last executing test programs: 11m2.755386368s ago: executing program 2 (id=994): r0 = openat$ppp(0xffffffffffffff9c, &(0x7f00000002c0), 0x42000, 0x0) ioctl$PPPIOCNEWUNIT(r0, 0xc004743e, &(0x7f00000000c0)=0xfffffffe) ioctl$PPPIOCSMAXCID(r0, 0x40047451, 0x0) 11m2.39590792s ago: executing program 2 (id=997): socket$key(0xf, 0x3, 0x2) r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000001580), 0x0, 0x0) pread64(r0, &(0x7f0000000180)=""/39, 0x27, 0x2b) 11m2.185623737s ago: executing program 2 (id=1001): syz_mount_image$ext4(&(0x7f0000000440)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x0, &(0x7f00000004c0), 0x1, 0x436, &(0x7f00000009c0)="$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") llistxattr(&(0x7f0000000140)='./file1\x00', 0x0, 0x0) openat(0xffffffffffffffff, 0x0, 0x28000, 0x0) 11m1.623903194s ago: executing program 2 (id=1010): syz_mount_image$udf(&(0x7f0000000000), &(0x7f00000000c0)='./file0\x00', 0x4, &(0x7f0000000240)=ANY=[@ANYBLOB='noadinicb,nostrict,mode=00000000000000000000004,uid=forget,noadinicb,umask=00000000000000040002000,lastblock=00000000000000000013,undelete,partition=00000000000000000005,\x00'], 0x43, 0xc11, &(0x7f0000000d00)="$eJzs3V1oXOl5B/DnnSOtRto00WYTb9Jm04GUxCi18VdsBZcgZxW1AccbIit0r6LRh51h5ZGR5MabtkFtSQu9Cd2b0psimi4t5KJX3V5WabaQUAol5CK9KAiaLHvRC10ECi0bhXPmHWlky7ayXlvS7u+3zP7PnHnO+P0YnzkCvzoBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAER89nOXTp1OB90KAOBxujL5pVNnff8DwLvKVT//AwAAAAAAAAAAAADAYZeiiGORYujVzTRdPe+oX261b92eGp/Y+7DBFClqUVT15aN++szZc586f2G0m/c//u324Xh+8uqlxnOLN24uzS8vz881ptqt2cW5+X2/w8Mef6eRagAaN168NXft2nLjzMmzu16+Pfz6wJPHhi9eOHF+tFs7NT4xMdlT09f/lv/0u9xrhccTUUQzUrw5/EZqRkQtHn4sHvDZedQGq06MVJ2YGp+oOrLQarZXyhdTLVfVIho9B411x+gxzMVDGYtYLZtfNnik7N7kzeZSc2ZhvvHF5tJKa6W12E61TmvL/jSiFqMpYi0iNgbufrv+KOKjkeLlU5tpJiKK7jh8sloY/OD21B5BH/ehbGejP2KtdgTm7BAbiCKuRIqfvXY8Zssxy4/4eMQXynw14pUyPxORyg/GuYif7vE54mjqiyL+PVIsps00V50PuueVy19ufL59bbGntnteOfLfD4/TIT831aOImeqMv5ne+sUOAAAAAAAAAAAAAAAAAG+3wSji25HiT579vWpdcVTr0t93cfQ9L/x275rxZx7wPmXtyYhYre1vTW5/XjqcauV/j6Bj7Es9ivhGXv/3RwfdGAAAAAAAAAAAAAAAAAAAgHe1Il6IFF85cTytRe89xVvt642rzZmFzl1hu/f+7d4zfWtra6uROjmWczrnas61nOs5N3JGLR+fcyzndM7VnGs513Nu5IwiH59zLOd0ztWcaznXc27kjL58fM6xnNM5V3Ou5VzPuZEzDsm9ewEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA3klqUcTPI8W3vraZIkXEWMR0dHJ94KBbBwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACU6qmIk5Fi/YV69XytFnE1In6+tbXVfUTEZpkP66D7CgAAAAAAAAAAAAAAAAAAAIdWKuJjkeLp/9tMjYi4Pfz6wJPHhi9eOHF+tIgiUlnSW//85NVLjecWb9xcml9enp9rTLVbs4tz8/v94+qXW+1bt6fGJx5JZx5o8BG3f7D+3OLNl5Za17+6sufrQ/VLM8srS83ZvV+OwahFTPfuGakaPDU+UTV6odVsV4em2j0aWIsY229nAAAAAAAAAAAAAAAAAAAAODSGUhGfixQ/+a9zqbtuvK+z5v9XOs+K7dpX/mDndwEs3JFdvb8/YD/bab8NHakW3jemxicmJnt29/XfXVq2KaUinokUn3j5Q9V6+BRDe66NL+veW9bdOJfrhn+trFvdVVUfmRqfaFxZbJ+4tLCwONtcac4szDcmbzZn9/2LAwAAAAAAAAAAAAAAAAAAAOA+hlIRP4oU//P3/5G6953P6//7Os961v//VrWEvlJPu3Nbtbb/vdXa/s72+y6ODn302XvtfxTr/8s2pVTENyPF2R99qLqffnf9//QdtWXdn0WKN579SK6rPVHWNbvd6bzjtdbC/Kmy9q8jxa+/2a2NqvZ6rn16p/Z0WTsYKf5yc3ftV3PtB3Zqz5S1xyPF9/5779oP7tSeLWt/Ein+6e8a3dqhsvb3c+2xndqTs4sLcw8a1nL+vxMp/vbK76Run+85/z2//2H1jtx215zff/vtmv/hnn2reV7/NM9/8wHzfz5SfKf+kVzXGfuZ/PpT1f935v8TkeI//2137bVc+/6d2tP77dZBK+f/25Hiu3/14+0+5/nPI7szQ73z/6t9u3P7U3JA8/9Uz77h3K7ZX3Is3o2WX/r6i82FhfklGzZs2NjeOOgzE49D+f3/55Hi/48VqXsdk7//39N5tnP997/f2Pn+v3hHbjug7//39+y7mK9a+vsi6is3bvY/E1FffunrJ1o3mtfnr8+3z5w+9elPnz996vT5/ie6F3c7W/seu3eCcv5/ECl++A8/3P45Zvf1397X/0N35LYDmv+ne/u067pm30PxrlTO/99Eiqc+++Ptnzfvd/3f/fn/+Md25/bfvwOa/w/07BvO7Wr9kmMBAAAAAAAAAABwlAylIv4iUvzuH/9m6q4h2s+//5u7I7cd0L//Otazb+4xrWvY9yADABwi5fXfByPFP299f3st9+7rv/iNbm3v9d+9HIb7/wMAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAwFGXoog/jBRDr26m9YHyeUf9cqt96/bU+MTehw2mSFGLoqovH/XTZ86e+9T5C6PdvP/xb7cPx/OTVy81nlu8cXNpfnl5fq4x1W7NLs7N7/sdHvb4O41UA9C48eKtuWvXlhtnTp7d9fLt4dcHnjw2fPHCifOj3dqp8YmJyZ6avv63/KffJd1j/xNRxPcjxZvDb6TvDkTU4uHH4gGfnUdtsOrESNWJqfGJqiMLrWZ7pXwx1XJVLaLRc9BYd4wew1w8lLGI1bL5ZYNHyu5N3mwuNWcW5htfbC6ttFZai+1U67S27E8jajGaItYiYmPg7rfrjyK+GSlePrWZ/mUgouiOwyevTH7p1NkHt6f2CPq4D2U7G/0Ra7UjMGeH2EAU8Y+R4mevHY/vDUT0RecRH4/4QpmvRrxS5mciUvnBOBfx0z0+RxxNfVHEuUixmDbTawPl+aB7Xrn85cbn29cWe2q755Uj//3wOB3yc1M9ivhBdcbfTP/q7zUAAAAAAAAAAAAAAADAIVLEWqT4yonjqVofvL2muNW+3rjanFnoLOvrrv3rrpne2traaqROjuWczrmacy3nes6NnFHLx+ccyzmdczXnWs71nBs5o8jH5xzLOZ1zNedazvWcGzmjLx+fcyzndM7VnGs513Nu5IxDsnYPAAAAAAAAAAAAAAAAAAB4Z6lFUd3F/Vtf20xbA537S09HJ9fdD/Qd7xcBAAD//0kCdPc=") syz_mount_image$fuse(0x0, &(0x7f0000000200)='./bus\x00', 0x283016, 0x0, 0x1, 0x0, 0x0) mount$overlay(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000b80), 0x0, &(0x7f0000000180)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file0'}}]}) 11m0.79431772s ago: executing program 2 (id=1017): syz_mount_image$vfat(&(0x7f0000000440), &(0x7f0000000000)='./file2\x00', 0x8040, &(0x7f0000000240)=ANY=[@ANYBLOB="6572726f72733d72656d6f756e742d726f2c756e695f786c6174653d312c756e695f786c6174653d302c757466383d302c73686f72746e616d653d6c6f7765722c73686f72746e616d653d6d697865642c696f636861727365743d64656661756c742c6e6f6e756d7461696c3d302c73686f72746e616d653d6c6f7765722c726f6469722c757466383d302c6572726f72733d72656d6f756e742d726f2c6572726f72733d636f6e74696e75652c756e695f786c6174653d302c756e695f786c6174653d302c646d61736b3d30303030303030303030303030303030303030303030312c747a3d5554432c6e6f6e756d7461696c3d302c73686f72746e616d653d6d697865642c6572726f72733d72656d6f756e742d726f2c6e6f6e756d7461696c3d302c6e6f6e756d7461696c3d302c756e695f786c6174653d302c73686f72746e616d653d6d697865642c73686f72746e616d653d77696e6e742c756e695f786c6174653d302c726f6469722c696f636861727365743d63703733372c73686f72746e616d653d77696e39352c696f636861727365743d6370313235312c73686f72746e616d653d77696e39352c73686f72746e616d653d77696e6e742c6e6f6e756d7461696c02002c00"], 0x1, 0x2d1, &(0x7f0000000740)="$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") statfs(&(0x7f0000002480)='./file1\x00', 0x0) mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0) 11m0.16186024s ago: executing program 2 (id=1022): r0 = socket$kcm(0x11, 0x3, 0x0) setsockopt$sock_attach_bpf(r0, 0x107, 0xf, &(0x7f00000000c0), 0x4) sendmsg$kcm(r0, &(0x7f0000000040)={&(0x7f0000000440)=@phonet={0x23, 0x0, 0x0, 0x14}, 0x80, &(0x7f0000000000)=[{&(0x7f0000000240)="270502001c0014000600002fb96db4f7babe05000700810005008100", 0x36}, {&(0x7f0000000280)="991b0d9e9def56e4bbdf", 0xa}], 0x2}, 0x30040805) 10m59.628407246s ago: executing program 32 (id=1022): r0 = socket$kcm(0x11, 0x3, 0x0) setsockopt$sock_attach_bpf(r0, 0x107, 0xf, &(0x7f00000000c0), 0x4) sendmsg$kcm(r0, &(0x7f0000000040)={&(0x7f0000000440)=@phonet={0x23, 0x0, 0x0, 0x14}, 0x80, &(0x7f0000000000)=[{&(0x7f0000000240)="270502001c0014000600002fb96db4f7babe05000700810005008100", 0x36}, {&(0x7f0000000280)="991b0d9e9def56e4bbdf", 0xa}], 0x2}, 0x30040805) 6m22.740213642s ago: executing program 3 (id=3893): r0 = socket$inet6(0xa, 0x3, 0x75) setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f0000000180)={{{@in6=@mcast1, @in6=@empty, 0x4, 0x0, 0x4e21, 0x0, 0x2, 0x0, 0x20, 0x1b}, {0xfffffefffffffffd, 0xeca, 0x80002d, 0x19, 0x0, 0x0, 0x8000000000778a, 0xffff}, {0x3, 0x0, 0x9}, 0x0, 0x0, 0x0, 0x1}, {{@in=@rand_addr=0x64010102, 0x4d6, 0x3c}, 0x0, @in=@multicast1, 0x0, 0x0, 0x1}}, 0xe8) close(r0) 6m22.628371655s ago: executing program 3 (id=3894): mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1) r0 = socket$inet6_icmp(0xa, 0x2, 0x3a) setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x40, &(0x7f0000000200)=@mangle={'mangle\x00', 0x1f, 0x6, 0x530, 0x1d8, 0x1d8, 0x0, 0x1d8, 0xe8, 0x5e8, 0x5e8, 0x5e8, 0x5e8, 0x5e8, 0x6, 0x0, {[{{@ipv6={@ipv4={'\x00', '\xff\xff', @rand_addr=0x64010102}, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, [0x0, 0xff], [0xff0000ff, 0x4de325748c9179dc, 0xffffffff, 0xff000000], 'wlan1\x00', 'wlan0\x00', {}, {0xff}, 0x6, 0x0, 0x2, 0x4}, 0x0, 0xa8, 0xe8}, @inet=@TPROXY1={0x40, 'TPROXY\x00', 0x1, {0x5, 0x8, @ipv4=@dev={0xac, 0x14, 0x14, 0x15}, 0x4e21}}}, {{@ipv6={@remote, @local, [0xff, 0xffffff00], [0xffffff00, 0xffffff00, 0xff, 0xff], 'veth1_macvtap\x00', 'erspan0\x00', {0xff}, {}, 0x87, 0x7f, 0x4, 0x2}, 0x0, 0xa8, 0xf0}, @SNPT={0x48, 'SNPT\x00', 0x0, {@ipv4=@broadcast, @ipv6=@mcast1, 0x33, 0x23, 0x8}}}, {{@ipv6={@remote, @private1={0xfc, 0x1, '\x00', 0x1}, [0xffffff00, 0xffffff00, 0xffffff00], [0x0, 0xffffffff, 0xffffffff, 0xff], 'pimreg\x00', 'pimreg0\x00', {0xff}, {0xff}, 0x0, 0x49, 0x1, 0x54}, 0x0, 0xa8, 0xe8}, @common=@inet=@TCPOPTSTRIP={0x40, 'TCPOPTSTRIP\x00', 0x0, {[0x8, 0xffffffff, 0x7, 0x76be0f9b, 0x7, 0x8, 0x4, 0x733]}}}, {{@uncond, 0x0, 0xa8, 0xd0}, @inet=@TOS={0x28, 'TOS\x00', 0x0, {0x5c, 0xf7}}}, {{@uncond, 0x0, 0xa8, 0xd0}, @common=@unspec=@NFQUEUE2={0x28, 'NFQUEUE\x00', 0x2, {0x1, 0x9, 0x1}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x590) 6m22.419633682s ago: executing program 3 (id=3895): mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2, 0x31, 0xffffffffffffffff, 0x0) mremap(&(0x7f0000001000/0x3000)=nil, 0x3000, 0x4000, 0x3, &(0x7f0000005000/0x4000)=nil) mremap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x4000, 0x0, &(0x7f0000001000/0x4000)=nil) 6m22.18409834s ago: executing program 3 (id=3897): symlinkat(&(0x7f0000000080)='.\x00', 0xffffffffffffff9c, &(0x7f0000000200)='./file0\x00') mount$9p_unix(&(0x7f00000000c0)='./file0/file0/..\x00', &(0x7f0000000180)='./file0\x00', 0x0, 0x12d7498, 0x0) umount2(&(0x7f0000000340)='./file0\x00', 0x1) 6m21.884115019s ago: executing program 3 (id=3898): syz_mount_image$hfsplus(&(0x7f0000000100), &(0x7f0000000340)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x2000010, &(0x7f0000000000)=ANY=[@ANYRES32=0x0], 0x1, 0x6eb, &(0x7f0000001240)="$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") mknod$loop(&(0x7f0000000440)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x2000, 0x0) unlink(&(0x7f0000000200)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00') 6m21.348958476s ago: executing program 3 (id=3900): r0 = socket$inet_tcp(0x2, 0x1, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x0, 0x12, r0, 0x0) timer_settime(0x0, 0x1, &(0x7f0000000040)={{}, {0x0, 0x989680}}, 0x0) 6m20.766709945s ago: executing program 33 (id=3900): r0 = socket$inet_tcp(0x2, 0x1, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x0, 0x12, r0, 0x0) timer_settime(0x0, 0x1, &(0x7f0000000040)={{}, {0x0, 0x989680}}, 0x0) 4.067889789s ago: executing program 0 (id=7706): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000680), 0xffffffffffffffff) sendmsg$ETHTOOL_MSG_PAUSE_GET(r0, &(0x7f0000001ac0)={0x0, 0x0, &(0x7f0000001a80)={&(0x7f0000000580)={0x28, r1, 0x1, 0x3, 0x0, {0x1e}, [@HEADER={0x14, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}]}]}, 0x28}, 0x1, 0x0, 0x0, 0x4004001}, 0x0) 3.883606915s ago: executing program 0 (id=7709): r0 = openat$sw_sync(0xffffffffffffff9c, &(0x7f0000000140), 0x286, 0x0) ioctl$SW_SYNC_IOC_CREATE_FENCE(r0, 0xc0285700, &(0x7f00000000c0)={0xff, "340b7832c1efd131b8e6498c25f54a2700", 0xffffffffffffffff}) ioctl$sock_TIOCINQ(r1, 0x541b, 0x0) 3.702621781s ago: executing program 0 (id=7711): unshare(0x28000600) r0 = fanotify_init(0x1, 0x2) fanotify_mark(r0, 0x80, 0x20, 0xffffffffffffffff, 0x0) 3.480431178s ago: executing program 0 (id=7713): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000640), 0xffffffffffffffff) sendmsg$MPTCP_PM_CMD_SET_FLAGS(r0, &(0x7f0000000780)={0x0, 0x0, &(0x7f0000000740)={&(0x7f00000006c0)={0x34, r1, 0x1, 0x70bd2b, 0x25dfdbfc, {}, [@MPTCP_PM_ATTR_ADDR={0x4}, @MPTCP_PM_ATTR_ADDR_REMOTE={0x1c, 0x6, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_FAMILY={0x6, 0x1, 0x2}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @multicast1}, @MPTCP_PM_ADDR_ATTR_PORT={0x6, 0x5, 0x4e21}]}]}, 0x34}, 0x1, 0x0, 0x0, 0x4008800}, 0x4040) 3.325721943s ago: executing program 0 (id=7715): r0 = socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000040)={'netdevsim0\x00', 0x0}) sendmsg$nl_route_sched(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=@newqdisc={0x48, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x25dfdbfb, {0x0, 0x0, 0x0, r1, {0x0, 0x6}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_cbs={{0x8}, {0x1c, 0x2, @TCA_CBS_PARMS={0x18, 0x1, {0x6, '\x00', 0x3, 0x6, 0x10, 0x5e}}}}]}, 0x48}, 0x1, 0x0, 0x0, 0x48801}, 0x0) 2.849589388s ago: executing program 0 (id=7719): r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f00000000c0)=ANY=[@ANYBLOB="12010000000000401e04012800000000000109022400010000000009040100010300000009210000000122070009058103"], 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, &(0x7f0000000600)={0x2c, &(0x7f0000000300)={0x0, 0x31, 0xa, {0xa, 0x0, "83755023b58510f2"}}, 0x0, 0x0, 0x0, 0x0}, 0x0) 2.370513563s ago: executing program 4 (id=7727): syz_mount_image$exfat(&(0x7f0000000140), &(0x7f00000002c0)='./file0\x00', 0x1200082, &(0x7f0000000500)=ANY=[@ANYBLOB="6572726f72733d636f6e74696e75652c6572726f72733d636f6e74696e75652c757466382c756d61736b3d30303030303030303030303030303030303032313632362c696f636861727365743d63703935302c646973636172642c616c6c6f775f7574696d653d3030303030303030352c6572726f72733d72656d6f756e742d726f2c646973636172642c00d50194377d24b5953951fbb0e6d2204f459a2129e54509e955e3ac3e9dd76061aeb341a8ae53564e806289fad8cab1be25d1de2b9d46be57d2e9c2ded432413ab147de643c400dba4f15a90c962bcd8d805d7d5f57"], 0x1, 0x1537, &(0x7f0000000600)="$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") mkdir(&(0x7f00000000c0)='./bus\x00', 0x11e) sync() 2.113219532s ago: executing program 1 (id=7729): write(0xffffffffffffffff, &(0x7f0000000140)="260000002200470105000007", 0xc) ioctl$ifreq_SIOCGIFINDEX_wireguard(0xffffffffffffffff, 0x8933, 0x0) syz_usb_connect$uac1(0x2, 0x96, &(0x7f0000000100)=ANY=[@ANYBLOB="12010102000000086b1d01014000010203010902840003018160030904000000010100000a240109002e000201020924030205040106080f240606040401000b0001000100090c240204"], &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x4b}) 1.729826274s ago: executing program 4 (id=7732): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48) r1 = bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=@base={0xe, 0x4, 0x4, 0x4, 0x0, 0x1, 0xfefffffe}, 0x50) bpf$PROG_LOAD(0x5, &(0x7f00000001c0)={0x6, 0x10, &(0x7f0000000440)=@framed={{0x18, 0x0, 0x0, 0x0, 0x100}, [@ringbuf_query={{0x18, 0x1, 0x1, 0x0, r0}}, @ringbuf_output={{0x18, 0x1, 0x1, 0x0, r1}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x2c}, {}, {0x4}, {0x6, 0x0, 0xa}, {}, {}, {0x85, 0x0, 0x0, 0x33}}]}, &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x8, '\x00', 0x0, @fallback=0x1b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc00000}, 0x94) 1.658108056s ago: executing program 5 (id=7733): r0 = socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000040)={'bridge_slave_0\x00', 0x0}) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000003c0)=@bridge_newneigh={0x28, 0x1c, 0x401, 0x70bd29, 0x25dfdbff, {0x7, 0x0, 0x0, r1, 0x2, 0x0, 0x6}, [@NDA_LLADDR={0xa, 0x2, @dev={'\xaa\xaa\xaa\xaa\xaa', 0xc}}]}, 0x28}, 0x1, 0x0, 0x0, 0x44801}, 0x840) 1.602983608s ago: executing program 4 (id=7734): r0 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) prlimit64(0x0, 0x7, &(0x7f0000000180)={0x1, 0x8}, 0x0) ioctl$IOMMU_TEST_OP_CREATE_ACCESS(r0, 0x3ba0, &(0x7f0000000980)={0x48, 0x5, 0x0, 0x0, 0x0, 0x1}) 1.500077671s ago: executing program 5 (id=7735): r0 = socket(0x10, 0x3, 0x0) setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0xc, &(0x7f0000000000)={0x4800, 0x0, 0x6}, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000a00)={0x1c, 0x16, 0xa01, 0x0, 0x0, {0x8}, [@typed={0x4, 0x40}, @nested={0x4, 0x3d}]}, 0x1c}}, 0x0) 1.498593851s ago: executing program 4 (id=7736): io_setup(0x3, &(0x7f0000000040)=0x0) r1 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0) io_submit(r0, 0x1, &(0x7f0000001700)=[&(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, 0x6, r1, 0x0, 0xb01f, 0x5601}]) 1.412956494s ago: executing program 5 (id=7737): r0 = syz_open_dev$dri(&(0x7f00000000c0), 0x1ff, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(r0, 0xc01864c6, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}) ioctl$DRM_IOCTL_MODE_SETCRTC(r1, 0xc06864a2, &(0x7f0000000700)={0x0, 0x0, 0x0, 0x0, 0x6, 0x60000000, 0x8, 0x400, {0xd0c, 0x6, 0xfff9, 0x3, 0x2, 0x0, 0x6, 0x8, 0x9, 0xc, 0x94c, 0xc, 0x1, 0xd, "df90b7fc429a4abae744477196be983ae23bfe5788a94aeaf770a67a0e2ff634"}}) 1.294355338s ago: executing program 4 (id=7738): r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f00000000c0)={0x1, &(0x7f00000005c0)=[{0x6}]}) socket$nl_route(0x10, 0x3, 0x0) ioctl$SECCOMP_IOCTL_NOTIF_SEND(r0, 0xc0502103, &(0x7f00000001c0)) 1.155969002s ago: executing program 5 (id=7739): r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6}]}) bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYRESDEC, @ANYRES32=r0], 0x50) ioctl$SECCOMP_IOCTL_NOTIF_RECV(r0, 0xc0182101, &(0x7f00000004c0)) 583.809241ms ago: executing program 1 (id=7740): r0 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000140)={0x1, 0x6}, 0x4) setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000080)={0x2, 0x2007}, 0x4) 513.343483ms ago: executing program 1 (id=7741): r0 = socket$inet(0x2, 0x3, 0x100) bind$inet(r0, &(0x7f0000000000)={0x2, 0xffdf, @dev={0xac, 0x14, 0x14, 0x22}}, 0x10) connect$inet(r0, &(0x7f0000000080)={0x2, 0x0, @broadcast}, 0x10) 452.839535ms ago: executing program 1 (id=7742): r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040), 0x16d102, 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000006, 0x13, r0, 0x0) preadv2(r0, &(0x7f0000000100)=[{&(0x7f0000000240)=""/229, 0xe5}], 0x1, 0x722dd2d7, 0x7bc0, 0x19) 335.952189ms ago: executing program 1 (id=7743): syz_mount_image$ext4(&(0x7f0000000740)='ext4\x00', &(0x7f00000001c0)='./file1\x00', 0x208404, &(0x7f0000000280)={[{@nogrpid}, {@jqfmt_vfsv0}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x68}}, {@debug}, {@nombcache}, {@quota}, {}]}, 0x3, 0x43b, &(0x7f0000000300)="$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") r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='blkio.bfq.io_wait_time_recursive\x00', 0x275a, 0x0) quotactl_fd$Q_QUOTAON(r0, 0xffffffff80000202, 0x0, 0x0) 335.713149ms ago: executing program 4 (id=7744): syz_open_dev$cec(&(0x7f00000003c0), 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080), 0x0, &(0x7f0000000000)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r0}}) 257.220871ms ago: executing program 5 (id=7745): io_setup(0x1, &(0x7f0000000180)=0x0) r1 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000080), 0x0) io_submit(r0, 0x2, &(0x7f0000000280)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x5, 0x4, r1, 0x0}, &(0x7f0000000040)={0x0, 0x0, 0x2, 0x0, 0x6, r1, 0x0, 0x0, 0x3}]) 108.255046ms ago: executing program 1 (id=7746): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000780)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0) sendmsg$NFT_BATCH(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f00000002c0)=ANY=[@ANYBLOB="140000001000010000000000000000000300000a5c000000060a010400000000000000000a0000040900010073797a31000000000900020073797a3200000000300004802c0001800a0001006d6174636800c9211c0002800800024000000002080003000000000008000100736574"], 0x84}, 0x1, 0x0, 0x0, 0x4000850}, 0x24044010) 0s ago: executing program 5 (id=7747): r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f0000001140), r0) sendmsg$NLBL_UNLABEL_C_LIST(r0, &(0x7f0000001280)={0x0, 0x0, &(0x7f0000001240)={&(0x7f0000001180)={0x14, r1, 0x505, 0x70bd28, 0x25dfdbfb}, 0x14}, 0x1, 0x0, 0x0, 0x20008001}, 0x4000000) kernel console output (not intermixed with test programs): 045E:07DA.0046: ignoring exceeding usage max [ 721.145164][ T27] microsoft 0003:045E:07DA.0046: No inputs registered, leaving [ 721.175644][ T27] microsoft 0003:045E:07DA.0046: hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.5-1/input0 [ 721.211686][ T27] microsoft 0003:045E:07DA.0046: no inputs found [ 721.218114][ T27] microsoft 0003:045E:07DA.0046: could not initialize ff, continuing anyway [ 721.257659][ T27] usb 6-1: USB disconnect, device number 16 [ 721.444355][T21269] fido_id[21269]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.5/usb6/report_descriptor': No such file or directory [ 722.121576][ T27] usb 2-1: new high-speed USB device number 44 using dummy_hcd [ 722.187039][T21278] loop4: detected capacity change from 0 to 32768 [ 722.203499][T21278] BTRFS error: device /dev/loop4 already registered with a higher generation, found 8 expect 9 [ 722.324657][ T27] usb 2-1: Using ep0 maxpacket: 16 [ 722.368476][ T27] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 722.394856][ T27] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 722.419214][ T27] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 3 [ 722.432279][ T6848] BTRFS error: device /dev/loop4 already registered with a higher generation, found 8 expect 9 [ 722.449165][ T27] usb 2-1: New USB device found, idVendor=0955, idProduct=7214, bcdDevice=ed.00 [ 722.459844][ T27] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 722.492488][ T27] usb 2-1: config 0 descriptor?? [ 722.610394][ T1087] batman_adv: batadv0: IGMP Querier disappeared - multicast optimizations disabled [ 722.668345][T21299] loop5: detected capacity change from 0 to 1024 [ 722.722349][T21299] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 722.745609][T21305] loop4: detected capacity change from 0 to 256 [ 722.768434][T21299] ext4 filesystem being mounted at /645/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 722.966410][ T27] shield 0003:0955:7214.0047: unknown main item tag 0x0 [ 722.980489][T15172] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 723.006598][ T27] shield 0003:0955:7214.0047: unknown main item tag 0x0 [ 723.026962][ T27] shield 0003:0955:7214.0047: unknown main item tag 0x0 [ 723.049785][ T27] shield 0003:0955:7214.0047: unknown main item tag 0x0 [ 723.075746][ T27] shield 0003:0955:7214.0047: unknown main item tag 0x0 [ 723.109803][ T27] input: HID 0955:7214 Haptics as /devices/virtual/input/input49 [ 723.282918][ T27] shield 0003:0955:7214.0047: Registered Thunderstrike controller [ 723.312130][ T27] shield 0003:0955:7214.0047: : USB HID v0.00 Device [HID 0955:7214] on usb-dummy_hcd.1-1/input0 [ 723.418709][ T27] usb 2-1: USB disconnect, device number 44 [ 723.442741][ T23] shield 0003:0955:7214.0047: Failed to output Thunderstrike HOSTCMD request HID report due to -ENODEV [ 723.492680][ T23] shield 0003:0955:7214.0047: Failed to output Thunderstrike HOSTCMD request HID report due to -ENODEV [ 723.545121][ T23] shield 0003:0955:7214.0047: Failed to output Thunderstrike HOSTCMD request HID report due to -ENODEV [ 723.570659][ T23] shield 0003:0955:7214.0047: Failed to output Thunderstrike HOSTCMD request HID report due to -ENODEV [ 723.756264][T21327] netlink: 12 bytes leftover after parsing attributes in process `syz.0.6427'. [ 723.999177][T21331] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration [ 724.306964][T21325] loop4: detected capacity change from 0 to 32768 [ 724.321252][T21341] loop5: detected capacity change from 0 to 512 [ 724.322340][T21325] XFS: ikeep mount option is deprecated. [ 724.345340][T21341] EXT4-fs (loop5): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349) [ 724.383116][T21341] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a802e02c, mo2=0002] [ 724.391125][T21339] loop1: detected capacity change from 0 to 4096 [ 724.403163][T21339] ntfs3: loop1: Different NTFS sector size (4096) and media sector size (512). [ 724.425334][T21341] System zones: 1-12 [ 724.465501][T21341] EXT4-fs (loop5): orphan cleanup on readonly fs [ 724.476825][T21325] XFS (loop4): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d [ 724.497390][T21341] EXT4-fs error (device loop5): ext4_clear_blocks:883: inode #11: comm syz.5.6434: attempt to clear invalid blocks 1024 len 1 [ 724.557775][T21341] EXT4-fs (loop5): Remounting filesystem read-only [ 724.606428][T21325] XFS (loop4): Ending clean mount [ 724.650154][T21341] EXT4-fs (loop5): 1 truncate cleaned up [ 724.656584][T21339] ntfs3: loop1: failed to convert "c46c" to cp863 [ 724.685798][T21341] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000007 ro without journal. Quota mode: none. [ 724.792829][ T8240] XFS (loop4): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d [ 724.996241][T21352] bond0: option arp_interval: invalid value (18446744073709551615) [ 725.038619][T21352] bond0: option arp_interval: allowed values 0 - 2147483647 [ 725.051063][T15172] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000007. [ 725.494499][T21365] vivid-000: disconnect [ 725.509615][T21363] vivid-000: reconnect [ 725.728403][T21374] loop5: detected capacity change from 0 to 256 [ 726.212056][T21390] loop1: detected capacity change from 0 to 64 [ 726.628212][T21406] sch_tbf: peakrate 7 is lower than or equals to rate 6829859379779001161 ! [ 726.824042][T21410] bridge0: entered promiscuous mode [ 726.830576][T21410] macsec2: entered promiscuous mode [ 726.984260][T21414] vim2m vim2m.0: vidioc_s_fmt queue busy [ 727.024739][T21417] loop4: detected capacity change from 0 to 512 [ 727.114168][T21417] Quota error (device loop4): do_check_range: Getting dqdh_prev_free 1536 out of range 0-5 [ 727.148508][T21417] Quota error (device loop4): qtree_write_dquot: Error -117 occurred while creating quota [ 727.171694][T21417] EXT4-fs error (device loop4): ext4_acquire_dquot:6953: comm syz.4.6467: Failed to acquire dquot type 1 [ 727.211990][T21417] Quota error (device loop4): do_check_range: Getting dqdh_prev_free 1536 out of range 0-5 [ 727.225681][T21417] Quota error (device loop4): qtree_write_dquot: Error -117 occurred while creating quota [ 727.236142][T21417] EXT4-fs error (device loop4): ext4_acquire_dquot:6953: comm syz.4.6467: Failed to acquire dquot type 1 [ 727.264605][T21417] EXT4-fs error (device loop4): ext4_validate_block_bitmap:439: comm syz.4.6467: bg 0: block 248: padding at end of block bitmap is not set [ 727.292574][T21417] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6655: Corrupt filesystem [ 727.306392][T21417] Quota error (device loop4): do_check_range: Getting dqdh_prev_free 1536 out of range 0-5 [ 727.324992][T21417] Quota error (device loop4): qtree_write_dquot: Error -117 occurred while creating quota [ 727.336169][T21417] EXT4-fs error (device loop4): ext4_acquire_dquot:6953: comm syz.4.6467: Failed to acquire dquot type 1 [ 727.353954][T21417] EXT4-fs (loop4): 1 orphan inode deleted [ 727.362322][T21417] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 727.380897][T21417] ext4 filesystem being mounted at /1237/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 727.432097][ T5821] usb 2-1: new high-speed USB device number 45 using dummy_hcd [ 727.504815][ T8240] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 727.634224][ T5821] usb 2-1: config 0 interface 0 altsetting 6 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 727.664277][ T5821] usb 2-1: config 0 interface 0 has no altsetting 0 [ 727.671005][ T5821] usb 2-1: New USB device found, idVendor=0c12, idProduct=0005, bcdDevice= 0.00 [ 727.710928][T21433] IPVS: sync thread started: state = BACKUP, mcast_ifn = macvtap0, syncid = 4, id = 0 [ 727.712708][ T5821] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 727.734932][T21432] IPVS: stopping backup sync thread 21433 ... [ 727.747758][ T5821] usb 2-1: config 0 descriptor?? [ 727.829477][T21435] loop4: detected capacity change from 0 to 128 [ 727.867135][T21435] VFS: Found a Xenix FS (block size = 1024) on device loop4 [ 727.958751][ T8240] sysv_free_block: flc_count > flc_size [ 727.964969][ T8240] sysv_free_block: flc_count > flc_size [ 727.980907][ T8240] sysv_free_block: flc_count > flc_size [ 727.987553][ T8240] sysv_free_block: flc_count > flc_size [ 728.001498][ T8240] sysv_free_block: flc_count > flc_size [ 728.012716][ T8240] sysv_free_block: flc_count > flc_size [ 728.028721][ T8240] sysv_free_block: flc_count > flc_size [ 728.041917][ T8240] sysv_free_block: flc_count > flc_size [ 728.061514][ T8240] sysv_free_block: flc_count > flc_size [ 728.070439][ T8240] sysv_free_block: flc_count > flc_size [ 728.094869][ T8240] sysv_free_inode: inode 0,1,2 or nonexistent inode [ 728.204361][ T5821] zeroplus 0003:0C12:0005.0048: unknown main item tag 0x0 [ 728.216131][ T5821] zeroplus 0003:0C12:0005.0048: unknown main item tag 0x0 [ 728.223482][ T5821] zeroplus 0003:0C12:0005.0048: unknown main item tag 0x0 [ 728.230980][ T5821] zeroplus 0003:0C12:0005.0048: unknown main item tag 0x0 [ 728.239702][ T5821] zeroplus 0003:0C12:0005.0048: unknown main item tag 0x0 [ 728.250926][ T5821] zeroplus 0003:0C12:0005.0048: unknown main item tag 0x0 [ 728.258632][ T5821] zeroplus 0003:0C12:0005.0048: unbalanced collection at end of report description [ 728.269649][ T5821] zeroplus 0003:0C12:0005.0048: parse failed [ 728.301388][ T5821] zeroplus: probe of 0003:0C12:0005.0048 failed with error -22 [ 728.438792][ T5821] usb 2-1: USB disconnect, device number 45 [ 728.625005][ T28] audit: type=1326 audit(2000000311.990:4177): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21448 comm="syz.4.6481" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcfcdd9ce59 code=0x7ffc0000 [ 728.649304][ C0] vkms_vblank_simulate: vblank timer overrun [ 728.658285][ T28] audit: type=1326 audit(2000000311.990:4178): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21448 comm="syz.4.6481" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcfcdd9ce59 code=0x7ffc0000 [ 728.682609][ C0] vkms_vblank_simulate: vblank timer overrun [ 728.691491][ T28] audit: type=1326 audit(2000000312.010:4179): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21448 comm="syz.4.6481" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcfcdd9ce59 code=0x7ffc0000 [ 728.715677][ C0] vkms_vblank_simulate: vblank timer overrun [ 728.730634][ T28] audit: type=1326 audit(2000000312.010:4180): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21448 comm="syz.4.6481" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcfcdd9ce59 code=0x7ffc0000 [ 728.761697][ T787] usb 6-1: new high-speed USB device number 17 using dummy_hcd [ 728.967782][ T787] usb 6-1: New USB device found, idVendor=0547, idProduct=0201, bcdDevice=11.64 [ 728.987756][ T787] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 729.003164][ T787] usb 6-1: Product: syz [ 729.007399][ T787] usb 6-1: Manufacturer: syz [ 729.018865][ T787] usb 6-1: SerialNumber: syz [ 729.026931][ T787] usb 6-1: config 0 descriptor?? [ 729.049618][ T787] dvb-usb: found a 'Nebula Electronics uDigiTV DVB-T USB2.0)' in warm state. [ 729.079106][T21457] mkiss: ax0: crc mode is auto. [ 729.090336][ T787] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer. [ 729.105433][ T787] dvbdev: DVB: registering new adapter (Nebula Electronics uDigiTV DVB-T USB2.0)) [ 729.118872][ T787] usb 6-1: media controller created [ 729.167868][ T787] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered. [ 729.303391][ T787] DVB: Unable to find symbol mt352_attach() [ 729.350850][T21464] program syz.1.6487 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 729.417102][ T787] DVB: Unable to find symbol nxt6000_attach() [ 729.452400][ T787] dvb-usb: no frontend was attached by 'Nebula Electronics uDigiTV DVB-T USB2.0)' [ 729.482613][ T787] input: IR-receiver inside an USB DVB receiver as /devices/platform/dummy_hcd.5/usb6/6-1/input/input50 [ 729.525090][ T787] dvb-usb: schedule remote query interval to 1000 msecs. [ 729.548762][ T787] dvb-usb: Nebula Electronics uDigiTV DVB-T USB2.0) successfully initialized and connected. [ 729.577599][ T787] dvb-usb: bulk message failed: -22 (7/0) [ 729.597369][ T787] dvb-usb: bulk message failed: -22 (7/0) [ 729.615470][ T787] usb 6-1: USB disconnect, device number 17 [ 729.824617][ T787] dvb-usb: Nebula Electronics uDigiTV DVB-T USB2.0 successfully deinitialized and disconnected. [ 729.837719][T21476] loop1: detected capacity change from 0 to 1024 [ 730.417881][T15174] hid-generic 0000:FFFFFFFB:0000.0049: hidraw0: HID v6.fc Device [syz1] on syz1 [ 730.625284][T21494] fido_id[21494]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory [ 730.820466][T21506] netlink: 16 bytes leftover after parsing attributes in process `syz.5.6507'. [ 730.841964][T21506] netlink: 8 bytes leftover after parsing attributes in process `syz.5.6507'. [ 730.851157][T21506] netlink: 8 bytes leftover after parsing attributes in process `syz.5.6507'. [ 731.073837][T21513] netlink: 8 bytes leftover after parsing attributes in process `syz.4.6511'. [ 731.620500][T21526] bridge_slave_1: vlans aren't supported yet for dev_uc|mc_add() [ 731.657326][T15174] IPVS: starting estimator thread 0... [ 731.772212][T21529] IPVS: using max 19 ests per chain, 45600 per kthread [ 731.987664][T21516] loop1: detected capacity change from 0 to 32768 [ 732.075485][T21516] XFS (loop1): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d [ 732.235604][T21516] XFS (loop1): Ending clean mount [ 732.290445][T21516] XFS (loop1): Quotacheck needed: Please wait. [ 732.406624][T21551] loop4: detected capacity change from 0 to 64 [ 732.465818][T21516] XFS (loop1): Quotacheck: Done. [ 732.582822][T21555] netlink: 5 bytes leftover after parsing attributes in process `syz.0.6527'. [ 732.743397][ T5774] XFS (loop1): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d [ 733.777640][ T28] kauditd_printk_skb: 10 callbacks suppressed [ 733.777657][ T28] audit: type=1326 audit(2000000317.140:4191): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21593 comm="syz.0.6547" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f758c79ce59 code=0x0 [ 733.842748][T21596] loop5: detected capacity change from 0 to 512 [ 733.875070][T21596] EXT4-fs: Ignoring removed nomblk_io_submit option [ 733.951717][T21596] EXT4-fs error (device loop5): ext4_iget_extra_inode:4739: inode #15: comm syz.5.6548: corrupted in-inode xattr: invalid ea_ino [ 733.991100][T21596] EXT4-fs error (device loop5): ext4_orphan_get:1409: comm syz.5.6548: couldn't read orphan inode 15 (err -117) [ 734.037934][T21596] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 734.163095][T21596] EXT4-fs error (device loop5): ext4_do_update_inode:5255: inode #13: comm syz.5.6548: corrupted inode contents [ 734.250000][T21596] EXT4-fs error (device loop5): ext4_dirty_inode:6143: inode #13: comm syz.5.6548: mark_inode_dirty error [ 734.288778][T21596] EXT4-fs error (device loop5): ext4_free_branches:1030: inode #13: comm syz.5.6548: invalid indirect mapped block 234881024 (level 0) [ 734.346269][T21596] EXT4-fs error (device loop5): ext4_do_update_inode:5255: inode #13: comm syz.5.6548: corrupted inode contents [ 734.358839][T21596] EXT4-fs error (device loop5): ext4_truncate:4301: inode #13: comm syz.5.6548: mark_inode_dirty error [ 734.411491][T21596] EXT4-fs error (device loop5) in ext4_setattr:5682: Corrupt filesystem [ 734.427993][T21602] EXT4-fs error (device loop5): ext4_do_update_inode:5255: inode #13: comm syz.5.6548: corrupted inode contents [ 734.472237][T21602] EXT4-fs error (device loop5): __ext4_unlink:3342: inode #13: comm syz.5.6548: mark_inode_dirty error [ 734.572747][T15172] EXT4-fs error (device loop5): ext4_do_update_inode:5255: inode #13: comm syz-executor: corrupted inode contents [ 734.597441][T15172] EXT4-fs error (device loop5): ext4_evict_inode:254: inode #13: comm syz-executor: mark_inode_dirty error [ 734.611053][T15172] EXT4-fs warning (device loop5): ext4_evict_inode:257: couldn't mark inode dirty (err -117) [ 734.625691][T15172] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 735.049907][T21625] loop5: detected capacity change from 0 to 1024 [ 735.092354][T21625] EXT4-fs: Ignoring removed bh option [ 735.171109][T21625] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-001000000000 r/w without journal. Quota mode: writeback. [ 735.276272][T15172] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-001000000000. [ 735.962495][T21652] cgroup: fork rejected by pids controller in /syz5 [ 736.700101][ T997] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 736.876434][ T997] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 737.044266][ T997] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 737.169858][ T997] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 737.302442][T21684] syz.0.6587[21684] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 737.302609][T21684] syz.0.6587[21684] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 737.674753][ T997] tipc: Left network mode [ 737.765180][ T5792] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 737.778697][ T5792] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 737.804985][ T5792] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 737.818626][ T5792] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 737.841621][ T5792] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 737.849287][ T5792] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 737.910358][T21677] loop4: detected capacity change from 0 to 32768 [ 738.057063][T21677] XFS (loop4): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 738.288611][T21677] XFS (loop4): Ending clean mount [ 738.345061][T21677] XFS (loop4): Quotacheck needed: Please wait. [ 738.507037][T21677] XFS (loop4): Quotacheck: Done. [ 738.568534][T21692] lo speed is unknown, defaulting to 1000 [ 738.802706][T21726] block device autoloading is deprecated and will be removed. [ 738.817298][T21726] syz.0.6594: attempt to access beyond end of device [ 738.817298][T21726] md34: rw=2048, sector=0, nr_sectors = 8 limit=0 [ 738.876521][ T8240] XFS (loop4): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 739.285610][T21737] mkiss: ax0: crc mode is auto. [ 739.713850][T21743] loop4: detected capacity change from 0 to 256 [ 739.763541][T21743] exFAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 739.820492][T21743] exFAT-fs (loop4): Medium has reported failures. Some data may be lost. [ 739.833624][ C0] vkms_vblank_simulate: vblank timer overrun [ 739.864890][T21743] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d) [ 739.911801][ T5792] Bluetooth: hci3: command tx timeout [ 740.119683][T21750] loop1: detected capacity change from 0 to 256 [ 740.155983][T21692] chnl_net:caif_netlink_parms(): no params data found [ 740.204713][T21750] FAT-fs (loop1): Directory bread(block 64) failed [ 740.241411][T21750] FAT-fs (loop1): Directory bread(block 65) failed [ 740.248152][T21750] FAT-fs (loop1): Directory bread(block 66) failed [ 740.295667][T21750] FAT-fs (loop1): Directory bread(block 67) failed [ 740.313592][T21750] FAT-fs (loop1): Directory bread(block 68) failed [ 740.320181][T21750] FAT-fs (loop1): Directory bread(block 69) failed [ 740.392085][T21750] FAT-fs (loop1): Directory bread(block 70) failed [ 740.404667][T21750] FAT-fs (loop1): Directory bread(block 71) failed [ 740.412281][T21750] FAT-fs (loop1): Directory bread(block 72) failed [ 740.418864][T21750] FAT-fs (loop1): Directory bread(block 73) failed [ 740.753550][T21762] netlink: 4 bytes leftover after parsing attributes in process `syz.4.6604'. [ 741.025251][T21762] team0 (unregistering): Port device team_slave_0 removed [ 741.059937][T21762] team0 (unregistering): Port device team_slave_1 removed [ 741.242074][ T5821] usb 2-1: new high-speed USB device number 46 using dummy_hcd [ 741.430576][ T997] hsr_slave_0: left promiscuous mode [ 741.438382][ T997] hsr_slave_1: left promiscuous mode [ 741.445426][ T5821] usb 2-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7 [ 741.461699][ T997] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 741.478872][ T5821] usb 2-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47 [ 741.489713][ T997] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 741.500612][ T997] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 741.510901][ T5821] usb 2-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d [ 741.521094][ T997] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 741.541108][ T5821] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 741.553139][ T997] bridge0: port 3(batadv0) entered disabled state [ 741.572641][T21766] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22 [ 741.584365][ T5821] usb 2-1: Quirk or no altest; falling back to MIDI 1.0 [ 741.603786][ T997] bridge_slave_1: left allmulticast mode [ 741.609508][ T997] bridge_slave_1: left promiscuous mode [ 741.635490][ T997] bridge0: port 2(bridge_slave_1) entered disabled state [ 741.683964][ T997] bridge_slave_0: left allmulticast mode [ 741.699947][ T997] bridge_slave_0: left promiscuous mode [ 741.715639][ T997] bridge0: port 1(bridge_slave_0) entered disabled state [ 741.872290][ T997] bridge0: left promiscuous mode [ 741.878870][ T997] veth1_macvtap: left promiscuous mode [ 741.895710][ T997] veth0_macvtap: left promiscuous mode [ 741.919466][ T997] veth1_vlan: left promiscuous mode [ 741.931552][ T997] veth0_vlan: left promiscuous mode [ 742.002547][ T5792] Bluetooth: hci3: command tx timeout [ 742.091544][ T5821] usb 2-1: USB disconnect, device number 46 [ 743.165284][T21795] Falling back ldisc for ttyS3. [ 743.433513][ T997] team0 (unregistering): Port device team_slave_1 removed [ 743.509351][ T997] team0 (unregistering): Port device team_slave_0 removed [ 743.577065][ T997] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 743.659466][ T997] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 744.087571][T17244] Bluetooth: hci3: command tx timeout [ 744.248194][ T997] bond0 (unregistering): Released all slaves [ 744.421169][T21692] bridge0: port 1(bridge_slave_0) entered blocking state [ 744.452622][T21692] bridge0: port 1(bridge_slave_0) entered disabled state [ 744.460913][T21692] bridge_slave_0: entered allmulticast mode [ 744.481731][T21692] bridge_slave_0: entered promiscuous mode [ 744.490853][T21692] bridge0: port 2(bridge_slave_1) entered blocking state [ 744.511219][T21692] bridge0: port 2(bridge_slave_1) entered disabled state [ 744.518986][T21692] bridge_slave_1: entered allmulticast mode [ 744.527007][T21692] bridge_slave_1: entered promiscuous mode [ 744.600018][T21692] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 744.699137][T21692] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 744.866529][T21692] team0: Port device team_slave_0 added [ 744.919461][T21692] team0: Port device team_slave_1 added [ 745.010199][T21829] mkiss: ax0: crc mode is auto. [ 745.066537][T21692] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 745.112052][T21692] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 745.181844][T21692] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 745.238647][T21692] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 745.248256][T21692] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 745.319187][T21692] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 745.356898][ T997] IPVS: stop unused estimator thread 0... [ 745.497383][T21692] hsr_slave_0: entered promiscuous mode [ 745.538923][T21692] hsr_slave_1: entered promiscuous mode [ 745.550209][T21692] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 745.565629][T21692] Cannot create hsr debugfs directory [ 746.012250][T21831] loop1: detected capacity change from 0 to 32768 [ 746.083207][T21831] XFS (loop1): Mounting V5 Filesystem ed37bf6e-74ea-4e01-afba-5fee274b0f3a [ 746.152292][T17244] Bluetooth: hci3: command tx timeout [ 746.237149][T21831] XFS (loop1): Ending clean mount [ 746.242633][T21859] comedi comedi3: 8255: I/O port conflict (0x5,4) [ 746.266979][T21859] comedi comedi3: 8255: I/O port conflict (0xffffffffffffff00,4) [ 746.283493][T21859] comedi comedi3: 8255: I/O port conflict (0x5,4) [ 746.306265][T21859] comedi comedi3: 8255: I/O port conflict (0x80007,4) [ 746.327040][T21859] comedi comedi3: 8255: I/O port conflict (0x5,4) [ 746.384834][T21859] comedi comedi3: 8255: I/O port conflict (0x100,4) [ 746.414966][T21859] comedi comedi3: 8255: I/O port conflict (0x9,4) [ 746.450420][T21859] comedi comedi3: 8255: I/O port conflict (0x1,4) [ 746.482404][T21859] comedi comedi3: 8255: I/O port conflict (0x5,4) [ 746.545282][ T5774] XFS (loop1): Unmounting Filesystem ed37bf6e-74ea-4e01-afba-5fee274b0f3a [ 747.375705][T21692] netdevsim netdevsim5 netdevsim0: renamed from eth0 [ 747.396647][T21692] netdevsim netdevsim5 netdevsim1: renamed from eth1 [ 747.409163][T21692] netdevsim netdevsim5 netdevsim2: renamed from eth2 [ 747.445440][T21692] netdevsim netdevsim5 netdevsim3: renamed from eth3 [ 747.659263][T21872] loop4: detected capacity change from 0 to 32768 [ 747.706804][T21692] 8021q: adding VLAN 0 to HW filter on device bond0 [ 747.706834][T21872] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop4 scanned by syz.4.6641 (21872) [ 747.758390][ T1280] ieee802154 phy0 wpan0: encryption failed: -22 [ 747.784275][T21872] BTRFS info (device loop4): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 747.800121][T21692] 8021q: adding VLAN 0 to HW filter on device team0 [ 747.805612][T21872] BTRFS info (device loop4): using sha256 (sha256-avx2) checksum algorithm [ 747.853657][ T997] bridge0: port 1(bridge_slave_0) entered blocking state [ 747.860876][ T997] bridge0: port 1(bridge_slave_0) entered forwarding state [ 747.871738][T21872] BTRFS info (device loop4): enabling auto defrag [ 747.878247][T21872] BTRFS info (device loop4): use no compression [ 747.912052][T21872] BTRFS info (device loop4): max_inline at 4096 [ 747.918402][T21872] BTRFS info (device loop4): using free space tree [ 747.955434][ T997] bridge0: port 2(bridge_slave_1) entered blocking state [ 747.962687][ T997] bridge0: port 2(bridge_slave_1) entered forwarding state [ 748.199483][T21872] BTRFS info (device loop4): enabling ssd optimizations [ 748.227830][T21692] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 748.238956][T21872] BTRFS info (device loop4): auto enabling async discard [ 748.239319][T17244] Bluetooth: hci3: command tx timeout [ 748.674010][ T8240] BTRFS info (device loop4): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 748.959754][T21895] loop1: detected capacity change from 0 to 32768 [ 748.998373][ T6848] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 10 /dev/loop4 scanned by udevd (6848) [ 749.074886][T21895] BTRFS: device fsid 3a375e4e-b156-4d76-a2ad-16e198ce1409 devid 1 transid 8 /dev/loop1 scanned by syz.1.6648 (21895) [ 749.143551][T21895] BTRFS info (device loop1): first mount of filesystem 3a375e4e-b156-4d76-a2ad-16e198ce1409 [ 749.172316][T21692] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 749.201631][T21895] BTRFS info (device loop1): using xxhash64 (xxhash64-generic) checksum algorithm [ 749.227557][T21895] BTRFS info (device loop1): using free space tree [ 749.581529][T21895] BTRFS info (device loop1): enabling ssd optimizations [ 749.588569][T21895] BTRFS info (device loop1): auto enabling async discard [ 749.848928][ T28] audit: type=1800 audit(2000000333.210:4192): pid=21895 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.6648" name="file1" dev="loop1" ino=260 res=0 errno=0 [ 750.260462][T21895] BTRFS info (device loop1): balance: start -sconvert=raid0,soft [ 750.427929][T21895] BTRFS info (device loop1): relocating block group 1048576 flags system [ 750.503322][T21895] BTRFS info (device loop1): balance: canceled [ 750.549069][T21936] loop4: detected capacity change from 0 to 32768 [ 750.566921][T21692] veth0_vlan: entered promiscuous mode [ 750.630055][T21692] veth1_vlan: entered promiscuous mode [ 750.786407][T21692] veth0_macvtap: entered promiscuous mode [ 750.811870][ T5774] BTRFS info (device loop1): last unmount of filesystem 3a375e4e-b156-4d76-a2ad-16e198ce1409 [ 750.834794][T21692] veth1_macvtap: entered promiscuous mode [ 750.924535][T21692] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 751.000740][T21692] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 751.038666][T21692] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 751.084045][T21692] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 751.113104][T21692] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 751.141296][T21692] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 751.173109][T21692] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 751.274480][T21692] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 751.341331][T21692] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 751.371289][T21692] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 751.411314][T21692] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 751.440741][T21692] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 751.462505][T21692] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 751.493525][T21692] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 751.533303][T21692] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 751.588644][T21692] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 751.650440][T21692] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 751.691873][T21692] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 751.782909][T21978] loop4: detected capacity change from 0 to 8192 [ 751.832238][T21978] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 751.867436][T21978] REISERFS (device loop4): found reiserfs format "3.6" with non-standard journal [ 751.938055][T21978] REISERFS (device loop4): using ordered data mode [ 752.012565][T21978] reiserfs: using flush barriers [ 752.048475][T21978] REISERFS (device loop4): journal params: device loop4, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 752.126136][ T997] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 752.153483][T21978] REISERFS (device loop4): checking transaction log (loop4) [ 752.171171][ T997] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 752.256567][T21982] loop1: detected capacity change from 0 to 8192 [ 752.282272][ T3486] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 752.290175][ T3486] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 752.344338][T21982] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 752.458178][T21982] REISERFS (device loop1): found reiserfs format "3.6" with non-standard journal [ 752.534924][T21982] REISERFS (device loop1): using ordered data mode [ 752.542649][T21982] reiserfs: using flush barriers [ 752.578109][T21978] REISERFS (device loop4): Using tea hash to sort names [ 752.599222][T21982] REISERFS (device loop1): journal params: device loop1, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 752.615884][T21978] REISERFS (device loop4): Created .reiserfs_priv - reserved for xattr storage. [ 752.687241][T21982] REISERFS (device loop1): checking transaction log (loop1) [ 752.858392][T21996] netlink: 'syz.5.6583': attribute type 1 has an invalid length. [ 753.098625][T21982] REISERFS (device loop1): Using tea hash to sort names [ 753.148238][T21982] REISERFS (device loop1): Created .reiserfs_priv - reserved for xattr storage. [ 754.567338][T22038] loop5: detected capacity change from 0 to 64 [ 755.142297][T15174] usb 2-1: new high-speed USB device number 47 using dummy_hcd [ 755.352856][T15174] usb 2-1: Using ep0 maxpacket: 32 [ 755.367539][T15174] usb 2-1: config 0 has an invalid interface number: 67 but max is 0 [ 755.388256][T15174] usb 2-1: config 0 has no interface number 0 [ 755.410878][T15174] usb 2-1: New USB device found, idVendor=0424, idProduct=9901, bcdDevice=c2.57 [ 755.433555][T15174] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 755.452780][T15174] usb 2-1: Product: syz [ 755.458016][T15174] usb 2-1: Manufacturer: syz [ 755.475364][T15174] usb 2-1: SerialNumber: syz [ 755.489297][T15174] usb 2-1: config 0 descriptor?? [ 755.499135][T15174] smsc95xx v2.0.0 [ 756.124982][T15174] smsc95xx 2-1:0.67 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000030: -71 [ 756.158689][T15174] smsc95xx 2-1:0.67 (unnamed net_device) (uninitialized): Error reading E2P_CMD [ 756.180224][T15174] smsc95xx 2-1:0.67 (unnamed net_device) (uninitialized): Failed to write reg index 0x00000014: -71 [ 756.212354][T15174] smsc95xx: probe of 2-1:0.67 failed with error -71 [ 756.243156][T15174] usb 2-1: USB disconnect, device number 47 [ 756.375606][T22091] netlink: 8 bytes leftover after parsing attributes in process `syz.0.6688'. [ 756.387831][T22091] netlink: 'syz.0.6688': attribute type 5 has an invalid length. [ 756.397679][T22091] netlink: 20 bytes leftover after parsing attributes in process `syz.0.6688'. [ 756.415862][T22091] netdevsim netdevsim0 eth0: set [1, 1] type 2 family 0 port 46488 - 0 [ 756.429891][T22091] netdevsim netdevsim0 eth1: set [1, 1] type 2 family 0 port 46488 - 0 [ 756.451083][T22091] netdevsim netdevsim0 eth2: set [1, 1] type 2 family 0 port 46488 - 0 [ 756.473520][ T28] audit: type=1326 audit(2000000339.840:4193): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22092 comm="syz.5.6689" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa0d4d9ce59 code=0x7ffc0000 [ 756.498952][T22091] netdevsim netdevsim0 eth3: set [1, 1] type 2 family 0 port 46488 - 0 [ 756.514424][T22091] netdevsim netdevsim0 eth0: set [1, 2] type 2 family 0 port 43906 - 0 [ 756.524077][T22091] netdevsim netdevsim0 eth1: set [1, 2] type 2 family 0 port 43906 - 0 [ 756.534936][T22091] netdevsim netdevsim0 eth2: set [1, 2] type 2 family 0 port 43906 - 0 [ 756.537554][ T28] audit: type=1326 audit(2000000339.840:4194): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22092 comm="syz.5.6689" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa0d4d9ce59 code=0x7ffc0000 [ 756.550483][T22091] netdevsim netdevsim0 eth3: set [1, 2] type 2 family 0 port 43906 - 0 [ 756.605932][ T28] audit: type=1326 audit(2000000339.850:4195): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22092 comm="syz.5.6689" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=53 compat=0 ip=0x7fa0d4d9ce59 code=0x7ffc0000 [ 756.622013][T22091] geneve2: entered promiscuous mode [ 756.649916][ T28] audit: type=1326 audit(2000000339.850:4196): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22092 comm="syz.5.6689" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa0d4d9ce59 code=0x7ffc0000 [ 756.689721][T22091] geneve2: entered allmulticast mode [ 756.737352][ T28] audit: type=1326 audit(2000000339.850:4197): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22092 comm="syz.5.6689" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=299 compat=0 ip=0x7fa0d4d9ce59 code=0x7ffc0000 [ 756.815002][ T28] audit: type=1326 audit(2000000339.850:4198): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22092 comm="syz.5.6689" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa0d4d9ce59 code=0x7ffc0000 [ 756.901574][ T28] audit: type=1326 audit(2000000339.850:4199): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22092 comm="syz.5.6689" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa0d4d9ce59 code=0x7ffc0000 [ 757.028213][T22105] loop4: detected capacity change from 0 to 256 [ 757.642465][T22117] loop4: detected capacity change from 0 to 4096 [ 757.663864][T22117] ntfs3: loop4: Different NTFS sector size (4096) and media sector size (512). [ 758.222436][T21666] usb 6-1: new high-speed USB device number 18 using dummy_hcd [ 758.394752][T22138] loop4: detected capacity change from 0 to 1764 [ 758.421060][T22138] ISOFS: root inode is unusable. Disabling Rock Ridge and switching to Joliet. [ 758.431495][T21666] usb 6-1: Using ep0 maxpacket: 8 [ 758.452975][T21666] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 758.486011][T21666] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 758.522263][T21666] usb 6-1: New USB device found, idVendor=057e, idProduct=200e, bcdDevice= 0.00 [ 758.534284][T21666] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 758.571894][T21666] usb 6-1: config 0 descriptor?? [ 759.042162][T21666] nintendo 0003:057E:200E.004A: ignoring exceeding usage max [ 759.052027][T21666] nintendo 0003:057E:200E.004A: unknown main item tag 0x0 [ 759.059227][T21666] nintendo 0003:057E:200E.004A: unknown main item tag 0x0 [ 759.066527][T21666] nintendo 0003:057E:200E.004A: unknown main item tag 0x0 [ 759.074724][T21666] nintendo 0003:057E:200E.004A: unknown main item tag 0x0 [ 759.081987][T21666] nintendo 0003:057E:200E.004A: unknown main item tag 0x0 [ 759.089167][T21666] nintendo 0003:057E:200E.004A: unknown main item tag 0x0 [ 759.096592][T21666] nintendo 0003:057E:200E.004A: unknown main item tag 0x0 [ 759.103868][T21666] nintendo 0003:057E:200E.004A: unknown main item tag 0x0 [ 759.111102][T21666] nintendo 0003:057E:200E.004A: item fetching failed at offset 42/43 [ 759.120471][T21666] nintendo 0003:057E:200E.004A: HID parse failed [ 759.171368][T21666] nintendo 0003:057E:200E.004A: probe - fail = -22 [ 759.178589][T21666] nintendo: probe of 0003:057E:200E.004A failed with error -22 [ 759.343888][T15174] usb 6-1: USB disconnect, device number 18 [ 759.460267][T22149] loop4: detected capacity change from 0 to 32768 [ 759.491472][T22149] XFS (loop4): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d [ 759.545841][T22149] XFS (loop4): Ending clean mount [ 759.617236][ T8240] XFS (loop4): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d [ 760.058776][T22169] netlink: 209836 bytes leftover after parsing attributes in process `syz.5.6719'. [ 760.096134][T22171] netlink: 236 bytes leftover after parsing attributes in process `syz.1.6720'. [ 760.961381][T21666] usb 2-1: new full-speed USB device number 48 using dummy_hcd [ 760.990492][T22174] loop4: detected capacity change from 0 to 32768 [ 761.071768][T22174] XFS (loop4): Mounting V5 Filesystem ed37bf6e-74ea-4e01-afba-5fee274b0f3a [ 761.166585][T21666] usb 2-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3 [ 761.177372][T21666] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 761.226220][T21666] usb 2-1: config 0 descriptor?? [ 761.242250][T22174] XFS (loop4): Ending clean mount [ 761.269884][T21666] cp210x 2-1:0.0: cp210x converter detected [ 761.428537][ T8240] XFS (loop4): Unmounting Filesystem ed37bf6e-74ea-4e01-afba-5fee274b0f3a [ 761.586277][T22207] netlink: 16 bytes leftover after parsing attributes in process `syz.0.6734'. [ 761.635964][T22207] netlink: 64 bytes leftover after parsing attributes in process `syz.0.6734'. [ 761.756808][T21666] usb 2-1: cp210x converter now attached to ttyUSB0 [ 761.987870][ T27] usb 2-1: USB disconnect, device number 48 [ 762.005054][ T27] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0 [ 762.038111][ T27] cp210x 2-1:0.0: device disconnected [ 762.206664][T22205] loop5: detected capacity change from 0 to 32768 [ 762.220654][T22205] BTRFS: device fsid 3a375e4e-b156-4d76-a2ad-16e198ce1409 devid 1 transid 8 /dev/loop5 scanned by syz.5.6732 (22205) [ 762.248223][T22205] BTRFS info (device loop5): first mount of filesystem 3a375e4e-b156-4d76-a2ad-16e198ce1409 [ 762.265182][T22205] BTRFS info (device loop5): using xxhash64 (xxhash64-generic) checksum algorithm [ 762.275775][T22205] BTRFS info (device loop5): using free space tree [ 762.330048][T22205] BTRFS info (device loop5): enabling ssd optimizations [ 762.341477][T22205] BTRFS info (device loop5): auto enabling async discard [ 762.397015][ T28] audit: type=1800 audit(2000000345.760:4200): pid=22205 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.6732" name="file1" dev="loop5" ino=260 res=0 errno=0 [ 762.456747][T22205] BTRFS info (device loop5): balance: start -sconvert=raid0,soft [ 762.478976][T22205] BTRFS info (device loop5): relocating block group 1048576 flags system [ 762.702895][T22205] BTRFS info (device loop5): balance: ended with status: 0 [ 762.801627][T21692] BTRFS info (device loop5): last unmount of filesystem 3a375e4e-b156-4d76-a2ad-16e198ce1409 [ 764.540057][T22280] loop5: detected capacity change from 0 to 8192 [ 764.572130][T22280] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 764.585896][T22280] REISERFS (device loop5): found reiserfs format "3.6" with non-standard journal [ 764.601953][T22280] REISERFS (device loop5): using ordered data mode [ 764.610306][T22280] reiserfs: using flush barriers [ 764.617783][T22280] REISERFS (device loop5): journal params: device loop5, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 764.636809][T22280] REISERFS (device loop5): checking transaction log (loop5) [ 764.850962][T22280] REISERFS (device loop5): Using tea hash to sort names [ 764.864785][T22280] REISERFS warning (device loop5): vs-13060 reiserfs_update_sd_size: stat data of object [1 2 0x0 SD] (nlink == 4) not found (pos 2) [ 764.887899][T22280] REISERFS (device loop5): Created .reiserfs_priv - reserved for xattr storage. [ 765.700575][T22305] netlink: 20 bytes leftover after parsing attributes in process `syz.5.6763'. [ 765.749560][T22304] ÿÿÿÿÿÿ000000000: renamed from lo (while UP) [ 765.860575][T22314] loop5: detected capacity change from 0 to 256 [ 765.875203][T22314] FAT-fs (loop5): "posix" option is obsolete, not supported now [ 766.517000][T22318] loop1: detected capacity change from 0 to 32768 [ 766.594713][T22318] read_mapping_page failed! [ 766.620971][T22318] ERROR: (device loop1): txCommit: [ 766.620971][T22318] [ 767.430779][T22354] IPVS: sync thread started: state = MASTER, mcast_ifn = vcan0, syncid = 0, id = 0 [ 767.602790][ T28] audit: type=1326 audit(2000000350.950:4201): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22360 comm="syz.1.6793" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4b0539ce59 code=0x7ffc0000 [ 767.660778][ T28] audit: type=1326 audit(2000000351.000:4202): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22360 comm="syz.1.6793" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f4b0539ce59 code=0x7ffc0000 [ 767.729283][ T28] audit: type=1326 audit(2000000351.000:4203): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22360 comm="syz.1.6793" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4b0539ce59 code=0x7ffc0000 [ 767.793377][ T28] audit: type=1326 audit(2000000351.000:4204): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22360 comm="syz.1.6793" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4b0539ce59 code=0x7ffc0000 [ 767.848009][ T28] audit: type=1326 audit(2000000351.000:4205): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22360 comm="syz.1.6793" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=50 compat=0 ip=0x7f4b0539ce59 code=0x7ffc0000 [ 767.942162][ T28] audit: type=1326 audit(2000000351.000:4206): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22360 comm="syz.1.6793" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4b0539ce59 code=0x7ffc0000 [ 768.004195][ T28] audit: type=1326 audit(2000000351.000:4207): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22360 comm="syz.1.6793" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4b0539ce59 code=0x7ffc0000 [ 768.242275][ T9] usb 2-1: new full-speed USB device number 49 using dummy_hcd [ 768.258983][T22377] rdma_op ffff888023fb01f0 conn xmit_rdma 0000000000000000 [ 768.465893][ T9] usb 2-1: too many endpoints for config 0 interface 0 altsetting 0: 254, using maximum allowed: 30 [ 768.495187][ T9] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 1023, setting to 64 [ 768.512162][ T9] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 254 [ 768.530629][ T9] usb 2-1: New USB device found, idVendor=056a, idProduct=005e, bcdDevice= 0.00 [ 768.540518][ T9] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 768.571156][ T9] usb 2-1: config 0 descriptor?? [ 768.587011][T22371] raw-gadget.1 gadget.1: fail, usb_ep_enable returned -22 [ 768.608304][T22367] loop5: detected capacity change from 0 to 40427 [ 768.616835][T22367] F2FS-fs (loop5): Invalid log_blocksize (268), supports only 12 [ 768.642315][T22367] F2FS-fs (loop5): Can't find valid F2FS filesystem in 1th superblock [ 768.707204][T22367] F2FS-fs (loop5): Found nat_bits in checkpoint [ 768.765632][T22386] netlink: 4 bytes leftover after parsing attributes in process `syz.4.6804'. [ 768.796724][T22367] F2FS-fs (loop5): Try to recover 1th superblock, ret: 0 [ 768.818179][T22367] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e5 [ 769.034543][T22389] netlink: 16 bytes leftover after parsing attributes in process `syz.4.6806'. [ 769.043943][T22389] netlink: 16 bytes leftover after parsing attributes in process `syz.4.6806'. [ 769.076006][ T9] hid (null): global environment stack underflow [ 769.347507][ T787] usb 2-1: USB disconnect, device number 49 [ 769.636603][T22406] loop4: detected capacity change from 0 to 512 [ 769.746100][T22406] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback. [ 769.802314][T22406] ext4 filesystem being mounted at /1346/file2 supports timestamps until 2038-01-19 (0x7fffffff) [ 769.939206][T22417] loop5: detected capacity change from 0 to 128 [ 769.969497][T22406] Quota error (device loop4): do_check_range: Getting dqdh_next_free 4294967294 out of range 0-8 [ 769.992845][T22406] Quota error (device loop4): qtree_write_dquot: Error -117 occurred while creating quota [ 770.011648][T22406] EXT4-fs error (device loop4): ext4_acquire_dquot:6953: comm syz.4.6812: Failed to acquire dquot type 0 [ 770.183319][ T8240] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000d40000. [ 770.475077][ T28] audit: type=1400 audit(2000000353.840:4208): apparmor="DENIED" operation="change_profile" class="file" info="label not found" error=-2 profile="unconfined" name=2626200D03 pid=22434 comm="syz.1.6825" [ 770.644829][T22440] loop4: detected capacity change from 0 to 256 [ 771.011669][T22445] loop5: detected capacity change from 0 to 4096 [ 771.043585][T22445] ntfs3: loop5: Different NTFS sector size (4096) and media sector size (512). [ 771.114515][T22445] ntfs3: loop5: It is recommened to use chkdsk. [ 771.349405][T22445] ntfs3: loop5: failed to convert "076c" to cp874 [ 771.411612][T22445] ntfs3: loop5: ino=5, "/" directory corrupted [ 771.428276][T22464] loop1: detected capacity change from 0 to 512 [ 771.553108][T22464] EXT4-fs error (device loop1): dx_probe:823: inode #2: comm syz.1.6836: Directory hole found for htree index block 0 [ 771.670351][T22464] EXT4-fs (loop1): Cannot turn on journaled quota: type 1: error -117 [ 771.727143][T22464] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 771.957954][ T5774] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 772.278190][T22487] loop1: detected capacity change from 0 to 2048 [ 772.343846][T22487] UDF-fs: error (device loop1): udf_read_tagged: tag version 0x0000 != 0x0002 || 0x0003, block 0 [ 772.390035][T22487] UDF-fs: warning (device loop1): udf_load_vrs: No anchor found [ 772.408361][T22487] UDF-fs: Scanning with blocksize 512 failed [ 772.445031][T22487] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 773.632049][ T9] usb 5-1: new full-speed USB device number 42 using dummy_hcd [ 773.848193][ T9] usb 5-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3 [ 773.863469][ T9] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 773.893305][ T9] usb 5-1: config 0 descriptor?? [ 773.917387][ T9] cp210x 5-1:0.0: cp210x converter detected [ 773.931942][T22542] netlink: 12 bytes leftover after parsing attributes in process `syz.0.6862'. [ 774.337699][ T9] usb 5-1: cp210x converter now attached to ttyUSB0 [ 774.518125][T22534] loop1: detected capacity change from 0 to 40427 [ 774.560896][ T27] usb 5-1: USB disconnect, device number 42 [ 774.567030][T22534] F2FS-fs (loop1): Invalid SB checksum offset: 0 [ 774.583082][T22534] F2FS-fs (loop1): Can't find valid F2FS filesystem in 2th superblock [ 774.610466][ T27] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0 [ 774.620655][T22534] F2FS-fs (loop1): invalid crc value [ 774.629129][T22555] netlink: 4 bytes leftover after parsing attributes in process `syz.5.6868'. [ 774.643937][ T27] cp210x 5-1:0.0: device disconnected [ 774.897571][T22534] F2FS-fs (loop1): Try to recover 2th superblock, ret: 0 [ 774.934447][T22534] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5 [ 775.087017][T22570] netlink: 'syz.5.6873': attribute type 1 has an invalid length. [ 775.236047][T22572] loop5: detected capacity change from 0 to 4096 [ 775.332803][T22574] loop4: detected capacity change from 0 to 256 [ 775.343268][T22574] exfat: Deprecated parameter 'namecase' [ 775.356647][T22575] NILFS (loop5): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 775.379656][T22574] exfat: Deprecated parameter 'namecase' [ 775.421359][T22574] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0x8300b014, utbl_chksum : 0xe619d30d) [ 775.903991][T22584] loop5: detected capacity change from 0 to 128 [ 775.929903][T22580] loop1: detected capacity change from 0 to 4096 [ 775.938806][T22580] ntfs3: loop1: Different NTFS sector size (4096) and media sector size (512). [ 776.009662][T22584] FAT-fs (loop5): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 776.048731][T22580] ntfs3: loop1: ino=3, ntfs_set_state failed, -22. [ 776.063449][T22580] ntfs3: loop1: Failed to initialize $Extend/$Reparse. [ 776.109807][T22584] syz.5.6880: attempt to access beyond end of device [ 776.109807][T22584] loop5: rw=2051, sector=112, nr_sectors = 940 limit=128 [ 776.193265][T22580] ntfs3: loop1: ino=1e, "file1" encrypted i/o not supported [ 776.310841][ T3486] ntfs3: loop1: ino=3, ntfs3_write_inode failed, -22. [ 776.324562][ T5774] ntfs3: loop1: ino=3, ntfs_set_state failed, -22. [ 776.331744][ T5774] ntfs3: loop1: Mark volume as dirty due to NTFS errors [ 776.338839][ T5774] ntfs3: loop1: ino=3, ntfs_set_state failed, -22. [ 776.346220][ T3486] ntfs3: loop1: ino=3, ntfs3_write_inode failed, -22. [ 776.468946][ T28] audit: type=1326 audit(2000000359.830:4209): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22592 comm="syz.0.6886" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f758c79ce59 code=0x7ffc0000 [ 776.554548][ T28] audit: type=1326 audit(2000000359.830:4210): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22592 comm="syz.0.6886" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f758c79ce59 code=0x7ffc0000 [ 776.632458][ T28] audit: type=1326 audit(2000000359.870:4211): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22592 comm="syz.0.6886" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f758c79ce59 code=0x7ffc0000 [ 776.711395][ T28] audit: type=1326 audit(2000000359.870:4212): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22592 comm="syz.0.6886" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f758c79ce59 code=0x7ffc0000 [ 776.811536][ T28] audit: type=1326 audit(2000000359.870:4213): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22592 comm="syz.0.6886" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f758c79ce59 code=0x7ffc0000 [ 776.867454][ T28] audit: type=1326 audit(2000000359.870:4214): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22592 comm="syz.0.6886" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f758c79ce59 code=0x7ffc0000 [ 776.928874][ T28] audit: type=1326 audit(2000000359.870:4215): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22592 comm="syz.0.6886" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f758c79ce59 code=0x7ffc0000 [ 776.972367][ T28] audit: type=1326 audit(2000000359.890:4216): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22592 comm="syz.0.6886" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f758c79ce59 code=0x7ffc0000 [ 777.030951][ T28] audit: type=1326 audit(2000000359.890:4217): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22592 comm="syz.0.6886" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f758c79ce59 code=0x7ffc0000 [ 777.121892][ T28] audit: type=1326 audit(2000000359.890:4218): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22592 comm="syz.0.6886" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=200 compat=0 ip=0x7f758c79ce59 code=0x7ffc0000 [ 777.149529][ T9] usb 2-1: new high-speed USB device number 50 using dummy_hcd [ 777.379824][ T9] usb 2-1: config 0 interface 0 altsetting 251 endpoint 0x9 has invalid wMaxPacketSize 0 [ 777.392565][ T9] usb 2-1: config 0 interface 0 has no altsetting 0 [ 777.418259][ T9] usb 2-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b [ 777.445297][ T9] usb 2-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2 [ 777.485894][ T9] usb 2-1: Product: syz [ 777.490137][ T9] usb 2-1: Manufacturer: syz [ 777.506049][ T9] usb 2-1: SerialNumber: syz [ 777.523288][ T9] usb 2-1: config 0 descriptor?? [ 777.549391][ T9] usb 2-1: selecting invalid altsetting 0 [ 777.858138][T15174] usb 2-1: USB disconnect, device number 50 [ 778.246760][T22649] loop4: detected capacity change from 0 to 256 [ 778.322158][T22653] netlink: 24 bytes leftover after parsing attributes in process `syz.5.6911'. [ 778.344431][T22648] netlink: 24 bytes leftover after parsing attributes in process `syz.5.6911'. [ 779.087782][T22683] loop5: detected capacity change from 0 to 256 [ 779.102679][T22683] exfat: Deprecated parameter 'namecase' [ 779.125132][T22683] exfat: Deprecated parameter 'namecase' [ 779.177447][T22683] exFAT-fs (loop5): failed to load upcase table (idx : 0x00010000, chksum : 0x8300b014, utbl_chksum : 0xe619d30d) [ 779.995457][T22711] loop4: detected capacity change from 0 to 1024 [ 780.013685][T22711] hfsplus: Filesystem was not cleanly unmounted, running fsck.hfsplus is recommended. mounting read-only. [ 780.088697][T22716] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration [ 780.650497][T22714] loop1: detected capacity change from 0 to 32768 [ 780.725883][T22714] ERROR: (device loop1): jfs_readdir: JFS:Dtree error: ino = 2, bn=0, index = 3 [ 780.725883][T22714] [ 780.765955][T22714] ERROR: (device loop1): remounting filesystem as read-only [ 781.424741][T22724] loop4: detected capacity change from 0 to 40427 [ 781.454383][T22724] F2FS-fs (loop4): Invalid SB checksum offset: 0 [ 781.475936][T22724] F2FS-fs (loop4): Can't find valid F2FS filesystem in 2th superblock [ 781.511132][T22724] F2FS-fs (loop4): invalid crc value [ 781.714041][T22724] F2FS-fs (loop4): Try to recover 2th superblock, ret: 0 [ 781.721167][T22724] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5 [ 782.385527][T22763] Bluetooth: MGMT ver 1.22 [ 782.584822][T22766] netlink: 'syz.5.6964': attribute type 8 has an invalid length. [ 782.776272][T22775] loop5: detected capacity change from 0 to 256 [ 782.822521][T22775] exFAT-fs (loop5): failed to load upcase table (idx : 0x00010000, chksum : 0x25fbf2c1, utbl_chksum : 0xe619d30d) [ 782.989389][T22778] loop1: detected capacity change from 0 to 1024 [ 783.023613][T22780] loop4: detected capacity change from 0 to 256 [ 783.059717][T22780] exfat: Deprecated parameter 'namecase' [ 783.087950][T22778] hfsplus: bad catalog entry type [ 783.110461][T22780] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0x11bbdf60, utbl_chksum : 0xe619d30d) [ 783.179005][ T3486] hfsplus: b-tree write err: -5, ino 25 [ 783.184996][ T3486] hfsplus: b-tree write err: -5, ino 4 [ 783.190595][ T3486] hfsplus: b-tree write err: -5, ino 2 [ 783.694298][T22799] overlayfs: missing 'workdir' [ 784.075573][T22814] loop1: detected capacity change from 0 to 2048 [ 784.122709][T22816] loop5: detected capacity change from 0 to 64 [ 784.135115][T22817] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 784.191500][T15174] usb 5-1: new high-speed USB device number 43 using dummy_hcd [ 784.215120][T22816] hfs: request for non-existent node 327680 in B*Tree [ 784.227290][T22816] hfs: request for non-existent node 327680 in B*Tree [ 784.396087][T15174] usb 5-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 784.410464][T15174] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 3 [ 784.427188][T15174] usb 5-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00 [ 784.437641][T15174] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3 [ 784.450065][T15174] usb 5-1: SerialNumber: syz [ 784.688846][T15174] usb 5-1: 0:2 : does not exist [ 784.725840][T15174] usb 5-1: USB disconnect, device number 43 [ 784.808919][ T6848] udevd[6848]: error opening ATTR{/sys/devices/platform/dummy_hcd.4/usb5/5-1/5-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 784.943838][T22821] loop1: detected capacity change from 0 to 32768 [ 784.982007][T22821] (syz.1.6989,22821,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 785.015761][T22821] (syz.1.6989,22821,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 785.100993][T22821] JBD2: Ignoring recovery information on journal [ 785.175260][T22821] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode. [ 785.278697][T22827] loop5: detected capacity change from 0 to 32768 [ 785.313411][T22827] [ 785.313411][T22827] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 785.313411][T22827] [ 785.359485][T22827] JFS: metapage_get_blocks failed [ 785.367684][T22821] syz.1.6989: attempt to access beyond end of device [ 785.367684][T22821] loop1: rw=2051, sector=28680, nr_sectors = 28664 limit=32768 [ 785.368860][T22827] ERROR: (device loop5): release_metapage: metapage_write_one() failed [ 785.368860][T22827] [ 785.424082][T22821] (syz.1.6989,22821,0):ocfs2_trim_group:7510 ERROR: status = -5 [ 785.441329][T22827] ERROR: (device loop5): diWrite: ixpxd invalid [ 785.441329][T22827] [ 785.449085][T22821] (syz.1.6989,22821,0):ocfs2_trim_mainbm:7621 ERROR: status = -5 [ 785.498816][T22827] ERROR: (device loop5): txCommit: [ 785.498816][T22827] [ 785.577418][T21692] [ 785.577418][T21692] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 785.577418][T21692] [ 785.589892][T21692] [ 785.589892][T21692] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 785.589892][T21692] [ 785.727802][ T5774] ocfs2: Unmounting device (7,1) on (node local) [ 786.199229][T22831] loop4: detected capacity change from 0 to 32768 [ 786.307012][T22831] ocfs2: Mounting device (7,4) on (node local, slot 0) with ordered data mode. [ 786.581063][ T8240] ocfs2: Unmounting device (7,4) on (node local) [ 786.852738][T22847] loop4: detected capacity change from 0 to 2048 [ 786.912653][T22847] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 787.083514][T22841] loop5: detected capacity change from 0 to 40427 [ 787.124567][T22841] F2FS-fs (loop5): heap/no_heap options were deprecated [ 787.159484][T22841] F2FS-fs (loop5): invalid crc value [ 787.165443][T22841] F2FS-fs (loop5): Ignore s_resuid=60929, s_resgid=0 w/o reserve_root [ 787.195189][T22841] F2FS-fs (loop5): Found nat_bits in checkpoint [ 787.401161][T22841] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e5 [ 787.848596][T22871] loop4: detected capacity change from 0 to 512 [ 787.908710][T22871] EXT4-fs (loop4): Cannot turn on journaled quota: type 1: error -13 [ 787.948009][T22871] EXT4-fs error (device loop4): ext4_orphan_get:1404: inode #13: comm syz.4.7012: iget: bad i_size value: 12154757448730 [ 787.982088][T22871] EXT4-fs error (device loop4): ext4_orphan_get:1409: comm syz.4.7012: couldn't read orphan inode 13 (err -117) [ 788.026080][T22871] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 788.155574][T22878] ptrace attach of "ci2-linux-6-6-kasan/syz-executor exec"[21692] was attempted by " [ 788.223799][ T8240] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 789.032530][T22884] loop5: detected capacity change from 0 to 32768 [ 789.082610][T22884] XFS (loop5): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 789.241899][T22884] XFS (loop5): Ending clean mount [ 789.259823][T22884] XFS (loop5): Quotacheck needed: Please wait. [ 789.336493][ T60] XFS (loop5): Metadata corruption detected at xfs_dinode_verify+0x2e5/0x11d0, inode 0x2443 dinode [ 789.374069][ T60] XFS (loop5): Unmount and run xfs_repair [ 789.379891][ T60] XFS (loop5): First 128 bytes of corrupted metadata buffer: [ 789.399988][T22894] loop4: detected capacity change from 0 to 40427 [ 789.407247][ T60] 00000000: 49 4e 41 ed 03 01 00 00 00 00 00 00 00 00 00 00 INA............. [ 789.409953][T22910] loop1: detected capacity change from 0 to 16 [ 789.435825][T22894] F2FS-fs (loop4): Invalid Fs Meta Ino: node(1) meta(2) root(0) [ 789.443837][ T60] 00000010: 00 00 00 02 00 00 00 00 00 00 00 00 00 00 00 00 ................ [ 789.462065][T22894] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock [ 789.471557][ T60] 00000020: 34 f7 58 68 a5 e2 bf 3d 34 f7 58 68 a5 e2 bf 3d 4.Xh...=4.Xh...= [ 789.480652][ T60] 00000030: 34 f7 58 68 a5 e2 bf 3d 00 00 00 00 00 00 00 20 4.Xh...=....... [ 789.500611][T22894] F2FS-fs (loop4): invalid crc value [ 789.508156][ T60] 00000040: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ [ 789.520653][ T60] 00000050: 00 00 00 02 00 00 00 00 00 00 00 00 54 01 7a fc ............T.z. [ 789.531127][ T60] 00000060: ff ff ff ff 4c 7b c2 21 00 00 00 00 00 00 00 04 ....L{.!........ [ 789.542337][ T60] 00000070: 00 00 00 01 00 00 00 80 00 00 00 00 00 00 00 08 ................ [ 789.556229][T22894] F2FS-fs (loop4): Found nat_bits in checkpoint [ 789.658775][T22884] XFS (loop5): Quotacheck: Unsuccessful (Error -117): Disabling quotas. [ 789.801965][T22894] F2FS-fs (loop4): Try to recover 1th superblock, ret: 0 [ 789.834891][T22894] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5 [ 789.943406][T21692] XFS (loop5): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 790.110648][ T8240] syz-executor: attempt to access beyond end of device [ 790.110648][ T8240] loop4: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 790.178875][ T8240] F2FS-fs (loop4): Stopped filesystem due to reason: 3 [ 790.673792][T22928] loop5: detected capacity change from 0 to 65 [ 790.725473][T22928] BFS-fs: bfs_fill_super(): NOTE: filesystem loop5 was created with 512 inodes, the real maximum is 511, mounting anyway [ 791.650332][T22939] loop4: detected capacity change from 0 to 32768 [ 791.703619][T22939] non-latin1 character 0x200 found in JFS file name [ 791.711228][T22939] mount with iocharset=utf8 to access [ 791.719095][T22957] loop5: detected capacity change from 0 to 2048 [ 791.769942][T22958] NILFS (loop5): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 792.095805][T22964] netlink: 209852 bytes leftover after parsing attributes in process `syz.5.7050'. [ 792.105681][T22964] openvswitch: netlink: Tunnel attr 0 has unexpected len 0 expected 8 [ 792.207475][ T9] usb 5-1: new high-speed USB device number 44 using dummy_hcd [ 792.411916][ T9] usb 5-1: Using ep0 maxpacket: 16 [ 792.421137][ T9] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 792.461475][ T9] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 792.491383][ T9] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 792.515302][ T9] usb 5-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00 [ 792.535605][ T9] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 792.580252][ T9] usb 5-1: config 0 descriptor?? [ 792.657595][T22980] netlink: 12 bytes leftover after parsing attributes in process `syz.5.7058'. [ 792.856943][T22988] netlink: 20 bytes leftover after parsing attributes in process `syz.5.7061'. [ 793.017364][ T9] microsoft 0003:045E:07DA.004C: unknown main item tag 0x0 [ 793.051311][ T9] microsoft 0003:045E:07DA.004C: unknown main item tag 0x0 [ 793.080085][ T9] microsoft 0003:045E:07DA.004C: unknown main item tag 0x0 [ 793.104680][ T9] microsoft 0003:045E:07DA.004C: unknown main item tag 0x0 [ 793.130995][ T9] microsoft 0003:045E:07DA.004C: unknown main item tag 0x0 [ 793.152262][ T9] microsoft 0003:045E:07DA.004C: unknown main item tag 0x0 [ 793.172145][ T9] microsoft 0003:045E:07DA.004C: unknown main item tag 0x0 [ 793.189873][ T9] microsoft 0003:045E:07DA.004C: unknown main item tag 0x0 [ 793.211926][ T9] microsoft 0003:045E:07DA.004C: unknown main item tag 0x0 [ 793.242726][ T9] microsoft 0003:045E:07DA.004C: unknown main item tag 0x0 [ 793.285376][T22998] loop5: detected capacity change from 0 to 256 [ 793.306846][ T9] input: HID 045e:07da as /devices/platform/dummy_hcd.4/usb5/5-1/5-1:0.0/0003:045E:07DA.004C/input/input52 [ 793.394776][T22998] FAT-fs (loop5): Directory bread(block 64) failed [ 793.418812][ T9] microsoft 0003:045E:07DA.004C: input,hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.4-1/input0 [ 793.441489][T22998] FAT-fs (loop5): Directory bread(block 65) failed [ 793.471565][T22998] FAT-fs (loop5): Directory bread(block 66) failed [ 793.484573][ T9] usb 5-1: USB disconnect, device number 44 [ 793.511832][T22998] FAT-fs (loop5): Directory bread(block 67) failed [ 793.518584][T22998] FAT-fs (loop5): Directory bread(block 68) failed [ 793.542449][T22998] FAT-fs (loop5): Directory bread(block 69) failed [ 793.549162][T22998] FAT-fs (loop5): Directory bread(block 70) failed [ 793.613073][T22998] FAT-fs (loop5): Directory bread(block 71) failed [ 793.619828][T22998] FAT-fs (loop5): Directory bread(block 72) failed [ 793.663428][T22998] FAT-fs (loop5): Directory bread(block 73) failed [ 793.670619][T23005] loop1: detected capacity change from 0 to 512 [ 793.725189][T23005] EXT4-fs error (device loop1): ext4_free_branches:1030: inode #11: comm syz.1.7070: invalid indirect mapped block 4294967295 (level 1) [ 793.766248][ T28] kauditd_printk_skb: 4 callbacks suppressed [ 793.766263][ T28] audit: type=1800 audit(2000000377.130:4223): pid=22998 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.7067" name="file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" dev="loop5" ino=1048878 res=0 errno=0 [ 793.827654][T23005] EXT4-fs error (device loop1): ext4_free_branches:1030: inode #11: comm syz.1.7070: invalid indirect mapped block 4294967295 (level 1) [ 793.845960][T23003] fido_id[23003]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.4/usb5/report_descriptor': No such file or directory [ 793.883866][T23005] EXT4-fs (loop1): 2 truncates cleaned up [ 793.901921][T23005] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 794.163346][ T5774] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 795.629630][T23049] loop1: detected capacity change from 0 to 32768 [ 796.177648][T23087] loop5: detected capacity change from 0 to 512 [ 796.243354][T23087] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 796.347360][T21692] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 796.619764][T23098] comedi comedi3: rti800: I/O port conflict (0x100,16) [ 796.779230][T23100] loop4: detected capacity change from 0 to 4096 [ 796.819864][T23100] ntfs: (device loop4): check_mft_mirror(): $MFT and $MFTMirr (record 1) do not match. Run ntfsfix or chkdsk. [ 796.846141][T23100] ntfs: (device loop4): load_system_files(): $MFTMirr does not match $MFT. Mounting read-only. Run ntfsfix and/or chkdsk. [ 796.871744][T23100] ntfs: (device loop4): ntfs_read_locked_inode(): First extent of $DATA attribute has non zero lowest_vcn. [ 796.887647][T23100] ntfs: (device loop4): ntfs_read_locked_inode(): Failed with error code -5. Marking corrupt inode 0xa as bad. Run chkdsk. [ 796.909203][T23100] ntfs: (device loop4): load_and_init_upcase(): Failed to load $UpCase from the volume. Using default. [ 796.965562][T23100] ntfs: volume version 3.1. [ 797.016112][T23100] ntfs: (device loop4): ntfs_lookup_inode_by_name(): Index entry out of bounds in directory inode 0x5. [ 797.040645][T23100] ntfs: (device loop4): check_windows_hibernation_status(): Failed to find inode number for hiberfil.sys. [ 797.058499][T23108] loop5: detected capacity change from 0 to 64 [ 797.112064][T23100] ntfs: (device loop4): load_system_files(): Failed to determine if Windows is hibernated. Will not be able to remount read-write. Run chkdsk. [ 797.208592][T23100] ntfs: (device loop4): ntfs_read_locked_index_inode(): $INDEX_ROOT attribute is corrupt. [ 797.710845][T23124] loop5: detected capacity change from 0 to 512 [ 797.730952][T23124] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode [ 797.746557][T23124] EXT4-fs (loop5): corrupt root inode, run e2fsck [ 797.755168][T23124] EXT4-fs (loop5): mount failed [ 798.422817][T23146] loop4: detected capacity change from 0 to 4096 [ 798.623825][T23146] ntfs3: loop4: Failed to initialize $Extend/$Reparse. [ 798.695883][T23146] ntfs3: loop4: failed to convert "0000" to iso8859-1 [ 798.696215][T23154] netlink: 'syz.0.7138': attribute type 9 has an invalid length. [ 798.721746][T23146] ntfs3: loop4: failed to convert name for inode 1e. [ 799.524978][T23181] loop1: detected capacity change from 0 to 128 [ 799.562667][T23181] UDF-fs: error (device loop1): udf_read_tagged: read failed, block=256, location=256 [ 799.616311][T23181] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 800.090054][T23169] loop5: detected capacity change from 0 to 40427 [ 800.122126][T23169] F2FS-fs (loop5): Corrupted extension count (64 + 1 > 64) [ 800.129428][T23169] F2FS-fs (loop5): Can't find valid F2FS filesystem in 1th superblock [ 800.149061][T23169] F2FS-fs (loop5): invalid crc value [ 800.337932][T23179] loop4: detected capacity change from 0 to 32768 [ 800.386538][T23179] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 ./bus scanned by syz.4.7149 (23179) [ 800.460610][T23179] BTRFS info (device loop4): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 800.484188][T23179] BTRFS info (device loop4): using sha256 (sha256-avx2) checksum algorithm [ 800.502482][T23179] BTRFS error (device loop4): superblock checksum mismatch [ 800.531593][T23169] F2FS-fs (loop5): Try to recover 1th superblock, ret: 0 [ 800.544713][T23169] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e5 [ 800.552761][T23179] BTRFS error (device loop4): open_ctree failed: -22 [ 800.582463][T15000] udevd[15000]: incorrect btrfs checksum on /dev/loop4 [ 800.598986][T23169] F2FS-fs (loop5): Corrupted max_depth of 3: 513 [ 800.758145][T23204] loop1: detected capacity change from 0 to 256 [ 800.819689][T23204] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x2e76b09e, utbl_chksum : 0xe619d30d) [ 801.108599][T23208] loop4: detected capacity change from 0 to 2048 [ 801.170731][T23208] [EXT4 FS bs=2048, gc=1, bpg=262144, ipg=32, mo=a802c118, mo2=0003] [ 801.197784][T23208] System zones: 0-7 [ 801.219268][T23208] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 801.374566][T23208] EXT4-fs error (device loop4): ext4_ext_precache:637: inode #2: comm syz.4.7161: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 5(5) [ 801.461742][T23213] EXT4-fs error (device loop4): ext4_validate_block_bitmap:430: comm ext4lazyinit: bg 0: block 2: invalid block bitmap [ 801.566065][ T8240] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 801.752113][ T5792] Bluetooth: hci3: Controller not accepting commands anymore: ncmd = 0 [ 801.763640][ T5792] Bluetooth: hci3: Injecting HCI hardware error event [ 801.779513][T17244] Bluetooth: hci3: hardware error 0x00 [ 802.174712][T23243] loop5: detected capacity change from 0 to 1024 [ 802.198349][T23243] hfsplus: Filesystem was not cleanly unmounted, running fsck.hfsplus is recommended. mounting read-only. [ 802.888532][T23272] loop4: detected capacity change from 0 to 2048 [ 802.925810][T23272] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 803.911988][T17244] Bluetooth: hci3: Opcode 0x0c03 failed: -110 [ 804.019564][T23283] loop1: detected capacity change from 0 to 32768 [ 804.581929][ T9] usb 2-1: new high-speed USB device number 51 using dummy_hcd [ 804.822772][ T9] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 804.842616][ T9] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 2 [ 804.857693][T23327] netlink: 'syz.4.7217': attribute type 1 has an invalid length. [ 804.876505][ T9] usb 2-1: config 1 has no interface number 0 [ 804.898513][ T9] usb 2-1: config 1 interface 1 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 804.922533][ T9] usb 2-1: Duplicate descriptor for config 1 interface 1 altsetting 0, skipping [ 804.950815][ T9] usb 2-1: too many endpoints for config 1 interface 