ T204] vhci_hcd vhci_hcd.3: release socket [ 461.159789][ T204] vhci_hcd vhci_hcd.3: disconnect device [ 461.360634][ T9406] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1444'. [ 462.042028][ T807] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0 [ 462.063341][ T9418] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1441'. [ 462.077703][ T807] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0 [ 462.127723][ T807] hid-generic 0000:0000:0000.0009: hidraw0: HID v0.00 Device [syz0] on syz0 [ 462.568999][ T9422] fido_id[9422]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory [ 463.057933][ T9432] loop2: detected capacity change from 0 to 2048 [ 463.163545][ T9432] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 463.197745][ T9432] ext4 filesystem being mounted at /246/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 463.371623][ T9432] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.1447: bg 0: block 345: padding at end of block bitmap is not set [ 463.399062][ T9444] netlink: 'syz.4.1450': attribute type 10 has an invalid length. [ 463.431758][ T9444] netlink: 152 bytes leftover after parsing attributes in process `syz.4.1450'. [ 463.473579][ T9432] EXT4-fs (loop2): Remounting filesystem read-only [ 463.770933][ T5595] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 464.708497][ T9464] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(3) [ 464.715231][ T9464] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed) [ 464.766012][ T9467] vhci_hcd vhci_hcd.0: pdev(4) rhport(1) sockfd(6) [ 464.772748][ T9467] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed) [ 464.804080][ T9464] vhci_hcd vhci_hcd.0: Device attached [ 464.861484][ T9472] vhci_hcd vhci_hcd.0: pdev(4) rhport(2) sockfd(5) [ 464.868219][ T9472] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed) [ 464.888272][ T9467] vhci_hcd vhci_hcd.0: Device attached [ 464.945708][ T9472] vhci_hcd vhci_hcd.0: Device attached [ 464.998937][ T9464] vhci_hcd vhci_hcd.0: pdev(4) rhport(3) sockfd(8) [ 465.005662][ T9464] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed) [ 465.074969][ T9464] vhci_hcd vhci_hcd.0: Device attached [ 465.085883][ T5691] usb 41-1: new low-speed USB device number 2 using vhci_hcd [ 465.094009][ T9469] vhci_hcd: connection closed [ 465.094468][ T9474] vhci_hcd: connection closed [ 465.099632][ T9465] vhci_hcd: connection closed [ 465.108563][ T9478] vhci_hcd: connection closed [ 465.123074][ T1157] vhci_hcd vhci_hcd.4: stop threads [ 465.159600][ T9466] vhci_hcd: sendmsg failed!, ret=-32 for 48 [ 465.159775][ T1157] vhci_hcd vhci_hcd.4: release socket [ 465.183656][ T1157] vhci_hcd vhci_hcd.4: disconnect device [ 465.202367][ T1157] vhci_hcd vhci_hcd.4: stop threads [ 465.209284][ T1157] vhci_hcd vhci_hcd.4: release socket [ 465.219417][ T1157] vhci_hcd vhci_hcd.4: disconnect device [ 465.235752][ T1157] vhci_hcd vhci_hcd.4: stop threads [ 465.243034][ T1157] vhci_hcd vhci_hcd.4: release socket [ 465.276011][ T1157] vhci_hcd vhci_hcd.4: disconnect device [ 465.311133][ T1157] vhci_hcd vhci_hcd.4: stop threads [ 465.319208][ T1157] vhci_hcd vhci_hcd.4: release socket [ 465.326139][ T1157] vhci_hcd vhci_hcd.4: disconnect device [ 466.015492][ T5682] vhci_hcd vhci_hcd.3: vhci_device speed not set [ 466.049273][ T9493] netlink: 60 bytes leftover after parsing attributes in process `syz.3.1467'. [ 466.068253][ T9493] netlink: 60 bytes leftover after parsing attributes in process `syz.3.1467'. [ 466.173512][ T9495] netlink: 276 bytes leftover after parsing attributes in process `syz.2.1468'. [ 466.201682][ T9495] netlink: 276 bytes leftover after parsing attributes in process `syz.2.1468'. [ 468.556183][ T9528] netlink: 'syz.2.1482': attribute type 10 has an invalid length. [ 468.760332][ T9528] team0: Port device dummy0 added [ 470.255847][ T5691] vhci_hcd vhci_hcd.4: vhci_device speed not set [ 470.404784][ T9557] loop3: detected capacity change from 0 to 64 [ 471.167056][ T9561] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1496'. [ 471.632251][ T9566] skbuff: bad partial csum: csum=65535/2 headroom=4 headlen=65543 [ 471.863988][ T9568] Process accounting resumed [ 472.140338][ T9574] loop2: detected capacity change from 0 to 256 [ 472.180513][ T9574] FAT-fs (loop2): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 472.240587][ T9574] FAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 473.011487][ T9587] loop3: detected capacity change from 0 to 1024 [ 473.068095][ T9587] hfsplus: failed to load extents file [ 475.606377][ T9619] vxlan0: entered promiscuous mode [ 475.620459][ T9619] vxlan0: entered allmulticast mode [ 475.671898][ T35] netdevsim netdevsim2 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0 [ 475.712590][ T35] netdevsim netdevsim2 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0 [ 475.754910][ T35] netdevsim netdevsim2 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0 [ 475.811776][ T35] netdevsim netdevsim2 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0 [ 476.868706][ T9626] loop0: detected capacity change from 0 to 1024 [ 476.930413][ T9626] hfsplus: failed to load extents file [ 478.897190][ T9660] bond0: (slave bond_slave_1): Releasing backup interface [ 481.553325][ T9702] bond0: (slave bond_slave_1): Releasing backup interface [ 484.798681][ T9746] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1582'. [ 485.231431][ T9750] loop3: detected capacity change from 0 to 64 [ 487.687710][ T9786] netlink: 44 bytes leftover after parsing attributes in process `syz.1.1599'. [ 489.575600][ T9803] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1607'. [ 489.644509][ T9803] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1607'. [ 489.688819][ T9803] netlink: 104 bytes leftover after parsing attributes in process `syz.4.1607'. [ 489.714612][ T9803] netlink: 104 bytes leftover after parsing attributes in process `syz.4.1607'. [ 491.458394][ T9836] 9p: Bad value for 'rfdno' [ 491.960476][ T5585] cgroup: fork rejected by pids controller in /syz1 [ 492.558609][ T9854] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1629'. [ 492.925472][ T204] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 492.995356][ T9858] loop0: detected capacity change from 0 to 512 [ 493.131176][ T9858] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 493.163520][ T9858] ext4 filesystem being mounted at /329/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 493.202148][ T204] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 493.567562][ T204] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 493.570751][ T5582] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 493.767029][ T204] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 494.160499][ T204] bridge_slave_1: left allmulticast mode [ 494.195396][ T204] bridge_slave_1: left promiscuous mode [ 494.202049][ T204] bridge0: port 2(bridge_slave_1) entered disabled state [ 494.223601][ T204] bridge_slave_0: left allmulticast mode [ 494.239193][ T204] bridge_slave_0: left promiscuous mode [ 494.247518][ T204] bridge0: port 1(bridge_slave_0) entered disabled state [ 494.793809][ T204] bond0 (unregistering): (slave 30): Releasing backup interface [ 494.837601][ T204] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 494.872199][ T204] bond0 (unregistering): Released all slaves [ 494.936199][ T9874] netlink: 44 bytes leftover after parsing attributes in process `syz.2.1636'. [ 495.851484][ T204] hsr_slave_0: left promiscuous mode [ 495.892563][ T9893] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 495.908007][ T204] hsr_slave_1: left promiscuous mode [ 495.916520][ T9893] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 495.928111][ T9893] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 495.945183][ T9893] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 495.962759][ T9893] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 496.003255][ T48] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 496.015781][ T48] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 496.037585][ T48] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 496.055453][ T48] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 496.070779][ T48] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 496.146837][ T204] veth1_macvtap: left promiscuous mode [ 496.152583][ T204] veth0_macvtap: left promiscuous mode [ 496.173111][ T204] veth1_vlan: left promiscuous mode [ 496.180189][ T204] veth0_vlan: left promiscuous mode [ 497.369794][ T9909] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1642'. [ 498.024605][ T9916] loop0: detected capacity change from 0 to 512 [ 498.102944][ T9916] EXT4-fs error (device loop0): ext4_orphan_get:1397: inode #15: comm syz.0.1644: inode has both inline data and extents flags [ 498.118018][ T9893] Bluetooth: hci1: command tx timeout [ 498.199228][ T9916] loop0: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117 [ 498.203878][ C1] EXT4-fs (loop0): error count since last fsck: 1 [ 498.219751][ C1] EXT4-fs (loop0): initial error at time 1780025983: ext4_orphan_get:1397: inode 15 [ 498.229477][ C1] EXT4-fs (loop0): last error at time 1780025983: ext4_orphan_get:1397: inode 15 [ 498.256199][ T9916] EXT4-fs error (device loop0): ext4_orphan_get:1402: comm syz.0.1644: couldn't read orphan inode 15 (err -117) [ 498.282990][ T204] team0 (unregistering): Port device team_slave_1 removed [ 498.301847][ T9916] loop0: lost filesystem error report for type 5 error -117 [ 498.316398][ T9916] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 498.391075][ T204] team0 (unregistering): Port device team_slave_0 removed [ 498.524006][ T29] audit: type=1800 audit(1780025983.717:117): pid=9916 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.1644" name="file1" dev="loop0" ino=18 res=0 errno=0 [ 498.925764][ T204] team0 (unregistering): Port device dummy0 removed [ 498.930986][ T5582] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 499.889036][ T5231] 8021q: adding VLAN 0 to HW filter on device eth1 [ 500.185191][ T9893] Bluetooth: hci1: command tx timeout [ 502.215917][ T9978] loop0: detected capacity change from 0 to 2048 [ 502.255388][ T9978] EXT4-fs: Ignoring removed bh option [ 502.275551][ T9893] Bluetooth: hci1: command tx timeout [ 502.417516][ T9978] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 502.498097][ T9978] EXT4-fs (loop0): shut down requested (2) [ 502.653942][ T5582] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 504.348288][ T9893] Bluetooth: hci1: command tx timeout [ 504.590021][ T9892] bridge0: port 1(bridge_slave_0) entered blocking state [ 504.617831][ T9892] bridge0: port 1(bridge_slave_0) entered disabled state [ 504.660841][ T9892] bridge_slave_0: entered allmulticast mode [ 504.680898][ T9892] bridge_slave_0: entered promiscuous mode [ 504.738441][ T9892] bridge0: port 2(bridge_slave_1) entered blocking state [ 504.773344][ T9892] bridge0: port 2(bridge_slave_1) entered disabled state [ 504.808067][ T9892] bridge_slave_1: entered allmulticast mode [ 504.817071][T10018] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1676'. [ 504.854168][ T9892] bridge_slave_1: entered promiscuous mode [ 505.131680][ T5231] 8021q: adding VLAN 0 to HW filter on device eth2 [ 505.193259][ T9892] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 505.283007][ T9892] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 505.659985][ T9892] team0: Port device team_slave_0 added [ 505.719223][ T9892] team0: Port device team_slave_1 added [ 505.833440][ T9892] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 505.841478][ T9892] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 505.885296][ T9892] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 505.930022][ T9892] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 505.937948][ T9892] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 506.005639][ T9892] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 506.025795][T10031] loop2: detected capacity change from 0 to 2048 [ 506.058566][T10031] EXT4-fs: Ignoring removed bh option [ 506.151275][T10031] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 506.362221][T10031] EXT4-fs (loop2): shut down requested (2) [ 506.715929][ T5595] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 506.730681][ T9892] hsr_slave_0: entered promiscuous mode [ 506.772952][ T9892] hsr_slave_1: entered promiscuous mode [ 506.799984][ T9892] debugfs: 'hsr0' already exists in 'hsr' [ 506.819075][ T9892] Cannot create hsr debugfs directory [ 507.802350][T10059] loop0: detected capacity change from 0 to 256 [ 508.069864][ T29] audit: type=1326 audit(1780025993.267:118): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10049 comm="syz.2.1684" exe="/root/ci-upstream-kmsan-gce-386-root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f4501c code=0x7fc00000 [ 508.133135][T10059] FAT-fs (loop0): Directory bread(block 64) failed [ 508.159443][T10059] FAT-fs (loop0): Directory bread(block 65) failed [ 508.179175][ T29] audit: type=1326 audit(1780025993.267:119): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10049 comm="syz.2.1684" exe="/root/ci-upstream-kmsan-gce-386-root/syz-executor" sig=0 arch=40000003 syscall=54 compat=1 ip=0xf7f4501c code=0x7fc00000 [ 508.223023][T10059] FAT-fs (loop0): Directory bread(block 66) failed [ 508.259703][T10059] FAT-fs (loop0): Directory bread(block 67) failed [ 508.293525][T10059] FAT-fs (loop0): Directory bread(block 68) failed [ 508.317922][ T29] audit: type=1326 audit(1780025993.267:120): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10049 comm="syz.2.1684" exe="/root/ci-upstream-kmsan-gce-386-root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f4501c code=0x7fc00000 [ 508.384382][T10059] FAT-fs (loop0): Directory bread(block 69) failed [ 508.425307][T10059] FAT-fs (loop0): Directory bread(block 70) failed [ 508.442551][T10059] FAT-fs (loop0): Directory bread(block 71) failed [ 508.483085][T10059] FAT-fs (loop0): Directory bread(block 72) failed [ 508.533033][T10059] FAT-fs (loop0): Directory bread(block 73) failed [ 508.829864][T10068] loop2: detected capacity change from 0 to 256 [ 508.972368][T10068] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0x18acca35, utbl_chksum : 0xe619d30d) [ 509.396446][ T9892] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 509.495633][ T9892] 8021q: adding VLAN 0 to HW filter on device netdevsim0 [ 509.531417][ T9892] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 509.599315][ T9892] 8021q: adding VLAN 0 to HW filter on device netdevsim1 [ 509.651084][ T9892] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 509.777740][ T9892] 8021q: adding VLAN 0 to HW filter on device netdevsim2 [ 509.832213][ T9892] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 509.920331][ T9892] 8021q: adding VLAN 0 to HW filter on device netdevsim3 [ 510.863081][ T9892] 8021q: adding VLAN 0 to HW filter on device bond0 [ 511.083030][ T9892] 8021q: adding VLAN 0 to HW filter on device team0 [ 511.155764][ T1314] ieee802154 phy0 wpan0: encryption failed: -22 [ 511.162692][ T1314] ieee802154 phy1 wpan1: encryption failed: -22 [ 511.233966][ T1157] bridge0: port 1(bridge_slave_0) entered blocking state [ 511.241598][ T1157] bridge0: port 1(bridge_slave_0) entered forwarding state [ 511.433243][ T35] bridge0: port 2(bridge_slave_1) entered blocking state [ 511.440815][ T35] bridge0: port 2(bridge_slave_1) entered forwarding state [ 512.032279][ T9892] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 512.867219][T10125] loop3: detected capacity change from 0 to 256 [ 512.974557][T10125] exFAT-fs (loop3): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x39601bbf, utbl_chksum : 0xe619d30d) [ 514.073348][T10142] loop3: detected capacity change from 0 to 2048 [ 514.119862][T10142] EXT4-fs: Ignoring removed bh option [ 514.251086][T10142] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 514.332700][T10142] EXT4-fs (loop3): shut down requested (2) [ 514.395710][T10151] EXT4-fs error (device loop3): ext4_find_extent:939: inode #2: comm syz.3.1709: pblk 1 bad header/extent: invalid magic - magic 2, entries 0, max 3(0), depth 0(4) [ 514.488974][T10154] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1712'. [ 514.809058][ T5596] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 515.383260][T10160] loop2: detected capacity change from 0 to 1024 [ 515.500988][T10160] EXT4-fs (loop2): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none. [ 515.578136][T10160] ext4 filesystem being mounted at /304/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 515.607756][T10162] netlink: 48 bytes leftover after parsing attributes in process `syz.3.1714'. [ 515.751269][ T9892] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 515.940915][ T5595] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0006-0000-000000000000. [ 516.479545][ T9892] veth0_vlan: entered promiscuous mode [ 516.608691][ T9892] veth1_vlan: entered promiscuous mode [ 517.028090][ T9892] veth0_macvtap: entered promiscuous mode [ 517.110268][ T9892] veth1_macvtap: entered promiscuous mode [ 517.440968][ T9892] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 517.461648][T10187] loop2: detected capacity change from 0 to 1024 [ 517.547168][ T9892] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 517.725685][ T204] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 517.768353][ T204] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 517.823345][ T204] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 517.869526][ T204] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 522.814979][ T29] audit: type=1326 audit(1780026008.007:121): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10259 comm="syz.4.1739" exe="/root/ci-upstream-kmsan-gce-386-root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf704f01c code=0x7fc00000 [ 523.836634][T10286] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1745'. [ 523.910825][ T1157] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 523.961862][ T1157] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 524.318064][ T1157] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 524.354784][ T1157] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 525.918193][ T29] audit: type=1326 audit(1780026011.107:122): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10317 comm="syz.0.1756" exe="/root/ci-upstream-kmsan-gce-386-root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf704f01c code=0x7fc00000 [ 526.966335][T10339] loop1: detected capacity change from 0 to 1024 [ 527.135714][T10339] EXT4-fs (loop1): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none. [ 527.221387][T10339] ext4 filesystem being mounted at /2/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 527.633166][ T9892] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0006-0000-000000000000. [ 529.945742][T10381] bridge0: port 2(bridge_slave_1) entered listening state [ 530.414913][T10391] netlink: 'syz.3.1788': attribute type 2 has an invalid length. [ 532.271709][ T29] audit: type=1326 audit(1780026017.467:123): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10410 comm="syz.4.1797" exe="/root/ci-upstream-kmsan-gce-386-root/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf704f01c code=0x0 [ 532.857976][T10425] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1800'. [ 533.084458][T10428] loop0: detected capacity change from 0 to 256 [ 534.659036][T10447] loop2: detected capacity change from 0 to 128 [ 534.762409][ T29] audit: type=1800 audit(1780026019.957:124): pid=10447 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.1811" name="file1" dev="loop2" ino=1048706 res=0 errno=0 [ 534.822542][T10447] FAT-fs (loop2): error, invalid access to FAT (entry 0x00000ff0) [ 534.836562][T10447] FAT-fs (loop2): Filesystem has been set read-only [ 534.855500][T10447] syz.2.1811: attempt to access beyond end of device [ 534.855500][T10447] loop2: rw=34817, sector=4085, nr_sectors = 1 limit=128 [ 535.128073][T10452] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1815'. [ 535.160051][T10452] IPv6: NLM_F_CREATE should be specified when creating new route [ 535.706147][ T48] Bluetooth: hci1: command 0x0405 tx timeout [ 536.894935][T10472] loop0: detected capacity change from 0 to 2048 [ 536.988717][T10472] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 537.516614][T10472] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1317: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters [ 537.889524][ T5582] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 539.213631][T10512] loop1: detected capacity change from 0 to 764 [ 539.253015][T10512] rock: directory entry would overflow storage [ 539.272491][T10512] rock: sig=0x5850, size=36, remaining=22 [ 539.385858][T10518] program syz.2.1842 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 540.124016][ T807] usb 1-1: new high-speed USB device number 9 using dummy_hcd [ 540.169797][T10530] tmpfs: Bad value for 'mpol' [ 540.190727][T10530] 9pnet: Limiting 'msize' to 1048576 as this is the maximum supported by transport fd [ 540.324003][ T807] usb 1-1: Using ep0 maxpacket: 8 [ 540.371136][ T807] usb 1-1: config index 0 descriptor too short (expected 301, got 45) [ 540.409864][ T807] usb 1-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0 [ 540.439894][ T807] usb 1-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0 [ 540.474134][ T807] usb 1-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32 [ 540.515572][ T807] usb 1-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 540.596254][ T807] usb 1-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23 [ 540.630771][ T807] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 540.682000][T10535] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1851'. [ 540.970970][ T807] usb 1-1: GET_CAPABILITIES returned 2f [ 541.004737][ T807] usbtmc 1-1:16.0: can't read capabilities [ 541.058350][ T30] IPVS: starting estimator thread 0... [ 541.164300][T10539] IPVS: using max 240 ests per chain, 12000 per kthread [ 541.210570][ T30] usb 1-1: USB disconnect, device number 9 [ 541.304859][T10542] loop3: detected capacity change from 0 to 256 [ 541.518544][T10542] FAT-fs (loop3): Directory bread(block 64) failed [ 541.546678][T10541] loop2: detected capacity change from 0 to 4096 [ 541.556806][T10542] FAT-fs (loop3): Directory bread(block 65) failed [ 541.578265][T10542] FAT-fs (loop3): Directory bread(block 66) failed [ 541.595620][T10542] FAT-fs (loop3): Directory bread(block 67) failed [ 541.603395][T10542] FAT-fs (loop3): Directory bread(block 68) failed [ 541.620185][T10541] EXT4-fs (loop2): Test dummy encryption mode enabled [ 541.620331][T10542] FAT-fs (loop3): Directory bread(block 69) failed [ 541.648657][T10542] FAT-fs (loop3): Directory bread(block 70) failed [ 541.662149][T10542] FAT-fs (loop3): Directory bread(block 71) failed [ 541.698710][T10541] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 541.722495][T10542] FAT-fs (loop3): Directory bread(block 72) failed [ 541.761944][T10542] FAT-fs (loop3): Directory bread(block 73) failed [ 542.097936][T10541] fscrypt (loop2): Missing crypto API support for AES-256-XTS (API name: "xts(aes)") [ 542.462388][ T5595] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 543.881107][T10577] C: renamed from batadv_slave_0 (while UP) [ 543.943032][T10577] netlink: 'syz.2.1867': attribute type 2 has an invalid length. [ 543.969046][T10577] netlink: 116 bytes leftover after parsing attributes in process `syz.2.1867'. [ 543.993343][T10577] A link change request failed with some changes committed already. Interface C may have been left with an inconsistent configuration, please check. [ 544.039392][T10562] loop0: detected capacity change from 0 to 4096 [ 544.067021][T10562] ntfs3: Unknown parameter 'disc' [ 544.804095][T10587] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1870'. [ 545.314145][T10594] loop1: detected capacity change from 0 to 512 [ 548.149229][T10632] program syz.1.1890 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 549.122977][T10647] loop2: detected capacity change from 0 to 256 [ 549.222731][T10647] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0xbe675ead, utbl_chksum : 0xe619d30d) [ 550.388243][T10666] tmpfs: Bad value for 'mpol' [ 550.417012][T10666] 9pnet: Limiting 'msize' to 1048576 as this is the maximum supported by transport fd [ 550.560920][ T30] IPVS: starting estimator thread 0... [ 550.685289][T10669] IPVS: using max 240 ests per chain, 12000 per kthread [ 550.786009][T10673] C: renamed from batadv_slave_0 (while UP) [ 550.835313][T10673] netlink: 'syz.1.1907': attribute type 2 has an invalid length. [ 550.848619][T10673] netlink: 116 bytes leftover after parsing attributes in process `syz.1.1907'. [ 550.865492][T10673] A link change request failed with some changes committed already. Interface C may have been left with an inconsistent configuration, please check. [ 551.188054][T10677] tmpfs: Bad value for 'mpol' [ 551.237848][T10677] 9pnet: Limiting 'msize' to 1048576 as this is the maximum supported by transport fd [ 551.396640][T10683] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1911'. [ 551.436639][ T9] usb 4-1: new high-speed USB device number 13 using dummy_hcd [ 551.471715][T10683] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1911'. [ 551.665303][ T9] usb 4-1: Using ep0 maxpacket: 8 [ 551.705257][ T9] usb 4-1: config index 0 descriptor too short (expected 301, got 45) [ 551.744602][ T9] usb 4-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0 [ 551.771817][ T9] usb 4-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0 [ 551.808173][ T9] usb 4-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32 [ 551.857656][ T9] usb 4-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 551.912844][ T9] usb 4-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23 [ 551.945749][ T9] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 552.263152][ T9] usb 4-1: GET_CAPABILITIES returned 2f [ 552.289718][ T9] usbtmc 4-1:16.0: can't read capabilities [ 552.483977][ T30] usb 4-1: USB disconnect, device number 13 [ 553.324050][ T30] usb 2-1: new high-speed USB device number 7 using dummy_hcd [ 553.410384][T10706] C: renamed from batadv_slave_0 (while UP) [ 553.496641][T10706] netlink: 'syz.0.1925': attribute type 2 has an invalid length. [ 553.508546][ T30] usb 2-1: Using ep0 maxpacket: 32 [ 553.535815][ T30] usb 2-1: New USB device found, idVendor=0fd9, idProduct=0025, bcdDevice=29.40 [ 553.544870][T10706] netlink: 116 bytes leftover after parsing attributes in process `syz.0.1925'. [ 553.562420][ T30] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 553.605006][T10706] A link change request failed with some changes committed already. Interface C may have been left with an inconsistent configuration, please check. [ 553.636202][ T30] usb 2-1: config 0 descriptor?? [ 553.935890][ T30] dvb-usb: found a 'Elgato EyeTV Sat' in warm state. [ 553.993008][ T30] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer. [ 554.032814][ T30] dvbdev: DVB: registering new adapter (Elgato EyeTV Sat) [ 554.073204][ T30] usb 2-1: media controller created [ 554.272774][ T30] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered. [ 554.479508][ T30] az6027: usb out operation failed. (-71) [ 554.497202][ T30] az6027: usb out operation failed. (-71) [ 554.515792][ T30] stb0899_attach: Driver disabled by Kconfig [ 554.551292][ T30] az6027: no front-end attached [ 554.551292][ T30] [ 554.608545][ T30] az6027: usb out operation failed. (-71) [ 554.632303][ T30] dvb-usb: no frontend was attached by 'Elgato EyeTV Sat' [ 554.668083][ T30] input: IR-receiver inside an USB DVB receiver as /devices/platform/dummy_hcd.1/usb2/2-1/input/input9 [ 554.784717][ T30] dvb-usb: schedule remote query interval to 400 msecs. [ 554.857912][ T30] dvb-usb: Elgato EyeTV Sat successfully initialized and connected. [ 554.934003][ T30] usb 2-1: USB disconnect, device number 7 [ 555.433376][ T30] dvb-usb: Elgato EyeTV Sat successfully deinitialized and disconnected. [ 556.438293][T10722] Set syz1 is full, maxelem 6117 reached [ 557.097789][T10748] loop2: detected capacity change from 0 to 512 [ 559.319321][T10772] loop0: detected capacity change from 0 to 1024 [ 559.651239][T10772] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 559.742527][T10784] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1959'. [ 559.801179][T10784] IPv6: NLM_F_CREATE should be specified when creating new route [ 560.771259][ T5582] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 561.072550][T10769] Set syz1 is full, maxelem 6117 reached [ 562.796154][T10810] loop1: detected capacity change from 0 to 2048 [ 562.875298][T10810] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 563.191927][T10819] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1974'. [ 563.269075][T10819] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1974'. [ 563.516319][T10810] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1317: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters [ 563.870790][ T9892] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 565.616998][T10832] Set syz1 is full, maxelem 6117 reached [ 566.238040][T10859] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1989'. [ 566.289239][T10859] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1989'. [ 568.356093][ T5691] usb 4-1: new high-speed USB device number 14 using dummy_hcd [ 568.518112][ T5691] usb 4-1: Using ep0 maxpacket: 32 [ 568.542939][ T5691] usb 4-1: New USB device found, idVendor=0fd9, idProduct=0025, bcdDevice=29.40 [ 568.553228][ T5691] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 568.601943][ T5691] usb 4-1: config 0 descriptor?? [ 568.874576][ T5691] dvb-usb: found a 'Elgato EyeTV Sat' in warm state. [ 568.928880][ T5691] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer. [ 569.008004][ T5691] dvbdev: DVB: registering new adapter (Elgato EyeTV Sat) [ 569.031056][ T5691] usb 4-1: media controller created [ 569.293815][ T5691] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered. [ 569.491841][ T5691] az6027: usb out operation failed. (-71) [ 569.533628][ T5691] az6027: usb out operation failed. (-71) [ 569.580547][ T5691] stb0899_attach: Driver disabled by Kconfig [ 569.629083][ T5691] az6027: no front-end attached [ 569.629083][ T5691] [ 569.689196][ T5691] az6027: usb out operation failed. (-71) [ 569.721831][ T5691] dvb-usb: no frontend was attached by 'Elgato EyeTV Sat' [ 569.813881][ T5691] input: IR-receiver inside an USB DVB receiver as /devices/platform/dummy_hcd.3/usb4/4-1/input/input10 [ 569.922014][ T5691] dvb-usb: schedule remote query interval to 400 msecs. [ 569.971820][ T5691] dvb-usb: Elgato EyeTV Sat successfully initialized and connected. [ 570.072190][ T5691] usb 4-1: USB disconnect, device number 14 [ 570.172643][T10904] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 570.595194][T10911] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2008'. [ 570.730517][T10906] bridge0: port 2(bridge_slave_1) entered listening state [ 570.758698][T10912] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2008'. [ 570.800054][T10906] bridge0: port 2(bridge_slave_1) entered disabled state [ 570.838548][ T5691] dvb-usb: Elgato EyeTV Sat successfully deinitialized and disconnected. [ 571.356244][ T29] audit: type=1326 audit(1780026056.537:125): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10913 comm="syz.0.2010" exe="/root/ci-upstream-kmsan-gce-386-root/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf704f01c code=0x0 [ 571.538779][T10924] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2025'. [ 571.588202][T10924] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2025'. [ 572.590255][ T1314] ieee802154 phy0 wpan0: encryption failed: -22 [ 572.598132][ T1314] ieee802154 phy1 wpan1: encryption failed: -22 [ 573.434053][T10939] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 575.017822][T10966] serio: Serial port ttyS3 [ 575.642730][T10973] syz.4.2038 uses obsolete (PF_INET,SOCK_PACKET) [ 576.326424][T10986] overlayfs: lowerdir is in-use as upperdir/workdir of another mount, mount with '-o index=off' to override exclusive upperdir protection. [ 579.078084][T11029] overlayfs: lowerdir is in-use as upperdir/workdir of another mount, mount with '-o index=off' to override exclusive upperdir protection. [ 579.604865][ T5691] usb 1-1: new high-speed USB device number 10 using dummy_hcd [ 579.766807][ T5691] usb 1-1: Using ep0 maxpacket: 32 [ 579.795526][ T5691] usb 1-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 32 [ 579.843342][ T5691] usb 1-1: New USB device found, idVendor=0499, idProduct=1010, bcdDevice= a.f5 [ 579.865487][ T5691] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 579.892128][ T5691] usb 1-1: Product: syz [ 579.903034][ T5691] usb 1-1: Manufacturer: syz [ 579.914752][ T5691] usb 1-1: SerialNumber: syz [ 579.954378][ T5691] usb 1-1: config 0 descriptor?? [ 579.962986][T11041] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2067'. [ 579.976960][T11033] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22 [ 580.035388][ T5691] usb 1-1: Quirk or no altset; falling back to MIDI 1.0 [ 580.514083][ T5691] usb 1-1: USB disconnect, device number 10 [ 580.724400][ T5885] udevd[5885]: error opening ATTR{/sys/devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 581.459924][T11059] netlink: 'syz.0.2075': attribute type 3 has an invalid length. [ 581.835625][T11068] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 582.210219][T11071] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2080'. [ 582.416028][T11076] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2082'. [ 582.597963][ T30] kernel read not supported for file /media0 (pid: 30 comm: kworker/1:1) [ 584.193365][T11101] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 585.511584][T11131] loop2: detected capacity change from 0 to 64 [ 585.534967][T11128] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2106'. [ 585.590006][T11131] hfs: unable to locate alternate MDB [ 585.608142][T11131] hfs: continuing without an alternate MDB [ 586.876589][T11145] overlayfs: lowerdir is in-use as upperdir/workdir of another mount, mount with '-o index=off' to override exclusive upperdir protection. [ 589.204872][T11185] input: syz1 as /devices/virtual/input/input11 [ 589.474810][T11187] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2131'. [ 589.505995][T11187] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2131'. [ 589.653544][T11189] loop0: detected capacity change from 0 to 1024 [ 589.677210][T11191] tipc: Started in network mode [ 589.700801][T11191] tipc: Node identity , cluster identity 4711 [ 589.707602][T11189] EXT4-fs: Ignoring removed bh option [ 589.735656][T11189] EXT4-fs: Ignoring removed oldalloc option [ 589.781354][T11189] EXT4-fs: Ignoring removed nobh option [ 589.821200][T11194] loop2: detected capacity change from 0 to 256 [ 589.845834][T11189] EXT4-fs (loop0): bad geometry: bigalloc file system with non-zero first_data_block [ 589.845834][T11189] [ 589.962318][T11194] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0x88000078, utbl_chksum : 0xe619d30d) [ 591.761250][T11218] loop3: detected capacity change from 0 to 512 [ 593.513233][ T5691] kernel read not supported for file /comedi4 (pid: 5691 comm: kworker/0:5) [ 594.963389][T11265] loop3: detected capacity change from 0 to 512 [ 595.112412][T11265] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 595.194471][T11265] ext4 filesystem being mounted at /439/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 595.330983][T11265] EXT4-fs (loop3): shut down requested (2) [ 595.490440][ T5596] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 596.804114][ T5691] usb 4-1: new high-speed USB device number 15 using dummy_hcd [ 596.965562][ T5691] usb 4-1: Using ep0 maxpacket: 32 [ 596.989028][ T5691] usb 4-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 32 [ 597.039497][ T5691] usb 4-1: New USB device found, idVendor=0499, idProduct=1010, bcdDevice= a.f5 [ 597.079395][ T5691] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 597.105627][ T5691] usb 4-1: Product: syz [ 597.116981][ T5691] usb 4-1: Manufacturer: syz [ 597.136237][ T5691] usb 4-1: SerialNumber: syz [ 597.171676][ T5691] usb 4-1: config 0 descriptor?? [ 597.197959][T11283] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22 [ 597.256632][ T5691] usb 4-1: Quirk or no altset; falling back to MIDI 1.0 [ 597.740550][ T5691] usb 4-1: USB disconnect, device number 15 [ 598.003771][ T5945] udevd[5945]: error opening ATTR{/sys/devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 598.056078][T11295] loop2: detected capacity change from 0 to 512 [ 598.222089][T11295] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 598.273629][T11295] ext4 filesystem being mounted at /399/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 598.427915][T11295] EXT4-fs (loop2): shut down requested (2) [ 598.713044][ T5595] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 599.333065][T11308] loop0: detected capacity change from 0 to 8 [ 599.505610][ T30] usb 4-1: new low-speed USB device number 16 using dummy_hcd [ 599.588153][T11304] loop2: detected capacity change from 0 to 4096 [ 599.631867][T11304] ntfs3(loop2): Different NTFS sector size (4096) and media sector size (512). [ 599.693559][ T30] usb 4-1: config 0 has an invalid interface number: 1 but max is 0 [ 599.714509][ T5691] usb 1-1: new high-speed USB device number 11 using dummy_hcd [ 599.724069][ T30] usb 4-1: config 0 has no interface number 0 [ 599.740245][ T30] usb 4-1: config 0 interface 1 altsetting 19 endpoint 0x81 has an invalid bInterval 0, changing to 10 [ 599.771297][ T30] usb 4-1: config 0 interface 1 altsetting 19 endpoint 0x81 has invalid wMaxPacketSize 0 [ 599.799983][ T30] usb 4-1: config 0 interface 1 has no altsetting 0 [ 599.819344][ T30] usb 4-1: New USB device found, idVendor=2179, idProduct=0053, bcdDevice= 0.00 [ 599.856584][ T30] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 599.892872][ T30] usb 4-1: config 0 descriptor?? [ 599.908113][ T5691] usb 1-1: Using ep0 maxpacket: 16 [ 599.940650][T11304] ntfs3(loop2): Mark volume as dirty due to NTFS errors [ 599.954171][ T5691] usb 1-1: config 0 interface 0 altsetting 16 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 599.986508][T11304] ntfs3(loop2): Inode r=b is not in use! [ 600.003106][ T5691] usb 1-1: config 0 interface 0 altsetting 16 endpoint 0x81 has invalid wMaxPacketSize 0 [ 600.018742][T11304] ntfs3(loop2): Failed to load $Extend (-116). [ 600.032877][T11304] ntfs3(loop2): Failed to initialize $Extend. [ 600.046703][ T5691] usb 1-1: config 0 interface 0 altsetting 16 has 1 endpoint descriptor, different from the interface descriptor's value: 28 [ 600.093276][ T5691] usb 1-1: config 0 interface 0 has no altsetting 0 [ 600.113317][ T5691] usb 1-1: New USB device found, idVendor=056a, idProduct=0331, bcdDevice= 0.00 [ 600.140100][ T5691] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 600.180943][ T5691] usb 1-1: config 0 descriptor?? [ 600.374290][ T30] hid (null): report_id 1096312273 is invalid [ 600.581187][ T30] uclogic 0003:2179:0053.000A: pen parameters not found [ 600.618038][ T30] uclogic 0003:2179:0053.000A: interface is invalid, ignoring [ 600.705775][ T5691] hid (null): unknown global tag 0xd [ 600.751927][ T5691] hid (null): invalid report_size 771553856 [ 600.767464][ T5691] hid (null): invalid report_count -8830145 [ 600.781709][ T5691] hid (null): unknown global tag 0xc [ 600.792907][ T30] usb 4-1: USB disconnect, device number 16 [ 600.800184][ T5691] hid (null): invalid report_size 14673 [ 600.817488][ T5691] hid (null): unknown global tag 0x4f [ 600.833650][ T5691] hid (null): unknown global tag 0x34 [ 600.899927][ T5691] hid (null): global environment stack underflow [ 600.923243][ T5691] hid (null): invalid report_count -1648713878 [ 601.060371][ T5691] usb 1-1: USB disconnect, device number 11 [ 601.061188][T11320] netlink: 'syz.4.2188': attribute type 4 has an invalid length. [ 602.387978][T11337] loop3: detected capacity change from 0 to 256 [ 602.621095][T11337] FAT-fs (loop3): Directory bread(block 64) failed [ 602.651434][T11337] FAT-fs (loop3): Directory bread(block 65) failed [ 602.700538][T11337] FAT-fs (loop3): Directory bread(block 66) failed [ 602.737611][T11337] FAT-fs (loop3): Directory bread(block 67) failed [ 602.761916][T11337] FAT-fs (loop3): Directory bread(block 68) failed [ 602.775716][T11337] FAT-fs (loop3): Directory bread(block 69) failed [ 602.800409][T11337] FAT-fs (loop3): Directory bread(block 70) failed [ 602.829386][T11337] FAT-fs (loop3): Directory bread(block 71) failed [ 602.858777][T11337] FAT-fs (loop3): Directory bread(block 72) failed [ 602.892107][T11337] FAT-fs (loop3): Directory bread(block 73) failed [ 604.031521][T11360] vcan0: tx address claim with different name [ 605.831294][T11387] netlink: 132 bytes leftover after parsing attributes in process `syz.1.2216'. [ 605.874609][T11387] netlink: 'syz.1.2216': attribute type 12 has an invalid length. [ 605.918645][T11387] netlink: 132 bytes leftover after parsing attributes in process `syz.1.2216'. [ 606.122739][T11389] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2217'. [ 606.660755][T11394] vcan0: tx address claim with different name [ 607.988781][T11415] loop1: detected capacity change from 0 to 512 [ 608.034093][T11415] EXT4-fs: Ignoring removed bh option [ 608.058835][T11415] EXT4-fs (loop1): mounting ext3 file system using the ext4 subsystem [ 608.134516][T11415] EXT4-fs (loop1): 1 truncate cleaned up [ 608.191204][T11415] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 608.679054][ T9892] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 610.595262][ T30] usb 3-1: new high-speed USB device number 10 using dummy_hcd [ 610.776012][ T30] usb 3-1: Using ep0 maxpacket: 16 [ 610.844265][ T30] usb 3-1: unable to get BOS descriptor or descriptor too short [ 610.868063][ T30] usb 3-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 610.896104][ T30] usb 3-1: config 1 interface 2 altsetting 1 endpoint 0x82 has an invalid bInterval 0, changing to 7 [ 610.948820][ T30] usb 3-1: New USB device found, idVendor=103d, idProduct=0100, bcdDevice= 0.40 [ 610.978603][ T30] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 611.013497][ T30] usb 3-1: Product: syz [ 611.026782][ T30] usb 3-1: Manufacturer: syz [ 611.036506][ T30] usb 3-1: SerialNumber: syz [ 611.357597][ T30] usb 3-1: Audio class v2/v3 interfaces need an interface association [ 611.384042][T11459] loop3: detected capacity change from 0 to 512 [ 611.386618][ T30] snd-usb-audio 3-1:1.0: probe with driver snd-usb-audio failed with error -22 [ 611.530111][T11459] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 611.615612][T11459] ext4 filesystem being mounted at /455/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 611.727450][ T30] usb 3-1: 2:1 : can't get Cluster Descriptor [ 612.273493][ T30] usb 3-1: USB disconnect, device number 10 [ 612.327194][ T5596] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 612.660720][T11056] udevd[11056]: error opening ATTR{/sys/devices/platform/dummy_hcd.2/usb3/3-1/3-1:1.1/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 613.111804][T11483] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2256'. [ 613.134798][T11483] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2256'. [ 613.302760][T11487] loop0: detected capacity change from 0 to 512 [ 613.408311][T11487] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 613.425154][T11487] ext4 filesystem being mounted at /457/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 613.855180][ T5582] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 613.950961][T11502] loop3: detected capacity change from 0 to 8 [ 614.015006][T11500] loop1: detected capacity change from 0 to 1024 [ 614.294466][ T5691] usb 4-1: new high-speed USB device number 17 using dummy_hcd [ 614.484340][ T5691] usb 4-1: Using ep0 maxpacket: 16 [ 614.497668][T11506] loop2: detected capacity change from 0 to 512 [ 614.529159][ T5691] usb 4-1: config 0 interface 0 altsetting 16 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 614.592430][ T5691] usb 4-1: config 0 interface 0 altsetting 16 endpoint 0x81 has invalid wMaxPacketSize 0 [ 614.649162][ T5691] usb 4-1: config 0 interface 0 altsetting 16 has 1 endpoint descriptor, different from the interface descriptor's value: 28 [ 614.671124][ T5691] usb 4-1: config 0 interface 0 has no altsetting 0 [ 614.678930][T11506] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 614.689139][ T5691] usb 4-1: New USB device found, idVendor=056a, idProduct=0331, bcdDevice= 0.00 [ 614.715572][ T5691] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 614.759540][T11506] ext4 filesystem being mounted at /416/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 614.794566][ T5691] usb 4-1: config 