1 altsetting 1: 247, using maximum allowed: 30 [ 804.969010][ T9] usb 2-1: config 1 interface 1 altsetting 1 has 0 endpoint descriptors, different from the interface descriptor's value: 247 [ 805.014513][ T9] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 805.041362][ T9] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 805.050024][ T9] usb 2-1: Product: syz [ 805.075708][ T9] usb 2-1: Manufacturer: syz [ 805.099114][ T9] usb 2-1: SerialNumber: syz [ 805.296611][T23344] openvswitch: netlink: Actions may not be safe on all matching packets [ 805.758432][ T9] cdc_ncm 2-1:1.1: bind() failure [ 805.789563][ T9] usb 2-1: USB disconnect, device number 51 [ 805.823800][T23361] loop4: detected capacity change from 0 to 64 [ 805.874251][T23363] netlink: 35 bytes leftover after parsing attributes in process `syz.0.7234'. [ 806.644741][T23393] loop1: detected capacity change from 0 to 128 [ 806.677443][T23393] FAT-fs (loop1): Invalid FSINFO signature: 0x41000006, 0x61417272 (sector = 1) [ 806.690072][ T27] usb 6-1: new high-speed USB device number 19 using dummy_hcd [ 806.821410][T23397] netlink: 16 bytes leftover after parsing attributes in process `syz.4.7251'. [ 806.854041][T23395] can0: slcan on ptm0. [ 806.874418][ T27] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 806.903667][ T27] usb 6-1: config 0 interface 0 altsetting 4 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 806.925557][ T27] usb 6-1: config 0 interface 0 altsetting 4 endpoint 0x81 has invalid wMaxPacketSize 0 [ 806.969693][ T27] usb 6-1: config 0 interface 0 has no altsetting 0 [ 806.977880][ T27] usb 6-1: New USB device found, idVendor=0458, idProduct=5015, bcdDevice= 0.00 [ 806.992612][T23394] can0 (unregistered): slcan off ptm0. [ 807.001889][ T27] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 807.019175][ T27] usb 6-1: config 0 descriptor?? [ 807.044166][T23402] netlink: 48 bytes leftover after parsing attributes in process `syz.4.7253'. [ 807.504218][ T27] kye 0003:0458:5015.004D: tablet report size too small, or kye_tablet_rdesc unexpectedly large [ 807.537185][ T27] kye 0003:0458:5015.004D: unknown main item tag 0x0 [ 807.544725][ T27] kye 0003:0458:5015.004D: unknown main item tag 0x0 [ 807.551966][ T27] kye 0003:0458:5015.004D: unknown main item tag 0x0 [ 807.558822][ T27] kye 0003:0458:5015.004D: unknown main item tag 0x0 [ 807.575962][ T27] kye 0003:0458:5015.004D: unknown main item tag 0x0 [ 807.594596][ T27] kye 0003:0458:5015.004D: unknown main item tag 0x0 [ 807.612664][ T27] kye 0003:0458:5015.004D: unknown main item tag 0x0 [ 807.630490][T23418] sp0: Synchronizing with TNC [ 807.652673][ T27] kye 0003:0458:5015.004D: hidraw0: USB HID v0.04 Device [HID 0458:5015] on usb-dummy_hcd.5-1/input0 [ 807.695940][ T27] kye 0003:0458:5015.004D: tablet-enabling feature report not found [ 807.722886][ T27] kye 0003:0458:5015.004D: tablet enabling failed [ 807.771650][ T27] usb 6-1: USB disconnect, device number 19 [ 807.855229][T23422] fido_id[23422]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.5/usb6/report_descriptor': No such file or directory [ 808.090521][T23416] loop4: detected capacity change from 0 to 32768 [ 808.104921][T23416] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop4 scanned by syz.4.7260 (23416) [ 808.134885][T23416] BTRFS info (device loop4): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 808.147379][T23416] BTRFS info (device loop4): using sha256 (sha256-avx2) checksum algorithm [ 808.160458][T23416] BTRFS info (device loop4): force clearing of disk cache [ 808.171900][T23416] BTRFS info (device loop4): metadata ratio 0 [ 808.178865][T23416] BTRFS info (device loop4): enabling ssd optimizations [ 808.188258][T23416] BTRFS info (device loop4): using spread ssd allocation scheme [ 808.198767][T23416] BTRFS info (device loop4): using free space tree [ 808.362404][T23416] BTRFS info (device loop4): auto enabling async discard [ 808.374568][T23416] BTRFS info (device loop4): rebuilding free space tree [ 808.689838][T23451] loop1: detected capacity change from 0 to 16 [ 808.710449][T23451] erofs: (device loop1): mounted with root inode @ nid 36. [ 808.818052][ T8240] BTRFS info (device loop4): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 809.197387][ T1280] ieee802154 phy0 wpan0: encryption failed: -22 [ 809.331555][ T23] usb 2-1: new high-speed USB device number 52 using dummy_hcd [ 809.432075][T23463] netlink: 8 bytes leftover after parsing attributes in process `syz.5.7274'. [ 809.441164][T23463] netlink: 4 bytes leftover after parsing attributes in process `syz.5.7274'. [ 809.451892][T23463] netlink: 'syz.5.7274': attribute type 14 has an invalid length. [ 809.461929][T23463] netlink: 'syz.5.7274': attribute type 12 has an invalid length. [ 809.533453][ T23] usb 2-1: config 220 has an invalid interface number: 76 but max is 2 [ 809.547044][ T23] usb 2-1: config 220 contains an unexpected descriptor of type 0x2, skipping [ 809.557979][ T23] usb 2-1: config 220 has an invalid descriptor of length 0, skipping remainder of the config [ 809.564162][ T9] usb 5-1: new high-speed USB device number 45 using dummy_hcd [ 809.569711][ T23] usb 2-1: config 220 has no interface number 2 [ 809.582837][ T23] usb 2-1: config 220 interface 1 altsetting 5 has 0 endpoint descriptors, different from the interface descriptor's value: 12 [ 809.597021][ T23] usb 2-1: config 220 interface 0 has no altsetting 0 [ 809.606545][ T23] usb 2-1: config 220 interface 76 has no altsetting 0 [ 809.619241][ T23] usb 2-1: config 220 interface 1 has no altsetting 0 [ 809.639899][ T23] usb 2-1: New USB device found, idVendor=8086, idProduct=0b07, bcdDevice=6c.b9 [ 809.662283][ T23] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 809.670870][ T23] usb 2-1: Product: syz [ 809.677022][ T23] usb 2-1: Manufacturer: syz [ 809.682105][ T23] usb 2-1: SerialNumber: syz [ 809.794547][ T9] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 809.815987][ T9] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 809.851427][ T9] usb 5-1: New USB device found, idVendor=054c, idProduct=0ba0, bcdDevice= 0.00 [ 809.882287][ T9] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 809.905302][ T9] usb 5-1: config 0 descriptor?? [ 809.947951][ T23] usb 2-1: Found UVC 7.01 device syz (8086:0b07) [ 809.967800][ T23] usb 2-1: No valid video chain found. [ 809.974445][ T23] usb 2-1: selecting invalid altsetting 0 [ 809.992488][ T23] usb 2-1: selecting invalid altsetting 0 [ 809.998302][ T23] usbtest: probe of 2-1:220.1 failed with error -22 [ 810.009235][ T23] usb 2-1: USB disconnect, device number 52 [ 810.322897][ T9] playstation 0003:054C:0BA0.004E: unknown main item tag 0x0 [ 810.345330][ T9] playstation 0003:054C:0BA0.004E: unknown main item tag 0x0 [ 810.355152][ T9] playstation 0003:054C:0BA0.004E: unknown main item tag 0x0 [ 810.367291][ T9] playstation 0003:054C:0BA0.004E: unknown main item tag 0x0 [ 810.376557][ T9] playstation 0003:054C:0BA0.004E: unknown main item tag 0x0 [ 810.389215][ T9] playstation 0003:054C:0BA0.004E: unknown main item tag 0x0 [ 810.397430][ T9] playstation 0003:054C:0BA0.004E: unknown main item tag 0x0 [ 810.416309][ T9] playstation 0003:054C:0BA0.004E: hidraw0: USB HID v0.00 Device [HID 054c:0ba0] on usb-dummy_hcd.4-1/input0 [ 810.453127][T23475] loop5: detected capacity change from 0 to 4096 [ 810.518586][ T9] playstation 0003:054C:0BA0.004E: Failed to retrieve feature with reportID 18: -71 [ 810.553556][ T9] playstation 0003:054C:0BA0.004E: Failed to retrieve DualShock4 pairing info: -71 [ 810.591907][ T9] playstation 0003:054C:0BA0.004E: Failed to get MAC address from DualShock4 [ 810.618622][ T9] playstation 0003:054C:0BA0.004E: Failed to create dualshock4. [ 810.664700][ T9] playstation: probe of 0003:054C:0BA0.004E failed with error -71 [ 810.695363][ T9] usb 5-1: USB disconnect, device number 45 [ 811.027099][T23486] loop5: detected capacity change from 0 to 256 [ 811.070143][T23486] exfat: Deprecated parameter 'namecase' [ 811.087052][T23486] exfat: Deprecated parameter 'utf8' [ 811.143190][T23486] exfat: Deprecated parameter 'namecase' [ 811.185481][T23486] exFAT-fs (loop5): failed to load upcase table (idx : 0x00010000, chksum : 0xffade8b4, utbl_chksum : 0xe619d30d) [ 811.589701][T23501] loop5: detected capacity change from 0 to 2048 [ 811.613886][T23501] NILFS (loop5): broken superblock, retrying with spare superblock (blocksize = 1024) [ 811.639920][T23506] NILFS (loop5): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 812.051894][T23512] netlink: set zone limit has 8 unknown bytes [ 812.221538][T23517] program syz.1.7299 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 812.295480][T23518] program syz.1.7299 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 812.331830][T23518] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0 [ 812.357798][T23495] loop4: detected capacity change from 0 to 40427 [ 812.383845][T23495] F2FS-fs (loop4): Corrupted extension count (64 + 1 > 64) [ 812.409459][T23495] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock [ 812.420621][T23495] F2FS-fs (loop4): invalid crc value [ 812.580034][T23495] F2FS-fs (loop4): Try to recover 1th superblock, ret: 0 [ 812.602734][T23495] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5 [ 812.621223][T23508] loop5: detected capacity change from 0 to 32768 [ 812.717387][T23508] ocfs2: Mounting device (7,5) on (node local, slot 0) with ordered data mode. [ 812.734786][T23495] F2FS-fs (loop4): Corrupted max_depth of 3: 513 [ 812.954424][T23534] loop1: detected capacity change from 0 to 1024 [ 813.157910][T21692] ocfs2: Unmounting device (7,5) on (node local) [ 813.966655][T23538] loop1: detected capacity change from 0 to 32768 [ 813.987778][T23538] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop1 scanned by syz.1.7308 (23538) [ 814.034748][T23538] BTRFS info (device loop1): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 814.055177][T23538] BTRFS info (device loop1): using sha256 (sha256-avx2) checksum algorithm [ 814.106480][T23538] BTRFS info (device loop1): force clearing of disk cache [ 814.124147][T23538] BTRFS info (device loop1): metadata ratio 0 [ 814.141739][T23538] BTRFS info (device loop1): enabling ssd optimizations [ 814.169256][T23538] BTRFS info (device loop1): using spread ssd allocation scheme [ 814.210749][T23538] BTRFS info (device loop1): using free space tree [ 814.341193][T23569] loop4: detected capacity change from 0 to 256 [ 814.402625][T23538] BTRFS info (device loop1): auto enabling async discard [ 814.421502][T23569] FAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 814.465996][T23538] BTRFS info (device loop1): rebuilding free space tree [ 815.012687][ T5774] BTRFS info (device loop1): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 815.975198][ T28] kauditd_printk_skb: 5 callbacks suppressed [ 815.975217][ T28] audit: type=1326 audit(2000000399.330:4224): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23611 comm="syz.0.7334" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f758c79ce59 code=0x7ffc0000 [ 816.024147][ T28] audit: type=1326 audit(2000000399.330:4225): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23611 comm="syz.0.7334" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f758c79ce59 code=0x7ffc0000 [ 816.079282][ T28] audit: type=1326 audit(2000000399.340:4226): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23611 comm="syz.0.7334" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f758c75d68e code=0x7ffc0000 [ 816.131315][ T28] audit: type=1326 audit(2000000399.340:4227): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23611 comm="syz.0.7334" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f758c75d68e code=0x7ffc0000 [ 816.190094][ T28] audit: type=1326 audit(2000000399.340:4228): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23611 comm="syz.0.7334" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f758c79ce59 code=0x7ffc0000 [ 816.281323][ T28] audit: type=1326 audit(2000000399.340:4229): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23611 comm="syz.0.7334" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f758c79ce59 code=0x7ffc0000 [ 816.281377][ T28] audit: type=1326 audit(2000000399.390:4230): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23611 comm="syz.0.7334" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=267 compat=0 ip=0x7f758c79ce59 code=0x7ffc0000 [ 816.281427][ T28] audit: type=1326 audit(2000000399.390:4231): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23611 comm="syz.0.7334" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f758c79ce59 code=0x7ffc0000 [ 816.281488][ T28] audit: type=1326 audit(2000000399.390:4232): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23611 comm="syz.0.7334" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f758c79ce59 code=0x7ffc0000 [ 816.308237][ C1] vkms_vblank_simulate: vblank timer overrun [ 816.413821][ T28] audit: type=1326 audit(2000000399.760:4233): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23621 comm="syz.0.7339" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f758c79ce59 code=0x7ffc0000 [ 816.916457][T23618] loop5: detected capacity change from 0 to 32768 [ 817.256643][T23643] netlink: 8 bytes leftover after parsing attributes in process `syz.1.7348'. [ 818.010957][T23665] bridge: RTM_NEWNEIGH bridge0 without NUD_PERMANENT [ 818.070467][T23666] loop5: detected capacity change from 0 to 4096 [ 818.078972][T23668] loop4: detected capacity change from 0 to 16 [ 818.112126][T23669] NILFS (loop5): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 818.132524][T23668] erofs: (device loop4): mounted with root inode @ nid 36. [ 818.211806][T23668] syz.4.7360: attempt to access beyond end of device [ 818.211806][T23668] loop4: rw=0, sector=1936876908, nr_sectors = 1 limit=16 [ 818.310676][T23668] syz.4.7360: attempt to access beyond end of device [ 818.310676][T23668] loop4: rw=0, sector=3955228672, nr_sectors = 1 limit=16 [ 818.342397][T23670] syz.4.7360: attempt to access beyond end of device [ 818.342397][T23670] loop4: rw=0, sector=1936876908, nr_sectors = 1 limit=16 [ 818.386160][T23670] syz.4.7360: attempt to access beyond end of device [ 818.386160][T23670] loop4: rw=0, sector=3955228672, nr_sectors = 1 limit=16 [ 818.430550][T23650] loop1: detected capacity change from 0 to 40427 [ 818.465702][T23650] F2FS-fs (loop1): Invalid log_blocksize (268), supports only 12 [ 818.493583][T23650] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock [ 818.584483][T23650] F2FS-fs (loop1): Found nat_bits in checkpoint [ 818.772797][T23650] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0 [ 818.796979][T23650] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5 [ 819.414808][T23700] usb usb9: usbfs: process 23700 (syz.5.7374) did not claim interface 0 before use [ 819.570629][T23704] can0: slcan on ttyprintk. [ 819.663883][T23703] can0 (unregistered): slcan off ttyprintk. [ 819.873537][T23712] loop5: detected capacity change from 0 to 256 [ 820.215540][T23719] loop1: detected capacity change from 0 to 512 [ 820.450875][T23728] netlink: 8 bytes leftover after parsing attributes in process `syz.1.7382'. [ 820.561672][T23725] loop5: detected capacity change from 0 to 8192 [ 820.585829][T23725] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 820.628498][T23725] REISERFS (device loop5): found reiserfs format "3.5" with non-standard journal [ 820.644317][T23725] REISERFS (device loop5): using ordered data mode [ 820.650940][T23725] reiserfs: using flush barriers [ 820.717373][T23736] vlan6: entered promiscuous mode [ 820.731997][T23725] REISERFS (device loop5): journal params: device loop5, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 820.817181][T23725] REISERFS (device loop5): checking transaction log (loop5) [ 820.886600][T23725] REISERFS (device loop5): Using r5 hash to sort names [ 820.894786][T23725] REISERFS (device loop5): Created .reiserfs_priv - reserved for xattr storage. [ 821.003720][ T28] kauditd_printk_skb: 9 callbacks suppressed [ 821.003738][ T28] audit: type=1326 audit(2000000404.370:4243): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23741 comm="syz.1.7387" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4b0539ce59 code=0x7ffc0000 [ 821.063285][T23725] REISERFS warning (device loop5): vs-13060 reiserfs_update_sd_size: stat data of object [2 2 0x0 SD] (nlink == 1) not found (pos 0) [ 821.074333][ T28] audit: type=1326 audit(2000000404.400:4244): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23741 comm="syz.1.7387" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=48 compat=0 ip=0x7f4b0539ce59 code=0x7ffc0000 [ 821.128623][T23725] REISERFS warning (device loop5): vs-13060 reiserfs_update_sd_size: stat data of object [2 2 0x0 SD] (nlink == 1) not found (pos 0) [ 821.147966][ T28] audit: type=1326 audit(2000000404.400:4245): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23741 comm="syz.1.7387" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4b0539ce59 code=0x7ffc0000 [ 821.183530][T23725] REISERFS warning (device loop5): vs-13060 reiserfs_update_sd_size: stat data of object [2 2 0x0 SD] (nlink == 1) not found (pos 0) [ 821.343966][T23751] loop1: detected capacity change from 0 to 1024 [ 821.472152][T23751] hfsplus: found bad thread record in catalog [ 821.501182][T23751] hfsplus: catalog searching failed [ 821.618377][ T3465] hfsplus: b-tree write err: -5, ino 4 [ 821.632546][ T3465] hfsplus: b-tree write err: -5, ino 2 [ 822.007459][ T28] audit: type=1326 audit(2000000405.370:4246): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23765 comm="syz.4.7394" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcfcdd9ce59 code=0x7ffc0000 [ 822.121338][ T28] audit: type=1326 audit(2000000405.410:4247): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23765 comm="syz.4.7394" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=195 compat=0 ip=0x7fcfcdd9ce59 code=0x7ffc0000 [ 822.202171][ T28] audit: type=1326 audit(2000000405.410:4248): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23765 comm="syz.4.7394" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcfcdd9ce59 code=0x7ffc0000 [ 822.301941][ T28] audit: type=1326 audit(2000000405.420:4249): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23765 