0 descriptor?? [ 615.236586][T11514] input: syz1 as /devices/virtual/input/input12 [ 615.317615][ T5691] hid (null): unknown global tag 0xd [ 615.393264][ T5691] hid (null): invalid report_size 771553856 [ 615.434385][ T5691] hid (null): invalid report_count -8830145 [ 615.479082][ T5691] hid (null): unknown global tag 0xc [ 615.503578][ T5691] hid (null): invalid report_size 14673 [ 615.540487][ T5691] hid (null): unknown global tag 0x4f [ 615.550612][ T5691] hid (null): unknown global tag 0x34 [ 615.570117][ T5691] hid (null): global environment stack underflow [ 615.581728][ T5595] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 615.607067][ T5691] hid (null): invalid report_count -1648713878 [ 615.833485][ T5691] usb 4-1: USB disconnect, device number 17 [ 616.218759][T11520] loop0: detected capacity change from 0 to 512 [ 616.311946][T11520] EXT4-fs: Ignoring removed bh option [ 616.385720][T11520] EXT4-fs (loop0): mounting ext3 file system using the ext4 subsystem [ 616.492820][T11520] EXT4-fs (loop0): 1 truncate cleaned up [ 616.518008][T11520] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 616.841835][T11527] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2272'. [ 616.909135][T11528] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2272'. [ 617.018864][ T5582] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 618.341977][T11545] loop0: detected capacity change from 0 to 512 [ 618.470822][T11545] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 618.579913][T11545] ext4 filesystem being mounted at /462/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 619.215049][ T5582] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 619.335066][T11564] loop8: detected capacity change from 0 to 7 [ 619.372125][T11564] Dev loop8: unable to read RDB block 7 [ 619.378331][T11564] loop8: AHDI p1 [ 619.425582][T11564] loop8: partition table partially beyond EOD, truncated [ 621.515950][T11597] loop1: detected capacity change from 0 to 512 [ 621.642333][T11597] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 621.755870][T11597] ext4 filesystem being mounted at /105/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 621.985125][T11607] loop8: detected capacity change from 0 to 7 [ 622.044531][T11607] Dev loop8: unable to read RDB block 7 [ 622.074491][T11607] loop8: AHDI p1 [ 622.097716][T11607] loop8: partition table partially beyond EOD, truncated [ 622.370387][ T9892] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 623.501281][T11626] loop0: detected capacity change from 0 to 256 [ 623.585444][ T29] audit: type=1800 audit(1780026109.777:126): pid=11626 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.2311" name="file1" dev="loop0" ino=1048728 res=0 errno=0 [ 623.609382][T11626] FAT-fs (loop0): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001) [ 623.623309][T11631] netlink: 'syz.3.2313': attribute type 9 has an invalid length. [ 623.636397][T11626] FAT-fs (loop0): Filesystem has been set read-only [ 623.659629][T11626] FAT-fs (loop0): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001) [ 623.685536][T11626] FAT-fs (loop0): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001) [ 623.723104][ T29] audit: type=1800 audit(1780026109.917:127): pid=11626 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.2311" name="file1" dev="loop0" ino=1048728 res=0 errno=0 [ 624.254147][T11637] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2317'. [ 624.324592][T11639] loop3: detected capacity change from 0 to 128 [ 625.160138][T11650] loop3: detected capacity change from 0 to 512 [ 625.217162][T11650] EXT4-fs: Ignoring removed mblk_io_submit option [ 625.262838][T11650] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 overlaps superblock [ 625.300988][T11650] EXT4-fs (loop3): revision level too high, forcing read-only mode [ 625.333257][T11650] EXT4-fs (loop3): orphan cleanup on readonly fs [ 625.395674][T11650] EXT4-fs error (device loop3): ext4_read_block_bitmap_nowait:483: comm syz.3.2323: Invalid block bitmap block 0 in block_group 0 [ 625.478146][T11650] loop3: lost filesystem error report for type 5 error -117 [ 625.483859][ C0] EXT4-fs (loop3): error count since last fsck: 1 [ 625.493428][T11654] loop1: detected capacity change from 0 to 2048 [ 625.498086][ C0] EXT4-fs (loop3): last error at time 1780026111: ext4_read_block_bitmap_nowait:483 [ 625.501495][T11650] EXT4-fs (loop3): Remounting filesystem read-only [ 625.523151][T11650] Quota error (device loop3): write_blk: dquota write failed [ 625.534737][T11650] Quota error (device loop3): qtree_write_dquot: Error -28 occurred while creating quota [ 625.546165][T11650] EXT4-fs (loop3): 1 orphan inode deleted [ 625.602145][T11650] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 625.640019][T11655] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 625.941209][ T9892] syz-executor: attempt to access beyond end of device [ 625.941209][ T9892] loop1: rw=0, sector=2198922592328, nr_sectors = 2 limit=2048 [ 625.975581][ T30] usb 4-1: new high-speed USB device number 18 using dummy_hcd [ 625.987219][T11659] A link change request failed with some changes committed already. Interface geneve0 may have been left with an inconsistent configuration, please check. [ 626.020516][ T9892] NILFS (loop1): I/O error reading meta-data file (ino=6, block-offset=1) [ 626.083662][ T9892] NILFS (loop1): vblocknr = 5121 has abnormal lifetime: start cno (= 100663298) > current cno (= 3) [ 626.154045][ T9892] NILFS error (device loop1): nilfs_bmap_truncate: broken bmap (inode number=13) [ 626.177160][ T9892] Remounting filesystem read-only [ 626.177180][ T30] usb 4-1: Using ep0 maxpacket: 16 [ 626.190497][ T9892] NILFS (loop1): error -5 truncating bmap (ino=13) [ 626.220657][ T30] usb 4-1: config 0 interface 0 altsetting 2 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 626.239414][ T9892] syz-executor: attempt to access beyond end of device [ 626.239414][ T9892] loop1: rw=0, sector=2198922592328, nr_sectors = 2 limit=2048 [ 626.249535][ T30] usb 4-1: config 0 interface 0 altsetting 2 endpoint 0x81 has invalid wMaxPacketSize 0 [ 626.303589][ T30] usb 4-1: config 0 interface 0 has no altsetting 0 [ 626.312071][ T9892] NILFS (loop1): I/O error reading meta-data file (ino=6, block-offset=1) [ 626.334946][ T30] usb 4-1: New USB device found, idVendor=056a, idProduct=0331, bcdDevice= 0.00 [ 626.350143][ T30] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 626.407456][ T30] usb 4-1: config 0 descriptor?? [ 626.941389][ T30] hid (null): invalid report_size 21907 [ 626.986090][T11560] NILFS (loop1): disposed unprocessed dirty file(s) when detaching log writer [ 626.987604][ T30] hid (null): unknown global tag 0xe [ 627.041908][ T30] hid (null): unknown global tag 0xd [ 627.069448][ T30] hid (null): unknown global tag 0x4f [ 627.175637][ T30] usb 4-1: USB disconnect, device number 18 [ 627.359284][T11673] netlink: 14 bytes leftover after parsing attributes in process `syz.2.2335'. [ 627.501696][T11673] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 627.620742][T11673] bond0 (unregistering): Released all slaves [ 627.810654][ T5596] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 628.881992][T11686] loop3: detected capacity change from 0 to 1024 [ 629.069252][T11686] ===================================================== [ 629.076577][T11686] BUG: KMSAN: uninit-value in irqentry_exit_to_kernel_mode_preempt+0xb0/0xc0 [ 629.085528][T11686] irqentry_exit_to_kernel_mode_preempt+0xb0/0xc0 [ 629.092134][T11686] irqentry_exit+0x82/0xa00 [ 629.096963][T11686] sysvec_apic_timer_interrupt+0x52/0x90 [ 629.102766][T11686] asm_sysvec_apic_timer_interrupt+0x1f/0x30 [ 629.108925][T11686] kmsan_get_metadata+0x5/0x160 [ 629.113933][T11686] __msan_metadata_ptr_for_store_2+0x27/0x40 [ 629.120068][T11686] char2uni+0x13e/0x1d0 [ 629.124404][T11686] hfsplus_asc2uni+0x25f/0x1040 [ 629.129413][T11686] hfsplus_create_cat+0x3e9/0x19c0 [ 629.134699][T11686] hfsplus_mknod+0x1fb/0x5f0 [ 629.139408][T11686] hfsplus_mkdir+0x5a/0x80 [ 629.143980][T11686] vfs_mkdir+0x653/0x9f0 [ 629.148409][T11686] filename_mkdirat+0x42f/0xa60 [ 629.153422][T11686] __se_sys_mkdirat+0x82/0x330 [ 629.158334][T11686] __ia32_sys_mkdirat+0x96/0xe0 [ 629.163339][T11686] ia32_sys_call+0x31b7/0x4360 [ 629.168289][T11686] __do_fast_syscall_32+0x195/0x470 [ 629.173608][T11686] do_fast_syscall_32+0x37/0x80 [ 629.178574][T11686] do_SYSENTER_32+0x1f/0x30 [ 629.183187][T11686] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 629.189666][T11686] [ 629.192037][T11686] Local variable u created at: [ 629.196855][T11686] char2uni+0x43/0x1d0 [ 629.201084][T11686] hfsplus_asc2uni+0x25f/0x1040 [ 629.206083][T11686] [ 629.208504][T11686] CPU: 0 UID: 0 PID: 11686 Comm: syz.3.2342 Tainted: G L syzkaller #0 PREEMPT(lazy) [ 629.219597][T11686] Tainted: [L]=SOFTLOCKUP [ 629.223995][T11686] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026 [ 629.234144][T11686] ===================================================== [ 629.241136][T11686] Disabling lock debugging due to kernel taint [ 629.247422][T11686] Kernel panic - not syncing: kmsan.panic set ... [ 629.253936][T11686] CPU: 0 UID: 0 PID: 11686 Comm: syz.3.2342 Tainted: G B L syzkaller #0 PREEMPT(lazy) [ 629.265046][T11686] Tainted: [B]=BAD_PAGE, [L]=SOFTLOCKUP [ 629.270659][T11686] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026 [ 629.280815][T11686] Call Trace: [ 629.284162][T11686] [ 629.287159][T11686] __dump_stack+0x26/0x30 [ 629.291637][T11686] dump_stack_lvl+0x50/0x1c0 [ 629.296367][T11686] ? dump_stack+0x12/0x25 [ 629.300829][T11686] dump_stack+0x1e/0x25 [ 629.305114][T11686] vpanic+0x7b4/0x1430 [ 629.309365][T11686] panic+0x15d/0x160 [ 629.313446][T11686] kmsan_report+0x31a/0x320 [ 629.318119][T11686] ? kmsan_get_metadata+0xf1/0x160 [ 629.323391][T11686] ? __msan_warning+0x1b/0x30 [ 629.328210][T11686] ? irqentry_exit_to_kernel_mode_preempt+0xb0/0xc0 [ 629.334957][T11686] ? irqentry_exit+0x82/0xa00 [ 629.339804][T11686] ? sysvec_apic_timer_interrupt+0x52/0x90 [ 629.345777][T11686] ? asm_sysvec_apic_timer_interrupt+0x1f/0x30 [ 629.352077][T11686] ? kmsan_get_metadata+0x5/0x160 [ 629.357268][T11686] ? __msan_metadata_ptr_for_store_2+0x27/0x40 [ 629.363588][T11686] ? char2uni+0x13e/0x1d0 [ 629.368086][T11686] ? hfsplus_asc2uni+0x25f/0x1040 [ 629.373253][T11686] ? hfsplus_create_cat+0x3e9/0x19c0 [ 629.378703][T11686] ? hfsplus_mknod+0x1fb/0x5f0 [ 629.383575][T11686] ? hfsplus_mkdir+0x5a/0x80 [ 629.388335][T11686] ? vfs_mkdir+0x653/0x9f0 [ 629.392903][T11686] ? filename_mkdirat+0x42f/0xa60 [ 629.398084][T11686] ? __se_sys_mkdirat+0x82/0x330 [ 629.403183][T11686] ? __ia32_sys_mkdirat+0x96/0xe0 [ 629.408368][T11686] ? ia32_sys_call+0x31b7/0x4360 [ 629.413470][T11686] ? __do_fast_syscall_32+0x195/0x470 [ 629.418978][T11686] ? do_fast_syscall_32+0x37/0x80 [ 629.424126][T11686] ? do_SYSENTER_32+0x1f/0x30 [ 629.428920][T11686] ? entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 629.435593][T11686] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 629.441581][T11686] ? kmsan_get_metadata+0xf1/0x160 [ 629.446872][T11686] ? kmsan_get_metadata+0xf1/0x160 [ 629.452151][T11686] ? kmsan_get_metadata+0xf1/0x160 [ 629.457433][T11686] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 629.463426][T11686] ? kmsan_get_metadata+0xf1/0x160 [ 629.468711][T11686] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 629.474714][T11686] ? kmsan_get_metadata+0xf1/0x160 [ 629.479994][T11686] ? kmsan_get_metadata+0xf1/0x160 [ 629.485276][T11686] ? kmsan_get_metadata+0xf1/0x160 [ 629.490572][T11686] __msan_warning+0x1b/0x30 [ 629.495225][T11686] irqentry_exit_to_kernel_mode_preempt+0xb0/0xc0 [ 629.501803][T11686] irqentry_exit+0x82/0xa00 [ 629.506489][T11686] ? kmsan_internal_set_shadow_origin+0x7a/0x110 [ 629.512987][T11686] ? kmsan_internal_unpoison_memory+0x14/0x20 [ 629.519224][T11686] sysvec_apic_timer_interrupt+0x52/0x90 [ 629.525034][T11686] asm_sysvec_apic_timer_interrupt+0x1f/0x30 [ 629.531176][T11686] RIP: 0010:kmsan_get_metadata+0x5/0x160 [ 629.536989][T11686] Code: 90 0f 0b 90 0f 0b 66 66 66 66 66 66 2e 0f 1f 84 00 00 00 00 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 40 d6 55 <48> 89 e5 41 57 41 56 53 41 89 f6 48 89 fb 48 83 e3 fc 85 f6 48 0f [ 629.556728][T11686] RSP: 0018:ffff88804730f740 EFLAGS: 00000246 [ 629.562916][T11686] RAX: 0000000000000001 RBX: 0000000000000001 RCX: 0000000000000000 [ 629.570980][T11686] RDX: 0000000000000001 RSI: 0000000000000000 RDI: ffff88804730f8ca [ 629.579049][T11686] RBP: ffff88804730f760 R08: ffffea0000000001 R09: 0000000000000004 [ 629.587126][T11686] R10: ffff888046b0f7a4 R11: ffffffff83e4ed90 R12: ffff88804730f8ca [ 629.595206][T11686] R13: 0000000000000000 R14: ffff88804730f8ca R15: 0000000000000000 [ 629.603286][T11686] ? __pfx_char2uni+0x10/0x10 [ 629.608154][T11686] ? kmsan_get_shadow_origin_ptr+0x35/0xb0 [ 629.614139][T11686] __msan_metadata_ptr_for_store_2+0x27/0x40 [ 629.620284][T11686] char2uni+0x13e/0x1d0 [ 629.624615][T11686] ? __pfx_char2uni+0x10/0x10 [ 629.629449][T11686] hfsplus_asc2uni+0x25f/0x1040 [ 629.634500][T11686] hfsplus_create_cat+0x3e9/0x19c0 [ 629.639833][T11686] ? add_timer_global+0xbc/0x110 [ 629.644930][T11686] ? kmsan_get_metadata+0xf1/0x160 [ 629.650215][T11686] ? kmsan_internal_set_shadow_origin+0x7a/0x110 [ 629.656715][T11686] ? kmsan_internal_unpoison_memory+0x14/0x20 [ 629.662951][T11686] ? _raw_spin_unlock+0x30/0x50 [ 629.668020][T11686] ? hfsplus_mark_mdb_dirty+0x11d/0x2c0 [ 629.673770][T11686] hfsplus_mknod+0x1fb/0x5f0 [ 629.678499][T11686] hfsplus_mkdir+0x5a/0x80 [ 629.683092][T11686] ? __pfx_hfsplus_mkdir+0x10/0x10 [ 629.688371][T11686] vfs_mkdir+0x653/0x9f0 [ 629.692791][T11686] filename_mkdirat+0x42f/0xa60 [ 629.697832][T11686] __se_sys_mkdirat+0x82/0x330 [ 629.702759][T11686] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 629.708752][T11686] __ia32_sys_mkdirat+0x96/0xe0 [ 629.713810][T11686] ia32_sys_call+0x31b7/0x4360 [ 629.718771][T11686] __do_fast_syscall_32+0x195/0x470 [ 629.724117][T11686] do_fast_syscall_32+0x37/0x80 [ 629.729099][T11686] do_SYSENTER_32+0x1f/0x30 [ 629.733736][T11686] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 629.740232][T11686] RIP: 0023:0xf706f01c [ 629.744416][T11686] Code: 90 85 d2 74 0a 89 ce 81 e6 ff 0f 00 00 89 32 85 c0 74 05 c1 e9 0c 89 08 31 c0 5e 5d c3 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 58 b8 [ 629.764166][T11686] RSP: 002b:00000000f545d378 EFLAGS: 00000206 ORIG_RAX: 0000000000000128 [ 629.772721][T11686] RAX: ffffffffffffffda RBX: 00000000ffffff9c RCX: 00000000800020c0 [ 629.780794][T11686] RDX: 00000000000001ff RSI: 00000000800021c0 RDI: 0000000000000000 [ 629.788858][T11686] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 629.796918][T11686] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000 [ 629.804979][T11686] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 629.813074][T11686] [ 629.816459][T11686] Kernel Offset: disabled [ 629.820860][T11686] Rebooting in 86400 seconds..