comm="syz.4.7394" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcfcdd9ce59 code=0x7ffc0000 [ 822.355420][T23777] 9pnet_fd: p9_fd_create_unix (23777): problem connecting socket: ./file0: -111 [ 822.946468][T23802] usb usb9: usbfs: process 23802 (syz.0.7407) did not claim interface 3 before use [ 823.345712][T23799] loop5: detected capacity change from 0 to 32768 [ 823.375197][T23799] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop5 scanned by syz.5.7406 (23799) [ 823.407394][T23799] BTRFS info (device loop5): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 823.420296][T23799] BTRFS info (device loop5): using sha256 (sha256-avx2) checksum algorithm [ 823.429473][T23799] BTRFS info (device loop5): force clearing of disk cache [ 823.444260][T23799] BTRFS info (device loop5): metadata ratio 0 [ 823.455578][T23799] BTRFS info (device loop5): enabling ssd optimizations [ 823.471921][T23799] BTRFS info (device loop5): using spread ssd allocation scheme [ 823.479656][T23799] BTRFS info (device loop5): using free space tree [ 823.718703][T23799] BTRFS info (device loop5): auto enabling async discard [ 823.763290][T23799] BTRFS info (device loop5): rebuilding free space tree [ 823.897180][T23832] loop1: detected capacity change from 0 to 512 [ 823.951457][T23832] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 824.021785][T23832] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 824.100699][T23832] ext4 filesystem being mounted at /1909/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 824.307439][ T5774] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 824.416848][T21692] BTRFS info (device loop5): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 824.821686][ T5821] usb 2-1: new high-speed USB device number 53 using dummy_hcd [ 825.032693][ T5821] usb 2-1: Using ep0 maxpacket: 16 [ 825.076217][ T5821] usb 2-1: New USB device found, idVendor=0c72, idProduct=0013, bcdDevice=ba.be [ 825.102060][ T5821] usb 2-1: New USB device strings: Mfr=175, Product=2, SerialNumber=3 [ 825.121803][ T5821] usb 2-1: Product: syz [ 825.126052][ T5821] usb 2-1: Manufacturer: syz [ 825.130696][ T5821] usb 2-1: SerialNumber: syz [ 825.180148][ T5821] usb 2-1: config 0 descriptor?? [ 825.438349][ T5821] peak_usb 2-1:0.0: PEAK-System PCAN-Chip USB v0 fw v0.0.0 (1 channels) [ 825.639311][ T5821] peak_usb 2-1:0.0 can0: sending command failure: -22 [ 825.662261][ T5821] peak_usb 2-1:0.0 can0: sending command failure: -22 [ 825.691817][ T5821] peak_usb 2-1:0.0 can0: sending command failure: -22 [ 825.851884][T23864] netlink: 16 bytes leftover after parsing attributes in process `syz.0.7426'. [ 825.883899][ T5821] peak_usb: probe of 2-1:0.0 failed with error -22 [ 825.916841][ T5821] usb 2-1: USB disconnect, device number 53 [ 826.014275][T23866] netlink: 12 bytes leftover after parsing attributes in process `syz.5.7427'. [ 826.049254][T23866] netlink: 16 bytes leftover after parsing attributes in process `syz.5.7427'. [ 826.160796][T23856] loop4: detected capacity change from 0 to 32768 [ 826.245378][T23856] ocfs2: Mounting device (7,4) on (node local, slot 0) with writeback data mode. [ 826.517457][ T8240] ocfs2: Unmounting device (7,4) on (node local) [ 826.814213][T23885] loop1: detected capacity change from 0 to 1024 [ 827.237389][T23893] i2c i2c-0: Frontend requested software zigzag, but didn't set the frequency step size [ 827.322085][T23872] loop5: detected capacity change from 0 to 32768 [ 827.426106][T23900] comedi comedi3: pcl812: I/O port conflict (0x100,16) [ 827.520387][T23902] loop1: detected capacity change from 0 to 1024 [ 827.914352][T23888] loop4: detected capacity change from 0 to 32768 [ 828.028304][T23912] loop1: detected capacity change from 0 to 4096 [ 828.098964][T23888] ocfs2: Mounting device (7,4) on (node local, slot 0) with ordered data mode. [ 828.161972][T23912] ntfs3: loop1: ino=3, ntfs_set_state failed, -22. [ 828.195303][T23912] ntfs3: loop1: Failed to initialize $Extend/$ObjId. [ 828.413567][ T3486] ntfs3: loop1: ino=3, ntfs3_write_inode failed, -22. [ 828.420859][ T5774] ntfs3: loop1: ino=3, ntfs_set_state failed, -22. [ 828.434602][ T5774] ntfs3: loop1: Mark volume as dirty due to NTFS errors [ 828.457360][ T5774] ntfs3: loop1: ino=3, ntfs_set_state failed, -22. [ 828.525810][ T3504] ntfs3: loop1: ino=3, ntfs3_write_inode failed, -22. [ 828.534832][ T8240] ocfs2: Unmounting device (7,4) on (node local) [ 828.670508][T23922] loop1: detected capacity change from 0 to 256 [ 829.678545][T23959] [U] vÔ3¸Âfù¾"SçÁ/Éê4:ÃXTz“W¡t‘’lWµ«= [ 829.687525][T23959] [U] J"—e:ÀÆ" [ 829.857728][T23965] loop1: detected capacity change from 0 to 512 [ 829.906461][T23965] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 829.920911][T23965] ext4 filesystem being mounted at /1922/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 830.105023][ T5774] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 830.363828][T23962] loop4: detected capacity change from 0 to 32768 [ 830.406087][T23962] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop4 scanned by syz.4.7470 (23962) [ 830.462117][T23962] BTRFS info (device loop4): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 830.511381][T23962] BTRFS info (device loop4): using sha256 (sha256-avx2) checksum algorithm [ 830.532254][T23962] BTRFS info (device loop4): using free space tree [ 830.652100][T23962] BTRFS info (device loop4): enabling ssd optimizations [ 830.659152][T23962] BTRFS info (device loop4): auto enabling async discard [ 830.891912][ T8240] BTRFS info (device loop4): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 831.233352][T24011] netlink: 8 bytes leftover after parsing attributes in process `syz.5.7485'. [ 831.272538][T24011] netlink: 8 bytes leftover after parsing attributes in process `syz.5.7485'. [ 831.536746][T24019] loop5: detected capacity change from 0 to 64 [ 831.734797][ T28] audit: type=1800 audit(2000000415.110:4250): pid=24019 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.7487" name="file1" dev="loop5" ino=21 res=0 errno=0 [ 831.996174][T24029] netlink: 11 bytes leftover after parsing attributes in process `syz.1.7493'. [ 832.092128][T24033] netlink: 12 bytes leftover after parsing attributes in process `syz.5.7495'. [ 832.203713][ T9] kernel write not supported for file /input/event0 (pid: 9 comm: kworker/0:1) [ 832.742329][T24057] netlink: 8 bytes leftover after parsing attributes in process `syz.1.7507'. [ 832.756578][T24057] netlink: 12 bytes leftover after parsing attributes in process `syz.1.7507'. [ 833.447409][T24077] loop5: detected capacity change from 0 to 256 [ 833.539954][T24077] FAT-fs (loop5): Directory bread(block 64) failed [ 833.567971][T24077] FAT-fs (loop5): Directory bread(block 65) failed [ 833.586800][T24077] FAT-fs (loop5): Directory bread(block 66) failed [ 833.607808][T24077] FAT-fs (loop5): Directory bread(block 67) failed [ 833.639450][T24077] FAT-fs (loop5): Directory bread(block 68) failed [ 833.677530][T24077] FAT-fs (loop5): Directory bread(block 69) failed [ 833.678366][T24081] netlink: 'syz.4.7519': attribute type 4 has an invalid length. [ 833.712595][T24077] FAT-fs (loop5): Directory bread(block 70) failed [ 833.719252][T24077] FAT-fs (loop5): Directory bread(block 71) failed [ 833.749894][T24077] FAT-fs (loop5): Directory bread(block 72) failed [ 833.759740][T24077] FAT-fs (loop5): Directory bread(block 73) failed [ 833.833224][T24085] netlink: 36 bytes leftover after parsing attributes in process `syz.0.7521'. [ 834.580391][T24110] dvmrp8: entered allmulticast mode [ 834.622601][T24109] dvmrp8: left allmulticast mode [ 834.798799][T24091] loop1: detected capacity change from 0 to 40427 [ 834.818790][T24091] F2FS-fs (loop1): invalid crc value [ 834.844752][T24091] F2FS-fs (loop1): Found nat_bits in checkpoint [ 834.993765][T24091] F2FS-fs (loop1): Start checkpoint disabled! [ 835.087179][T24091] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e6 [ 835.163083][T24122] loop5: detected capacity change from 0 to 1024 [ 835.230288][T24122] hfsplus: Filesystem was not cleanly unmounted, running fsck.hfsplus is recommended. mounting read-only. [ 835.392543][ T3504] kworker/u4:10: attempt to access beyond end of device [ 835.392543][ T3504] loop1: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 835.424269][ T3504] F2FS-fs (loop1): Stopped filesystem due to reason: 3 [ 835.438668][T24126] netlink: 'syz.0.7541': attribute type 2 has an invalid length. [ 836.277489][T24153] netlink: 36 bytes leftover after parsing attributes in process `syz.5.7552'. [ 836.953315][T24174] loop1: detected capacity change from 0 to 1764 [ 837.214328][T24179] netlink: 'syz.1.7564': attribute type 4 has an invalid length. [ 837.372634][T24183] netlink: 16 bytes leftover after parsing attributes in process `syz.5.7565'. [ 837.770057][T24196] loop5: detected capacity change from 0 to 256 [ 837.795665][T24196] exfat: Deprecated parameter 'namecase' [ 837.889093][T24196] exFAT-fs (loop5): failed to load upcase table (idx : 0x00011e8b, chksum : 0xf0cee8ef, utbl_chksum : 0xe619d30d) [ 838.451490][ T27] usb 6-1: new high-speed USB device number 20 using dummy_hcd [ 838.651372][ T27] usb 6-1: Using ep0 maxpacket: 32 [ 838.662280][ T27] usb 6-1: config 0 has an invalid interface number: 1 but max is 0 [ 838.670373][ T27] usb 6-1: config 0 has no interface number 0 [ 838.694735][ T27] usb 6-1: New USB device found, idVendor=8086, idProduct=9500, bcdDevice=93.d8 [ 838.704505][ T27] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 838.731361][ T27] usb 6-1: Product: syz [ 838.735693][ T27] usb 6-1: Manufacturer: syz [ 838.751344][ T27] usb 6-1: SerialNumber: syz [ 838.771802][ T27] usb 6-1: config 0 descriptor?? [ 838.804488][ T27] usb 6-1: dvb_usb_v2: found a 'Intel CE9500 reference design' in warm state [ 838.848629][ T27] usb 6-1: selecting invalid altsetting 1 [ 838.864823][ T27] usb 6-1: dvb_usb_ce6230: usb_set_interface() failed=-22 [ 838.899159][ T27] usb 6-1: dvb_usb_v2: will pass the complete MPEG2 transport stream to the software demuxer [ 838.927362][ T27] dvbdev: DVB: registering new adapter (Intel CE9500 reference design) [ 838.952176][ T27] usb 6-1: media controller created [ 839.020769][ T27] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered. [ 839.169584][T24202] loop4: detected capacity change from 0 to 40427 [ 839.210060][T24202] F2FS-fs (loop4): Invalid log_blocksize (268), supports only 12 [ 839.249201][T24202] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock [ 839.296258][T24202] F2FS-fs (loop4): invalid crc value [ 839.350851][T24202] F2FS-fs (loop4): Found nat_bits in checkpoint [ 839.618371][T24202] F2FS-fs (loop4): Try to recover 1th superblock, ret: 0 [ 839.658839][T24202] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5 [ 840.155803][T24206] usb 6-1: dvb_usb_ce6230: usb_control_msg() failed=-110 [ 840.211999][ T27] usb 6-1: dvb_usb_ce6230: usb_control_msg() failed=-71 [ 840.219082][ T27] zl10353_read_register: readreg error (reg=127, ret==-71) [ 840.256065][ T27] usb 6-1: dvb_usb_ce6230: usb_set_interface() failed=-71 [ 840.363753][T24248] netlink: 12 bytes leftover after parsing attributes in process `syz.1.7588'. [ 840.406156][ T27] usb 6-1: USB disconnect, device number 20 [ 840.714269][T24257] netlink: 'syz.4.7587': attribute type 5 has an invalid length. [ 841.146562][T24268] loop4: detected capacity change from 0 to 8 [ 841.173945][T24268] SQUASHFS error: lzo decompression failed, data probably corrupt [ 841.221276][T24268] SQUASHFS error: Failed to read block 0x91: -5 [ 841.227671][T24268] SQUASHFS error: Unable to read metadata cache entry [8f] [ 841.272252][T24268] SQUASHFS error: Unable to read inode 0x11f [ 841.510882][T24276] loop4: detected capacity change from 0 to 256 [ 841.553154][T24276] exfat: Deprecated parameter 'namecase' [ 841.559131][T24276] exfat: Deprecated parameter 'namecase' [ 841.636764][T24276] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0xb2dfaa58, utbl_chksum : 0xe619d30d) [ 842.247609][T24278] loop1: detected capacity change from 0 to 32768 [ 842.309836][T24278] XFS (loop1): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d [ 842.384941][T24278] XFS (loop1): Ending clean mount [ 842.431788][T15174] XFS (loop1): Metadata CRC error detected at xfs_inobt_read_verify+0x42/0xd0, xfs_finobt block 0x10 [ 842.453973][T15174] XFS (loop1): Unmount and run xfs_repair [ 842.459953][T15174] XFS (loop1): First 128 bytes of corrupted metadata buffer: [ 842.469862][T15174] 00000000: 46 49 42 33 00 00 00 01 ff ff ff ff ff ff ff ff FIB3............ [ 842.486373][T15174] 00000010: 00 00 00 00 00 00 00 10 00 00 00 01 00 00 00 10 ................ [ 842.499936][T15174] 00000020: d7 dc 42 4e 79 90 42 cb 9f 91 9c b7 20 0a 10 1d ..BNy.B..... ... [ 842.517933][T15174] 00000030: 00 00 00 00 0f 8d d2 a2 00 00 18 00 00 00 40 37 ..............@7 [ 842.534310][T15174] 00000040: ff ff ff ff ff ff fe 00 00 00 00 00 00 00 00 00 ................ [ 842.582610][T15174] 00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ [ 842.606452][T15174] 00000060: 00 00 00 00 00 f0 00 00 00 00 00 00 00 00 00 00 ................ [ 842.641776][T15174] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ [ 842.671444][T24278] XFS (loop1): metadata I/O error in "xfs_btree_read_buf_block+0x1df/0x2e0" at daddr 0x10 len 4 error 74 [ 842.695915][T24278] XFS (loop1): Failed to initialize disk quotas. [ 842.827594][ T5774] XFS (loop1): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d [ 842.938847][T24286] loop4: detected capacity change from 0 to 32768 [ 843.048619][T24286] ERROR: (device loop4): xtSearch: XT_GETPAGE: xtree page corrupt [ 843.048619][T24286] [ 843.110339][T24286] ERROR: (device loop4): remounting filesystem as read-only [ 843.628660][T24314] netlink: 60 bytes leftover after parsing attributes in process `syz.5.7611'. [ 843.822144][ T787] usb 2-1: new high-speed USB device number 54 using dummy_hcd [ 844.011395][ T787] usb 2-1: Using ep0 maxpacket: 32 [ 844.026444][ T787] usb 2-1: config 0 interface 0 altsetting 2 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 844.042170][ T787] usb 2-1: config 0 interface 0 altsetting 2 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 844.042207][ T787] usb 2-1: config 0 interface 0 has no altsetting 0 [ 844.042247][ T787] usb 2-1: New USB device found, idVendor=04d9, idProduct=a070, bcdDevice= 0.00 [ 844.042271][ T787] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 844.069317][ T787] usb 2-1: config 0 descriptor?? [ 844.507468][ T787] holtek_mouse 0003:04D9:A070.004F: unknown main item tag 0x3 [ 844.520969][ T787] holtek_mouse 0003:04D9:A070.004F: unknown main item tag 0x0 [ 844.529224][ T787] holtek_mouse 0003:04D9:A070.004F: unknown main item tag 0x0 [ 844.537237][ T787] holtek_mouse 0003:04D9:A070.004F: unknown main item tag 0x0 [ 844.546593][ T787] holtek_mouse 0003:04D9:A070.004F: unknown main item tag 0x0 [ 844.572348][ T787] holtek_mouse 0003:04D9:A070.004F: unknown main item tag 0x0 [ 844.580837][ T787] holtek_mouse 0003:04D9:A070.004F: unknown main item tag 0x6 [ 844.594122][ T787] holtek_mouse 0003:04D9:A070.004F: unknown main item tag 0x0 [ 844.602039][ T787] holtek_mouse 0003:04D9:A070.004F: unknown main item tag 0x0 [ 844.609586][ T787] holtek_mouse 0003:04D9:A070.004F: unknown main item tag 0x0 [ 844.666078][ T787] holtek_mouse 0003:04D9:A070.004F: unknown main item tag 0x0 [ 844.687658][ T787] holtek_mouse 0003:04D9:A070.004F: unknown main item tag 0x0 [ 844.695637][ T787] holtek_mouse 0003:04D9:A070.004F: unknown main item tag 0x0 [ 844.705104][ T787] holtek_mouse 0003:04D9:A070.004F: unknown main item tag 0x0 [ 844.736148][ T787] holtek_mouse 0003:04D9:A070.004F: hidraw0: USB HID va.c3 Device [HID 04d9:a070] on usb-dummy_hcd.1-1/input0 [ 844.773401][ T787] usb 2-1: USB disconnect, device number 54 [ 844.880238][T24337] fido_id[24337]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.1/usb2/report_descriptor': No such file or directory [ 845.627370][T24360] netlink: 60 bytes leftover after parsing attributes in process `syz.1.7627'. [ 846.072291][T24368] loop5: detected capacity change from 0 to 512 [ 846.087011][T24352] loop4: detected capacity change from 0 to 40427 [ 846.099430][T24352] F2FS-fs (loop4): Small segment_count (9 < 1 * 24) [ 846.110653][T24352] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock [ 846.145624][T24352] F2FS-fs (loop4): Found nat_bits in checkpoint [ 846.154088][T24368] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 846.201339][T24368] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 846.275979][T24368] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 846.290572][T24368] ext4 filesystem being mounted at /286/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 846.308821][T24352] F2FS-fs (loop4): Try to recover 1th superblock, ret: 0 [ 846.331308][T24352] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5 [ 846.386918][T24368] EXT4-fs error (device loop5): ext4_get_first_dir_block:3592: inode #12: block 32: comm syz.5.7632: bad entry in directory: rec_len is too small for name_len - offset=0, inode=12, rec_len=12, size=2048 fake=0 [ 846.420073][T24368] EXT4-fs (loop5): Remounting filesystem read-only [ 846.470772][T21692] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 846.489788][ T28] audit: type=1800 audit(2000000429.850:4251): pid=24352 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.7624" name="bus" dev="loop4" ino=10 res=0 errno=0 [ 846.531687][ T787] usb 2-1: new full-speed USB device number 55 using dummy_hcd [ 846.627323][ T8240] syz-executor: attempt to access beyond end of device [ 846.627323][ T8240] loop4: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 846.665447][ T8240] F2FS-fs (loop4): Stopped filesystem due to reason: 3 [ 846.719580][ T787] usb 2-1: too many endpoints for config 0 interface 0 altsetting 0: 254, using maximum allowed: 30 [ 846.751523][ T787] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 1056, setting to 64 [ 846.780476][ T787] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 254 [ 846.825619][ T787] usb 2-1: New USB device found, idVendor=0079, idProduct=0011, bcdDevice= 0.00 [ 846.856377][ T787] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 846.878571][ T787] usb 2-1: config 0 descriptor?? [ 846.892114][T24376] raw-gadget.1 gadget.1: fail, usb_ep_enable returned -22 [ 847.337063][ T787] dragonrise 0003:0079:0011.0050: ignoring exceeding usage max [ 847.379646][ T787] dragonrise 0003:0079:0011.0050: hidraw0: USB HID v0.01 Device [HID 0079:0011] on usb-dummy_hcd.1-1/input0 [ 847.496166][ T28] audit: type=1326 audit(2000000430.860:4252): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24392 comm="syz.4.7637" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fcfcdd9ce59 code=0x0 [ 847.605328][ T23] usb 2-1: USB disconnect, device number 55 [ 847.668081][T24391] fido_id[24391]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.1/usb2/report_descriptor': No such file or directory [ 847.717592][T24396] loop5: detected capacity change from 0 to 512 [ 847.769570][T24396] EXT4-fs (loop5): revision level too high, forcing read-only mode [ 847.801800][T24396] EXT4-fs (loop5): orphan cleanup on readonly fs [ 847.812115][T24396] Quota error (device loop5): v2_read_file_info: Block with free entry 4294967071 out of range (1, 6). [ 847.828270][T24396] EXT4-fs warning (device loop5): ext4_enable_quotas:7188: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix. [ 847.845347][T24396] EXT4-fs (loop5): Cannot turn on quotas: error -117 [ 847.855303][T24396] EXT4-fs error (device loop5): ext4_validate_block_bitmap:430: comm syz.5.7642: bg 0: block 15: invalid block bitmap [ 847.876182][T24396] EXT4-fs error (device loop5) in ext4_mb_clear_bb:6655: Corrupt filesystem [ 847.904527][T24396] EXT4-fs (loop5): 1 truncate cleaned up [ 847.926672][T24396] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 847.980512][T24396] EXT4-fs error (device loop5): ext4_get_link:104: inode #16: comm syz.5.7642: bad symlink. [ 848.019763][T24396] EXT4-fs error (device loop5): ext4_get_link:104: inode #16: comm syz.5.7642: bad symlink. [ 848.087845][T21692] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 848.426555][T24408] loop4: detected capacity change from 0 to 64 [ 849.651822][T24432] loop5: detected capacity change from 0 to 128 [ 849.694107][T24432] hpfs: filesystem error: invalid number of hotfixes: 2066844986, used: 2066844985; already mounted read-only [ 849.716160][T24432] hpfs: filesystem error: improperly stopped [ 849.739095][T24432] hpfs: filesystem error: warning: spare dnodes used, try chkdsk [ 849.749003][T24432] hpfs: You really don't want any checks? You are crazy... [ 849.758891][T24432] hpfs: hpfs_map_sector(): read error [ 849.764749][T24432] hpfs: code page support is disabled [ 849.770580][T24432] hpfs: hpfs_map_4sectors(): unaligned read [ 849.780615][T24432] hpfs: hpfs_map_4sectors(): unaligned read [ 849.809020][T24432] hpfs: filesystem error: unable to find root dir [ 851.331353][ T787] usb 5-1: new high-speed USB device number 46 using dummy_hcd [ 851.521919][ T787] usb 5-1: Using ep0 maxpacket: 32 [ 851.529405][ T787] usb 5-1: config index 0 descriptor too short (expected 164, got 36) [ 851.541285][ T787] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 851.561586][ T787] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 851.581358][ T787] usb 5-1: New USB device found, idVendor=046d, idProduct=c29c, bcdDevice= 0.00 [ 851.600830][ T787] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 851.635859][ T787] usb 5-1: config 0 descriptor?? [ 851.745485][T24488] netlink: 12 bytes leftover after parsing attributes in process `syz.0.7686'. [ 851.781642][T24488] netlink: 12 bytes leftover after parsing attributes in process `syz.0.7686'. [ 852.125875][ T787] logitech 0003:046D:C29C.0051: hidraw0: USB HID v0.00 Device [HID 046d:c29c] on usb-dummy_hcd.4-1/input0 [ 852.295513][ T787] logitech 0003:046D:C29C.0051: no inputs found [ 852.326098][ T787] usb 5-1: USB disconnect, device number 46 [ 852.491952][T15174] usb 2-1: new high-speed USB device number 56 using dummy_hcd [ 852.689613][T15174] usb 2-1: config 220 has an invalid interface number: 76 but max is 2 [ 852.700537][T15174] usb 2-1: config 220 has an invalid descriptor of length 0, skipping remainder of the config [ 852.735581][T15174] usb 2-1: config 220 has no interface number 2 [ 852.742314][T15174] usb 2-1: config 220 interface 1 altsetting 5 has 0 endpoint descriptors, different from the interface descriptor's value: 12 [ 852.766513][T15174] usb 2-1: config 220 interface 0 has no altsetting 0 [ 852.782278][T15174] usb 2-1: config 220 interface 76 has no altsetting 0 [ 852.789353][T15174] usb 2-1: config 220 interface 1 has no altsetting 0 [ 852.822246][T15174] usb 2-1: New USB device found, idVendor=8086, idProduct=0b07, bcdDevice=6c.b9 [ 852.852549][T15174] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 852.860629][T15174] usb 2-1: Product: syz [ 852.885265][T15174] usb 2-1: Manufacturer: syz [ 852.889955][T15174] usb 2-1: SerialNumber: syz [ 853.098480][T24512] loop5: detected capacity change from 0 to 4096 [ 853.154094][T15174] usb 2-1: Found UVC 7.01 device syz (8086:0b07) [ 853.192727][T15174] usb 2-1: No valid video chain found. [ 853.198344][T15174] usb 2-1: selecting invalid altsetting 0 [ 853.252180][T15174] usb 2-1: selecting invalid altsetting 0 [ 853.265919][T15174] usbtest: probe of 2-1:220.1 failed with error -22 [ 853.289248][T24522] netlink: 4 bytes leftover after parsing attributes in process `syz.0.7701'. [ 853.309278][T15174] usb 2-1: USB disconnect, device number 56 [ 853.361575][T24512] ntfs3: loop5: Mark volume as dirty due to NTFS errors [ 853.526816][T24512] ntfs3: loop5: Failed to load $Extend (-22). [ 853.545753][T24512] ntfs3: loop5: Failed to initialize $Extend. [ 853.970987][T24530] loop4: detected capacity change from 0 to 4096 [ 854.038635][T24530] ntfs3: loop4: Mark volume as dirty due to NTFS errors [ 854.054166][T24538] loop5: detected capacity change from 0 to 512 [ 854.109130][T24540] bridge0: received packet on syz_tun with own address as source address (addr:aa:aa:aa:aa:aa:aa, vlan:0) [ 854.154503][T24530] ntfs3: loop4: Failed to load $Extend (-22). [ 854.160682][T24530] ntfs3: loop4: Failed to initialize $Extend. [ 854.179188][T24538] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 854.231379][T24538] EXT4-fs (loop5): ext4_check_descriptors: Block bitmap for group 1 overlaps superblock [ 854.307496][T24538] EXT4-fs (loop5): ext4_check_descriptors: Inode bitmap for group 1 overlaps superblock [ 854.372915][T24538] EXT4-fs (loop5): ext4_check_descriptors: Inode table for group 1 overlaps superblock [ 854.485137][T24538] EXT4-fs (loop5): revision level too high, forcing read-only mode [ 854.535894][T24538] [EXT4 FS bs=4096, gc=2, bpg=34, ipg=32, mo=a040e01c, mo2=0000] [ 854.628906][T24538] EXT4-fs (loop5): failed to initialize system zone (-117) [ 854.647047][T24552] netlink: 32 bytes leftover after parsing attributes in process `syz.4.7714'. [ 854.667712][T24552] tipc: Invalid UDP bearer configuration [ 854.667774][T24552] tipc: Enabling of bearer rejected, failed to enable media [ 854.690931][T24538] EXT4-fs (loop5): mount failed [ 855.492614][T24578] loop4: detected capacity change from 0 to 256 [ 855.520159][T24578] exfat: Deprecated parameter 'utf8' [ 855.605758][T24578] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0xe38d2169, utbl_chksum : 0xe619d30d) [ 855.626673][T24580] loop5: detected capacity change from 0 to 1024 [ 855.644158][T24580] EXT4-fs: Ignoring removed nomblk_io_submit option [ 855.699844][T24580] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 855.803943][T21692] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 856.151523][ T23] usb 2-1: new full-speed USB device number 57 using dummy_hcd [ 856.354818][ T23] usb 2-1: unable to get BOS descriptor or descriptor too short [ 856.364887][ T23] usb 2-1: not running at top speed; connect to a high speed hub [ 856.384238][ T23] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 856.396618][ T23] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 3 [ 856.410794][ T23] usb 2-1: string descriptor 0 read error: -22 [ 856.418282][ T23] usb 2-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40 [ 856.427903][ T23] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 856.454859][ T23] usb 2-1: 0:1 : does not exist [ 856.468627][ T23] usb 2-1: 0:2 : does not exist [ 856.565477][ T28] audit: type=1326 audit(2000000439.930:4253): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24604 comm="syz.4.7738" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fcfcdd9ce59 code=0x0 [ 856.645546][ T28] audit: type=1326 audit(2000000440.010:4254): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24606 comm="syz.5.7739" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fa0d4d9ce59 code=0x0 [ 856.669260][ C1] vkms_vblank_simulate: vblank timer overrun [ 856.688128][ T23] usb 2-1: 6:0: failed to get current value for ch 1 (-22) [ 856.705891][ T23] usb 2-1: 6:0: failed to get current value for ch 0 (-22) [ 856.735592][ T23] usb 2-1: USB disconnect, device number 57 [ 857.499167][T24618] loop1: detected capacity change from 0 to 512 [ 857.514196][T24618] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 857.557858][T24618] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a00ec019, mo2=0002] [ 857.578349][T24618] System zones: 1-12 [ 857.607269][T24618] EXT4-fs (loop1): 1 truncate cleaned up [ 857.618049][T24618] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 857.692113][ T5774] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 857.822692][T24625] [ 857.825109][T24625] ====================================================== [ 857.832164][T24625] WARNING: possible circular locking dependency detected [ 857.839230][T24625] syzkaller #0 Not tainted [ 857.843674][T24625] ------------------------------------------------------ [ 857.850736][T24625] syz.1.7746/24625 is trying to acquire lock: [ 857.856814][T24625] ffffffff976a2218 (nfnl_subsys_ipset){+.+.}-{3:3}, at: ip_set_nfnl_get_byindex+0x67/0x230 [ 857.866942][T24625] [ 857.866942][T24625] but task is already holding lock: [ 857.874313][T24625] ffff888031014cb8 (&nft_net->commit_mutex){+.+.}-{3:3}, at: nf_tables_valid_genid+0x3b/0x100 [ 857.884690][T24625] [ 857.884690][T24625] which lock already depends on the new lock. [ 857.884690][T24625] [ 857.895136][T24625] [ 857.895136][T24625] the existing dependency chain (in reverse order) is: [ 857.904199][T24625] [ 857.904199][T24625] -> #2 (&nft_net->commit_mutex){+.+.}-{3:3}: [ 857.912484][T24625] __mutex_lock+0x136/0xcc0 [ 857.917655][T24625] nf_tables_dumpreset_obj+0x72/0xa0 [ 857.923487][T24625] netlink_dump+0x747/0xe50 [ 857.928581][T24625] __netlink_dump_start+0x5f1/0x810 [ 857.934332][T24625] nft_netlink_dump_start_rcu+0xdb/0x1a0 [ 857.940525][T24625] nf_tables_getobj_reset+0x1e1/0x630 [ 857.946457][T24625] nfnetlink_rcv_msg+0x8a4/0x12b0 [ 857.952136][T24625] netlink_rcv_skb+0x241/0x4d0 [ 857.957459][T24625] nfnetlink_rcv+0x2c9/0x24a0 [ 857.962702][T24625] netlink_unicast+0x751/0x8d0 [ 857.968019][T24625] netlink_sendmsg+0x8d0/0xbf0 [ 857.973339][T24625] ____sys_sendmsg+0x5ba/0x960 [ 857.978737][T24625] ___sys_sendmsg+0x2a6/0x360 [ 857.983968][T24625] __se_sys_sendmsg+0x1c2/0x2b0 [ 857.989377][T24625] do_syscall_64+0x55/0xb0 [ 857.994432][T24625] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 858.000994][T24625] [ 858.000994][T24625] -> #1 (nlk_cb_mutex-NETFILTER){+.+.}-{3:3}: [ 858.009278][T24625] __mutex_lock+0x136/0xcc0 [ 858.014329][T24625] __netlink_dump_start+0xf4/0x810 [ 858.019989][T24625] ip_set_dump+0x15c/0x1f0 [ 858.024953][T24625] nfnetlink_rcv_msg+0xbf0/0x12b0 [ 858.030526][T24625] netlink_rcv_skb+0x241/0x4d0 [ 858.035841][T24625] nfnetlink_rcv+0x2c9/0x24a0 [ 858.041065][T24625] netlink_unicast+0x751/0x8d0 [ 858.046376][T24625] netlink_sendmsg+0x8d0/0xbf0 [ 858.051692][T24625] ____sys_sendmsg+0x5ba/0x960 [ 858.057004][T24625] ___sys_sendmsg+0x2a6/0x360 [ 858.062226][T24625] __se_sys_sendmsg+0x1c2/0x2b0 [ 858.067624][T24625] do_syscall_64+0x55/0xb0 [ 858.072642][T24625] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 858.079098][T24625] [ 858.079098][T24625] -> #0 (nfnl_subsys_ipset){+.+.}-{3:3}: [ 858.086948][T24625] __lock_acquire+0x2df1/0x7d40 [ 858.092393][T24625] lock_acquire+0x19e/0x420 [ 858.097449][T24625] __mutex_lock+0x136/0xcc0 [ 858.102500][T24625] ip_set_nfnl_get_byindex+0x67/0x230 [ 858.108425][T24625] set_match_v1_checkentry+0x71/0x230 [ 858.114344][T24625] xt_check_match+0x4ea/0xc50 [ 858.119646][T24625] __nft_match_init+0x67a/0x8d0 [ 858.125089][T24625] nf_tables_newrule+0x176c/0x2880 [ 858.130755][T24625] nfnetlink_rcv+0x113e/0x24a0 [ 858.136085][T24625] netlink_unicast+0x751/0x8d0 [ 858.141414][T24625] netlink_sendmsg+0x8d0/0xbf0 [ 858.146734][T24625] ____sys_sendmsg+0x5ba/0x960 [ 858.152056][T24625] ___sys_sendmsg+0x2a6/0x360 [ 858.157290][T24625] __se_sys_sendmsg+0x1c2/0x2b0 [ 858.162699][T24625] do_syscall_64+0x55/0xb0 [ 858.167665][T24625] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 858.174120][T24625] [ 858.174120][T24625] other info that might help us debug this: [ 858.174120][T24625] [ 858.184367][T24625] Chain exists of: [ 858.184367][T24625] nfnl_subsys_ipset --> nlk_cb_mutex-NETFILTER --> &nft_net->commit_mutex [ 858.184367][T24625] [ 858.198835][T24625] Possible unsafe locking scenario: [ 858.198835][T24625] [ 858.206310][T24625] CPU0 CPU1 [ 858.211696][T24625] ---- ---- [ 858.217080][T24625] lock(&nft_net->commit_mutex); [ 858.222129][T24625] lock(nlk_cb_mutex-NETFILTER); [ 858.229699][T24625] lock(&nft_net->commit_mutex); [ 858.237268][T24625] lock(nfnl_subsys_ipset); [ 858.241883][T24625] [ 858.241883][T24625] *** DEADLOCK *** [ 858.241883][T24625] [ 858.250070][T24625] 1 lock held by syz.1.7746/24625: [ 858.255216][T24625] #0: ffff888031014cb8 (&nft_net->commit_mutex){+.+.}-{3:3}, at: nf_tables_valid_genid+0x3b/0x100 [ 858.265978][T24625] [ 858.265978][T24625] stack backtrace: [ 858.271909][T24625] CPU: 1 PID: 24625 Comm: syz.1.7746 Not tainted syzkaller #0 [ 858.279392][T24625] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 858.289522][T24625] Call Trace: [ 858.292835][T24625] [ 858.295899][T24625] dump_stack_lvl+0x18c/0x250 [ 858.300672][T24625] ? load_image+0x420/0x420 [ 858.305270][T24625] ? show_regs_print_info+0x20/0x20 [ 858.310505][T24625] ? print_circular_bug+0x12b/0x1a0 [ 858.315734][T24625] check_noncircular+0x2fc/0x400 [ 858.320719][T24625] ? print_deadlock_bug+0x5d0/0x5d0 [ 858.325946][T24625] ? lockdep_lock+0xf5/0x230 [ 858.330574][T24625] ? _find_first_zero_bit+0xd3/0x100 [ 858.335932][T24625] __lock_acquire+0x2df1/0x7d40 [ 858.340825][T24625] ? mark_lock+0x94/0x320 [ 858.345184][T24625] ? verify_lock_unused+0x140/0x140 [ 858.350407][T24625] ? __lock_acquire+0x1273/0x7d40 [ 858.355474][T24625] lock_acquire+0x19e/0x420 [ 858.360009][T24625] ? ip_set_nfnl_get_byindex+0x67/0x230 [ 858.365596][T24625] ? __might_sleep+0xe0/0xe0 [ 858.370212][T24625] ? read_lock_is_recursive+0x20/0x20 [ 858.375614][T24625] __mutex_lock+0x136/0xcc0 [ 858.380150][T24625] ? ip_set_nfnl_get_byindex+0x67/0x230 [ 858.385737][T24625] ? ip_set_nfnl_get_byindex+0x67/0x230 [ 858.391328][T24625] ? ip_set_pernet+0x23/0x230 [ 858.396044][T24625] ? mutex_lock_nested+0x20/0x20 [ 858.401014][T24625] ? ip_set_pernet+0x23/0x230 [ 858.405725][T24625] ? ip_set_pernet+0x23/0x230 [ 858.410436][T24625] ip_set_nfnl_get_byindex+0x67/0x230 [ 858.415839][T24625] set_match_v1_checkentry+0x71/0x230 [ 858.421265][T24625] xt_check_match+0x4ea/0xc50 [ 858.425983][T24625] ? xt_check_proc_name+0x270/0x270 [ 858.431219][T24625] ? __stack_depot_save+0x1f/0x630 [ 858.436411][T24625] ? lockdep_hardirqs_on_prepare+0x40d/0x770 [ 858.442438][T24625] __nft_match_init+0x67a/0x8d0 [ 858.447326][T24625] ? ___sys_sendmsg+0x2a6/0x360 [ 858.452205][T24625] ? nft_match_large_dump+0x50/0x50 [ 858.457452][T24625] ? nf_tables_newrule+0x150e/0x2880 [ 858.462785][T24625] ? rcu_is_watching+0x15/0xb0 [ 858.467600][T24625] ? nf_tables_newrule+0x150e/0x2880 [ 858.472955][T24625] ? __kmalloc+0xe2/0x230 [ 858.477360][T24625] nf_tables_newrule+0x176c/0x2880 [ 858.482539][T24625] ? nf_tables_delchain+0x1060/0x1060 [ 858.487961][T24625] ? __lock_acquire+0x7d40/0x7d40 [ 858.493015][T24625] ? mutex_unlock+0x10/0x10 [ 858.497554][T24625] ? __nla_parse+0x40/0x50 [ 858.502006][T24625] nfnetlink_rcv+0x113e/0x24a0 [ 858.506817][T24625] ? nfnetlink_net_exit_batch+0xa0/0xa0 [ 858.512421][T24625] ? __lock_acquire+0x7d40/0x7d40 [ 858.517483][T24625] ? netlink_deliver_tap+0x2e/0x1b0 [ 858.522800][T24625] netlink_unicast+0x751/0x8d0 [ 858.527591][T24625] netlink_sendmsg+0x8d0/0xbf0 [ 858.532392][T24625] ? netlink_getsockopt+0x590/0x590 [ 858.537623][T24625] ? aa_sock_msg_perm+0x94/0x150 [ 858.542630][T24625] ? bpf_lsm_socket_sendmsg+0x9/0x10 [ 858.547971][T24625] ? security_socket_sendmsg+0x80/0xa0 [ 858.553456][T24625] ? netlink_getsockopt+0x590/0x590 [ 858.558769][T24625] ____sys_sendmsg+0x5ba/0x960 [ 858.563565][T24625] ? __asan_memset+0x22/0x40 [ 858.568223][T24625] ? __sys_sendmsg_sock+0x30/0x30 [ 858.573270][T24625] ? __import_iovec+0x5f2/0x850 [ 858.578147][T24625] ? import_iovec+0x73/0xa0 [ 858.582686][T24625] ___sys_sendmsg+0x2a6/0x360 [ 858.587398][T24625] ? __sys_sendmsg+0x2a0/0x2a0 [ 858.592210][T24625] __se_sys_sendmsg+0x1c2/0x2b0 [ 858.597089][T24625] ? __x64_sys_sendmsg+0x80/0x80 [ 858.602144][T24625] ? lockdep_hardirqs_on+0x98/0x150 [ 858.607376][T24625] do_syscall_64+0x55/0xb0 [ 858.611823][T24625] ? clear_bhb_loop+0x40/0x90 [ 858.616562][T24625] ? clear_bhb_loop+0x40/0x90 [ 858.621294][T24625] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 858.627214][T24625] RIP: 0033:0x7f4b0539ce59 [ 858.631725][T24625] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 858.651405][T24625] RSP: 002b:00007f4b06325028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 858.659893][T24625] RAX: ffffffffffffffda RBX: 00007f4b05615fa0 RCX: 00007f4b0539ce59 [ 858.667974][T24625] RDX: 0000000024044010 RSI: 0000200000000100 RDI: 0000000000000003 [ 858.675977][T24625] RBP: 00007f4b05432d6f R08: 0000000000000000 R09: 0000000000000000 [ 858.684057][T24625] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 858.692056][T24625] R13: 00007f4b05616038 R14: 00007f4b05615fa0 R15: 00007fff69083628 [ 858.700078][T24625] [ 858.703205][ C1] vkms_vblank_simulate: vblank timer overrun [ 858.761849][T24625] Cannot find set identified by id 0 to match